| Page(s) : 1 ... 980 981 982 983 984 985 986 987 988 989 [990] 991 992 993 994 995 996 997 998 999 1000 ... | Result(s) : 43587 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.8 | 2019-10-17 | CVE-2019-8221 | cve | Adobe Acrobat and Reader versions , 2019.012.20040 and earlier, 2017.011.30148 and earlier, 2017.011.30148 and earlier, 2015.006.30503 and earlier, and 2015.006.30503 and earlie... |
| 9.8 | 2019-10-17 | CVE-2019-13409 | cve | A SQL injection vulnerability was discovered in TOPMeeting before version 8.8 (2019/08/19). An attacker can use a union based injection query string though a search meeting room... |
| 9.8 | 2019-10-17 | CVE-2019-13411 | cve | An “invalid command” handler issue was discovered in HiNet GPON firmware < I040GWR190731. It allows an attacker to execute arbitrary command through port 3097. CVSS 3.0 Base sco... |
| 10 | 2019-10-17 | USN-4157-1 | Ubuntu | Linux kernel vulnerabilities |
| 9.8 | 2019-10-17 | CVE-2019-10752 | cve | Sequelize, all versions prior to version 4.44.3 and 5.15.1, is vulnerable to SQL Injection due to sequelize.json() helper function not escaping values properly when formatting s... |
| 9.3 | 2019-10-17 | RHSA-2019:3140 | RedHat | Red Hat JBoss Data Virtualization 6.4.8 security update |
| 9.8 | 2019-10-16 | CVE-2019-2904 | cve | Vulnerability in the Oracle JDeveloper and ADF product of Oracle Fusion Middleware (component: ADF Faces). Supported versions that are affected are 11.1.1.9.0, 12.1.3.0.0 and 12... |
| 9.8 | 2019-10-16 | CVE-2019-17662 | cve | ThinVNC 1.0b1 is vulnerable to arbitrary file read, which leads to a compromise of the VNC server. The vulnerability exists even when authentication is turned on during the depl... |
| 9.1 | 2019-10-16 | CVE-2019-17512 | cve | There are some web interfaces without authentication requirements on D-Link DIR-412 A1-1.14WW routers. An attacker can clear the router's log file via act=clear&logtype=sys... |
| 9.8 | 2019-10-16 | CVE-2019-15260 | cve | A vulnerability in Cisco Aironet Access Points (APs) Software could allow an unauthenticated, remote attacker to gain unauthorized access to a targeted device with elevated priv... |
| 9.8 | 2019-10-16 | CVE-2019-13116 | cve | The MuleSoft Mule Community Edition runtime engine before 3.8 allows remote attackers to execute arbitrary code because of Java Deserialization, related to Apache Commons Collec... |
| 9.8 | 2019-10-16 | CVE-2019-16700 | cve | The slub_events (aka SLUB: Event Registration) extension through 3.0.2 for TYPO3 allows uploading of arbitrary files to the webserver. For versions 1.2.2 and below, this results... |
| 9.8 | 2019-10-16 | CVE-2019-16699 | cve | The sr_freecap (aka freeCap CAPTCHA) extension 2.4.5 and below and 2.5.2 and below for TYPO3 fails to sanitize user input, which allows execution of arbitrary Extbase actions, r... |
| 9.3 | 2019-10-16 | CVE-2019-3020 | cve | Vulnerability in the Primavera P6 Enterprise Project Portfolio Management product of Oracle Construction and Engineering (component: Web Access). Supported versions that are aff... |
| 9 | 2019-10-16 | CVE-2019-3025 | cve | Vulnerability in the Oracle Hospitality RES 3700 component of Oracle Food and Beverage Applications. The supported version that is affected is 5.7. Difficult to exploit vulnerab... |
| 9.8 | 2019-10-16 | CVE-2016-11014 | cve | NETGEAR JNR1010 devices before 1.0.0.32 have Incorrect Access Control because the ok value of the auth cookie is a special case. |
| 9 | 2019-10-16 | CVE-2019-17625 | cve | There is a stored XSS in Rambox 0.6.9 that can lead to code execution. The XSS is in the name field while adding/editing a service. The problem occurs due to incorrect sanitizat... |
| 9.8 | 2019-10-16 | CVE-2019-17626 | cve | ReportLab through 3.5.26 allows remote code execution because of toColor(eval(arg)) in colors.py, as demonstrated by a crafted XML document with ' |
| 9.8 | 2019-10-16 | CVE-2019-6334 | cve | HP LaserJet, PageWide, OfficeJet Enterprise, and LaserJet Managed Printers have a solution to check application signature that may allow potential execution of arbitrary code. |
| 9.9 | 2019-10-16 | CVE-2019-10458 | cve | Jenkins Puppet Enterprise Pipeline 1.3.1 and earlier specifies unsafe values in its custom Script Security whitelist, allowing attackers able to execute Script Security protecte... |
| Page(s) : 1 ... 980 981 982 983 984 985 986 987 988 989 [990] 991 992 993 994 995 996 997 998 999 1000 ... | Result(s) : 43587 |
