Click to open the Alert Filter

 
Year Month
Severity
Categories
Search by Alert Name
Page(s) : [1] 2 3 4 5 6 7 8 9 10 11 ...Result(s) : 141793

Alerts Feed Alerts

DateNameCategoriesDetail
6.92019-02-20USN-3892-1Ubuntu GDM vulnerability
N/A2019-02-19CVE-2019-8950cve The backdoor account dnsekakf2$$ in /bin/login on DASAN H665 devices with firmware 1.46p1-0028 allows an attacker to login to the admin account via TELNET.
N/A2019-02-19CVE-2019-8948cve PaperCut MF before 18.3.6 and PaperCut NG before 18.3.6 allow script injection via the user interface, aka PC-15163.
N/A2019-02-19CVE-2019-8944cve An Information Exposure issue in the Terraform deployment step in Octopus Deploy before 2019.1.8 (and before 2018.10.4 LTS) allows remote authenticated users to view sensitive T...
N/A2019-02-19CVE-2019-8943cve WordPress through 5.0.3 allows Path Traversal in wp_crop_image(). An attacker (who has privileges to crop an image) can write the output image to an arbitrary directory via a fi...
N/A2019-02-19CVE-2019-8942cve WordPress before 4.9.9 and 5.x before 5.0.1 allows remote code execution because an _wp_attached_file Post Meta entry can be changed to an arbitrary string, such as one ending w...
4.32019-02-19CVE-2019-8939cve data/interfaces/default/history.html in Tautulli 2.1.26 has XSS via a crafted Plex username that is mishandled when constructing the History page.
3.52019-02-19CVE-2019-8935cve Collabtive 3.1 allows XSS via the manageuser.php?action=profile id parameter.
N/A2019-02-19CVE-2019-7164cve SQLAlchemy through 1.2.17 and 1.3.x through 1.3.0b2 allows SQL Injection via the order_by parameter.
6.82019-02-19CVE-2019-5783cve Missing URI encoding of untrusted input in DevTools in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to perform a Dangling Markup Injection attack via a crafted ...
6.82019-02-19CVE-2019-5782cve Incorrect optimization assumptions in V8 in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page.
4.32019-02-19CVE-2019-5781cve Incorrect handling of a confusable character in Omnibox in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a cra...
N/A2019-02-19CVE-2019-5780cve Insufficient restrictions on what can be done with Apple Events in Google Chrome on macOS prior to 72.0.3626.81 allowed a local attacker to execute JavaScript via Apple Events.
4.32019-02-19CVE-2019-5779cve Insufficient policy validation in ServiceWorker in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page.
N/A2019-02-19CVE-2019-5778cve A missing case for handling special schemes in permission request checks in Extensions in Google Chrome prior to 72.0.3626.81 allowed an attacker who convinced a user to install...
4.32019-02-19CVE-2019-5777cve Incorrect handling of a confusable character in Omnibox in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a cra...
4.32019-02-19CVE-2019-5776cve Incorrect handling of a confusable character in Omnibox in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a cra...
4.32019-02-19CVE-2019-5775cve Incorrect handling of a confusable character in Omnibox in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a cra...
6.82019-02-19CVE-2019-5774cve Omission of the .desktop filetype from the Safe Browsing checklist in SafeBrowsing in Google Chrome on Linux prior to 72.0.3626.81 allowed an attacker who convinced a user to do...
4.32019-02-19CVE-2019-5773cve Insufficient origin validation in IndexedDB in Google Chrome prior to 72.0.3626.81 allowed a remote attacker who had compromised the renderer process to bypass same origin polic...
Page(s) : [1] 2 3 4 5 6 7 8 9 10 11 ...Result(s) : 141793