Security Vulnerabilities - CVEs Published In August 2021
Cross Site Scripting (XSS) vulnerability exists in PbootCMS v1.3.7 via the title parameter in the mod function in SingleController.php.
CVSS Score
4.8
EPSS Score
0.002
Published
2021-08-12
Cross Site Request Forgery (CSRF) vulnerability exists in bycms v1.3.0 that can add an admin account via admin.php/ucenter/add.html.
CVSS Score
6.8
EPSS Score
0.001
Published
2021-08-12
.NET Core and Visual Studio Denial of Service Vulnerability
CVSS Score
7.5
EPSS Score
0.076
Published
2021-08-12
Windows TCP/IP Remote Code Execution Vulnerability
CVSS Score
9.9
EPSS Score
0.137
Published
2021-08-12
Windows Event Tracing Elevation of Privilege Vulnerability
CVSS Score
7.8
EPSS Score
0.004
Published
2021-08-12
Windows User Account Profile Picture Elevation of Privilege Vulnerability
CVSS Score
7.0
EPSS Score
0.004
Published
2021-08-12
Azure Sphere Information Disclosure Vulnerability
CVSS Score
4.4
EPSS Score
0.004
Published
2021-08-12
Azure Sphere Elevation of Privilege Vulnerability
CVSS Score
7.7
EPSS Score
0.004
Published
2021-08-12
Azure Sphere Denial of Service Vulnerability
CVSS Score
6.0
EPSS Score
0.002
Published
2021-08-12
Windows Recovery Environment Agent Elevation of Privilege Vulnerability
CVSS Score
7.8
EPSS Score
0.004
Published
2021-08-12