‼ CVE-2020-27780 ‼
📖 Read
via "National Vulnerability Database".
A flaw was found in Linux-Pam in versions prior to 1.5.1 in the way it handle empty passwords for non-existing users. When the user doesn't exist PAM try to authenticate with root and in the case of an empty password it successfully authenticate.📖 Read
via "National Vulnerability Database".
‼ CVE-2020-12519 ‼
📖 Read
via "National Vulnerability Database".
On Phoenix Contact PLCnext Control Devices versions before 2021.0 LTS an attacker can use this vulnerability i.e. to open a reverse shell with root privileges.📖 Read
via "National Vulnerability Database".
‼ CVE-2020-13510 ‼
📖 Read
via "National Vulnerability Database".
An information disclosure vulnerability exists in the WinRing0x64 Driver Privileged I/O Read IRPs functionality of NZXT CAM 4.8.0. A specially crafted I/O request packet (IRP) using the IRP 0x9c4060d0 gives a low privilege user direct access to the IN instruction that is completely unrestrained at an elevated privilege level. An attacker can send a malicious IRP to trigger this vulnerability.📖 Read
via "National Vulnerability Database".
‼ CVE-2020-13527 ‼
📖 Read
via "National Vulnerability Database".
An authentication bypass vulnerability exists in the Web Manager functionality of Lantronix XPort EDGE 3.0.0.0R11, 3.1.0.0R9, 3.4.0.0R12 and 4.2.0.0R7. A specially crafted HTTP request can cause increased privileges. An attacker can send an HTTP request to trigger this vulnerability.📖 Read
via "National Vulnerability Database".
‼ CVE-2020-20139 ‼
📖 Read
via "National Vulnerability Database".
Cross Site Scripting (XSS) vulnerability in the Remote JSON component Under the Connect menu in Flexmonster Pivot Table & Charts 2.7.17.📖 Read
via "National Vulnerability Database".
‼ CVE-2020-27340 ‼
📖 Read
via "National Vulnerability Database".
The online help portal of Mitel MiCollab before 9.2 could allow an attacker to redirect a user to an unauthorized website by executing malicious script due to insufficient access control.📖 Read
via "National Vulnerability Database".
‼ CVE-2020-35474 ‼
📖 Read
via "National Vulnerability Database".
In MediaWiki before 1.35.1, the combination of Html::rawElement and Message::text leads to XSS because the definition of MediaWiki:recentchanges-legend-watchlistexpiry can be changed onwiki so that the output is raw HTML.📖 Read
via "National Vulnerability Database".
‼ CVE-2020-26177 ‼
📖 Read
via "National Vulnerability Database".
In tangro Business Workflow before 1.18.1, a user's profile contains some items that are greyed out and thus are not intended to be edited by regular users. However, this restriction is only applied client-side. Manipulating any of the greyed-out values in requests to /api/profile is not prohibited server-side.📖 Read
via "National Vulnerability Database".
‼ CVE-2020-26173 ‼
📖 Read
via "National Vulnerability Database".
An incorrect access control implementation in Tangro Business Workflow before 1.18.1 allows an attacker to download documents (PDF) by providing a valid document ID and token. No further authentication is required.📖 Read
via "National Vulnerability Database".
‼ CVE-2020-26174 ‼
📖 Read
via "National Vulnerability Database".
tangro Business Workflow before 1.18.1 requests a list of allowed filetypes from the server and restricts uploads to the filetypes contained in this list. However, this restriction is enforced in the browser (client-side) and can be circumvented. This allows an attacker to upload any file as an attachment to a workitem.📖 Read
via "National Vulnerability Database".
‼ CVE-2020-35478 ‼
📖 Read
via "National Vulnerability Database".
MediaWiki before 1.35.1 allows XSS via BlockLogFormatter.php. MediaWiki:blanknamespace potentially can be output as raw HTML with SCRIPT tags via LogFormatter::makePageLink(). This affects MediaWiki 1.33.0 and later.📖 Read
via "National Vulnerability Database".
‼ CVE-2020-35480 ‼
📖 Read
via "National Vulnerability Database".
An issue was discovered in MediaWiki before 1.35.1. Missing users (accounts that don't exist) and hidden users (accounts that have been explicitly hidden due to being abusive, or similar) that the viewer cannot see are handled differently, exposing sensitive information about the hidden status to unprivileged viewers. This exists on various code paths.📖 Read
via "National Vulnerability Database".
‼ CVE-2020-35554 ‼
📖 Read
via "National Vulnerability Database".
An issue was discovered on LG mobile devices with Android OS 8.0, 8.1, 9.0, and 10 software. There is a WebView SSL error-handler vulnerability. The LG ID is LVE-SMP-200026 (December 2020).📖 Read
via "National Vulnerability Database".
‼ CVE-2020-26175 ‼
📖 Read
via "National Vulnerability Database".
In tangro Business Workflow before 1.18.1, an attacker can manipulate the value of PERSON in requests to /api/profile in order to change profile information of other users.📖 Read
via "National Vulnerability Database".
‼ CVE-2020-35555 ‼
📖 Read
via "National Vulnerability Database".
An issue was discovered on LG mobile devices with Android OS 10 software. When a dual-screen configuration is supported, the device does not lock upon disconnection of a call with the cover closed. The LG ID is LVE-SMP-200027 (December 2020).📖 Read
via "National Vulnerability Database".
‼ CVE-2020-35548 ‼
📖 Read
via "National Vulnerability Database".
An issue was discovered in Finder on Samsung mobile devices with Q(10.0) software. A call to a non-existent provider allows attackers to cause a denial of service. The Samsung ID is SVE-2020-18629 (December 2020).📖 Read
via "National Vulnerability Database".
‼ CVE-2020-25609 ‼
📖 Read
via "National Vulnerability Database".
The NuPoint Messenger Portal of Mitel MiCollab before 9.2 could allow an authenticated attacker to execute arbitrary scripts due to insufficient input validation, aka XSS. A successful exploit could allow an attacker to view and modify user data.📖 Read
via "National Vulnerability Database".
‼ CVE-2020-25610 ‼
📖 Read
via "National Vulnerability Database".
The AWV component of Mitel MiCollab before 9.2 could allow an attacker to gain access to a web conference due to insufficient access control for conference codes.📖 Read
via "National Vulnerability Database".
‼ CVE-2020-26171 ‼
📖 Read
via "National Vulnerability Database".
In tangro Business Workflow before 1.18.1, the documentId of attachment uploads to /api/document/attachments/upload can be manipulated. By doing this, users can add attachments to workitems that do not belong to them.📖 Read
via "National Vulnerability Database".
‼ CVE-2020-27639 ‼
📖 Read
via "National Vulnerability Database".
The Bluetooth handset of Mitel MiVoice 6873i, 6930, and 6940 SIP phones with firmware before 5.1.0.SP6 could allow an unauthenticated attacker within Bluetooth range to pair a rogue Bluetooth device when a phone handset loses connection, due to an improper pairing mechanism. A successful exploit could allow an attacker to eavesdrop on conversations.📖 Read
via "National Vulnerability Database".
‼ CVE-2019-16955 ‼
📖 Read
via "National Vulnerability Database".
SolarWinds Web Help Desk 12.7.0 allows XSS via an uploaded SVG document in a request.📖 Read
via "National Vulnerability Database".