Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In March 2021
CVE-2021-23129
An issue was discovered in Joomla! 2.5.0 through 3.9.24. Missing filtering of messages showed to users that could lead to xss issues.
CVSS Score
6.1
EPSS Score
0.016
Published
2021-03-04
CVE-2021-23130
An issue was discovered in Joomla! 2.5.0 through 3.9.24. Missing filtering of feed fields could lead to xss issues.
CVSS Score
6.1
EPSS Score
0.016
Published
2021-03-04
CVE-2021-23131
An issue was discovered in Joomla! 3.2.0 through 3.9.24. Missing input validation within the template manager.
CVSS Score
7.5
EPSS Score
0.0
Published
2021-03-04
CVE-2021-23132
An issue was discovered in Joomla! 3.0.0 through 3.9.24. com_media allowed paths that are not intended for image uploads
CVSS Score
7.5
EPSS Score
0.653
Published
2021-03-04
CVE-2021-26027
An issue was discovered in Joomla! 3.0.0 through 3.9.24. Incorrect ACL checks could allow unauthorized change of the category for an article.
CVSS Score
5.3
EPSS Score
0.0
Published
2021-03-04
CVE-2021-26028
An issue was discovered in Joomla! 3.0.0 through 3.9.24. Extracting an specifilcy crafted zip package could write files outside of the intended path.
CVSS Score
5.5
EPSS Score
0.0
Published
2021-03-04
CVE-2021-26029
An issue was discovered in Joomla! 1.6.0 through 3.9.24. Inadequate filtering of form contents could allow to overwrite the author field.
CVSS Score
5.3
EPSS Score
0.0
Published
2021-03-04
CVE-2020-15938
When traffic other than HTTP/S (eg: SSH traffic, etc...) traverses the FortiGate in version below 6.2.5 and below 6.4.2 on port 80/443, it is not redirected to the transparent proxy policy for processing, as it doesn't have a valid HTTP header.
CVSS Score
4.0
EPSS Score
0.004
Published
2021-03-04
CVE-2021-23344
The package total.js before 3.4.8 are vulnerable to Remote Code Execution (RCE) via set.
CVSS Score
9.8
EPSS Score
0.067
Published
2021-03-04
CVE-2021-23346
This affects the package html-parse-stringify before 2.0.1; all versions of package html-parse-stringify2. Sending certain input could cause one of the regular expressions that is used for parsing to backtrack, freezing the process.
CVSS Score
4.8
EPSS Score
0.003
Published
2021-03-04


Products
Pricing
Contact Us

Shodan ® - All rights reserved