CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
  What's the CVSS score of your company?
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Security Vulnerabilities (CVSS score between 6 and 6.99)

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
4601 CVE-2020-7948 2020-04-01 2020-04-02
6.5
None Remote Low ??? Partial Partial Partial
An issue was discovered in the Login by Auth0 plugin before 4.0.0 for WordPress. A user can perform an insecure direct object reference.
4602 CVE-2020-7939 89 Sql 2020-01-23 2020-01-24
6.5
None Remote Low ??? Partial Partial Partial
SQL Injection in DTML or in connection objects in Plone 4.0 through 5.2.1 allows users to perform unwanted SQL queries. (This is a problem in Zope.)
4603 CVE-2020-7938 269 2020-01-23 2021-07-21
6.5
None Remote Low ??? Partial Partial Partial
plone.restapi in Plone 5.2.0 through 5.2.1 allows users with a certain privilege level to escalate their privileges up to the highest level.
4604 CVE-2020-7935 434 Exec Code 2020-03-23 2020-03-25
6.5
None Remote Low ??? Partial Partial Partial
Artica Pandora FMS through 7.42 is vulnerable to remote PHP code execution because of an Unrestricted Upload Of A File With A Dangerous Type issue in the File Manager. An attacker can create a (or use an existing) directory that is externally accessible to store PHP files. The filename and the exact path is known by the attacker, so it is possible to execute PHP code in the context of the application. The vulnerability is exploitable only with Administrator access.
4605 CVE-2020-7931 Exec Code 2020-01-23 2020-01-30
6.5
None Remote Low ??? Partial Partial Partial
In JFrog Artifactory 5.x and 6.x, insecure FreeMarker template processing leads to remote code execution, e.g., by modifying a .ssh/authorized_keys file. Patches are available for various versions between 5.11.8 and 6.16.0. The issue exists because use of the DefaultObjectWrapper class makes certain Java functions accessible to a template.
4606 CVE-2020-7924 295 2021-04-12 2021-04-21
6.4
None Remote Low Not required Partial Partial None
Usage of specific command line parameter in MongoDB Tools which was originally intended to just skip hostname checks, may result in MongoDB skipping all certificate validation. This may result in accepting invalid certificates.This issue affects: MongoDB Inc. MongoDB Database Tools 3.6 versions later than 3.6.5; 3.6 versions prior to 3.6.21; 4.0 versions prior to 4.0.21; 4.2 versions prior to 4.2.11; 100 versions prior to 100.2.0. MongoDB Inc. Mongomirror 0 versions later than 0.6.0.
4607 CVE-2020-7882 22 Dir. Trav. 2021-11-22 2021-11-26
6.4
None Remote Low Not required Partial Partial None
Using the parameter of getPFXFolderList function, attackers can see the information of authorization certification and delete the files. It occurs because the parameter contains path traversal characters(ie. '../../../')
4608 CVE-2020-7877 120 Exec Code Overflow 2021-09-07 2021-09-16
6.5
None Remote Low ??? Partial Partial Partial
A buffer overflow issue was discovered in ZOOK solution(remote administration tool) through processing 'ConnectMe' command while parsing a crafted OUTERIP value because of missing boundary check. This vulnerability allows the attacker to execute remote arbitrary command.
4609 CVE-2020-7875 494 Exec Code 2021-10-28 2021-11-01
6.8
None Remote Medium Not required Partial Partial Partial
DEXT5 Upload 5.0.0.117 and earlier versions contain a vulnerability, which could allow remote attacker to download and execute remote file by setting the argument, variable in the activeX module. This can be leveraged for code execution.
4610 CVE-2020-7874 494 Exec Code 2021-09-09 2021-09-22
6.8
None Remote Medium Not required Partial Partial Partial
Download of code without integrity check vulnerability in NEXACRO14 Runtime ActiveX control of tobesoft Co., Ltd allows the attacker to cause an arbitrary file download and execution. This vulnerability is due to incomplete validation of file download URL or file extension.
4611 CVE-2020-7872 190 Exec Code Overflow 2021-07-12 2021-07-14
6.8
None Remote Medium Not required Partial Partial Partial
DaviewIndy v8.98.7.0 and earlier versions have a Integer overflow vulnerability, triggered when the user opens a malformed format file that is mishandled by DaviewIndy. Attackers could exploit this and arbitrary code execution.
4612 CVE-2020-7870 20 Mem. Corr. 2021-06-29 2021-07-02
6.5
None Remote Low ??? Partial Partial Partial
A memory corruption vulnerability exists when ezPDF improperly handles the parameter. This vulnerability exists due to insufficient validation of the parameter.
4613 CVE-2020-7862 20 Exec Code 2021-06-24 2021-07-01
6.5
None Remote Low ??? Partial Partial Partial
A vulnerability in agent program of HelpU remote control solution could allow an authenticated remote attacker to execute arbitrary commands This vulnerability is due to insufficient input santization when communicating customer process.
4614 CVE-2020-7860 190 Exec Code Overflow 2021-06-11 2021-06-23
6.8
None Remote Medium Not required Partial Partial Partial
UnEGG v0.5 and eariler versions have a Integer overflow vulnerability, triggered when the user opens a malformed specific file that is mishandled by UnEGG. Attackers could exploit this and arbitrary code execution. This issue affects: Estsoft UnEGG 0.5 versions prior to 1.0 on linux.
4615 CVE-2020-7852 787 Exec Code Overflow 2021-03-24 2021-03-27
6.8
None Remote Medium Not required Partial Partial Partial
DaviewIndy has a Heap-based overflow vulnerability, triggered when the user opens a malformed ex.j2c format file that is mishandled by Daview.exe. Attackers could exploit this and arbitrary code execution.
4616 CVE-2020-7851 88 Exec Code 2021-04-19 2021-04-23
6.8
None Remote Medium Not required Partial Partial Partial
Innorix Web-Based File Transfer Solution versuibs prior to and including 9.2.18.385 contains a vulnerability that could allow remote files to be downloaded and executed by setting the arguments to the internal method. A remote attacker could induce a user to access a crafted web page, causing damage such as malicious code infection.
4617 CVE-2020-7850 88 Exec Code 2021-03-29 2021-04-01
6.8
None Remote Medium Not required Partial Partial Partial
NBBDownloader.ocx ActiveX Control in Groupware contains a vulnerability that could allow remote files to be downloaded and executed by setting the arguments to the activex method. A remote attacker could induce a user to access a crafted web page, causing damage such as malicious code infection.
4618 CVE-2020-7849 20 Exec Code 2021-02-17 2021-02-23
6.8
None Remote Medium Not required Partial Partial Partial
A vulnerability of uPrism.io CURIX(Video conferecing solution) could allow an unauthenticated attacker to execute arbitrary code. This vulnerability is due to insufficient input(server domain) validation. An attacker could exploit this vulnerability through crafted URL.
4619 CVE-2020-7846 798 Exec Code 2021-02-24 2021-02-27
6.8
None Remote Medium Not required Partial Partial Partial
Helpcom before v10.0 contains a file download and execution vulnerability caused by storing hardcoded cryptographic key. It finally leads to a file download and execution via access to crafted web page.
4620 CVE-2020-7842 20 Exec Code 2020-11-20 2021-10-19
6.0
None Remote Medium ??? Partial Partial Partial
Improper Input validation vulnerability exists in Netis Korea D'live AP which could cause arbitrary command injection and execution when the time setting (using ntpServerlp1 parameter) for the users. This affects D'live set-top box AP(WF2429TB) v1.1.10.
4621 CVE-2020-7841 20 Exec Code 2020-11-17 2020-12-02
6.8
None Remote Medium Not required Partial Partial Partial
Improper input validation vulnerability exists in TOBESOFT XPLATFORM which could cause arbitrary .hta file execution when the command string is begun with http://, https://, mailto://
4622 CVE-2020-7838 20 Exec Code 2020-12-18 2020-12-21
6.8
None Remote Medium Not required Partial Partial Partial
A arbitrary code execution vulnerability exists in the way that the Stove client improperly validates input value. An attacker could execute arbitrary code when the user access to crafted web page. This issue affects: Smilegate STOVE Client 0.0.4.72.
4623 CVE-2020-7837 787 Overflow 2020-12-16 2020-12-18
6.8
None Remote Medium Not required Partial Partial Partial
An issue was discovered in ML Report Program. There is a stack-based buffer overflow in function sub_41EAF0 at MLReportDeamon.exe. The function will call vsprintf without checking the length of strings in parameters given by attacker. And it finally leads to a stack-based buffer overflow via access to crafted web page. This issue affects: Infraware ML Report 2.19.312.0000.
4624 CVE-2020-7836 787 Overflow 2021-02-24 2021-03-02
6.8
None Remote Medium Not required Partial Partial Partial
VOICEYE WSActiveBridgeES versions prior to 2.1.0.3 contains a stack-based buffer overflow vulnerability caused by improper bound checking parameter given by attack. It finally leads to a stack-based buffer overflow via access to crafted web page.
4625 CVE-2020-7831 494 Dir. Trav. 2020-08-24 2020-09-02
6.8
None Remote Medium Not required Partial Partial Partial
A vulnerability in the web-based contract management service interface Ebiz4u of INOGARD could allow an victim user to download any file. The attacker is able to use startup menu directory via directory traversal for automatic execution. The victim user need to reboot, however.
4626 CVE-2020-7830 20 2020-09-02 2020-09-11
6.8
None Remote Medium Not required Partial Partial Partial
RAONWIZ v2018.0.2.50 and earlier versions contains a vulnerability that could allow remote files to be downloaded by lack of validation. Vulnerabilities in downloading with Kupload agent allow files to be downloaded to arbitrary paths due to insufficient verification of extensions and download paths. This issue affects: RAONWIZ RAON KUpload 2018.0.2.50 versions and earlier.
4627 CVE-2020-7829 787 Exec Code Overflow 2020-07-30 2020-07-31
6.8
None Remote Medium Not required Partial Partial Partial
DaviewIndy 8.98.4 and earlier version contain Heap-based overflow vulnerability, triggered when the user opens a malformed specific file that is mishandled by Daview.exe. Attackers could exploit this and arbitrary code execution.
4628 CVE-2020-7828 787 Exec Code Overflow 2020-07-30 2020-07-31
6.8
None Remote Medium Not required Partial Partial Partial
DaviewIndy 8.98.4 and earlier version contain Heap-based overflow vulnerability, triggered when the user opens a malformed specific file that is mishandled by Daview.exe. Attackers could exploit this and arbitrary code execution.
4629 CVE-2020-7827 416 Exec Code 2020-07-30 2020-07-31
6.8
None Remote Medium Not required Partial Partial Partial
DaviewIndy 8.98.7 and earlier version contain Use-After-Free vulnerability, triggered when the user opens a malformed specific file that is mishandled by Daview.exe. Attackers could exploit this and arbitrary code execution.
4630 CVE-2020-7823 787 Exec Code Mem. Corr. 2020-08-04 2021-08-27
6.8
None Remote Medium Not required Partial Partial Partial
DaviewIndy has a Memory corruption vulnerability, triggered when the user opens a malformed image file that is mishandled by Daview.exe. Attackers could exploit this and arbitrary code execution.
4631 CVE-2020-7822 787 Exec Code Overflow 2020-08-04 2020-08-05
6.8
None Remote Medium Not required Partial Partial Partial
DaviewIndy has a Heap-based overflow vulnerability, triggered when the user opens a malformed image file that is mishandled by Daview.exe. Attackers could exploit this and arbitrary code execution.
4632 CVE-2020-7818 787 Exec Code Overflow 2020-07-17 2020-07-22
6.8
None Remote Medium Not required Partial Partial Partial
DaviewIndy 8.98.9 and earlier has a Heap-based overflow vulnerability, triggered when the user opens a malformed PDF file that is mishandled by Daview.exe. Attackers could exploit this and arbitrary code execution.
4633 CVE-2020-7816 787 Exec Code Overflow 2020-06-30 2021-07-21
6.8
None Remote Medium Not required Partial Partial Partial
A vulnerability in the JPEG image parsing module in DaView Indy, DaVa+, DaOffice softwares could allow an unauthenticated, remote attacker to cause an arbitrary code execution on an affected device.nThe vulnerability is due to a stack overflow read. An attacker could exploit this vulnerability by sending a crafted PDF file to an affected device.
