Vulmon Recent Vulnerabilities Product List Research Posts Trends Blog About Contact

vulnerabilities and exploits

(subscribe to this query)
6.1
CVSSv3

CVE-2021-39391

Cross Site Scripting (XSS) vulnerability exists in the admin panel in Beego v2.0.1 via the URI path in an HTTP request, which is activated by administrators viewing the "Request Statistics" page.
Beego Beego 2.0.1
6.1
CVSSv3

CVE-2021-39393

mm-wiki v0.2.1 exists to contain a cross-site scripting (XSS) vulnerability via the markdown editor.
Mm-wiki Project Mm-wiki 0.2.1
7.2
CVSSv3

CVE-2021-39402

MaianAffiliate v.1.0 is suffers from code injection by adding a new product via the admin panel. The injected payload is reflected on the affiliate main page for all authenticated and unauthenticated visitors.
Maianmedia Maianaffiliate 1.0
6.5
CVSSv3

CVE-2021-3941

In ImfChromaticities.cpp routine RGBtoXYZ(), there are some division operations such as `float Z = (1 - chroma.white.x - chroma.white.y) * Y / chroma.white.y;` and `chroma.green.y * (X + Z))) / d;` but the divisor is not checked for a 0 value. A specially crafted file could trigg...
Openexr Openexr 3.1.2Redhat Enterprise Linux 6.0Redhat Enterprise Linux 7.0Redhat Enterprise Linux 8.0Fedoraproject Fedora 34Fedoraproject Fedora 35Fedoraproject Fedora 36Debian Debian Linux 10.0Debian Debian Linux 11.0
6.1
CVSSv3

CVE-2021-39412

Multiple Cross Site Scripting (XSS) vulnerabilities exists in PHPGurukul Shopping v3.1 via the (1) callback parameter in (a) server_side/scripts/id_jsonp.php, (b) server_side/scripts/jsonp.php, and (c) scripts/objects_jsonp.php, the (2) value parameter in examples_support/editabl...
Shopping Portal Project Shopping Portal 3.1
9.8
CVSSv3

CVE-2021-3942

Certain HP Print products and Digital Sending products may be vulnerable to potential remote code execution and buffer overflow with use of Link-Local Multicast Name Resolution or LLMNR.
Hp Color Laserjet Cm4540 Mfp Cc419a FirmwareHp Color Laserjet Cm4540 Mfp Cc420a FirmwareHp Color Laserjet Cm4540 Mfp Cc421a FirmwareHp Color Laserjet Cm5525 Mfp Ce707a FirmwareHp Color Laserjet Cm5525 Mfp Ce708a FirmwareHp Color Laserjet Cm5525 Mfp Ce709a FirmwareHp Color Laserjet M578 Mfp 7zu85a FirmwareHp Color Laserjet M578 Mfp 7zu86a FirmwareHp Color Laserjet M578 Mfp 7zu87a FirmwareHp Color Laserjet M578 Mfp 7zu88a FirmwareHp Color Laserjet Enterprise Flow Mfp M880z D7p70a FirmwareHp Color Laserjet Enterprise Flow Mfp M880z A2w75a Firmware
6.1
CVSSv3

CVE-2021-39421

A cross-site scripting (XSS) vulnerability in SeedDMS v6.0.15 allows malicious users to execute arbitrary web scripts or HTML via a crafted payload.
Seeddms Seeddms 6.0.15
5.4
CVSSv3

CVE-2021-39428

Cross Site Scripting (XSS) vulnerability in Users.php in eyoucms 1.5.4 allows remote malicious users to run arbitrary code and gain escalated privilege via the filename for edit_users_head_pic.
Eyoucms Eyoucms 1.5.4
6.8
CVSSv3

CVE-2021-3944

bookstack is vulnerable to Cross-Site Request Forgery (CSRF)
Bookstackapp Bookstack
NA

CVE-2021-39476

CVE-2021-39476
Preferred Score:
CVSSv3
CVSSv2
CVSSv3
CVSSv4
EPSS
VMScore
Recommendations:
ssl.comCVE-2025-3278CVE-2025-24054brute forcefirewallprivilege escalationCVE-2025-24914qriousladCVE-2025-42599pritunlnamelessmcCVE-2025-3103CVE-2025-43895
Home
/
Search Results
Vulmon Logo Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook