Report Name: CVE2021 report
Generated: 2022-02-09 00:33:45

Product Name	Prevalence	U	C	H	M	L	Comment
SCOM	0.9			3			System Center Operations Manager
Windows Kernel	0.9		1	14			Windows Kernel
APT	0.8		1	7			A free-software user interface that works with core libraries to handle the installation and removal of software on Debian
RPC	0.8		1				Remote Procedure Call Runtime
Zoom	0.8		1	3			Zoom is the leader in modern enterprise video communications
Cisco Small Business Router	0.7		2				Network Device
Curl	0.7			1			Curl is a command-line tool for transferring data specified with URL syntax
Envira Gallery Lite WordPress plugin	0.6			1			WordPress plugin
Internet Explorer	0.6				1		Internet Explorer is a discontinued series of graphical web browsers developed by Microsoft
Microsoft SQL	0.6			1			Microsoft SQL
MyBB	0.6		2	2	1		MyBB, formerly MyBBoard and originally MyBulletinBoard, is a free and open-source forum software developed by the MyBB Group
Office	0.6		1	1	1		MS Office product
WP Google Map Plugin WordPress plugin	0.6		1				WordPress plugin
b2evolution	0.6		1	1	2		b2evolution is a content and community management system
Azure	0.4		1				Azure
Azure Virtual Machine	0.4			1			Azure Virtual Machine
Git	0.4		1	15	7		Git
Unknown Product	0	4	10	232	1068		Unknown Product

Vulnerability Type	Criticality	U	C	H	M	L	Comment
Remote Code Execution	1.0	3	14	85			Remote Code Execution
Code Injection	0.97		5	56			Code Injection
Command Injection	0.97	1	2	22			Command Injection
XXE Injection	0.97			3			XXE Injection
Authentication Bypass	0.95			20			Authentication Bypass
Denial of Service	0.7			18			Denial of Service
Memory Corruption	0.6			11			Memory Corruption
Open Redirect	0.6			8			Open Redirect
Elevation of Privilege	0.5		1	9	12		Elevation of Privilege
Cross Site Scripting	0.4			9	332		Cross Site Scripting
Information Disclosure	0.4			3	5		Information Disclosure
Path Traversal	0.4			1	14		Path Traversal
Spoofing	0.4			1	1		Spoofing
Tampering	0.3				3		Tampering
Unknown Vulnerability Type	0		1	36	713		Unknown Vulnerability Type

Urgent (4)

1. Remote Code Execution - Unknown Product (CVE-2021-22502) - Urgent [810]

Description: {'vulners_cve_data_all': 'Remote Code execution vulnerability in Micro Focus Operation Bridge Reporter (OBR) product, affecting version 10.40. The vulnerability could be exploited to allow Remote Code Execution on the OBR server.', 'combined_cve_data_all': ''}

Status: CVE-2021-22502 is not detected by Nessus and OpenVAS

2. Remote Code Execution - Unknown Product (CVE-2021-27850) - Urgent [810]

Description: {'vulners_cve_data_all': 'A critical unauthenticated remote code execution vulnerability was found all recent versions of Apache Tapestry. The affected versions include 5.4.5, 5.5.0, 5.6.2 and 5.7.0. The vulnerability I have found is a bypass of the fix for CVE-2019-0195. Recap: Before the fix of CVE-2019-0195 it was possible to download arbitrary class files from the classpath by providing a crafted asset file URL. An attacker was able to download the file `AppModule.class` by requesting the URL `http://localhost:8080/assets/something/services/AppModule.class` which contains a HMAC secret key. The fix for that bug was a blacklist filter that checks if the URL ends with `.class`, `.properties` or `.xml`. Bypass: Unfortunately, the blacklist solution can simply be bypassed by appending a `/` at the end of the URL: `http://localhost:8080/assets/something/services/AppModule.class/` The slash is stripped after the blacklist check and the file `AppModule.class` is loaded into the response. This class usually contains the HMAC secret key which is used to sign serialized Java objects. With the knowledge of that key an attacker can sign a Java gadget chain that leads to RCE (e.g. CommonsBeanUtils1 from ysoserial). Solution for this vulnerability: * For Apache Tapestry 5.4.0 to 5.6.1, upgrade to 5.6.2 or later. * For Apache Tapestry 5.7.0, upgrade to 5.7.1 or later.', 'combined_cve_data_all': ''}

Status: CVE-2021-27850 is detected by OpenVAS

3. Remote Code Execution - Unknown Product (CVE-2021-41653) - Urgent [810]

Description: {'vulners_cve_data_all': 'The PING function on the TP-Link TL-WR840N EU v5 router with firmware through TL-WR840N(EU)_V5_171211 is vulnerable to remote code execution via a crafted payload in an IP address input field.', 'combined_cve_data_all': ''}

Status: CVE-2021-41653 is not detected by Nessus and OpenVAS

4. Command Injection - Unknown Product (CVE-2021-42071) - Urgent [804]

Description: {'vulners_cve_data_all': 'In Visual Tools DVR VX16 4.2.28.0, an unauthenticated attacker can achieve remote command execution via shell metacharacters in the cgi-bin/slogin/login.py User-Agent HTTP header.', 'combined_cve_data_all': ''}

Status: CVE-2021-42071 is not detected by Nessus and OpenVAS

Critical (23)

5. Command Injection - Unknown Product (CVE-2021-36260) - Critical [791]

Description: {'vulners_cve_data_all': 'A command injection vulnerability in the web server of some Hikvision product. Due to the insufficient input validation, attacker can exploit the vulnerability to launch a command injection attack by sending some messages with malicious commands.', 'combined_cve_data_all': ''}

Status: CVE-2021-36260 is not detected by Nessus and OpenVAS

6. Remote Code Execution - Unknown Product (CVE-2020-25506) - Critical [783]

Description: {'vulners_cve_data_all': 'D-Link DNS-320 FW v2.06B01 Revision Ax is affected by command injection in the system_mgr.cgi component, which can lead to remote arbitrary code execution.', 'combined_cve_data_all': ''}

Status: CVE-2020-25506 is detected by OpenVAS

7. Remote Code Execution - Unknown Product (CVE-2021-24370) - Critical [783]

Description: {'vulners_cve_data_all': 'The Fancy Product Designer WordPress plugin before 4.6.9 allows unauthenticated attackers to upload arbitrary files, resulting in remote code execution.', 'combined_cve_data_all': ''}

Status: CVE-2021-24370 is not detected by Nessus and OpenVAS

8. Remote Code Execution - Unknown Product (CVE-2021-29003) - Critical [783]

Description: {'vulners_cve_data_all': 'Genexis PLATINUM 4410 2.1 P4410-V2-1.28 devices allow remote attackers to execute arbitrary code via shell metacharacters to sys_config_valid.xgi, as demonstrated by the sys_config_valid.xgi?exeshell=%60telnetd%20%26%60 URI.', 'combined_cve_data_all': ''}

Status: CVE-2021-29003 is not detected by Nessus and OpenVAS

9. Remote Code Execution - Unknown Product (CVE-2021-3129) - Critical [783]

Description: {'vulners_cve_data_all': 'Ignition before 2.5.2, as used in Laravel and other products, allows unauthenticated remote attackers to execute arbitrary code because of insecure usage of file_get_contents() and file_put_contents(). This is exploitable on sites using debug mode with Laravel before 8.4.2.', 'combined_cve_data_all': ''}

Status: CVE-2021-3129 is not detected by Nessus and OpenVAS

10. Remote Code Execution - Unknown Product (CVE-2021-40870) - Critical [783]

Description: {'vulners_cve_data_all': 'An issue was discovered in Aviatrix Controller 6.x before 6.5-1804.1922. Unrestricted upload of a file with a dangerous type is possible, which allows an unauthenticated user to execute arbitrary code via directory traversal.', 'combined_cve_data_all': ''}

Status: CVE-2021-40870 is not detected by Nessus and OpenVAS

11. Remote Code Execution - Unknown Product (CVE-2021-26919) - Critical [770]

Description: {'vulners_cve_data_all': 'Apache Druid allows users to read data from other database systems using JDBC. This functionality is to allow trusted users with the proper permissions to set up lookups or submit ingestion tasks. The MySQL JDBC driver supports certain properties, which, if left unmitigated, can allow an attacker to execute arbitrary code from a hacker-controlled malicious MySQL server within Druid server processes. This issue was addressed in Apache Druid 0.20.2', 'combined_cve_data_all': ''}

Status: CVE-2021-26919 is not detected by Nessus and OpenVAS

12. Command Injection - Unknown Product (CVE-2021-21315) - Critical [737]

Description: {'vulners_cve_data_all': 'The System Information Library for Node.JS (npm package "systeminformation") is an open source collection of functions to retrieve detailed hardware, system and OS information. In systeminformation before version 5.3.1 there is a command injection vulnerability. Problem was fixed in version 5.3.1. As a workaround instead of upgrading, be sure to check or sanitize service parameters that are passed to si.inetLatency(), si.inetChecksite(), si.services(), si.processLoad() ... do only allow strings, reject any arrays. String sanitation works as expected.', 'combined_cve_data_all': ''}

Status: CVE-2021-21315 is not detected by Nessus and OpenVAS

13. Remote Code Execution - Windows Kernel (CVE-2021-27198) - Critical [737]

Description: An issue was discovered in Visualware MyConnection Server before v11.1a. Unauthenticated Remote Code Execution can occur via Arbitrary File Upload in the web service when using a myspeed/sf?filename= URI. This application is written in Java and is thus cross-platform. The Windows installation runs as SYSTEM, which means that exploitation gives one Administrator privileges on the target system.

Status: CVE-2021-27198 is not detected by Nessus and OpenVAS

14. Remote Code Execution - Cisco Small Business Router (CVE-2021-34730) - Critical [700]

Description: A vulnerability in the Universal Plug-and-Play (UPnP) service of Cisco Small Business RV110W, RV130, RV130W, and RV215W Routers could allow an unauthenticated, remote attacker to execute arbitrary code or cause an affected device to restart unexpectedly, resulting in a denial of service (DoS) condition. This vulnerability is due to improper validation of incoming UPnP traffic. An attacker could exploit this vulnerability by sending a crafted UPnP request to an affected device. A successful exploit could allow the attacker to execute arbitrary code as the root user on the underlying operating system or cause the device to reload, resulting in a DoS condition. Cisco has not released software updates that address this vulnerability.

Status: CVE-2021-34730 is not detected by Nessus and OpenVAS

15. Elevation of Privilege - Unknown Product (CVE-2021-28663) - Critical [695]

Description: {'vulners_cve_data_all': 'The Arm Mali GPU kernel driver allows privilege escalation or information disclosure because GPU memory operations are mishandled, leading to a use-after-free. This affects Bifrost r0p0 through r28p0 before r29p0, Valhall r19p0 through r28p0 before r29p0, and Midgard r4p0 through r30p0.', 'combined_cve_data_all': ''}

Status: CVE-2021-28663 is not detected by Nessus and OpenVAS

16. Remote Code Execution - Zoom (CVE-2021-34423) - Critical [691]

Description: A buffer overflow vulnerability was discovered in Zoom Client for Meetings (for Android, iOS, Linux, macOS, and Windows) before version 5.8.4, Zoom Client for Meetings for Blackberry (for Android and iOS) before version 5.8.1, Zoom Client for Meetings for intune (for Android and iOS) before version 5.8.4, Zoom Client for Meetings for Chrome OS before version 5.0.1, Zoom Rooms for Conference Room (for Android, AndroidBali, macOS, and Windows) before version 5.8.3, Controllers for Zoom Rooms (for Android, iOS, and Windows) before version 5.8.3, Zoom VDI Windows Meeting Client before version 5.8.4, Zoom VDI Azure Virtual Desktop Plugins (for Windows x86 or x64, IGEL x64, Ubuntu x64, HP ThinPro OS x64) before version 5.8.4.21112, Zoom VDI Citrix Plugins (for Windows x86 or x64, Mac Universal Installer & Uninstaller, IGEL x64, eLux RP6 x64, HP ThinPro OS x64, Ubuntu x64, CentOS x 64, Dell ThinOS) before version 5.8.4.21112, Zoom VDI VMware Plugins (for Windows x86 or x64, Mac Universal Installer & Uninstaller, IGEL x64, eLux RP6 x64, HP ThinPro OS x64, Ubuntu x64, CentOS x 64, Dell ThinOS) before version 5.8.4.21112, Zoom Meeting SDK for Android before version 5.7.6.1922, Zoom Meeting SDK for iOS before version 5.7.6.1082, Zoom Meeting SDK for macOS before version 5.7.6.1340, Zoom Meeting SDK for Windows before version 5.7.6.1081, Zoom Video SDK (for Android, iOS, macOS, and Windows) before version 1.1.2, Zoom On-Premise Meeting Connector Controller before version 4.8.12.20211115, Zoom On-Premise Meeting Connector MMR before version 4.8.12.20211115, Zoom On-Premise Recording Connector before version 5.1.0.65.20211116, Zoom On-Premise Virtual Room Connector before version 4.4.7266.20211117, Zoom On-Premise Virtual Room Connector Load Balancer before version 2.5.5692.20211117, Zoom Hybrid Zproxy before version 1.0.1058.20211116, and Zoom Hybrid MMR before version 4.6.20211116.131_x86-64. This can potentially allow a malicious actor to crash the service or application, or leverage this vulnerability to execute arbitrary code.

Status: CVE-2021-34423 is detected by OpenVAS

17. Remote Code Execution - Cisco Small Business Router (CVE-2021-1167) - Critical [686]

Description: Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV110W, RV130, RV130W, and RV215W Routers could allow an authenticated, remote attacker to execute arbitrary code or cause an affected device to restart unexpectedly. The vulnerabilities are due to improper validation of user-supplied input in the web-based management interface. An attacker could exploit these vulnerabilities by sending crafted HTTP requests to an affected device. A successful exploit could allow the attacker to execute arbitrary code as the root user on the underlying operating system or cause the device to reload, resulting in a denial of service (DoS) condition. To exploit these vulnerabilities, an attacker would need to have valid administrator credentials on the affected device. Cisco has not released software updates that address these vulnerabilities.

Status: CVE-2021-1167 is not detected by Nessus and OpenVAS

18. Remote Code Execution - APT (CVE-2021-26943) - Critical [678]

Description: The UX360CA BIOS through 303 on ASUS laptops allow an attacker (with the ring 0 privilege) to overwrite nearly arbitrary physical memory locations, including SMRAM, and execute arbitrary code in the SMM (issue 3 of 3).

Status: CVE-2021-26943 is not detected by Nessus and OpenVAS

19. Code Injection - RPC (CVE-2021-24629) - Critical [672]

Description: The Post Content XMLRPC WordPress plugin through 1.0 does not sanitise or escape multiple GET/POST parameters before using them in SQL statements in the admin dashboard, leading to an authenticated SQL Injections

Status: CVE-2021-24629 is not detected by Nessus and OpenVAS

20. Remote Code Execution - Office (CVE-2020-13451) - Critical [654]

Description: An incomplete-cleanup vulnerability in the Office rendering engine of Gotenberg through 6.2.1 allows an attacker to overwrite LibreOffice configuration files and execute arbitrary code via macros.

Status: CVE-2020-13451 is not detected by Nessus and OpenVAS

21. Code Injection - MyBB (CVE-2021-27890) - Critical [634]

Description: SQL Injection vulnerablity in MyBB before 1.8.26 via theme properties included in theme XML files.

Status: CVE-2021-27890 is detected by OpenVAS

22. Code Injection - MyBB (CVE-2021-27946) - Critical [634]

Description: SQL Injection vulnerability in MyBB before 1.8.26 via poll vote count. (issue 1 of 3).

Status: CVE-2021-27946 is detected by OpenVAS

23. Code Injection - WP Google Map Plugin WordPress plugin (CVE-2021-24130) - Critical [634]

Description: Unvalidated input in the WP Google Map Plugin WordPress plugin, versions before 4.1.5, in the Manage Locations page within the plugin settings was vulnerable to SQL Injection through a high privileged user (admin+).

Status: CVE-2021-24130 is detected by OpenVAS

24. Code Injection - b2evolution (CVE-2021-28242) - Critical [634]

Description: SQL Injection in the "evoadm.php" component of b2evolution v7.2.2-stable allows remote attackers to obtain sensitive database information by injecting SQL commands into the "cf_name" parameter when creating a new filter under the "Collections" tab.

Status: CVE-2021-28242 is detected by OpenVAS

25. Remote Code Execution - Azure (CVE-2021-40371) - Critical [616]

Description: Gridpro Request Management for Windows Azure Pack before 2.0.7912 allows Directory Traversal for remote code execution, as demonstrated by ..\\ in a scriptName JSON value to ServiceManagerTenant/GetVisibilityMap.

Status: CVE-2021-40371 is not detected by Nessus and OpenVAS

26. Unknown Vulnerability Type - Unknown Product (CVE-2021-32305) - Critical [608]

Description: {'vulners_cve_data_all': 'WebSVN before 2.6.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the search parameter.', 'combined_cve_data_all': ''}

Status: CVE-2021-32305 is not detected by Nessus and OpenVAS

27. Remote Code Execution - Git (CVE-2021-22192) - Critical [602]

Description: An issue has been discovered in GitLab CE/EE affecting all versions starting from 13.2 allowing unauthorized authenticated users to execute arbitrary code on the server.

Status: CVE-2021-22192 is not detected by Nessus and OpenVAS

High (282)

28. Denial of Service - Windows Kernel (CVE-2020-35488) - High [595]

Description: The fileop module of the NXLog service in NXLog Community Edition 2.10.2150 allows remote attackers to cause a denial of service (daemon crash) via a crafted Syslog payload to the Syslog service. This attack requires a specific configuration. Also, the name of the directory created must use a Syslog field. (For example, on Linux it is not possible to create a .. directory. On Windows, it is not possible to create a CON directory.)

Status: CVE-2020-35488 is not detected by Nessus and OpenVAS

29. Elevation of Privilege - Windows Kernel (CVE-2021-35523) - High [595]

Description: Securepoint SSL VPN Client v2 before 2.0.32 on Windows has unsafe configuration handling that enables local privilege escalation to NT AUTHORITY\SYSTEM. A non-privileged local user can modify the OpenVPN configuration stored under "%APPDATA%\Securepoint SSL VPN" and add a external script file that is executed as privileged user.

Status: CVE-2021-35523 is not detected by Nessus and OpenVAS

30. Unknown Vulnerability Type - Unknown Product (CVE-2021-27860) - High [594]

Description: {'vulners_cve_data_all': 'A vulnerability in the web management interface of FatPipe WARP, IPVPN, and MPVPN software prior to versions 10.1.2r60p92 and 10.2.2r44p1 allows a remote, unauthenticated attacker to upload a file to any location on the filesystem. The FatPipe advisory identifier for this vulnerability is FPSA006.', 'combined_cve_data_all': ''}

Status: CVE-2021-27860 is not detected by Nessus and OpenVAS

31. Unknown Vulnerability Type - Unknown Product (CVE-2021-21307) - High [581]

Description: {'vulners_cve_data_all': 'Lucee Server is a dynamic, Java based (JSR-223), tag and scripting language used for rapid web application development. In Lucee Admin before versions 5.3.7.47, 5.3.6.68 or 5.3.5.96 there is an unauthenticated remote code exploit. This is fixed in versions 5.3.7.47, 5.3.6.68 or 5.3.5.96. As a workaround, one can block access to the Lucee Administrator.', 'combined_cve_data_all': ''}

Status: CVE-2021-21307 is detected by OpenVAS

32. Unknown Vulnerability Type - Unknown Product (CVE-2021-24175) - High [581]

Description: {'vulners_cve_data_all': 'The Plus Addons for Elementor Page Builder WordPress plugin before 4.1.7 was being actively exploited to by malicious actors to bypass authentication, allowing unauthenticated users to log in as any user (including admin) by just providing the related username, as well as create accounts with arbitrary roles, such as admin. These issues can be exploited even if registration is disabled, and the Login widget is not active.', 'combined_cve_data_all': ''}

Status: CVE-2021-24175 is not detected by Nessus and OpenVAS

33. Unknown Vulnerability Type - Unknown Product (CVE-2021-24499) - High [581]

Description: {'vulners_cve_data_all': 'The Workreap WordPress theme before 2.2.2 AJAX actions workreap_award_temp_file_uploader and workreap_temp_file_uploader did not perform nonce checks, or validate that the request is from a valid user in any other way. The endpoints allowed for uploading arbitrary files to the uploads/workreap-temp directory. Uploaded files were neither sanitized nor validated, allowing an unauthenticated visitor to upload executable code such as php scripts.', 'combined_cve_data_all': ''}

Status: CVE-2021-24499 is not detected by Nessus and OpenVAS

34. Remote Code Execution - Git (CVE-2021-37678) - High [575]

Description: TensorFlow is an end-to-end open source platform for machine learning. In affected versions TensorFlow and Keras can be tricked to perform arbitrary code execution when deserializing a Keras model from YAML format. The [implementation](https://github.com/tensorflow/tensorflow/blob/460e000de3a83278fb00b61a16d161b1964f15f4/tensorflow/python/keras/saving/model_config.py#L66-L104) uses `yaml.unsafe_load` which can perform arbitrary code execution on the input. Given that YAML format support requires a significant amount of work, we have removed it for now. We have patched the issue in GitHub commit 23d6383eb6c14084a8fc3bdf164043b974818012. The fix will be included in TensorFlow 2.6.0. We will also cherrypick this commit on TensorFlow 2.5.1, TensorFlow 2.4.3, and TensorFlow 2.3.4, as these are also affected and still in supported range.

Status: CVE-2021-37678 is not detected by Nessus and OpenVAS

35. Remote Code Execution - Unknown Product (CVE-2020-21224) - High [567]

Description: {'vulners_cve_data_all': 'A Remote Code Execution vulnerability has been found in Inspur ClusterEngine V4.0. A remote attacker can send a malicious login packet to the control server', 'combined_cve_data_all': ''}

Status: CVE-2020-21224 is not detected by Nessus and OpenVAS

36. Remote Code Execution - Unknown Product (CVE-2021-31474) - High [567]

Description: {'vulners_cve_data_all': 'This vulnerability allows remote attackers to execute arbitrary code on affected installations of SolarWinds Network Performance Monitor 2020.2.1. Authentication is not required to exploit this vulnerability. The specific flaw exists within the SolarWinds.Serialization library. The issue results from the lack of proper validation of user-supplied data, which can result in deserialization of untrusted data. An attacker can leverage this vulnerability to execute code in the context of SYSTEM. Was ZDI-CAN-12213.', 'combined_cve_data_all': ''}

Status: CVE-2021-31474 is not detected by Nessus and OpenVAS

37. Remote Code Execution - Unknown Product (CVE-2021-39274) - High [567]

Description: {'vulners_cve_data_all': 'In XeroSecurity Sn1per 9.0 (free version), insecure directory permissions (0777) are set during installation, allowing an unprivileged user to modify the main application and the application configuration file. This results in arbitrary code execution with root privileges.', 'combined_cve_data_all': ''}

Status: CVE-2021-39274 is not detected by Nessus and OpenVAS

38. Remote Code Execution - Unknown Product (CVE-2021-41290) - High [567]

Description: {'vulners_cve_data_all': 'ECOA BAS controller suffers from an arbitrary file write and path traversal vulnerability. Using the POST parameters, unauthenticated attackers can remotely set arbitrary values for location and content type and gain the possibility to execute arbitrary code on the affected device.', 'combined_cve_data_all': ''}

Status: CVE-2021-41290 is not detected by Nessus and OpenVAS

39. Remote Code Execution - Unknown Product (CVE-2021-43936) - High [567]

Description: {'vulners_cve_data_all': "The software allows the attacker to upload or transfer files of dangerous types to the WebHMI portal, that may be automatically processed within the product's environment or lead to arbitrary code execution.", 'combined_cve_data_all': ''}

Status: CVE-2021-43936 is not detected by Nessus and OpenVAS

40. Command Injection - Unknown Product (CVE-2019-25024) - High [561]

Description: {'vulners_cve_data_all': 'OpenRepeater (ORP) before 2.2 allows unauthenticated command injection via shell metacharacters in the functions/ajax_system.php post_service parameter.', 'combined_cve_data_all': ''}

Status: CVE-2019-25024 is not detected by Nessus and OpenVAS

41. Command Injection - Unknown Product (CVE-2021-33514) - High [561]

Description: {'vulners_cve_data_all': "Certain NETGEAR devices are affected by command injection by an unauthenticated attacker via the vulnerable /sqfs/lib/libsal.so.0.0 library used by a CGI application, as demonstrated by setup.cgi?token=';$HTTP_USER_AGENT;' with an OS command in the User-Agent field. This affects GC108P before 1.0.7.3, GC108PP before 1.0.7.3, GS108Tv3 before 7.0.6.3, GS110TPPv1 before 7.0.6.3, GS110TPv3 before 7.0.6.3, GS110TUPv1 before 1.0.4.3, GS710TUPv1 before 1.0.4.3, GS716TP before 1.0.2.3, GS716TPP before 1.0.2.3, GS724TPPv1 before 2.0.4.3, GS724TPv2 before 2.0.4.3, GS728TPPv2 before 6.0.6.3, GS728TPv2 before 6.0.6.3, GS752TPPv1 before 6.0.6.3, GS752TPv2 before 6.0.6.3, MS510TXM before 1.0.2.3, and MS510TXUP before 1.0.2.3.", 'combined_cve_data_all': ''}

Status: CVE-2021-33514 is detected by OpenVAS

42. Authentication Bypass - Unknown Product (CVE-2021-24148) - High [557]

Description: {'vulners_cve_data_all': 'A business logic issue in the MStore API WordPress plugin, versions before 3.2.0, had an authentication bypass with Sign In With Apple allowing unauthenticated users to recover an authentication cookie with only an email address.', 'combined_cve_data_all': ''}

Status: CVE-2021-24148 is not detected by Nessus and OpenVAS

43. Authentication Bypass - Unknown Product (CVE-2021-33044) - High [557]

Description: {'vulners_cve_data_all': 'The identity authentication bypass vulnerability found in some Dahua products during the login process. Attackers can bypass device identity authentication by constructing malicious data packets.', 'combined_cve_data_all': ''}

Status: CVE-2021-33044 is detected by OpenVAS

44. Authentication Bypass - Unknown Product (CVE-2021-33045) - High [557]

Description: {'vulners_cve_data_all': 'The identity authentication bypass vulnerability found in some Dahua products during the login process. Attackers can bypass device identity authentication by constructing malicious data packets.', 'combined_cve_data_all': ''}

Status: CVE-2021-33045 is detected by OpenVAS

45. Authentication Bypass - Unknown Product (CVE-2021-35973) - High [557]

Description: {'vulners_cve_data_all': 'NETGEAR WAC104 devices before 1.0.4.15 are affected by an authentication bypass vulnerability in /usr/sbin/mini_httpd, allowing an unauthenticated attacker to invoke any action by adding the ¤tsetting.htm substring to the HTTP query, a related issue to CVE-2020-27866. This directly allows the attacker to change the web UI password, and eventually to enable debug mode (telnetd) and gain a shell on the device as the admin limited-user account (however, escalation to root is simple because of weak permissions on the /etc/ directory).', 'combined_cve_data_all': ''}

Status: CVE-2021-35973 is not detected by Nessus and OpenVAS

46. Authentication Bypass - Unknown Product (CVE-2021-41301) - High [557]

Description: {'vulners_cve_data_all': 'ECOA BAS controller is vulnerable to configuration disclosure when direct object reference is made to the specific files using an HTTP GET request. This will enable the unauthenticated attacker to remotely disclose sensitive information and help her in authentication bypass, privilege escalation and full system access.', 'combined_cve_data_all': ''}

Status: CVE-2021-41301 is not detected by Nessus and OpenVAS

47. Cross Site Scripting - APT (CVE-2021-24565) - High [556]

Description: The Contact Form 7 Captcha WordPress plugin before 0.0.9 does not have any CSRF check in place when saving its settings, allowing attacker to make a logged in user with the manage_options change them. Furthermore, the settings are not escaped when output in attributes, leading to a Stored Cross-Site Scripting issue.

Status: CVE-2021-24565 is detected by OpenVAS

48. Remote Code Execution - Unknown Product (CVE-2020-35576) - High [554]

Description: {'vulners_cve_data_all': 'A Command Injection issue in the traceroute feature on TP-Link TL-WR841N V13 (JP) with firmware versions prior to 201216 allows authenticated users to execute arbitrary code as root via shell metacharacters, a different vulnerability than CVE-2018-12577.', 'combined_cve_data_all': ''}

Status: CVE-2020-35576 is not detected by Nessus and OpenVAS

49. Remote Code Execution - Unknown Product (CVE-2021-24307) - High [554]

Description: {'vulners_cve_data_all': 'The All in One SEO – Best WordPress SEO Plugin – Easily Improve Your SEO Rankings before 4.1.0.2 enables authenticated users with "aioseo_tools_settings" privilege (most of the time admin) to execute arbitrary code on the underlying host. Users can restore plugin\'s configuration by uploading a backup .ini file in the section "Tool > Import/Export". However, the plugin attempts to unserialize values of the .ini file. Moreover, the plugin embeds Monolog library which can be used to craft a gadget chain and thus trigger system command execution.', 'combined_cve_data_all': ''}

Status: CVE-2021-24307 is detected by OpenVAS

50. Remote Code Execution - Unknown Product (CVE-2021-24453) - High [554]

Description: {'vulners_cve_data_all': 'The Include Me WordPress plugin through 1.2.1 is vulnerable to path traversal / local file inclusion, which can lead to Remote Code Execution (RCE) of the system due to log poisoning and therefore potentially a full compromise of the underlying structure', 'combined_cve_data_all': ''}

Status: CVE-2021-24453 is not detected by Nessus and OpenVAS

51. Remote Code Execution - Unknown Product (CVE-2021-26912) - High [554]

Description: {'vulners_cve_data_all': 'NetMotion Mobility before 11.73 and 12.x before 12.02 allows unauthenticated remote attackers to execute arbitrary code as SYSTEM because of Java deserialization in SupportRpcServlet.', 'combined_cve_data_all': ''}

Status: CVE-2021-26912 is not detected by Nessus and OpenVAS

52. Remote Code Execution - Unknown Product (CVE-2021-26913) - High [554]

Description: {'vulners_cve_data_all': 'NetMotion Mobility before 11.73 and 12.x before 12.02 allows unauthenticated remote attackers to execute arbitrary code as SYSTEM because of Java deserialization in RpcServlet.', 'combined_cve_data_all': ''}

Status: CVE-2021-26913 is not detected by Nessus and OpenVAS

53. Remote Code Execution - Unknown Product (CVE-2021-26914) - High [554]

Description: {'vulners_cve_data_all': 'NetMotion Mobility before 11.73 and 12.x before 12.02 allows unauthenticated remote attackers to execute arbitrary code as SYSTEM because of Java deserialization in MvcUtil valueStringToObject.', 'combined_cve_data_all': ''}

Status: CVE-2021-26914 is not detected by Nessus and OpenVAS

54. Remote Code Execution - Unknown Product (CVE-2021-26915) - High [554]

Description: {'vulners_cve_data_all': 'NetMotion Mobility before 11.73 and 12.x before 12.02 allows unauthenticated remote attackers to execute arbitrary code as SYSTEM because of Java deserialization in webrepdb StatusServlet.', 'combined_cve_data_all': ''}

Status: CVE-2021-26915 is not detected by Nessus and OpenVAS

55. Remote Code Execution - Unknown Product (CVE-2021-32708) - High [554]

Description: {'vulners_cve_data_all': 'Flysystem is an open source file storage library for PHP. The whitespace normalisation using in 1.x and 2.x removes any unicode whitespace. Under certain specific conditions this could potentially allow a malicious user to execute code remotely. The conditions are: A user is allowed to supply the path or filename of an uploaded file, the supplied path or filename is not checked against unicode chars, the supplied pathname checked against an extension deny-list, not an allow-list, the supplied path or filename contains a unicode whitespace char in the extension, the uploaded file is stored in a directory that allows PHP code to be executed. Given these conditions are met a user can upload and execute arbitrary code on the system under attack. The unicode whitespace removal has been replaced with a rejection (exception). For 1.x users, upgrade to 1.1.4. For 2.x users, upgrade to 2.1.1.', 'combined_cve_data_all': ''}

Status: CVE-2021-32708 is detected by OpenVAS

56. Remote Code Execution - Unknown Product (CVE-2021-37748) - High [554]

Description: {'vulners_cve_data_all': 'Multiple buffer overflows in the limited configuration shell (/sbin/gs_config) on Grandstream HT801 devices before 1.0.29 allow remote authenticated users to execute arbitrary code as root via a crafted manage_if setting, thus bypassing the intended restrictions of this shell and taking full control of the device. There are default weak credentials that can be used to authenticate.', 'combined_cve_data_all': ''}

Status: CVE-2021-37748 is not detected by Nessus and OpenVAS

57. Remote Code Execution - Unknown Product (CVE-2021-39273) - High [554]

Description: {'vulners_cve_data_all': 'In XeroSecurity Sn1per 9.0 (free version), insecure permissions (0777) are set upon application execution, allowing an unprivileged user to modify the application, modules, and configuration files. This leads to arbitrary code execution with root privileges.', 'combined_cve_data_all': ''}

Status: CVE-2021-39273 is not detected by Nessus and OpenVAS

58. Remote Code Execution - Unknown Product (CVE-2021-39608) - High [554]

Description: {'vulners_cve_data_all': 'Remote Code Execution (RCE) vulnerabilty exists in FlatCore-CMS 2.0.7 via the upload addon plugin, which could let a remote malicious user exeuct arbitrary php code.', 'combined_cve_data_all': ''}

Status: CVE-2021-39608 is not detected by Nessus and OpenVAS

59. Remote Code Execution - Unknown Product (CVE-2021-40222) - High [554]

Description: {'vulners_cve_data_all': 'Rittal CMC PU III Web management Version affected: V3.11.00_2. Version fixed: V3.17.10 is affected by a remote code execution vulnerablity. It is possible to introduce shell code to create a reverse shell in the PU-Hostname field of the TCP/IP Configuration dialog. Web application fails to sanitize user input on Network TCP/IP configuration page. This allows the attacker to inject commands as root on the device which will be executed once the data is received.', 'combined_cve_data_all': ''}

Status: CVE-2021-40222 is not detected by Nessus and OpenVAS

60. Remote Code Execution - Unknown Product (CVE-2021-42840) - High [554]

Description: {'vulners_cve_data_all': 'SuiteCRM before 7.11.19 allows remote code execution via the system settings Log File Name setting. In certain circumstances involving admin account takeover, logger_file_name can refer to an attacker-controlled PHP file under the web root, because only the all-lowercase PHP file extensions were blocked. NOTE: this issue exists because of an incomplete fix for CVE-2020-28328.', 'combined_cve_data_all': ''}

Status: CVE-2021-42840 is not detected by Nessus and OpenVAS

61. Unknown Vulnerability Type - Unknown Product (CVE-2021-32648) - High [554]

Description: {'vulners_cve_data_all': 'octobercms in a CMS platform based on the Laravel PHP Framework. In affected versions of the october/system package an attacker can request an account password reset and then gain access to the account using a specially crafted request. The issue has been patched in Build 472 and v1.1.5.', 'combined_cve_data_all': ''}

Status: CVE-2021-32648 is not detected by Nessus and OpenVAS

62. Information Disclosure - SCOM (CVE-2020-23162) - High [548]

Description: Sensitive information disclosure and weak encryption in Pyrescom Termod4 time management devices before 10.04k allows remote attackers to read a session-file and obtain plain-text user credentials.

Status: CVE-2020-23162 is not detected by Nessus and OpenVAS

63. Code Injection - Unknown Product (CVE-2021-43408) - High [547]

Description: {'vulners_cve_data_all': 'The "Duplicate Post" WordPress plugin up to and including version 1.1.9 is vulnerable to SQL Injection. SQL injection vulnerabilities occur when client supplied data is included within an SQL Query insecurely. SQL Injection can typically be exploited to read, modify and delete SQL table data. In many cases it also possible to exploit features of SQL server to execute system commands and/or access the local file system. This particular vulnerability can be exploited by any authenticated user who has been granted access to use the Duplicate Post plugin. By default, this is limited to Administrators, however the plugin presents the option to permit access to the Editor, Author, Contributor and Subscriber roles.', 'combined_cve_data_all': ''}

Status: CVE-2021-43408 is not detected by Nessus and OpenVAS

64. Command Injection - Unknown Product (CVE-2020-12513) - High [547]

Description: {'vulners_cve_data_all': 'Pepperl+Fuchs Comtrol IO-Link Master in Version 1.5.48 and below is prone to an authenticated blind OS Command Injection.', 'combined_cve_data_all': ''}

Status: CVE-2020-12513 is not detected by Nessus and OpenVAS

65. Command Injection - Unknown Product (CVE-2020-21992) - High [547]

Description: {'vulners_cve_data_all': "Inim Electronics SmartLiving SmartLAN/G/SI <=6.x suffers from an authenticated remote command injection vulnerability. The issue exist due to the 'par' POST parameter not being sanitized when called with the 'testemail' module through web.cgi binary. The vulnerable CGI binary (ELF 32-bit LSB executable, ARM) is calling the 'sh' executable via the system() function to issue a command using the mailx service and its vulnerable string format parameter allowing for OS command injection with root privileges. An attacker can remotely execute system commands as the root user using default credentials and bypass access controls in place.", 'combined_cve_data_all': ''}

Status: CVE-2020-21992 is not detected by Nessus and OpenVAS

66. Command Injection - Unknown Product (CVE-2020-21999) - High [547]

Description: {'vulners_cve_data_all': "iWT Ltd FaceSentry Access Control System 6.4.8 suffers from an authenticated OS command injection vulnerability using default credentials. This can be exploited to inject and execute arbitrary shell commands as the root user via the 'strInIP' POST parameter in pingTest PHP script.", 'combined_cve_data_all': ''}

Status: CVE-2020-21999 is not detected by Nessus and OpenVAS

67. Command Injection - Unknown Product (CVE-2021-20026) - High [547]

Description: {'vulners_cve_data_all': 'A vulnerability in the SonicWall NSM On-Prem product allows an authenticated attacker to perform OS command injection using a crafted HTTP request. This vulnerability affects NSM On-Prem 2.2.0-R10 and earlier versions.', 'combined_cve_data_all': ''}

Status: CVE-2021-20026 is not detected by Nessus and OpenVAS

68. Command Injection - Unknown Product (CVE-2021-20991) - High [547]

Description: {'vulners_cve_data_all': 'In Fibaro Home Center 2 and Lite devices with firmware version 4.540 and older an authenticated user can run commands as root user using a command injection vulnerability.', 'combined_cve_data_all': ''}

Status: CVE-2021-20991 is not detected by Nessus and OpenVAS

69. Command Injection - Unknown Product (CVE-2021-22123) - High [547]

Description: {'vulners_cve_data_all': "An OS command injection vulnerability in FortiWeb's management interface 6.3.7 and below, 6.2.3 and below, 6.1.x, 6.0.x, 5.9.x may allow a remote authenticated attacker to execute arbitrary commands on the system via the SAML server configuration page.", 'combined_cve_data_all': ''}

Status: CVE-2021-22123 is not detected by Nessus and OpenVAS

70. Command Injection - Unknown Product (CVE-2021-23024) - High [547]

Description: {'vulners_cve_data_all': 'On version 8.0.x before 8.0.0.1, and all 6.x and 7.x versions, the BIG-IQ Configuration utility has an authenticated remote command execution vulnerability in undisclosed pages. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.', 'combined_cve_data_all': ''}

Status: CVE-2021-23024 is not detected by Nessus and OpenVAS

71. Command Injection - Unknown Product (CVE-2021-24684) - High [547]

Description: {'vulners_cve_data_all': 'The WordPress PDF Light Viewer Plugin WordPress plugin before 1.4.12 allows users with Author roles to execute arbitrary OS command on the server via OS Command Injection when invoking Ghostscript.', 'combined_cve_data_all': ''}

