| Page(s) : 1 2 3 [4] 5 6 7 8 9 10 11 12 13 14 ... | Result(s) : 149011 |
Alerts
| Date | Name | Categories | Detail | |
|---|---|---|---|---|
| N/A | 2019-07-17 | CVE-2019-10353 | cve | CSRF tokens in Jenkins 2.185 and earlier, LTS 2.176.1 and earlier did not expire, thereby allowing attackers able to obtain them to bypass CSRF protection. |
| N/A | 2019-07-17 | CVE-2019-10352 | cve | A path traversal vulnerability in Jenkins 2.185 and earlier, LTS 2.176.1 and earlier in core/src/main/java/hudson/model/FileParameterValue.java allowed attackers with Job/Config... |
| N/A | 2019-07-17 | CVE-2019-1010091 | cve | tinymce 4.7.11, 4.7.12 is affected by: CWE-79: Improper Neutralization of Input During Web Page Generation. The impact is: JavaScript code execution. The component is: Media ele... |
| N/A | 2019-07-17 | CVE-2019-1010084 | cve | Dancer::Plugin::SimpleCRUD 1.14 and earlier is affected by: Incorrect Access Control. The impact is: Potential for unathorised access to data. The component is: Incorrect calls ... |
| N/A | 2019-07-17 | CVE-2019-1010083 | cve | The Pallets Project Flask before 1.0 is affected by: unexpected memory usage. The impact is: denial of service. The attack vector is: crafted encoded JSON data. The fixed versio... |
| 5 | 2019-07-17 | CVE-2018-2022 | cve | IBM QRadar SIEM 7.2 and 7.3 discloses sensitive information to unauthorized users. The information can be used to mount further attacks on the system. IBM X-Force ID: 155346. |
| 4.3 | 2019-07-17 | CVE-2018-2021 | cve | IBM QRadar SIEM 7.2 and 7.3 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended fu... |
| N/A | 2019-07-17 | CVE-2018-1921 | cve | IBM Campaign 9.1.0, 9.1.2, 10.1, and 11.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering t... |
| N/A | 2019-07-17 | USN-4063-1 | Ubuntu | LibreOffice vulnerabilities |
| N/A | 2019-07-17 | CVE-2019-9849 | cve | LibreOffice has a 'stealth mode' in which only documents from locations deemed 'trusted' are allowed to retrieve remote resources. This mode is not the defau... |
| N/A | 2019-07-17 | CVE-2019-9848 | cve | LibreOffice has a feature where documents can specify that pre-installed scripts can be executed on various document events such as mouse-over, etc. LibreOffice is typically als... |
| N/A | 2019-07-17 | CVE-2019-13446 | cve | ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. ... |
| N/A | 2019-07-17 | CVE-2019-13272 | cve | In the Linux kernel before 5.1.17, ptrace_link in kernel/ptrace.c mishandles the recording of the credentials of a process that wants to create a ptrace relationship, which allo... |
| 5 | 2019-07-17 | USN-4059-2 | Ubuntu | Squid vulnerabilities |
| N/A | 2019-07-16 | CVE-2019-13625 | cve | NSA Ghidra before 9.0.1 allows XXE when a project is opened or restored, or a tool is imported, as demonstrated by a project.prp file. |
| N/A | 2019-07-16 | CVE-2019-13624 | cve | In ONOS 1.15.0, apps/yang/web/src/main/java/org/onosproject/yang/web/YangWebResource.java mishandles backquote characters within strings that can be used in a shell command. |
| N/A | 2019-07-16 | CVE-2019-13623 | cve | In NSA Ghidra through 9.0.4, path traversal can occur in RestoreTask.java (from the package ghidra.app.plugin.core.archive) via an archive with an executable file that has an in... |
| N/A | 2019-07-16 | CVE-2019-3571 | cve | An input validation issue affected WhatsApp Desktop versions prior to 0.3.3793 which allows malicious clients to send files to users that would be displayed with a wrong extension. |
| N/A | 2019-07-16 | CVE-2019-9700 | cve | Norton Password Manager, prior to 6.3.0.2082, may be susceptible to an address spoofing issue. This type of issue may allow an attacker to disguise their origin IP address in or... |
| N/A | 2019-07-16 | CVE-2019-6160 | cve | A vulnerability in various versions of Iomega and LenovoEMC NAS products could allow an unauthenticated user to access files on NAS shares via the API. |
| Page(s) : 1 2 3 [4] 5 6 7 8 9 10 11 12 13 14 ... | Result(s) : 149011 |
