Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-03-19 | CVE-2021-27520 | Cross-site Scripting vulnerability in Fudforum 3.1.0 A cross-site scripting (XSS) issue in FUDForum 3.1.0 allows remote attackers to inject JavaScript via index.php in the "author" parameter. | 4.3 |
| 2021-03-19 | CVE-2021-27519 | Cross-site Scripting vulnerability in Fudforum 3.1.0 A cross-site scripting (XSS) issue in FUDForum 3.1.0 allows remote attackers to inject JavaScript via index.php in the "srch" parameter. | 4.3 |
| 2021-03-19 | CVE-2021-26992 | Unspecified vulnerability in Netapp Cloud Manager Cloud Manager versions prior to 3.9.4 are susceptible to a vulnerability which could allow a remote attacker to cause a Denial of Service (DoS). | 5.0 |
| 2021-03-19 | CVE-2021-26991 | Unspecified vulnerability in Netapp Cloud Manager Cloud Manager versions prior to 3.9.4 contain an insecure Cross-Origin Resource Sharing (CORS) policy which could allow a remote attacker to interact with Cloud Manager. | 5.0 |
| 2021-03-19 | CVE-2021-26990 | Missing Authorization vulnerability in Netapp Cloud Manager Cloud Manager versions prior to 3.9.4 are susceptible to a vulnerability that could allow a remote attacker to overwrite arbitrary system files. | 9.4 |
| 2021-03-19 | CVE-2021-20077 | Unspecified vulnerability in Tenable Nessus Agent Nessus Agent versions 7.2.0 through 8.2.2 were found to inadvertently capture the IAM role security token on the local host during initial linking of the Nessus Agent when installed on an Amazon EC2 instance. | 6.7 |
| 2021-03-19 | CVE-2019-10127 | Improper Access Control vulnerability in Postgresql A vulnerability was found in postgresql versions 11.x prior to 11.3. | 4.3 |
| 2021-03-19 | CVE-2021-25278 | Cross-site Scripting vulnerability in Ftapi FTAPI 4.0 through 4.10 allows XSS via an SVG document to the Background Image upload feature in the Submit Box Template Editor. | 3.5 |
| 2021-03-19 | CVE-2021-25277 | Cross-site Scripting vulnerability in Ftapi FTAPI 4.0 - 4.10 allows XSS via a crafted filename to the alternative text hover box in the file submission component. | 4.3 |
| 2021-03-19 | CVE-2021-27906 | A carefully crafted PDF file can trigger an OutOfMemory-Exception while loading the file. | 5.5 |