| ID | Summary | Flags | Max Score |
|---|---|---|---|
| CVE-2020-20012 | WebPlus Pro v1.4.7.8.4-01 is vulnerable to Incorrect Access Control.... | E | |
| CVE-2020-20021 | An issue discovered in MikroTik Router v6.46.3 and earlier allows attacker to cause denial of servic... | E | |
| CVE-2020-20067 | File upload vulnerability in ebCMS v.1.1.0 allows a remote attacker to execute arbitrary code via th... | E | |
| CVE-2020-20070 | Cross Site Scripting vulnerability found in wkeyuan DWSurvey 1.0 allows a remote attacker to execute... | E | |
| CVE-2020-20092 | File Upload vulnerability exists in ArticleCMS 1.0 via the image upload feature at /admin by changin... | E | |
| CVE-2020-20093 | The Facebook Messenger app for iOS 227.0 and prior and Android 228.1.0.10.116 and prior user interfa... | E | |
| CVE-2020-20094 | Instagram iOS 106.0 and prior and Android 107.0.0.11 and prior user interface does not properly repr... | E | |
| CVE-2020-20095 | iMessage (Messages app) iOS 12.4 and prior user interface does not properly represent URI messages t... | E | |
| CVE-2020-20096 | Whatsapp iOS 2.19.80 and prior and Android 2.19.222 and prior user interface does not properly repre... | E | |
| CVE-2020-20118 | Buffer Overflow vulnerability in Avast AntiVirus before v.19.7 allows a local attacker to cause a de... | S | |
| CVE-2020-20120 | ThinkPHP v3.2.3 and below contains a SQL injection vulnerability which is triggered when the array i... | E | |
| CVE-2020-20122 | Wuzhi CMS v4.1 contains a SQL injection vulnerability in the checktitle() function in /coreframe/app... | E | |
| CVE-2020-20124 | Wuzhi CMS v4.1.0 contains a remote code execution (RCE) vulnerability in \attachment\admin\index.php... | E | |
| CVE-2020-20125 | EARCLINK ESPCMS-P8 contains a cross-site scripting (XSS) vulnerability in espcms_web\espcms_load.php... | E | |
| CVE-2020-20128 | LaraCMS v1.0.1 transmits sensitive information in cleartext which can be intercepted by attackers.... | E | |
| CVE-2020-20129 | LaraCMS v1.0.1 contains a stored cross-site scripting (XSS) vulnerability which allows attackers to ... | E | |
| CVE-2020-20131 | LaraCMS v1.0.1 contains a stored cross-site scripting (XSS) vulnerability which allows atackers to e... | E | |
| CVE-2020-20136 | QuantConnect Lean versions from 2.3.0.0 to 2.4.0.1 are affected by an insecure deserialization vulne... | E | |
| CVE-2020-20138 | Cross Site Scripting (XSS) vulnerability in the Showtime2 Slideshow module in CMS Made Simple (CMSMS... | E | |
| CVE-2020-20139 | Cross Site Scripting (XSS) vulnerability in the Remote JSON component Under the Connect menu in Flex... | E | |
| CVE-2020-20140 | Cross Site Scripting (XSS) vulnerability in Remote Report component under the Open menu in Flexmonst... | E | |
| CVE-2020-20141 | Cross Site Scripting (XSS) vulnerability in the To OLAP (XMLA) component Under the Connect menu in F... | E | |
| CVE-2020-20142 | Cross Site Scripting (XSS) vulnerability in the "To Remote CSV" component under "Open" Menu in Flexm... | E | |
| CVE-2020-20145 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2019-14834. Reason: This candidat... | R | |
| CVE-2020-20178 | Ethereum 0xe933c0cd9784414d5f278c114904f5a84b396919#code.sol latest version is affected by a denial ... | | |
| CVE-2020-20183 | Insecure direct object reference vulnerability in Zyxel’s P1302-T10 v3 with firmware version 2.00(AB... | | |
| CVE-2020-20184 | GateOne allows remote attackers to execute arbitrary commands via shell metacharacters in the port f... | E | |
| CVE-2020-20189 | SQL Injection vulnerability in NewPK 1.1 via the title parameter to admin\newpost.php.... | E | |
| CVE-2020-20210 | Bludit 3.9.2 is vulnerable to Remote Code Execution (RCE) via /admin/ajax/upload-images.... | E | |
| CVE-2020-20211 | Mikrotik RouterOs 6.44.5 (long-term tree) suffers from an assertion failure vulnerability in the /no... | E | |
| CVE-2020-20212 | Mikrotik RouterOs 6.44.5 (long-term tree) suffers from a memory corruption vulnerability in the /nov... | E | |
| CVE-2020-20213 | Mikrotik RouterOs 6.44.5 (long-term tree) suffers from an stack exhaustion vulnerability in the /nov... | | |
| CVE-2020-20214 | Mikrotik RouterOs 6.44.6 (long-term tree) suffers from an assertion failure vulnerability in the bte... | E | |
| CVE-2020-20215 | Mikrotik RouterOs 6.44.6 (long-term tree) suffers from a memory corruption vulnerability in the /nov... | | |
| CVE-2020-20216 | Mikrotik RouterOs 6.44.6 (long-term tree) suffers from a memory corruption vulnerability in the /nov... | | |
| CVE-2020-20217 | Mikrotik RouterOs before 6.47 (stable tree) suffers from an uncontrolled resource consumption vulner... | | |
| CVE-2020-20218 | Mikrotik RouterOs 6.44.6 (long-term tree) suffers from a memory corruption vulnerability in the /nov... | E | |
| CVE-2020-20219 | Mikrotik RouterOs 6.44.6 (long-term tree) suffers from a memory corruption vulnerability in the /nov... | E | |
| CVE-2020-20220 | Mikrotik RouterOs prior to stable 6.47 suffers from a memory corruption vulnerability in the /nova/b... | E | |
| CVE-2020-20221 | Mikrotik RouterOs before 6.44.6 (long-term tree) suffers from an uncontrolled resource consumption v... | E | |
| CVE-2020-20222 | Mikrotik RouterOs 6.44.6 (long-term tree) suffers from a memory corruption vulnerability in the /nov... | E | |
| CVE-2020-20225 | Mikrotik RouterOs before 6.47 (stable tree) suffers from an assertion failure vulnerability in the /... | | |
| CVE-2020-20227 | Mikrotik RouterOs stable 6.47 suffers from a memory corruption vulnerability in the /nova/bin/diskd ... | E | |
| CVE-2020-20230 | Mikrotik RouterOs before stable 6.47 suffers from an uncontrolled resource consumption in the sshd p... | E | |
| CVE-2020-20231 | Mikrotik RouterOs through stable version 6.48.3 suffers from a memory corruption vulnerability in th... | E | |
| CVE-2020-20236 | Mikrotik RouterOs 6.46.3 (stable tree) suffers from a memory corruption vulnerability in the /nova/b... | E | |
| CVE-2020-20237 | Mikrotik RouterOs 6.46.3 (stable tree) suffers from a memory corruption vulnerability in the /nova/b... | E | |
| CVE-2020-20245 | Mikrotik RouterOs stable 6.46.3 suffers from a memory corruption vulnerability in the log process. A... | E | |
| CVE-2020-20246 | Mikrotik RouterOs stable 6.46.3 suffers from a memory corruption vulnerability in the mactel process... | E | |
| CVE-2020-20247 | Mikrotik RouterOs before 6.46.5 (stable tree) suffers from a memory corruption vulnerability in the ... | | |
| CVE-2020-20248 | Mikrotik RouterOs before stable 6.47 suffers from an uncontrolled resource consumption in the memtes... | E | |
| CVE-2020-20249 | Mikrotik RouterOs before stable 6.47 suffers from a memory corruption vulnerability in the resolver ... | E | |
| CVE-2020-20250 | Mikrotik RouterOs before stable version 6.47 suffers from a memory corruption vulnerability in the /... | E | |
| CVE-2020-20252 | Mikrotik RouterOs before stable version 6.47 suffers from a memory corruption vulnerability in the /... | E | |
| CVE-2020-20253 | Mikrotik RouterOs before 6.47 (stable tree) suffers from a divison by zero vulnerability in the /nov... | E | |
| CVE-2020-20254 | Mikrotik RouterOs before 6.47 (stable tree) suffers from a memory corruption vulnerability in the /n... | E | |
| CVE-2020-20262 | Mikrotik RouterOs before 6.47 (stable tree) suffers from an assertion failure vulnerability in the /... | E | |
| CVE-2020-20264 | Mikrotik RouterOs before 6.47 (stable tree) in the /ram/pckg/advanced-tools/nova/bin/netwatch proces... | E | |
| CVE-2020-20265 | Mikrotik RouterOs before 6.47 (stable tree) suffers from a memory corruption vulnerability in the /r... | E | |
| CVE-2020-20266 | Mikrotik RouterOs before 6.47 (stable tree) suffers from a memory corruption vulnerability in the /n... | E | |
| CVE-2020-20267 | Mikrotik RouterOs before 6.47 (stable tree) suffers from a memory corruption vulnerability in the /n... | E | |
| CVE-2020-20269 | A specially crafted Markdown document could cause the execution of malicious JavaScript code in Care... | | |
| CVE-2020-20276 | An unauthenticated stack-based buffer overflow vulnerability in common.c's handle_PORT in uftpd FTP ... | S | |
| CVE-2020-20277 | There are multiple unauthenticated directory traversal vulnerabilities in different FTP commands in ... | E S | |
| CVE-2020-20285 | There is a XSS in the user login page in zzcms 2019. Users can inject js code by the referer header ... | E | |
| CVE-2020-20287 | Unrestricted file upload vulnerability in the yccms 3.3 project. The xhUp function's improper judgme... | E | |
| CVE-2020-20289 | Sql injection vulnerability in the yccms 3.3 project. The no_top function's improper judgment of the... | E | |
| CVE-2020-20290 | Directory traversal vulnerability in the yccms 3.3 project. The delete, deletesite, and deleteAll fu... | E | |
| CVE-2020-20294 | An issue was found in CMSWing project version 1.3.8. Because the log function does not check the log... | E | |
| CVE-2020-20295 | An issue was found in CMSWing project version 1.3.8. Because the updateAction function does not chec... | E | |
| CVE-2020-20296 | An issue was found in CMSWing project version 1.3.8, Because the rechargeAction function does not ch... | E | |
| CVE-2020-20298 | Eval injection vulnerability in the parserCommom method in the ParserTemplate class in zzz_template.... | E | |
| CVE-2020-20299 | WeiPHP 5.0 does not properly restrict access to pages, related to using POST.... | E | |
| CVE-2020-20300 | SQL injection vulnerability in the wp_where function in WeiPHP 5.0.... | E | |
| CVE-2020-20335 | Buffer Overflow vulnerability in Antirez Kilo before commit 7709a04ae8520c5b04d261616098cebf742f5a23... | E | |
| CVE-2020-20340 | A SQL injection vulnerability in the 4.edu.php\conn\function.php component of S-CMS v1.0 allows atta... | E | |
| CVE-2020-20341 | YzmCMS v5.5 contains a server-side request forgery (SSRF) in the grab_image() function.... | E | |
| CVE-2020-20343 | WTCMS 1.0 contains a cross-site request forgery (CSRF) vulnerability in the index.php?g=admin&m=nav&... | E | |
| CVE-2020-20344 | WTCMS 1.0 contains a reflective cross-site scripting (XSS) vulnerability in the keyword search funct... | E | |
| CVE-2020-20345 | WTCMS 1.0 contains a reflective cross-site scripting (XSS) vulnerability in the page management back... | E | |
| CVE-2020-20347 | WTCMS 1.0 contains a stored cross-site scripting (XSS) vulnerability in the source field under the a... | E | |
