Skip to main content
CVE-2021-21425 CRITICAL POC THREAT Emergency

Grav Admin Plugin is an HTML user interface that provides a way to configure Grav and create and modify pages. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Grav Plugin Admin
NVD GitHub Exploit-DB
CVSS 3.1
9.8
EPSS
80.6%
CVE-2021-30177 CRITICAL POC Act Now

There is a SQL Injection vulnerability in PHP-Nuke 8.3.3 in the User Registration section, leading to remote code execution. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi RCE Php Nuke
NVD GitHub
CVSS 3.1
9.8
EPSS
2.4%
CVE-2021-26709 CRITICAL POC THREAT Act Now

D-Link DSL-320B-D1 devices through EU_1.25 are prone to multiple Stack-Based Buffer Overflows that allow unauthenticated remote attackers to take over a device via the login.xgi user and pass. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow D-Link Memory Corruption Dsl 320B D1
NVD
CVSS 3.1
9.8
EPSS
40.1%
CVE-2021-30457 CRITICAL Act Now

An issue was discovered in the id-map crate through 2021-02-26 for Rust. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Id Map
NVD
CVSS 3.1
9.8
EPSS
1.1%
CVE-2021-30456 CRITICAL Act Now

An issue was discovered in the id-map crate through 2021-02-26 for Rust. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Id Map
NVD
CVSS 3.1
9.8
EPSS
1.1%
CVE-2021-30455 CRITICAL Act Now

An issue was discovered in the id-map crate through 2021-02-26 for Rust. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Id Map
NVD
CVSS 3.1
9.8
EPSS
1.1%
CVE-2021-30454 CRITICAL PATCH Act Now

An issue was discovered in the outer_cgi crate before 0.2.1 for Rust. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Outer Cgi
NVD
CVSS 3.1
9.8
EPSS
1.1%
CVE-2021-30246 CRITICAL PATCH Act Now

In the jsrsasign package through 10.1.13 for Node.js, some invalid RSA PKCS#1 v1.5 signatures are mistakenly recognized to be valid. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Node.js Jwt Attack Jsrsasign
NVD GitHub VulDB
CVSS 3.1
9.1
EPSS
1.0%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy