Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In August 2020
CVE-2020-9228
FusionCompute 8.0.0 has an information disclosure vulnerability. Due to the properly protection of certain information, attackers may exploit this vulnerability to obtain certain information.
CVSS Score
7.5
EPSS Score
0.002
Published
2020-08-14
CVE-2020-9229
FusionCompute 8.0.0 has an information disclosure vulnerability. Due to the properly protection of certain information, attackers may exploit this vulnerability to obtain certain information.
CVSS Score
4.4
EPSS Score
0.0
Published
2020-08-14
CVE-2019-19643
ise smart connect KNX Vaillant 1.2.839 contain a Denial of Service.
CVSS Score
7.5
EPSS Score
0.004
Published
2020-08-14
CVE-2020-17462
CMS Made Simple 2.2.14 allows Authenticated Arbitrary File Upload because the File Manager does not block .ptar files, a related issue to CVE-2017-16798.
CVSS Score
7.8
EPSS Score
0.004
Published
2020-08-14
CVE-2019-6112
A Cross-site scripting (XSS) vulnerability in /inc/class-search.php in the Sell Media plugin v2.4.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the keyword parameter (aka $search_term or the Search field).
CVSS Score
6.1
EPSS Score
0.301
Published
2020-08-14
CVE-2019-7410
There is stored cross site scripting (XSS) in Galileo CMS v0.042. Remote authenticated users could inject arbitrary web script or HTML via $page_title in /lib/Galileo/files/templates/page/show.html.ep (aka the PAGE TITLE Field).
CVSS Score
6.1
EPSS Score
0.005
Published
2020-08-14
CVE-2020-12648
A cross-site scripting (XSS) vulnerability in TinyMCE 5.2.1 and earlier allows remote attackers to inject arbitrary web script when configured in classic editing mode.
CVSS Score
6.1
EPSS Score
0.001
Published
2020-08-14
CVE-2020-16205
Using a specially crafted URL command, a remote authenticated user can execute commands as root on the G-Cam and G-Code (Firmware Versions 1.12.0.25 and prior as well as the limited Versions 1.12.13.2 and 1.12.14.5).
CVSS Score
7.2
EPSS Score
0.547
Published
2020-08-14
CVE-2020-4662
IBM Event Streams 10.0.0 could allow an authenticated user to perform tasks to a schema due to improper authentication validation. IBM X-Force ID: 186233.
CVSS Score
6.5
EPSS Score
0.001
Published
2020-08-14
CVE-2019-20383
ABBYY network license server in ABBYY FineReader 15 before Release 4 (aka 15.0.112.2130) allows escalation of privileges by local users via manipulations involving files and using symbolic links.
CVSS Score
7.8
EPSS Score
0.001
Published
2020-08-13


Products
Pricing
Contact Us

Shodan ® - All rights reserved