| Page(s) : [1] 2 3 4 5 6 7 8 9 10 11 ... | Result(s) : 121249 |
Alerts
| Date | Name | Categories | Detail | |
|---|---|---|---|---|
| N/A | 2019-04-20 | CVE-2019-11378 | cve | An issue was discovered in ProjectSend r1053. upload-process-form.php allows finished_files[]=../ directory traversal. It is possible for users to read arbitrary files and (pote... |
| N/A | 2019-04-20 | CVE-2019-11377 | cve | wcms/wex/finder/action.php in WCMS v0.3.2 has a Arbitrary File Upload Vulnerability via developer/finder because .php is a valid extension according to the fm_get_text_exts func... |
| N/A | 2019-04-20 | CVE-2019-11376 | cve | ** DISPUTED ** SOY CMS v3.0.2 allows remote attackers to execute arbitrary PHP code via a |
| N/A | 2019-04-20 | CVE-2019-11375 | cve | Msvod v10 has a CSRF vulnerability to change user information via the admin/member/edit.html URI. |
| N/A | 2019-04-20 | CVE-2019-11374 | cve | 74CMS v5.0.1 has a CSRF vulnerability to add a new admin user via the index.php?m=Admin&c=admin&a=add URI. |
| N/A | 2019-04-20 | CVE-2019-11373 | cve | An out-of-bounds read in File__Analyze::Get_L8 in File__Analyze_Buffer.cpp in MediaInfoLib in MediaArea MediaInfo 18.12 leads to a crash. |
| N/A | 2019-04-20 | CVE-2019-11372 | cve | An out-of-bounds read in MediaInfoLib::File__Tags_Helper::Synched_Test in Tag/File__Tags.cpp in MediaInfoLib in MediaArea MediaInfo 18.12 leads to a crash. |
| N/A | 2019-04-20 | CVE-2019-11366 | cve | An issue was discovered in atftpd in atftp 0.7.1. It does not lock the thread_list_mutex mutex before assigning the current thread data structure. As a result, the daemon is vul... |
| N/A | 2019-04-20 | CVE-2019-11365 | cve | An issue was discovered in atftpd in atftp 0.7.1. A remote attacker may send a crafted packet triggering a stack-based buffer overflow due to an insecurely implemented strncpy c... |
| N/A | 2019-04-20 | CVE-2019-11362 | cve | app/controllers/frontend/PostController.php in ROCBOSS V2.2.1 has SQL injection via the Post:doReward score paramter, as demonstrated by the /do/reward/3 URI. |
| N/A | 2019-04-19 | CVE-2019-11359 | cve | Cross-site scripting (XSS) vulnerability in display.php in I, Librarian 4.10 allows remote attackers to inject arbitrary web script or HTML via the project parameter. |
| N/A | 2019-04-19 | CVE-2019-11358 | cve | jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution. If an unsanitized source... |
| N/A | 2019-04-19 | CVE-2019-2041 | cve | In the configuration of NFC modules on certain devices, there is a possible failure to distinguish individual devices due to an insecure default value. This could lead to local ... |
| N/A | 2019-04-19 | CVE-2019-2040 | cve | In rw_i93_process_ext_sys_info of rw_i93.cc, there is a possible out-of-bound read due to a missing bounds check. This could lead to local information disclosure with no additio... |
| N/A | 2019-04-19 | CVE-2019-2039 | cve | In rw_i93_sm_detect_ndef of rw_i93.cc, there is a possible out-of-bound read due to a missing bounds check. This could lead to local information disclosure with no additional ex... |
| N/A | 2019-04-19 | CVE-2019-2038 | cve | In rw_i93_process_sys_info of rw_i93.cc, there is a possible out-of-bound read due to a missing bounds check. This could lead to local information disclosure with no additional ... |
| N/A | 2019-04-19 | CVE-2019-2037 | cve | In l2cu_send_peer_config_rej of l2c_utils.cc, there is a possible out-of-bound read due to an incorrect bounds check. This could lead to remote information disclosure with no ad... |
| N/A | 2019-04-19 | CVE-2019-2035 | cve | In rw_i93_sm_update_ndef of rw_i93.cc, there is a possible out-of-bound write due to a missing bounds check. This could lead to local escalation of privilege with no additional ... |
| N/A | 2019-04-19 | CVE-2019-2034 | cve | In rw_i93_sm_read_ndef of rw_i93.cc, there is a possible out-of-bounds write due to an integer overflow. This could lead to local escalation of privilege in the NFC process with... |
| N/A | 2019-04-19 | CVE-2019-2033 | cve | In create_hdr of dnssd_clientstub.c, there is a possible use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User in... |
| Page(s) : [1] 2 3 4 5 6 7 8 9 10 11 ... | Result(s) : 121249 |
