Mozilla Firefox before 37.0 relies on docshell type information instead of page principal infor…

Mozilla Firefox before 37.0, Firefox ESR 31.x before 31.6, and Thunderbird before 31.6 do not p…

The XrayWrapper implementation in Mozilla Firefox before 35.0 and SeaMonkey before 2.32 does no…

In Apache HTTP Server 2.4 releases 2.4.17 to 2.4.38, with MPM event, worker or prefork, code ex…

This allows attackers to use a maliciously formed API request to gain access to an API authoriz…

An external config control vulnerability exists in the nas.cgi set_smb_cfg() functionality of W…

php-svg-lib is an SVG file parsing / rendering library. Prior to version 0.5.1, when handling `…

An external config control vulnerability exists in the openvpn.cgi openvpn_client_setup() funct…

A statement in the System Programming Guide of the Intel 64 and IA-32 Architectures Software De…

A vulnerability has been identified in the ServiceNow AI Platform that could enable an unauthen…

The vCenter Server contains a privilege escalation vulnerability. A malicious actor with networ…

Service Control vulnerabilities allow access to service restart requests and vm configuration s…

Local privilege escalation vulnerability in the Gentoo QEMU package before 2.5.0-r1.

Ilevia EVE X1 Server firmware versions ≤ 4.7.18.0.eden contain an execution with unnecessary pr…

Incorrect privileges management and insufficient path filtering allow to read arbitrary file on…

PDF.js in Mozilla Firefox before 39.0 and Firefox ESR 31.x before 31.8 and 38.x before 38.1 ena…

Incorrect control of environment variables in PostgreSQL PL/Perl allows an unprivileged databas…

The AnimationThread function in Mozilla Firefox before 41.0 and Firefox ESR 38.x before 38.3 us…

The XULContentSinkImpl::AddText function in Mozilla Firefox before 41.0 and Firefox ESR 38.x be…

The nsAttrAndChildArray::GrowBy function in Mozilla Firefox before 41.0 and Firefox ESR 38.x be…

The nsUnicodeToUTF8::GetMaxLength function in Mozilla Firefox before 41.0 and Firefox ESR 38.x …

The ConvertDialogOptions function in Mozilla Firefox before 41.0 and Firefox ESR 38.x before 38…

The ReadbackResultWriterD3D11::Run function in Mozilla Firefox before 41.0 and Firefox ESR 38.x…

The InitTextures function in Mozilla Firefox before 41.0 and Firefox ESR 38.x before 38.3 might…

NetworkUtils.cpp in Mozilla Firefox before 41.0 and Firefox ESR 38.x before 38.3 might allow re…

Mozilla Firefox before 41.0 allows remote attackers to bypass certain ECMAScript 5 (aka ES5) AP…

Execution with Unnecessary Privileges in GitHub repository polonel/trudesk prior to 1.2.3.

Hardy Barth cPH2 eCharge Ladestation v1.87.0 and earlier is vulnerable to Execution with Unnece…

A specifically crafted Docker image running under the root user can overwrite the init helper b…

An issue was discovered in Xen through 4.12.x allowing 32-bit PV guest OS users to gain guest O…

Jenkins before 1.587 and LTS before 1.580.1 do not properly ensure trust separation between a m…

A flaw was found in openshift/builder. This vulnerability allows command injection via path tra…

An elevation of privilege vulnerability exists in .NET Framework which could allow an attacker …

An external config control vulnerability exists in the nas.cgi set_nas() functionality of Wavli…

A denial of service vulnerability exists in Rails <6.0.3.2 that allowed an untrusted user to ru…

A vulnerability in an API endpoint of Cisco Application Policy Infrastructure Controller (APIC)…

An issue was discovered in GNOME gnome-desktop 3.26, 3.28, and 3.30 prior to 3.30.2.2, and 3.32…

A local privilege escalation vulnerability due to insufficient authorization in the SonicWall S…

mooSocial 3.1.8 is vulnerable to external service interaction on post function. When executed, …

Multiple external config control vulnerabilities exists in the openvpn.cgi openvpn_server_setup…