| Page(s) : 1 2 3 4 5 6 [7] 8 9 10 11 12 13 14 15 16 17 ... | Result(s) : 129287 |
Alerts
| Date | Name | Categories | Detail | |
|---|---|---|---|---|
| 4 | 2019-09-17 | CVE-2016-10977 | cve | The nelio-ab-testing plugin before 4.5.0 for WordPress has filename=..%2f directory traversal. |
| 4.3 | 2019-09-17 | CVE-2016-10976 | cve | The safe-editor plugin before 1.2 for WordPress has no se_save authentication, with resultant XSS. |
| 4.3 | 2019-09-17 | CVE-2016-10975 | cve | The fluid-responsive-slideshow plugin before 2.2.7 for WordPress has reflected XSS via the skin parameter. |
| 6.8 | 2019-09-17 | CVE-2016-10974 | cve | The fluid-responsive-slideshow plugin before 2.2.7 for WordPress has frs_save CSRF with resultant stored XSS. |
| 7.5 | 2019-09-17 | CVE-2019-16378 | cve | OpenDMARC through 1.3.2 and 1.4.x through 1.4.0-Beta1 is prone to a signature-bypass vulnerability with multiple From: addresses, which might affect applications that consider a... |
| 7.5 | 2019-09-17 | CVE-2019-16239 | cve | process_http_response in OpenConnect before 8.05 has a Buffer Overflow when a malicious server uses HTTP chunked encoding with crafted chunk sizes. |
| 7.5 | 2019-09-17 | CVE-2019-15131 | cve | In Code42 Enterprise 6.7.5 and earlier, 6.8.4 through 6.8.8, and 7.0.0 a vulnerability has been identified that may allow arbitrary files to be uploaded to Code42 servers and ex... |
| 4.3 | 2019-09-16 | CVE-2019-8368 | cve | OpenEMR v5.0.1-6 allows XSS. |
| 7.5 | 2019-09-16 | CVE-2019-5482 | cve | Heap buffer overflow in the TFTP protocol handler in cURL 7.19.4 to 7.65.3. |
| 7.5 | 2019-09-16 | CVE-2019-5481 | cve | Double-free vulnerability in the FTP-kerberos code in cURL 7.52.0 to 7.65.3. |
| 6.5 | 2019-09-16 | CVE-2019-4147 | cve | IBM Sterling File Gateway 2.2.0.0 through 6.0.1.0 is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the attacker t... |
| 5.8 | 2019-09-16 | CVE-2019-16371 | cve | LogMeIn LastPass before 4.33.0 allows attackers to construct a crafted web site that captures the credentials for a victim's account on a previously visited web site, becau... |
| 4.3 | 2019-09-16 | CVE-2019-16370 | cve | The PGP signing plugin in Gradle before 6.0 relies on the SHA-1 algorithm, which might allow an attacker to replace an artifact with a different one that has the same SHA-1 mess... |
| 7.5 | 2019-09-16 | CVE-2019-15741 | cve | An issue was discovered in GitLab Omnibus 7.4 through 12.2.1. An unsafe interaction with logrotate could result in a privilege escalation |
| 5 | 2019-09-16 | CVE-2019-15740 | cve | An issue was discovered in GitLab Community and Enterprise Edition 7.9 through 12.2.1. EXIF Geolocation data was not being removed from certain image uploads. |
| 4.3 | 2019-09-16 | CVE-2019-15739 | cve | An issue was discovered in GitLab Community and Enterprise Edition 8.1 through 12.2.1. Certain areas displaying Markdown were not properly sanitizing some XSS payloads. |
| 5 | 2019-09-16 | CVE-2019-15738 | cve | An issue was discovered in GitLab Community and Enterprise Edition 12.0 through 12.2.1. Under certain conditions, merge request IDs were being disclosed via email. |
| 6.4 | 2019-09-16 | CVE-2019-15737 | cve | An issue was discovered in GitLab Community and Enterprise Edition through 12.2.1. Certain account actions needed improved authentication and session management. |
| 5 | 2019-09-16 | CVE-2019-15736 | cve | An issue was discovered in GitLab Community and Enterprise Edition through 12.2.1. Under certain circumstances, CI pipelines could potentially be used in a denial of service att... |
| 4 | 2019-09-16 | CVE-2019-15734 | cve | An issue was discovered in GitLab Community and Enterprise Edition 8.6 through 12.2.1. Under very specific conditions, commit titles and team member comments could become viewab... |
| Page(s) : 1 2 3 4 5 6 [7] 8 9 10 11 12 13 14 15 16 17 ... | Result(s) : 129287 |
