Latest CVE Feed

Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.

Latest Critical Actively Exploited Remotely Exploitable

8.8

HIGH

CVE-2021-20864

Improper access control vulnerability in ELECOM routers (WRC-1167GST2 firmware v1.25 and prior, WRC-1167GST2A firmware v1.25 and prior, WRC-1167GST2H firmware v1.25 and prior, WRC-2533GS2-B firmware v1.52 and prior, WRC-2533GS2-W firmware v1.52 and prior,...

Affected Products : wrc-1167gst2_firmware wrc-1167gst2a_firmware wrc-1167gst2h_firmware wrc-2533gs2-b_firmware wrc-2533gs2-w_firmware wrc-1750gs_firmware wrc-1750gsv_firmware wrc-1900gst_firmware wrc-2533gst_firmware wrc-2533gst2_firmware +18 more products
Published: Dec. 01, 2021

Modified: Nov. 21, 2024
8.0

HIGH

CVE-2021-20863

OS command injection vulnerability in ELECOM routers (WRC-1167GST2 firmware v1.25 and prior, WRC-1167GST2A firmware v1.25 and prior, WRC-1167GST2H firmware v1.25 and prior, WRC-2533GS2-B firmware v1.52 and prior, WRC-2533GS2-W firmware v1.52 and prior, WR...

Affected Products : wrc-1167gst2_firmware wrc-1167gst2a_firmware wrc-1167gst2h_firmware wrc-2533gs2-b_firmware wrc-2533gs2-w_firmware wrc-1750gs_firmware wrc-1750gsv_firmware wrc-1900gst_firmware wrc-2533gst_firmware wrc-2533gst2_firmware +18 more products
Published: Dec. 01, 2021

Modified: Nov. 21, 2024
4.3

MEDIUM

CVE-2021-20862

Improper access control vulnerability in ELECOM routers (WRC-1167GST2 firmware v1.25 and prior, WRC-1167GST2A firmware v1.25 and prior, WRC-1167GST2H firmware v1.25 and prior, WRC-2533GS2-B firmware v1.52 and prior, WRC-2533GS2-W firmware v1.52 and prior,...

Affected Products : wrc-1167gst2_firmware wrc-1167gst2a_firmware wrc-1167gst2h_firmware wrc-2533gs2-b_firmware wrc-2533gs2-w_firmware wrc-1750gs_firmware wrc-1750gsv_firmware wrc-1900gst_firmware wrc-2533gst_firmware wrc-2533gst2_firmware +18 more products
Published: Dec. 01, 2021

Modified: Nov. 21, 2024
8.8

HIGH

CVE-2021-20861

Improper access control vulnerability in ELECOM LAN routers (WRC-1167GST2 firmware v1.25 and prior, WRC-1167GST2A firmware v1.25 and prior, WRC-1167GST2H firmware v1.25 and prior, WRC-2533GS2-B firmware v1.52 and prior, WRC-2533GS2-W firmware v1.52 and pr...

Affected Products : wrc-1167gst2_firmware wrc-1167gst2a_firmware wrc-1167gst2h_firmware wrc-2533gs2-b_firmware wrc-2533gs2-w_firmware wrc-1750gs_firmware wrc-1750gsv_firmware wrc-1900gst_firmware wrc-2533gst_firmware wrc-2533gst2_firmware +18 more products
Published: Dec. 01, 2021

Modified: Nov. 21, 2024
8.8

HIGH

CVE-2021-20860

Cross-site request forgery (CSRF) vulnerability in ELECOM LAN routers (WRC-1167GST2 firmware v1.25 and prior, WRC-1167GST2A firmware v1.25 and prior, WRC-1167GST2H firmware v1.25 and prior, WRC-2533GS2-B firmware v1.52 and prior, WRC-2533GS2-W firmware v1...

