Welcome to cxsecurity. enjoy
Bugtraq Stats

Yesterday: {{ x.iyest }}
Last month: {{ x.imont }}
Current month: {{ x.icurr }}
Total: {{ x.itotal }}

CVE database

Last Update: {{ x.cyest }}
Last month: {{ x.cmont }}
Current month: {{ x.ccur }}
Total CVE: {{ x.ctotal }}

Affected
{{te.id}}. {{te.nameDis}} ({{te.count}})
Random comment
{{ x.title }}
{{ x.auth }}
{{ x.text }}

Voted
{{ x.nameSh }} +{{x.pos}} {{x.neg}}

2021-09-15
High
High
Med.
High
Med.
2021-09-13
Low
Med.
Low
Low
Low
High
Med.
2021-09-11
Med.

The latest CVEs

2021-09-17
CVE-2021-23442
This affects all versions of package @cookiex/deep. The global proto object can be polluted using the __proto__ object.
CVE-2021-39327
The BulletProof Security WordPress plugin is vulnerable to sensitive information disclosure due to a file path disclosure in the publicly accessible ~/db_backup_log.txt file which grants attackers the full path of the site, in addition to the path of database backup files. This affects versions up to, and including, 5.1.
CVE-2021-3805
object-path is vulnerable to Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')
CVE-2021-1939
Null pointer dereference occurs due to improper validation when the preemption feature enablement is toggled in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Wearables
CVE-2021-1947
Use-after-free vulnerability in kernel graphics driver because of storing an invalid pointer in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
CVE-2021-1976
A use after free can occur due to improper validation of P2P device address in PD Request frame in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking
CVE-2021-30260
Possible Integer overflow to buffer overflow issue can occur due to improper validation of input parameters when extscan hostlist configuration command is received in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdra...
CVE-2021-30261
Possible integer and heap overflow due to lack of input command size validation while handling beacon template update command from HLOS in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables
CVE-2021-3803
nth-check is vulnerable to Inefficient Regular Expression Complexity
CVE-2021-3804
taro is vulnerable to Inefficient Regular Expression Complexity

Dorks

2021-09-13
Low
WordPress Themes Haberadam IDOR and Full Path Disclosure via JSON API ( Unathenticated )
inurl:/wp-content/themes/haberadam
KimiHmei7
2021-09-11
Med.
Ficus Global - Sql Injection Vulnerability
Designed & Maintained by Ficus Global"
behrouz mansoori
Med.
Web Smile India - Sql Injection Vulnerability
"Maintained By Web Smile India"
behrouz mansoori
2021-09-10
Med.
Craftbox Technology - Sql Injection Vulnerability
"by Craftbox Technology"
behrouz mansoori
Med.
Five design - Sql Injection Vulnerability
"Website designed and developed by Five design"
behrouz mansoori

Copyright 2021, cxsecurity.com

 

Back to Top