| Page(s) : 1 ... 981 982 983 984 985 986 987 988 989 990 [991] 992 993 994 995 996 997 998 999 1000 1001 ... | Result(s) : 43587 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.9 | 2019-10-15 | CVE-2019-10760 | cve | safer-eval before 1.3.2 are vulnerable to Arbitrary Code Execution. A payload using constructor properties can escape the sandbox and execute arbitrary code. |
| 9.1 | 2019-10-15 | USN-4155-1 | Ubuntu | Aspell vulnerability |
| 9.9 | 2019-10-15 | CVE-2019-10759 | cve | safer-eval before 1.3.4 are vulnerable to Arbitrary Code Execution. A payload using constructor properties can escape the sandbox and execute arbitrary code. |
| 9.8 | 2019-10-15 | CVE-2019-17195 | cve | Connect2id Nimbus JOSE+JWT before v7.9 can throw various uncaught exceptions while parsing a JWT, which could result in an application crash (potential information disclosure) o... |
| 9.8 | 2019-10-15 | CVE-2019-17397 | cve | In the DoorDash application through 11.5.2 for Android, the username and password are stored in the log during authentication, and may be available to attackers via logcat. |
| 9.8 | 2019-10-15 | CVE-2019-17600 | cve | Intelbras IWR 1000N 1.6.4 devices allow disclosure of the administrator login name and password because v1/system/user is mishandled. |
| 9.8 | 2019-10-15 | CVE-2019-17355 | cve | In the Orbitz application 19.31.1 for Android, the username and password are stored in the log during authentication, and may be available to attackers via logcat. |
| 9.8 | 2019-10-15 | CVE-2019-17395 | cve | In the Rapid Gator application 0.7.1 for Android, the username and password are stored in the log during authentication, and may be available to attackers via logcat. |
| 9.8 | 2019-10-15 | CVE-2019-17396 | cve | In the PowerSchool Mobile application 1.1.8 for Android, the username and password are stored in the log during authentication, and may be available to attackers via logcat. |
| 9.8 | 2019-10-15 | CVE-2019-17398 | cve | In the Dark Horse Comics application 1.3.21 for Android, token information (equivalent to the username and password) is stored in the log during authentication, and may be avail... |
| 9.8 | 2019-10-15 | CVE-2019-17601 | cve | In MiniShare 1.4.1, there is a stack-based buffer overflow via an HTTP CONNECT request, which allows an attacker to achieve arbitrary code execution, a similar issue to CVE-2018... |
| 9.8 | 2019-10-15 | CVE-2019-17602 | cve | An issue was discovered in Zoho ManageEngine OpManager before 12.4 build 124089. The OPMDeviceDetailsServlet servlet is prone to SQL injection. Depending on the configuration, t... |
| 9.8 | 2019-10-15 | CVE-2019-17613 | cve | qibosoft 7 allows remote code execution because do/jf.php makes eval calls. The attacker can use the Point Introduction Management feature to supply PHP code to be evaluated. Al... |
| 9.8 | 2019-10-15 | CVE-2019-17394 | cve | In the Seesaw Parent and Family application 6.2.5 for Android, the username and password are stored in the log during authentication, and may be available to attackers via logcat. |
| 9.8 | 2019-10-14 | CVE-2019-16278 | cve | Directory Traversal in the function http_verify in nostromo nhttpd through 1.9.6 allows an attacker to achieve remote code execution via a crafted HTTP request. |
| 9.8 | 2019-10-14 | CVE-2019-17408 | cve | parserIfLabel in inc/zzz_template.php in ZZZCMS zzzphp 1.7.3 allows remote attackers to execute arbitrary code because the danger_key function can be bypassed via manipulations ... |
| 9.8 | 2019-10-14 | CVE-2019-17552 | cve | An issue was discovered in idreamsoft iCMS v7.0.14. There is a spider_project.admincp.php SQL injection vulnerability in the 'upload spider project scheme' feature via... |
| 9.8 | 2019-10-14 | CVE-2019-17553 | cve | An issue was discovered in MetInfo v7.0.0 beta. There is SQL Injection via the admin/?n=tags&c=index&a=doSaveTags URI. |
| 9.8 | 2019-10-14 | CVE-2019-12941 | cve | AutoPi Wi-Fi/NB and 4G/LTE devices before 2019-10-15 allows an attacker to perform a brute-force attack or dictionary attack to gain access to the WiFi network, which provides r... |
| 9.1 | 2019-10-14 | CVE-2019-17574 | cve | An issue was discovered in the Popup Maker plugin before 1.8.13 for WordPress. An unauthenticated attacker can partially control the arguments of the do_action function to invok... |
| Page(s) : 1 ... 981 982 983 984 985 986 987 988 989 990 [991] 992 993 994 995 996 997 998 999 1000 1001 ... | Result(s) : 43587 |
