Browse CVEs
11,285 medium risk vulnerabilities
| CVE ID | Title | Severity | CVSS | Risk | Patch | Published |
|---|---|---|---|---|---|---|
| CVE-2020-28490 | The package async-git before 1.13.2 are vulnerable to Com... | Critical | 9.1 | Medium Risk | Patched | 18-Feb-21 |
| CVE-2021-23340 | This affects the package pimcore/pimcore before 6.8.8. A ... | High | 7.1 | Medium Risk | Patched | 18-Feb-21 |
| CVE-2021-26296 | In the default configuration, Apache MyFaces Core version... | High | 7.5 | Medium Risk | 19-Feb-21 | |
| CVE-2021-26120 | Smarty before 3.1.39 allows code injection via an unexpec... | Critical | 9.8 | Medium Risk | Patched | 22-Feb-21 |
| CVE-2021-27582 | org/mitre/oauth2/web/OAuthConfirmationController.java in ... | Critical | 9.1 | Medium Risk | Patched | 23-Feb-21 |
| CVE-2020-8902 | Rendertron versions prior to 3.0.0 are are susceptible to... | Low | 3.5 | Medium Risk | Patched | 23-Feb-21 |
| CVE-2020-27224 | In Eclipse Theia versions up to and including 1.2.0, the ... | Critical | 9.6 | Medium Risk | 24-Feb-21 | |
| CVE-2020-11988 | Apache XmlGraphics Commons 2.4 and earlier is vulnerable ... | High | 8.2 | Medium Risk | Patched | 24-Feb-21 |
| CVE-2020-11987 | Apache Batik 1.13 is vulnerable to server-side request fo... | High | 8.2 | Medium Risk | 24-Feb-21 | |
| CVE-2021-21298 | Node-Red is a low-code programming for event-driven appli... | Low | 3.5 | Medium Risk | 26-Feb-21 |