Risk 2019

Overview of the different risk assignments of different sources of the documented vulnerabilities.

IDTitleVulDBCVSSSecuniaXForceNessus
163851Apple iTunes libxml2 memory corruption [CVE-2019-8756]medium🔒---
163850Apple watchOS libxml2 memory corruption [CVE-2019-8756]medium🔒---
163849Apple tvOS libxml2 memory corruption [CVE-2019-8756]medium🔒---
163848Apple iCloud libxml2 memory corruption [CVE-2019-8756]medium🔒---
163847Apple iOS libxml2 memory corruption [CVE-2019-8756]medium🔒---
163829Apple iTunes libxml2 memory corruption [CVE-2019-8749]medium🔒---
163828Apple watchOS libxml2 memory corruption [CVE-2019-8749]medium🔒---
163827Apple tvOS libxml2 memory corruption [CVE-2019-8749]medium🔒---
163826Apple iCloud libxml2 memory corruption [CVE-2019-8749]medium🔒---
163819Apple iOS Kernel memory corruption [CVE-2019-8744]medium🔒---
163818Apple watchOS Kernel memory corruption [CVE-2019-8744]medium🔒---
163798Apple iOS PluginKit memory corruption [CVE-2019-8715]medium🔒---
163790Apple iOS PluginKit information disclosure [CVE-2019-8708]low🔒---
163789Apple watchOS Audio memory corruption [CVE-2019-8706]medium🔒---
163788Apple tvOS Audio memory corruption [CVE-2019-8706]medium🔒---
163787Apple iOS/iPadOS Audio memory corruption [CVE-2019-8706]medium🔒---
163756Apple iOS Wi-Fi privileges management [CVE-2019-8612]medium🔒---
163755Apple watchOS Wi-Fi privileges management [CVE-2019-8612]medium🔒---
163754Apple tvOS Wi-Fi privileges management [CVE-2019-8612]medium🔒---
163753Apple iOS CoreAudio memory corruption [CVE-2019-8592]medium🔒---
163752Apple watchOS CoreAudio memory corruption [CVE-2019-8592]medium🔒---
163751Apple tvOS CoreAudio memory corruption [CVE-2019-8592]medium🔒---
163735Apple iOS Kernel memory corruption [CVE-2019-8547]low🔒---
163734Apple watchOS Kernel memory corruption [CVE-2019-8547]low🔒---
163721Apple iOS Kernel memory corruption [CVE-2019-8525]medium🔒---
163720Apple watchOS Kernel memory corruption [CVE-2019-8525]medium🔒---
163719Apple macOS Live Photos in FaceTime Local Privilege Escalationlow🔒---
162269Microsoft Windows OleCreateFontIndirectExt out-of-bounds read [Disputed]low🔒---
159432Sricam IP CCTV Camera Device Viewer memory corruptionmedium🔒---
159431Sricam IP CCTV Camera Device Viewer stack-based overflowmedium🔒---
150766Apple iCloud CoreCrypto denial of service [CVE-2019-8741]low🔒---
150765Apple iCloud CoreCrypto denial of service [CVE-2019-8741]low🔒---
150764Apple iTunes CoreCrypto denial of service [CVE-2019-8741]low🔒---
150763Apple macOS CoreCrypto denial of service [CVE-2019-8741]low🔒---
150762Apple watchOS CoreCrypto denial of service [CVE-2019-8741]low🔒---
150761Apple iOS CoreCrypto denial of service [CVE-2019-8741]low🔒---
150737Apple tvOS CoreCrypto denial of service [CVE-2019-8741]low🔒---
149460Adobe Acrobat Reader use after free [CVE-2019-8257]medium🔒---
149459Adobe Acrobat Reader type confusion [CVE-2019-7131]medium🔒---
149313Microsoft Outlook Email input validation [CVE-2019-1460]medium🔒---
149312Microsoft Windows User Profile Service privileges managementmedium🔒---
149311Microsoft Visual Studio Code Debug Listener privileges managementmedium🔒---
149310Microsoft Dynamics 365 Impersonation privileges management [CVE-2018-8654]medium🔒---
148215rovinbhandari FTP file_transfer_functions.c receive_file input validationlow🔒---
148214FiberHome an5506-04-f cross site scripting [CVE-2019-9556]low🔒---
148213Craft CMS Header new cross site scriptinglow🔒---
148212Bolt pages cross site scriptinglow🔒---
148211Unity Editor Protocol os command injection [CVE-2019-9197]medium🔒---
148210Ricoh MarcomCentral FPProducerInternetServer.exe path traversalmedium🔒---
148209Zoho ManageEngine ADSelfService Plus information disclosure [CVE-2019-7162]medium🔒---
148208Blink XT2 Sync Module injection [CVE-2019-3984]medium🔒---
148207ezXML ezxml_char_content release of referencemedium🔒---
148206ezXML xml injection [CVE-2019-20201]low🔒---
148205ezXML ezxml_decode out-of-bounds readmedium🔒---
148204ezXML strlen out-of-bounds readlow🔒---
148203ezXML ezxml_ent_ok resource consumptionlow🔒---
148202Nagios XI schedulereport.php os command injectionmedium🔒---
148201Pure-FTPd ls.c listdir resource consumptionlow🔒---
148200Avira Free Antivirus Kernel Local Privilege Escalation [CVE-2019-18568]medium🔒---
148199GONiCUS GOsa Cookie deserialization [CVE-2019-14466]medium🔒---
148198Generalitat de Catalunya accesuniversitat.gencat.cat Java API information disclosurelow🔒---
148197OutSystems Platform ImageResourceDetail.aspx cross-site request forgerylow🔒---
148196Sylius/Grid __toString cross site scriptinglow🔒---
148195MailStore Server Directory Service improper authentication [CVE-2019-10229]medium🔒---
148194openITCOCKPIT 404 Not Found Reflected cross site scriptinglow🔒---
148193BOMBBA improper authentication [CVE-2018-19834]medium🔒---
148192DDQ improper authentication [CVE-2018-19833]medium🔒---
148191NewIntelTechMedia NETM improper authenticationmedium🔒---
148190Cryptbond Network ToOwner improper authenticationmedium🔒---
148189Business Alliance Financial Circle UBSexToken authorizationmedium🔒---
148188GeniXCMS admin.php cross site scriptinglow🔒---
148187SonicOS Configuration Mode improper authorization [CVE-2019-7479]medium🔒---
148186GMS Webservice Module sql injection [CVE-2019-7478]medium🔒---
147944IBM MQ Data Conversion Routine denial of service [CVE-2019-4655]low🔒---
147943IBM Cognos Analytics Web UI cross site scriting [CVE-2019-4623]low🔒---
147942IBM Cognos Analytics origin validation [CVE-2019-4343]low🔒---
147941IBM Watson Studio Local Key File information disclosure [CVE-2019-4335]low🔒---
147940QEMU core.c ide_dma_cb unusual condition [Disputed]low🔒---
147939SerenityOS Syscall MemoryManager.cpp privileges managementmedium🔒---
147938GPAC box_code_base.c metx_New release of resourcelow🔒---
147937GPAC ipmpx_code.c GF_IPMPX_AUTH_Delete release of referencelow🔒---
147936GPAC box_code_base.c trak_Read use after freemedium🔒---
147935GPAC box_funcs.c gf_isom_box_dump_ex use after freemedium🔒---
147934GPAC box_code_drm.c senc_Parse null pointer dereferencelow🔒---
147933GPAC box_dump.c gf_isom_dump null pointer dereferencelow🔒---
147932GPAC box_code_apple.c ilst_item_Read null pointer dereferencelow🔒---
147931GPAC box_funcs.c gf_isom_box_del null pointer dereferencelow🔒---
147930GPAC descriptors.c gf_odf_avc_cfg_write_bs null pointer dereferencelow🔒---
147929GPAC box_funcs.c gf_isom_box_parse_ex out-of-bounds writemedium🔒---
147928GPAC ipmpx_code.c ReadGF_IPMPX_WatermarkingInit out-of-bounds writemedium🔒---
147927GPAC av_parsers.c av1_parse_tile_group out-of-bounds writemedium🔒---
147926GPAC box_code_base.c dinf_New release of resourcelow🔒---
147925kind-of Type Detection index.js ctorName injectionmedium🔒---
147924Laborator Neon Theme autosuggest-remote.php cross site scriptinglow🔒---
147923libsixel fromgif.c gif_out_code out-of-bounds writemedium🔒---
147922Nagios XI nocscreenapi.php cross site scriptinglow🔒---
147921Linux Kernel f2fs Filesystem ttm_page_alloc.c. ttm_put_pages out-of-bounds readmedium🔒---
147920MFScripts YetiShare _account_forgot_password.ajax.php information disclosurelow🔒---
147919MFScripts YetiShare _account_forgot_password.ajax.php information disclosurelow🔒---
147918MFScripts YetiShare Session Cookie information disclosure [CVE-2019-19739]low🔒---
147917MFScripts YetiShare log_file_viewer.php cross site scriptinglow🔒---
147916MFScripts YetiShare Session Cookie cross-site request forgerylow🔒---
147915MFScripts YetiShare Session Cookie httponly permission assignmentlow🔒---
147914MFScripts YetiShare Password Reset class.userpeer.php unknown vulnerabilitylow🔒---
147913MFScripts YetiShare _account_move_file_in_folder.ajax.php sql injectionmedium🔒---
147912MFScripts YetiShare _get_all_file_server_paths.ajax.php cross site scriptinglow🔒---
147911MFScripts YetiShare translation_manage_text.ajax.php sql injectionmedium🔒---
147910TinyWall Controller Debug Memory privileges managementmedium🔒---
147909XMLBlueprint XML Data xml injection [CVE-2019-19032]medium🔒---
147908Easy XML Editor XML Data xml injection [CVE-2019-19031]medium🔒---
147907D-Link DIR-859 UPnP Service gena.cgi os command injectionhigh🔒---
147906Apache Solr input validation [CVE-2019-17558]medium🔒---
147905Tiny File Manager Upload os command injection [CVE-2019-16790]medium🔒---
147904ClickHouse Decompression out-of-bounds read [CVE-2019-16535]medium🔒---
147903ClickHouse input validation [CVE-2019-15024]medium🔒---
147902ros-melodic-ros-comm spinner.cpp remove memory corruptionlow🔒---
147901ros-melodic-ros-comm record.cpp parseOptions integer overflowmedium🔒---
147900php-shellcommand os command injection [CVE-2019-10774]medium🔒---
147899D-Link DGS-1510 cross site scripting [CVE-2018-7859]low🔒---
147898GitLab Enterprise Edition Access Control missing authenticationmedium🔒--🔒
147897GitLab Community Edition/Enterprise Edition Access Control authorizationmedium🔒--🔒
147896GitLab Community Edition/Enterprise Edition server-side request forgerymedium🔒--🔒
147895GitLab Community Edition/Enterprise Edition Access Control authorizationmedium🔒--🔒
147894GitLab Community Edition/Enterprise Edition server-side request forgerymedium🔒--🔒
147893GitLab Community Edition/Enterprise Edition cross site scriptinglow🔒--🔒
147892GitLab Community Edition/Enterprise Edition information disclosurelow🔒--🔒
147891GitLab Community Edition/Enterprise Edition Access Control authorizationmedium🔒--🔒
147890GitLab Community Edition/Enterprise Edition Access Control authorizationmedium🔒--🔒
147889GitLab Enterprise Edition Persistent cross site scripting [CVE-2018-20491]low🔒--🔒
147888GitLab Community Edition/Enterprise Edition Persistent cross site scriptinglow🔒--🔒
147887GitLab Community Edition/Enterprise Edition Access Control improper authenticationmedium🔒--🔒
147886GitLab Community Edition/Enterprise Edition information disclosurelow🔒--🔒
147885IBM Watson Studio Local information disclosure [CVE-2018-1682]low🔒---
147884QEMU Virtio privileges management [CVE-2013-2016]medium🔒--🔒
147883cumin Server Certificate Validator certificate validation [CVE-2013-0264]medium🔒---
147882OpenShift Enterprise Web Console cross-site request forgery [CVE-2013-0196]low🔒---
147881isearch Package tmp tempnam cleanupmedium🔒---
147880Freeciv Server resource consumption [CVE-2012-5645]low🔒--🔒
147879OpenStack Dashboard Package quantum.conf Password information disclosurelow🔒---
147878Red Hat OpenStack Platform local_settings Secret Key missing encryptionlow🔒--🔒
147877HTTP Authentication Library Password Hash inadequate encryptionlow🔒---
147876Linux Kernel feat.c __feat_register_sp resource consumptionlow🔒---
147875Linux Kernel Error cfg80211.c mwifiex_tm_cmd release of resourcelow🔒---
147874libsixel fromgif.c gif_init_frame out-of-bounds writemedium🔒---
147873PoDoFo PdfVariant.h DelayedLoad null pointer dereferencelow🔒---
147872Bento4 Ap4EsDescriptor.cpp GetTag null pointer dereferencelow🔒---
147871Bento4 Ap4DecoderConfigDescriptor.cpp GetTag null pointer dereferencelow🔒---
147870Bento4 Ap4Sample.h GetOffset use after freemedium🔒---
147869GoPro gpmf-parser GPMF_parse.c GPMF_SeekToSamples out-of-bounds readmedium🔒---
147868GoPro gpmf-parser GPMF_mp4reader.c GetPayload out-of-bounds readmedium🔒---
147867GoPro gpmf-parser GPMF-parse.c GPMF_seekToSamples out-of-bounds readmedium🔒---
147866GoPro gpmf-parser GPMF_parser.c GPMF_Next out-of-bounds readmedium🔒---
147865TVT NVMS-1000 GET Request path traversal [CVE-2019-20085]medium🔒---
147864VIM autocmd window.c use after freehigh🔒---
147863Netis DL4323 Dynamic DNS Configuration form2Ddns.cgi cross site scriptinglow🔒---
147862Netis DL4323 Ping6 Diagnostic pingrtt_v6.html cross site scriptinglow🔒---
147861Netis DL4323 form2saveConf.cgi Password insufficiently protected credentialslow🔒---
147860Netis DL4323 User Account Configuration form2userconfig.cgi cross site scriptinglow🔒---
147859Netis DL4323 Dynamic DNS Configuration form2Ddns.cgi cross site scriptinglow🔒---
147858Netis DL4323 Log form2logaction.cgi cross-site request forgerylow🔒---
147857Netis DL4323 form2url.cgi cross site scriptinglow🔒---
147856libmysofa dataobject.c mysofa2json initializationhigh🔒---
147855Bolt Symfony Web Profiler cross site scripting [CVE-2019-20058]low🔒---
147854Proxyman Privileged Helper Tool Proxy insufficient verification of data authenticitymedium🔒---
147853stb Image Loader stb_image.h stbi__shiftsigned assertionmedium🔒---
147852LuquidPixels LiquiFire OS URL server-side request forgery [CVE-2019-20055]medium🔒---
147851Linux Kernel proc_sysctl.c drop_sysctl_table null pointer dereferencelow🔒---
147850UPX Mach-O File p_mach.cpp canUnpack input validationmedium🔒---
147849matio mat.c Mat_VarCalloc release of resourcelow🔒---
147848UPX p_lx_elf.cpp elf_hash calculationlow🔒---
147847Alcatel-Lucent OmniVista 4760 __construct code injectionhigh🔒---
147846Alcatel-Lucent OmniVista 8770 Service Port 389 unrestricted uploadmedium🔒---
147845Alcatel-Lucent OmniVista 4760/OmniVista 8770 Web Server Configuration sess_ insufficiently protected credentialslow🔒---
147844K7 Ultimate Security Backup Module K7BKCExt.dll link followingmedium🔒---
147843Tenable Nessus UI Stored cross site scriptinglow🔒--🔒
147842Tenable Nessus UI Stored cross site scriptinglow🔒--🔒
147841Livefyre LiveComments Picture cross site scripting [CVE-2014-6420]low🔒---
147840Senkas Kolibri URI input validation [CVE-2014-5289]medium🔒---
147839WP-Planet Plugin magpie_debug.php cross site scriptinglow🔒---
147838Video Comments Webcam Recorder Plugin r_logout.php cross site scriptinglow🔒---
147837Swipe Checkout for WooCommerce Plugin test-plugin.php cross site scriptinglow🔒---
147836Shortcode Ninja Plugin preview-shortcode-external.php cross site scriptinglow🔒---
147835Ruven Toolkit Plugin popup.php cross site scriptinglow🔒---
147834Podcast Channels Plugin demo.write.php cross site scriptinglow🔒---
147833Movies Plugin demo.mimeonly.php cross site scriptinglow🔒---
147832Infusionsoft Gravity Forms Plugin notAuto_test_ContactService_pauseCampaign.php cross site scriptinglow🔒---
147831Import Legacy Media Plugin demo.mimeonly.php cross site scriptinglow🔒---
147830Conversador Plugin cross site scripting [CVE-2014-4519]low🔒---
147829D-Link DWR-113 cross-site request forgery [CVE-2014-3136]low🔒---
147828Collabtive Access Control install.php privileges managementmedium🔒---
147827Vivotek IP Camera authorization [CVE-2013-4985]medium🔒---
147826AVTECH AVN801 DVR Administration Login Captcha improper authenticationmedium🔒---
147825Hikvision DS-2CD7153-E improper authentication [CVE-2013-4976]medium🔒---
147824Hikvision DS-2CD7153-E privileges management [CVE-2013-4975]medium🔒---
147823Karotz API Session Token information disclosure [CVE-2013-4868]low🔒---
147822Electronic Arts Karotz Smart Rabbit Python Module privileges managementlow🔒---
147821Insteon Hub 2242-222 Web/API default permission [CVE-2013-4859]medium🔒---
147820ReviewBoard unrestricted upload [CVE-2013-4796]medium🔒---
147819Samsung Galaxy S3/Galaxy S4 SMS Text Message default permissionmedium🔒---
147818Samsung Galaxy S3/Galaxy S4 SMS Text Message default permissionmedium🔒---
147817Static HTTP Server http.ini buffer overflowmedium🔒---
147816NullSoft WinAmp gen_ff.dll release of reference [CVE-2013-4695]medium🔒--🔒
147815Xorbin Digital Flash Clock Extension xorAnalogClock.swf cross site scriptinglow🔒---
147814Xorbin Analog Flash Clock Extension xorAnalogClock.swf cross site scriptinglow🔒---
147813Sencha Connect connect.methodOverride cross site scriptinglow🔒---
147812SPBAS Business Automation Software index.php cross-site request forgerylow🔒---
147811SPBAS Business Automation Software cross site scripting [CVE-2013-4664]low🔒---
147810Magnolia CMS improper authentication [CVE-2013-4621]medium🔒---
147809Toshiba ConfigFree Utility CFProfile.exe out-of-bounds writemedium🔒---
147808thttpd Underflow out-of-bounds write [CVE-2007-0158]medium🔒---
147807WordPress REST API class-wp-rest-posts-controller.php privileges managementmedium🔒---
147806WordPress Protection Mechanism formatting.php wp_targeted_link_rel cross site scriptinglow🔒---
147805WordPress HTML5 kses.php wp_kses_bad_protocol input validationhigh🔒---
147804Citrix Application Delivery Controller/Gateway path traversalhigh🔒---
147803Swipe Checkout for WP e-Commerce Plugin test-plugin.php cross site scriptinglow🔒---
147802Ebay Feeds Plugin magpie_slashbox.php cross site scriptinglow🔒---
147801Easy Career Openings Plugin cross site scripting [CVE-2014-4523]low🔒---
147800Huawei USG9500 X.509 out-of-bounds write [CVE-2019-5275]medium🔒---
147799Huawei USG9500 X.509 buffer overflow [CVE-2019-5274]low🔒---
147798Huawei USG9500 X.509 buffer overflow [CVE-2019-5273]medium🔒---
147797Huawei USG9500 Integrity Check improper validation of integrity check valuemedium🔒---
147796libsixel fromsixel.c image_buffer_resize out-of-bounds writemedium🔒---
147795libsixel fromsixel.c image_buffer_resize release of resourcelow🔒---
147794libsixel frompnm.c load_pnm operation after expirationmedium🔒---
147793UPX Mach-O File p_mach.cpp canUnpack out-of-bounds writemedium🔒---
147792matio mat5.c ReadNextStructField out-of-bounds readmedium🔒---
147791matio mat5.c Mat_VarRead5 resource consumptionlow🔒---
147790matio mat5.c ReadNextCell out-of-bounds readmedium🔒---
147789matio mat5.c Mat_VarReadNextInfo5 out-of-bounds readmedium🔒---
147788libmysofa dataobject.c readOHDRHeaderMessageDatatype out-of-bounds writelow🔒---
147787GNU LibreDWG dwg.spec dwg_decode_LWPOLYLINE_private resource consumptionlow🔒---
147786GNU LibreDWG free.c dwg_free double freemedium🔒---
147785GNU LibreDWG dwg.spec decode_3dsolid resource consumptionlow🔒---
147784GNU LibreDWG dwg.spec dwg_decode_HATCH_private resource consumptionlow🔒---
147783GNU LibreDWG decode.c decode_R13_R2000 out-of-bounds readmedium🔒---
147782GNU LibreDWG decode.c resolve_objectref_vector use after freemedium🔒---
147781GNU LibreDWG dwg.spec dwg_decode_SPLINE_private resource consumptionlow🔒---
147780Archery Project Name Stored cross site scriptinglow🔒---
147779ezXML ezxml.c ezxml_parse_str null pointer dereferencelow🔒---
147778ezXML ezxml_char_content use after freemedium🔒---
147777ezXML XML File strchr out-of-bounds readmedium🔒---
147776Intelbras IWR 3000N JSON login input validationlow🔒---
147775Intelbras IWR 3000N user cross-site request forgerylow🔒---
147774Huawei MediaPad M5 Lite 10 input validation [CVE-2019-19398]medium🔒---
147773JetBrains Ktor Framework cross site scripting [CVE-2019-19389]medium🔒---
147772Waitress Proxy request smuggling [CVE-2019-16789]medium🔒---
147771WordPress Block Editor cross site scripting [CVE-2019-16781]low🔒---
147770WordPress Block Editor cross site scripting [CVE-2019-16780]low🔒---
147769D-Link DIR-601 B1 improper authentication [CVE-2019-16327]medium🔒---
147768D-Link DIR-601 B1 cross-site request forgery [CVE-2019-16326]low🔒---
147767GitLab Community Edition/Enterprise Edition Access Control authorizationmedium🔒--🔒
147766ircd-ratbox MONITOR Command memory corruption [CVE-2015-5290]low🔒---
147765Features Gem tmp File injectionmedium🔒---
147764Belkin N900 Javascript Debugging improper authentication [CVE-2013-3088]medium🔒---
147763Belkin F5D8236-4 Web Management Interface improper authenticationmedium🔒---
147762W3 Super Cache Plugin Incomplete Fix CVE-2013-2009 escape outputmedium🔒--🔒
147761Java SE Virtual Machine information disclosure [CVE-2012-4420]low🔒---
147760sssd HBAC Rule improper authentication [CVE-2012-3462]medium🔒---
147759NetworkManager AdHoc Mode missing authentication [CVE-2012-2736]low🔒--🔒
147758pax-linux arch_get_unmapped_area_topdown resource consumptionlow🔒---
147757Athenz redirect [CVE-2019-6035]medium🔒---
147756A-Blog CMS injection [CVE-2019-6034]low🔒---
147755A-Blog CMS cross site scripting [CVE-2019-6033]low🔒---
147754NTV News24 X.509 Certificate Validation certificate validationlow🔒---
147753KINZA RSS Reader cross site scripting [CVE-2019-6031]low🔒---
147752Custom Body Class cross-site request forgery [CVE-2019-6030]low🔒---
147751Custom Body Class cross site scripting [CVE-2019-6029]low🔒---
147750WP Spell Check cross-site request forgery [CVE-2019-6027]low🔒---
147749MOTEX LanScope Cat Client privileges management [CVE-2019-6026]medium🔒---
147748Movable Type redirect [CVE-2019-6025]medium🔒---
147747Rakuma App insufficiently protected credentials [CVE-2019-6024]medium🔒---
147746Cybozu Office Access Restriction privileges management [CVE-2019-6023]medium🔒---
147745Cybozu Office Customapp path traversalmedium🔒---
147744Library Information Management System LIMEDIO redirect [CVE-2019-6021]medium🔒---
147743PowerCMS redirect [CVE-2019-6020]medium🔒---
147742STAMP Workbench Installer untrusted search path [CVE-2019-6019]low🔒---
147741NetCommons cross site scripting [CVE-2019-6018]low🔒---
147740REMISE Payment Module information disclosure [CVE-2019-6017]low🔒---
147739REMISE Payment Module cross site scripting [CVE-2019-6016]low🔒---
147738D-Link DBA-1510P Web User Interface os command injection [CVE-2019-6014]medium🔒---
147737D-Link DBA-1510P Command Line Interface os command injectionmedium🔒---
147736wpDataTables Lite sql injection [CVE-2019-6012]medium🔒---
147735wpDataTables Lite cross site scripting [CVE-2019-6011]low🔒---
147734Yokogawa Exaopc Unquoted Search Path unquoted search path [CVE-2019-6008]medium🔒---
147733Pandora FMS Alert System authorization [CVE-2019-19681]medium🔒---
147732ListingPro Theme Listing Submit Page Persistent cross site scriptinglow🔒---
147731ListingPro Theme Listing Submit Page Persistent cross site scriptinglow🔒---
147730ListingPro Theme Reflected cross site scripting [CVE-2019-19540]low🔒---
147729TigerVNC readSetCursor stack-based overflowmedium🔒---
147728TigerVNC decodeRect heap-based overflowmedium🔒---
147727TigerVNC FilterGradient heap-based overflowmedium🔒---
147726TigerVNC CopyRectDecoder heap-based overflowmedium🔒---
147725TigerVNC ZRLEDecoder memory corruption [CVE-2019-15691]medium🔒---
147724BullGuard Premium Protection Symlink toctou [CVE-2019-20000]low🔒---
147723Halo Template server-side request forgery [CVE-2019-19999]medium🔒---
147722Xiuno BBS token.php xml external entity referencemedium🔒---
147721Email Subscribers / Newsletters File Download information disclosurelow🔒---
147720Email Subscribers / Newsletters Campaign privileges managementmedium🔒---
147719Fast Velocity Minify fastvelocity_min_files Path information disclosurelow🔒---
147718Email Subscribers / Newsletters unknown vulnerability [CVE-2019-19982]medium🔒---
147717Email Subscribers / Newsletters Plugin Settings cross-site request forgerylow🔒---
147716Email Subscribers / Newsletters Administrative Dashboard wp_ajax privileges managementmedium🔒---
147715WP Maintenance Maintenance Mode cross site scriting [CVE-2019-19979]low🔒---
147714libESMTP ntlmstruct.c ntlm_build_type_2 out-of-bounds readmedium🔒---
147713UPC Connect Box EuroDOCSIS 3.0 Voice Gateway Administration Page setter.xml cleartext transmissionlow🔒---
147712CrushFTP redirect [CVE-2018-18288]medium🔒---
147711NVIDIA GeForce Experience GameStream authorization [CVE-2019-5702]medium🔒---
147710Linux Kernel cpia2_v4l.c cpia2_exit use after freelow🔒---
147709Linux Kernel Port Connection sas_discover.c race conditionlow🔒---
147708wolfSSL DAS information disclosure [CVE-2019-19963]low🔒---
147707wolfSSL RSA wc_SignatureGenerateHash risky encryptionmedium🔒---
147706wolfSSL wc_ecc_mulmod_ex information disclosurelow🔒---
147705libIEC61850 string_utilities.c StringUtils_createStringFromBuffer resource consumptionlow🔒---
147704libIEC61850 mms_access_result.c getNumberOfElements out-of-bounds readmedium🔒---
147703libxml2 parser.c xmlParseBalancedChunkMemoryRecover release of resourcelow🔒---
147702Signal Desktop wmic.exe privileges managementmedium🔒---
147701SQLite Update zipfile.c zipfileUpdate unrestricted uploadmedium🔒---
147700SQLite Error expr.c sqlite3WindowRewrite exceptional conditionlow🔒---
147699SQLite SELECT DISTINCT select.c flattenSubquery null pointer dereferencelow🔒---
147698Trend Micro Antivirus for Mac 2019 link following [CVE-2019-19695]medium🔒---
147697Reliable Controls MACH-ProWebCom Link cross site scripting [CVE-2019-18249]medium🔒---
147696mongo-express Endpoint toBSON code injectionmedium🔒---
147695Fermax Outdoor Panel DTMF Receiver authorization [CVE-2017-16778]medium🔒---
147694GraphicsMagick pict.c EncodeImage out-of-bounds readmedium🔒---
147693ImageMagick png.c MngInfoDiscardObject use after freemedium🔒---
147692GraphicsMagick miff.c ImportRLEPixels out-of-bounds writemedium🔒---
147691GraphicsMagick error.c ThrowLoggedException use after freemedium🔒---
147690ImageMagick png.c WritePNGImage out-of-bounds readmedium🔒---
147689ImageMagick sgi.c WriteSGIImage out-of-bounds writemedium🔒---
147688Check Point Endpoint Security Client Log File link followinglow🔒---
147687upload-image-with-ajax File Upload unrestricted upload [CVE-2019-8293]medium🔒---
147686SonicWALL Email Security Appliance improper authorization [CVE-2019-7489]medium🔒---
147685SonicWALL Email Security Appliance Database credentials managementmedium🔒---
147684F5 BIG-IP/BIG-IQ UCS Backup File information disclosure [CVE-2019-6688]low🔒---
147683F5 BIG-IP ASM Cloud Security Services Profile improper authenticationmedium🔒---
147682F5 BIG-IP Traffic Management Microkernel input validation [CVE-2019-6686]low🔒---
147681F5 BIG-IP iRule privileges management [CVE-2019-6685]medium🔒---
147680F5 BIG-IP Virtual Clustered Multiprocessing input validationmedium🔒---
147679F5 BIG-IP Virtual Server FastL4 Profile resource consumptionlow🔒---
147678F5 BIG-IP ASM Security Policy resource consumption [CVE-2019-6682]low🔒---
147677F5 BIG-IP Multicast Forwarding Cache release of resource [CVE-2019-6681]low🔒---
147676F5 BIG-IP FastL4 Virtual Server input validation [CVE-2019-6680]low🔒---
147675F5 BIG-IP SCP link following [CVE-2019-6679]medium🔒---
147674F5 BIG-IP Packet Filter input validation [CVE-2019-6678]low🔒---
147673F5 BIG-IP TMM input validation [CVE-2019-6677]low🔒---
147672F5 BIG-IP TMM input validation [CVE-2019-6676]low🔒---
147671Forcepoint NGFW Security Management Center Configuration Database type conversionmedium🔒---
147631VMware Workstation/Horizon View Agent DLL Loader untrusted search pathmedium🔒---
147630Huawei Smart Phone buffer overflow [CVE-2019-5276]medium🔒---
147629Huawei OceanStor SNS3096 Operation information disclosure [CVE-2019-5267]low🔒---
147628Huawei P30 Share input validation [CVE-2019-5266]low🔒---
147627Huawei P30 Share information disclosure [CVE-2019-5265]low🔒---
147626Linux Kernel IAPP Location Update input validation [CVE-2019-5108]low🔒---
147625Debian-edu-config ACL privileges management [CVE-2019-3467]medium🔒---
147624ZTE ZXCLOUD GoldenData VAP insufficiently protected credentialsmedium🔒---
147623ZTE ZXCLOUD GoldenData VAP information disclosure [CVE-2019-3430]low🔒---
147622ZTE ZXCLOUD GoldenData VAP Log File log file [CVE-2019-3429]low🔒---
147621Linux Kernel USB Device kvaser_usb_leaf.c information disclosurelow🔒---
147620libIEC61850 ber_decode.c BerDecoder_decodeUint32 out-of-bounds readmedium🔒---
147619Red Hat Ceph Storage RADOS Gateway Daemon input validation [CVE-2019-19337]low🔒---
147618F5 BIG-IP/BIG-IQ/iWorkflow/Enterprise Manager TMOS Shell privileges managementmedium🔒---
147617F5 BIG-IP APM Log log file [CVE-2019-19150]low🔒---
147616virglrenderer Command vrend_renderer.c vrend_renderer_transfer_write_iov out-of-bounds writemedium🔒---
147615virglrenderer Command vrend_renderer.c vrend_blit_need_swizzle out-of-bounds readmedium🔒---
147614virglrenderer vrend_renderer.c vrend_renderer_transfer_write_iov out-of-bounds writemedium🔒---
147613virglrenderer Command vrend_renderer.c null pointer dereferencelow🔒---
147612PLC Editor Project File stack-based overflow [CVE-2019-18236]medium🔒---
147611Equinox Control Expert sql injection [CVE-2019-18234]medium🔒---
147610Orckestra C1 CMS Deserialization Composite.dll EntityTokenSerializer deserializationmedium🔒---
147609Apache Tomcat FORM Authentication session fixiation [CVE-2019-17563]medium🔒---
147608Open TFTP Server SP Error Packet logMess out-of-bounds writemedium🔒---
147607Open TFTP Server MT Error Packet logMess out-of-bounds writemedium🔒---
147606Apache Tomcat JMX Remote Lifecycle Listener insufficiently protected credentialslow🔒---
147605TFTP Server MT Error Packet logMess format stringmedium🔒---
147604TFTP Server SP Error Packet logMess format stringmedium🔒---
147603TFTP Server SP Error Packet out-of-bounds write [CVE-2018-10387]medium🔒---
147602libIEC61850 mms_access_result.c MmsValue_decodeMmsData out-of-bounds writemedium🔒---
147601libIEC61850 mms_value.c MmsValue_newOctetString integer overflowlow🔒---
147600Malwarebytes AdwCleaner DLL untrusted search path [CVE-2019-19929]medium🔒---
147599SQLite Incomplete Fix CVE-2019-19880 select.c multiSelect null pointer dereferencemedium🔒---
147598Linux Kernel Slice fair.c resource consumptionlow🔒---
147597sa-exim CF File Greylisting.pm os command injectionmedium🔒---
147596PHP EXIF Extension exif_read_data out-of-bounds readmedium🔒---
147595PHP Header mail double freemedium🔒---
147594PHP EXIF Extension exif_read_data out-of-bounds readmedium🔒---
147593PHP bcmath out-of-bounds read [CVE-2019-11046]medium🔒---
147592PHP Filename DirectoryIterator null terminationmedium🔒---
147591PHP Filename link null terminationmedium🔒---
147590IBM Financial Transaction Manager Web UI cross site scritinglow🔒---
147589IBM Financial Transaction Manager Session missing encryptionlow🔒---
147588IBM Financial Transaction Manager clickjacking [CVE-2019-4742]medium🔒---
147587IBM Financial Transaction Manager cross-site request forgerylow🔒---
147586IBM Cognos Analytics Web UI cross site scriting [CVE-2019-4555]low🔒---
147585IBM Cognos Analytics cross-site request forgery [CVE-2019-4231]low🔒---
147584handlebars injection [CVE-2019-19919]medium🔒---
147583Lout z02.c srcnext out-of-bounds writemedium🔒---
147582Lout z39.c StringQuotedWord buffer overflowmedium🔒---
147581NeuVector Active Directory Authentication weak password [CVE-2019-19747]medium🔒---
147580CA Client Automation File Access Local Privilege Escalation [CVE-2019-19231]medium🔒---
147579Log4j Deserialization SocketServer deserializationmedium🔒---
147578NetHack Configuration File privileges management [CVE-2019-16787]low🔒---
147577Waitress HTTP Header request smuggling [CVE-2019-16786]medium🔒---
147576Waitress Split request smuggling [CVE-2019-16785]medium🔒---
147575Xiaomi DGNWG03LM/ZNCZ03LM/MCCGQ01LM/WSDCGQ01LM/RTCGQ01LM Zigbee input validationlow🔒---
147574Xiaomi DGNWG03LM/ZNCZ03LM/MCCGQ01LM/WSDCGQ01LM/RTCGQ01LM Zigbee input validationlow🔒---
147573Xiaomi DGNWG03LM/ZNCZ03LM/MCCGQ01LM/WSDCGQ01LM/RTCGQ01LM Zigbee authorizationlow🔒---
147572Asus HG100/WS-101/TS-101 ZigBee Pro input validation [CVE-2019-15912]low🔒---
147571Asus HG100/WS-101/TS-101 ZigBee Pro cleartext transmission [CVE-2019-15911]low🔒---
147570Asus HG100/WS-101/TS-101 ZigBee Pro input validation [CVE-2019-15910]low🔒---
147569GitLab Community Edition/Enterprise Edition resource consumptionlow🔒---
147568IBM Cognos Business Intelligence cross-site request forgery [CVE-2018-1934]low🔒---
147567Midori Browser Content Security Policy cross site scripting [CVE-2019-19916]low🔒---
147566phpMyChat-Plus Password Reset URL pass_reset.php Reflected cross site scriptinglow🔒---
1475653S-Smart CODESYS SP Realtime NT null pointer dereference [CVE-2019-19789]low🔒---
147564Trend Micro Security 2020 information disclosure [CVE-2019-19693]medium🔒---
147563Trend Micro Apex One Product Console cross site scripting [CVE-2019-19692]low🔒---
147562Trend Micro Apex One/OfficeScan XG Development Tool Credentials insufficiently protected credentialslow🔒---
147561Philips Veradius Unity inadequate encryption [CVE-2019-18263]low🔒---
147560Palo Alto PAN-OS Log Forwarding Card Remote Code Execution [CVE-2019-17440]high🔒---
147559Swagger-UI Key Name cross site scripting [CVE-2016-1000229]low🔒---
147558negotiator Regular Expression resource consumption [CVE-2016-1000022]low🔒--🔒
147557GnuTLS CBC Mode information exposure [CVE-2015-8313]medium🔒--🔒
147556gnome-keyring gnome_keyring_lock_all_sync input validationmedium🔒---
147555CUPS Localhost cupsd.conf authorizationmedium🔒--🔒
147554LibreOffice/OpenOffice Embedded Content input validation [CVE-2012-5639]medium🔒---
147553ecryptfs-utils suid Helper input validation [CVE-2012-3409]medium🔒--🔒
147552Adobe ColdFusion Permission default permission [CVE-2019-8256]medium🔒---
147551Brackets injection [CVE-2019-8255]medium🔒---
147550Adobe Photoshop CC memory corruption [CVE-2019-8254]medium🔒---
147549Adobe Photoshop CC memory corruption [CVE-2019-8253]medium🔒---
147548301 Redirects - Easy Redirect Manager Plugin privileges managementmedium🔒---
147547MediaWiki MinervaNeue Skin cross site scripting [CVE-2019-19910]low🔒---
147546Public Knowledge Project pkp-lib OJS Report Generator deserializationmedium🔒---
147545Kopano Groupware Core freebusyutil.cpp HrAddFBBlock buffer overflowmedium🔒---
147544cyrus-sasl OpenLDAP common.c _sasl_add_string out-of-bounds writelow🔒---
147543NetHack Configuration File buffer overflow [CVE-2019-19905]medium🔒---
147542Backdrop CMS File Type Description cross site scripting [CVE-2019-19903]low🔒---
147541Backdrop CMS File Upload information disclosure [CVE-2019-19902]medium🔒---
147540Backdrop CMS Block Description cross site scripting [CVE-2019-19901]low🔒---
147539Backdrop CMS Content Type cross site scripting [CVE-2019-19900]low🔒---
147538Ansible Tower websocket Password information exposurelow🔒---
147537Ansible Tower Database Backup tower Credentials file accesslow🔒---
147536Ansible Tower RabbitMQ Management Interface information disclosuremedium🔒---
147535sudo privileges management [CVE-2019-19234]medium🔒---
147534sudo Runas privileges management [CVE-2019-19232]medium🔒---
147533Plex Media Server Camera Upload unrestricted upload [CVE-2019-19141]medium🔒---
147532Lansweeper Web Console cross site scripting [CVE-2019-18955]low🔒---
147531CloudVision Portal API Password insufficiently protected credentialslow🔒---
147530CloudVision Portal CVP API privileges management [CVE-2019-18181]low🔒---
147529Eclipse Che Workspace cross-site request forgery [CVE-2019-17633]medium🔒---
147528JS JOBS FREE Extension custormfields.php dataForDepandantField sql injectionmedium🔒---
147527Beckhoff Embedded Windows PLC ADS Protocol input validation [CVE-2019-16871]high🔒---
147526Odoo Community/Enterprise Access Control access control [CVE-2019-11780]medium🔒---
147525Cloud Foundry Cloud Controller API Global Service Broker information disclosurelow🔒---
147524Kibana Region Map cross site scripting [CVE-2019-7621]low🔒---
147523SonicOS SSLVPN NACagent Installation unquoted search path [CVE-2019-7487]medium🔒---
147522SonicWALL SMA100 CGI Script viewcacert code injectionmedium🔒---
147521SonicWALL SMA100 CGI Script DEARegister buffer overflowmedium🔒---
147520SonicWALL SMA100 CGI Script viewcacert sql injectionmedium🔒---
147519SonicWALL SMA100 CGI Script handleWAFRedirect path traversallow🔒---
147518SonicWALL SMA100 libSys.so stack-based overflowmedium🔒---
147517GitLab Enterprise Edition Access Control access control [CVE-2019-5487]low🔒---
147516GitLab Community Edition/Enterprise Edition Salesforce Login authentication bypassmedium🔒---
147515GitLab Community Edition/Enterprise Edition Project Archive authorizationmedium🔒---
147514WAGO PFC100/PFC200 iocheckd Service buffer overflow [CVE-2019-5081]medium🔒---
147513WAGO PFC100/PFC200 iocheckd Service missing authentication [CVE-2019-5080]low🔒---
147512WAGO PFC100/PFC200 iocheckd Service out-of-bounds write [CVE-2019-5079]medium🔒---
147511WAGO PFC100/PFC200 iocheckd Service missing authentication [CVE-2019-5078]low🔒---
147510WAGO PFC100/PFC200 iocheckd Service missing authentication [CVE-2019-5077]low🔒---
147509WAGO PFC100/PFC200 Command Line Utility memory corruption [CVE-2019-5075]medium🔒---
147508WAGO PFC100/PFC200 iocheckd Service buffer overflow [CVE-2019-5074]medium🔒---
147507WAGO PFC100/PFC200 iocheckd Service information disclosure [CVE-2019-5073]low🔒---
147506Pebble Templates Protection Mechanism getClass input validationmedium🔒---
147505Humax Wireless Voice Gateway HGB10R-2 insufficiently protected credentialslow🔒---
147504Humax Wireless Voice Gateway HGB10R-2 Backup File backupsettings.conf cleartext transmissionlow🔒---
147503ffjpeg jfif.c jfif_decode divide by zerolow🔒---
147502ffjpeg bitstr.c bitstr_tell null pointer dereferencelow🔒---
147501Django Password Reset password recovery [CVE-2019-19844]medium🔒---
147500Opera Web Browser Sandbox origin validation [CVE-2019-19788]medium🔒---
147499Singularity Permission .singularity default permissionmedium🔒---
147498Trend Micro Mobile Security weak password [CVE-2019-19690]medium🔒---
147497Trend Micro HouseCall for Home Networks DLL untrusted search pathmedium🔒---
147496Trend Micro HouseCall for Home Networks DLL privileges managementmedium🔒---
147495ABB PB610 Panel Builder 600 HMISimulator unknown vulnerabilitymedium🔒---
147494ABB PB610 Panel Builder 600 HMIStudio Local Privilege Escalationmedium🔒---
147493ABB PB610 Panel Builder 600 HMISimulator input validation [CVE-2019-18995]low🔒---
147492ABB PB610 Panel Builder 600 HMIStudio input validation [CVE-2019-18994]low🔒---
147491Zoho ManageEngine ADSelfService Plus redirect [CVE-2019-18781]medium🔒---
147490RSA Identity Governance Session Local Privilege Escalation [CVE-2019-18573]medium🔒---
147489RSA Identity Governance JMX Agent missing authentication [CVE-2019-18572]medium🔒---
147488RSA Identity Governance My Access Live Module Reflected cross site scriptinglow🔒---
147487GE S2020 Fast Switch 61850 Reflected cross site scripting [CVE-2019-18267]low🔒---
147486Pronestor Planner Outlook Add-in PronestorHealthMonitor.exe privileges managementmedium🔒---
147485Rack Session timing discrepancy [CVE-2019-16782]medium🔒---
147484http_server path traversal [CVE-2019-15600]low🔒---
147483tree-kill code injection [CVE-2019-15599]medium🔒---
147482treekill code injection [CVE-2019-15598]medium🔒---
147481node-df code injection [CVE-2019-15597]medium🔒---
147480statics-server path traversal [CVE-2019-15596]medium🔒---
147479GitLab Community Edition/Enterprise Edition Access Control access controllow🔒---
147478GitLab Community Edition/Enterprise Edition Clone access controlmedium🔒---
147477GitLab Community Edition/Enterprise Edition Pipeline insertion of sensitive information into sent datalow🔒---
147476GitLab Community Edition/Enterprise Edition Project Milestone information disclosurelow🔒---
147475GitLab Community Edition/Enterprise Edition GraphQL Endpoint information disclosurelow🔒---
147474GitLab Community Edition/Enterprise Edition API command injectionmedium🔒---
147473Atlassian Confluence Server/Confluence Data Center Previews Plugin dynamically-managed code resourcesmedium🔒---
147472Git Clone input validation [CVE-2019-1387]medium🔒---
147471HPE UIoT information disclosure [CVE-2019-11995]low🔒---
147470Intel CSME/TXE/Detection Tool Access Control privileges managementmedium🔒---
147469Intel AMT Subsystem cross site scripting [CVE-2019-11132]low🔒---
147468Intel AMT Subsystem privileges management [CVE-2019-11131]medium🔒---
147467Intel CSME/TXE Subsystem improper authentication [CVE-2019-11110]low🔒---
147466Intel SPS Subsystem denial of service [CVE-2019-11109]low🔒---
147465Intel CSME Subsystem input validation [CVE-2019-11108]medium🔒---
147464Intel AMT Subsystem input validation [CVE-2019-11107]medium🔒---
147463Intel CSME/TXE Subsystem session expiration [CVE-2019-11106]medium🔒---
147462Intel CSME Subsystem privileges management [CVE-2019-11105]medium🔒---
147461Intel CSME/TXE input validation [CVE-2019-11104]medium🔒---
147460Intel CSME Firmware Update input validation [CVE-2019-11103]medium🔒---
147459Intel DAL/CSME/TXE input validation [CVE-2019-11102]low🔒---
147458Intel CSME/TXE Subsystem input validation [CVE-2019-11101]low🔒---
147457Intel AMT Subsystem input validation [CVE-2019-11100]low🔒---
147456Intel Management Engine Consumer Driver Directory Permission default permissionmedium🔒---
147455Intel AMT Subsystem input validation [CVE-2019-11088]medium🔒---
147454Intel CSME/TXE Subsystem input validation [CVE-2019-11087]medium🔒---
147453Intel AMT Subsystem input validation [CVE-2019-11086]medium🔒---
147452Intel CSME/TXE Subsystem out-of-bounds write [CVE-2019-0169]medium🔒---
147451Intel CSME/TXE input validation [CVE-2019-0168]low🔒---
147450Intel AMT input validation [CVE-2019-0166]low🔒---
147449Intel CSME input validation [CVE-2019-0165]low🔒---
147448Intel AMT input validation [CVE-2019-0131]medium🔒---
147447Apache Xerces-C XML Parser use after free [CVE-2018-1311]medium🔒---
147446Restlet Endpoint xml external entity reference [CVE-2012-2656]low🔒---
147444Apple macOS Web Page History information disclosurelow🔒---
147443Apple iCloud memory corruption [CVE-2019-8763]medium🔒---
147442Apple iTunes memory corruption [CVE-2019-8763]medium🔒---
147441Apple Safari memory corruption [CVE-2019-8763]medium🔒---
147440Apple tvOS memory corruption [CVE-2019-8763]medium🔒---
147439Apple iCloud Text File out-of-bounds read [CVE-2019-8745]medium🔒---
147438Apple iTunes Text File out-of-bounds read [CVE-2019-8745]medium🔒---
147437Apple tvOS Text File out-of-bounds read [CVE-2019-8745]medium🔒---
147436Apple iCloud use after free [CVE-2019-8735]medium🔒---
147435Apple iTunes use after free [CVE-2019-8735]medium🔒---
147434Apple iCloud memory corruption [CVE-2019-8733]medium🔒---
147433Apple iTunes memory corruption [CVE-2019-8733]medium🔒---
147432Apple iCloud memory corruption [CVE-2019-8726]medium🔒---
147431Apple iTunes memory corruption [CVE-2019-8726]medium🔒---
147430Apple iCloud State Management Universal cross site scriptingmedium🔒---
147429Apple iTunes State Management Universal cross site scriptingmedium🔒---
147428Apple tvOS Kernel memory corruption [CVE-2019-8717]medium🔒---
147427Apple iCloud use after free [CVE-2019-8707]medium🔒---
147426Apple iTunes use after free [CVE-2019-8707]medium🔒---
147425Apple iClouds State Management Universal cross site scriptingmedium🔒---
147424Apple iTunes State Management Universal cross site scriptingmedium🔒---
147423SwiftNIO SSL TLS stack-based overflow [CVE-2019-8849]medium🔒---
147422Apple Xcode File memory corruption [CVE-2019-8806]medium🔒---
147421Apple Xcode File memory corruption [CVE-2019-8800]medium🔒---
147420Shazam App URL injection [CVE-2019-8792]low🔒---
147419Shazam App URL Scheme redirect [CVE-2019-8791]medium🔒---
147418Apple macOS State Management memory corruption [CVE-2019-8781]medium🔒---
147417Apple macOS Encrypted PDF inadequate encryption [CVE-2019-8772]low🔒---
147416Apple macOS Document permission assignment [CVE-2019-8770]medium🔒---
147415Apple iOS/iPadOS Web Page History information disclosurelow🔒---
147414Apple macOS History information disclosure [CVE-2019-8768]low🔒---
147413Apple iOS/iPadOS memory corruption [CVE-2019-8763]medium🔒---
147412Apple macOS null pointer dereference [CVE-2019-8758]medium🔒---
147411Apple macOS User Preferences race condition [CVE-2019-8757]low🔒---
147410Apple macOS Kernel Kernel Memory null pointer dereferencelow🔒---
147409Apple macOS Kernel null pointer dereference [CVE-2019-8748]medium🔒---
147408Apple macOS Text File buffer overflow [CVE-2019-8745]medium🔒---
147407Apple tvOS use after free [CVE-2019-8735]medium🔒---
147406Apple tvOS memory corruption [CVE-2019-8733]medium🔒---
147405Apple macOS Search Result information disclosure [CVE-2019-8730]low🔒---
147404Apple tvOS memory corruption [CVE-2019-8726]medium🔒---
147403Apple tvOS State Management Universal cross site scriptingmedium🔒---
147402Apple macOS Kernel memory corruption [CVE-2019-8717]medium🔒---
147401Apple tvOS use after free [CVE-2019-8707]medium🔒---
147400Apple macOS memory corruption [CVE-2019-8701]medium🔒---
147399Apple Texture Analytics Data memory corruption [CVE-2019-8632]low🔒---
147398Apple tvOS State Management Universal cross site scriptingmedium🔒---
147397Apple watchOS Passcode information disclosure [CVE-2019-8548]low🔒---
147396Apple Shortcuts Sandbox external reference [CVE-2019-7290]medium🔒---
147395Apple Shortcuts input validation [CVE-2019-7289]low🔒---
147394shadowsocks-libev Network Packet information disclosure [CVE-2019-5152]low🔒---
147393IBM Planning Analytics TM1 Script privileges management [CVE-2019-4716]medium🔒---
147392IBM API Connect missing encryption [CVE-2019-4609]low🔒---
147391HCL AppScan Source Web UI cross site scripting [CVE-2019-4388]low🔒---
147390Qualcomm Snapdragon Auto Event Argument buffer overflow [CVE-2019-2304]medium🔒---
147389Qualcomm Snapdragon Auto RPU Write improper authentication [CVE-2019-2274]medium🔒---
147388Qualcomm Snapdragon Auto integer overflow [CVE-2019-2242]medium🔒---
147387shadow privileges management [CVE-2019-19882]medium🔒---
147386SQLite ORDER BY window.c exprListAppendList null pointer dereferencelow🔒---
147385Tautulli Media Server shutdown cross-site request forgerylow🔒---
147384Xerox AltaLink C8035 cross-site request forgery [CVE-2019-19832]low🔒---
147383SolarWinds Serv-U FTP Server cross site scripting [CVE-2019-19829]low🔒---
147382D-Link DIR-615 Account Configuration Page cross site scriptinglow🔒---
147381Asus ATK AsLdrSrv.exe input validationmedium🔒---
147380GNU Bash shell.c disable_priv_mode dropped privilegesmedium🔒---
147379HPE OneView for VMware vCenter cross site scripting [CVE-2019-11992]low🔒---
147378TRENDnet TEW-651BR/TEW-652BRP/TEW-652BRU get_set.ccp memory corruptionmedium🔒---
147377TRENDnet TEW-651BR/TEW-652BRP/TEW-652BRU get_set.ccp os command injectionmedium🔒---
147376Qualcomm Snapdragon Auto out-of-bounds write [CVE-2019-10614]medium🔒---
147375Qualcomm Snapdragon Auto buffer overflow [CVE-2019-10607]medium🔒---
147374Qualcomm Snapdragon Auto IEEE 802.11 Header buffer overflow [CVE-2019-10605]medium🔒---
147373Qualcomm Snapdragon Auto WMI Message array index [CVE-2019-10601]medium🔒---
147372Qualcomm Snapdragon Auto Netlink CB Callback null pointer dereferencemedium🔒---
147371Qualcomm Snapdragon Auto IBSS Connection Mode buffer overflowmedium🔒---
147370Qualcomm Snapdragon Auto Message input validation [CVE-2019-10595]medium🔒---
147369Qualcomm Snapdragon Auto Debug Queue out-of-bounds read [CVE-2019-10584]medium🔒---
147368Qualcomm Snapdragon Auto Video Driver integer overflow [CVE-2019-10572]medium🔒---
147367Qualcomm Snapdragon Auto EEPROM out-of-bounds read [CVE-2019-10564]medium🔒---
147366Qualcomm Snapdragon Auto Wireless Driver out-of-bounds read [CVE-2019-10557]medium🔒---
147365Qualcomm Snapdragon Auto memory corruption [CVE-2019-10544]medium🔒---
147364Qualcomm Snapdragon Auto FW Response integer overflow [CVE-2019-10537]medium🔒---
147363Qualcomm Snapdragon Auto double free [CVE-2019-10536]medium🔒---
147362Qualcomm Snapdragon Auto SIB Read out-of-bounds write [CVE-2019-10525]medium🔒---
147361Qualcomm Snapdragon Auto iWLAN use after free [CVE-2019-10518]medium🔒---
147360Qualcomm Snapdragon Auto Thread double free [CVE-2019-10517]medium🔒---
147359Qualcomm Snapdragon Auto MM out-of-bounds read [CVE-2019-10516]medium🔒---
147358Qualcomm Snapdragon Auto SPDM Command null pointer dereferencelow🔒---
147357Qualcomm Snapdragon Auto MT Secondary PDP Request memory corruptionmedium🔒---
147356Qualcomm Snapdragon Auto SMS OTA Message out-of-bounds read [CVE-2019-10487]medium🔒---
147355Qualcomm Snapdragon Auto information disclosure [CVE-2019-10482]low🔒---
147354Qualcomm Snapdragon Auto WMI FW Event array index [CVE-2019-10481]medium🔒---
147353Qualcomm Snapdragon Auto WMI Firmware Event buffer overflow [CVE-2019-10480]medium🔒---
147352Qualcomm Snapdragon Auto Broadcast qdf_nbuf_trim_tail buffer overflowmedium🔒---
147351JBoss AS 7 Community Release Security Context Propagation privileges managementmedium🔒---
147350SonicWALL SMA100 sql injection [CVE-2019-7481]low🔒---
147349elog Proxy confused deputy [CVE-2019-3996]medium🔒---
147348elog null pointer dereference [CVE-2019-3995]low🔒---
147347elog retrieve_url use after freelow🔒---
147346elog Credentials information disclosure [CVE-2019-3993]low🔒---
147345elog Configuration File information disclosure [CVE-2019-3992]low🔒---
147344Joomla CMS sql injection [CVE-2019-19846]medium🔒---
147343Joomla CMS Access Check Path path traversallow🔒---
147342Zulip Server Image Thumbnail redirect [CVE-2019-19775]medium🔒---
147341Alt-N MDaemon Attachment cross site scripting [CVE-2019-19497]low🔒---
147340Linux Kernel io-wq.c privileges managementmedium🔒---
147339Advantech DiagAnywhere Server stack-based overflow [CVE-2019-18257]medium🔒---
147338TIBCO Spotfire Analytics Platform for AWS Marketplace Spotfire Library Reflected cross site scritinglow🔒---
147337TIBCO Spotfire Analytics Platform for AWS Marketplace Data Access Layer Credentials information disclosurelow🔒---
147336TIBCO Spotfire Analytics Platform for AWS Marketplace Data Access Layer information disclosurelow🔒---
147335TIBCO Spotfire Analyst privileges management [CVE-2019-17334]medium🔒---
147334JIRA WorkflowResource authorizationlow🔒---
147333Micro Focus Arcsight Logger cross-site request forgery [CVE-2019-11657]low🔒---
147332SAP Treasury/Risk Management authorization [CVE-2019-0384]medium🔒---
147331SAP Treasury/Risk Management Transaction Management authorizationmedium🔒---
147330Linux Kernel Thread sendmsg privileges managementmedium🔒---
147329TYPO3 QueryGenerator sql injectionmedium🔒---
147328TYPO3 Deserialization QueryView privileges managementmedium🔒---
147327TYPO3 Extension Manager path traversal [CVE-2019-19848]medium🔒---
147326Libspiro spiro.c spiro_to_bpath0 out-of-bounds writemedium🔒---
147325SPIP medias input validationmedium🔒---
147324Linux Kernel btrfs Filesystem volumes.c __btrfs_map_block out-of-bounds writemedium🔒---
147323Linux Kernel f2fs Filesystem Image recovery.c null pointer dereferencelow🔒---
147322Linux Kernel f2fs Filesystem Image __remove_dirty_segment out-of-bounds writemedium🔒---
147321Linux Kernel btrfs Filesystem mutex.c __mutex_lock use after freemedium🔒---
147320Contao Back End unrestricted upload [CVE-2019-19745]medium🔒---
147319Contao Output escape output [CVE-2019-19714]medium🔒---
147318Contao Permission default permission [CVE-2019-19712]low🔒---
147317Ivanti Workspace Control Managed Application Security default permissionmedium🔒---
147316verot.net class.upload File Extension class.upload.php unrestricted uploadmedium🔒---
147315Nalpeiron Licensing Service NLSSRV32.EXE permission assignmentmedium🔒---
147314Simplifile RecordFusion information disclosure [CVE-2019-19264]medium🔒---
147313Divisa Proxia Suite/SparkSpace/Proxia PHR Java Deserialization deserializationmedium🔒---
147312Barco ClickShare Button R9861500D01 TLS Connection missing encryptionlow🔒---
147311Barco ClickShare Button R9861500D01 Credential Management insufficiently protected credentialslow🔒---
147310Barco ClickShare Button R9861500D01 DLL Loader Clickshare_For_Windows.exe untrusted search pathmedium🔒---
147309Barco ClickShare Huddle CS-100/ClickShare Huddle CS-200 Credential Management missing encryptionlow🔒---
147308Barco ClickShare Button R9861500D01 Integrity Check input validationlow🔒---
147307Acer Quick Access QAAdminAgent.exe untrusted search pathmedium🔒---
147306Alauda Kubernetes Support Plugin improper authorization [CVE-2019-16576]medium🔒---
147305Alauda Kubernetes Support Plugin cross-site request forgery [CVE-2019-16575]low🔒---
147304Alauda DevOps Pipeline Plugin Permission Check improper authorizationmedium🔒---
147303Alauda DevOps Pipeline Plugin cross-site request forgery [CVE-2019-16573]low🔒---
147302Weibo Plugin Global Configuration Credentials credentials storagelow🔒---
147301RapidDeploy Plugin Permission Check improper authorization [CVE-2019-16571]medium🔒---
147300RapidDeploy Plugin cross-site request forgery [CVE-2019-16570]low🔒---
147299Mantis Plugin cross-site request forgery [CVE-2019-16569]low🔒---
147298SCTMExecutor Plugin Global Configuration Credentials cleartext transmissionlow🔒---
147297Team Concert Plugin Permission Check Credentials improper authorizationlow🔒---
147296Team Concert Plugin Permission Check improper authorization [CVE-2019-16566]medium🔒---
147295Team Concert Plugin cross-site request forgery [CVE-2019-16565]low🔒---
147294Pipeline Aggregator View Plugin Stored cross site scripting [CVE-2019-16564]low🔒---
147293Mission Control Plugin Escape Job Stored cross site scriptinglow🔒---
147292buildgraph-view Plugin Stored cross site scripting [CVE-2019-16562]low🔒---
147291WebSphere Deployer Plugin SSL/TLS Certificate Validator certificate validationmedium🔒---
147290WebSphere Deployer Plugin cross-site request forgery [CVE-2019-16560]low🔒---
147289WebSphere Deployer Plugin Permission Check improper authorizationmedium🔒---
147288Spira Importer Plugin TLS Certificate Validation certificate validationmedium🔒---
147287Redgate SQL Change Automation Plugin Configuration File config.xml Credentials credentials storagelow🔒---
147286Rundeck Plugin Configuration File config.xml Credentials credentials storagelow🔒---
147285Build Failure Analyzer Plugin Regular Expression resource consumptionmedium🔒---
147284Build Failure Analyzer Plugin Regular Expression improper authorizationmedium🔒---
147283Build Failure Analyzer Plugin Regular Expression cross-site request forgerylow🔒---
147282Gerrit Trigger Plugin Permission Check improper authorizationmedium🔒---
147281Gerrit Trigger Plugin cross-site request forgery [CVE-2019-16551]low🔒---
147280Maven Release Plugin Connection Test Form cross-site request forgerylow🔒---
147279Maven Release Plugin XML Parser xml external entity referencemedium🔒---
147278CentOS-WebPanel.com CentOS Web Panel sess_xxxxxx insufficiently protected credentialslow🔒---
147277Application Links ListEntityLinksServlet default permissionlow🔒---
147276CentOS-WebPanel.com CentOS Web Panel tmp insufficiently protected credentialslow🔒---
147275Atlassian Crowd Demo Application cross-site request forgery [CVE-2017-18107]low🔒---
147274Docker Engine Manifest input validation [CVE-2014-8179]medium🔒--🔒
147273Docker Engine Image Layer Cache Poisoning input validationmedium🔒--🔒
147272ownCloud sharing.php cross site scriptinglow🔒---
147271Mahara cross site scripting [CVE-2012-2237]medium🔒--🔒
147270Huawei AR3600 information disclosure [CVE-2019-5259]low🔒---
147269IBM MQ/MQ Appliance Message denial of service [CVE-2019-4560]low🔒---
147268IBM API Connect Developer Portal Password information disclosurelow🔒---
147267Views Dynamic Fields Module views_handler_filter_dynamic_fields.inc code injectionmedium🔒---
147266Nitro Free PDF Reader Unicode npdf.dll PDAnnotHandlerDestroyData2+0xa08a out-of-bounds readmedium🔒---
147265Cyrus IMAP Sieve Script Command lmtp_sieve.c autosieve_createfolder input validationmedium🔒---
147264D-Link DIR-615 Portal input validation [CVE-2019-19743]medium🔒---
147263Roxy Fileman RENAMEFILE path traversalmedium🔒---
147262Rumpus FTP Web File Manager Login Page Reflected cross site scriptinglow🔒---
147261knot-resolver DNS Reply algorithmic complexity [CVE-2019-19331]low🔒---
147260Barco ClickShare Button R9861500D01 Certificate Private Key information disclosurelow🔒---
147259Bridge ClickShare Button R9861500D01 Dongre Bridge Program os command injectionmedium🔒---
147258Barco ClickShare Button R9861500D01 Debug Interface insufficiently protected credentialsmedium🔒---
147257Barco ClickShare Button R9861500D01 JTAG input validation [CVE-2019-18827]medium🔒---
147256Barco ClickShare Button R9861500D01 Certificate Validation certificate validationlow🔒---
147255Dell XPS 13 2-in-1 BIOS Configuration config [CVE-2019-18579]medium🔒---
147254Omron PLC CJ/PLC CS Lock Remote Code Execution [CVE-2019-18269]medium🔒---
147253Omron PLC CS/PLC CJ/PLC NJ Brute Force excessive authenticationlow🔒---
147252Omron PLC CJ/PLC CS authentication spoofing [CVE-2019-18259]medium🔒---
147251Trend Micro Deep Security Service Quick Setup Cloud Formation Template authorizationmedium🔒---
147250excon Gem Persistent Connection resource control [CVE-2019-16779]low🔒---
147249TensorFlow UnsortedSegmentSum heap-based overflowmedium🔒---
147248Intel NUC Firmware out-of-bounds write [CVE-2019-14612]medium🔒---
147247Intel NUC Firmware integer overflow [CVE-2019-14611]low🔒---
147246Intel NUC Access Control privileges management [CVE-2019-14610]medium🔒---
147245Intel NUC Firmware Validation input validation [CVE-2019-14609]medium🔒---
147244Intel NUC memory corruption [CVE-2019-14608]medium🔒---
147243Intel CPU unusual condition [CVE-2019-14607]medium🔒---
147242Intel SCS Platform Discovery Utility Installer default permissionmedium🔒---
147241Intel Quartus Prime Pro Edition FPGA Kernel Driver null pointer dereferencelow🔒---
147240Intel Quartus Prime Pro Edition License Server default permissionmedium🔒---
147239Control Center-I privileges management [CVE-2019-14599]medium🔒---
147238Intel RST default permission [CVE-2019-14568]medium🔒---
147237Omron PLC CJ/PLC CS authentication replay [CVE-2019-13533]medium🔒---
147236SolarWinds Serv-U FTP Server Web UI Stored cross site scriptinglow🔒---
147235SolarWinds Serv-U FTP Server Web UI injection [CVE-2019-13181]medium🔒---
147234Apache Incubator Superset SQLLab information disclosure [CVE-2019-12414]low🔒---
147233Apache Incubator Superset Database Metadata information disclosurelow🔒---
147232Intel FPGA SDK for OpenCL Pro Edition Kernel Driver unusual conditionlow🔒---
147231Intel CPU unusual condition [CVE-2019-11157]medium🔒---
147230Intel Ethernet I218 Adapter Driver Memory Protection information disclosurelow🔒---
147229Yarn Package Installer link following [CVE-2019-10773]medium🔒---
147228Intel Network Adapter Linux Administrative Tools privileges managementmedium🔒---
147227Intel Dynamic Platform/Thermal Framework default permission [CVE-2019-0134]medium🔒---
147226Puppet Agent SSL Certificate Valu certificate validation [CVE-2018-11751]medium🔒---
147225Linux Kernel timer.c snd_timer_close_locked use after freemedium🔒---
147224Xfig fig2dev read.c read_colordef out-of-bounds writemedium🔒---
147223python-requests-Kerberos Mutual Authentication improper authenticationmedium🔒---
147222ImageMagick infinite loop [CVE-2014-8561]low🔒---
147221ZF2014-0 View Helper cross site scripting [CVE-2014-4913]low🔒---
147220eDeploy Temp File race condition [CVE-2014-3701]medium🔒---
147219eDeploy cPickle Deserialization deserialization [CVE-2014-3699]medium🔒---
147218JBoss KeyCloak URL Validator redirect [CVE-2014-3652]medium🔒---
147217jersey SAX Parser xml external entity reference [CVE-2014-3643]medium🔒---
147216CloudForms Management Engine Registration top_output.log Log log filelow🔒---
147215Huawei Product insufficient verification of data authenticitymedium🔒---
147214Huawei S5700/S6700 input validation [CVE-2019-5290]low🔒---
147213Huawei CampusInsight Gauss100 OLTP Database out-of-bounds readlow🔒---
147212Huawei CloudUSM-EUA information disclosure [CVE-2019-5277]low🔒---
147211Huawei Mate 9 Applock information disclosure [CVE-2019-5264]low🔒---
147210Huawei Y9/Honor View 20 TD-SCDMA Message input validation [CVE-2019-5260]low🔒---
147209Huawei eSpace U1981 buffer overflow [CVE-2019-5258]medium🔒---
147208Huawei AP2000 Management buffer overflow [CVE-2019-5257]medium🔒---
147207Huawei eSpace U1981 resource consumption [CVE-2019-5256]low🔒---
147206Huawei eSpace U1981 null pointer dereference [CVE-2019-5255]medium🔒---
147205Huawei eSpace U1981 Message out-of-bounds read [CVE-2019-5254]medium🔒---
147204Huawei E5572-855 improper authentication [CVE-2019-5253]medium🔒---
147203Huawei Y9/Honor 8X/Honor 9 Lite/Honor 9i/Y6 Pro Applock improper authenticationmedium🔒---
147202Huawei Smartphone path traversal [CVE-2019-5251]low🔒---
147201Huawei Mate 20 Pro authorization [CVE-2019-5250]medium🔒---
147200Huawei CloudEngine 12800 release of resource [CVE-2019-5248]low🔒---
147199Huawei Smart Phone null pointer dereference [CVE-2019-5235]low🔒---
147198IBM Case Manager Case Builder cross site scriting [CVE-2019-4426]low🔒---
147197Yabasic Basic Source Code function.c myformat out-of-bounds writemedium🔒---
147196Samurai Build File util.c canonpath out-of-bounds writemedium🔒---
147195miekg Go DNS Random Number Generator weak prng [CVE-2019-19794]medium🔒---
147194Cyxtera AppGate SDP Client privileges management [CVE-2019-19793]medium🔒---
147193Telerik UI for ASP.NET AJAX RadChart path traversal [CVE-2019-19790]medium🔒---
147192ATasm m65 File setparse.c get_signed_expression out-of-bounds writemedium🔒---
147191ATasm m65 File setparse.c parse_expr out-of-bounds writemedium🔒---
147190ATasm m65 File asm.c to_comma out-of-bounds writemedium🔒---
147189AceaXe Plus FTP Client buffer overflow [CVE-2019-19782]medium🔒---
147188libsixel loader.c load_sixel out-of-bounds readmedium🔒---
147187stb Image Loader stb_image.h stbi__load_main out-of-bounds readmedium🔒---
147186Zoho ManageEngine EventLog Analyzer runquery.do MD5 information disclosurelow🔒---
147185Dovecot Push Notification Driver null pointer dereference [CVE-2019-19722]low🔒---
147184VeraCrypt VeraCryptExpander.exe privileges managementmedium🔒---
147183Huawei Products risky encryption [CVE-2019-19397]low🔒---
147182Envoy Route Manager null pointer dereference [CVE-2019-18838]low🔒---
147181Envoy HTTP Header memory corruption [CVE-2019-18802]medium🔒---
147180Envoy Access Control memory corruption [CVE-2019-18801]medium🔒---
147179quiz-master-next Plugin quiz-options-page.php Reflected cross site scriptinglow🔒---
147178Petwant PF-103/Petalk AI libcommon.so processCommandUploadLog os command injectionhigh🔒---
147177eGain Web Email API 11+ Message email) Header Injection input validationmedium🔒---
147176npm CLI Install Script path traversal [CVE-2019-16777]medium🔒---
147175npm CLI Install Script path traversal [CVE-2019-16776]medium🔒---
147174npm CLI Install Script symlink [CVE-2019-16775]medium🔒---
147173Petwant PF-103/Petalk AI libcommon.so processCommandSetMac os command injectionhigh🔒---
147172Petwant PF-103/Petalk AI libcommon.so processCommandUploadSnapshot out-of-bounds writehigh🔒---
147171Petwant PF-103/Petalk AI libcommon.so processCommandUploadLog out-of-bounds writehigh🔒---
147170Petwant PF-103/Petalk AI Telnet Service hard-coded credentialshigh🔒---
147169Petwant PF-103/Petalk AI libcommon.so processCommandSetUid os command injectionhigh🔒---
147168Petalk PF-103/Petalk AI Communication signature verificationmedium🔒---
147167Petwant PF-103/Petalk AI udpServerSys Service authorization [CVE-2019-16731]medium🔒---
147166Petwant PF-103/Petalk AI libcommon.so processCommandUpgrade input validationhigh🔒---
147165TemaTres Reflected cross site scripting [CVE-2019-14344]low🔒---
147164SAML Single Sign On Plugin input validation [CVE-2019-13347]medium🔒---
147163duplicity SSL Certificate Verification Service certificate validationmedium🔒---
147162Pen Temp File webfile.html exposure of resourcemedium🔒---
147161suPHP Source Highlighting improper authentication [CVE-2014-1867]medium🔒---
147160hammer_cli_foreman Gem foreman.yml insufficiently protected credentialslow🔒---
147159qpid-cpp ACL Policy resource consumption [CVE-2014-0212]low🔒---
147158cfme CSRF Protection cross-site request forgery [CVE-2014-0197]low🔒---
147157MCollective Installation hard-coded credentials [CVE-2014-0175]medium🔒---
147156Apple Safari WebKit integer underflow [CVE-2019-5144]medium🔒---
147155Hostapd 802.11w Security State input validation [CVE-2019-5062]low🔒---
147154Hostapd IAPP Location Update input validation [CVE-2019-5061]low🔒---
147153Advantech WebAccess stack-based overflow [CVE-2019-3951]medium🔒---
147152lodahs input validation [CVE-2019-19771]medium🔒---
147151Linux Kernel inode.c debugfs_remov use after freemedium🔒---
147150Linux Kernel lock.h perf_trace_lock_acquire use after freemedium🔒---
147149Linux Kernel blktrace.c __blk_add_trace use after freemedium🔒---
147148Linux Kernel inode.c ext4_xattr_set_entry use after freemedium🔒---
147147Bitwarden Server inadequate encryption [CVE-2019-19766]medium🔒---
147146Siemens SiNVR 3 Central Control Server SFTP Service routine [CVE-2019-18342]medium🔒---
147145Siemens SiNVR 3 Central Control Server improper authenticationmedium🔒---
147144Siemens SiNVR 3 Central Control Server Credentials information disclosurelow🔒---
147143Siemens SiNVR 3 Central Control Server HTTP Service missing authenticationmedium🔒---
147142Siemens SiNVR 3 Central Control Server XML Data path traversalmedium🔒---
147141Siemens SiNVR 3 Central Control Server XML Data improper authenticationmedium🔒---
147140Siemens SPPA-T3000 Application Server Service Port 80 information disclosurelow🔒---
147139Siemens SPPA-T3000 Application Server Service Port 8090 Username information disclosurelow🔒---
147138Siemens SPPA-T3000 Application Server Service Port 8090 Directory information disclosurelow🔒---
147137Siemens SPPA-T3000 Application Server Web Services Directory information disclosurelow🔒---
147136Siemens SPPA-T3000 Application Server Service Port 1099 information disclosurelow🔒---
147135Siemens SPPA-T3000 MS3000 Migration Server Service Port 5010 heap-based overflowmedium🔒---
147134Siemens SPPA-T3000 MS3000 Migration Server Service Port 5010 heap-based overflowmedium🔒---
147133Siemens SPPA-T3000 MS3000 Migration Server Service Port 5010 heap-based overflowmedium🔒---
147132Siemens SPPA-T3000 MS3000 Migration Server Service Port 5010 heap-based overflowmedium🔒---
147131Siemens SPPA-T3000 MS3000 Migration Server Service Port 5010 heap-based overflowmedium🔒---
147130Siemens SPPA-T3000 MS3000 Migration Server Service Port 5010 heap-based overflowmedium🔒---
147129Siemens SPPA-T3000 MS3000 Migration Server Service Port 5010 heap-based overflowmedium🔒---
147128Siemens SPPA-T3000 MS3000 Migration Server Service Port 5010 heap-based overflowmedium🔒---
147127Siemens SPPA-T3000 MS3000 Migration Server Service Port 5010 improper authenticationmedium🔒---
147126Siemens SPPA-T3000 MS3000 Migration Server Service Port 5010 improper authenticationlow🔒---
147125Siemens SPPA-T3000 Application Server File Upload improper authenticationmedium🔒---
147124Siemens SPPA-T3000 Application Server RMI improper authenticationlow🔒---
147123Siemens SPPA-T3000 Application Server RMI improper authenticationlow🔒---
147122Siemens SPPA-T3000 Application Server RMI improper authenticationlow🔒---
147121Siemens SPPA-T3000 Application Server Service Port 1099 deserializationmedium🔒---
147120Siemens SPPA-T3000 Application Server Service Port 8888 improper authenticationmedium🔒---
147119Siemens SPPA-T3000 Application Server RMI improper authenticationmedium🔒---
147118Siemens SPPA-T3000 MS3000 Migration Server RPC Service unrestricted uploadmedium🔒---
147117Siemens SPPA-T3000 MS3000 Migration Server RPC Service improper authenticationlow🔒---
147116Siemens SPPA-T3000 MS3000 Migration Server Service Port 7061 denial of servicelow🔒---
147115Siemens SPPA-T3000 MS3000 Migration Server Service Port 7061 stack-based overflowlow🔒---
147114Siemens SPPA-T3000 MS3000 Migration Server access control [CVE-2019-18309]medium🔒---
147113Siemens SPPA-T3000 MS3000 Migration Server access control [CVE-2019-18308]medium🔒---
147112Siemens SPPA-T3000 MS3000 Migration Server Service Port 5010 out-of-bounds readlow🔒---
147111Siemens SPPA-T3000 MS3000 Migration Server Service Port 5010 out-of-bounds readlow🔒---
147110Siemens SPPA-T3000 MS3000 Migration Server Service Port 5010 integer overflowlow🔒---
147109Siemens SPPA-T3000 MS3000 Migration Server Service Port 5010 integer overflowlow🔒---
147108Siemens SPPA-T3000 MS3000 Migration Server Service Port 5010 integer overflowlow🔒---
147107Siemens SPPA-T3000 MS3000 Migration Server Service Port 5010 integer overflowlow🔒---
147106Siemens SPPA-T3000 MS3000 Migration Server Service Port 5010 integer overflowlow🔒---
147105Siemens SPPA-T3000 MS3000 Migration Server Service Port 5010 integer overflowlow🔒---
147104Siemens SPPA-T3000 MS3000 Migration Server Service Port 5010 integer overflowlow🔒---
147103Siemens SPPA-T3000 MS3000 Migration Server Service Port 5010 integer overflowlow🔒---
147102Siemens SPPA-T3000 MS3000 Migration Server heap-based overflowmedium🔒---
147101Siemens SPPA-T3000 MS3000 Migration Server Service Port 5010 heap-based overflowmedium🔒---
147100Siemens SPPA-T3000 MS3000 Migration Server Service Port 5010 heap-based overflowmedium🔒---
147099Siemens SPPA-T3000 MS3000 Migration Server Service Port 5010 heap-based overflowlow🔒---
147098Siemens SPPA-T3000 MS3000 Migration Server Service Port 5010 heap-based overflowmedium🔒---
147097Siemens SPPA-T3000 MS3000 Migration Server Service Port 5010 heap-based overflowlow🔒---
147096Siemens SPPA-T3000 MS3000 Migration Server Service Port 5010 heap-based overflowlow🔒---
147095Siemens SPPA-T3000 MS3000 Migration Server Service Port 5010 heap-based overflowlow🔒---
147094Siemens SPPA-T3000 MS3000 Migration Server Service Port 5010 heap-based overflowmedium🔒---
147093Siemens SPPA-T3000 Application Server RMI interface unrestricted uploadmedium🔒---
147092Siemens SPPA-T3000 Application Server Directory improper authenticationlow🔒---
147091Siemens SPPA-T3000 Application Server Directory improper authenticationlow🔒---
147090Siemens SPPA-T3000 Application Server RMI Communication cleartext transmissionlow🔒---
147089Siemens SPPA-T3000 Application Server AdminService improper authenticationmedium🔒---
147088Siemens SPPA-T3000 Application Server AdminService deserializationmedium🔒---
147087phpfastcache Cookie Driver code injection [CVE-2019-16774]medium🔒---
147086Siemens SiNVR 3 Central Control Server User Configuration Menu Password information disclosurelow🔒---
147085Siemens EN100 Ethernet Module DNP3 Web Server path traversallow🔒---
147084Siemens EN100 Ethernet Module DNP3 Web Interface cross site scriptinglow🔒---
147083Siemens EN100 Ethernet Module DNP3 Webserver memory corruptionmedium🔒---
147082XHQ Web Application input validation [CVE-2019-13932]medium🔒---
147081XHQ Web Interface cross site scriting [CVE-2019-13931]medium🔒---
147080XHQ Web Interface cross-site request forgery [CVE-2019-13930]low🔒---
147079Apache SpamAssassin Message resource consumption [CVE-2019-12420]low🔒---
147078Apache SpamAssassin CF File os command injection [CVE-2018-11805]medium🔒---
147077IBM DB2 High Performance Unload privileges management [CVE-2019-4606]low🔒---
147076minerstat msOS SSH Key improper authentication [CVE-2019-19750]medium🔒---
147075Electronic Arts Origin privileges management [CVE-2019-19248]medium🔒---
147074Electronic Arts Origin privileges management [CVE-2019-19247]medium🔒---
147073Scoutnet Kalender Plugin cross site scripting [CVE-2019-19198]low🔒---
147072DAViCal Reflected cross site scripting [CVE-2019-18345]low🔒---
147071Intesync Solismed Stored inadequate encryption [CVE-2019-17428]low🔒---
147070Cacti Deserialization functions.php deserializationmedium🔒---
147069Intesync Solismed information disclosure [CVE-2019-16246]medium🔒---
147068Intesync Solismed File Upload unrestricted upload [CVE-2019-15936]medium🔒---
147067Intesync Solismed cross site scripting [CVE-2019-15935]low🔒---
147066Intesync Solismed cross-site request forgery [CVE-2019-15934]low🔒---
147065Intesync Solismed sql injection [CVE-2019-15933]medium🔒---
147064Intesync Solismed Access Control permission assignment [CVE-2019-15932]medium🔒---
147063Intesync Solismed path traversal [CVE-2019-15931]medium🔒---
147062Intesync Solismed improper restriction of rendered ui layerslow🔒---
1470613scale Session Cookie httponly insertion of sensitive information into sent datalow🔒---
147060Siemens SIMATIC S7-1200 CPU UART routine [CVE-2019-13945]medium🔒---
147059Desigo PXC00-E.D Web Server denial of service [CVE-2019-13927]low🔒---
147058Qualcomm Snapdragon Auto Image memory corruption [CVE-2019-2338]medium🔒---
147057Qualcomm Snapdragon Auto EMM out-of-bounds read [CVE-2019-2337]medium🔒---
147056Qualcomm Snapdragon Auto HLOS buffer overflow [CVE-2019-2321]medium🔒---
147055Qualcomm Snapdragon Auto array index [CVE-2019-2320]medium🔒---
147054Qualcomm Snapdragon Auto HLOS privileges management [CVE-2019-2319]medium🔒---
147053Qualcomm Snapdragon Auto out-of-bounds read [CVE-2019-2310]medium🔒---
147052Qualcomm Snapdragon Auto TZ buffer overflow [CVE-2019-2288]medium🔒---
147051Qualcomm Snapdragon Connectivity Driver information disclosuremedium🔒---
147050Qualcomm Snapdragon Auto QDCM API integer overflow [CVE-2019-10592]medium🔒---
147049Qualcomm Snapdragon Auto Snapshot buffer overflow [CVE-2019-10571]medium🔒---
147048Qualcomm Snapdragon Auto OGG File out-of-bounds read [CVE-2019-10559]medium🔒---
147047Qualcomm Snapdragon Auto buffer overflow [CVE-2019-10555]medium🔒---
147046Qualcomm Snapdragon Auto LLC Support null pointer dereferencelow🔒---
147045Qualcomm Snapdragon Auto Data Truncation integer overflow [CVE-2019-10530]medium🔒---
147044Qualcomm Snapdragon Mobile/Snapdragon Voice / Music GPU Memory resource consumptionlow🔒---
147043Qualcomm Snapdragon Auto GSNDCP Compressed Mode array index [CVE-2019-10511]medium🔒---
147042Qualcomm Snapdragon Auto Camera toctou [CVE-2019-10494]medium🔒---
147041Qualcomm Snapdragon Auto buffer overflow [CVE-2019-10493]low🔒---
147040Qualcomm Snapdragon Auto Compressed Data infinite loop [CVE-2019-10485]low🔒---
147039Qualcomm Snapdragon Auto Command use after free [CVE-2019-10484]medium🔒---
147038Work Time Calendar App cross site scripting [CVE-2019-19748]low🔒---
147037Xfig fig2dev arrow.c make_arrow integer overflowmedium🔒---
147036Octeth Oempro Campaign.Get sql injectionmedium🔒---
147035OpenBSD setuid Program ld.so _dl_setup_env privileges managementmedium🔒---
147034SnakeYAML Alias xml entity expansion [CVE-2017-18640]medium🔒---
147033Microsoft Visual Studio Git input validation [CVE-2019-1387]medium🔒---
147032Microsoft Visual Studio Git input validation [CVE-2019-1354]medium🔒---
147031Microsoft Visual Studio Git input validation [CVE-2019-1352]medium🔒---
147030Microsoft Visual Studio Git input validation [CVE-2019-1351]medium🔒---
147029Microsoft Visual Studio Git input validation [CVE-2019-1350]medium🔒---
147028Microsoft Visual Studio Git input validation [CVE-2019-1349]medium🔒---
147027Avaya IP Office Application Server Web UI cross site scriptinglow🔒---
147026LEADTOOLS JPEG2000 File out-of-bounds write [CVE-2019-5154]medium🔒---
147025LEADTOOLS DICOM libltdic.so integer overflowmedium🔒---
147024LEADTOOLS DICOM Image out-of-bounds write [CVE-2019-5092]medium🔒---
147023LEADTOOLS libltdic.so infinite looplow🔒---
147022LEADTOOLS libltdic.so out-of-bounds readlow🔒---
147021LEADTOOLS DICOM Parser libltdic.so integer overflowmedium🔒---
147020IBM Spectrum Scale command injection [CVE-2019-4715]medium🔒---
147019IBM Spectrum Scale Web UI cross site scriting [CVE-2019-4665]low🔒---
147018Blink XT2 Sync Module Network Configuration os command injectionmedium🔒---
147017Blink XT2 Sync Module WiFi os command injection [CVE-2019-3988]medium🔒---
147016Blink XT2 Sync Module WiFi os command injection [CVE-2019-3987]medium🔒---
147015Blink XT2 Sync Module WiFi os command injection [CVE-2019-3986]medium🔒---
147014Blink XT2 Sync Module WiFi os command injection [CVE-2019-3985]medium🔒---
147013Blink XT2 Sync Module UART insufficiently protected credentialsmedium🔒---
147012bson-objectid ObjectID input validationmedium🔒---
147011sysstat sa_common.c check_file_actlst double freemedium🔒---
147010Zoho ManageEngine Applications Manager Agent.java sql injectionmedium🔒---
147009Zoho ManageEngine Applications Manager SyncEventServlet.java doGet sql injectionmedium🔒---
147008Xen VMX VMEntry Check input validation [CVE-2019-19583]low🔒---
147007Xen Bit Iteration infinite loop [CVE-2019-19582]low🔒---
147006Xen Bit Iteration memory corruption [CVE-2019-19581]low🔒---
147005Xen Incomplete Fix race condition [CVE-2019-19580]medium🔒---
147004Xen Pagetable input validation [CVE-2019-19578]low🔒---
147003Xen Pagetable input validation [CVE-2019-19577]medium🔒---
147002Squiz Matrix CMS File Upload form_question_type_file_upload.inc input validationmedium🔒---
147001Squiz Matrix CMS page_remote_content.inc deserializationmedium🔒---
147000Symantec Messaging Gateway server-side request forgery [CVE-2019-18379]medium🔒---
146999Symantec Messaging Gateway cross site scripting [CVE-2019-18378]low🔒---
146998Symantec Messaging Gateway privileges management [CVE-2019-18377]medium🔒---
146997Reliable Controls LicenseManager unquoted search path [CVE-2019-18245]medium🔒---
146996Safenet Sentinel LDK License Manager Service link following [CVE-2019-18232]medium🔒---
146995Micro Focus AcuToWeb File Download information disclosure [CVE-2019-17087]low🔒---
146994Atlassian FishEye/Crucible removeStarAjax.do authorizationmedium🔒---
146993Atlassian FishEye/Crucible branchreview cross site scriptinglow🔒---
146992Atlassian FishEye/Crucible Branch cross site scripting [CVE-2019-15007]low🔒---
146991Linux/FreeBSD/OpenBSD/MacOS/iOS/Android VPN channel accessiblemedium🔒---
146990wolfSSL/wolfCrypt DSA Nonce Generator dsa.c Key missing encryptionlow🔒---
146989enshrined svg-sanitize cross site scripting [CVE-2019-10772]medium🔒---
146988Puppet Enterprise root_configuration Password log filelow🔒---
146987Puppet Enterprise Express Install hard-coded credentials [CVE-2019-10694]medium🔒---
146986SAP Enable Now User information disclosure [CVE-2019-0405]low🔒---
146985SAP Enable Now Error Message information disclosure [CVE-2019-0404]low🔒---
146984SAP Enable Now input validation [CVE-2019-0403]medium🔒---
146983SAP Adaptive Server Enterprise information disclosure [CVE-2019-0402]low🔒---
146982SAP Project Management Project Dashboard information disclosurelow🔒---
146981SAP BusinessObjects Business Intelligence Platform cross-site request forgerylow🔒---
146980SAP BusinessObjects Business Intelligence Platform Fiori BI Launchpad Stored cross site scriptinglow🔒---
