Skip to main content
CVE-2021-25808 HIGH POC This Week

A code injection vulnerability in backup/plugin.php of Bludit 3.13.1 allows attackers to execute arbitrary code via a crafted ZIP file. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

RCE PHP Code Injection Bludit
NVD GitHub
CVSS 3.1
7.8
EPSS
1.2%
CVE-2021-25201 HIGH POC This Week

SQL injection vulnerability in Learning Management System v 1.0 allows remote attackers to execute arbitrary SQL statements through the id parameter to obtain sensitive database information. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi Learning Management System
NVD GitHub
CVSS 3.1
7.5
EPSS
1.5%
CVE-2021-32783 HIGH PATCH This Week

Contour is a Kubernetes ingress controller using Envoy proxy. Rated high severity (CVSS 8.5), this vulnerability is remotely exploitable, low attack complexity.

Kubernetes Denial Of Service Contour
NVD GitHub
CVSS 3.1
8.5
EPSS
1.2%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy