Skip to main content
CVE-2020-8425 MEDIUM POC This Month

Cups Easy (Purchase & Inventory) 1.0 is vulnerable to CSRF that leads to admin account deletion via userdelete.php. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

CSRF PHP Cups Easy Purchase Inventory
NVD GitHub Exploit-DB
CVSS 3.1
6.5
EPSS
1.2%
CVE-2020-7997 MEDIUM POC This Month

ASUS WRT-AC66U 3 RT 3.0.0.4.372_67 devices allow XSS via the Client Name field to the Parental Control feature. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS Rt Ac66U Firmware
NVD GitHub
CVSS 3.1
6.1
EPSS
0.7%
CVE-2020-8426 MEDIUM POC This Month

The Elementor plugin before 2.8.5 for WordPress suffers from a reflected XSS vulnerability on the elementor-system-info page. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS WordPress Website Builder
NVD
CVSS 3.1
5.4
EPSS
1.3%
CVE-2020-7934 MEDIUM POC PATCH This Month

In LifeRay Portal CE 7.1.0 through 7.2.1 GA2, the First Name, Middle Name, and Last Name fields for user accounts in MyAccountPortlet are all vulnerable to a persistent XSS issue. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Liferay Portal
NVD GitHub Exploit-DB
CVSS 3.1
5.4
EPSS
4.5%
CVE-2020-1932 MEDIUM PATCH This Month

An information disclosure issue was found in Apache Superset 0.34.0, 0.34.1, 0.35.0, and 0.35.1. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Apache Information Disclosure Superset
NVD
CVSS 3.1
6.5
EPSS
1.4%
CVE-2020-8421 MEDIUM This Month

An issue was discovered in Joomla!. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Joomla
NVD
CVSS 3.1
6.1
EPSS
1.0%
CVE-2020-1933 MEDIUM PATCH This Month

A XSS vulnerability was found in Apache NiFi 1.0.0 to 1.10.0. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Apache Mozilla Nifi
NVD
CVSS 3.1
6.1
EPSS
2.8%
CVE-2020-8315 MEDIUM PATCH This Month

In Python (CPython) 3.6 through 3.6.10, 3.7 through 3.7.6, and 3.8 through 3.8.1, an insecure dependency load upon launch on Windows 7 may result in an attacker's copy of. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity.

Python Microsoft Information Disclosure
NVD
CVSS 3.1
5.5
EPSS
1.3%
CVE-2020-0549 MEDIUM This Month

Cleanup errors in some data cache evictions for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Ubuntu Linux Fedora Leap Debian Linux Core I5 9400F Firmware +425
NVD
CVSS 3.1
5.5
EPSS
0.6%
CVE-2020-0548 MEDIUM This Month

Cleanup errors in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Intel Information Disclosure Core I7 8700B Firmware Core I7 8569U Firmware Core I7 8650U Firmware +421
NVD
CVSS 3.1
5.5
EPSS
0.5%
CVE-2020-1928 MEDIUM PATCH This Month

An information disclosure vulnerability was found in Apache NiFi 1.10.0. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Apache Information Disclosure Nifi
NVD
CVSS 3.1
5.3
EPSS
4.0%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy