| Page(s) : 1 2 3 [4] 5 6 7 8 9 10 11 12 13 14 ... | Result(s) : 149043 |
Alerts
| Date | Name | Categories | Detail | |
|---|---|---|---|---|
| 10 | 2019-07-17 | CVE-2019-13447 | cve | An issue was discovered in Sertek Xpare 3.67. The login form does not sanitize input data. Because of this, a malicious agent could access the backend database via SQL injection. |
| N/A | 2019-07-17 | CVE-2019-12914 | cve | Redbrick Shift through 3.4.3 allows an attacker to extract authentication tokens of services (such as Gmail, Outlook, etc.) used in the application. |
| N/A | 2019-07-17 | CVE-2019-12913 | cve | Redbrick Shift through 3.4.3 allows an attacker to extract emails of services (such as Gmail, Outlook, etc.) used in the application. |
| N/A | 2019-07-17 | CVE-2019-12912 | cve | Redbrick Shift through 3.4.3 allows an attacker to extract emails of services (such as Gmail, Outlook, etc.) used in the application. |
| N/A | 2019-07-17 | CVE-2019-12911 | cve | Redbrick Shift through 3.4.3 allows an attacker to extract authentication tokens of services (such as Gmail, Outlook, etc.) used in the application. |
| N/A | 2019-07-17 | CVE-2019-12876 | cve | Zoho ManageEngine ADManager Plus 6.6.5, ADSelfService Plus 5.7, and DesktopCentral 10.0.380 have Insecure Permissions, leading to Privilege Escalation from low level privileges ... |
| N/A | 2019-07-17 | CVE-2019-11772 | cve | In Eclipse OpenJ9 prior to 0.15, the String.getBytes(int, int, byte[], int) method does not verify that the provided byte array is non-null nor that the provided index is in bou... |
| N/A | 2019-07-17 | CVE-2019-11771 | cve | AIX builds of Eclipse OpenJ9 before 0.15.0 contain unused RPATHs which may facilitate code injection and privilege elevation by local users. |
| N/A | 2019-07-17 | CVE-2019-11535 | cve | Unsanitized user input in the web interface for Linksys WiFi extender products (RE6400 and RE6300 through 1.2.04.022) allows for remote command execution. An attacker can access... |
| N/A | 2019-07-17 | CVE-2019-1010287 | cve | Timesheet Next Gen 1.5.3 and earlier is affected by: Cross Site Scripting (XSS). The impact is: Allows an attacker to execute arbitrary HTML and JavaScript code via a "redirect"... |
| N/A | 2019-07-17 | CVE-2019-1010283 | cve | Univention Corporate Server univention-directory-notifier 12.0.1-3 and earlier is affected by: CWE-213: Intentional Information Exposure. The impact is: Loss of Confidentiality.... |
| N/A | 2019-07-17 | CVE-2019-1010275 | cve | helm Before 2.7.2 is affected by: CWE-295: Improper Certificate Validation. The impact is: Unauthorized clients could connect to the server because self-signed client certs were... |
| N/A | 2019-07-17 | CVE-2019-1010266 | cve | lodash prior to 4.7.11 is affected by: CWE-400: Uncontrolled Resource Consumption. The impact is: Denial of service. The component is: Date handler. The attack vector is: Attack... |
| N/A | 2019-07-17 | CVE-2019-1010263 | cve | Perl Crypt::JWT prior to 0.023 is affected by: Incorrect Access Control. The impact is: allow attackers to bypass authentication by providing a token by crafting with hmac(). Th... |
| N/A | 2019-07-17 | USN-4064-1 | Ubuntu | Thunderbird vulnerabilities |
| N/A | 2019-07-17 | CVE-2019-13631 | cve | In parse_hid_report_descriptor in drivers/input/tablet/gtco.c in the Linux kernel through 5.2.1, a malicious USB device can send an HID report that triggers an out-of-bounds wri... |
| N/A | 2019-07-17 | CVE-2019-13614 | cve | CMD_SET_CONFIG_COUNTRY in the TP-Link Device Debug protocol in TP-Link Archer C1200 1.0.0 Build 20180502 rel.45702 and earlier is prone to a stack-based buffer overflow, which a... |
| 7.5 | 2019-07-17 | CVE-2019-13585 | cve | The remote admin webserver on FANUC Robotics Virtual Robot Controller 8.23 has a Buffer Overflow via a forged HTTP request. |
| 5 | 2019-07-17 | CVE-2019-13584 | cve | The remote admin webserver on FANUC Robotics Virtual Robot Controller 8.23 allows Directory Traversal via a forged HTTP request. |
| 5 | 2019-07-17 | CVE-2019-4430 | cve | IBM Maximo Asset Management 7.6 could allow a remote attacker to traverse directories on the system. An attacker could send a specially-crafted URL request containing "dot dot" ... |
| Page(s) : 1 2 3 [4] 5 6 7 8 9 10 11 12 13 14 ... | Result(s) : 149043 |