4634 CVE-2020-7810 354 Exec Code 2020-08-07 2020-08-10
6.8
None Remote Medium Not required Partial Partial Partial
hslogin2.dll ActiveX Control in Groupware contains a vulnerability that could allow remote files to be downloaded and executed by setting the arguments to the activex method. This is due to a lack of integrity verification of the policy files referenced in the update process, and a remote attacker could induce a user to crafted web page, causing damage such as malicious code infection.
4635 CVE-2020-7804 78 Exec Code 2020-04-29 2020-05-07
6.5
None Remote Low ??? Partial Partial Partial
ActiveX Control(HShell.dll) in Handy Groupware 1.7.3.1 for Windows 7, 8, and 10 allows an attacker to execute arbitrary command via the ShellExec method.
4636 CVE-2020-7803 Exec Code 2020-05-07 2020-08-06
6.8
None Remote Medium Not required Partial Partial Partial
IMGTech Co,Ltd ZInsX.ocx ActiveX Control in Zoneplayer 2.0.1.3, version 2.0.1.4 and prior versions on Windows. File Donwload vulnerability in ZInsX.ocx of IMGTech Co,Ltd Zoneplayer allows attacker to cause arbitrary code execution.
4637 CVE-2020-7796 918 2020-02-18 2020-02-24
6.8
None Remote Medium Not required Partial Partial Partial
Zimbra Collaboration Suite (ZCS) before 8.8.15 Patch 7 allows SSRF when WebEx zimlet is installed and zimlet JSP is enabled.
4638 CVE-2020-7789 78 2020-12-11 2020-12-17
6.8
None Remote Medium Not required Partial Partial Partial
This affects the package node-notifier before 9.0.0. It allows an attacker to run arbitrary commands on Linux machines due to the options params not being sanitised when being passed an array.
4639 CVE-2020-7780 352 Bypass CSRF 2020-11-27 2020-12-04
6.8
None Remote Medium Not required Partial Partial Partial
This affects the package com.softwaremill.akka-http-session:core_2.13 before 0.5.11; the package com.softwaremill.akka-http-session:core_2.12 before 0.5.11; the package com.softwaremill.akka-http-session:core_2.11 before 0.5.11. For older versions, endpoints protected by randomTokenCsrfProtection could be bypassed with an empty X-XSRF-TOKEN header and an empty XSRF-TOKEN cookie.
4640 CVE-2020-7777 Exec Code 2020-11-23 2020-12-03
6.5
None Remote Low ??? Partial Partial Partial
This affects all versions of package jsen. If an attacker can control the schema file, it could run arbitrary JavaScript code on the victim machine. In the module description and README file there is no mention about the risks of untrusted schema files, so I assume that this is applicable. In particular the required field of the schema is not properly sanitized. The resulting string that is build based on the schema definition is then passed to a Function.apply();, leading to an Arbitrary Code Execution.
4641 CVE-2020-7759 89 Sql 2020-10-30 2020-11-03
6.5
None Remote Low ??? Partial Partial Partial
The package pimcore/pimcore from 6.7.2 and before 6.8.3 are vulnerable to SQL Injection in data classification functionality in ClassificationstoreController. This can be exploited by sending a specifically-crafted input in the relationIds parameter as demonstrated by the following request: http://vulnerable.pimcore.example/admin/classificationstore/relations?relationIds=[{"keyId"%3a"''","groupId"%3a"'asd'))+or+1%3d1+union+(select+1,2,3,4,5,6,name,8,password,'',11,12,'',14+from+users)+--+"}]
4642 CVE-2020-7752 77 Exec Code 2020-10-26 2021-07-21
6.5
None Remote Low ??? Partial Partial Partial
This affects the package systeminformation before 4.27.11. This package is vulnerable to Command Injection. The attacker can concatenate curl's parameters to overwrite Javascript files and then execute any OS commands.
4643 CVE-2020-7751 20 2020-10-26 2021-07-21
6.5
None Remote Low ??? Partial Partial Partial
pathval before version 1.1.1 is vulnerable to prototype pollution.
