Vulnerabilities > High

DATE	CVE	VULNERABILITY TITLE	RISK
2021-09-07	CVE-2020-19750	Out-of-bounds Read vulnerability in Gpac 0.8.0 An issue was discovered in gpac 0.8.0. network low complexity gpac CWE-125	7.5
2021-09-07	CVE-2020-19752	NULL Pointer Dereference vulnerability in multiple products The find_color_or_error function in gifsicle 1.92 contains a NULL pointer dereference. network low complexity lcdf fedoraproject CWE-476	7.5
2021-09-07	CVE-2021-38705	Cross-Site Request Forgery (CSRF) vulnerability in Cliniccases 7.3.3 ClinicCases 7.3.3 is affected by Cross-Site Request Forgery (CSRF). network low complexity cliniccases CWE-352	8.8
2021-09-07	CVE-2021-38706	SQL Injection vulnerability in Cliniccases 7.3.3 messages_load.php in ClinicCases 7.3.3 suffers from a blind SQL injection vulnerability, which allows low-privileged attackers to execute arbitrary SQL commands through a vulnerable parameter. network low complexity cliniccases CWE-89	8.8
2021-09-07	CVE-2021-39503	Code Injection vulnerability in PHPmywind 5.6 PHPMyWind 5.6 is vulnerable to Remote Code Execution. network low complexity phpmywind CWE-94	7.2
2021-09-07	CVE-2021-40143	Injection vulnerability in Sonatype Nexus Repository Manager 3 Sonatype Nexus Repository 3.x through 3.33.1-01 is vulnerable to an HTTP header injection. network low complexity sonatype CWE-74	8.2
2021-09-07	CVE-2021-38142	Cleartext Transmission of Sensitive Information vulnerability in Barco Mirrorop Windows Sender Barco MirrorOp Windows Sender before 2.5.3.65 uses cleartext HTTP and thus allows rogue software upgrades. local low complexity barco CWE-319	8.8
2021-09-07	CVE-2021-39197	Unspecified vulnerability in Better Errors Project Better Errors better_errors is an open source replacement for the standard Rails error page with more information rich error pages. network low complexity better-errors-project	8.8
2021-09-07	CVE-2020-19131	Out-of-bounds Write vulnerability in multiple products Buffer Overflow in LibTiff v4.0.10 allows attackers to cause a denial of service via the "invertImage()" function in the component "tiffcrop". network low complexity simplesystems debian CWE-787	7.5
2021-09-07	CVE-2020-7819	SQL Injection vulnerability in Ntracker USB Enterprise A SQL-Injection vulnerability in the nTracker USB Enterprise(secure USB management solution) allows a remote unauthenticated attacker to perform SQL query to access username password and other session related information. network low complexity ntracker CWE-89	7.5

Vulnerabilities > High {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"High"}]}

Vulnerabilities > High