Click to open the Alert Filter

 
Year Month
Severity
Categories
Search by Alert Name
Page(s) : 1 ... 12 13 14 15 16 17 18 19 20 21 [22] 23 24 25 26 27 28 29 30 31 32 ...Result(s) : 152708

Alerts Feed Alerts

DateNameCategoriesDetail
3.52019-09-09CVE-2019-16178cve A stored cross-site scripting (XSS) vulnerability was found in Limesurvey before 3.17.14 that allows authenticated users with correct permissions to inject arbitrary web script ...
52019-09-09CVE-2019-16177cve In Limesurvey before 3.17.14, the entire database is exposed through browser caching.
52019-09-09CVE-2019-16176cve A path disclosure vulnerability was found in Limesurvey before 3.17.14 that allows a remote attacker to discover the path to the application in the filesystem.
4.32019-09-09CVE-2019-16175cve A clickjacking vulnerability was found in Limesurvey before 3.17.14.
6.82019-09-09CVE-2019-16174cve An XML injection vulnerability was found in Limesurvey before 3.17.14 that allows remote attackers to import specially crafted XML files and execute code or compromise data inte...
4.32019-09-09CVE-2019-16147cve Liferay Portal through 7.2.0 GA1 allows XSS via a journal article title to journal_article/page.jsp in journal/journal-taglib.
4.32019-09-09CVE-2019-16145cve The breadcrumbs contributed module through 0.2.0 for Padrino Framework allows XSS via a caption.
42019-09-09CVE-2019-15297cve res_pjsip_t38 in Sangoma Asterisk 13.21-cert4, 15.7.3, and 16.5.0 allows an attacker to trigger a crash by sending a declined stream in a response to a T.38 re-invite initiated ...
4.32019-09-09CVE-2019-10253cve A Cross-Site Request Forgery (CSRF) vulnerability exists in TeamMate+ 21.0.0.0 that allows a remote attacker to modify application data (upload malicious/forged files on a TeamM...
52019-09-09CVE-2019-5483cve Seneca < 3.9.0 contains a vulnerability that could lead to exposing environment variables to unauthorized users.
6.52019-09-09CVE-2019-5473cve An authentication issue was discovered in GitLab that allowed a bypass of email verification. This was addressed in GitLab 12.1.2 and 12.0.4.
3.52019-09-09CVE-2019-5471cve An input validation and output encoding issue was discovered in the GitLab email notification feature which could result in a persistent XSS. This was addressed in GitLab 12.1.2...
3.52019-09-09CVE-2019-5467cve An input validation and output encoding issue was discovered in the GitLab CE/EE wiki pages feature which could result in a persistent XSS. This vulnerability was addressed in 1...
52019-09-09CVE-2019-5463cve An authorization issue was discovered in the GitLab CE/EE CI badge images endpoint which could result in disclosure of the build status. This vulnerability was addressed in 12.1...
42019-09-09CVE-2019-5461cve An input validation problem was discovered in the GitHub service integration which could result in an attacker being able to make arbitrary POST requests in a GitLab instance�...
3.52019-09-09CVE-2019-16173cve LimeSurvey before v3.17.14 allows reflected XSS for escalating privileges from a low-privileged account to, for example, SuperAdmin. This occurs in application/core/Survey_Commo...
3.52019-09-09CVE-2019-16172cve LimeSurvey before v3.17.14 allows stored XSS for escalating privileges from a low-privileged account to, for example, SuperAdmin. The attack uses a survey group in which the tit...
52019-09-09CVE-2019-16168cve In SQLite through 3.29.0, whereLoopAddBtreeIndex in sqlite3.c can crash a browser or other application because of missing validation of a sqlite_stat1 sz field, aka a "severe di...
4.32019-09-09CVE-2019-16167cve sysstat before 12.1.6 has memory corruption due to an Integer Overflow in remap_struct() in sa_common.c.
4.32019-09-09CVE-2019-16166cve GNU cflow through 1.6 has a heap-based buffer over-read in the nexttoken function in parser.c.
Page(s) : 1 ... 12 13 14 15 16 17 18 19 20 21 [22] 23 24 25 26 27 28 29 30 31 32 ...Result(s) : 152708