Vulnerabilities (CVE)

  1. Yack CVE
  2. Vulnerabilities (CVE)
Filtered by NVD-CWE-noinfo
Angry Yack Logo
Total 34640 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2021-24816 1 Phoenix Media Rename Project 1 Phoenix Media Rename 2024-11-21 4.0 MEDIUM 4.3 MEDIUM
The Phoenix Media Rename WordPress plugin before 3.4.4 does not have capability checks in its phoenix_media_rename AJAX action, which could allow users with Author roles to rename any uploaded media files, including ones they do not own.
CVE-2021-24781 1 Imagesourcecontrol 1 Image Source Control 2024-11-21 4.0 MEDIUM 4.3 MEDIUM
The Image Source Control WordPress plugin before 2.3.1 allows users with a role as low as Contributor to change arbitrary post meta fields of arbitrary posts (even those they should not be able to edit)
CVE-2021-24698 1 Tipsandtricks-hq 1 Simple Download Monitor 2024-11-21 4.0 MEDIUM 4.3 MEDIUM
The Simple Download Monitor WordPress plugin before 3.9.6 allows users with a role as low as Contributor to remove thumbnails from downloads they do not own, even if they cannot normally edit the download.
CVE-2021-24189 1 Wp-buy 1 Captchinoo 2024-11-21 6.5 MEDIUM 8.8 HIGH
Low privileged users can use the AJAX action 'cp_plugins_do_button_job_later_callback' in the Captchinoo, Google recaptcha for admin login page WordPress plugin before 2.4, to install any plugin (including a specific version) from the WordPress repository, as well as activate arbitrary plugin from then blog, which helps attackers install vulnerable plugins and could lead to more critical vulnerabilities like RCE.
CVE-2021-24115 1 Botan Project 1 Botan 2024-11-21 7.5 HIGH 9.8 CRITICAL
In Botan before 2.17.3, constant-time computations are not used for certain decoding and encoding operations (base32, base58, base64, and hex).
CVE-2021-24114 1 Microsoft 1 Teams 2024-11-21 3.5 LOW 5.7 MEDIUM
Microsoft Teams iOS Information Disclosure Vulnerability
CVE-2021-24113 1 Microsoft 1 Edge Chromium 2024-11-21 5.8 MEDIUM 5.4 MEDIUM
Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability
CVE-2021-24112 1 Microsoft 4 .net, .net Core, Mono and 1 more 2024-11-21 7.5 HIGH 8.1 HIGH
.NET Core Remote Code Execution Vulnerability
CVE-2021-24111 1 Microsoft 9 .net Framework, Windows 10, Windows 7 and 6 more 2024-11-21 5.0 MEDIUM 7.5 HIGH
.NET Framework Denial of Service Vulnerability
CVE-2021-24110 1 Microsoft 1 High Efficiency Video Coding 2024-11-21 6.8 MEDIUM 7.8 HIGH
HEVC Video Extensions Remote Code Execution Vulnerability
CVE-2021-24109 1 Microsoft 1 Azure Kubernetes Service 2024-11-21 6.0 MEDIUM 6.8 MEDIUM
Microsoft Azure Kubernetes Service Elevation of Privilege Vulnerability
CVE-2021-24108 1 Microsoft 2 365 Apps, Office 2024-11-21 6.8 MEDIUM 7.8 HIGH
Microsoft Office Remote Code Execution Vulnerability
CVE-2021-24107 1 Microsoft 8 Windows 10, Windows 7, Windows 8.1 and 5 more 2024-11-21 2.1 LOW 5.5 MEDIUM
Windows Event Tracing Information Disclosure Vulnerability
CVE-2021-24106 1 Microsoft 3 Windows 10, Windows Server 2016, Windows Server 2019 2024-11-21 2.1 LOW 5.5 MEDIUM
Windows DirectX Information Disclosure Vulnerability
CVE-2021-24104 1 Microsoft 3 Sharepoint Enterprise Server, Sharepoint Foundation, Sharepoint Server 2024-11-21 5.8 MEDIUM 4.6 MEDIUM
Microsoft SharePoint Server Spoofing Vulnerability
CVE-2021-24103 1 Microsoft 8 Windows 10, Windows 7, Windows 8.1 and 5 more 2024-11-21 4.6 MEDIUM 7.8 HIGH
Windows Event Tracing Elevation of Privilege Vulnerability
CVE-2021-24101 1 Microsoft 1 Dynamics 365 2024-11-21 4.0 MEDIUM 6.5 MEDIUM
Microsoft Dataverse Information Disclosure Vulnerability
CVE-2021-24100 1 Microsoft 1 Edge 2024-11-21 2.6 LOW 5.0 MEDIUM
Microsoft Edge for Android Information Disclosure Vulnerability