| CVE-2020-20348 | WTCMS 1.0 contains a stored cross-site scripting (XSS) vulnerability in the link field under the bac... | E | |
| CVE-2020-20349 | WTCMS 1.0 contains a stored cross-site scripting (XSS) vulnerability in the link address field under... | E | |
| CVE-2020-20363 | Crossi Site Scripting (XSS) vulnerability in PbootCMS 2.0.3 in admin.php.... | E | |
| CVE-2020-20389 | Cross Site Scripting (XSS) vulnerability in GetSimpleCMS 3.4.0a in admin/edit.php.... | E | |
| CVE-2020-20391 | Cross Site Scripting vulnerability in GetSimpleCMS 3.4.0a in admin/snippets.php via (1) Add Snippet ... | E | |
| CVE-2020-20392 | SQL Injection vulnerability in imcat v5.2 via the fm[auser] parameters in coms/add_coms.php.... | E | |
| CVE-2020-20402 | Westbrookadmin portfolioCMS v1.05 allows attackers to bypass password validation and access sensitiv... | E | |
| CVE-2020-20406 | A stored XSS vulnerability exists in the Custom Link Attributes control Affect function in Elementor... | | |
| CVE-2020-20412 | lib/codebook.c in libvorbis before 1.3.6, as used in StepMania 5.0.12 and other products, has insuff... | E S | |
| CVE-2020-20413 | SQL injection vulnerability found in WUZHICMS v.4.1.0 allows a remote attacker to execute arbitrary ... | E | |
| CVE-2020-20425 | S-CMS Government Station Building System v5.0 contains a cross-site scripting (XSS) vulnerability in... | E | |
| CVE-2020-20426 | S-CMS Government Station Building System v5.0 contains a cross-site scripting (XSS) vulnerability in... | E | |
| CVE-2020-20444 | Jact OpenClinic 0.8.20160412 allows the attacker to read server files after login to the the admin a... | E S | |
| CVE-2020-20445 | FFmpeg 4.2 is affected by a Divide By Zero issue via libavcodec/lpc.h, which allows a remote malicio... | E S | |
| CVE-2020-20446 | FFmpeg 4.2 is affected by a Divide By Zero issue via libavcodec/aacpsy.c, which allows a remote mali... | E | |
| CVE-2020-20448 | FFmpeg 4.1.3 is affected by a Divide By Zero issue via libavcodec/ratecontrol.c, which allows a remo... | | |
| CVE-2020-20450 | FFmpeg 4.2 is affected by null pointer dereference passed as argument to libavformat/aviobuf.c, whic... | | |
| CVE-2020-20451 | Denial of Service issue in FFmpeg 4.2 due to resource management errors via fftools/cmdutils.c.... | E S | |
| CVE-2020-20453 | FFmpeg 4.2 is affected by a Divide By Zero issue via libavcodec/aaccoder, which allows a remote mali... | E S | |
| CVE-2020-20466 | White Shark System (WSS) 1.3.2 is vulnerable to unauthorized access via user_edit_password.php, remo... | E | |
| CVE-2020-20467 | White Shark System (WSS) 1.3.2 is vulnerable to sensitive information disclosure via default_task_ad... | E | |
| CVE-2020-20468 | White Shark System (WSS) 1.3.2 is vulnerable to CSRF. Attackers can use the user_edit_password.php f... | E | |
| CVE-2020-20469 | White Shark System (WSS) 1.3.2 has a SQL injection vulnerability. The vulnerability stems from the l... | E | |
| CVE-2020-20470 | White Shark System (WSS) 1.3.2 has web site physical path leakage vulnerability.... | | |
| CVE-2020-20471 | White Shark System (WSS) 1.3.2 has an unauthorized access vulnerability in default_user_edit.php, re... | E | |
| CVE-2020-20472 | White Shark System (WSS) 1.3.2 has a sensitive information disclosure vulnerability. The if_get_addb... | E | |
| CVE-2020-20473 | White Shark System (WSS) 1.3.2 has a SQL injection vulnerability. The vulnerability stems from the c... | E | |
