| Page(s) : 1 [2] 3 4 5 6 7 8 9 10 11 12 ... | Result(s) : 118700 |
Alerts
| Date | Name | Categories | Detail | |
|---|---|---|---|---|
| N/A | 2019-02-16 | CVE-2019-8360 | cve | Themerig Find a Place CMS Directory 1.5 has SQL Injection via the find/assets/external/data_2.php cate parameter. |
| N/A | 2019-02-16 | CVE-2019-8358 | cve | In Hiawatha before 10.8.4, a remote attacker is able to do directory traversal if AllowDotFiles is enabled. |
| N/A | 2019-02-16 | CVE-2019-7399 | cve | Amazon Fire OS before 5.3.6.4 allows a man-in-the-middle attack against HTTP requests for "Terms of Use" and Privacy pages. |
| N/A | 2019-02-15 | CVE-2019-8357 | cve | An issue was discovered in SoX 14.4.2. lsx_make_lpf in effect_i_dsp.c allows a NULL pointer dereference. |
| N/A | 2019-02-15 | CVE-2019-8356 | cve | An issue was discovered in SoX 14.4.2. One of the arguments to bitrv2 in fft4g.c is not guarded, such that it can lead to write access outside of the statically declared array, ... |
| N/A | 2019-02-15 | CVE-2019-8355 | cve | An issue was discovered in SoX 14.4.2. In xmalloc.h, there is an integer overflow on the result of multiplication fed into the lsx_valloc macro that wraps malloc. When the buffe... |
| N/A | 2019-02-15 | CVE-2019-8354 | cve | An issue was discovered in SoX 14.4.2. lsx_make_lpf in effect_i_dsp.c has an integer overflow on the result of multiplication fed into malloc. When the buffer is allocated, it i... |
| 6.8 | 2019-02-15 | CVE-2019-8347 | cve | BEESCMS 4.0 has a CSRF vulnerability to add arbitrary VIP accounts via the admin/admin_member.php?action=add&nav=add_web_user&admin_p_nav=user URI. |
| 4.3 | 2019-02-15 | CVE-2019-8345 | cve | The Help feature in the ES File Explorer File Manager application 4.1.9.7.4 for Android allows session hijacking by a Man-in-the-middle attacker on the local network because HTT... |
| 5.8 | 2019-02-15 | CVE-2019-6974 | cve | In the Linux kernel before 4.20.8, kvm_ioctl_create_device in virt/kvm/kvm_main.c mishandles reference counting because of a race condition, leading to a use-after-free. |
| N/A | 2019-02-15 | CVE-2019-4059 | cve | IBM Rational ClearCase 1.0.0.0 GIT connector does not sufficiently protect the document database password. An attacker could obtain the password and gain unauthorized access to ... |
| N/A | 2019-02-15 | CVE-2019-0267 | cve | SAP Manufacturing Integration and Intelligence, versions 15.0, 15.1 and 15.2, (Illuminator Servlet) currently does not provide Anti-XSRF tokens. This might lead to XSRF attacks ... |
| N/A | 2019-02-15 | CVE-2019-0266 | cve | Under certain conditions SAP HANA Extended Application Services, version 1.0, advanced model (XS advanced) writes credentials of platform users to a trace file of the SAP HANA s... |
| N/A | 2019-02-15 | CVE-2019-0265 | cve | SLD Registration of ABAP Platform allows an attacker to prevent legitimate users from accessing a service, either by crashing or flooding the service. Fixed in versions KRNL32NU... |
| N/A | 2019-02-15 | CVE-2019-0262 | cve | SAP WebIntelligence BILaunchPad, versions 4.10, 4.20, does not sufficiently encode user-controlled inputs in generated HTML reports, resulting in Cross-Site Scripting (XSS) vuln... |
| N/A | 2019-02-15 | CVE-2019-0261 | cve | Under certain circumstances, SAP HANA Extended Application Services, advanced model (XS advanced) does not perform authentication checks properly for XS advanced platform and bu... |
| N/A | 2019-02-15 | CVE-2019-0259 | cve | SAP BusinessObjects, versions 4.2 and 4.3, (Visual Difference) allows an attacker to upload any file (including script files) without proper file format validation. |
| N/A | 2019-02-15 | CVE-2019-0258 | cve | SAP Disclosure Management, version 10.01, does not perform necessary authorization checks for an authenticated user, resulting in escalation of privileges. |
| N/A | 2019-02-15 | CVE-2019-0257 | cve | Customizing functionality of SAP NetWeaver AS ABAP Platform (fixed in versions from 7.0 to 7.02, from 7.10 to 7.11, 7.30, 7.31, 7.40, from 7.50 to 7.53, from 7.74 to 7.75) does ... |
| 2.1 | 2019-02-15 | CVE-2019-0256 | cve | Under certain conditions SAP Business One Mobile Android App, version 1.2.12, allows an attacker to access information which would otherwise be restricted. |
| Page(s) : 1 [2] 3 4 5 6 7 8 9 10 11 12 ... | Result(s) : 118700 |
