Click to open the Alert Filter

 
Year Month
Severity
Categories
Search by Alert Name
Page(s) : 1 2 3 4 [5] 6 7 8 9 10 11 12 13 14 15 ...Result(s) : 154394

Alerts Feed Alerts

DateNameCategoriesDetail
N/A2019-10-14CVE-2019-17579cve SonarSource SonarQube before 7.8 has XSS in project links on account/projects.
N/A2019-10-14CVE-2019-17575cve A file-rename filter bypass exists in admin/media/rename.php in WBCE CMS 1.4.0 and earlier. This can be exploited by an authenticated user with admin privileges to rename a medi...
N/A2019-10-14CVE-2019-17574cve An issue was discovered in the Popup Maker plugin before 1.8.13 for WordPress. An unauthenticated attacker can partially control the arguments of the do_action function to invok...
N/A2019-10-14CVE-2019-17511cve There are some web interfaces without authentication requirements on D-Link DIR-412 A1-1.14WW routers. An attacker can get the router's log file via log_get.php, which coul...
N/A2019-10-14CVE-2019-17044cve An issue was discovered in BMC Patrol Agent 9.0.10i. Weak execution permissions on the PatrolAgent SUID binary could allow an attacker with "patrol" privileges to elevate his/he...
N/A2019-10-14CVE-2019-17043cve An issue was discovered in BMC Patrol Agent 9.0.10i. Weak execution permissions on the best1collect.exe SUID binary could allow an attacker to elevate his/her privileges to the ...
N/A2019-10-14CVE-2019-16519cve ESET Cyber Security 6.7.900.0 for macOS allows a local attacker to execute unauthorized commands as root by abusing an undocumented feature in scheduled tasks.
N/A2019-10-14CVE-2019-16344cve A cross-site scripting (XSS) vulnerability in the login form (/ScadaBR/login.htm) in ScadaBR 1.0CE allows a remote attacker to inject arbitrary web script or HTML via the userna...
52019-10-14CVE-2019-16279cve Directory Traversal in the function SSL_accept in nostromo nhttpd through 1.9.6 allows an attacker to trigger a denial of service via a crafted HTTP request.
7.52019-10-14CVE-2019-16278cve Directory Traversal in the function http_verify in nostromo nhttpd through 1.9.6 allows an attacker to achieve remote code execution via a crafted HTTP request.
N/A2019-10-14CVE-2019-14858cve A vulnerability was found in Ansible engine 2.x up to 2.8 and Ansible tower 3.x up to 3.5. When a module has an argument_spec with sub parameters marked as no_log, passing an in...
N/A2019-10-14CVE-2019-14838cve A flaw was found in wildfly-core before 7.2.5.GA. The Management users with Monitor, Auditor and Deployer Roles should not be allowed to modify the runtime state of the server
4.32019-10-14CVE-2019-14227cve OX App Suite 7.10.1 and 7.10.2 allows XSS.
N/A2019-10-14CVE-2019-14226cve OX App Suite through 7.10.2 has Insecure Permissions.
5.52019-10-14CVE-2019-14225cve OX App Suite 7.10.1 and 7.10.2 allows SSRF.
N/A2019-10-14USN-4154-1Ubuntu Sudo vulnerability
N/A2019-10-14DSA-4543Debian sudo security update
N/A2019-10-14CVE-2019-17553cve An issue was discovered in MetInfo v7.0.0 beta. There is SQL Injection via the admin/?n=tags&c=index&a=doSaveTags URI.
N/A2019-10-14CVE-2019-17552cve An issue was discovered in idreamsoft iCMS v7.0.14. There is a spider_project.admincp.php SQL injection vulnerability in the 'upload spider project scheme' feature via...
N/A2019-10-14CVE-2019-17408cve parserIfLabel in inc/zzz_template.php in ZZZCMS zzzphp 1.7.3 allows remote attackers to execute arbitrary code because the danger_key function can be bypassed via manipulations ...
Page(s) : 1 2 3 4 [5] 6 7 8 9 10 11 12 13 14 15 ...Result(s) : 154394