• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors

NVD-CWE-Other

CVE-2020-28501

February 26, 2023 by

This affects the package es6-crawler-detect before 3.1.3. No limitation of user agent string length supplied to regex operators.

CVE-2020-28503

February 26, 2023 by

The package copy-props before 2.0.5 are vulnerable to Prototype Pollution via the main functionality.

CVE-2020-28442

February 26, 2023 by

All versions of package js-data are vulnerable to Prototype Pollution via the deepFillIn function.

CVE-2020-28449

February 26, 2023 by

This affects all versions of package decal. The vulnerability is in the set function.

CVE-2020-28450

February 26, 2023 by

This affects all versions of package decal. The vulnerability is in the extend function.

CVE-2020-28331

February 26, 2023 by

Barco wePresent WiPG-1600W devices have Improper Access Control. Affected Version(s): 2.5.1.8. The Barco wePresent WiPG-1600W device has an SSH daemon included in the firmware image. By default, the SSH daemon is disabled and does not start at system boot. The system initialization scripts read a device configuration file variable to see if the SSH daemon should be started. The web interface does not provide a visible capability to alter this configuration file variable. However, a malicious actor can include this variable in a POST such that the SSH daemon will be started when the device boots.

  • « Go to Previous Page
  • Go to page 1
  • Interim pages omitted …
  • Go to page 643
  • Go to page 644
  • Go to page 645
  • Go to page 646
  • Go to page 647
  • Interim pages omitted …
  • Go to page 940
  • Go to Next Page »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE