Skip to main content
CVE-2020-8810 HIGH POC This Week

An issue was discovered in Gurux GXDLMS Director through 8.5.1905.1301. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. Public exploit code available and no vendor patch available.

RCE Path Traversal Device Language Message Specification Director
NVD GitHub
CVSS 3.1
8.1
EPSS
2.1%
CVE-2020-8809 HIGH POC This Week

Gurux GXDLMS Director prior to 8.5.1905.1301 downloads updates to add-ins and OBIS code over an unencrypted HTTP connection. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. Public exploit code available and no vendor patch available.

RCE Device Language Message Specification Director
NVD GitHub
CVSS 3.1
8.1
EPSS
1.0%
CVE-2020-8819 HIGH POC PATCH This Week

An issue was discovered in the CardGate Payments plugin through 3.1.15 for WooCommerce. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress Authentication Bypass PHP Cardgate Payments
NVD GitHub Exploit-DB
CVSS 3.1
8.1
EPSS
4.9%
CVE-2020-8818 HIGH POC PATCH This Week

An issue was discovered in the CardGate Payments plugin through 2.0.30 for Magento 2. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Adobe Authentication Bypass PHP Cardgate Payments Magento
NVD GitHub
CVSS 3.1
8.1
EPSS
4.2%
CVE-2020-9017 HIGH POC This Week

LiteCart through 2.2.1 allows CSV injection via a customer's profile. Rated high severity (CVSS 8.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Code Injection Litecart
NVD
CVSS 3.1
8.0
EPSS
1.1%
CVE-2020-9385 HIGH POC This Week

A NULL Pointer Dereference exists in libzint in Zint 2.7.1 because multiple + characters are mishandled in add_on in upcean.c, when called from eanx in upcean.c during EAN barcode generation. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Null Pointer Dereference Denial Of Service Zint
NVD
CVSS 3.1
7.5
EPSS
1.6%
CVE-2020-9394 HIGH This Week

An issue was discovered in the pricing-table-by-supsystic plugin before 1.8.2 for WordPress. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

WordPress CSRF Pricing Table By Supsystic
NVD
CVSS 3.1
8.8
EPSS
0.7%
CVE-2020-9383 HIGH PATCH This Week

An issue was discovered in the Linux kernel 3.16 through 5.5.6. Rated high severity (CVSS 7.1), this vulnerability is low attack complexity. This Out-of-bounds Read vulnerability could allow attackers to read data from memory outside the intended buffer boundaries.

Buffer Overflow Linux Information Disclosure Linux Kernel Debian Linux +10
NVD GitHub
CVSS 3.1
7.1
EPSS
0.7%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy