Critical
|
20 Mar 2021 |
20 Dec 2024 |
CPAI-2020-1396
|
|
CVE-2012-0393 CVE-2016-0785 CVE-2018-16621 CVE-2020-26282 CVE-2022-22980 CVE-2022-23463 CVE-2023-30331 CVE-2023-34468 CVE-2023-49109 CVE-2023-49299 CVE-2024-0195 CVE-2024-2064 CVE-2024-23320 CVE-2024-50379 CVE-2024-53677
|
Java Server Pages Backdoor (CVE-2012-0393; CVE-2016-0785; CVE-2018-16621; CVE-2020-26282; CVE-2022-22980; CVE-2022-23463; CVE-2023-30331; CVE-2023-34468; CVE-2023-49109; CVE-2023-49299; CVE-2024-0195; CVE-2024-2064; CVE-2024-23320; CVE-2024-50379; CVE-2024-53677)
|
Critical
|
15 Jul 2021 |
19 Dec 2024 |
CPAI-2021-0461
|
|
CVE-2021-35464
|
ForgeRock OpenAM Remote Code Execution (CVE-2021-35464)
|
High
|
30 Dec 2021 |
18 Dec 2024 |
CPAI-2021-0963
|
|
CVE-2021-32789
|
WordPress WooCommerce Gutenberg Blocks Plugin SQL Injection (CVE-2021-32789)
|
Critical
|
22 Dec 2021 |
18 Dec 2024 |
CPAI-2020-3449
|
|
CVE-2020-10546 CVE-2020-10547 CVE-2020-10548 CVE-2020-10549
|
rConfig SQL Injection (CVE-2020-10546; CVE-2020-10547; CVE-2020-10548; CVE-2020-10549)
|
Critical
|
6 Oct 2021 |
18 Dec 2024 |
CPAI-2021-0749
|
|
CVE-2021-41773 CVE-2021-42013
|
Apache HTTP Server Directory Traversal (CVE-2021-41773; CVE-2021-42013)
|
High
|
16 Dec 2021 |
5 Dec 2024 |
CPAI-2021-0900
|
|
CVE-2021-31207
|
Microsoft Exchange Server Security Feature Authentication Bypass (CVE-2021-31207)
|
Critical
|
14 Nov 2021 |
5 Dec 2024 |
CPAI-2021-0879
|
|
CVE-2021-40539
|
Zoho ManageEngine ADSelfService Plus Authentication Bypass (CVE-2021-40539)
|
High
|
19 Jan 2021 |
5 Dec 2024 |
CPAI-2020-3217
|
|
CVE-2020-16245
|
Advantech iView exportTaskMgrReport Directory Traversal (CVE-2020-16245)
|
Critical
|
5 Dec 2021 |
27 Nov 2024 |
CPAI-2021-0240
|
|
CVE-2018-19907 CVE-2019-19999 CVE-2021-25770 CVE-2021-35450 CVE-2021-43097 CVE-2021-46063 CVE-2022-24881 CVE-2022-4282 CVE-2022-4300 CVE-2023-41544 CVE-2023-45303 CVE-2024-24230 CVE-2024-28713
|
Java Server-Side Template Injection (CVE-2018-19907; CVE-2019-19999; CVE-2021-25770; CVE-2021-35450; CVE-2021-43097; CVE-2021-46063; CVE-2022-24881; CVE-2022-4282; CVE-2022-4300; CVE-2023-41544; CVE-2023-45303; CVE-2024-24230; CVE-2024-28713)
|
Critical
|
10 Dec 2021 |
25 Nov 2024 |
CPAI-2021-0936
|
|
CVE-2021-44228 CVE-2021-45046
|
Apache Log4j Remote Code Execution (CVE-2021-44228; CVE-2021-45046)
|
Critical
|
20 Mar 2021 |
21 Nov 2024 |
CPAI-2020-3293
|
|
CVE-2020-6207
|
SAP Solution Manager Remote Code Execution (CVE-2020-6207)
|
High
|
13 Dec 2021 |
18 Nov 2024 |
CPAI-2021-0912
|
|
CVE-2021-22204
|
ExifTool Remote Code Execution (CVE-2021-22204)
|
Critical
|
26 Aug 2021 |
18 Nov 2024 |
CPAI-2021-0536
|
|
CVE-2021-21805
|
Advantech R-SeeNet ping.php Command Injection (CVE-2021-21805)
|
Critical
|
28 Feb 2021 |
18 Nov 2024 |
CPAI-2021-0106
|
|
CVE-2021-21972 CVE-2021-21973
|
VMware vSphere Client Remote Code Execution (CVE-2021-21972; CVE-2021-21973)
|
Critical
|
12 May 2021 |
13 Nov 2024 |
CPAI-2021-0292
|
Microsoft CVE-2021-31166
|
CVE-2021-31166
|
Microsoft HTTP Protocol Stack Remote Code Execution (CVE-2021-31166)
|
High
|
20 Jan 2021 |
13 Nov 2024 |
CPAI-2020-1389
|
|
CVE-2020-35606 CVE-2022-36446
|
Webmin Command Injection (CVE-2020-35606; CVE-2022-36446)
|
Critical
|
24 Mar 2021 |
11 Nov 2024 |
CPAI-2020-3298
|
|
CVE-2020-29557
|
D-Link Dir-825 R1 Buffer Overflow (CVE-2020-29557)
|
Critical
|
20 Jun 2021 |
10 Nov 2024 |
CPAI-2021-0416
|
|
CVE-2021-1497 CVE-2021-1498
|
Cisco HyperFlex HX Data Platform Command Injection (CVE-2021-1497; CVE-2021-1498)
|
Critical
|
18 May 2021 |
10 Nov 2024 |
CPAI-2021-0289
|
|
CVE-2021-31755 CVE-2021-31756 CVE-2021-31757 CVE-2021-31758
|
Tenda Routers Buffer Overflow (CVE-2021-31755; CVE-2021-31756; CVE-2021-31757; CVE-2021-31758)
|
Critical
|
11 Apr 2021 |
30 Oct 2024 |
CPAI-2021-0211
|
|
CVE-2020-11991 CVE-2020-24589 CVE-2021-23792 CVE-2021-26703 CVE-2021-37425 CVE-2021-43142 CVE-2022-24449 CVE-2022-38389 CVE-2022-39135 CVE-2022-43941 CVE-2022-47514 CVE-2023-23595 CVE-2023-46265 CVE-2024-34102
|
XML External Entity Over HTTP Request (CVE-2020-11991; CVE-2020-24589; CVE-2021-23792; CVE-2021-26703; CVE-2021-37425; CVE-2021-43142; CVE-2022-24449; CVE-2022-38389; CVE-2022-39135; CVE-2022-43941; CVE-2022-47514; CVE-2023-23595; CVE-2023-46265; CVE-2024-34102)
|
Critical
|
24 Jun 2021 |
7 Oct 2024 |
CPAI-2021-0286
|
|
|
PHP Webshell Upload Over HTTP
|
Critical
|
16 Dec 2021 |
12 Sep 2024 |
CPAI-2020-3438
|
|
CVE-2021-33816
|
Dolibarr ERP CRM Remote Code Execution (CVE-2021-33816)
|
Critical
|
21 Sep 2021 |
9 Sep 2024 |
CPAI-2021-0684
|
|
CVE-2021-38647
|
Microsoft Multiple Products Remote Code Execution (CVE-2021-38647)
|
High
|
7 Nov 2021 |
4 Sep 2024 |
CPAI-2021-0828
|
|
CVE-2021-20124
|
Draytek VigorConnect Directory Traversal (CVE-2021-20124)
|
High
|
11 Nov 2021 |
4 Sep 2024 |
CPAI-2021-0808
|
|
CVE-2021-20123
|
Draytek VigorConnect Directory Traversal (CVE-2021-20123)
|
Critical
|
2 May 2021 |
8 Aug 2024 |
CPAI-2020-3337
|
|
CVE-2020-29047
|
WordPress Hotel Booking Plugin PHP Object Injection (CVE-2020-29047)
|
Critical
|
18 Apr 2021 |
3 Jul 2024 |
CPAI-2021-0140
|
|
|
Ruby Server-Side Template Injection
|
High
|
9 Sep 2021 |
26 Jun 2024 |
CPAI-2021-0554
|
|
CVE-2021-40444
|
Microsoft Internet Explorer MSHTML Remote Code Execution (CVE-2021-40444)
|
Critical
|
21 Dec 2021 |
25 Jun 2024 |
CPAI-2021-0935
|
|
CVE-2021-41081
|
Zoho ManageEngine Network Configuration Manager SQL Injection (CVE-2021-41081)
|
High
|
8 Dec 2021 |
25 Jun 2024 |
CPAI-2021-0931
|
|
CVE-2021-43798
|
Grafana Directory Traversal (CVE-2021-43798)
|
Critical
|
14 Jul 2021 |
25 Jun 2024 |
CPAI-2021-0476
|
Microsoft CVE-2021-34473
|
CVE-2021-34473 CVE-2021-34523 CVE-2022-41082
|
Microsoft Exchange Server Remote Code Execution (CVE-2021-34473; CVE-2021-34523; CVE-2022-41082)
|
High
|
11 Aug 2021 |
24 Jun 2024 |
CPAI-2021-0499
|
|
CVE-2021-32932
|
Advantech iView deleteZtpConfig SQL Injection (CVE-2021-32932)
|
Critical
|
23 Aug 2021 |
24 Jun 2024 |
CPAI-2021-0497
|
|
CVE-2021-20090 CVE-2021-20091 CVE-2021-20092
|
Buffalo Routers Directory Traversal (CVE-2021-20090; CVE-2021-20091; CVE-2021-20092)
|
High
|
30 Jun 2021 |
24 Jun 2024 |
CPAI-2021-0456
|
|
CVE-2021-3277
|
Nagios XI Manage.php Directory Traversal (CVE-2021-3277)
|
High
|
1 Jun 2021 |
24 Jun 2024 |
CPAI-2021-0326
|
|
CVE-2021-30638
|
Apache Tapestry Information Disclosure (CVE-2021-30638)
|
High
|
1 Jun 2021 |
24 Jun 2024 |
CPAI-2021-0325
|
|
CVE-2021-29447
|
WordPress Core External Entity Injection (CVE-2021-29447)
|
High
|
26 Sep 2021 |
23 Jun 2024 |
CPAI-2021-0725
|
|
CVE-2021-22656
|
Advantech iView CommandServlet Directory Traversal (CVE-2021-22656)
|
Critical
|
25 Apr 2021 |
23 Jun 2024 |
CPAI-2021-0253
|
|
CVE-2021-25281 CVE-2021-25282
|
SaltStack Salt Directory Traversal (CVE-2021-25281; CVE-2021-25282)
|
Critical
|
12 May 2021 |
23 Jun 2024 |
CPAI-2021-0245
|
|
CVE-2021-26295
|
Apache OFBiz Insecure Deserialization (CVE-2021-26295)
|
High
|
18 Feb 2021 |
23 Jun 2024 |
CPAI-2021-0085
|
|
CVE-2021-25296 CVE-2021-25297 CVE-2021-25298 CVE-2021-25299
|
Nagios XI Remote Code Execution (CVE-2021-25296; CVE-2021-25297; CVE-2021-25298; CVE-2021-25299)
|
High
|
29 Dec 2021 |
20 Jun 2024 |
CPAI-2021-1009
|
|
CVE-2021-38391
|
Delta Electronics DIAEnergie SQL Injection (CVE-2021-38391)
|
High
|
22 Dec 2021 |
20 Jun 2024 |
CPAI-2021-0930
|
|
CVE-2021-39226
|
Grafana Snapshot Feature Information Disclosure (CVE-2021-39226)
|
Critical
|
7 Dec 2021 |
20 Jun 2024 |
CPAI-2021-0920
|
|
CVE-2021-44077
|
Zoho ManageEngine ServiceDesk Plus Remote Code Execution (CVE-2021-44077)
|
Critical
|
25 Nov 2021 |
20 Jun 2024 |
CPAI-2021-0892
|
|
CVE-2021-42258
|
BQE BillQuick Web Suite SQL Injection (CVE-2021-42258)
|
Critical
|
22 Mar 2021 |
19 Jun 2024 |
CPAI-2021-0198
|
|
CVE-2021-22986 CVE-2021-22987 CVE-2022-1388
|
F5 BIG-IP Remote Code Execution (CVE-2021-22986; CVE-2021-22987; CVE-2022-1388)
|
Critical
|
12 May 2021 |
27 May 2024 |
CPAI-2021-0285
|
|
CVE-2021-25812 CVE-2021-30228 CVE-2021-30229 CVE-2021-30230 CVE-2021-30231 CVE-2021-30232 CVE-2021-30233 CVE-2021-30234 CVE-2021-33962 CVE-2021-33963 CVE-2021-33964 CVE-2021-33965
|
China Mobile An Lianbao WF-1 Command Injection (CVE-2021-25812; CVE-2021-30228; CVE-2021-30229; CVE-2021-30230; CVE-2021-30231; CVE-2021-30232; CVE-2021-30233; CVE-2021-30234; CVE-2021-33962; CVE-2021-33963; CVE-2021-33964; CVE-2021-33965)
|
High
|
17 Jan 2021 |
27 May 2024 |
CPAI-2020-3204
|
|
CVE-2020-17518 CVE-2020-17519
|
Apache Flink Directory Traversal (CVE-2020-17518; CVE-2020-17519)
|
Critical
|
28 Nov 2021 |
20 May 2024 |
CPAI-2020-3442
|
|
CVE-2020-10148
|
SolarWinds Orion Platform Authentication Bypass (CVE-2020-10148)
|
High
|
7 Mar 2021 |
10 Apr 2024 |
CPAI-2020-3277
|
|
CVE-2020-24841 CVE-2023-1934
|
SDG PNPSCADA SQL Injection (CVE-2020-24841; CVE-2023-1934)
|
High
|
9 Sep 2021 |
7 Apr 2024 |
CPAI-2021-0518
|
|
CVE-2021-31630
|
OpenPLC WebServer Remote Code Execution (CVE-2021-31630)
|