Click to open the Alert Filter

 
Year Month
Severity
Categories
Search by Alert Name
Page(s) : 1 ... 1088 1089 1090 1091 1092 1093 1094 1095 1096 1097 [1098] 1099 1100 1101 1102 1103 1104 1105 1106 1107 1108 ... Result(s) : 43670

Alerts Feed Alerts

DATE NAME CATEGORIES DETAIL
9.8 2019-01-18 CVE-2019-3772 cve Spring Integration (spring-integration-xml and spring-integration-ws modules), versions 4.3.18, 5.0.10, 5.1.1, and older unsupported versions, were susceptible to XML External E...
9.8 2019-01-18 CVE-2019-3773 cve Spring Web Services, versions 2.4.3, 3.0.4, and older unsupported versions of all three projects, were susceptible to XML External Entity Injection (XXE) when receiving XML data...
9.8 2019-01-18 CVE-2019-3774 cve Spring Batch versions 3.0.9, 4.0.1, 4.1.0, and older unsupported versions, were susceptible to XML External Entity Injection (XXE) when receiving XML data from untrusted sources.
9.1 2019-01-16 CVE-2019-6443 cve An issue was discovered in NTPsec before 1.1.3. Because of a bug in ctl_getitem, there is a stack-based buffer over-read in read_sysvars in ntp_control.c in ntpd.
9.1 2019-01-16 CVE-2019-6444 cve An issue was discovered in NTPsec before 1.1.3. process_control() in ntp_control.c has a stack-based buffer over-read because attacker-controlled data is dereferenced by ntohl()...
9.8 2019-01-16 CVE-2019-6446 cve An issue was discovered in NumPy before 1.16.3. It uses the pickle Python module unsafely, which allows remote attackers to execute arbitrary code via a crafted serialized objec...
9 2019-01-16 USN-3861-1 Ubuntu PolicyKit vulnerability
9.8 2019-01-16 CVE-2018-20721 cve URI_FUNC() in UriParse.c in uriparser before 0.9.1 has an out-of-bounds read (in uriParse*Ex* functions) for an incomplete URI with an IPv6 address containing an embedded IPv4 a...
9 2019-01-16 USN-3861-2 Ubuntu PolicyKit vulnerability
9.1 2019-01-16 CVE-2015-9277 cve MailEnable before 8.60 allows Directory Traversal for reading the messages of other users, uploading files, and deleting files because "/../" and "/.. /" are mishandled.
9.8 2019-01-16 CVE-2015-9278 cve MailEnable before 8.60 allows Privilege Escalation because admin accounts could be created as a consequence of %0A mishandling in AUTH.TAB after a password-change request.
10 2019-01-16 CVE-2015-9280 cve MailEnable before 8.60 allows XXE via an XML document in the request.aspx Options parameter.
9.8 2019-01-16 CVE-2018-18814 cve The TIBCO Spotfire authentication component of TIBCO Software Inc.'s TIBCO Spotfire Analytics Platform for AWS Marketplace, and TIBCO Spotfire Server contains a vulnerabili...
9.1 2019-01-16 CVE-2019-2453 cve Vulnerability in the Oracle Performance Management component of Oracle E-Business Suite (subcomponent: Performance Management Plan). Supported versions that are affected are 12....
9.1 2019-01-16 CVE-2019-2489 cve Vulnerability in the Oracle One-to-One Fulfillment component of Oracle E-Business Suite (subcomponent: OCM Query). Supported versions that are affected are 12.1.3, 12.2.3, 12.2....
9.8 2019-01-16 CVE-2018-20732 cve SAS Web Infrastructure Platform before 9.4M6 allows remote attackers to execute arbitrary code via a Java deserialization variant.
9.8 2019-01-15 CVE-2019-6295 cve Cleanto 5.0 has SQL Injection via the assets/lib/service_method_ajax.php service_id parameter.
9.8 2019-01-15 CVE-2019-6296 cve Cleanto 5.0 has SQL Injection via the assets/lib/export_ajax.php id parameter.
9.8 2019-01-15 CVE-2017-6925 cve In versions of Drupal 8 core prior to 8.3.7; There is a vulnerability in the entity access system that could allow unwanted access to view, create, update, or delete entities. T...
9.8 2019-01-15 CVE-2018-20715 cve The DB abstraction layer of OXID eSales 4.10.6 is vulnerable to SQL injection via the oxid or synchoxid parameter to the oxConfig::getRequestParameter() method in core/oxconfig....
Page(s) : 1 ... 1088 1089 1090 1091 1092 1093 1094 1095 1096 1097 [1098] 1099 1100 1101 1102 1103 1104 1105 1106 1107 1108 ... Result(s) : 43670