Click to open the Alert Filter

 
Year Month
Severity
Categories
Search by Alert Name
Page(s) : 1 2 [3] 4 5 6 7 8 9 10 11 12 13 ...Result(s) : 150962

Alerts Feed Alerts

DateNameCategoriesDetail
N/A2019-08-16CVE-2019-15117cve parse_audio_mixer_unit in sound/usb/mixer.c in the Linux kernel through 5.2.9 mishandles a short descriptor, leading to out-of-bounds memory access.
N/A2019-08-16CVE-2018-13884cve ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2018. Notes: none.
7.52019-08-16CVE-2017-18548cve The note-press plugin before 0.1.2 for WordPress has SQL injection.
N/A2019-08-16CVE-2016-10904cve The olimometer plugin before 2.57 for WordPress has SQL injection.
N/A2019-08-16CVE-2015-9326cve The wp-business-intelligence-lite plugin before 1.6.3 for WordPress has SQL injection.
N/A2019-08-16CVE-2015-9325cve The visitors-online plugin before 0.4 for WordPress has SQL injection.
7.52019-08-16GLSA-201908-20Gentoo Mozilla Thunderbird: Multiple vulnerabilities
N/A2019-08-16CVE-2019-15091cve filemgr.php in Artica Integria IMS 5.0.86 allows index.php?sec=wiki&sec2=operation/wiki/wiki&action=upload arbitrary file upload.
N/A2019-08-16CVE-2019-14923cve EyesOfNetwork 5.1 allows Remote Command Execution via shell metacharacters in the module/tool_all/ host field.
N/A2019-08-16CVE-2019-15108cve An issue was discovered in WSO2 API Manager 2.6.0 before WSO2-CARBON-PATCH-4.4.0-4457. There is XSS via a crafted filename to the file-upload feature of the event simulator comp...
N/A2019-08-16CVE-2018-20969cve do_ed_script in pch.c in GNU patch through 2.7.6 does not block strings beginning with a ! character. NOTE: this is the same commit as for CVE-2019-13638, but the ! syntax is sp...
N/A2019-08-15CVE-2019-15107cve An issue was discovered in Webmin through 1.920. The parameter old in password_change.cgi contains a command injection vulnerability.
N/A2019-08-15CVE-2019-15106cve An issue was discovered in Zoho ManageEngine OpManager through 12.4x. One can bypass the user password requirement and execute commands on the server. The "username+'@opm&#...
N/A2019-08-15CVE-2019-15105cve An issue was discovered in Zoho ManageEngine Application Manager through 14.2. There is a SQL Injection vulnerability in jsp/NewThresholdConfiguration.jsp via the resourceid par...
N/A2019-08-15CVE-2019-15104cve An issue was discovered in Zoho ManageEngine OpManager through 12.4x. There is a SQL Injection vulnerability in jsp/NewThresholdConfiguration.jsp via the resourceid parameter. T...
N/A2019-08-15CVE-2019-15099cve drivers/net/wireless/ath/ath10k/usb.c in the Linux kernel through 5.2.8 has a NULL pointer dereference via an incomplete address in an endpoint descriptor.
N/A2019-08-15CVE-2019-15098cve drivers/net/wireless/ath/ath6kl/usb.c in the Linux kernel through 5.2.8 has a NULL pointer dereference via an incomplete address in an endpoint descriptor.
N/A2019-08-15CVE-2019-15095cve DWSurvey through 2019-07-22 has reflected XSS via the design/qu-multi-fillblank!answers.action surveyId parameter.
N/A2019-08-15CVE-2019-15090cve An issue was discovered in drivers/scsi/qedi/qedi_dbg.c in the Linux kernel before 5.1.12. In the qedi_dbg_* family of functions, there is an out-of-bounds read.
N/A2019-08-15CVE-2019-15084cve Realtek Waves MaxxAudio driver 1.6.2.0, as used on Dell laptops, installs with incorrect file permissions. As a result, a local attacker can escalate to SYSTEM.
Page(s) : 1 2 [3] 4 5 6 7 8 9 10 11 12 13 ...Result(s) : 150962