Security Vulnerabilities - CVEs Published In 2021
showdoc is vulnerable to URL Redirection to Untrusted Site
CVSS Score
6.5
EPSS Score
0.003
Published
2021-12-03
An arbitrary file upload vulnerability in Z-BlogPHP v1.6.1.2100 allows attackers to execute arbitrary code via a crafted JPG file.
CVSS Score
7.8
EPSS Score
0.004
Published
2021-12-02
Z-BlogPHP v1.6.1.2100 was discovered to contain an arbitrary file deletion vulnerability via \app_del.php.
CVSS Score
9.1
EPSS Score
0.003
Published
2021-12-02
Taocms v2.5Beta5 was discovered to contain a blind SQL injection vulnerability via the function Article Search.
CVSS Score
7.2
EPSS Score
0.003
Published
2021-12-02
Taocms v2.5Beta5 was discovered to contain a blind SQL injection vulnerability via the function Edit Article.
CVSS Score
7.2
EPSS Score
0.003
Published
2021-12-02
Taocms v2.5Beta5 was discovered to contain a cross-site scripting (XSS) vulnerability via the component Management column.
CVSS Score
4.8
EPSS Score
0.002
Published
2021-12-02
AOM v2.0.1 was discovered to contain a stack buffer overflow via the component src/aom_image.c.
CVSS Score
8.8
EPSS Score
0.002
Published
2021-12-02
AOM v2.0.1 was discovered to contain a NULL pointer dereference via the component av1/av1_dx_iface.c.
CVSS Score
6.5
EPSS Score
0.001
Published
2021-12-02
AOM v2.0.1 was discovered to contain a stack buffer overflow via the component stats/rate_hist.c.
CVSS Score
8.8
EPSS Score
0.002
Published
2021-12-02
AOM v2.0.1 was discovered to contain a global buffer overflow via the component av1/encoder/partition_search.h.
CVSS Score
8.8
EPSS Score
0.002
Published
2021-12-02