Skip to main content
CVE-2021-35955 MEDIUM PATCH This Month

Contao >=4.0.0 allows backend XSS via HTML attributes to an HTML field. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Contao
NVD GitHub
CVSS 3.1
4.8
EPSS
0.6%
CVE-2021-26428 MEDIUM PATCH This Month

Azure Sphere Information Disclosure Vulnerability. Rated medium severity (CVSS 4.4), this vulnerability is low attack complexity.

Microsoft Information Disclosure Azure Sphere
NVD
CVSS 3.1
4.4
EPSS
0.7%
CVE-2021-36943 MEDIUM PATCH This Month

Azure CycleCloud Elevation of Privilege Vulnerability. Rated medium severity (CVSS 4.0), this vulnerability is no authentication required, low attack complexity. This Improper Privilege Management vulnerability could allow attackers to escalate privileges to gain unauthorized elevated access.

Microsoft Privilege Escalation Azure Cyclecloud
NVD
CVSS 3.1
4.0
EPSS
0.7%
Prev Page 2 of 2

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy