| Page(s) : 1 ... 1060 1061 1062 1063 1064 1065 1066 1067 1068 1069 [1070] 1071 1072 1073 1074 1075 1076 1077 1078 1079 1080 ... | Result(s) : 43616 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.8 | 2019-04-17 | CVE-2019-9217 | cve | An issue was discovered in GitLab Community and Enterprise Edition before 11.6.10, 11.7.x before 11.7.6, and 11.8.x before 11.8.1. Its User Interface has a Misrepresentation of ... |
| 9.8 | 2019-04-17 | CVE-2019-9756 | cve | An issue was discovered in GitLab Community and Enterprise Edition 10.x (starting from 10.8) and 11.x before 11.6.10, 11.7.x before 11.7.6, and 11.8.x before 11.8.1. It has Inco... |
| 9.1 | 2019-04-17 | CVE-2019-9890 | cve | An issue was discovered in GitLab Community and Enterprise Edition 10.x and 11.x before 11.6.10, 11.7.x before 11.7.6, and 11.8.x before 11.8.1. It has Insecure Permissions. |
| 9.8 | 2019-04-17 | CVE-2019-10641 | cve | Contao before 3.5.39 and 4.x before 4.7.3 has a Weak Password Recovery Mechanism for a Forgotten Password. |
| 9.8 | 2019-04-17 | CVE-2019-10643 | cve | Contao 4.7 allows Use of a Key Past its Expiration Date. |
| 9.8 | 2019-04-17 | CVE-2019-1710 | cve | A vulnerability in the sysadmin virtual machine (VM) on Cisco ASR 9000 Series Aggregation Services Routers running Cisco IOS XR 64-bit Software could allow an unauthenticated, r... |
| 9.6 | 2019-04-17 | CVE-2019-3709 | cve | IsilonSD Management Server 1.1.0 contains a cross-site scripting vulnerability while registering vCenter servers. A remote attacker can trick an admin user to potentially exploi... |
| 9.8 | 2019-04-17 | CVE-2017-11427 | cve | OneLogin PythonSAML 2.3.0 and earlier may incorrectly utilize the results of XML DOM traversal and canonicalization APIs in such a way that an attacker may be able to manipulate... |
| 9.8 | 2019-04-17 | CVE-2017-11428 | cve | OneLogin Ruby-SAML 1.6.0 and earlier may incorrectly utilize the results of XML DOM traversal and canonicalization APIs in such a way that an attacker may be able to manipulate ... |
| 9.8 | 2019-04-17 | CVE-2017-11429 | cve | Clever saml2-js 2.0 and earlier may incorrectly utilize the results of XML DOM traversal and canonicalization APIs in such a way that an attacker may be able to manipulate the S... |
| 9.8 | 2019-04-17 | CVE-2017-11430 | cve | OmniAuth OmnitAuth-SAML 1.9.0 and earlier may incorrectly utilize the results of XML DOM traversal and canonicalization APIs in such a way that an attacker may be able to manipu... |
| 9.8 | 2019-04-17 | CVE-2019-6579 | cve | A vulnerability has been identified in Spectrum Power 4 (with Web Office Portal). An attacker with network access to the web server on port 80/TCP or 443/TCP could execute syste... |
| 9.1 | 2019-04-17 | CVE-2018-13808 | cve | A vulnerability has been identified in CP 1604 (All versions), CP 1616 (All versions). An attacker with network access to port 23/tcp could extract internal communication data o... |
| 9.6 | 2019-04-17 | CVE-2019-3708 | cve | IsilonSD Management Server 1.1.0 contains a cross-site scripting vulnerability while uploading an OVA file. A remote attacker can trick an admin user to potentially exploit this... |
| 9.8 | 2019-04-17 | CVE-2019-0228 | cve | Apache PDFBox 2.0.14 does not properly initialize the XML parser, which allows context-dependent attackers to conduct XML External Entity (XXE) attacks via a crafted XFDF. |
| 9.8 | 2019-04-16 | CVE-2018-19971 | cve | JFrog Artifactory Pro 6.5.9 has Incorrect Access Control. |
| 9.8 | 2019-04-16 | CVE-2019-9845 | cve | madskristensen Miniblog.Core through 2019-01-16 allows remote attackers to execute arbitrary ASPX code via an IMG element with a data: URL, because SaveFilesToDisk in Controller... |
| 9.8 | 2019-04-15 | CVE-2019-4203 | cve | IBM API Connect 5.0.0.0 and 5.0.8.6 Developer Portal can be exploited by app developers to download arbitrary files from the host OS and potentially carry out SSRF attacks. IBM ... |
| 9.8 | 2019-04-15 | CVE-2019-6609 | cve | Platform dependent weakness. This issue only impacts iSeries platforms. On these platforms, in BIG-IP (LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, FPS, GTM, Link Cont... |
| 9.8 | 2019-04-15 | CVE-2018-18018 | cve | SQL Injection exists in the Tribulant Slideshow Gallery plugin 1.6.8 for WordPress via the wp-admin/admin.php?page=slideshow-galleries&method=save Gallery[id] or Gallery[title] ... |
| Page(s) : 1 ... 1060 1061 1062 1063 1064 1065 1066 1067 1068 1069 [1070] 1071 1072 1073 1074 1075 1076 1077 1078 1079 1080 ... | Result(s) : 43616 |
