Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-09-07 | CVE-2021-32800 | Unspecified vulnerability in Nextcloud Server Nextcloud server is an open source, self hosted personal cloud. | 8.1 |
| 2021-09-07 | CVE-2021-37628 | Authorization Bypass Through User-Controlled Key vulnerability in Nextcloud Richdocuments Nextcloud Richdocuments is an open source collaborative office suite. | 7.5 |
| 2021-09-07 | CVE-2021-39500 | Path Traversal vulnerability in Eyoucms 1.5.4 Eyoucms 1.5.4 is vulnerable to Directory Traversal. | 7.5 |
| 2021-09-07 | CVE-2020-19750 | Out-of-bounds Read vulnerability in Gpac 0.8.0 An issue was discovered in gpac 0.8.0. | 7.5 |
| 2021-09-07 | CVE-2020-19752 | NULL Pointer Dereference vulnerability in multiple products The find_color_or_error function in gifsicle 1.92 contains a NULL pointer dereference. | 7.5 |
| 2021-09-07 | CVE-2021-38705 | Cross-Site Request Forgery (CSRF) vulnerability in Cliniccases 7.3.3 ClinicCases 7.3.3 is affected by Cross-Site Request Forgery (CSRF). | 8.8 |
| 2021-09-07 | CVE-2021-38706 | SQL Injection vulnerability in Cliniccases 7.3.3 messages_load.php in ClinicCases 7.3.3 suffers from a blind SQL injection vulnerability, which allows low-privileged attackers to execute arbitrary SQL commands through a vulnerable parameter. | 8.8 |
| 2021-09-07 | CVE-2021-39503 | Code Injection vulnerability in PHPmywind 5.6 PHPMyWind 5.6 is vulnerable to Remote Code Execution. | 7.2 |
| 2021-09-07 | CVE-2021-40143 | Injection vulnerability in Sonatype Nexus Repository Manager 3 Sonatype Nexus Repository 3.x through 3.33.1-01 is vulnerable to an HTTP header injection. | 8.2 |
| 2021-09-07 | CVE-2021-38142 | Cleartext Transmission of Sensitive Information vulnerability in Barco Mirrorop Windows Sender Barco MirrorOp Windows Sender before 2.5.3.65 uses cleartext HTTP and thus allows rogue software upgrades. | 8.8 |