Click to open the Alert Filter

 
Year Month
Severity
Categories
Search by Alert Name
Page(s) : 1 2 3 [4] 5 6 7 8 9 10 11 12 13 14 ...Result(s) : 151537

Alerts Feed Alerts

DateNameCategoriesDetail
N/A2019-08-23CVE-2019-15488cve Ignite Realtime Openfire before 4.4.1 has reflected XSS via an LDAP setup test.
N/A2019-08-23CVE-2019-15487cve DfE School Experience before v16333-GA has XSS via a teacher training URL.
N/A2019-08-23CVE-2019-15486cve django-js-reverse (aka Django JS Reverse) before 0.9.1 has XSS via js_reverse_inline.
N/A2019-08-23CVE-2019-15485cve Bolt before 3.6.10 has XSS via createFolder or createFile in Controller/Async/FilesystemManager.php.
N/A2019-08-23CVE-2019-15484cve Bolt before 3.6.10 has XSS via an image's alt or title field.
N/A2019-08-23CVE-2019-15483cve Bolt before 3.6.10 has XSS via a title that is mishandled in the system log.
N/A2019-08-23CVE-2019-15482cve selectize-plugin-a11y before 1.1.0 has XSS via the msg field.
N/A2019-08-23CVE-2019-15481cve Kimai v2 before 1.1 has XSS via a timesheet description.
N/A2019-08-23CVE-2019-15480cve Domoticz 4.10717 has XSS via item.Name.
N/A2019-08-23CVE-2019-15477cve Jooby before 1.6.4 has XSS via the default error handler.
N/A2019-08-23CVE-2019-15476cve Former before 4.2.1 has XSS via a checkbox value.
N/A2019-08-23CVE-2019-15513cve An issue was discovered in OpenWrt libuci (aka Library for the Unified Configuration Interface) as used on Motorola CX2L MWR04L 1.01 and C1 MWR03 1.01 devices. /tmp/.uci/network...
N/A2019-08-23CVE-2019-15508cve In Octopus Tentacle versions 3.0.8 to 5.0.0, when a web request proxy is configured, an authenticated user (in certain limited OctopusPrintVariables circumstances) could trigger...
N/A2019-08-23CVE-2019-15507cve In Octopus Deploy versions 2018.8.4 to 2019.7.6, when a web request proxy is configured, an authenticated user (in certain limited special-characters circumstances) could trigge...
N/A2019-08-23CVE-2019-15505cve drivers/media/usb/dvb-usb/technisat-usb2.c in the Linux kernel through 5.2.9 has an out-of-bounds read via crafted USB device traffic (which may be remote via usbip or usbredir).
N/A2019-08-23CVE-2019-15504cve drivers/net/wireless/rsi/rsi_91x_usb.c in the Linux kernel through 5.2.9 has a Double Free via crafted USB device traffic (which may be remote via usbip or usbredir).
N/A2019-08-23CVE-2019-15499cve CodiMD 1.3.1, when Safari is used, allows XSS via an IFRAME element with allow-top-navigation in the sandbox attribute, in conjunction with a data: URL.
N/A2019-08-23CVE-2019-15498cve cgi-bin/cmh/webcam.sh in Vera Edge Home Controller 1.7.4452 allows remote unauthenticated users to execute arbitrary OS commands via --output argument injection in the username ...
6.82019-08-22CVE-2019-15329cve The import-users-from-csv-with-meta plugin before 1.14.0.3 for WordPress has CSRF.
4.32019-08-22CVE-2019-15328cve The import-users-from-csv-with-meta plugin before 1.14.0.3 for WordPress has XSS.
Page(s) : 1 2 3 [4] 5 6 7 8 9 10 11 12 13 14 ...Result(s) : 151537