Skip to main content
CVE-2021-28237 CRITICAL POC Act Now

LibreDWG v0.12.3 was discovered to contain a heap-buffer overflow via decode_preR13. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Memory Corruption Libredwg
NVD GitHub
CVSS 3.1
9.8
EPSS
1.4%
CVE-2021-43679 CRITICAL POC Act Now

ecshop v2.7.3 is affected by a SQL injection vulnerability in shopex\ecshop\upload\api\client\api.php. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi PHP Ecshop
NVD GitHub
CVSS 3.1
9.8
EPSS
1.6%
CVE-2021-26777 CRITICAL POC Act Now

Buffer overflow vulnerability in function SetFirewall in index.cgi in CIRCUTOR COMPACT DC-S BASIC smart metering concentrator Firwmare version CIR_CDC_v1.2.17, allows attackers to execute arbitrary. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow RCE Compact Dc S Basic Firmware
NVD GitHub
CVSS 3.1
9.8
EPSS
2.4%
CVE-2021-23264 CRITICAL PATCH Act Now

Installations, where crafter-search is not protected, allow unauthenticated remote attackers to create, view, and delete search indexes. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Crafter Cms
NVD
CVSS 3.1
9.1
EPSS
1.1%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy