Inadequate filtering of form contents could allow to overwrite the author field. The affected core components were com_fields, com_categories, com_banners,... weiterlesen

Missing filtering of messages showed to users that could lead to xss issues. CVE-2021-23129 This vulnerability affects the following application... weiterlesen

Missing filtering of feed fields could lead to xss issues. CVE-2021-23130 This vulnerability affects the following application versions: ... weiterlesen

Missing input validation within the template manager. CVE-2021-23131 This vulnerability affects the following application versions: ... weiterlesen

There was usage of the insecure rand() function within the process of generating the 2FA secret. There was usage of an insufficient length for the 2FA... weiterlesen

The core shipped but unused randval implementation within FOF (FOFEncryptRandval) used an potential insecure implementation. That has now been replaced... weiterlesen

Incorrect ACL checks could allow unauthorized change of the category for an article. CVE-2021-26027 This vulnerability affects the following application... weiterlesen

Extracting a specially crafted zip package could write files outside of the intended path. CVE-2021-26028 This vulnerability affects the following... weiterlesen

com_media allowed paths that were not intended for image uploads. CVE-2021-23132 This vulnerability affects the following application versions: ... weiterlesen

IBM API Connect V10 and V2018 could allow an attacker who has intercepted a registration invitation link to impersonate the registered user or obtain sensitive... weiterlesen

IBM DataPower Gateway V10 and V2018 could allow a local attacker with administrative privileges to execute arbitrary code on the system using a server-side... weiterlesen

IBM API Connect V10 is impacted by insecure communications during database replication. As the data replication happens over insecure communication channels,... weiterlesen

RATCF is an open-source framework for hosting Cyber-Security Capture the Flag events. In affected versions of RATCF users with multi factor authentication... weiterlesen

GLPI is an open-source asset and IT management software package that provides ITIL Service Desk features, licenses tracking and software auditing. In GLPI... weiterlesen

GLPI is an open-source asset and IT management software package that provides ITIL Service Desk features, licenses tracking and software auditing. In GLPI... weiterlesen

GLPI is an open-source asset and IT management software package that provides ITIL Service Desk features, licenses tracking and software auditing. In GLPI... weiterlesen

GLPI is an open-source asset and IT management software package that provides ITIL Service Desk features, licenses tracking and software auditing. In GLPI... weiterlesen

A vulnerability, which was classified as problematic, was found in Apple Mac OS X up to 10.2.7 (Operating System). Affected is the function arplookup of... weiterlesen

... weiterlesen

... weiterlesen

Dr.Web Security Space versions 11 and 12 allow elevation of privilege for local users without administrative privileges to NT AUTHORITY\SYSTEM due to insufficient... weiterlesen

The System Encryption for the merchant registration was revealing the details which can be further exploitable for the Registration of the merchant. After... weiterlesen

A vulnerability classified as problematic was found in Microsoft Exchange 5.5 (Groupware Software). This vulnerability affects an unknown code block of... weiterlesen

A vulnerability was found in Microsoft Windows NT 4.0/2000/XP (Operating System). It has been rated as critical. Affected by this issue is an unknown part... weiterlesen

A vulnerability was found in Microsoft Internet Explorer up to 6 (Web Browser). It has been declared as critical. Affected by this vulnerability is an... weiterlesen

Doctor Appointment System version 1.0 suffers from multiple cross site scripting vulnerabilities. These are additional findings with original discovery... weiterlesen

A vulnerability was found in RarLabs WinRar up to 3.20 (File Compression Software) and classified as problematic. This issue affects some unknown processing... weiterlesen

A vulnerability classified as critical has been found in Sun Sendmail up to 8.12.9 (Mail Server Software). Affected is the function prescan of the file... weiterlesen

A vulnerability was found in Microsoft Internet Explorer up to 6 (Web Browser). It has been classified as problematic. This affects an unknown code block.... weiterlesen

A vulnerability was found in Microsoft Windows NT 4.0/2000/XP/Server 2003 (Operating System). It has been declared as critical. Affected by this vulnerability... weiterlesen

A vulnerability was found in NullSoft WinAmp 2.81/2.91/3.0/3.1 (Multimedia Player Software). It has been declared as critical. This vulnerability affects... weiterlesen

A vulnerability was found in Microsoft Internet Explorer up to 6 (Web Browser) and classified as critical. Affected by this issue is an unknown function... weiterlesen

A vulnerability, which was classified as critical, was found in SAP Internet Transaction Server (the affected version unknown). This affects an unknown... weiterlesen

A vulnerability was found in Microsoft Windows NT 4.0/2000/XP/Server 2003 (Operating System). It has been classified as critical. This affects an unknown... weiterlesen

A vulnerability was found in Microsoft Internet Explorer up to 6 (Web Browser) and classified as critical. Affected by this issue is an unknown part in... weiterlesen

A vulnerability was found in Microsoft Internet Explorer up to 6 (Web Browser). It has been rated as critical. Affected by this issue is an unknown code... weiterlesen

A vulnerability, which was classified as very critical, has been found in FreeBSD, OpenBSD and MacOS X (Operating System) (affected version not known).... weiterlesen

Oryx Embedded CycloneTCP 1.7.6 to 2.0.0, fixed in 2.0.2, is affected by incorrect input validation, which may cause a denial of service (DoS). To exploit... weiterlesen

A vulnerability was found in KDE Konqueror up to 3.1.2 (Web Browser). It has been classified as problematic. Affected is an unknown functionality of the... weiterlesen

A vulnerability, which was classified as problematic, was found in Cisco IOS up to 12.2 (Router Operating System). This affects an unknown code block of... weiterlesen

A vulnerability was found in Microsoft MSDE and SQL Server 7/2000 (Database Software). It has been rated as critical. This issue affects an unknown functionality... weiterlesen

A vulnerability, which was classified as problematic, was found in Microsoft Windows NT 4.0 (Operating System). Affected is an unknown part of the component... weiterlesen

A vulnerability, which was classified as critical, has been found in Microsoft DirectX up to 9.0a. This issue affects some unknown functionality in the... weiterlesen

A vulnerability was found in Apache HTTP Server up to 1.3.27 on Win32/OS2 (Web Server) and classified as critical. This issue affects an unknown part of... weiterlesen

A vulnerability was found in Microsoft Windows NT 4.0/2000/XP/Server 2003 (Operating System). It has been declared as critical. This vulnerability affects... weiterlesen

A vulnerability, which was classified as critical, was found in Microsoft Windows NT 4.0/2000/XP (Operating System). This affects an unknown code of the... weiterlesen

A vulnerability was found in Microsoft Windows 2000 (Operating System). It has been rated as critical. Affected by this issue is an unknown code block... weiterlesen

... weiterlesen

... weiterlesen

... weiterlesen