Skip to main content
CVE-2020-17506 CRITICAL POC THREAT Emergency

Artica Web Proxy 4.30.00000000 allows remote attacker to bypass privilege detection and gain web backend administrator privileges through SQL injection of the apikey parameter in fw.login.php. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi PHP Web Proxy
NVD Exploit-DB
CVSS 3.1
9.8
EPSS
94.0%
CVE-2020-17496 CRITICAL POC KEV PATCH THREAT Act Now

vBulletin 5.5.4 through 5.6.2 allows remote command execution via crafted subWidgets data in an ajax/render/widget_tabbedcontainer_tab_panel request. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Information Disclosure Vbulletin
NVD
CVSS 3.1
9.8
EPSS
87.7%
CVE-2020-17505 HIGH POC THREAT Act Now

Artica Web Proxy 4.30.000000 allows an authenticated remote attacker to inject commands via the service-cmds parameter in cyrus.php. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection PHP Web Proxy
NVD
CVSS 3.1
8.8
EPSS
82.2%
CVE-2020-7374 HIGH POC Act Now

Documalis Free PDF Editor version 5.7.2.26 and Documalis Free PDF Scanner version 5.7.2.122 do not appropriately validate the contents of JPEG images contained within a PDF. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow RCE Free Pdf Editor Free Pdf Scanner
NVD GitHub
CVSS 3.1
7.8
EPSS
3.1%
CVE-2020-16137 CRITICAL POC THREAT Act Now

A privilege escalation issue in Cisco Unified IP Conference Station 7937G 1-4-4-0 through 1-4-5-7 allows attackers to reset the credentials for the SSH administrative console to arbitrary values. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Cisco Privilege Escalation Unified Ip Conference Station 7937G Firmware
NVD
CVSS 3.1
9.8
EPSS
19.4%
CVE-2020-8913 HIGH POC This Week

A local, arbitrary code execution vulnerability exists in the SplitCompat.install endpoint in Android's Play Core Library versions prior to 1.7.2. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Google RCE Path Traversal Play Core Library
NVD
CVSS 3.1
8.8
EPSS
2.9%
CVE-2020-16139 HIGH POC THREAT This Week

A denial-of-service in Cisco Unified IP Conference Station 7937G 1-4-4-0 through 1-4-5-7 allows attackers restart the device remotely through sending specially crafted packets. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Cisco Information Disclosure Unified Ip Conference Station 7937G Firmware
NVD
CVSS 3.1
7.5
EPSS
79.8%
CVE-2020-16138 HIGH POC THREAT This Week

A denial-of-service issue in Cisco Unified IP Conference Station 7937G 1-4-4-0 through 1-4-5-7 allows attackers to remotely disable the device until it is power cycled. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Cisco Information Disclosure Unified Ip Conference Station 7937G Firmware
NVD
CVSS 3.1
7.5
EPSS
21.4%
CVE-2020-12674 HIGH POC This Week

In Dovecot before 2.3.11.3, sending a specially formatted RPA request will crash the auth service because a length of zero is mishandled. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Information Disclosure Dovecot Debian Linux Ubuntu Linux +1
NVD
CVSS 3.1
7.5
EPSS
6.2%
CVE-2020-12673 HIGH POC This Week

In Dovecot before 2.3.11.3, sending a specially formatted NTLM request will crash the auth service because of an out-of-bounds read. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Information Disclosure Dovecot Debian Linux Ubuntu Linux +1
NVD
CVSS 3.1
7.5
EPSS
6.2%
CVE-2020-12100 HIGH POC This Week

In Dovecot before 2.3.11.3, uncontrolled recursion in submission, lmtp, and lda allows remote attackers to cause a denial of service (resource consumption) via a crafted e-mail message with deeply. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Dovecot Debian Linux Fedora Ubuntu Linux
NVD
CVSS 3.1
7.5
EPSS
5.2%
CVE-2020-17450 MEDIUM POC This Month

PHP-Fusion 9.03 allows XSS on the preview page. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS Php Fusion
NVD
CVSS 3.1
6.1
EPSS
0.8%
CVE-2020-17362 MEDIUM POC This Month

search.php in the Nova Lite theme before 1.3.9 for WordPress allows Reflected XSS. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS WordPress PHP Nova Lite
NVD
CVSS 3.1
6.1
EPSS
2.9%
CVE-2020-13278 MEDIUM POC PATCH This Month

Reflected Cross-Site Scripting vulnerability in Modules.php in RosarioSIS Student Information System < 6.5.1 allows remote attackers to execute arbitrary web script via embedding javascript or HTML. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

XSS PHP Student Information System
NVD
CVSS 3.1
6.1
EPSS
1.4%
CVE-2020-5415 CRITICAL PATCH Act Now

Concourse, versions prior to 6.3.1 and 6.4.1, in installations which use the GitLab auth connector, is vulnerable to identity spoofing by way of configuring a GitLab account with the same full name. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Gitlab Authentication Bypass Concourse
NVD GitHub
CVSS 3.1
10.0
EPSS
1.2%
CVE-2020-12107 CRITICAL Act Now

The Web portal of the WiFi module of VPNCrypt M10 2.6.5 allows command injection via a text field, which allow full control over this module's Operating System. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Command Injection Vpncrypt M10 Firmware
NVD
CVSS 3.1
9.8
EPSS
2.1%
CVE-2020-12106 CRITICAL Act Now

The Web portal of the WiFi module of VPNCrypt M10 2.6.5 allows unauthenticated users to send HTTP POST request to several critical Administrative functions such as, changing credentials of the. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Vpncrypt M10 Firmware
NVD
CVSS 3.1
9.8
EPSS
1.4%
CVE-2020-17446 CRITICAL PATCH Act Now

asyncpg before 0.21.0 allows a malicious PostgreSQL server to trigger a crash or execute arbitrary code (on a database client) via a crafted server response, because of access to an uninitialized. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

PostgreSQL RCE Memory Corruption asyncpg Debian Linux
NVD GitHub
CVSS 3.1
9.8
EPSS
2.4%
CVE-2020-6932 CRITICAL Act Now

An information disclosure and remote code execution vulnerability in the slinger web server of the BlackBerry QNX Software Development Platform versions 6.4.0 to 6.6.0 could allow an attacker to. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE Information Disclosure Qnx Software Development Platform
NVD
CVSS 3.1
9.8
EPSS
3.6%
CVE-2020-8904 CRITICAL PATCH Act Now

An arbitrary memory overwrite vulnerability in the trusted memory of Asylo exists in versions prior to 0.6.0. Rated critical severity (CVSS 9.6), this vulnerability is remotely exploitable, low attack complexity.

Memory Corruption Information Disclosure Asylo
NVD GitHub
CVSS 3.1
9.6
EPSS
0.2%
CVE-2020-17361 MEDIUM POC This Month

An issue was discovered in ReadyTalk Avian 1.2.0. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Avian
NVD GitHub
CVSS 3.1
5.5
EPSS
1.2%
CVE-2020-17449 MEDIUM POC This Month

PHP-Fusion 9.03 allows XSS via the error_log file. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Php Fusion
NVD
CVSS 3.1
5.4
EPSS
0.5%
CVE-2020-2231 MEDIUM POC PATCH This Month

Jenkins 2.251 and earlier, LTS 2.235.3 and earlier does not escape the remote address of the host starting a build via 'Trigger builds remotely', resulting in a stored cross-site scripting (XSS). Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Jenkins
NVD Exploit-DB
CVSS 3.1
5.4
EPSS
5.3%
CVE-2020-2230 MEDIUM POC PATCH THREAT This Month

Jenkins 2.251 and earlier, LTS 2.235.3 and earlier does not escape the project naming strategy description, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by users with. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Jenkins
NVD Exploit-DB
CVSS 3.1
5.4
EPSS
83.1%
CVE-2020-2229 MEDIUM POC PATCH This Month

Jenkins 2.251 and earlier, LTS 2.235.3 and earlier does not escape the tooltip content of help icons, resulting in a stored cross-site scripting (XSS) vulnerability. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Jenkins
NVD Exploit-DB
CVSS 3.1
5.4
EPSS
6.8%
CVE-2020-17372 MEDIUM POC This Month

SugarCRM before 10.1.0 (Q3 2020) allows XSS. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Sugarcrm
NVD
CVSS 3.1
5.4
EPSS
0.8%
CVE-2020-16266 MEDIUM POC PATCH This Month

An XSS issue was discovered in MantisBT before 2.24.2. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS RCE PHP Mantisbt
NVD
CVSS 3.1
5.4
EPSS
1.3%
CVE-2020-17373 MEDIUM POC This Month

SugarCRM before 10.1.0 (Q3 2020) allows SQL Injection. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable. Public exploit code available and no vendor patch available.

SQLi Sugarcrm
NVD
CVSS 3.1
5.3
EPSS
1.4%
CVE-2020-6294 CRITICAL Act Now

Xvfb of SAP Business Objects Business Intelligence Platform, versions - 4.2, 4.3, platform on Unix does not perform any authentication checks for functionalities that require user identity. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

SAP Authentication Bypass Businessobjects Business Intelligence Platform
NVD
CVSS 3.1
9.1
EPSS
1.5%
CVE-2020-6284 CRITICAL Act Now

SAP NetWeaver (Knowledge Management), versions - 7.30, 7.31, 7.40, 7.50, allows the automatic execution of script content in a stored file due to inadequate filtering with the accessing user's. Rated critical severity (CVSS 9.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS SAP Netweaver Knowledge Management
NVD
CVSS 3.1
9.0
EPSS
1.8%
CVE-2020-6296 HIGH This Week

SAP NetWeaver (ABAP Server) and ABAP Platform, versions - 700, 701, 702, 710, 711, 730, 731, 740, 750, 751, 753, 755, allows an attacker to inject code that can be executed by the application,. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Code Injection SAP Abap Platform Netweaver Application Server Abap
NVD
CVSS 3.1
8.8
EPSS
1.3%
CVE-2020-17497 HIGH This Week

eapol.c in iNet wireless daemon (IWD) through 1.8 allows attackers to trigger a PTK reinstallation by retransmitting EAPOL Msg4/4. Rated high severity (CVSS 8.1), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Inet Wireless Daemon
NVD
CVSS 3.1
8.1
EPSS
0.7%
CVE-2020-13291 HIGH This Week

In GitLab before 13.2.3, project sharing could temporarily allow too permissive access. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Gitlab Information Disclosure
NVD
CVSS 3.1
8.1
EPSS
1.0%
CVE-2020-6301 HIGH This Week

SAP ERP (HCM Travel Management), versions - 600, 602, 603, 604, 605, 606, 607, 608, allows an authenticated but unauthorized attacker to read, modify and settle trips, resulting in escalation of. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

SAP Authentication Bypass Hcm Travel Management
NVD
CVSS 3.1
8.1
EPSS
0.7%
CVE-2020-6298 HIGH This Week

SAP Banking Services (Generic Market Data), versions - 400, 450, 500, allows an unauthorized user to display protected Business Partner Generic Market Data (GMD) and change related GMD key figure. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

SAP Authentication Bypass Generic Market Data
NVD
CVSS 3.1
8.1
EPSS
1.0%
CVE-2020-17360 HIGH This Week

An issue was discovered in ReadyTalk Avian 1.2.0. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Information Disclosure Avian
NVD GitHub
CVSS 3.1
7.8
EPSS
1.2%
CVE-2020-6295 HIGH This Week

Under certain conditions the SAP Adaptive Server Enterprise, version 16.0, allows an attacker to access encrypted sensitive and confidential information through publicly readable installation log. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

SAP Information Disclosure Adaptive Server Enterprise
NVD
CVSS 3.1
7.8
EPSS
0.3%
CVE-2020-15868 HIGH This Week

Sonatype Nexus Repository Manager OSS/Pro before 3.26.0 has Incorrect Access Control. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Nexus Repository Manager
NVD
CVSS 3.1
7.5
EPSS
1.1%
CVE-2020-6309 HIGH This Week

SAP NetWeaver AS JAVA, versions - (ENGINEAPI 7.10; WSRM 7.10, 7.11, 7.20, 7.30, 7.31, 7.40, 7.50; J2EE-FRMW 7.10, 7.11), does not perform any authentication checks for a web service allowing the. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service SAP Authentication Bypass Netweaver Application Server Java
NVD
CVSS 3.1
7.5
EPSS
1.8%
CVE-2020-2232 HIGH PATCH This Week

Jenkins Email Extension Plugin 2.72 and 2.73 transmits and displays the SMTP password in plain text as part of the global Jenkins configuration form, potentially resulting in its exposure. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Jenkins Information Disclosure Email Extension
NVD
CVSS 3.1
7.5
EPSS
0.8%
CVE-2020-13290 HIGH This Week

In GitLab before 13.0.12, 13.1.6, and 13.2.3, improper access control was used on the Applications page. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Gitlab Authentication Bypass
NVD
CVSS 3.1
7.2
EPSS
1.1%
CVE-2020-15596 MEDIUM This Month

The ALPS ALPINE touchpad driver before 8.2206.1717.634, as used on various Dell, HP, and Lenovo laptops, allows attackers to conduct Path Disclosure attacks via a "fake" DLL file. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

HP Lenovo Dell Information Disclosure Elite X2 1012 G1 Firmware +13
NVD
CVSS 3.1
6.7
EPSS
0.4%
CVE-2020-8905 MEDIUM PATCH This Month

A buffer length validation vulnerability in Asylo versions prior to 0.6.0 allows an attacker to read data they should not have access to. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. This Buffer Copy without Size Check vulnerability could allow attackers to overflow a buffer to corrupt adjacent memory.

Buffer Overflow Asylo
NVD GitHub
CVSS 3.1
6.5
EPSS
0.2%
CVE-2020-6293 MEDIUM This Month

SAP NetWeaver (Knowledge Management), versions - 7.30, 7.31, 7.40, 7.50, allows an unauthenticated attacker to upload a malicious file and also to access, modify or make unavailable existing files. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

File Upload SAP Netweaver Knowledge Management
NVD
CVSS 3.1
6.5
EPSS
0.9%
CVE-2020-2235 MEDIUM PATCH This Month

A cross-site request forgery (CSRF) vulnerability in Jenkins Pipeline Maven Integration Plugin 3.8.2 and earlier allows attackers to connect to an attacker-specified JDBC URL using attacker-specified. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF Jenkins Pipeline Maven Integration
NVD
CVSS 3.1
6.5
EPSS
0.9%
CVE-2020-2234 MEDIUM PATCH This Month

A missing permission check in Jenkins Pipeline Maven Integration Plugin 3.8.2 and earlier allows users with Overall/Read access to connect to an attacker-specified JDBC URL using attacker-specified. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Jenkins Authentication Bypass Pipeline Maven Integration
NVD
CVSS 3.1
6.5
EPSS
1.1%
CVE-2020-2233 MEDIUM PATCH This Month

A missing permission check in Jenkins Pipeline Maven Integration Plugin 3.8.2 and earlier allows users with Overall/Read access to enumerate credentials ID of credentials stored in Jenkins. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Jenkins Authentication Bypass Pipeline Maven Integration
NVD
CVSS 3.1
6.5
EPSS
0.8%
CVE-2020-7300 MEDIUM This Month

Improper Authorization vulnerability in McAfee Data Loss Prevention (DLP) ePO extension prior to 11.5.3 allows authenticated remote attackers to change the configuration when logged in with view only. Rated medium severity (CVSS 6.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Authentication Bypass Data Loss Prevention
NVD
CVSS 3.1
6.3
EPSS
0.6%
CVE-2020-16145 MEDIUM PATCH This Month

Roundcube Webmail before 1.3.15 and 1.4.8 allows stored XSS in HTML messages during message display via a crafted SVG document. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Cross-Site Scripting (XSS) vulnerability could allow attackers to inject malicious scripts into web pages viewed by other users.

XSS Webmail Fedora
NVD GitHub
CVSS 3.1
6.1
EPSS
1.9%
CVE-2020-15137 MEDIUM This Month

All versions of HoRNDIS are affected by an integer overflow in the RNDIS packet parsing routines. Rated medium severity (CVSS 5.9), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow Integer Overflow Horndis
NVD GitHub
CVSS 3.1
5.9
EPSS
0.3%
Page 1 of 2 Next

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy