Vulnerabilities > Improper Encoding or Escaping of Output

DATE CVE VULNERABILITY TITLE RISK
2021-08-03 CVE-2021-30589 Improper Encoding or Escaping of Output vulnerability in multiple products
Insufficient validation of untrusted input in Sharing in Google Chrome prior to 92.0.4515.107 allowed a remote attacker to bypass navigation restrictions via a crafted click-to-call link.
network
low complexity
google fedoraproject CWE-116
4.3
2021-08-02 CVE-2021-32812 Improper Encoding or Escaping of Output vulnerability in Tekmonks Monkshu 2.90
Monkshu is an enterprise application server for mobile apps (iOS and Android), responsive HTML 5 apps, and JSON API services.
network
low complexity
tekmonks CWE-116
6.1
2021-07-30 CVE-2021-34630 Improper Encoding or Escaping of Output vulnerability in Gtranslate
In the Pro and Enterprise versions of GTranslate < 2.8.65, the gtranslate_request_uri_var function runs at the top of all pages and echoes out the contents of $_SERVER['REQUEST_URI'].
network
low complexity
gtranslate CWE-116
6.1
2021-07-23 CVE-2021-20333 Improper Encoding or Escaping of Output vulnerability in Mongodb
Sending specially crafted commands to a MongoDB Server may result in artificial log entries being generated or for log entries to be split.
network
low complexity
mongodb CWE-116
5.3
2021-07-12 CVE-2021-30640 Improper Encoding or Escaping of Output vulnerability in multiple products
A vulnerability in the JNDI Realm of Apache Tomcat allows an attacker to authenticate using variations of a valid user name and/or to bypass some of the protection provided by the LockOut Realm.
network
high complexity
apache oracle debian CWE-116
6.5
2021-06-11 CVE-2021-23205 Improper Encoding or Escaping of Output vulnerability in Gallagher Command Centre
Improper Encoding or Escaping in Gallagher Command Centre Server allows a Command Centre Operator to alter the configuration of Controllers and other hardware items beyond their privilege.
network
low complexity
gallagher CWE-116
8.1
2021-05-28 CVE-2021-20195 Improper Encoding or Escaping of Output vulnerability in Redhat Keycloak
A flaw was found in keycloak in versions before 13.0.0.
network
low complexity
redhat CWE-116
critical
9.6
2021-05-27 CVE-2021-31806 Improper Encoding or Escaping of Output vulnerability in multiple products
An issue was discovered in Squid before 4.15 and 5.x before 5.0.6.
network
low complexity
squid-cache debian fedoraproject netapp CWE-116
6.5
2021-05-27 CVE-2021-28662 Improper Encoding or Escaping of Output vulnerability in multiple products
An issue was discovered in Squid 4.x before 4.15 and 5.x before 5.0.6.
network
low complexity
squid-cache debian fedoraproject CWE-116
6.5
2021-05-20 CVE-2020-4850 Improper Encoding or Escaping of Output vulnerability in IBM Gpfs.Tct.Server
IBM Spectrum Scale 1.1.1.0 through 1.1.8.4 Transparent Cloud Tiering could allow a remote attacker to obtain sensitive information, caused by the leftover files after configuration.
network
low complexity
ibm CWE-116
7.5