Click to open the Alert Filter

 
Year Month
Severity
Categories
Search by Alert Name
Page(s) : 1 2 3 4 5 6 7 8 [9] 10 11 12 13 14 15 16 17 18 19 ...Result(s) : 154520

Alerts Feed Alerts

DateNameCategoriesDetail
N/A2019-10-16CVE-2019-10436cve An arbitrary file read vulnerability in Jenkins Google OAuth Credentials Plugin 0.9 and earlier allowed attackers able to configure jobs and credentials in Jenkins to obtain the...
6.82019-10-16USN-4156-2Ubuntu SDL vulnerabilities
N/A2019-10-16CVE-2019-4031cve IBM Workload Scheduler Distributed 9.2, 9.3, 9.4, and 9.5 contains a vulnerability that could allow a local user to write files as root in the file system, which could allow the...
N/A2019-10-16CVE-2019-17627cve The Yale Bluetooth Key application for mobile devices allows unauthorized unlock actions by sniffing Bluetooth Low Energy (BLE) traffic during one authorized unlock action, and ...
N/A2019-10-16CVE-2019-17626cve ReportLab through 3.5.26 allows remote code execution because of toColor(eval(arg)) in colors.py, as demonstrated by a crafted XML document with '
N/A2019-10-16CVE-2019-17625cve There is a stored XSS in Rambox 0.6.9 that can lead to code execution. The XSS is in the name field while adding/editing a service. The problem occurs due to incorrect sanitizat...
N/A2019-10-16CVE-2019-17624cve In X.Org X Server 1.20.4, there is a stack-based buffer overflow in the function XQueryKeymap. For example, by sending ct.c_char 1000 times, an attacker can cause a denial of se...
N/A2019-10-16CVE-2016-11016cve NETGEAR JNR1010 devices before 1.0.0.32 allow webproc?getpage= XSS.
N/A2019-10-16CVE-2016-11015cve NETGEAR JNR1010 devices before 1.0.0.32 allow cgi-bin/webproc CSRF via the :InternetGatewayDevice.X_TWSZ-COM_URL_Filter.BlackList.1.URL parameter.
N/A2019-10-16CVE-2016-11014cve NETGEAR JNR1010 devices before 1.0.0.32 have Incorrect Access Control because the ok value of the auth cookie is a special case.
52019-10-16DSA-4544Debian unbound security update
N/A2019-10-15CVE-2019-13392cve A reflected Cross-Site Scripting (XSS) vulnerability in MindPalette NateMail 3.0.15 allows an attacker to execute remote JavaScript in a victim's browser via a specially cr...
N/A2019-10-15CVE-2019-17613cve qibosoft 7 allows remote code execution because do/jf.php makes eval calls. The attacker can use the Point Introduction Management feature to supply PHP code to be evaluated. Al...
N/A2019-10-15CVE-2019-17612cve An issue was discovered in 74CMS v5.2.8. There is a SQL Injection generated by the _list method in the Common/Controller/BackendController.class.php file via the index.php?m=Adm...
N/A2019-10-15CVE-2019-17602cve An issue was discovered in Zoho ManageEngine OpManager before 12.4 build 124089. The OPMDeviceDetailsServlet servlet is prone to SQL injection. Depending on the configuration, t...
N/A2019-10-15CVE-2019-17601cve In MiniShare 1.4.1, there is a stack-based buffer overflow via an HTTP CONNECT request, which allows an attacker to achieve arbitrary code execution, a similar issue to CVE-2018...
N/A2019-10-15CVE-2019-17398cve In the Dark Horse Comics application 1.3.21 for Android, token information (equivalent to the username and password) is stored in the log during authentication, and may be avail...
N/A2019-10-15CVE-2019-17396cve In the PowerSchool Mobile application 1.1.8 for Android, the username and password are stored in the log during authentication, and may be available to attackers via logcat.
N/A2019-10-15CVE-2019-17395cve In the Rapid Gator application 0.7.1 for Android, the username and password are stored in the log during authentication, and may be available to attackers via logcat.
N/A2019-10-15CVE-2019-17394cve In the Seesaw Parent and Family application 6.2.5 for Android, the username and password are stored in the log during authentication, and may be available to attackers via logcat.
Page(s) : 1 2 3 4 5 6 7 8 [9] 10 11 12 13 14 15 16 17 18 19 ...Result(s) : 154520