Skip to main content
CVE-2021-30213 MEDIUM POC This Month

Knowage Suite 7.3 is vulnerable to unauthenticated reflected cross-site scripting (XSS). Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS Knowage
NVD GitHub
CVSS 3.1
6.1
EPSS
2.7%
CVE-2021-30214 MEDIUM POC THREAT This Month

Knowage Suite 7.3 is vulnerable to Stored Client-Side Template Injection in '/knowage/restful-services/signup/update' via the 'name' parameter. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Code Injection Knowage
NVD GitHub
CVSS 3.1
5.4
EPSS
23.8%
CVE-2021-30212 MEDIUM POC This Month

Knowage Suite 7.3 is vulnerable to Stored Cross-Site Scripting (XSS). Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Knowage
NVD GitHub
CVSS 3.1
5.4
EPSS
0.6%
CVE-2021-30211 MEDIUM POC This Month

Knowage Suite 7.3 is vulnerable to Stored Cross-Site Scripting (XSS). Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Knowage
NVD GitHub
CVSS 3.1
5.4
EPSS
0.5%
CVE-2021-29511 MEDIUM PATCH This Month

evm is a pure Rust implementation of Ethereum Virtual Machine. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. This Allocation of Resources Without Limits vulnerability could allow attackers to exhaust system resources through uncontrolled allocation.

Denial Of Service Evm
NVD GitHub
CVSS 3.1
6.5
EPSS
1.3%
CVE-2021-3457 MEDIUM This Month

An improper authorization handling flaw was found in Foreman. Rated medium severity (CVSS 6.1), this vulnerability is low attack complexity. No vendor patch available.

Denial Of Service Authentication Bypass Smart Proxy Shell Hooks
NVD
CVSS 3.1
6.1
EPSS
0.2%
CVE-2021-23135 MEDIUM This Month

Exposure of System Data to an Unauthorized Control Sphere vulnerability in web UI of Argo CD allows attacker to cause leaked secret data into web UI error messages and logs.8 versions prior to 1.8.7;. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Argo Cd
NVD GitHub
CVSS 3.1
5.5
EPSS
0.2%
CVE-2021-31341 MEDIUM This Month

Uploading a table mapping using a manipulated XML file results in an exception that could expose information about the application-server and the used XML-framework on the Mendix Database Replication. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Database Replication
NVD
CVSS 3.1
4.3
EPSS
0.7%
CVE-2021-31339 MEDIUM This Month

A vulnerability has been identified in Mendix Excel Importer Module (All versions < V9.0.3). Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Excel Importer
NVD
CVSS 3.1
4.3
EPSS
0.8%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy