CVE-2020-18671 (roundcube)
Cross Site Scripting (XSS) vulnerability in Roundcube Mail <=1.4.4 via smtp config in /installer/test.php. Devamını Oku
Devamını oku
CVE-2020-18668
Cross Site Scripting (XSS) vulnerabililty in WebPort <=1.19.1 via the description parameter to script/listcalls. Devamını Oku
CVE-2020-18667
SQL Injection vulnerability in WebPort <=1.19.1 via the new connection, parameter name in type-conn. Devamını Oku
CVE-2020-18662
SQL Injection vulnerability in gnuboard5 <=v5.3.2.8 via the table_prefix parameter in install_db.php. Devamını Oku
CVE-2020-18663
Cross Site Scripting (XSS) vulnerability in gnuboard5 <=v5.3.2.8 via the act parameter in bbs/move_update.php. Devamını Oku
CVE-2020-18664
Cross Site Scripting (XSS) vulnerability in WebPort <=1.19.1via the connection name parameter in type-conn. Devamını Oku
CVE-2020-18665
Directory Traversal vulnerability in WebPort <=1.19.1 in tags of system settings. Devamını Oku
CVE-2020-18666
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2020-18664. Reason: This candidate is a duplicate of CVE-2020-18664. Notes: All CVE users should reference CVE-2020-18664 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage. Devamını Oku
CVE-2020-21783
In IBOS 4.5.4 the email function has a cross site scripting (XSS) vulnerability in emailbody[content] parameter. Devamını Oku
CVE-2020-21784
phpwcms 1.9.13 is vulnerable to Code Injection via /phpwcms/setup/setup.php. Devamını Oku
CVE-2020-21785
In IBOS 4.5.4 Open, the database backup has Command Injection Vulnerability. Devamını Oku
CVE-2020-21786
In IBOS 4.5.4 Open, Arbitrary File Inclusion causes getshell via /system/modules/dashboard/controllers/CronController.php. Devamını Oku