Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-10-22 | CVE-2020-23038 | Path Traversal vulnerability in Kumilabs Swift File Transfer Swift File Transfer Mobile v1.1.2 and below was discovered to contain an information disclosure vulnerability in the path parameter. | 7.5 |
| 2021-10-22 | CVE-2020-23040 | Path Traversal vulnerability in SKY File Project SKY File 2.1.0 Sky File v2.1.0 contains a directory traversal vulnerability in the FTP server which allows attackers to access sensitive data and files via 'null' path commands. | 7.5 |
| 2021-10-22 | CVE-2020-23043 | Unrestricted Upload of File with Dangerous Type vulnerability in AIR Sender Project AIR Sender 1.0.2 Tran Tu Air Sender v1.0.2 was discovered to contain an arbitrary file upload vulnerability in the upload module. | 8.8 |
| 2021-10-22 | CVE-2020-23045 | SQL Injection vulnerability in Macs CMS Project Macs CMS 1.1.4F Macrob7 Macs Framework Content Management System - 1.14f was discovered to contain a SQL injection vulnerability via the 'roleId' parameter of the `editRole` and `deletUser` modules. | 7.2 |
| 2021-10-22 | CVE-2020-23050 | Injection vulnerability in Taotesting TAO Assessment Platform 3.3.0 TAO Open Source Assessment Platform v3.3.0 RC02 was discovered to contain a HTML injection vulnerability in the userFirstName parameter of the user account input field. | 8.0 |
| 2021-10-22 | CVE-2020-23060 | Out-of-bounds Write vulnerability in Tonec Internet Download Manager 6.37.11.1 Internet Download Manager 6.37.11.1 was discovered to contain a stack buffer overflow in the Export/Import function. | 7.1 |
| 2021-10-22 | CVE-2020-23061 | Path Traversal vulnerability in Dropouts Super Backup 2.0.5 Dropouts Technologies LLP Super Backup v2.0.5 was discovered to contain an issue in the path parameter of the `list` and `download` module which allows attackers to perform a directory traversal via a change to the path variable to request the local list command. | 7.5 |
| 2021-10-22 | CVE-2020-28963 | Classic Buffer Overflow vulnerability in Krylack ZIP Password Recovery 3.70.69.0 Passcovery Co. | 7.8 |
| 2021-10-22 | CVE-2020-28967 | Classic Buffer Overflow vulnerability in Flashget 1.9.6 FlashGet v1.9.6 was discovered to contain a buffer overflow in the 'current path directory' function. | 8.8 |
| 2021-10-22 | CVE-2020-28969 | Classic Buffer Overflow vulnerability in Aplixio PDF Shapingup 5.0.0.139 Aplioxio PDF ShapingUp 5.0.0.139 contains a buffer overflow which allows attackers to cause a denial of service (DoS) via a crafted PDF file. | 7.8 |