NEWS & EVENTS

SERVICES

This service analyses sets of email file in .eml format to identify the unsolicited ones (SPAM). Moreover, the service...

This service collects data related to public available exploits. The database is updated daily through the official...

An onthology represents an important resource for the organisation of a domain's knowledge in a more detailed way by...

This service identifies typical ransomware behaviours such as file ciphering. Differently from signature-based anti-...

LATEST CVE

Published Description
CVE-2020-15504
10-07-2020 17:15:00
A SQL injection vulnerability in the user and admin web interfaces of Sophos XG Firewall v18.0 MR1 and older potentially allows an attacker to run arbitrary code remotely. The fix is built into the re-release of XG Firewall v18 MR-1 (named MR-1-Build396) and the v17.5 MR13 release. All other versions >= 17.0 have received a hotfix.
CVE-2020-8190
10-07-2020 16:15:00
Incorrect file permissions in Citrix ADC and Citrix Gateway before versions 13.0-58.30, 12.1-57.18, 12.0-63.21, 11.1-64.14 and 10.5-70.18 allows privilege escalation.
CVE-2020-8191
10-07-2020 16:15:00
Improper input validation in Citrix ADC and Citrix Gateway versions before 13.0-58.30, 12.1-57.18, 12.0-63.21, 11.1-64.14 and 10.5-70.18 and Citrix SDWAN WAN-OP versions before 11.1.1a, 11.0.3d and 10.2.7 allows reflected Cross Site Scripting (XSS).
CVE-2020-8187
10-07-2020 16:15:00
Improper input validation in Citrix ADC and Citrix Gateway versions before 11.1-63.9 and 12.0-62.10 allows unauthenticated users to perform a denial of service attack.
CVE-2020-13983
10-07-2020 16:15:00
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2020-14159. Reason: This candidate is a reservation duplicate of CVE-2020-14159. Notes: All CVE users should reference CVE-2020-14159 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage.

Pages

LATEST EXPLOIT

Date Title Platform Author
09-07-2020
Savsoft Quiz 5 - Persistent Cross-Site Scripting php th3d1gger
08-07-2020
BSA Radar 1.6.7234.24750 - Cross-Site Request Forgery (Change Password) hardware William Summerhill
08-07-2020
SuperMicro IPMI 03.40 - Cross-Site Request Forgery (Add Admin) hardware Metin Yunus Kandemir
07-07-2020
PHP 7.4 FFI - 'disable_functions' Bypass php hunter gregal
07-07-2020
Online Shopping Portal 3.1 - 'email' SQL Injection php gh1mau

Pages