CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
  Take a third party risk management course for FREE
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Security Vulnerabilities Published In December 2020

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
401 CVE-2020-29385 835 DoS Exec Code 2020-12-26 2021-03-22
4.3
None Remote Medium Not required None None Partial
GNOME gdk-pixbuf (aka GdkPixbuf) before 2.42.2 allows a denial of service (infinite loop) in lzw.c in the function write_indexes. if c->self_code equals 10, self->code_table[10].extends will assign the value 11 to c. The next execution in the loop will assign self->code_table[11].extends to c, which will give the value of 10. This will make the loop run infinitely. This bug can, for example, be triggered by calling this function with a GIF image with LZW compression that is crafted in a special way.
402 CVE-2020-29363 787 Overflow 2020-12-16 2022-05-12
5.0
None Remote Low Not required None None Partial
An issue was discovered in p11-kit 0.23.6 through 0.23.21. A heap-based buffer overflow has been discovered in the RPC protocol used by p11-kit server/remote commands and the client library. When the remote entity supplies a serialized byte array in a CK_ATTRIBUTE, the receiving entity may not allocate sufficient length for the buffer to store the deserialized value.
403 CVE-2020-29362 125 2020-12-16 2021-01-11
5.0
None Remote Low Not required Partial None None
An issue was discovered in p11-kit 0.21.1 through 0.23.21. A heap-based buffer over-read has been discovered in the RPC protocol used by thep11-kit server/remote commands and the client library. When the remote entity supplies a byte array through a serialized PKCS#11 function call, the receiving entity may allow the reading of up to 4 bytes of memory past the heap allocation.
404 CVE-2020-29361 190 Overflow 2020-12-16 2021-06-29
5.0
None Remote Low Not required None None Partial
An issue was discovered in p11-kit 0.21.1 through 0.23.21. Multiple integer overflows have been discovered in the array allocations in the p11-kit library and the p11-kit list command, where overflow checks are missing before calling realloc or calloc.
405 CVE-2020-29315 79 XSS 2020-12-01 2020-12-02
4.3
None Remote Medium Not required None Partial None
ThinkAdmin version v1 v6 has a stored XSS vulnerability which allows remote attackers to inject an arbitrary web script or HTML.
406 CVE-2020-29311 77 Exec Code 2020-12-10 2021-07-21
10.0
None Remote Low Not required Complete Complete Complete
Ubilling v1.0.9 allows Remote Command Execution as Root user by executing a malicious command that is injected inside the config file and being triggered by another part of the software.
407 CVE-2020-29304 79 XSS 2020-12-14 2020-12-15
4.3
None Remote Medium Not required None Partial None
A cross-site scripting (XSS) vulnerability exists in the SabaiApps WordPress Directories Pro plugin version 1.3.45 and previous, allows attackers who have convinced a site administrator to import a specially crafted CSV file to inject arbitrary web script or HTML as the victim is proceeding through the file import workflow.
408 CVE-2020-29303 79 XSS CSRF 2020-12-14 2020-12-15
4.3
None Remote Medium Not required None Partial None
A cross-site scripting (XSS) vulnerability in the SabaiApp Directories Pro plugin 1.3.45 for WordPress allows remote attackers to inject arbitrary web script or HTML via a POST to /wp-admin/admin.php?page=drts/directories&q=%2F with _drts_form_build_id parameter containing the XSS payload and _t_ parameter set to an invalid or non-existent CSRF token.
409 CVE-2020-29299 77 2020-12-27 2021-01-05
9.0
None Remote Low ??? Complete Complete Complete
Certain Zyxel products allow command injection by an admin via an input string to chg_exp_pwd during a password-change action. This affects VPN On-premise before ZLD V4.39 week38, VPN Orchestrator before SD-OS V10.03 week32, USG before ZLD V4.39 week38, USG FLEX before ZLD V4.55 week38, ATP before ZLD V4.55 week38, and NSG before 1.33 patch 4.
410 CVE-2020-29288 89 Sql 2020-12-02 2020-12-03
7.5
None Remote Low Not required Partial Partial Partial
An SQL injection vulnerability was discovered in Gym Management System In manage_user.php file, GET parameter 'id' is vulnerable.
411 CVE-2020-29287 89 Sql 2020-12-02 2020-12-03
7.5
None Remote Low Not required Partial Partial Partial
An SQL injection vulnerability was discovered in Car Rental Management System v1.0 can be exploited via the id parameter in view_car.php or the car_id parameter in booking.php.
412 CVE-2020-29285 89 Sql 2020-12-02 2020-12-04
7.5
None Remote Low Not required Partial Partial Partial
SQL injection vulnerability was discovered in Point of Sales in PHP/PDO 1.0, which can be exploited via the id parameter to edit_category.php.
413 CVE-2020-29284 89 Sql 2020-12-02 2020-12-04
7.5
None Remote Low Not required Partial Partial Partial
The file view-chair-list.php in Multi Restaurant Table Reservation System 1.0 does not perform input validation on the table_id parameter which allows unauthenticated SQL Injection. An attacker can send malicious input in the GET request to /dashboard/view-chair-list.php?table_id= to trigger the vulnerability.
414 CVE-2020-29283 89 Sql 2020-12-02 2020-12-04
7.5
None Remote Low Not required Partial Partial Partial
An SQL injection vulnerability was discovered in Online Doctor Appointment Booking System PHP and Mysql via the q parameter to getuser.php.
415 CVE-2020-29282 89 Sql Bypass 2020-12-02 2020-12-04
7.5
None Remote Low Not required Partial Partial Partial
SQL injection vulnerability in BloodX 1.0 allows attackers to bypass authentication.
416 CVE-2020-29280 89 Sql 2020-12-02 2020-12-03
7.5
None Remote Low Not required Partial Partial Partial
The Victor CMS v1.0 application is vulnerable to SQL injection via the 'search' parameter on the search.php page.
417 CVE-2020-29279 Exec Code File Inclusion 2020-12-02 2020-12-04
7.5
None Remote Low Not required Partial Partial Partial
PHP remote file inclusion in the assign_resume_tpl method in Application/Common/Controller/BaseController.class.php in 74CMS before 6.0.48 allows remote code execution.
418 CVE-2020-29259 79 XSS 2020-12-09 2022-04-12
3.5
None Remote Medium ??? None Partial None
Cross-site scripting (XSS) vulnerability in Online Examination System 1.0 via the subject or feedback parameter to feedback.php.
419 CVE-2020-29258 79 XSS 2020-12-09 2020-12-10
4.3
None Remote Medium Not required None Partial None
Cross-site scripting (XSS) vulnerability in Online Examination System 1.0 via the w parameter to index.php.
420 CVE-2020-29257 79 XSS 2020-12-09 2020-12-10
4.3
None Remote Medium Not required None Partial None
Cross-site scripting (XSS) vulnerability in Online Examination System 1.0 via the q parameter to feedback.php.
421 CVE-2020-29254 352 CSRF File Inclusion 2020-12-11 2020-12-14
6.8
None Remote Medium Not required Partial Partial Partial
TikiWiki 21.2 allows templates to be edited without CSRF protection. This could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack and perform arbitrary actions on an affected system. The vulnerability is due to insufficient CSRF protections for the web-based management interface of the affected system. An attacker could exploit this vulnerability by persuading a user of the interface to follow a maliciously crafted link. A successful exploit could allow the attacker to perform arbitrary actions on an affected system with the privileges of the user. These action include allowing attackers to submit their own code through an authenticated user resulting in local file Inclusion. If an authenticated user who is able to edit TikiWiki templates visits an malicious website, template code can be edited.
422 CVE-2020-29250 79 XSS 2020-12-27 2020-12-29
4.3
None Remote Medium Not required None Partial None
CXUUCMS V3 allows XSS via the first and third input fields to /public/admin.php.
423 CVE-2020-29249 79 XSS 2020-12-27 2020-12-29
4.3
None Remote Medium Not required None Partial None
CXUUCMS V3 allows class="layui-input" XSS.
424 CVE-2020-29247 79 XSS 2020-12-24 2021-04-22
3.5
None Remote Medium ??? None Partial None
WonderCMS 3.1.3 is affected by cross-site scripting (XSS) in the Admin Panel. An attacker can inject the XSS payload in Page keywords and each time any user will visit the website, the XSS triggers, and the attacker can able to steal the cookie according to the crafted payload.
425 CVE-2020-29245 129 2020-12-28 2020-12-29
4.3
None Remote Medium Not required None None Partial
dhowden tag before 2020-11-19 allows "panic: runtime error: slice bounds out of range" via readAtomData.
426 CVE-2020-29244 129 2020-12-28 2020-12-29
4.3
None Remote Medium Not required None None Partial
dhowden tag before 2020-11-19 allows "panic: runtime error: slice bounds out of range" via readTextWithDescrFrame.
427 CVE-2020-29243 129 2020-12-28 2020-12-29
4.3
None Remote Medium Not required None None Partial
dhowden tag before 2020-11-19 allows "panic: runtime error: index out of range" via readAPICFrame.
428 CVE-2020-29242 129 2020-12-28 2020-12-29
4.3
None Remote Medium Not required None None Partial
dhowden tag before 2020-11-19 allows "panic: runtime error: index out of range" via readPICFrame.
429 CVE-2020-29240 79 XSS 2020-12-02 2020-12-02
3.5
None Remote Medium ??? None Partial None
Lepton-CMS 4.7.0 is affected by cross-site scripting (XSS). An attacker can inject the XSS payload in the URL field of the admin page and each time an admin visits the Menu-Pages-Pages Overview section, the XSS will be triggered.
430 CVE-2020-29239 79 XSS 2020-12-02 2020-12-04
4.3
None Remote Medium Not required None Partial None
Online Birth Certificate System Project V 1.0 is affected by cross-site scripting (XSS). This vulnerability can result in an attacker injecting the XSS payload in the User Registration section. When an admin visits the View Detail of Application section from the admin panel, the attacker can able to steal the cookie according to the crafted payload.
431 CVE-2020-29233 79 XSS 2020-12-30 2021-01-04
3.5
None Remote Medium ??? None Partial None
WonderCMS 3.1.3 is affected by cross-site scripting (XSS) in the Page description component. This vulnerability can allow an attacker to inject the XSS payload in the Page description and each time any user will visits the website, the XSS triggers and attacker can steal the cookie according to the crafted payload.
432 CVE-2020-29231 79 XSS 2020-12-30 2021-01-04
3.5
None Remote Medium ??? None Partial None
EGavilanMedia User Registration and Login System With Admin Panel 1.0 is affected by cross-site scripting (XSS) in the Admin Profile Page. This vulnerability can result in the attacker injecting the XSS payload in Admin Full Name and each time admin visits the Profile page from the admin panel, the XSS triggers.
433 CVE-2020-29230 79 XSS 2020-12-30 2021-01-04
4.3
None Remote Medium Not required None Partial None
EGavilanMedia User Registration and Login System With Admin Panel 1.0 is affected by cross-site scripting (XSS) in the Admin Panel - Manage User tab using the Full Name of the user. This vulnerability can result in the attacker injecting the XSS payload in the User Registration section and each time admin visits the manage user section from the admin panel, the XSS triggers and the attacker can steal the cookie according to the crafted payload.
434 CVE-2020-29228 89 Sql 2020-12-30 2021-01-04
5.0
None Remote Low Not required None Partial None
EGavilanMedia User Registration and Login System With Admin Panel 1.0 is affected by SQL injection in the User Login Page.
435 CVE-2020-29227 Exec Code File Inclusion 2020-12-14 2020-12-15
7.5
None Remote Low Not required Partial Partial Partial
An issue was discovered in Car Rental Management System 1.0. An unauthenticated user can perform a file inclusion attack against the /index.php file with a partial filename in the "page" parameter, to cause local file inclusion resulting in code execution.
436 CVE-2020-29204 79 XSS Bypass 2020-12-27 2020-12-29
4.3
None Remote Medium Not required None Partial None
XXL-JOB 2.2.0 allows Stored XSS (in Add User) to bypass the 20-character limit via xxl-job-admin/src/main/java/com/xxl/job/admin/controller/UserController.java.
437 CVE-2020-29203 120 Overflow 2020-12-26 2020-12-30
7.5
None Remote Low Not required Partial Partial Partial
struct2json before 2020-11-18 is affected by a Buffer Overflow because strcpy is used for S2J_STRUCT_GET_string_ELEMENT.
438 CVE-2020-29194 DoS 2020-12-28 2020-12-30
5.0
None Remote Low Not required None None Partial
Panasonic Security System WV-S2231L 4.25 allows a denial of service of the admin control panel (which will require a physical reset to restore administrative control) via Randomnum=99AC8CEC6E845B28&mode=1 in a POST request to the cgi-bin/set_factory URI.
439 CVE-2020-29193 798 2020-12-28 2020-12-30
2.1
None Local Low Not required Partial None None
Panasonic Security System WV-S2231L 4.25 has an insecure hard-coded password of lkjhgfdsa (which is just the asdf keyboard row in reverse order).
440 CVE-2020-29189 863 Bypass 2020-12-24 2021-07-21
5.5
None Remote Low ??? Partial Partial None
Incorrect Access Control vulnerability in TerraMaster TOS <= 4.2.06 allows remote authenticated attackers to bypass read-only restriction and obtain full access to any folder within the NAS
441 CVE-2020-29172 79 XSS 2020-12-26 2020-12-28
4.3
None Remote Medium Not required None Partial None
A cross-site scripting (XSS) vulnerability in the LiteSpeed Cache plugin before 3.6.1 for WordPress can be exploited via the Server IP setting.
442 CVE-2020-29160 863 2020-12-28 2021-07-21
5.0
None Remote Low Not required None Partial None
An issue was discovered in Zammad before 3.5.1. A REST API call allows an attacker to change Ticket Article data in a way that defeats auditing.
443 CVE-2020-29159 2020-12-28 2020-12-29
4.0
None Remote Low ??? Partial None None
An issue was discovered in Zammad before 3.5.1. The default signup Role (for newly created Users) can be a privileged Role, if configured by an admin. This behvaior was unintended.
444 CVE-2020-29158 863 Bypass 2020-12-28 2021-07-21
4.0
None Remote Low ??? Partial None None
An issue was discovered in Zammad before 3.5.1. An Agent with Customer permissions in a Group can bypass intended access control on internal Articles via the Ticket detail view.
445 CVE-2020-29156 863 2020-12-27 2021-07-21
5.0
None Remote Low Not required Partial None None
The WooCommerce plugin before 4.7.0 for WordPress allows remote attackers to view the status of arbitrary orders via the order_id parameter in a fetch_order_status action.
446 CVE-2020-28993 22 Dir. Trav. 2020-12-01 2020-12-02
5.0
None Remote Low Not required Partial None None
A Directory Traversal vulnerability exists in ATX miniCMTS200a Broadband Gateway through 2.0 and Pico CMTS through 2.0. Successful exploitation of this vulnerability would allow an unauthenticated attacker to retrieve administrator credentials by sending a malicious POST request.
447 CVE-2020-28971 287 Exec Code Bypass 2020-12-01 2022-04-26
7.5
None Remote Low Not required Partial Partial Partial
An issue was discovered on Western Digital My Cloud OS 5 devices before 5.06.115. A NAS Admin authentication bypass vulnerability could allow an unauthenticated user to execute privileged commands on the device via a cookie, because of insufficient validation of URI paths.
448 CVE-2020-28970 287 Exec Code Bypass 2020-12-01 2022-04-26
7.5
None Remote Low Not required Partial Partial Partial
An issue was discovered on Western Digital My Cloud OS 5 devices before 5.06.115. A NAS Admin authentication bypass vulnerability could allow an unauthenticated user to execute privileged commands on the device via a cookie. (In addition, an upload endpoint could then be used by an authenticated administrator to upload executable PHP scripts.)
449 CVE-2020-28950 427 2020-12-04 2020-12-08
6.9
None Local Medium Not required Complete Complete Complete
The installer of Kaspersky Anti-Ransomware Tool (KART) prior to KART 4.0 Patch C was vulnerable to a DLL hijacking attack that allowed an attacker to elevate privileges during installation process.
450 CVE-2020-28946 522 2020-12-08 2021-07-21
5.0
None Remote Low Not required Partial None None
An improper webserver configuration on Plum IK-401 devices with firmware before 1.02 allows an attacker (with network access to the device) to obtain the configuration file, including hashed credential data. Successful exploitation could allow access to hashed credential data with a single unauthenticated GET request.
Total number of vulnerabilities : 1530   Page : 1 2 3 4 5 6 7 8 9 (This Page)10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.