| CVE-2020-20474 | White Shark System (WSS) 1.3.2 has a SQL injection vulnerability. The vulnerability stems from the d... | E | |
| CVE-2020-20486 | IEC104 v1.0 contains a stack-buffer overflow in the parameter Iec10x_Sta_Addr.... | E | |
| CVE-2020-20490 | A heap buffer-overflow in the client_example1.c component of libiec_iccp_mod v1.5 leads to a denial ... | E | |
| CVE-2020-20491 | SQL injection vulnerability in OpenCart v.2.2.00 thru 3.0.3.2 allows a remote attacker to execute ar... | E | |
| CVE-2020-20495 | bludit v3.13.0 contains an arbitrary file deletion vulnerability in the backup plugin via the `delet... | E | |
| CVE-2020-20502 | Cross Site Request Forgery found in yzCMS v.2.0 allows a remote attacker to execute arbitrary code v... | E | |
| CVE-2020-20508 | Shopkit v2.7 contains a reflective cross-site scripting (XSS) vulnerability in the /account/register... | E S | |
| CVE-2020-20514 | A Cross-Site Request Forgery (CSRF) in Maccms v10 via admin.php/admin/admin/del/ids/ | E | |
| CVE-2020-20521 | Cross Site Scripting vulnerability found in KiteCMS v.1.1 allows a remote attacker to execute arbitr... | E | |
| CVE-2020-20522 | Cross Site Scripting vulnerability found in KiteCMS v.1.1 allows a remote attacker to execute arbitr... | E | |
| CVE-2020-20523 | Cross Site Scripting (XSS) vulnerability in adm_user parameter in Gila CMS version 1.11.3, allows re... | E | |
| CVE-2020-20545 | Cross-Site Scripting (XSS) vulnerability in Zhiyuan G6 Government Collaboration System V6.1SP1, via ... | E | |
| CVE-2020-20582 | A server side request forgery (SSRF) vulnerability in /ApiAdminDomainSettings.php of MipCMS 5.0.1 al... | E | |
| CVE-2020-20583 | A SQL injection vulnerability in /question.php of LJCMS Version v4.3.R60321 allows attackers to obta... | E | |
| CVE-2020-20584 | A cross site scripting vulnerability in baigo CMS v4.0-beta-1 allows attackers to execute arbitrary ... | E | |
| CVE-2020-20585 | A blind SQL injection in /admin/?n=logs&c=index&a=dode of Metinfo 7.0 beta allows attackers to acces... | E | |
| CVE-2020-20586 | A cross site request forgery (CSRF) vulnerability in the /xyhai.php?s=/Auth/editUser URI of XYHCMS V... | E | |
| CVE-2020-20588 | File upload vulnerability in function upload in action/Core.class.php in zhimengzhe iBarn 1.5 allows... | E | |
| CVE-2020-20589 | Cross Site Scripting (XSS) vulnerability in FeehiCMS 2.0.8 allows remote attackers to run arbitrary ... | E | |
| CVE-2020-20593 | A cross-site request forgery (CSRF) in Rockoa v1.9.8 allows an authenticated attacker to arbitrarily... | E | |
| CVE-2020-20595 | A cross-site request forgery (CSRF) in OPMS v1.3 and below allows attackers to arbitrarily add a use... | E | |
| CVE-2020-20597 | A cross-site scripting (XSS) vulnerability in the potrtalItemName parameter in \web\PortalController... | E | |
| CVE-2020-20598 | A cross-site scripting (XSS) vulnerability in the Editing component of lemon V1.10.0 allows attacker... | E | |
| CVE-2020-20600 | MetInfo 7.0 beta contains a stored cross-site scripting (XSS) vulnerability in the $name parameter o... | E | |
| CVE-2020-20601 | An issue in ThinkCMF X2.2.2 and below allows attackers to execute arbitrary code via a crafted packe... | E | |
| CVE-2020-20605 | Blog CMS v1.0 contains a cross-site scripting (XSS) vulnerability in the /controller/CommentAdminCon... | E S | |
| CVE-2020-20625 | Sliced Invoices plugin for WordPress 3.8.2 and earlier allows unauthenticated information disclosure... | E | |
