Welcome to cxsecurity. enjoy
Bugtraq Stats

Yesterday: {{ x.iyest }}
Last month: {{ x.imont }}
Current month: {{ x.icurr }}
Total: {{ x.itotal }}

CVE database

Last Update: {{ x.cyest }}
Last month: {{ x.cmont }}
Current month: {{ x.ccur }}
Total CVE: {{ x.ctotal }}

Affected
{{te.id}}. {{te.nameDis}} ({{te.count}})
Random comment
{{ x.title }}
{{ x.auth }}
{{ x.text }}

Voted
{{ x.nameSh }} +{{x.pos}} {{x.neg}}

2021-12-06
Med.
Low
Med.
High
Med.
Med.
2021-12-05
High
Med.
2021-12-04
High
Low
Med.
Med.
High

The latest CVEs

2021-12-07
CVE-2021-36564
ThinkPHP v6.0.8 was discovered to contain a deserialization vulnerability via the component vendor\league\flysystem-cached-adapter\src\Storage\Adapter.php.
CVE-2021-36567
ThinkPHP v6.0.8 was discovered to contain a deserialization vulnerability via the component League\Flysystem\Cached\Storage\AbstractCache.
CVE-2021-37298
Laravel v5.1 was discovered to contain a deserialization vulnerability via the component \Mockery\Generator\DefinedTargetClass.
CVE-2021-40091
An SSRF issue was discovered in SquaredUp for SCOM 5.2.1.6654.
CVE-2021-40313
Piwigo v11.5 was discovered to contain a SQL injection vulnerability via the parameter pwg_token in /admin/batch_manager_global.php.
CVE-2021-4075
snipe-it is vulnerable to Server-Side Request Forgery (SSRF)
CVE-2021-31631
b2evolution CMS v7.2.3 was discovered to contain a Cross-Site Request Forgery (CSRF) via the User login page. This vulnerability allows attackers to escalate privileges.
CVE-2021-31632
b2evolution CMS v7.2.3 was discovered to contain a SQL injection vulnerability via the parameter cfqueryparam in the User login section. This vulnerability allows attackers to execute arbitrary code via a crafted input.
CVE-2021-44677
An issue (1 of 6) was discovered in Veritas Enterprise Vault through 14.1.2. On start-up, the Enterprise Vault application starts several services that listen on random .NET Remoting TCP ports for possible commands from client applications. These TCP services can be exploited due to deserialization behavior that is inherent to the .NET Remoting ser...
CVE-2021-44678
An issue (2 of 6) was discovered in Veritas Enterprise Vault through 14.1.2. On start-up, the Enterprise Vault application starts several services that listen on random .NET Remoting TCP ports for possible commands from client applications. These TCP services can be exploited due to deserialization behavior that is inherent to the .NET Remoting ser...

Dorks

2021-12-05
Med.
WordPress DZS Zoomsounds 6.45 Arbitrary File Read( CVE-2021-39316 )
inurl:/wp-content/plugins/dzs-zoomsounds/
Uriel Yochpaz
2021-12-03
Med.
Openbiz Cubi 3.0.8 Unrestricted File Upload Vulnerability
" System Login - Cubi Platform "
indoushka
High
WordPress Plugin DZS Zoomsounds 6.45 Arbitrary File Read (Unauthenticated)( CVE-2021-39316 )
inurl:/wp-content/plugins/dzs-zoomsounds/
Uriel Yochpaz
2021-12-02
Med.
Harshainfotech - Sql Injection Vulnerability
"Designed & Maintained by | Harshainfotech"
behrouz mansoori
2021-11-30
Med.
Design By Magic Mayo - Sql Injection Vulnerability
"Design By Magic Mayo"
behrouz mansoori

Copyright 2021, cxsecurity.com

 

Back to Top