| Page(s) : 1 ... 1059 1060 1061 1062 1063 1064 1065 1066 1067 1068 [1069] 1070 1071 1072 1073 1074 1075 1076 1077 1078 1079 ... | Result(s) : 43618 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.8 | 2019-04-22 | CVE-2019-11450 | cve | whatsns 4.0 allows index.php?question/ajaxadd.html title SQL injection. |
| 9.8 | 2019-04-22 | CVE-2019-3899 | cve | It was found that default configuration of Heketi does not require any authentication potentially exposing the management interface to misuse. This isue only affects heketi as s... |
| 9.8 | 2019-04-22 | CVE-2019-11383 | cve | An issue was discovered in the Medha WiFi FTP Server application 1.8.3 for Android. An attacker can read the username/password of a valid user via /data/data/com.medhaapps.wifif... |
| 9 | 2019-04-22 | CVE-2019-11460 | cve | An issue was discovered in GNOME gnome-desktop 3.26, 3.28, and 3.30 prior to 3.30.2.2, and 3.32 prior to 3.32.1.1. A compromised thumbnailer may escape the bubblewrap sandbox us... |
| 9.8 | 2019-04-22 | CVE-2019-11384 | cve | The Zalora application 6.15.1 for Android stores confidential information insecurely on the system (i.e. plain text), which allows a non-root user to find out the username/passw... |
| 9.8 | 2019-04-20 | CVE-2019-11365 | cve | An issue was discovered in atftpd in atftp 0.7.1. A remote attacker may send a crafted packet triggering a stack-based buffer overflow due to an insecurely implemented strncpy c... |
| 9.8 | 2019-04-20 | CVE-2019-11362 | cve | app/controllers/frontend/PostController.php in ROCBOSS V2.2.1 has SQL injection via the Post:doReward score paramter, as demonstrated by the /do/reward/3 URI. |
| 9.8 | 2019-04-20 | CVE-2019-11371 | cve | BWA (aka Burrow-Wheeler Aligner) 0.7.17 r1198 has a Buffer Overflow via a long prefix that is mishandled in bns_fasta2bntseq and bns_dump at btnseq.c. |
| 9.8 | 2019-04-19 | CVE-2019-2030 | cve | In removeInterfaceAddress of NetworkController.cpp, there is a possible use after free. This could lead to remote code execution with no additional execution privileges needed. ... |
| 9.8 | 2019-04-19 | CVE-2019-11350 | cve | CloudBees Jenkins Operations Center 2.150.2.3, when an expired trial license exists, allows Cleartext Password Storage and Retrieval via the proxy configuration page. |
| 9.8 | 2019-04-19 | CVE-2018-20817 | cve | SV_SteamAuthClient in various Activision Infinity Ward Call of Duty games before 2015-08-11 is missing a size check when reading authBlob data into a buffer, which allows one to... |
| 9.8 | 2019-04-19 | CVE-2019-11344 | cve | data/inc/files.php in Pluck 4.7.8 allows remote attackers to execute arbitrary code by uploading a .htaccess file that specifies SetHandler x-httpd-php for a .txt file, because ... |
| 9.8 | 2019-04-18 | CVE-2019-9160 | cve | WAC on the Sangfor Sundray WLAN Controller version 3.7.4.2 and earlier has a backdoor account allowing a remote attacker to login to the system via SSH (on TCP port 22345) and e... |
| 9.9 | 2019-04-18 | CVE-2019-10306 | cve | A sandbox bypass vulnerability in Jenkins ontrack Plugin 3.4 and earlier allowed attackers with control over ontrack DSL definitions to execute arbitrary code on the Jenkins mas... |
| 9.1 | 2019-04-18 | CVE-2019-11034 | cve | When processing certain files, PHP EXIF extension in versions 7.1.x below 7.1.28, 7.2.x below 7.2.17 and 7.3.x below 7.3.4 can be caused to read past allocated buffer in exif_pr... |
| 9.1 | 2019-04-18 | CVE-2019-11035 | cve | When processing certain files, PHP EXIF extension in versions 7.1.x below 7.1.28, 7.2.x below 7.2.17 and 7.3.x below 7.3.4 can be caused to read past allocated buffer in exif_ii... |
| 9.8 | 2019-04-18 | CVE-2019-11319 | cve | An issue was discovered in Motorola CX2 1.01 and M2 1.01. There is a command injection in the function downloadFirmware in hnap, which leads to remote code execution via shell m... |
| 9.8 | 2019-04-18 | CVE-2019-11322 | cve | An issue was discovered in Motorola CX2 1.01 and M2 1.01. There is a command injection in the function startRmtAssist in hnap, which leads to remote code execution via shell met... |
| 9.8 | 2019-04-18 | CVE-2019-9161 | cve | WAC on the Sangfor Sundray WLAN Controller version 3.7.4.2 and earlier has a Remote Code Execution issue allowing remote attackers to achieve full access to the system, because ... |
| 9.8 | 2019-04-18 | CVE-2019-11223 | cve | An Unrestricted File Upload Vulnerability in the SupportCandy plugin through 2.0.0 for WordPress allows remote attackers to execute arbitrary code by uploading a file with an ex... |
| Page(s) : 1 ... 1059 1060 1061 1062 1063 1064 1065 1066 1067 1068 [1069] 1070 1071 1072 1073 1074 1075 1076 1077 1078 1079 ... | Result(s) : 43618 |
