Skip to main content
CVE-2021-32273 HIGH POC This Week

An issue was discovered in faad2 through 2.10.0. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow RCE Memory Corruption Faad2 Debian Linux
NVD GitHub
CVSS 3.1
7.8
EPSS
1.1%
CVE-2021-32272 HIGH POC PATCH This Week

An issue was discovered in faad2 before 2.10.0. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available.

Buffer Overflow RCE Memory Corruption Faad2 Debian Linux
NVD GitHub
CVSS 3.1
7.8
EPSS
1.2%
CVE-2021-32271 HIGH POC This Week

An issue was discovered in gpac through 20200801. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow RCE Memory Corruption Gpac
NVD GitHub
CVSS 3.1
7.8
EPSS
1.0%
CVE-2021-32268 HIGH POC PATCH This Week

Buffer overflow vulnerability in function gf_fprintf in os_file.c in gpac before 1.0.1 allows attackers to execute arbitrary code. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available.

Buffer Overflow RCE Memory Corruption Gpac
NVD GitHub
CVSS 3.1
7.8
EPSS
1.2%
CVE-2021-38300 HIGH POC PATCH This Week

arch/mips/net/bpf_jit.c in the Linux kernel before 5.4.10 can generate undesirable machine code when transforming unprivileged cBPF programs, allowing execution of arbitrary code within the kernel. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. Public exploit code available.

Linux RCE Linux Kernel Cloud Backup H410c Firmware +8
NVD
CVSS 3.1
7.8
EPSS
0.6%
CVE-2021-39229 HIGH POC PATCH This Week

Apprise is an open source library which allows you to send a notification to almost all of the most popular notification services available. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Denial Of Service Apprise
NVD GitHub
CVSS 3.1
7.5
EPSS
1.8%
CVE-2021-39402 HIGH POC This Week

MaianAffiliate v.1.0 is suffers from code injection by adding a new product via the admin panel. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

RCE Code Injection Maianaffiliate
NVD GitHub
CVSS 3.1
7.2
EPSS
1.3%
CVE-2021-24663 HIGH POC This Week

The Simple Schools Staff Directory WordPress plugin through 1.1 does not validate uploaded logo pictures to ensure that are indeed images, allowing high privilege users such as admin to upload. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress File Upload Simple Schools Staff Directory
NVD WPScan
CVSS 3.1
7.2
EPSS
1.4%
CVE-2021-24511 HIGH POC This Week

The fetch_product_ajax functionality in the Product Feed on WooCommerce WordPress plugin before 3.3.1.0 uses a `product_id` POST parameter which is not properly sanitised, escaped or validated before. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress SQLi Product Feed On Woocommerce
NVD WPScan
CVSS 3.1
7.2
EPSS
1.5%
CVE-2021-24403 HIGH POC This Week

The Orders functionality in the WordPress Page Contact plugin through 1.0 has an order_id parameter which is not sanitised, escaped or validated before inserting to a SQL statement, leading to SQL. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress SQLi Wpagecontact
NVD WPScan
CVSS 3.1
7.2
EPSS
1.5%
CVE-2021-24402 HIGH POC This Week

The Orders functionality in the WP iCommerce WordPress plugin through 1.1.1 has an `order_id` parameter which is not sanitised, escaped or validated before inserting to a SQL statement, leading to. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress SQLi Wp Icommerce
NVD WPScan
CVSS 3.1
7.2
EPSS
4.5%
CVE-2021-24401 HIGH POC This Week

The Edit domain functionality in the WP Domain Redirect WordPress plugin through 1.0 has an `editid` parameter which is not sanitised, escaped or validated before inserting to a SQL statement,. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress SQLi Wp Domain Redirect
NVD WPScan
CVSS 3.1
7.2
EPSS
4.5%
CVE-2021-24400 HIGH POC This Week

The Edit Role functionality in the Display Users WordPress plugin through 2.0.0 had an `id` parameter which is not sanitised, escaped or validated before inserting to a SQL statement, leading to SQL. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress SQLi Wp Display Users
NVD WPScan
CVSS 3.1
7.2
EPSS
1.5%
CVE-2021-24399 HIGH POC This Week

The check_order function of The Sorter WordPress plugin through 1.0 uses an `area_id` parameter which is not sanitised, escaped or validated before inserting to a SQL statement, leading to SQL. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress SQLi The Sorter
NVD WPScan
CVSS 3.1
7.2
EPSS
1.5%
CVE-2021-24398 HIGH POC This Week

The Add new scene functionality in the Responsive 3D Slider WordPress plugin through 1.2 uses an id parameter which is not sanitised, escaped or validated before being inserted to a SQL statement,. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress SQLi Responsive 3D Slider
NVD WPScan
CVSS 3.1
7.2
EPSS
1.5%
CVE-2021-24397 HIGH POC This Week

The edit functionality in the MicroCopy WordPress plugin through 1.1.0 makes a get request to fetch the related option. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress SQLi Microcopy
NVD WPScan
CVSS 3.1
7.2
EPSS
1.5%
CVE-2021-24396 HIGH POC This Week

A pageid GET parameter of the GSEOR - WordPress SEO Plugin WordPress plugin through 1.3 is not sanitised, escaped or validated before inserting to a SQL statement, leading to SQL injection. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress SQLi Gseor
NVD WPScan
CVSS 3.1
7.2
EPSS
1.5%
CVE-2021-39535 MEDIUM POC This Month

An issue was discovered in libxsmm through v1.16.1-93. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Null Pointer Dereference Denial Of Service Libxsmm
NVD GitHub
CVSS 3.1
6.5
EPSS
0.8%
CVE-2021-39532 MEDIUM POC This Month

An issue was discovered in libslax through v0.22.1. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Null Pointer Dereference Denial Of Service Libslax
NVD GitHub
CVSS 3.1
6.5
EPSS
0.8%
CVE-2021-39523 MEDIUM POC This Month

An issue was discovered in libredwg through v0.10.1.3751. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Null Pointer Dereference Denial Of Service Libredwg
NVD GitHub
CVSS 3.1
6.5
EPSS
0.8%
CVE-2021-39521 MEDIUM POC This Month

An issue was discovered in libredwg through v0.10.1.3751. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Null Pointer Dereference Denial Of Service Libredwg
NVD GitHub
CVSS 3.1
6.5
EPSS
0.8%
CVE-2021-39520 MEDIUM POC This Month

An issue was discovered in libjpeg through 2020021. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Null Pointer Dereference Denial Of Service Libjpeg
NVD GitHub
CVSS 3.1
6.5
EPSS
0.8%
CVE-2021-39519 MEDIUM POC This Month

An issue was discovered in libjpeg through 2020021. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Null Pointer Dereference Denial Of Service Libjpeg
NVD GitHub
CVSS 3.1
6.5
EPSS
0.8%
CVE-2021-39518 MEDIUM POC This Month

An issue was discovered in libjpeg through 2020021. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Memory Corruption Libjpeg
NVD GitHub
CVSS 3.1
6.5
EPSS
0.8%
CVE-2021-39517 MEDIUM POC This Month

An issue was discovered in libjpeg through 2020021. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Null Pointer Dereference Denial Of Service Libjpeg
NVD GitHub
CVSS 3.1
6.5
EPSS
0.8%
CVE-2021-39516 MEDIUM POC This Month

An issue was discovered in libjpeg through 2020021. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Null Pointer Dereference Denial Of Service Libjpeg
NVD GitHub
CVSS 3.1
6.5
EPSS
0.8%
CVE-2021-39515 MEDIUM POC This Month

An issue was discovered in libjpeg through 2020021. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Null Pointer Dereference Denial Of Service Libjpeg
NVD GitHub
CVSS 3.1
6.5
EPSS
0.8%
CVE-2021-39514 MEDIUM POC This Month

An issue was discovered in libjpeg through 2020021. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Libjpeg
NVD GitHub
CVSS 3.1
6.5
EPSS
0.8%
CVE-2021-24585 MEDIUM POC This Month

The Timetable and Event Schedule WordPress plugin before 2.4.0 outputs the Hashed Password, Username and Email Address (along other less sensitive data) of the user related to the Even Head of the. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress Information Disclosure Timetable And Event Schedule
NVD WPScan
CVSS 3.1
6.5
EPSS
1.1%
CVE-2021-24657 MEDIUM POC This Month

The Limit Login Attempts WordPress plugin before 4.0.50 does not escape the IP addresses (which can be controlled by attacker via headers such as X-Forwarded-For) of attempted logins before. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

WordPress XSS Limit Login Attempts
NVD WPScan
CVSS 3.1
6.1
EPSS
1.6%
CVE-2021-39598 MEDIUM POC This Month

An issue was discovered in swftools through 20200710. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Null Pointer Dereference Denial Of Service Swftools
NVD GitHub
CVSS 3.1
5.5
EPSS
0.6%
CVE-2021-39597 MEDIUM POC This Month

An issue was discovered in swftools through 20200710. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Null Pointer Dereference Denial Of Service Swftools
NVD GitHub
CVSS 3.1
5.5
EPSS
0.6%
CVE-2021-39596 MEDIUM POC This Month

An issue was discovered in swftools through 20200710. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Null Pointer Dereference Denial Of Service Swftools
NVD GitHub
CVSS 3.1
5.5
EPSS
0.6%
CVE-2021-39594 MEDIUM POC This Month

Other An issue was discovered in swftools through 20200710. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Null Pointer Dereference Denial Of Service Swftools
NVD GitHub
CVSS 3.1
5.5
EPSS
0.6%
CVE-2021-39593 MEDIUM POC This Month

An issue was discovered in swftools through 20200710. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Null Pointer Dereference Denial Of Service Swftools
NVD GitHub
CVSS 3.1
5.5
EPSS
0.6%
CVE-2021-39592 MEDIUM POC This Month

An issue was discovered in swftools through 20200710. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Null Pointer Dereference Denial Of Service Swftools
NVD GitHub
CVSS 3.1
5.5
EPSS
0.6%
CVE-2021-39591 MEDIUM POC This Month

An issue was discovered in swftools through 20200710. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Null Pointer Dereference Denial Of Service Swftools
NVD GitHub
CVSS 3.1
5.5
EPSS
0.6%
CVE-2021-39590 MEDIUM POC This Month

An issue was discovered in swftools through 20200710. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Null Pointer Dereference Denial Of Service Swftools
NVD GitHub
CVSS 3.1
5.5
EPSS
0.6%
CVE-2021-39589 MEDIUM POC This Month

An issue was discovered in swftools through 20200710. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Null Pointer Dereference Denial Of Service Swftools
NVD GitHub
CVSS 3.1
5.5
EPSS
0.6%
CVE-2021-39588 MEDIUM POC This Month

An issue was discovered in swftools through 20200710. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Null Pointer Dereference Denial Of Service Swftools
NVD GitHub
CVSS 3.1
5.5
EPSS
0.6%
CVE-2021-39587 MEDIUM POC This Month

An issue was discovered in swftools through 20200710. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Null Pointer Dereference Denial Of Service Swftools
NVD GitHub
CVSS 3.1
5.5
EPSS
0.6%
CVE-2021-39585 MEDIUM POC This Month

An issue was discovered in swftools through 20200710. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Null Pointer Dereference Denial Of Service Swftools
NVD GitHub
CVSS 3.1
5.5
EPSS
0.6%
CVE-2021-39584 MEDIUM POC This Month

An issue was discovered in swftools through 20200710. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Null Pointer Dereference Denial Of Service Swftools
NVD GitHub
CVSS 3.1
5.5
EPSS
0.6%
CVE-2021-39583 MEDIUM POC This Month

An issue was discovered in swftools through 20200710. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Null Pointer Dereference Denial Of Service Swftools
NVD GitHub
CVSS 3.1
5.5
EPSS
0.6%
CVE-2021-39575 MEDIUM POC This Month

An issue was discovered in swftools through 20200710. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Null Pointer Dereference Denial Of Service Swftools
NVD GitHub
CVSS 3.1
5.5
EPSS
0.6%
CVE-2021-39563 MEDIUM POC This Month

An issue was discovered in swftools through 20200710. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Null Pointer Dereference Denial Of Service Swftools
NVD GitHub
CVSS 3.1
5.5
EPSS
0.6%
CVE-2021-39562 MEDIUM POC This Month

An issue was discovered in swftools through 20200710. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Null Pointer Dereference Denial Of Service Swftools
NVD GitHub
CVSS 3.1
5.5
EPSS
0.6%
CVE-2021-39559 MEDIUM POC This Month

An issue was discovered in swftools through 20200710. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Null Pointer Dereference Denial Of Service Swftools
NVD GitHub
CVSS 3.1
5.5
EPSS
0.6%
CVE-2021-39557 MEDIUM POC This Month

An issue was discovered in swftools through 20200710. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Null Pointer Dereference Denial Of Service Swftools
NVD GitHub
CVSS 3.1
5.5
EPSS
0.6%
CVE-2021-39556 MEDIUM POC This Month

An issue was discovered in swftools through 20200710. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Null Pointer Dereference Denial Of Service Swftools
NVD GitHub
CVSS 3.1
5.5
EPSS
0.6%
Prev Page 2 of 4 Next

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy