Vulnerabilities > Insufficient Verification of Data Authenticity
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-04-26 | CVE-2021-31783 | Insufficient Verification of Data Authenticity vulnerability in Piwigo Localfiles Editor show_default.php in the LocalFilesEditor extension before 11.4.0.1 for Piwigo allows Local File Inclusion because the file parameter is not validated with a proper regular-expression check. | 7.5 |
| 2021-04-20 | CVE-2021-29462 | Insufficient Verification of Data Authenticity vulnerability in Pupnp Project Pupnp The Portable SDK for UPnP Devices is an SDK for development of UPnP device and control point applications. | 9.8 |
| 2021-03-26 | CVE-2021-20271 | Insufficient Verification of Data Authenticity vulnerability in multiple products A flaw was found in RPM's signature check functionality when reading a package file. | 7.0 |
| 2021-03-02 | CVE-2021-21320 | Insufficient Verification of Data Authenticity vulnerability in Matrix-React-Sdk Project Matrix-React-Sdk matrix-react-sdk is an npm package which is a Matrix SDK for React Javascript. | 4.3 |
| 2021-02-01 | CVE-2021-3349 | Insufficient Verification of Data Authenticity vulnerability in Gnome Evolution GNOME Evolution through 3.38.3 produces a "Valid signature" message for an unknown identifier on a previously trusted key because Evolution does not retrieve enough information from the GnuPG API. | 3.3 |
| 2021-02-01 | CVE-2020-26547 | Insufficient Verification of Data Authenticity vulnerability in Monal Monal before 4.9 does not implement proper sender verification on MAM and Message Carbon (XEP-0280) results. | 9.8 |
| 2020-11-07 | CVE-2020-16122 | Insufficient Verification of Data Authenticity vulnerability in multiple products PackageKit's apt backend mistakenly treated all local debs as trusted. | 7.8 |
| 2020-10-22 | CVE-2020-27670 | Insufficient Verification of Data Authenticity vulnerability in multiple products An issue was discovered in Xen through 4.14.x allowing x86 guest OS users to cause a denial of service (data corruption), cause a data leak, or possibly gain privileges because an AMD IOMMU page-table entry can be half-updated. | 7.8 |
| 2020-10-19 | CVE-2020-15262 | Insufficient Verification of Data Authenticity vulnerability in Webpack-Subresource-Integrity Project Webpack-Subresource-Integrity In webpack-subresource-integrity before version 1.5.1, all dynamically loaded chunks receive an invalid integrity hash that is ignored by the browser, and therefore the browser cannot validate their integrity. | 3.7 |
| 2020-10-16 | CVE-2020-1677 | Insufficient Verification of Data Authenticity vulnerability in Juniper Mist Cloud UI When SAML authentication is enabled, Juniper Networks Mist Cloud UI might incorrectly handle child elements in SAML responses, allowing a remote attacker to modify a valid SAML response without invalidating its cryptographic signature to bypass SAML authentication security controls. | 7.2 |