cvelist

mirror of https://github.com/CVEProject/cvelist.git synced 2025-07-29 05:56:59 +00:00

Author	SHA1	Message	Date
CVE Team	866949a3b7	"-Synchronized-Data."	2021-11-23 21:01:22 +00:00
CVE Team	de1caf5ba5	Auto-merge PR#3514 Auto-merge PR#3514	2021-11-23 14:17:14 -05:00
CVE Team	6a8c76446d	"-Synchronized-Data."	2021-11-19 20:01:05 +00:00
wsmi22	4ae82736e0	Add CVE-2021-25986 Django-wiki - Stored Cross-Site Scripting (XSS) in Notifications Section Committed by Miriam Iomin	2021-11-18 12:46:02 +02:00
CVE Team	a52d7e1900	"-Synchronized-Data."	2021-11-18 08:00:58 +00:00
Anthony Singleton	938debeed0	Revert "November 2021 Patch Tuesday" This reverts commit df296d9e014bf68ef22c0583c98da3fbe42ea316.	2021-11-17 15:47:33 -05:00
CVE Team	0045fa7568	"-Synchronized-Data."	2021-11-16 10:01:04 +00:00
hagaiwech	1370dd68c9	Add CVE-2021-25985 FactorJS - Insufficient Session Expiration Leads to a Local Account Takeover Committed by: Hagai Wechsler	2021-11-16 11:40:58 +02:00
hagaiwech	a7e5670f34	Add CVE-2021-25984 FactorJS - Stored Cross-Site Scripting (XSS) in Post Reply Functionality Committed by: Hagai Wechsler	2021-11-16 11:36:44 +02:00
hagaiwech	918ace797b	Add CVE-2021-25983 FactorJS - Reflected Cross-Site Scripting (XSS) in Tags and Categories Functionality Committed by: Hagai Wechsler	2021-11-16 11:34:26 +02:00
hagaiwech	eaa8530183	Add CVE-2021-25982 FactorJS - Reflected Cross-Site Scripting (XSS) in Search Functionality Committed by: Hagai Wechsler	2021-11-16 11:31:56 +02:00
hagaiwech	64478ccb0b	Add CVE-2021-25940 ArangoDB - Insufficient Session Expiration after Password Change Committed by: Hagai Wechsler	2021-11-16 11:20:25 +02:00
hagaiwech	50b79fb658	Add CVE-2021-25965 Calibre-web - Admin Account Takeover via Cross-Site Request Forgery (CSRF) Committed by: Hagai Wechsler	2021-11-16 11:09:47 +02:00
hagaiwech	425b9ac487	Add CVE-2021-25976 Piranha CMS - Site-wide Cross-Site Request Forgery (CSRF) Committed by: Hagai Wechsler	2021-11-16 11:03:23 +02:00
CVE Team	04da7a6f0e	"-Synchronized-Data."	2021-11-11 08:01:08 +00:00
hagaiwech	8a68f79c30	Add CVE-2021-25980 Talkyard - Host-Header Injection Leads to Account Takeover Committed by: Hagai Wechsler	2021-11-11 09:09:20 +02:00
CVE Team	9e841b7247	"-Synchronized-Data."	2021-11-11 03:00:55 +00:00
CVE Team	54d09a78e4	"-Synchronized-Data."	2021-11-10 20:00:58 +00:00
CVE Team	31a2254456	"-Synchronized-Data."	2021-11-10 12:01:04 +00:00
hagaiwech	1958438698	Add CVE-2021-25975 Publify - Stored Cross-Site Scripting (XSS) due to Unrestricted File Upload Committed by: Hagai Wechsler	2021-11-10 13:03:51 +02:00
hagaiwech	1d1437d3d7	Add CVE-2021-25974 Publify - Stored Cross-Site Scripting (XSS) in Editor Committed by: Hagai Wechsler	2021-11-10 12:59:25 +02:00
CVE Team	91e3573566	"-Synchronized-Data."	2021-11-10 10:00:56 +00:00
MSRC	df296d9e01	November 2021 Patch Tuesday	2021-11-09 16:46:54 -08:00
Siemens ProductCERT	d86e94a524	Siemens AD-2021-11	2021-11-09 12:22:21 +01:00
CVE Team	36cdf34403	"-Synchronized-Data."	2021-11-08 15:01:04 +00:00
Daniel Elkabes	1aa30aa677	Add CVE-2021-25979 Apostrophe - Insufficient Session Expiration Committed by: Daniel Elkabes	2021-11-08 16:15:09 +02:00
Daniel Elkabes	512bae039a	Merge branch 'CVEProject:master' into master	2021-11-08 16:11:41 +02:00
CVE Team	3d3f4ec159	"-Synchronized-Data."	2021-11-07 18:01:05 +00:00
CVE Team	26489f2936	Auto-merge PR#3425 Auto-merge PR#3425	2021-11-07 12:15:17 -05:00
Daniel Elkabes	2932e968da	Add CVE-2021-25978 Add CVE-2021-25977 Committed by: Daniel Elkabes	2021-11-07 19:09:04 +02:00
Daniel Elkabes	d4743e1a03	Revert	2021-11-07 19:07:01 +02:00
Daniel Elkabes	6b7303286d	Add CVE-2021-25978 Apostrophe - XSS Committed by: Daniel Elkabes	2021-11-07 18:51:38 +02:00
CVE Team	948e87572d	"-Synchronized-Data."	2021-11-05 03:00:59 +00:00
CVE Team	bd7bbeb91e	"-Synchronized-Data."	2021-11-04 04:00:55 +00:00
CVE Team	5005be1076	Auto-merge PR#3309 Auto-merge PR#3309	2021-11-02 06:20:11 -04:00
CVE Team	703a7561e0	"-Synchronized-Data."	2021-11-02 07:01:03 +00:00
hagaiwech	11317ab190	Add CVE-2021-25973 Publify - Improper Authorization Leads to Guest Signup Restriction Bypass Committed by: Hagai Wechsler	2021-11-02 08:48:52 +02:00
CVE Team	9b35672b68	"-Synchronized-Data."	2021-11-02 04:00:55 +00:00
hagaiwech	dcf6a85a95	Update CVE-2021-25971 CVE was mistakenly uploaded with wrong CVSS and CWE. It is now modified to the intended values. This was coordinated with the NVD team Committed by: Hagai Wechsler	2021-11-01 16:55:40 +02:00
CVE Team	a12df3d74f	"-Synchronized-Data."	2021-11-01 12:01:02 +00:00
CVE Team	dc975ec9d8	"-Synchronized-Data."	2021-10-29 05:01:04 +00:00
CVE Team	a7ab6bca0f	Auto-merge PR#3295 Auto-merge PR#3295	2021-10-29 00:05:17 -04:00
CVE Team	8d54368f95	"-Synchronized-Data."	2021-10-29 03:00:56 +00:00
CJ Cullen	784f75340c	Merge branch 'CVEProject:master' into master	2021-10-28 13:53:13 -07:00
CJ Cullen	9e32c131ca	Fill in details for CVE-2021-25742. (#10 ) * Fill in details for CVE-2021-25742. * Update 2021/25xxx/CVE-2021-25742.json Co-authored-by: Tim Allclair <timallclair@gmail.com> Co-authored-by: Tim Allclair <timallclair@gmail.com>	2021-10-28 13:45:45 -07:00
Michał Kępień	2e158c4656	[ISC] document BIND9 CVE-2021-25219	2021-10-27 23:05:16 +02:00
CVE Team	7c24b6ed6b	"-Synchronized-Data."	2021-10-25 14:01:01 +00:00
hagaiwech	4edc78fe21	Add CVE-2021-25977 Piranha CMS - Stored XSS in Page Title Committed by: Hagai Wechsler and Miriam Iomin	2021-10-25 16:03:31 +03:00
CVE Team	903b226043	"-Synchronized-Data."	2021-10-20 12:01:08 +00:00
hagaiwech	a36b53314c	Add CVE-2021-25972 Camaleon CMS - Server-Side Request Forgery (SSRF) in Media Upload Feature Committed by: Hagai Wechsler	2021-10-20 14:50:39 +03:00

1 2 3 4 5 ...

409 Commits