| Page(s) : 1 2 3 [4] 5 6 7 8 9 10 11 12 13 14 ... | Result(s) : 151537 |
Alerts
| Date | Name | Categories | Detail | |
|---|---|---|---|---|
| N/A | 2019-08-23 | CVE-2019-15488 | cve | Ignite Realtime Openfire before 4.4.1 has reflected XSS via an LDAP setup test. |
| N/A | 2019-08-23 | CVE-2019-15487 | cve | DfE School Experience before v16333-GA has XSS via a teacher training URL. |
| N/A | 2019-08-23 | CVE-2019-15486 | cve | django-js-reverse (aka Django JS Reverse) before 0.9.1 has XSS via js_reverse_inline. |
| N/A | 2019-08-23 | CVE-2019-15485 | cve | Bolt before 3.6.10 has XSS via createFolder or createFile in Controller/Async/FilesystemManager.php. |
| N/A | 2019-08-23 | CVE-2019-15484 | cve | Bolt before 3.6.10 has XSS via an image's alt or title field. |
| N/A | 2019-08-23 | CVE-2019-15483 | cve | Bolt before 3.6.10 has XSS via a title that is mishandled in the system log. |
| N/A | 2019-08-23 | CVE-2019-15482 | cve | selectize-plugin-a11y before 1.1.0 has XSS via the msg field. |
| N/A | 2019-08-23 | CVE-2019-15481 | cve | Kimai v2 before 1.1 has XSS via a timesheet description. |
| N/A | 2019-08-23 | CVE-2019-15480 | cve | Domoticz 4.10717 has XSS via item.Name. |
| N/A | 2019-08-23 | CVE-2019-15477 | cve | Jooby before 1.6.4 has XSS via the default error handler. |
| N/A | 2019-08-23 | CVE-2019-15476 | cve | Former before 4.2.1 has XSS via a checkbox value. |
| N/A | 2019-08-23 | CVE-2019-15513 | cve | An issue was discovered in OpenWrt libuci (aka Library for the Unified Configuration Interface) as used on Motorola CX2L MWR04L 1.01 and C1 MWR03 1.01 devices. /tmp/.uci/network... |
| N/A | 2019-08-23 | CVE-2019-15508 | cve | In Octopus Tentacle versions 3.0.8 to 5.0.0, when a web request proxy is configured, an authenticated user (in certain limited OctopusPrintVariables circumstances) could trigger... |
| N/A | 2019-08-23 | CVE-2019-15507 | cve | In Octopus Deploy versions 2018.8.4 to 2019.7.6, when a web request proxy is configured, an authenticated user (in certain limited special-characters circumstances) could trigge... |
| N/A | 2019-08-23 | CVE-2019-15505 | cve | drivers/media/usb/dvb-usb/technisat-usb2.c in the Linux kernel through 5.2.9 has an out-of-bounds read via crafted USB device traffic (which may be remote via usbip or usbredir). |
| N/A | 2019-08-23 | CVE-2019-15504 | cve | drivers/net/wireless/rsi/rsi_91x_usb.c in the Linux kernel through 5.2.9 has a Double Free via crafted USB device traffic (which may be remote via usbip or usbredir). |
| N/A | 2019-08-23 | CVE-2019-15499 | cve | CodiMD 1.3.1, when Safari is used, allows XSS via an IFRAME element with allow-top-navigation in the sandbox attribute, in conjunction with a data: URL. |
| N/A | 2019-08-23 | CVE-2019-15498 | cve | cgi-bin/cmh/webcam.sh in Vera Edge Home Controller 1.7.4452 allows remote unauthenticated users to execute arbitrary OS commands via --output argument injection in the username ... |
| 6.8 | 2019-08-22 | CVE-2019-15329 | cve | The import-users-from-csv-with-meta plugin before 1.14.0.3 for WordPress has CSRF. |
| 4.3 | 2019-08-22 | CVE-2019-15328 | cve | The import-users-from-csv-with-meta plugin before 1.14.0.3 for WordPress has XSS. |
| Page(s) : 1 2 3 [4] 5 6 7 8 9 10 11 12 13 14 ... | Result(s) : 151537 |
