Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In June 2021
PHPGurukul Hospital Management System in PHP v4.0 has a SQL injection vulnerability in \hms\user-login.php. Remote unauthenticated users can exploit the vulnerability to obtain database sensitive information.
CVSS Score
7.5
EPSS Score
0.02
Published
2021-06-22
PHPGurukul Hospital Management System in PHP v4.0 has a SQL injection vulnerability in \hms\check_availability.php. Remote unauthenticated users can exploit the vulnerability to obtain database sensitive information.
CVSS Score
7.5
EPSS Score
0.015
Published
2021-06-22
Information Disclosure in NoneCMS v1.3 allows remote attackers to obtain sensitive information via the component "/nonecms/vendor".
CVSS Score
7.5
EPSS Score
0.002
Published
2021-06-22
Cross Site Request Forgery (CSRF) in JuQingCMS v1.0 allows remote attackers to gain local privileges via the component "JuQingCMS_v1.0/admin/index.php?c=administrator&a=add".
CVSS Score
8.8
EPSS Score
0.003
Published
2021-06-22
Information Disclosure in NoneCMS v1.3 allows remote attackers to obtain sensitive information via the component "/public/index.php".
CVSS Score
7.5
EPSS Score
0.002
Published
2021-06-22
Improper Certificate Validation vulnerability in the Online Threat Prevention module as used in Bitdefender Total Security allows an attacker to potentially bypass HTTP Strict Transport Security (HSTS) checks. This issue affects: Bitdefender Total Security versions prior to 25.0.7.29. Bitdefender Internet Security versions prior to 25.0.7.29. Bitdefender Antivirus Plus versions prior to 25.0.7.29.
CVSS Score
6.5
EPSS Score
0.001
Published
2021-06-22
Gitpod before 0.6.0 allows unvalidated redirects.
CVSS Score
6.1
EPSS Score
0.005
Published
2021-06-22
It was found in vanilla forums before 2.0.10 a cross-site scripting vulnerability where a filename could contain arbitrary code to execute on the client side.
CVSS Score
6.1
EPSS Score
0.002
Published
2021-06-22
It was found in vanilla forums before 2.0.10 a potential linkbait vulnerability in dispatcher.
CVSS Score
6.1
EPSS Score
0.002
Published
2021-06-22
It was found in FreeBSD 8.0, 6.3 and 4.9, and OpenBSD 4.6 that a null pointer dereference in ftpd/popen.c may lead to remote denial of service of the ftpd service.
CVSS Score
7.5
EPSS Score
0.012
Published
2021-06-22


Contact Us

Shodan ® - All rights reserved