4644 CVE-2020-7750 79 XSS 2020-10-21 2020-12-02
6.8
None Remote Medium Not required Partial Partial Partial
This affects the package scratch-svg-renderer before 0.2.0-prerelease.20201019174008. The loadString function does not escape SVG properly, which can be used to inject arbitrary elements into the DOM via the _transformMeasurements function.
4645 CVE-2020-7749 918 XSS 2020-10-20 2021-07-21
6.5
None Remote Low ??? Partial Partial Partial
This affects all versions of package osm-static-maps. User input given to the package is passed directly to a template without escaping ({{{ ... }}}). As such, it is possible for an attacker to inject arbitrary HTML/JS code and depending on the context. It will be outputted as an HTML on the page which gives opportunity for XSS or rendered on the server (puppeteer) which also gives opportunity for SSRF and Local File Read.
4646 CVE-2020-7748 400 2020-10-20 2021-07-21
6.8
None Remote Medium Not required Partial Partial Partial
This affects the package @tsed/core before 5.65.7. This vulnerability relates to the deepExtend function which is used as part of the utils directory. Depending on if user input is provided, an attacker can overwrite and pollute the object prototype of a program.
4647 CVE-2020-7740 20 2020-10-06 2020-10-19
6.4
None Remote Low Not required Partial Partial None
This affects all versions of package node-pdf-generator. Due to lack of user input validation and sanitization done to the content given to node-pdf-generator, it is possible for an attacker to craft a url that will be passed to an external server allowing an SSRF attack.
4648 CVE-2020-7739 918 2020-10-06 2020-10-22
6.4
None Remote Low Not required Partial Partial None
This affects all versions of package phantomjs-seo. It is possible for an attacker to craft a url that will be passed to a PhantomJS instance allowing for an SSRF attack.
4649 CVE-2020-7738 Exec Code 2020-10-02 2020-10-06
6.5
None Remote Low ??? Partial Partial Partial
All versions of package shiba are vulnerable to Arbitrary Code Execution due to the default usage of the function load() of the package js-yaml instead of its secure replacement , safeLoad().
4650 CVE-2020-7735 78 2020-09-25 2020-09-30
6.5
None Remote Low ??? Partial Partial Partial
The package ng-packagr before 10.1.1 are vulnerable to Command Injection via the styleIncludePaths option.
Total number of vulnerabilities : 23854   Page : 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 (This Page)94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 139 140 141 142 143 144 145 146 147 148 149 150 151 152 153 154 155 156 157 158 159 160 161 162 163 164 165 166 167 168 169 170 171 172 173 174 175 176 177 178 179 180 181 182 183 184 185 186 187 188 189 190 191 192 193 194 195 196 197 198 199 200 201 202 203 204 205 206 207 208 209 210 211 212 213 214 215 216 217 218 219 220 221 222 223 224 225 226 227 228 229 230 231 232 233 234 235 236 237 238 239 240 241 242 243 244 245 246 247 248 249 250 251 252 253 254 255 256 257 258 259 260 261 262 263 264 265 266 267 268 269 270 271 272 273 274 275 276 277 278 279 280 281 282 283 284 285 286 287 288 289 290 291 292 293 294 295 296 297 298 299 300 301 302 303 304 305 306 307 308 309 310 311 312 313 314 315 316 317 318 319 320 321 322 323 324 325 326 327 328 329 330 331 332 333 334 335 336 337 338 339 340 341 342 343 344 345 346 347 348 349 350 351 352 353 354 355 356 357 358 359 360 361 362 363 364 365 366 367 368 369 370 371 372 373 374 375 376 377 378 379 380 381 382 383 384 385 386 387 388 389 390 391 392 393 394 395 396 397 398 399 400 401 402 403 404 405 406 407 408 409 410 411 412 413 414 415 416 417 418 419 420 421 422 423 424 425 426 427 428 429 430 431 432 433 434 435 436 437 438 439 440 441 442 443 444 445 446 447 448 449 450 451 452 453 454 455 456 457 458 459 460 461 462 463 464 465 466 467 468 469 470 471 472 473 474 475 476 477 478
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.