Vulnerabilities > Debian

DATE	CVE	VULNERABILITY TITLE	RISK
2021-04-06	CVE-2021-28658	Path Traversal vulnerability in multiple products In Django 2.2 before 2.2.20, 3.0 before 3.0.14, and 3.1 before 3.1.8, MultiPartParser allowed directory traversal via uploaded files with suitably crafted file names. network low complexity djangoproject debian fedoraproject CWE-22	5.3
2021-04-06	CVE-2021-30164	Redmine before 4.0.8 and 4.1.x before 4.1.2 allows attackers to bypass the add_issue_notes permission requirement by leveraging the Issues API. network low complexity redmine debian	7.5
2021-04-06	CVE-2021-30163	Information Exposure vulnerability in multiple products Redmine before 4.0.8 and 4.1.x before 4.1.2 allows attackers to discover the names of private projects if issue-journal details exist that have changes to project_id values. network low complexity redmine debian CWE-200	5.0
2021-04-06	CVE-2020-36308	Injection vulnerability in multiple products Redmine before 4.0.7 and 4.1.x before 4.1.1 allows attackers to discover the subject of a non-visible issue by performing a CSV export and reading time entries. network low complexity redmine debian CWE-74	5.0
2021-04-06	CVE-2020-36307	Cross-site Scripting vulnerability in multiple products Redmine before 4.0.7 and 4.1.x before 4.1.1 has stored XSS via textile inline links. network redmine debian CWE-79	4.3
2021-04-06	CVE-2020-36306	Cross-site Scripting vulnerability in multiple products Redmine before 4.0.7 and 4.1.x before 4.1.1 has XSS via the back_url field. network redmine debian CWE-79	4.3
2021-04-06	CVE-2019-25026	Redmine before 3.4.13 and 4.x before 4.0.6 mishandles markup data during Textile formatting. network low complexity redmine debian	5.0
2021-04-06	CVE-2021-30158	Improper Authentication vulnerability in multiple products An issue was discovered in MediaWiki before 1.31.12 and 1.32.x through 1.35.x before 1.35.2. network low complexity mediawiki debian fedoraproject CWE-287	5.3
2021-04-06	CVE-2021-30157	Cross-site Scripting vulnerability in multiple products An issue was discovered in MediaWiki before 1.31.12 and 1.32.x through 1.35.x before 1.35.2. network low complexity mediawiki debian fedoraproject CWE-79	6.1
2021-04-06	CVE-2021-30154	Cross-site Scripting vulnerability in multiple products An issue was discovered in MediaWiki before 1.31.12 and 1.32.x through 1.35.x before 1.35.2. network low complexity mediawiki debian fedoraproject CWE-79	6.1

Vulnerabilities > Debian {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Debian"}]}

Vulnerabilities > Debian