| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2021-23259 | Groovy Sandbox Bypass | Crafter Software | Crafter CMS | Medium | 4.2 | 2021-12-02 15:40:56 | Deep Dive |
| CVE-2021-23260 | Stored XSS Vulnerability in File Name of the File Upload function | Crafter Software | Crafter CMS | Medium | 6.5 | 2021-12-02 15:40:56 | Deep Dive |
| CVE-2021-23258 | Spring SPEL Expression Language Injection | Crafter Software | Crafter CMS | Medium | 4.2 | 2021-12-02 15:40:54 | Deep Dive |
| CVE-2021-34992 | Orckestra C1 CMS 代码问题漏洞 | Orckestra | C1 CMS | 高危 | - | 2021-11-15 15:40:18 | Deep Dive |
| CVE-2021-3745 | Unrestricted Upload of File with Dangerous Type in flatcore/flatcore-cms | flatcore | flatcore/flatcore-cms | 中危 | - | 2021-10-28 17:05:12 | Deep Dive |
| CVE-2021-26040 | [20210801] - Core - Insufficient access control for com_media deletion endpoint | Joomla! Project | Joomla! CMS | 超危 | - | 2021-08-24 14:20:13 | Deep Dive |
| CVE-2021-32768 | Cross-Site Scripting via Rich-Text Content | TYPO3 | TYPO3.CMS | Medium | 6.1 | 2021-08-10 16:30:11 | Deep Dive |
| CVE-2021-32767 | Information Disclosure in User Authentication | TYPO3 | TYPO3.CMS | Medium | 5.3 | 2021-07-20 16:00:11 | Deep Dive |
| CVE-2021-32669 | Cross-Site Scripting in Backend Grid View | TYPO3 | TYPO3.CMS | Medium | 6.4 | 2021-07-20 15:35:11 | Deep Dive |
| CVE-2021-32668 | Cross-Site Scripting in Query Generator & Query View | TYPO3 | TYPO3.CMS | Medium | 6.4 | 2021-07-20 14:45:13 | Deep Dive |
| CVE-2021-32667 | Cross-Site Scripting in Page Preview | TYPO3 | TYPO3.CMS | Medium | 6.4 | 2021-07-20 14:40:11 | Deep Dive |
| CVE-2021-20593 | Mitsubishi Electric Air Conditioning Systems 授权问题漏洞 | - | Air Conditioning System/Centralized Controllers G-50A; GB-50A; AG-150A-A; AG-150A-J; GB-50ADA-A; GB-50ADA-J; EB-50GU-A; EB-50GU-J; AE-200A; AE-200E; AE-50A; AE-50E; EW-50A; EW-50E; TE-200A; TE-50A; TW-50A; CMS-RMD-J; Air Conditioning System/Expansion Controllers PAC-YG50ECA | 高危 | - | 2021-07-13 13:30:59 | Deep Dive |
| CVE-2021-20595 | Mitsubishi Electric Air Conditioning Systems 代码问题漏洞 | - | Air Conditioning System/Centralized Controllers G-50A; GB-50A; GB-24A; AG-150A-A; AG-150A-J; GB-50ADA-A; GB-50ADA-J; EB-50GU-A; EB-50GU-J; AE-200A; AE-200E; AE-50A; AE-50E; EW-50A; EW-50E; TE-200A; TE-50A; TW-50A; CMS-RMD-J; Air Conditioning System/Expansion Controllers PAC-YG50ECA; Air Conditioning System/BM adapter BAC-HD150 | 高危 | - | 2021-07-13 10:54:01 | Deep Dive |
| CVE-2021-32538 | ARTWARE CMS - Unrestricted Upload of File | ARTWARE | CMS | Critical | 9.8 | 2021-07-07 14:12:29 | Deep Dive |
| CVE-2021-26039 | [20210705] - Core - XSS in com_media imagelist | Joomla! Project | Joomla! CMS | 中危 | - | 2021-07-07 10:12:49 | Deep Dive |
| CVE-2021-26038 | [20210704] - Core - Privilege escalation through com_installer | Joomla! Project | Joomla! CMS | 高危 | - | 2021-07-07 10:12:48 | Deep Dive |
| CVE-2021-26037 | [20210703] - Core - Lack of enforced session termination | Joomla! Project | Joomla! CMS | 中危 | - | 2021-07-07 10:12:47 | Deep Dive |
| CVE-2021-26036 | [20210702] - Core - DoS through usergroup table manipulation | Joomla! Project | Joomla! CMS | 高危 | - | 2021-07-07 10:12:46 | Deep Dive |
| CVE-2021-26035 | [20210701] - Core - XSS in JForm Rules field | Joomla! Project | Joomla! CMS | 中危 | - | 2021-07-07 10:12:45 | Deep Dive |
| CVE-2021-26032 | [20210501] - Core - Adding HTML to the executable block list of MediaHelper::canUpload | Joomla! Project | Joomla! CMS | 中危 | - | 2021-05-26 10:22:34 | Deep Dive |