Export limit exceeded: 20757 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (20757 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2020-23900 | 1 Wildbit-soft | 1 Wildbit Viewer | 2024-11-21 | 5.5 Medium |
| A buffer overflow in WildBit Viewer v6.6 allows attackers to cause a denial of service (DoS) via a crafted tga file. Related to Data from Faulting Address controls Code Flow starting at Editor!TMethodImplementationIntercept+0x57a3b. | ||||
| CVE-2020-23890 | 1 Wildbit-soft | 1 Wildbit Viewer | 2024-11-21 | 5.5 Medium |
| A buffer overflow in WildBit Viewer v6.6 allows attackers to cause a denial of service (DoS) via a crafted JPG file. Related to Data from Faulting Address is used as one or more arguments in a subsequent Function Call starting at JPGCodec+0x753648. | ||||
| CVE-2020-23884 | 1 Nomacs | 1 Nomacs | 2024-11-21 | 5.5 Medium |
| A buffer overflow in Nomacs v3.15.0 allows attackers to cause a denial of service (DoS) via a crafted MNG file. | ||||
| CVE-2020-23705 | 1 Rockcarry | 1 Ffjpeg | 2024-11-21 | 6.5 Medium |
| A global buffer overflow vulnerability in jfif_encode at jfif.c:701 of ffjpeg through 2020-06-22 allows attackers to cause a Denial of Service (DOS) via a crafted jpeg file. | ||||
| CVE-2020-23679 | 1 Linux Network Project | 1 Linux Network Project | 2024-11-21 | 9.8 Critical |
| Buffer overflow vulnerability in Renleilei1992 Linux_Network_Project 1.0, allows attackers to execute arbitrary code, via the password field. | ||||
| CVE-2020-23109 | 1 Struktur | 1 Libheif | 2024-11-21 | 8.1 High |
| Buffer overflow vulnerability in function convert_colorspace in heif_colorconversion.cc in libheif v1.6.2, allows attackers to cause a denial of service and disclose sensitive information, via a crafted HEIF file. | ||||
| CVE-2020-22886 | 1 Artifex | 1 Mujs | 2024-11-21 | 7.5 High |
| Buffer overflow vulnerability in function jsG_markobject in jsgc.c in mujs before 1.0.8, allows remote attackers to cause a denial of service. | ||||
| CVE-2020-22885 | 1 Artifex | 1 Mujs | 2024-11-21 | 7.5 High |
| Buffer overflow vulnerability in mujs before 1.0.8 due to recursion in the GC scanning phase, allows remote attackers to cause a denial of service. | ||||
| CVE-2020-22884 | 1 Espruino | 1 Espruino | 2024-11-21 | 9.8 Critical |
| Buffer overflow vulnerability in function jsvGetStringChars in Espruino before RELEASE_2V09, allows remote attackers to execute arbitrary code. | ||||
| CVE-2020-22876 | 1 Quickjs Project | 1 Quickjs | 2024-11-21 | 7.5 High |
| Buffer Overflow vulnerability in quickjs.c in QuickJS, allows remote attackers to cause denial of service. This issue is resolved in the 2020-07-05 release. | ||||
| CVE-2020-22873 | 1 Jsish | 1 Jsish | 2024-11-21 | 9.8 Critical |
| Buffer overflow vulnerability in function NumberToPrecisionCmd in jsish before 3.0.7, allows remote attackers to execute arbitrary code. | ||||
| CVE-2020-22845 | 1 Mikrotik | 1 Routeros | 2024-11-21 | 7.5 High |
| A buffer overflow in Mikrotik RouterOS 6.47 allows unauthenticated attackers to cause a denial of service (DOS) via crafted FTP requests. | ||||
| CVE-2020-22390 | 1 Akaunting | 1 Akaunting | 2024-11-21 | 8.8 High |
| Akaunting <= 2.0.9 is vulnerable to CSV injection in the Item name field, export function. Attackers can inject arbitrary code into the name parameter and perform code execution when the crafted file is opened. | ||||
| CVE-2020-22284 | 1 Lwip Project | 1 Lwip | 2024-11-21 | 7.5 High |
| A buffer overflow vulnerability in the zepif_linkoutput() function of Free Software Foundation lwIP git head version and version 2.1.2 allows attackers to access sensitive information via a crafted 6LoWPAN packet. | ||||
| CVE-2020-22283 | 1 Lwip Project | 1 Lwip | 2024-11-21 | 7.5 High |
| A buffer overflow vulnerability in the icmp6_send_response_with_addrs_and_netif() function of Free Software Foundation lwIP version git head allows attackers to access sensitive information via a crafted ICMPv6 packet. | ||||
| CVE-2020-22278 | 1 Phpmyadmin | 1 Phpmyadmin | 2024-11-21 | 8.8 High |
| phpMyAdmin through 5.0.2 allows CSV injection via Export Section. NOTE: the vendor disputes this because "the CSV file is accurately generated based on the database contents. | ||||
| CVE-2020-22277 | 1 Codection | 1 Import And Export Users And Customers | 2024-11-21 | 8.0 High |
| Import and export users and customers WordPress Plugin through 1.15.5.11 allows CSV injection via a customer's profile. | ||||
| CVE-2020-22276 | 1 Weformspro | 1 Weforms | 2024-11-21 | 9.8 Critical |
| WeForms Wordpress Plugin 1.4.7 allows CSV injection via a form's entry. | ||||
| CVE-2020-22275 | 1 Easyregistrationforms | 1 Easy Registration Forms | 2024-11-21 | 8.8 High |
| Easy Registration Forms (ER Forms) Wordpress Plugin 2.0.6 allows an attacker to submit an entry with malicious CSV commands. After that, when the system administrator generates CSV output from the forms information, there is no check on this inputs and the codes are executable. | ||||
| CVE-2020-22274 | 1 Jomsocial | 1 Jomsocial | 2024-11-21 | 9.8 Critical |
| JomSocial (Joomla Social Network Extention) 4.7.6 allows CSV injection via a customer's profile. | ||||