Skip to main content
CVE-2020-7109 CRITICAL Act Now

The Elementor Page Builder plugin before 2.8.4 for WordPress does not sanitize data during creation of a new template. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

WordPress Information Disclosure Website Builder
NVD
CVSS 3.1
9.8
EPSS
1.7%
CVE-2020-6960 CRITICAL Act Now

The following versions of MAXPRO VMS and NVR, MAXPRO VMS:HNMSWVMS prior to Version VMS560 Build 595 T2-Patch, HNMSWVMSLT prior to Version VMS560 Build 595 T2-Patch, MAXPRO NVR: MAXPRO NVR XE prior to. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

SQLi Maxpro Nvr Xe Firmware Maxpro Nvr Se Firmware Maxpro Nvr Pe Firmware Mpnvrswxx Firmware +2
NVD
CVSS 3.1
9.8
EPSS
1.1%
CVE-2020-6959 CRITICAL Act Now

The following versions of MAXPRO VMS and NVR, MAXPRO VMS:HNMSWVMS prior to Version VMS560 Build 595 T2-Patch, HNMSWVMSLT prior to Version VMS560 Build 595 T2-Patch, MAXPRO NVR: MAXPRO NVR XE prior to. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE Deserialization Maxpro Nvr Xe Firmware Maxpro Nvr Se Firmware Maxpro Nvr Pe Firmware +3
NVD
CVSS 3.1
9.8
EPSS
2.2%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy