| Page(s) : [1] 2 3 4 5 6 7 8 9 10 11 ... | Result(s) : 147112 |
Alerts
| Date | Name | Categories | Detail | |
|---|---|---|---|---|
| N/A | 2019-06-16 | CVE-2019-12855 | cve | In words.protocols.jabber.xmlstream in Twisted through 19.2.1, XMPP support did not verify certificates when used with TLS, allowing an attacker to MITM connections. |
| N/A | 2019-06-15 | CVE-2019-12840 | cve | In Webmin through 1.910, any user authorized to the "Package Updates" module can execute arbitrary commands with root privileges via the data parameter to update.cgi. |
| N/A | 2019-06-15 | CVE-2019-12839 | cve | In OrangeHRM 4.3.1 and before, there is an input validation error within admin/listMailConfiguration (txtSendmailPath parameter) that allows authenticated attackers to achieve a... |
| N/A | 2019-06-15 | CVE-2013-7472 | cve | The "Count per Day" plugin before 3.2.6 for WordPress allows XSS via the wp-admin/?page=cpd_metaboxes daytoshow parameter. |
| N/A | 2019-06-15 | CVE-2019-12835 | cve | formats/xml.cpp in Leanify 0.4.3 allows for a controlled out-of-bounds write in xml_memory_writer::write via characters that require escaping. |
| N/A | 2019-06-15 | CVE-2019-12831 | cve | In MyBB before 1.8.21, an attacker can abuse a default behavior of MySQL on many systems (that leads to truncation of strings that are too long for a database column) to create ... |
| N/A | 2019-06-15 | CVE-2019-12830 | cve | In MyBB before 1.8.21, an attacker can exploit a parsing flaw in the Private Message / Post renderer that leads to [video] BBCode persistent XSS to take over any forum account, ... |
| N/A | 2019-06-15 | DSA-4464 | Debian | thunderbird security update |
| N/A | 2019-06-15 | CVE-2019-12829 | cve | radare2 through 3.5.1 mishandles the RParse API, which allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact, as dem... |
| N/A | 2019-06-15 | CVE-2019-12816 | cve | Modules.cpp in ZNC before 1.7.4-rc1 allows remote authenticated non-admin users to escalate privileges and execute arbitrary code by loading a module with a crafted name. |
| N/A | 2019-06-14 | CVE-2019-9842 | cve | madskristensen MiniBlog through 2018-05-18 allows remote attackers to execute arbitrary ASPX code via an IMG element with a data: URL, because SaveFilesToDisk in app_code/handle... |
| N/A | 2019-06-14 | CVE-2019-12828 | cve | An issue was discovered in Electronic Arts Origin before 10.5.39. Due to improper sanitization of the origin:// and origin2:// URI schemes, it is possible to inject additional a... |
| N/A | 2019-06-14 | CVE-2019-0316 | cve | SAP NetWeaver Process Integration, versions: SAP_XIESR: 7.20, SAP_XITOOL: 7.10 to 7.11, 7.30, 7.31, 7.40, 7.50, does not sufficiently validate user-controlled inputs, which allo... |
| N/A | 2019-06-14 | CVE-2019-0303 | cve | SAP BusinessObjects Business Intelligence Platform (Administration Console), versions 4.2, 4.3, module BILogon/appService.jsp is reflecting requested parameter errMsg into respo... |
| 2.6 | 2019-06-14 | USN-3991-3 | Ubuntu | Firefox regression |
| 4 | 2019-06-14 | DSA-4463 | Debian | znc security update |
| 3.5 | 2019-06-14 | CVE-2019-4403 | cve | IBM Connections 6.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functional... |
| N/A | 2019-06-14 | CVE-2019-4381 | cve | IBM i 7.27.3 Clustering could allow a local attacker to obtain sensitive information, caused by the use of advanced node failure detection using the REST API to interface with t... |
| 2.1 | 2019-06-14 | CVE-2019-4239 | cve | IBM MQ Advanced Cloud Pak (IBM Cloud Private 1.0.0 through 3.0.1) stores user credentials in plain in clear text which can be read by a local user. IBM X-Force ID: 159465. |
| N/A | 2019-06-14 | CVE-2019-2259 | cve | Resource allocation error while playing the video whose dimensions are more than supported dimension in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon ... |
| Page(s) : [1] 2 3 4 5 6 7 8 9 10 11 ... | Result(s) : 147112 |
