Click to open the Alert Filter

 
Year Month
Severity
Categories
Search by Alert Name
Page(s) : 1 2 3 4 5 [6] 7 8 9 10 11 12 13 14 15 16 ...Result(s) : 150978

Alerts Feed Alerts

DateNameCategoriesDetail
7.52019-08-15GLSA-201908-19Gentoo GNU Wget: Arbitrary code execution
7.52019-08-15DSA-4501Debian libreoffice security update
N/A2019-08-15CVE-2019-9013cve An issue was discovered in 3S-Smart CODESYS V3 products. The application may utilize non-TLS based encryption, which results in user credentials being insufficiently protected d...
N/A2019-08-15CVE-2019-3418cve All versions up to V1.1.10P3T18 of ZTE ZXHN F670 product are impacted by cross-site scripting vulnerability (XSS). Due to incomplete input validation, an authorized user can exp...
N/A2019-08-15CVE-2019-3417cve All versions up to V1.1.10P3T18 of ZTE ZXHN F670 product are impacted by command injection vulnerability. Due to insufficient parameter validation check, an authorized user can ...
N/A2019-08-15CVE-2019-15081cve OpenCart 3.x, when the attacker has login access to the admin panel, allows stored XSS within the Source/HTML editing feature of the Categories, Product, and Information pages.
N/A2019-08-15CVE-2019-14800cve The FV Flowplayer Video Player plugin before 7.3.15.727 for WordPress allows guests to obtain the email subscription list in CSV format via the wp-admin/admin-post.php?page=fvpl...
N/A2019-08-15CVE-2019-14795cve The toggle-the-title (aka Toggle The Title) plugin 1.4 for WordPress has XSS via the wp-admin/admin-ajax.php?action=update_title_options isAutoSaveValveChecked or isDisableAllPa...
N/A2019-08-15CVE-2019-14790cve The limb-gallery (aka Limb Gallery) plugin 1.4.0 for WordPress has XSS via the wp-admin/admin-ajax.php?action=grsGalleryAjax&grsAction=shortcode task parameter,
N/A2019-08-15CVE-2019-14789cve The Custom 404 Pro plugin 3.2.8 for WordPress has XSS via the wp-admin/admin.php?page=c4p-main page parameter.
N/A2019-08-15CVE-2019-14788cve wp-admin/admin-ajax.php?action=newsletters_exportmultiple in the Tribulant Newsletters plugin before 4.6.19 for WordPress allows directory traversal with resultant remote PHP co...
N/A2019-08-15CVE-2019-14786cve The Rank Math SEO plugin 1.0.27 for WordPress allows non-admin users to reset the settings via the wp-admin/admin-post.php reset-cmb parameter.
N/A2019-08-15CVE-2019-14784cve The "CP Contact Form with PayPal" plugin before 1.2.98 for WordPress has XSS in CSS edition.
N/A2019-08-15CVE-2019-14755cve The profile photo upload feature in Leaf Admin 61.9.0212.10 f allows Unrestricted Upload of a File with a Dangerous Type.
N/A2019-08-15CVE-2019-14518cve ** DISPUTED ** Evolution CMS 2.0.x allows XSS via a description and new category location in a template. NOTE: the vendor states that the behavior is consistent with the "access...
N/A2019-08-15CVE-2019-14422cve An issue was discovered in in TortoiseSVN 1.12.1. The Tsvncmd: URI handler allows a customised diff operation on Excel workbooks, which could be used to open remote workbooks wi...
N/A2019-08-15CVE-2019-13578cve A SQL injection vulnerability exists in the Impress GiveWP Give plugin through 2.5.0 for WordPress. Successful exploitation of this vulnerability would allow a remote attacker t...
N/A2019-08-15CVE-2019-13377cve The implementations of SAE and EAP-pwd in hostapd and wpa_supplicant 2.x through 2.8 are vulnerable to side-channel attacks as a result of observable timing differences and cach...
N/A2019-08-15CVE-2019-13223cve A reachable assertion in the lookup1_values function in stb_vorbis through 2019-03-04 allows an attacker to cause a denial of service by opening a crafted Ogg Vorbis file.
N/A2019-08-15CVE-2019-13222cve An out-of-bounds read of a global buffer in the draw_line function in stb_vorbis through 2019-03-04 allows an attacker to cause a denial of service or disclose sensitive informa...
Page(s) : 1 2 3 4 5 [6] 7 8 9 10 11 12 13 14 15 16 ...Result(s) : 150978