| Page(s) : 1 ... 1033 1034 1035 1036 1037 1038 1039 1040 1041 1042 [1043] 1044 1045 1046 1047 1048 1049 1050 1051 1052 1053 ... | Result(s) : 43602 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.8 | 2019-06-19 | CVE-2018-15506 | cve | In BubbleUPnP 0.9 update 30, the XML parsing engine for SSDP/UPnP functionality is vulnerable to an XML External Entity Processing (XXE) attack. Remote, unauthenticated attacker... |
| 9.8 | 2019-06-19 | CVE-2018-18472 | cve | Western Digital WD My Book Live and WD My Book Live Duo (all versions) have a root Remote Command Execution bug via shell metacharacters in the /api/1.0/rest/language_configurat... |
| 9.9 | 2019-06-19 | CVE-2018-18406 | cve | An issue was discovered in Tufin SecureTrack 18.1 with TufinOS 2.16 build 1179(Final). The Audit Report module is affected by a blind XXE vulnerability when a new Best Practices... |
| 9.8 | 2019-06-19 | CVE-2018-17841 | cve | SQL injection exists in Scriptzee Flippa Marketplace Clone 1.0 via the site-search sortBy or sortDir parameter. |
| 9.8 | 2019-06-19 | CVE-2018-16613 | cve | An issue was discovered in the update function in the wpForo Forum plugin before 1.5.2 for WordPress. A registered forum is able to escalate privilege to the forum administrator... |
| 9.8 | 2019-06-19 | CVE-2019-12890 | cve | RedwoodHQ 2.5.5 does not require any authentication for database operations, which allows remote attackers to create admin users via a con.automationframework users insert_one c... |
| 9.8 | 2019-06-19 | CVE-2018-18471 | cve | /api/2.0/rest/aggregator/xml in Axentra firmware, used by NETGEAR Stora, Seagate GoFlex Home, and MEDION LifeCloud, has an XXE vulnerability that can be chained with an SSRF bug... |
| 9.8 | 2019-06-19 | CVE-2018-17842 | cve | SQL injection exists in Scriptzee Hotel Booking Engine 1.0 via the hotels h_room_type parameter. |
| 9.1 | 2019-06-19 | CVE-2019-1903 | cve | A vulnerability in Cisco Security Manager could allow an unauthenticated, remote attacker to access sensitive information or cause a denial of service (DoS) condition. The vulne... |
| 9.8 | 2019-06-19 | CVE-2019-12898 | cve | Delta Electronics DeviceNet Builder 2.04 has a User Mode Write AV starting at image00400000+0x000000000017a45e. |
| 9.8 | 2019-06-19 | CVE-2019-12899 | cve | Delta Electronics DeviceNet Builder 2.04 has a User Mode Write AV starting at ntdll!RtlQueueWorkItem+0x00000000000005e3. |
| 9.8 | 2019-06-19 | CVE-2019-2006 | cve | In serviceDied of HalDeathHandlerHidl.cpp, there is a possible memory corruption due to a use after free. This could lead to local escalation of privilege in the audio server wi... |
| 9.8 | 2019-06-19 | CVE-2019-12900 | cve | BZ2_decompress in decompress.c in bzip2 through 1.0.6 has an out-of-bounds write when there are many selectors. |
| 9.8 | 2019-06-19 | CVE-2019-2729 | cve | Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: Web Services). Supported versions that are affected are 10.3.6.0.0, 12.1.3.0.0 a... |
| 9.8 | 2019-06-19 | CVE-2019-2007 | cve | In getReadIndex and getWriteIndex of FifoControllerBase.cpp, there is a possible out-of-bounds write due to an integer overflow. This could lead to local escalation of privilege... |
| 9.8 | 2019-06-19 | CVE-2019-11232 | cve | EXCELLENT INFOTEK BiYan v1.57 ~ v2.8 allows an attacker to leak user information (Password) without being authenticated, by sending an EMP_NO element to the kws_login/asp/query_... |
| 9.3 | 2019-06-19 | CVE-2019-1848 | cve | A vulnerability in Cisco Digital Network Architecture (DNA) Center could allow an unauthenticated, adjacent attacker to bypass authentication and access critical internal servic... |
| 9.8 | 2019-06-19 | CVE-2018-18758 | cve | Open Faculty Evaluation System 7 for PHP 7 allows submit_feedback.php SQL Injection, a different vulnerability than CVE-2018-18757. |
| 9.1 | 2019-06-18 | CVE-2019-11040 | cve | When PHP EXIF extension is parsing EXIF information from an image, e.g. via exif_read_data() function, in PHP versions 7.1.x below 7.1.30, 7.2.x below 7.2.19 and 7.3.x below 7.3... |
| 9.8 | 2019-06-18 | CVE-2019-3954 | cve | Stack-based buffer overflow in Advantech WebAccess/SCADA 8.4.0 allows a remote, unauthenticated attacker to execute arbitrary code by sending a crafted IOCTL 81024 RPC call. |
| Page(s) : 1 ... 1033 1034 1035 1036 1037 1038 1039 1040 1041 1042 [1043] 1044 1045 1046 1047 1048 1049 1050 1051 1052 1053 ... | Result(s) : 43602 |