| CVE-2020-20626 | lara-google-analytics.php in Lara Google Analytics plugin through 2.0.4 for WordPress allows authent... | E | |
| CVE-2020-20627 | The includes/gateways/stripe/includes/admin/admin-actions.php in GiveWP plugin through 2.5.9 for Wor... | | |
| CVE-2020-20628 | controller/controller-comments.php in WP GDPR plugin through 2.1.1 has unauthenticated stored XSS.... | E | |
| CVE-2020-20633 | ajax_policy_generator in admin/modules/cli-policy-generator/classes/class-policy-generator-ajax.php ... | E | |
| CVE-2020-20634 | Elementor 2.9.5 and below WordPress plugin allows authenticated users to activate its safe mode feat... | E | |
| CVE-2020-20636 | SQL injection vulnerability found in Joyplus-cms v.1.6.0 allows a remote attacker to access sensitiv... | | |
| CVE-2020-20640 | Cross Site Scripting (XSS) vulnerability in ECShop 4.0 due to security filtering issues, in the user... | E | |
| CVE-2020-20642 | Cross Site Request Forgery (CSRF) vulnerability exists in EyouCMS 1.3.6 that can add an htm page to ... | E | |
| CVE-2020-20645 | Cross Site Scripting (XSS) vulnerability exists in EyouCMS1.3.6 in the basic_information area.... | E | |
| CVE-2020-20657 | Buffer overflow vulnerability in fcovatti libiec_iccp_mod v1.5, allows attackers to cause a denial o... | | |
| CVE-2020-20658 | Buffer overflow vulnerability in fcovatti libiec_iccp_mod v1.5, allows attackers to cause a denail o... | | |
| CVE-2020-20662 | libiec_iccp_mod v1.5 contains a heap-buffer-overflow in the component mms_client_example1.c.... | E | |
| CVE-2020-20663 | libiec_iccp_mod v1.5 contains a heap-buffer-overflow in the component mms_client_connection.c.... | E | |
| CVE-2020-20664 | libiec_iccp_mod v1.5 contains a segmentation violation in the component server_example1.c.... | E | |
| CVE-2020-20665 | rudp v0.6 was discovered to contain a memory leak in the component main.c.... | E | |
| CVE-2020-20670 | An arbitrary file upload vulnerability in /admin/media/upload of ZKEACMS V3.2.0 allows attackers to ... | E | |
| CVE-2020-20671 | A cross-site request forgery (CSRF) in KiteCMS V1.1 allows attackers to arbitrarily add an administr... | E | |
| CVE-2020-20672 | An arbitrary file upload vulnerability in /admin/upload/uploadfile of KiteCMS V1.1 allows attackers ... | E | |
| CVE-2020-20675 | Nuishop v2.3 contains a SQL injection vulnerability in /goods/getGoodsListByConditions/.... | E | |
| CVE-2020-20691 | An issue in Monstra CMS v3.0.4 allows attackers to execute arbitrary web scripts or HTML via bypassi... | E | |
| CVE-2020-20692 | GilaCMS v1.11.4 was discovered to contain a SQL injection vulnerability via the $_GET parameter in /... | E | |
| CVE-2020-20693 | A Cross-Site Request Forgery (CSRF) in GilaCMS v1.11.4 allows authenticated attackers to arbitrarily... | E | |
| CVE-2020-20695 | A stored cross-site scripting (XSS) vulnerability in GilaCMS v1.11.4 allows attackers to execute arb... | E | |
| CVE-2020-20696 | A cross-site scripting (XSS) vulnerability in /admin/content/post of GilaCMS v1.11.4 allows attacker... | E | |
| CVE-2020-20697 | Cross Site Scripting vulnerability in khodakhah NodCMS v.3.0 allows a remote attacker to execute arb... | E | |
| CVE-2020-20698 | A remote code execution (RCE) vulnerability in /1.com.php of S-CMS PHP v3.0 allows attackers to gets... | E | |
| CVE-2020-20699 | A cross site scripting (XSS) vulnerability in S-CMS PHP v3.0 allows attackers to execute arbitrary w... | E | |
| CVE-2020-20700 | A stored cross site scripting (XSS) vulnerability in /app/form_add/of S-CMS PHP v3.0 allows attacker... | E | |
