Latest CVE Feed

Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 7.7

    HIGH
    CVE-2021-21932

    A specially-crafted HTTP request can lead to SQL injection. An attacker can make authenticated HTTP requests to trigger this at ‘name_filter’ parameter. This can be done as any authenticated user or through cross-site request forgery.... Read more

    Affected Products : r-seenet
    • EPSS Score: %1.19
    • Published: Dec. 22, 2021
    • Modified: Nov. 21, 2024

  • 7.7

    HIGH
    CVE-2021-21931

    A specially-crafted HTTP request can lead to SQL injection. An attacker can make authenticated HTTP requests at‘ stat_filter’ parameter to trigger this vulnerability. This can be done as any authenticated user or through cross-site request forgery.... Read more

    Affected Products : r-seenet
    • EPSS Score: %1.19
    • Published: Dec. 22, 2021
    • Modified: Nov. 21, 2024

  • 7.7

    HIGH
    CVE-2021-21930

    A specially-crafted HTTP request can lead to SQL injection. An attacker can make authenticated HTTP requests at ‘sn_filter’ parameter to trigger this vulnerability. This can be done as any authenticated user or through cross-site request forgery.... Read more

    Affected Products : r-seenet
    • EPSS Score: %1.19
    • Published: Dec. 22, 2021
    • Modified: Nov. 21, 2024

  • 7.7

    HIGH
    CVE-2021-21929

    A specially-crafted HTTP request can lead to SQL injection. An attacker can make authenticated HTTP requests at ‘prod_filter’ parameter to trigger this vulnerability. This can be done as any authenticated user or through cross-site request forgery.... Read more

    Affected Products : r-seenet
    • EPSS Score: %1.19
    • Published: Dec. 22, 2021
    • Modified: Nov. 21, 2024

  • 7.7

    HIGH
    CVE-2021-21928

    A specially-crafted HTTP request can lead to SQL injection. An attacker can make authenticated HTTP requests at ‘mac_filter’ parameter to trigger this vulnerability. This can be done as any authenticated user or through cross-site request forgery.... Read more

    Affected Products : r-seenet
    • EPSS Score: %1.19
    • Published: Dec. 22, 2021
    • Modified: Nov. 21, 2024

  • 7.7

    HIGH
    CVE-2021-21927

    A specially-crafted HTTP request can lead to SQL injection. An attacker can make authenticated HTTP requests to trigger these vulnerabilities. This can be done as any authenticated user or through cross-site request forgery at ‘loc_filter’ parameter.... Read more

    Affected Products : r-seenet
    • EPSS Score: %1.19
    • Published: Dec. 22, 2021
    • Modified: Nov. 21, 2024

  • 7.7

    HIGH
    CVE-2021-21926

    A specially-crafted HTTP request can lead to SQL injection. An attacker can make authenticated HTTP requests to trigger these vulnerabilities. This can be done as any authenticated user or through cross-site request forgery at ‘health_filter’ parameter.... Read more

    Affected Products : r-seenet
    • EPSS Score: %1.19
    • Published: Dec. 22, 2021
    • Modified: Nov. 21, 2024

  • 7.7

    HIGH
    CVE-2021-21925

    A specially-crafted HTTP request can lead to SQL injection. An attacker can make authenticated HTTP requests to trigger these vulnerabilities. This can be done as any authenticated user or through cross-site request forgery at ‘firm_filter’ parameter.... Read more

    Affected Products : r-seenet
    • EPSS Score: %1.19
    • Published: Dec. 22, 2021
    • Modified: Nov. 21, 2024

  • 7.7

    HIGH
    CVE-2021-21924

    A specially-crafted HTTP request can lead to SQL injection. An attacker can make authenticated HTTP requests to trigger these vulnerabilities. This can be done as any authenticated user or through cross-site request forgery at ‘desc_filter’ parameter.... Read more

    Affected Products : r-seenet
    • EPSS Score: %5.29
    • Published: Dec. 22, 2021
    • Modified: Nov. 21, 2024

  • 7.7

    HIGH
    CVE-2021-21923

    A specially-crafted HTTP request can lead to SQL injection. An attacker can make authenticated HTTP requests to trigger this vulnerability at ‘company_filter’ parameter with the administrative account or through cross-site request forgery.... Read more

    Affected Products : r-seenet
    • EPSS Score: %1.34
    • Published: Dec. 22, 2021
    • Modified: Nov. 21, 2024

  • 7.7

    HIGH
    CVE-2021-21922

    A specially-crafted HTTP request can lead to SQL injection. An attacker can make authenticated HTTP requests to trigger this vulnerability at ‘username_filter’ parameter with the administrative account or through cross-site request forgery.... Read more

    Affected Products : r-seenet
    • EPSS Score: %1.19
    • Published: Dec. 22, 2021
    • Modified: Nov. 21, 2024

  • 7.7

    HIGH
    CVE-2021-21921

    A specially-crafted HTTP request can lead to SQL injection. An attacker can make authenticated HTTP requests to trigger this vulnerability at ‘name_filter’ parameter with the administrative account or through cross-site request forgery.... Read more

    Affected Products : r-seenet
    • EPSS Score: %1.34
    • Published: Dec. 22, 2021
    • Modified: Nov. 21, 2024

  • 7.7

    HIGH
    CVE-2021-21920

    A specially-crafted HTTP request can lead to SQL injection. An attacker can make authenticated HTTP requests to trigger this vulnerability at ‘surname_filter’ parameter with the administrative account or through cross-site request forgery.... Read more

    Affected Products : r-seenet
    • EPSS Score: %1.34
    • Published: Dec. 22, 2021
    • Modified: Nov. 21, 2024

  • 7.7

    HIGH
    CVE-2021-21919

    A specially-crafted HTTP request can lead to SQL injection. An attacker can make authenticated HTTP requests to trigger this vulnerability at ord’ parameter. However, the high privilege super-administrator account needs to be used to achieve exploitation ... Read more

    Affected Products : r-seenet
    • EPSS Score: %1.34
    • Published: Dec. 22, 2021
    • Modified: Nov. 21, 2024

  • 7.7

    HIGH
    CVE-2021-21918

    A specially-crafted HTTP request can lead to SQL injection. An attacker can make authenticated HTTP requests to trigger this vulnerability at ‘name_filter’ parameter. However, the high privilege super-administrator account needs to be used to achieve expl... Read more

    Affected Products : r-seenet
    • EPSS Score: %1.34
    • Published: Dec. 22, 2021
    • Modified: Nov. 21, 2024

  • 8.8

    HIGH
    CVE-2021-21917

    An exploitable SQL injection vulnerability exist in the ‘group_list’ page of the Advantech R-SeeNet 2.4.15 (30.07.2021). A specially-crafted HTTP request at '‘ord’ parameter. An attacker can make authenticated HTTP requests to trigger this vulnerability. ... Read more

    Affected Products : r-seenet
    • EPSS Score: %1.25
    • Published: Dec. 22, 2021
    • Modified: Nov. 21, 2024

  • 8.8

    HIGH
    CVE-2021-21916

    An exploitable SQL injection vulnerability exist in the ‘group_list’ page of the Advantech R-SeeNet 2.4.15 (30.07.2021). A specially-crafted HTTP request at 'description_filter’ parameter. An attacker can make authenticated HTTP requests to trigger this v... Read more

    Affected Products : r-seenet
    • EPSS Score: %1.25
    • Published: Dec. 22, 2021
    • Modified: Nov. 21, 2024

  • 8.8

    HIGH
    CVE-2021-21915

    An exploitable SQL injection vulnerability exist in the ‘group_list’ page of the Advantech R-SeeNet 2.4.15 (30.07.2021). A specially-crafted HTTP request at ‘company_filter’ parameter. An attacker can make authenticated HTTP requests to trigger this vulne... Read more

    Affected Products : r-seenet
    • EPSS Score: %1.25
    • Published: Dec. 22, 2021
    • Modified: Nov. 21, 2024

  • 9.8

    CRITICAL
    CVE-2021-21914

    A heap-based buffer overflow vulnerability exists in the DecoderStream::Append functionality of Accusoft ImageGear 19.10. A specially-crafted file can lead to code execution. An attacker can provide a malicious file to trigger this vulnerability.... Read more

    Affected Products : imagegear
    • EPSS Score: %1.12
    • Published: Apr. 14, 2022
    • Modified: Nov. 21, 2024

  • 10.0

    CRITICAL
    CVE-2021-21913

    An information disclosure vulnerability exists in the WiFi Smart Mesh functionality of D-LINK DIR-3040 1.13B03. A specially-crafted network request can lead to command execution. An attacker can connect to the MQTT service to trigger this vulnerability.... Read more

    Affected Products : dir-3040_firmware dir-3040
    • EPSS Score: %0.69
    • Published: Sep. 23, 2021
    • Modified: Nov. 21, 2024
Showing 20 of 290958 Results