Affected Products : wrc-1167gst2_firmware wrc-1167gst2a_firmware wrc-1167gst2h_firmware wrc-2533gs2-b_firmware wrc-2533gs2-w_firmware wrc-1750gs_firmware wrc-1750gsv_firmware wrc-1900gst_firmware wrc-2533gst_firmware wrc-2533gst2_firmware +18 more products
Published: Dec. 01, 2021

Modified: Nov. 21, 2024
8.0

HIGH

CVE-2021-20859

ELECOM LAN routers (WRC-1167GST2 firmware v1.25 and prior, WRC-1167GST2A firmware v1.25 and prior, WRC-1167GST2H firmware v1.25 and prior, WRC-2533GS2-B firmware v1.52 and prior, WRC-2533GS2-W firmware v1.52 and prior, WRC-1750GS firmware v1.03 and prior,...

Affected Products : wrc-1167gst2_firmware wrc-1167gst2a_firmware wrc-1167gst2h_firmware wrc-2533gs2-b_firmware wrc-2533gs2-w_firmware wrc-1750gs_firmware wrc-1750gsv_firmware wrc-1900gst_firmware wrc-2533gst_firmware wrc-2533gst2_firmware +18 more products
Published: Dec. 01, 2021

Modified: Nov. 21, 2024
5.4

MEDIUM

CVE-2021-20858

Cross-site scripting vulnerability in ELECOM LAN router WRC-2533GHBK-I firmware v1.20 and prior allows a remote authenticated attacker to inject an arbitrary script via unspecified vectors....

Affected Products : wrc-2533ghbk-i_firmware wrc-2533ghbk-i
Published: Dec. 01, 2021

Modified: Nov. 21, 2024
5.4

MEDIUM

CVE-2021-20857

Cross-site scripting vulnerability in ELECOM LAN router WRC-2533GHBK-I firmware v1.20 and prior allows a remote authenticated attacker to inject an arbitrary script via unspecified vectors....

Affected Products : wrc-2533ghbk-i_firmware wrc-2533ghbk-i
Published: Dec. 01, 2021

Modified: Nov. 21, 2024
5.4

MEDIUM

CVE-2021-20856

Cross-site scripting vulnerability in ELECOM LAN routers (WRH-733GBK firmware v1.02.9 and prior and WRH-733GWH firmware v1.02.9 and prior) allows a remote authenticated attacker to inject an arbitrary script via unspecified vectors....

Affected Products : wrh-733gbk_firmware wrh-733gwh_firmware wrh-733gbk wrh-733gwh
Published: Dec. 01, 2021

Modified: Nov. 21, 2024
5.4

MEDIUM

CVE-2021-20855

Cross-site scripting vulnerability in ELECOM LAN routers (WRH-733GBK firmware v1.02.9 and prior and WRH-733GWH firmware v1.02.9 and prior) allows a remote authenticated attacker to inject an arbitrary script via unspecified vectors....

Affected Products : wrh-733gbk_firmware wrh-733gwh_firmware wrh-733gbk wrh-733gwh
Published: Dec. 01, 2021

Modified: Nov. 21, 2024
6.8

MEDIUM

CVE-2021-20854

ELECOM LAN routers (WRH-733GBK firmware v1.02.9 and prior and WRH-733GWH firmware v1.02.9 and prior) allows a network-adjacent attacker with an administrator privilege to execute arbitrary OS commands via unspecified vectors....

Affected Products : wrh-733gbk_firmware wrh-733gwh_firmware wrh-733gbk wrh-733gwh
Published: Dec. 01, 2021

Modified: Nov. 21, 2024
6.8

MEDIUM

CVE-2021-20853

ELECOM LAN routers (WRH-733GBK firmware v1.02.9 and prior and WRH-733GWH firmware v1.02.9 and prior) allows a network-adjacent attacker with an administrator privilege to execute arbitrary OS commands via unspecified vectors....

Affected Products : wrh-733gbk_firmware wrh-733gwh_firmware wrh-733gbk wrh-733gwh
Published: Dec. 01, 2021

Modified: Nov. 21, 2024
6.8

MEDIUM

CVE-2021-20852

Buffer overflow vulnerability in ELECOM LAN routers (WRH-733GBK firmware v1.02.9 and prior and WRH-733GWH firmware v1.02.9 and prior) allows a network-adjacent attacker with an administrator privilege to execute an arbitrary OS command via unspecified vec...

