Vulnerabilities > Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-05-06 | CVE-2020-3246 | Injection vulnerability in Cisco Umbrella A vulnerability in the web server of Cisco Umbrella could allow an unauthenticated, remote attacker to perform a carriage return line feed (CRLF) injection attack against a user of an affected service. | 4.3 |
| 2020-05-06 | CVE-2020-12108 | Injection vulnerability in multiple products /options/mailman in GNU Mailman before 2.1.31 allows Arbitrary Content Injection. | 6.5 |
| 2020-05-04 | CVE-2020-5336 | Injection vulnerability in RSA Archer RSA Archer, versions prior to 6.7 P1 (6.7.0.1), contain a URL injection vulnerability. | 6.1 |
| 2020-05-04 | CVE-2019-13285 | Injection vulnerability in Cososys Endpoint Protector 5.1.0.2 CoSoSys Endpoint Protector 5.1.0.2 allows Host Header Injection. | 7.5 |
| 2020-05-04 | CVE-2020-1961 | Injection vulnerability in Apache Syncope Vulnerability to Server-Side Template Injection on Mail templates for Apache Syncope 2.0.X releases prior to 2.0.15, 2.1.X releases prior to 2.1.6, enabling attackers to inject arbitrary JEXL expressions, leading to Remote Code Execution (RCE) was discovered. | 9.8 |
| 2020-04-30 | CVE-2019-12425 | Injection vulnerability in Apache Ofbiz 17.12.01 Apache OFBiz 17.12.01 is vulnerable to Host header injection by accepting arbitrary host | 7.5 |
| 2020-04-29 | CVE-2017-18860 | Injection vulnerability in Netgear products Certain NETGEAR devices are affected by debugging command execution. | 7.7 |
| 2020-04-29 | CVE-2017-18856 | Injection vulnerability in Netgear Readynas OS Firmware NETGEAR ReadyNAS devices before 6.6.1 are affected by command injection. | 6.7 |
| 2020-04-29 | CVE-2017-18855 | Injection vulnerability in Netgear Wnr854T Firmware NETGEAR WNR854T devices before 1.5.2 are affected by command execution. | 8.8 |
| 2020-04-29 | CVE-2017-18854 | Injection vulnerability in Netgear Readynas OS Firmware NETGEAR ReadyNAS 6.6.1 and earlier is affected by command injection. | 6.7 |