Status: CVE-2021-24684 is not detected by Nessus and OpenVAS

72. Command Injection - Unknown Product (CVE-2021-28113) - High [547]

Description: {'vulners_cve_data_all': 'A command injection vulnerability in the cookieDomain and relayDomain parameters of Okta Access Gateway before 2020.9.3 allows attackers (with admin access to the Okta Access Gateway UI) to execute OS commands as a privileged system account.', 'combined_cve_data_all': ''}

Status: CVE-2021-28113 is not detected by Nessus and OpenVAS

73. Command Injection - Unknown Product (CVE-2021-28144) - High [547]

Description: {'vulners_cve_data_all': 'prog.cgi on D-Link DIR-3060 devices before 1.11b04 HF2 allows remote authenticated users to inject arbitrary commands in an admin or root context because SetVirtualServerSettings calls CheckArpTables, which calls popen unsafely.', 'combined_cve_data_all': ''}

Status: CVE-2021-28144 is not detected by Nessus and OpenVAS

74. Command Injection - Unknown Product (CVE-2021-39244) - High [547]

Description: {'vulners_cve_data_all': 'Authenticated Semi-Blind Command Injection (via Parameter Injection) exists on Altus Nexto, Nexto Xpress, and Hadron Xtorm devices via the getlogs.cgi tcpdump feature. This affects Nexto NX3003 1.8.11.0, Nexto NX3004 1.8.11.0, Nexto NX3005 1.8.11.0, Nexto NX3010 1.8.3.0, Nexto NX3020 1.8.3.0, Nexto NX3030 1.8.3.0, Nexto NX5100 1.8.11.0, Nexto NX5101 1.8.11.0, Nexto NX5110 1.1.2.8, Nexto NX5210 1.1.2.8, Nexto Xpress XP300 1.8.11.0, Nexto Xpress XP315 1.8.11.0, Nexto Xpress XP325 1.8.11.0, Nexto Xpress XP340 1.8.11.0, and Hadron Xtorm HX3040 1.7.58.0.', 'combined_cve_data_all': ''}

Status: CVE-2021-39244 is not detected by Nessus and OpenVAS

75. Command Injection - Unknown Product (CVE-2021-39279) - High [547]

Description: {'vulners_cve_data_all': 'Certain MOXA devices allow Authenticated Command Injection via /forms/web_importTFTP. This affects WAC-2004 1.7, WAC-1001 2.1, WAC-1001-T 2.1, OnCell G3470A-LTE-EU 1.7, OnCell G3470A-LTE-EU-T 1.7, TAP-323-EU-CT-T 1.3, TAP-323-US-CT-T 1.3, TAP-323-JP-CT-T 1.3, WDR-3124A-EU 2.3, WDR-3124A-EU-T 2.3, WDR-3124A-US 2.3, and WDR-3124A-US-T 2.3.', 'combined_cve_data_all': ''}

Status: CVE-2021-39279 is not detected by Nessus and OpenVAS

76. Open Redirect - b2evolution (CVE-2020-22840) - High [545]

Description: Open redirect vulnerability in b2evolution CMS version prior to 6.11.6 allows an attacker to perform malicious open redirects to an attacker controlled resource via redirect_to parameter in email_passthrough.php.

Status: CVE-2020-22840 is detected by OpenVAS

77. Authentication Bypass - Unknown Product (CVE-2020-17523) - High [543]

Description: {'vulners_cve_data_all': 'Apache Shiro before 1.7.1, when using Apache Shiro with Spring, a specially crafted HTTP request may cause an authentication bypass.', 'combined_cve_data_all': ''}

Status: CVE-2020-17523 is not detected by Nessus and OpenVAS

78. Denial of Service - Git (CVE-2021-25328) - High [541]

Description: Skyworth Digital Technology RN510 V.3.1.0.4 RN510 V.3.1.0.4 contains a buffer overflow vulnerability in /cgi-bin/app-staticIP.asp. An authenticated attacker can send a specially crafted request to endpoint which can lead to a denial of service (DoS) or possible code execution on the device.

Status: CVE-2021-25328 is not detected by Nessus and OpenVAS

79. Remote Code Execution - Unknown Product (CVE-2019-18643) - High [540]

Description: {'vulners_cve_data_all': 'Rock RMS versions before 8.10 and versions 9.0 through 9.3 fails to properly validate files uploaded in the application. The only protection mechanism is a file-extension blacklist that can be bypassed by adding multiple spaces and periods after the file name. This could allow an attacker to upload ASPX code and gain remote code execution on the application. The application typically runs as LocalSystem as mandated in the installation guide. Patched in versions 8.10 and 9.4.', 'combined_cve_data_all': ''}

Status: CVE-2019-18643 is not detected by Nessus and OpenVAS

80. Remote Code Execution - Unknown Product (CVE-2020-28695) - High [540]

Description: {'vulners_cve_data_all': 'Askey Fiber Router RTF3505VW-N1 BR_SV_g000_R3505VWN1001_s32_7 devices allow Remote Code Execution and retrieval of admin credentials to log into the Dashboard or login via SSH, leading to code execution as root.', 'combined_cve_data_all': ''}

Status: CVE-2020-28695 is not detected by Nessus and OpenVAS

81. Remote Code Execution - Unknown Product (CVE-2020-28871) - High [540]

Description: {'vulners_cve_data_all': 'Remote code execution in Monitorr v1.7.6m in upload.php allows an unauthorized person to execute arbitrary code on the server-side via an insecure file upload.', 'combined_cve_data_all': ''}

Status: CVE-2020-28871 is not detected by Nessus and OpenVAS

82. Remote Code Execution - Unknown Product (CVE-2020-29047) - High [540]

Description: {'vulners_cve_data_all': 'The wp-hotel-booking plugin through 1.10.2 for WordPress allows remote attackers to execute arbitrary code because of an unserialize operation on the thimpress_hotel_booking_1 cookie in load in includes/class-wphb-sessions.php.', 'combined_cve_data_all': ''}

Status: CVE-2020-29047 is not detected by Nessus and OpenVAS

83. Remote Code Execution - Unknown Product (CVE-2020-35313) - High [540]

Description: {'vulners_cve_data_all': 'A server-side request forgery (SSRF) vulnerability in the addCustomThemePluginRepository function in index.php in WonderCMS 3.1.3 allows remote attackers to execute arbitrary code via a crafted URL to the theme/plugin installer.', 'combined_cve_data_all': ''}

Status: CVE-2020-35313 is not detected by Nessus and OpenVAS

84. Remote Code Execution - Unknown Product (CVE-2020-35314) - High [540]

Description: {'vulners_cve_data_all': 'A remote code execution vulnerability in the installUpdateThemePluginAction function in index.php in WonderCMS 3.1.3, allows remote attackers to upload a custom plugin which can contain arbitrary code and obtain a webshell via the theme/plugin installer.', 'combined_cve_data_all': ''}

Status: CVE-2020-35314 is not detected by Nessus and OpenVAS

85. Remote Code Execution - Unknown Product (CVE-2021-21978) - High [540]

Description: {'vulners_cve_data_all': 'VMware View Planner 4.x prior to 4.6 Security Patch 1 contains a remote code execution vulnerability. Improper input validation and lack of authorization leading to arbitrary file upload in logupload web application. An unauthorized attacker with network access to View Planner Harness could upload and execute a specially crafted file leading to remote code execution within the logupload container.', 'combined_cve_data_all': ''}

Status: CVE-2021-21978 is not detected by Nessus and OpenVAS

86. Remote Code Execution - Unknown Product (CVE-2021-23758) - High [540]

Description: {'vulners_cve_data_all': 'All versions of package ajaxpro.2 are vulnerable to Deserialization of Untrusted Data due to the possibility of deserialization of arbitrary .NET classes, which can be abused to gain remote code execution.', 'combined_cve_data_all': ''}

Status: CVE-2021-23758 is not detected by Nessus and OpenVAS

87. Remote Code Execution - Unknown Product (CVE-2021-24040) - High [540]

Description: {'vulners_cve_data_all': 'Due to use of unsafe YAML deserialization logic, an attacker with the ability to modify local YAML configuration files could provide malicious input, resulting in remote code execution or similar risks. This issue affects ParlAI prior to v1.1.0.', 'combined_cve_data_all': ''}

Status: CVE-2021-24040 is not detected by Nessus and OpenVAS

88. Remote Code Execution - Unknown Product (CVE-2021-24240) - High [540]

Description: {'vulners_cve_data_all': 'The Business Hours Pro WordPress plugin through 5.5.0 allows a remote attacker to upload arbitrary files using its manual update functionality, leading to an unauthenticated remote code execution vulnerability.', 'combined_cve_data_all': ''}

Status: CVE-2021-24240 is not detected by Nessus and OpenVAS

89. Remote Code Execution - Unknown Product (CVE-2021-24376) - High [540]

Description: {'vulners_cve_data_all': 'The Autoptimize WordPress plugin before 2.7.8 attempts to delete malicious files (such as .php) form the uploaded archive via the "Import Settings" feature, after its extraction. However, the extracted folders are not checked and it is possible to upload a zip which contained a directory with PHP file in it and then it is not removed from the disk. It is a bypass of CVE-2020-24948 which allows sending a PHP file via the "Import Settings" functionality to achieve Remote Code Execution.', 'combined_cve_data_all': ''}

Status: CVE-2021-24376 is not detected by Nessus and OpenVAS

90. Remote Code Execution - Unknown Product (CVE-2021-27246) - High [540]

Description: {'vulners_cve_data_all': 'This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of TP-Link Archer A7 AC1750 1.0.15 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of MAC addresses by the tdpServer endpoint. A crafted TCP message can write stack pointers to the stack. An attacker can leverage this vulnerability to execute code in the context of the root user. Was ZDI-CAN-12306.', 'combined_cve_data_all': ''}

Status: CVE-2021-27246 is not detected by Nessus and OpenVAS

91. Remote Code Execution - Unknown Product (CVE-2021-30461) - High [540]

Description: {'vulners_cve_data_all': 'A remote code execution issue was discovered in the web UI of VoIPmonitor before 24.61. When the recheck option is used, the user-supplied SPOOLDIR value (which might contain PHP code) is injected into config/configuration.php.', 'combined_cve_data_all': ''}

Status: CVE-2021-30461 is not detected by Nessus and OpenVAS

92. Remote Code Execution - Unknown Product (CVE-2021-32172) - High [540]

Description: {'vulners_cve_data_all': 'Maian Cart v3.8 contains a preauthorization remote code execution (RCE) exploit via a broken access control issue in the Elfinder plugin.', 'combined_cve_data_all': ''}

Status: CVE-2021-32172 is not detected by Nessus and OpenVAS

93. Remote Code Execution - Unknown Product (CVE-2021-32682) - High [540]

Description: {'vulners_cve_data_all': 'elFinder is an open-source file manager for web, written in JavaScript using jQuery UI. Several vulnerabilities affect elFinder 2.1.58. These vulnerabilities can allow an attacker to execute arbitrary code and commands on the server hosting the elFinder PHP connector, even with minimal configuration. The issues were patched in version 2.1.59. As a workaround, ensure the connector is not exposed without authentication.', 'combined_cve_data_all': ''}

Status: CVE-2021-32682 is detected by OpenVAS

94. Remote Code Execution - Unknown Product (CVE-2021-3287) - High [540]

Description: {'vulners_cve_data_all': 'Zoho ManageEngine OpManager before 12.5.329 allows unauthenticated Remote Code Execution due to a general bypass in the deserialization class.', 'combined_cve_data_all': ''}

Status: CVE-2021-3287 is not detected by Nessus and OpenVAS

95. Remote Code Execution - Unknown Product (CVE-2021-33026) - High [540]

Description: {'vulners_cve_data_all': 'The Flask-Caching extension through 1.10.1 for Flask relies on Pickle for serialization, which may lead to remote code execution or local privilege escalation. If an attacker gains access to cache storage (e.g., filesystem, Memcached, Redis, etc.), they can construct a crafted payload, poison the cache, and execute Python code.', 'combined_cve_data_all': ''}

Status: CVE-2021-33026 is not detected by Nessus and OpenVAS

96. Remote Code Execution - Unknown Product (CVE-2021-34371) - High [540]

Description: {'vulners_cve_data_all': 'Neo4j through 3.4.18 (with the shell server enabled) exposes an RMI service that arbitrarily deserializes Java objects, e.g., through setSessionVariable. An attacker can abuse this for remote code execution because there are dependencies with exploitable gadget chains.', 'combined_cve_data_all': ''}

Status: CVE-2021-34371 is not detected by Nessus and OpenVAS

97. Remote Code Execution - Unknown Product (CVE-2021-38294) - High [540]

Description: {'vulners_cve_data_all': 'A Command Injection vulnerability exists in the getTopologyHistory service of the Apache Storm 2.x prior to 2.2.1 and Apache Storm 1.x prior to 1.2.4. A specially crafted thrift request to the Nimbus server allows Remote Code Execution (RCE) prior to authentication.', 'combined_cve_data_all': ''}

Status: CVE-2021-38294 is not detected by Nessus and OpenVAS

98. Remote Code Execution - Unknown Product (CVE-2021-40531) - High [540]

Description: {'vulners_cve_data_all': 'Sketch before 75 allows library feeds to be used to bypass file quarantine. Files are automatically downloaded and opened, without the com.apple.quarantine extended attribute. This results in remote code execution, as demonstrated by CommandString in a terminal profile to Terminal.app.', 'combined_cve_data_all': ''}

Status: CVE-2021-40531 is not detected by Nessus and OpenVAS

99. Remote Code Execution - Unknown Product (CVE-2021-40865) - High [540]

Description: {'vulners_cve_data_all': 'An Unsafe Deserialization vulnerability exists in the worker services of the Apache Storm supervisor server allowing pre-auth Remote Code Execution (RCE). Apache Storm 2.2.x users should upgrade to version 2.2.1 or 2.3.0. Apache Storm 2.1.x users should upgrade to version 2.1.1. Apache Storm 1.x users should upgrade to version 1.2.4', 'combined_cve_data_all': ''}

Status: CVE-2021-40865 is not detected by Nessus and OpenVAS

100. Remote Code Execution - Unknown Product (CVE-2021-42550) - High [540]

Description: {'vulners_cve_data_all': 'In logback version 1.2.7 and prior versions, an attacker with the required privileges to edit configurations files could craft a malicious configuration allowing to execute arbitrary code loaded from LDAP servers.', 'combined_cve_data_all': ''}

Status: CVE-2021-42550 is not detected by Nessus and OpenVAS

101. Remote Code Execution - Unknown Product (CVE-2021-42667) - High [540]

Description: {'vulners_cve_data_all': 'A SQL Injection vulnerability exists in Sourcecodester Online Event Booking and Reservation System in PHP in event-management/views. An attacker can leverage this vulnerability in order to manipulate the sql query performed. As a result he can extract sensitive data from the web server and in some cases he can use this vulnerability in order to get a remote code execution on the remote web server.', 'combined_cve_data_all': ''}

Status: CVE-2021-42667 is not detected by Nessus and OpenVAS

102. Remote Code Execution - Unknown Product (CVE-2021-42668) - High [540]

Description: {'vulners_cve_data_all': 'A SQL Injection vulnerability exists in Sourcecodester Engineers Online Portal in PHP via the id parameter in the my_classmates.php web page.. As a result, an attacker can extract sensitive data from the web server and in some cases can use this vulnerability in order to get a remote code execution on the remote web server.', 'combined_cve_data_all': ''}

Status: CVE-2021-42668 is not detected by Nessus and OpenVAS

103. Remote Code Execution - Unknown Product (CVE-2021-42670) - High [540]

Description: {'vulners_cve_data_all': 'A SQL injection vulnerability exists in Sourcecodester Engineers Online Portal in PHP via the id parameter to the announcements_student.php web page. As a result a malicious user can extract sensitive data from the web server and in some cases use this vulnerability in order to get a remote code execution on the remote web server.', 'combined_cve_data_all': ''}

Status: CVE-2021-42670 is not detected by Nessus and OpenVAS

104. Unknown Vulnerability Type - Unknown Product (CVE-2021-36798) - High [540]

Description: {'vulners_cve_data_all': "A Denial-of-Service (DoS) vulnerability was discovered in Team Server in HelpSystems Cobalt Strike 4.2 and 4.3. It allows remote attackers to crash the C2 server thread and block beacons' communication with it.", 'combined_cve_data_all': ''}

Status: CVE-2021-36798 is not detected by Nessus and OpenVAS

105. Code Injection - Unknown Product (CVE-2021-24285) - High [534]

Description: {'vulners_cve_data_all': 'The request_list_request AJAX call of the Car Seller - Auto Classifieds Script WordPress plugin through 2.1.0, available to both authenticated and unauthenticated users, does not sanitise, validate or escape the order_id POST parameter before using it in a SQL statement, leading to a SQL Injection issue.', 'combined_cve_data_all': ''}

Status: CVE-2021-24285 is not detected by Nessus and OpenVAS

106. Code Injection - Unknown Product (CVE-2021-24321) - High [534]

Description: {'vulners_cve_data_all': 'The Bello - Directory & Listing WordPress theme before 1.6.0 did not sanitise the bt_bb_listing_field_price_range_to, bt_bb_listing_field_now_open, bt_bb_listing_field_my_lng, listing_list_view and bt_bb_listing_field_my_lat parameters before using them in a SQL statement, leading to SQL Injection issues', 'combined_cve_data_all': ''}

Status: CVE-2021-24321 is not detected by Nessus and OpenVAS

107. Code Injection - Unknown Product (CVE-2021-24361) - High [534]

Description: {'vulners_cve_data_all': 'In the Location Manager WordPress plugin before 2.1.0.10, the AJAX action gd_popular_location_list did not properly sanitise or validate some of its POST parameters, which are then used in a SQL statement, leading to unauthenticated SQL Injection issues.', 'combined_cve_data_all': ''}

Status: CVE-2021-24361 is not detected by Nessus and OpenVAS

108. Code Injection - Unknown Product (CVE-2021-24442) - High [534]

Description: {'vulners_cve_data_all': 'The Poll, Survey, Questionnaire and Voting system WordPress plugin before 1.5.3 did not sanitise, escape or validate the date_answers[] POST parameter before using it in a SQL statement when sending a Poll result, allowing unauthenticated users to perform SQL Injection attacks', 'combined_cve_data_all': ''}

Status: CVE-2021-24442 is not detected by Nessus and OpenVAS

109. Code Injection - Unknown Product (CVE-2021-24507) - High [534]

Description: {'vulners_cve_data_all': 'The Astra Pro Addon WordPress plugin before 3.5.2 did not properly sanitise or escape some of the POST parameters from the astra_pagination_infinite and astra_shop_pagination_infinite AJAX action (available to both unauthenticated and authenticated user) before using them in SQL statement, leading to an SQL Injection issues', 'combined_cve_data_all': ''}

Status: CVE-2021-24507 is not detected by Nessus and OpenVAS

110. Code Injection - Unknown Product (CVE-2021-24951) - High [534]

Description: {'vulners_cve_data_all': 'The LearnPress WordPress plugin before 4.1.4 does not sanitise, validate and escape the id parameter before using it in SQL statements when duplicating course/lesson/quiz/question, leading to SQL Injections issues', 'combined_cve_data_all': ''}

Status: CVE-2021-24951 is not detected by Nessus and OpenVAS

111. Code Injection - Unknown Product (CVE-2021-26904) - High [534]

Description: {'vulners_cve_data_all': 'LMA ISIDA Retriever 5.2 allows SQL Injection.', 'combined_cve_data_all': ''}

Status: CVE-2021-26904 is not detected by Nessus and OpenVAS

112. Code Injection - Unknown Product (CVE-2021-31856) - High [534]

Description: {'vulners_cve_data_all': 'A SQL Injection vulnerability in the REST API in Layer5 Meshery 0.5.2 allows an attacker to execute arbitrary SQL commands via the /experimental/patternfiles endpoint (order parameter in GetMesheryPatterns in models/meshery_pattern_persister.go).', 'combined_cve_data_all': ''}

Status: CVE-2021-31856 is not detected by Nessus and OpenVAS

113. Code Injection - Unknown Product (CVE-2021-33470) - High [534]

Description: {'vulners_cve_data_all': 'COVID19 Testing Management System 1.0 is vulnerable to SQL Injection via the admin panel.', 'combined_cve_data_all': ''}

Status: CVE-2021-33470 is not detected by Nessus and OpenVAS

114. Code Injection - Unknown Product (CVE-2021-36880) - High [534]

Description: {'vulners_cve_data_all': 'Unauthenticated SQL Injection (SQLi) vulnerability in WordPress uListing plugin (versions <= 2.0.3), vulnerable parameter: custom.', 'combined_cve_data_all': ''}

Status: CVE-2021-36880 is not detected by Nessus and OpenVAS

115. Code Injection - Unknown Product (CVE-2021-39377) - High [534]

Description: {'vulners_cve_data_all': 'A SQL Injection vulnerability exists in openSIS 8.0 when MySQL (MariaDB) is being used as the application database. A malicious attacker can issue SQL commands to the MySQL (MariaDB) database through the index.php username parameter.', 'combined_cve_data_all': ''}

Status: CVE-2021-39377 is not detected by Nessus and OpenVAS

116. Code Injection - Unknown Product (CVE-2021-39378) - High [534]

Description: {'vulners_cve_data_all': 'A SQL Injection vulnerability exists in openSIS 8.0 when MySQL (MariaDB) is being used as the application database. A malicious attacker can issue SQL commands to the MySQL (MariaDB) database through the NamesList.php str parameter.', 'combined_cve_data_all': ''}

Status: CVE-2021-39378 is not detected by Nessus and OpenVAS

117. Code Injection - Unknown Product (CVE-2021-39379) - High [534]

Description: {'vulners_cve_data_all': 'A SQL Injection vulnerability exists in openSIS 8.0 when MySQL (MariaDB) is being used as the application database. A malicious attacker can issue SQL commands to the MySQL (MariaDB) database through the ResetUserInfo.php password_stn_id parameter.', 'combined_cve_data_all': ''}

Status: CVE-2021-39379 is not detected by Nessus and OpenVAS

118. Code Injection - Unknown Product (CVE-2021-41649) - High [534]

Description: {'vulners_cve_data_all': 'An un-authenticated SQL Injection exists in PuneethReddyHC online-shopping-system-advanced through the /homeaction.php cat_id parameter. Using a post request does not sanitize the user input.', 'combined_cve_data_all': ''}

Status: CVE-2021-41649 is not detected by Nessus and OpenVAS

119. Code Injection - Unknown Product (CVE-2021-42224) - High [534]

Description: {'vulners_cve_data_all': 'SQL Injection vulnerability exists in IFSC Code Finder Project 1.0 via the searchifsccode POST parameter in /search.php.', 'combined_cve_data_all': ''}

Status: CVE-2021-42224 is not detected by Nessus and OpenVAS

120. Code Injection - Unknown Product (CVE-2021-42665) - High [534]

Description: {'vulners_cve_data_all': 'An SQL Injection vulnerability exists in Sourcecodester Engineers Online Portal in PHP via the login form inside of index.php, which can allow an attacker to bypass authentication.', 'combined_cve_data_all': ''}

Status: CVE-2021-42665 is not detected by Nessus and OpenVAS

121. Code Injection - Unknown Product (CVE-2021-43140) - High [534]

Description: {'vulners_cve_data_all': 'SQL Injection vulnerability exists in Sourcecodester. Simple Subscription Website 1.0. via the login.', 'combined_cve_data_all': ''}

Status: CVE-2021-43140 is not detected by Nessus and OpenVAS

122. Command Injection - Unknown Product (CVE-2021-27886) - High [534]

Description: {'vulners_cve_data_all': 'rakibtg Docker Dashboard before 2021-02-28 allows command injection in backend/utilities/terminal.js via shell metacharacters in the command parameter of an API request. NOTE: this is NOT a Docker, Inc. product.', 'combined_cve_data_all': ''}

Status: CVE-2021-27886 is not detected by Nessus and OpenVAS

123. Command Injection - Unknown Product (CVE-2021-31605) - High [534]

Description: {'vulners_cve_data_all': 'furlongm openvpn-monitor through 1.1.3 allows %0a command injection via the OpenVPN management interface socket. This can shut down the server via signal%20SIGTERM.', 'combined_cve_data_all': ''}