CVE-2021-24099 1 Microsoft 2 Lync Server, Skype For Business Server 2024-11-21 4.0 MEDIUM 6.5 MEDIUM
Skype for Business and Lync Denial of Service Vulnerability
CVE-2021-24098 1 Microsoft 3 Windows 10, Windows Server 2016, Windows Server 2019 2024-11-21 2.1 LOW 5.5 MEDIUM
Windows Console Driver Denial of Service Vulnerability
CVE-2021-24094 1 Microsoft 8 Windows 10, Windows 7, Windows 8.1 and 5 more 2024-11-21 7.5 HIGH 9.8 CRITICAL
Windows TCP/IP Remote Code Execution Vulnerability
CVE-2021-24093 1 Microsoft 3 Windows 10, Windows Server 2016, Windows Server 2019 2024-11-21 6.8 MEDIUM 8.8 HIGH
Windows Graphics Component Remote Code Execution Vulnerability
CVE-2021-24089 1 Microsoft 1 High Efficiency Video Coding 2024-11-21 6.8 MEDIUM 7.8 HIGH
HEVC Video Extensions Remote Code Execution Vulnerability
CVE-2021-24088 1 Microsoft 8 Windows 10, Windows 7, Windows 8.1 and 5 more 2024-11-21 6.5 MEDIUM 8.8 HIGH
Windows Local Spooler Remote Code Execution Vulnerability
CVE-2021-24086 1 Microsoft 8 Windows 10, Windows 7, Windows 8.1 and 5 more 2024-11-21 5.0 MEDIUM 7.5 HIGH
Windows TCP/IP Denial of Service Vulnerability
CVE-2021-24085 1 Microsoft 1 Exchange Server 2024-11-21 6.0 MEDIUM 6.5 MEDIUM
Microsoft Exchange Server Spoofing Vulnerability
CVE-2021-24082 1 Microsoft 3 Windows 10, Windows Server 2016, Windows Server 2019 2024-11-21 4.0 MEDIUM 4.3 MEDIUM
Microsoft.PowerShell.Utility Module WDAC Security Feature Bypass Vulnerability
CVE-2021-24080 1 Microsoft 3 Windows 10, Windows Server 2016, Windows Server 2019 2024-11-21 4.3 MEDIUM 6.5 MEDIUM
Windows Trust Verification API Denial of Service Vulnerability
CVE-2021-24079 1 Microsoft 6 Windows 10, Windows 8.1, Windows Rt 8.1 and 3 more 2024-11-21 2.1 LOW 5.5 MEDIUM
Windows Backup Engine Information Disclosure Vulnerability
CVE-2021-24078 1 Microsoft 4 Windows Server 2008, Windows Server 2012, Windows Server 2016 and 1 more 2024-11-21 7.5 HIGH 9.8 CRITICAL
Windows DNS Server Remote Code Execution Vulnerability
CVE-2021-24077 1 Microsoft 8 Windows 10, Windows 7, Windows 8.1 and 5 more 2024-11-21 7.5 HIGH 9.8 CRITICAL
Windows Fax Service Remote Code Execution Vulnerability
CVE-2021-24076 1 Microsoft 5 Windows 10, Windows 8.1, Windows Server 2012 and 2 more 2024-11-21 2.1 LOW 5.5 MEDIUM
Microsoft Windows VMSwitch Information Disclosure Vulnerability
CVE-2021-24075 1 Microsoft 2 Windows 10, Windows Server 2016 2024-11-21 3.5 LOW 6.8 MEDIUM
Microsoft Windows VMSwitch Denial of Service Vulnerability
CVE-2021-24074 1 Microsoft 8 Windows 10, Windows 7, Windows 8.1 and 5 more 2024-11-21 7.5 HIGH 9.8 CRITICAL
Windows TCP/IP Remote Code Execution Vulnerability
CVE-2021-24073 1 Microsoft 2 Lync Server, Skype For Business Server 2024-11-21 5.8 MEDIUM 6.5 MEDIUM
Skype for Business and Lync Spoofing Vulnerability
CVE-2021-24072 1 Microsoft 3 Sharepoint Enterprise Server, Sharepoint Foundation, Sharepoint Server 2024-11-21 6.5 MEDIUM 8.8 HIGH
Microsoft SharePoint Server Remote Code Execution Vulnerability
CVE-2021-24071 1 Microsoft 3 Sharepoint Enterprise Server, Sharepoint Foundation, Sharepoint Server 2024-11-21 4.0 MEDIUM 5.3 MEDIUM
Microsoft SharePoint Information Disclosure Vulnerability
CVE-2021-24069 1 Microsoft 5 365 Apps, Excel, Office and 2 more 2024-11-21 6.8 MEDIUM 7.8 HIGH
Microsoft Excel Remote Code Execution Vulnerability
CVE-2021-24068 1 Microsoft 2 Excel, Office Web Apps 2024-11-21 6.8 MEDIUM 7.8 HIGH
Microsoft Excel Remote Code Execution Vulnerability
CVE-2021-24027 1 Whatsapp 2 Whatsapp, Whatsapp Business 2024-11-21 5.0 MEDIUM 7.5 HIGH
A cache configuration issue prior to WhatsApp for Android v2.21.4.18 and WhatsApp Business for Android v2.21.4.18 may have allowed a third party with access to the device’s external storage to read cached TLS material.