Affected Products : wrh-733gbk_firmware wrh-733gwh_firmware wrh-733gbk wrh-733gwh
Published: Dec. 01, 2021

Modified: Nov. 21, 2024
8.8

HIGH

CVE-2021-20851

Cross-site request forgery (CSRF) vulnerability in Browser and Operating System Finder versions prior to 1.2 allows a remote unauthenticated attacker to hijack the authentication of an administrator via unspecified vectors....

Affected Products : browser_and_operating_system_finder
Published: Dec. 01, 2021

Modified: Nov. 21, 2024
9.8

CRITICAL

CVE-2021-20850

PowerCMS XMLRPC API of PowerCMS 5.19 and earlier, PowerCMS 4.49 and earlier, PowerCMS 3.295 and earlier, and PowerCMS 2 Series (End-of-Life, EOL) allows a remote attacker to execute an arbitrary OS command via unspecified vectors....

Affected Products : powercms
Published: Nov. 24, 2021

Modified: Nov. 21, 2024
6.1

MEDIUM

CVE-2021-20848

Cross-site scripting vulnerability in rwtxt versions prior to v1.8.6 allows a remote attacker to inject an arbitrary script via unspecified vectors....

Affected Products : rwtxt
Published: Nov. 24, 2021

Modified: Nov. 21, 2024
6.1

MEDIUM

CVE-2021-20847

Cross-site scripting vulnerability in Wi-Fi STATION SH-52A (38JP_1_11G, 38JP_1_11J, 38JP_1_11K, 38JP_1_11L, 38JP_1_26F, 38JP_1_26G, 38JP_1_26J, 38JP_2_03B, and 38JP_2_03C) allows a remote unauthenticated attacker to inject an arbitrary script via WebUI of...

Affected Products : wi-fi_station_sh-52a_firmware wi-fi_station_sh-52a
Published: Dec. 01, 2021

Modified: Nov. 21, 2024
8.8

HIGH

CVE-2021-20846

Cross-site request forgery (CSRF) vulnerability in Push Notifications for WordPress (Lite) versions prior to 6.0.1 allows a remote attacker to hijack the authentication of an administrator and conduct an arbitrary operation via a specially crafted web pag...

Affected Products : push_notifications_for_wordpress
Published: Nov. 24, 2021

Modified: Nov. 21, 2024
8.8

HIGH

CVE-2021-20845

Cross-site request forgery (CSRF) vulnerability in Unlimited Sitemap Generator versions prior to v8.2 allows a remote attacker to hijack the authentication of an administrator and conduct arbitrary operation via a specially crafted web page....

Affected Products : unlimited_sitemap_generator
Published: Nov. 24, 2021

Modified: Nov. 21, 2024
5.7

MEDIUM

CVE-2021-20844

Improper neutralization of HTTP request headers for scripting syntax vulnerability in the Web GUI of RTX830 Rev.15.02.17 and earlier, NVR510 Rev.15.01.18 and earlier, NVR700W Rev.15.00.19 and earlier, and RTX1210 Rev.14.01.38 and earlier allows a remote a...

Affected Products : rtx830_firmware nvr510_firmware nvr700w_firmware rtx1210_firmware biz_box_rtx830_firmware biz_box_nvr510_firmware biz_box_nvr700w_firmware biz_box_rtx1210_firmware rtx830 nvr510 +6 more products
Published: Nov. 24, 2021

Modified: Nov. 21, 2024

Showing 20 of 293947 Results

Browse by Apps

Latest CVE Feed

8.8

8.0

4.3

8.8

8.8

8.0

5.4

5.4

5.4

5.4

6.8

6.8

6.8

8.8

9.8

6.1

6.1

8.8

8.8

5.7

CVEFeed.io UI Customizer

Layout

Vertical

Horizontal

Two Column

Color Scheme

Light

Dark

Layout Width

Fluid

Boxed

Layout Position

Topbar Color

Light

Dark

Sidebar Size

Default

Compact

Small (Icon View)

Small Hover View

Sidebar View

Default

Detached

Sidebar Color

Light

Dark

Gradient

Preloader

Enable

Disable