CVE-2021-38303
A SQL injection vulnerability exists in Sureline SUREedge Migrator 7.0.7.29360.
Source: CVE-2021-38303
[월:] 2021년 09월
CVE-2021-37267
CVE-2021-37267
Cross Site Scripting (XSS) vulnerability exists in all versions of KindEditor, which can be exploited by an attacker to obtain user cookie information.
Source: CVE-2021-37267
CVE-2021-37271
CVE-2021-37271
Cross Site Scripting (XSS) vulnerability exists in UEditor v1.4.3.3, which can be exploited by an attacker to obtain user cookie information.
Source: CVE-2021-37271
CVE-2021-30086
CVE-2021-30086
Cross Site Scripting (XSS) vulnerability exists in KindEditor (Chinese versions) 4.1.12, which can be exploited by an attacker to obtain user cookie information.
Source: CVE-2021-30086
CVE-2021-41318
CVE-2021-41318
In Progress WhatsUp Gold prior to version 21.1.0, an application endpoint failed to adequately sanitize malicious input. which could allow an unauthenticated attacker to execute arbitrary code in a victim’s browser.
Source: CVE-2021-41318
CVE-2021-37273
CVE-2021-37273
A Denial of Service issue exists in China Telecom Corporation EPON Tianyi Gateway ZXHN F450(EPON ONU) 3.0. Tianyi Gateway is a hardware terminal of "Optical Modem Smart Router." Attackers can use this vulnerability to restart the device multiple times.
Source: CVE-2021-37273
CVE-2021-36365
CVE-2021-36365
Nagios XI before 5.8.5 has Incorrect Permission Assignment for repairmysql.sh.
Source: CVE-2021-36365
CVE-2021-36363
CVE-2021-36363
Nagios XI before 5.8.5 has Incorrect Permission Assignment for migrate.php.
Source: CVE-2021-36363
CVE-2021-36364
CVE-2021-36364
Nagios XI before 5.8.5 incorrectly allows backup_xi.sh wildcards.
Source: CVE-2021-36364
CVE-2021-36366
CVE-2021-36366
Nagios XI before 5.8.5 incorrectly allows manage_services.sh wildcards.
Source: CVE-2021-36366