CVE-2021-37781 (employee_record_management_system)
Employee Record Management System v 1.2 is vulnerable to Cross Site Scripting (XSS) via editempprofile.php. Read More
CVE-2021-35387
Hospital Management System v 4.0 is vulnerable to SQL Injection via file:hospital/hms/admin/view-patient.php. Read More
ghc-cmark-gfm-0.2.5-1.fc36
FEDORA-2022-6bcee2cc93 Packages in this update: ghc-cmark-gfm-0.2.5-1.fc36 Update description: updates the C library to 0.29.0.gfm.6 which fixes CVE-2022-39209 Read More
ghc-cmark-gfm-0.2.5-1.fc35
FEDORA-2022-f1aed93db8 Packages in this update: ghc-cmark-gfm-0.2.5-1.fc35 Update description: updates the C library to 0.29.0.gfm.6 which fixes CVE-2022-39209 Read More
java-latest-openjdk-19.0.1.0.10-2.rolling.fc36
FEDORA-2022-e8698f2e5e Packages in this update: java-latest-openjdk-19.0.1.0.10-2.rolling.fc36 Update description: New in release OpenJDK 19.0.1 (2022-10-18) Full release notes CVEs Fixed CVE-2022-21618 CVE-2022-21619 CVE-2022-21624 CVE-2022-21628 CVE-2022-39399 Security...
java-latest-openjdk-19.0.1.0.10-2.rolling.fc37
FEDORA-2022-d0ed59bee7 Packages in this update: java-latest-openjdk-19.0.1.0.10-2.rolling.fc37 Update description: New in release OpenJDK 19.0.1 (2022-10-18) Full release notes This update depends on FEDORA-2022-d0fc6f0dd4 CVEs Fixed CVE-2022-21618...
java-latest-openjdk-19.0.1.0.10-2.rolling.fc35
FEDORA-2022-ec7de69ceb Packages in this update: java-latest-openjdk-19.0.1.0.10-2.rolling.fc35 Update description: New in release OpenJDK 19.0.1 (2022-10-18) Full release notes This update depends on FEDORA-2022-10bb6f119e CVEs Fixed CVE-2022-21618...
CVE-2021-36206
All versions of CEVAS prior to 1.01.46 do not sufficiently validate user-controllable input and could allow a user to bypass authentication and retrieve data with...
CVE-2021-38395
Honeywell Experion PKS C200, C200E, C300, and ACE controllers are vulnerable to improper neutralization of special elements in output, which may allow an attacker to...
CVE-2021-38397
Honeywell Experion PKS C200, C200E, C300, and ACE controllers are vulnerable to unrestricted file uploads, which may allow an attacker to remotely execute arbitrary code...