| CVE-2020-20701 | A stored cross site scripting (XSS) vulnerability in /app/config/of S-CMS PHP v3.0 allows attackers ... | E | |
| CVE-2020-20703 | Buffer Overflow vulnerability in VIM v.8.1.2135 allows a remote attacker to execute arbitrary code v... | E S | |
| CVE-2020-20718 | File Upload vulnerability in PluckCMS v.4.7.10 dev versions allows a remote attacker to execute arbi... | E S | |
| CVE-2020-20725 | Cross Site Scripting vulnerability in taogogo taoCMS v.2.5 beta5.1 allows remote attacker to execute... | E | |
| CVE-2020-20726 | Cross Site Request Forgery vulnerability in Gila GilaCMS v.1.11.4 allows a remote attacker to execut... | E | |
| CVE-2020-20735 | File Upload vulnerability in LJCMS v.4.3.R60321 allows a remote attacker to execute arbitrary code v... | | |
| CVE-2020-20739 | im_vips2dz in /libvips/libvips/deprecated/im_vips2dz.c in libvips before 8.8.2 has an uninitialized ... | E S | |
| CVE-2020-20740 | PDFResurrect before 0.20 lack of header validation checks causes heap-buffer-overflow in pdf_get_ver... | E S | |
| CVE-2020-20741 | Incorrect Access Control in Beckhoff Automation GmbH & Co. KG CX9020 with firmware version CX9020_CB... | S | |
| CVE-2020-20746 | A stack-based buffer overflow in the httpd server on Tenda AC9 V15.03.06.60_EN allows remote attacke... | E | |
| CVE-2020-20781 | A stored cross-site scripting (XSS) vulnerability in /ucms/index.php?do=list_edit of UCMS 1.4.7 allo... | E | |
| CVE-2020-20796 | FlameCMS 3.3.5 contains a SQL injection vulnerability in /master/article.php via the "Id" parameter.... | E | |
| CVE-2020-20797 | FlameCMS 3.3.5 contains a time-based blind SQL injection vulnerability in /account/register.php.... | E | |
| CVE-2020-20799 | JeeCMS 1.0.1 contains a stored cross-site scripting (XSS) vulnerability which allows attackers to ex... | E | |
| CVE-2020-20800 | An issue was discovered in MetInfo v7.0.0 beta. There is SQL Injection via the install/index.php?act... | E | |
| CVE-2020-20808 | Cross Site Scripting vulnerability in Qibosoft qibosoft v.7 and before allows a remote attacker to e... | E | |
| CVE-2020-20813 | Control Channel in OpenVPN 2.4.7 and earlier allows remote attackers to cause a denial of service vi... | | |
| CVE-2020-20891 | Buffer Overflow vulnerability in function config_input in libavfilter/vf_gblur.c in Ffmpeg 4.2.1, al... | E | |
| CVE-2020-20892 | An issue was discovered in function filter_frame in libavfilter/vf_lenscorrection.c in Ffmpeg 4.2.1,... | E | |
| CVE-2020-20893 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2020-22030. Reason: This candidat... | R | |
| CVE-2020-20894 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2020-22025. Reason: This candidat... | R | |
| CVE-2020-20895 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2020-22028. Reason: This candidat... | R | |
| CVE-2020-20896 | An issue was discovered in function latm_write_packet in libavformat/latmenc.c in Ffmpeg 4.2.1, allo... | E S | |
| CVE-2020-20897 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2020-22035. Reason: This candidat... | R | |
| CVE-2020-20898 | Integer Overflow vulnerability in function filter16_prewitt in libavfilter/vf_convolution.c in Ffmpe... | E S | |
| CVE-2020-20899 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2020-22036. Reason: This candidat... | R | |
| CVE-2020-20900 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2020-22032. Reason: This candidat... | R | |
| CVE-2020-20901 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2020-22022. Reason: This candidat... | R | |
| CVE-2020-20902 | A CWE-125: Out-of-bounds read vulnerability exists in long_term_filter function in g729postfilter.c ... | S | |
| CVE-2020-20907 | MetInfo 7.0 beta is affected by a file modification vulnerability. Attackers can delete and modify i... | E | |
| CVE-2020-20908 | Akaunting v1.3.17 was discovered to contain a stored cross-site scripting (XSS) vulnerability which ... | E | |
| CVE-2020-20913 | SQL Injection vulnerability found in Ming-Soft MCMS v.4.7.2 allows a remote attacker to execute arbi... | E | |
| CVE-2020-20914 | SQL Injection vulnerability found in San Luan PublicCMS v.4.0 allows a remote attacker to execute ar... | E | |
| CVE-2020-20915 | SQL Injection vulnerability found in PublicCMS v.4.0 allows a remote attacker to execute arbitrary c... | E | |
| CVE-2020-20918 | An issue discovered in Pluck CMS v.4.7.10-dev2 allows a remote attacker to execute arbitrary php cod... | E S | |
| CVE-2020-20919 | File upload vulnerability in Pluck CMS v.4.7.10-dev2 allows a remote attacker to execute arbitrary c... | E | |
| CVE-2020-20943 | A Cross-Site Request Forgery (CSRF) in /member/post.php?job=postnew&step=post of Qibosoft v7 allows ... | E | |
| CVE-2020-20944 | An issue in /admin/index.php?lfj=mysql&action=del of Qibosoft v7 allows attackers to arbitrarily del... | E | |
| CVE-2020-20945 | A Cross-Site Request Forgery (CSRF) in /admin/index.php?lfj=member&action=editmember of Qibosoft v7 ... | E | |
| CVE-2020-20946 | Qibosoft v7 contains a stored cross-site scripting (XSS) vulnerability in the component /admin/index... | E | |
| CVE-2020-20948 | An arbitrary file download vulnerability in jeecg v3.8 allows attackers to access sensitive files vi... | E | |
| CVE-2020-20949 | Bleichenbacher's attack on PKCS #1 v1.5 padding for RSA in STM32 cryptographic firmware library soft... | | |
| CVE-2020-20950 | Bleichenbacher's attack on PKCS #1 v1.5 padding for RSA in Microchip Libraries for Applications 2018... | | |
| CVE-2020-20951 | In Pluck-4.7.10-dev2 admin background, a remote command execution vulnerability exists when uploadin... | E | |
| CVE-2020-20969 | File Upload vulnerability in PluckCMS v.4.7.10 allows a remote attacker to execute arbitrary code vi... | E S | |
| CVE-2020-20971 | Cross Site Request Forgery (CSRF) vulnerability in PbootCMS v2.0.3 via /admin.php?p=/User/index.... | E | |
| CVE-2020-20975 | In \lib\admin\action\dataaction.class.php in Gxlcms v1.1, SQL Injection exists via the $filename par... | E | |
| CVE-2020-20977 | A stored cross site scripting (XSS) vulnerability in index.php/legend/6.html of UK CMS v1.1.10 allow... | E | |
| CVE-2020-20979 | An arbitrary file upload vulnerability in the move_uploaded_file() function of LJCMS v4.3 allows att... | E | |
| CVE-2020-20981 | A SQL injection in the /admin/?n=logs&c=index&a=dolist component of Metinfo 7.0 allows attackers to ... | E | |
| CVE-2020-20982 | Cross Site Scripting (XSS) vulnerability in shadoweb wdja v1.5.1, allows attackers to execute arbitr... | | |
| CVE-2020-20988 | A cross site scripting (XSS) vulnerability in the /domains/cost-by-owner.php component of Domainmod ... | E | |
| CVE-2020-20989 | A cross-site request forgery (CSRF) in /admin/maintenance/ of Domainmod 4.13 allows attackers to arb... | E | |
| CVE-2020-20990 | A cross site scripting (XSS) vulnerability in the /segments/edit.php component of Domainmod 4.13 all... | E |