CVSSv3 07/05/2019info

CVSSv3 Base »

The Common Vulnerability Scoring System (CVSS) is an industry standard to define the characteristics and impacts of security vulnerabilities. The base score represents the intrinsic aspects that are constant over time and across user environments. Our unique meta score merges all available scores from different sources to aggregate to the most reliable result.

CVSSv3 Temp »

The Common Vulnerability Scoring System (CVSS) uses temp scores to reflect the characteristics of a vulnerability that may change over time but not across user environments. This includes reporting confidence, exploitability and remediation levels. We do also provide our unique meta score for temp scores, even though other sources rarely publish them.

VulDB »

The moderation team is always defining the base vector and base score for an entry. These and all other available scores are used to generate the meta score.

NVD »

The National Vulnerability Database (NVD) is also defining CVSS vectors and scores. These are usually not complete and might differ from VulDB scores.

Vendor »

Some vendors are willing to publish their own CVSS vectors and scores for vulnerabilities in their products. The coverage varies from vendor to vendor.

Research »

There are sometimes also security researcher which provide their own CVSS vectors and scores for vulnerabilities they have found and published.

IDBaseVDBNVDVendResVulnerabilityCTICVE
1374517.05.38.8
 
 
Custom CSS Pro cross-site request forgery0.00CVE-2019-5984
1374507.05.38.8
 
 
HTML5 Maps cross-site request forgery0.00CVE-2019-5983
1374496.96.37.5
 
 
VAIO Update Download File Verification access control0.00CVE-2019-5982
1374487.87.87.8
 
 
VAIO Update improper authorization0.00CVE-2019-5981
1374477.05.38.8
 
 
Related YouTube Videos cross-site request forgery0.00CVE-2019-5980
1374467.05.38.8
 
 
WooCommerce Cart Page cross-site request forgery0.04CVE-2019-5979
1374457.05.38.8
 
 
Contest Gallery cross-site request forgery0.00CVE-2019-5974
1374447.05.38.8
 
 
Online Lesson Booking cross-site request forgery0.00CVE-2019-5973
1374435.75.36.1
 
 
Online Lesson Booking cross site scripting0.00CVE-2019-5972
1374427.05.38.8
 
 
Attendance Manager cross-site request forgery0.05CVE-2019-5971
1374415.75.36.1
 
 
Attendance Manager cross site scripting0.00CVE-2019-5970
1374406.77.36.1
 
 
GROWI redirect0.05CVE-2019-5969
1374397.05.38.8
 
 
GROWI cross-site request forgery0.05CVE-2019-5968
1374385.75.36.1
 
 
Joruri CMS cross site scripting0.05CVE-2019-5967
1374376.47.35.4
 
 
Joruri Mail Session improper authorization0.00CVE-2019-5966
1374366.77.36.1
 
 
Joruri Mail redirect0.00CVE-2019-5965
1374357.56.38.8
 
 
iDoors Reader Management Console improper authentication0.00CVE-2019-5964
1374347.05.38.8
 
 
Zoho SalesIQ cross-site request forgery0.00CVE-2019-5963
1374335.75.36.1
 
 
Zoho SalesIQ cross site scripting0.05CVE-2019-5962
1374326.55.67.4
 
 
Tootdon for Mastodon X.509 Certificate Validation certificate validation0.00CVE-2019-5961
1374317.05.38.8
 
 
WP Open Graph cross-site request forgery0.00CVE-2019-5960
1374175.75.65.9
 
 
OpenCats XML Data DocumentToText.php xml external entity reference0.04CVE-2019-13358
1374167.75.69.8
 
 
WolfVision Cynap Support PIN Generation hard-coded credentials0.00CVE-2019-13352
1374156.75.38.1
 
 
JACK2 libjack JackSocket.cpp double free0.00CVE-2019-13351
1374145.24.36.1
 
 
Squid Web Proxy Web Module cachemgr.cgi cross site scripting0.05CVE-2019-13345
1374136.37.35.3
 
 
CRUDLab WP Like Button Plugin wp_like_button.php contains improper authentication0.06CVE-2019-13344
1374123.62.44.8
 
 
miniCMS Comment Box conf.php Stored cross site scripting0.00CVE-2019-13341
1374113.62.44.8
 
 
miniCMS post-edit.php Stored cross site scripting0.06CVE-2019-13340
1374103.62.44.8
 
 
miniCMS Content Box page-edit.php Stored cross site scripting0.03CVE-2019-13339
1374095.53.37.8
 
 
virt-bootstrap virt_bootstrap.py Password credentials management0.00CVE-2019-13314
1374085.53.37.8
 
 
libosinfo osinfo-install-script Credentials credentials management0.04CVE-2019-13313
1374078.57.39.8
 
 
BKS EBK Ethernet-Buskoppler Pro File Upload unrestricted upload0.05CVE-2019-12971
1374065.94.37.5
 
 
Linux Kernel IP ID Generator KASLR information disclosure0.08CVE-2019-10639
1374055.44.36.5
 
 
Linux Kernel IP ID Generator Track information disclosure0.00CVE-2019-10638
1374047.47.37.5
 
 
SWIFT Alliance Web Platform Log injection0.00CVE-2018-16386
1374036.45.37.5
 
 
Odoo Community Association dbfilter_from_header input validation0.00CVE-2018-14733
1374025.94.37.5
 
 
Invoxia NVX220 CLI sh Password information disclosure0.00CVE-2018-14529
1374019.89.89.8
 
 
Invoxia NVX220 Telnet Service hard-coded credentials0.00CVE-2018-14528
1374005.24.36.1
 
 
DIGISOL HR-3300 Admin Login cross site scripting0.06CVE-2018-14027
1373996.67.16.1
 
 
Eventum switch.php redirect0.00CVE-2018-12621

Want to stay up to date on a daily basis?

Enable the mail alert feature now!