146979DBD::PgPP sql injection [CVE-2014-7257]medium🔒---
146978openshift os command injection [CVE-2014-0163]medium🔒---
IDTitleVulDBCVSSSecuniaXForceNessus
146977Foreman input validation [CVE-2014-0091]low🔒---
146976katello-headpin REST API cross-site request forgery [CVE-2014-0026]low🔒---
146975node-connect Incomplete Fix CVE-2013-7370 cross site scriptinglow🔒---
146974Cart66 Lite Plugin products.php cross site scriptinglow🔒---
146973Zabbix sql injection [CVE-2013-5743]medium🔒--🔒
146972Puppet Enterprise cross site scripting [CVE-2013-4968]low🔒--🔒
146971MediaWiki API IEUrlExtension.php cross site scriptinglow🔒--🔒
146970AirLive POE-2600HD resource consumption [CVE-2013-3691]low🔒---
146969Grandstream GXV3500 Telnet Service hard-coded credentials [CVE-2013-3542]medium🔒---
146968Adobe Acrobat Reader input validation [CVE-2019-16453]medium🔒---
146967Adobe Acrobat Reader privileges management [CVE-2019-16444]medium🔒---
146966Adobe Acrobat Reader null pointer dereference [CVE-2019-16463]medium🔒---
146965Adobe Acrobat Reader null pointer dereference [CVE-2019-16460]medium🔒---
146964Adobe Acrobat Reader null pointer dereference [CVE-2019-16455]medium🔒---
146963Adobe Acrobat Reader null pointer dereference [CVE-2019-16446]medium🔒---
146962Adobe Acrobat Reader memory corruption [CVE-2019-16462]medium🔒---
146961Adobe Acrobat Reader out-of-bounds write [CVE-2019-16451]medium🔒---
146960Adobe Acrobat Reader use after free [CVE-2019-16464]medium🔒---
146959Adobe Acrobat Reader use after free [CVE-2019-16459]medium🔒---
146958Adobe Acrobat Reader use after free [CVE-2019-16452]medium🔒---
146957Adobe Acrobat Reader use after free [CVE-2019-16448]medium🔒---
146956Adobe Acrobat Reader use after free [CVE-2019-16445]medium🔒---
146955Adobe Acrobat Reader out-of-bounds write [CVE-2019-16454]medium🔒---
146954Adobe Acrobat Reader out-of-bounds write [CVE-2019-16450]medium🔒---
146953Adobe Acrobat Reader out-of-bounds read [CVE-2019-16465]low🔒---
146952Adobe Acrobat Reader out-of-bounds read [CVE-2019-16461]low🔒---
146951Adobe Acrobat Reader out-of-bounds read [CVE-2019-16458]low🔒---
146950Adobe Acrobat Reader out-of-bounds read [CVE-2019-16457]low🔒---
146949Adobe Acrobat Reader out-of-bounds read [CVE-2019-16456]low🔒---
146948Adobe Acrobat Reader information disclosure [CVE-2019-16449]low🔒---
146947McAfee Tech Check Microsoft Windows Client privileges managementmedium🔒---
146946AWS Firecracker buffer overflow [CVE-2019-18960]medium🔒---
146945Progress Telerik UI for ASP.NET AJAX .NET Deserialization RadAsyncUpload deserializationmedium🔒---
146944node-connect Middleware cross site scripting [CVE-2013-7370]low🔒---
146943JBossWeb Bayeux Reflected cross site scripting [CVE-2013-6495]low🔒---
146942omniauth-facebook Gem Access Token improper authentication [CVE-2013-4593]medium🔒---
146941Orca Python Module input validation [CVE-2013-4245]medium🔒--🔒
146940SmokePing Incomplete Fix CVE-2012-0790 cross site scripting [CVE-2013-4158]low🔒--🔒
146939Google Chrome Javascript memory corruption [CVE-2019-5843]medium🔒---
146938Google Chrome Javascript memory corruption [CVE-2019-5841]medium🔒---
146937libxslt xsltNumberFormatGetMultipleLevel type confusionmedium🔒---
146936Yabasic Basic Source Code flex.c yylex memory corruptionmedium🔒---
146935Tableau Server embeddedAuthRedirect cross site scriptinglow🔒---
146934MediaWiki Protection Mechanism redirect [CVE-2019-19709]medium🔒---
146933VisualEditor Extension Clipboard cross site scripting [CVE-2019-19708]low🔒---
146932Moxa EDS-G508E/EDS-G512E/EDS-G516E PROFINET DCE-RPC Endpoint denial of servicelow🔒---
146931Ktor redirect [CVE-2019-19703]medium🔒---
146930modoboa-dmarc Plugin XML Data xml injection [CVE-2019-19702]medium🔒---
146929Git Submodule Update input validation [CVE-2019-19604]medium🔒---
146928Yachtcontrol os command injection [CVE-2019-17270]medium🔒---
146927Microsoft Skype for Business Server input validation [CVE-2019-1490]low🔒---
146926Microsoft Windows Remote Desktop Protocol information disclosurelow🔒---
146925libssh scp Client ssh_scp_new command injectionmedium🔒---
146924Microsoft Windows Defender memory corruption [CVE-2019-1488]medium🔒---
146923Ssamba S4U Kerberos Delegation improper authorization [CVE-2019-14870]medium🔒---
146922Microsoft Authentication Library information disclosure [CVE-2019-1487]low🔒---
146921Samba AD Handleer dns_name_compare out-of-bounds readmedium🔒---
146920Microsoft Visual Studio redirect [CVE-2019-1486]medium🔒---
146919Google Chrome Javascript type confusion [CVE-2019-13764]medium🔒---
146918Google Chrome Payment input validation [CVE-2019-13763]low🔒---
146917Google Chrome Download input validation [CVE-2019-13762]low🔒---
146916Google Chrome Omnibox Domain input validationmedium🔒---
146915Google Chrome interstitials Domain input validationmedium🔒---
146914Google Chrome Navigation input validation [CVE-2019-13758]medium🔒---
146913Google Chrome Omnibox Domain input validationmedium🔒---
146912Google Chrome Security UI Domain input validationmedium🔒---
146911Google Chrome Extension input validation [CVE-2019-13755]low🔒---
146910Google Chrome Extension input validation [CVE-2019-13754]medium🔒---
146909Google Chrome SQLite out-of-bounds read [CVE-2019-13753]medium🔒---
146908Google Chrome SQLite out-of-bounds read [CVE-2019-13752]low🔒---
146907Google Chrome SQLite information disclosure [CVE-2019-13751]low🔒---
146906Google Chrome SQLite input validation [CVE-2019-13750]medium🔒---
146905Google Chrome Omnibox Address input validationmedium🔒---
146904Google Chrome Developer Tools input validation [CVE-2019-13748]low🔒---
146903Google Chrome input validation [CVE-2019-13747]medium🔒---
146902Google Chrome Omnibox URL input validationmedium🔒---
146901Google Chrome Audio information disclosure [CVE-2019-13745]low🔒---
146900Google Chrome Policy Enforcement information disclosure [CVE-2019-13744]low🔒---
146899Google Chrome Security UI input validation [CVE-2019-13743]medium🔒---
146898Google Chrome Omnibox Domain input validationmedium🔒---
146897Google Chrome Blink input validation [CVE-2019-13741]low🔒---
146896Google Chrome Security UI Domain input validationmedium🔒---
146895Google Chrome Policy Enforcement Domain input validationmedium🔒---
146894Google Chrome Policy Enforcement permission assignment [CVE-2019-13738]medium🔒---
146893Google Chrome Policy Enforcement information disclosure [CVE-2019-13737]low🔒---
146892Google Chrome PDFium integer overflow [CVE-2019-13736]medium🔒---
146891Google Chrome Javascript out-of-bounds write [CVE-2019-13735]medium🔒---
146890Google Chrome SQLite out-of-bounds write [CVE-2019-13734]medium🔒---
146889Google Chrome WebAudio use after free [CVE-2019-13732]medium🔒---
146888Google Chrome Javascript type confusion [CVE-2019-13730]medium🔒---
146887Google Chrome WebSocket use after free [CVE-2019-13729]medium🔒---
146886Google Chrome Javascript out-of-bounds write [CVE-2019-13728]medium🔒---
146885Google Chrome WebSocket permission assignment [CVE-2019-13727]medium🔒---
146884Google Chrome Password Manager memory corruption [CVE-2019-13726]medium🔒---
146883Google Chrome Bluetooth use after free [CVE-2019-13725]medium🔒---
146882Google Chrome Omnibox input validation [CVE-2019-13672]medium🔒---
146880OpenBSD Random Number Generator random.c prng seedlow🔒---
146879Microsoft Windows OLE input validation [CVE-2019-1484]medium🔒---
146878Microsoft Windows AppX Deployment Server privileges managementmedium🔒---
146877Microsoft Windows Windows Media Player information disclosurelow🔒---
146876Microsoft Windows Windows Media Player information disclosurelow🔒---
146875Microsoft Windows COM Server privileges management [CVE-2019-1478]medium🔒---
146874Microsoft Windows Printer Service privileges management [CVE-2019-1477]medium🔒---
146873Microsoft Windows AppX Deployment Service privileges managementmedium🔒---
146872Microsoft Windows Kernel information disclosure [CVE-2019-1474]low🔒---
146871Microsoft Windows Kernel information disclosure [CVE-2019-1472]low🔒---
146870Microsoft Windows Hyper-V information disclosure [CVE-2019-1470]low🔒---
146869Microsoft Windows GDI information disclosure [CVE-2019-1467]low🔒---
146868Microsoft Windows GDI information disclosure [CVE-2019-1466]low🔒---
146867Microsoft Windows GDI information disclosure [CVE-2019-1465]low🔒---
146866Microsoft Office Excel information disclosure [CVE-2019-1464]low🔒---
146865Microsoft Office Access information disclosure [CVE-2019-1463]low🔒---
146864Microsoft Office PowerPoint input validation [CVE-2019-1462]medium🔒---
146863Microsoft Office Word input validation [CVE-2019-1461]low🔒---
146862Microsoft Windows Remote Desktop Protocol input validation [CVE-2019-1453]low🔒---
146861Microsoft Office Access information disclosure [CVE-2019-1400]low🔒---
146860Microsoft Power BI Report Server cross site scripting [CVE-2019-1332]low🔒---
146859Microsoft Internet Explorer VBScript memory corruption [CVE-2019-1485]medium🔒---
146858Microsoft Windows Win32k information disclosure [CVE-2019-1469]low🔒---
146857Microsoft Windows Win32k privileges management [CVE-2019-1458]medium🔒---
146856Microsoft Windows Hyper-V input validation [CVE-2019-1471]medium🔒---
146855Microsoft Windows Win32k Graphics input validation [CVE-2019-1468]medium🔒---
146854Lenovo Power Management Driver memory corruption [CVE-2019-6192]medium🔒---
146853Lenovo Energy Management Driver input validation [CVE-2019-6183]low🔒---
146852IBM WebSphere Application Server Web UI cross site scriptinglow🔒---
146851IBM Cloud Pak System Platform System Manager injection [CVE-2019-4521]medium🔒---
146850IBM SmartCloud Analytics Zookeeper privileges management [CVE-2019-4244]medium🔒---
146849IBM Cloud Pak System cross-site request forgery [CVE-2019-4095]low🔒---
146848Last.fm Scrobbler input validation [CVE-2019-19251]low🔒---
146847Yaws redirect [CVE-2016-1000108]medium🔒---
146846Erlang inets redirect [CVE-2016-1000107]medium🔒---
146845JBoss KeyCloak login-status-iframe.html cross site scriptinglow🔒---
146844CPAN Data::UUID link following [CVE-2013-4184]medium🔒---
146843kde-workspace Plasma Desktop crypt denial of servicelow🔒--🔒
146842Katello API OAuth Authentication resource consumption [CVE-2013-4120]low🔒---
146841Monkey HTTP Daemon exposure of resource [CVE-2013-2183]medium🔒---
146840python-keystoneclient Memcache insufficient verification of data authenticitymedium🔒--🔒
146839python-keystoneclient Memcache inadequate encryption [CVE-2013-2166]medium🔒--🔒
146838Monkey HTTP Daemon auth.c improper authenticationmedium🔒---
146837rubygem-openshift-origin-controller API cartridge_cache.rb URI.prase injectionmedium🔒---
146836openstack-utils openstack-db Password missing authenticationlow🔒---
146835Mozilla Firefox Frame input validation [CVE-2013-1689]low🔒---
146834Ovirt Node Lock Screen privileges management [CVE-2013-0293]medium🔒---
146833marc-q libwav libwav.c wav_content_read null pointer dereferencelow🔒---
146832CoreHR Core Portal cross-site request forgerylow🔒---
146831IBM DataPower Gateway IPMI LAN Channel privileges managementmedium🔒---
146830IBM Planning Analytics My Account Portal unrestricted uploadmedium🔒---
146829IBM Planning Analytics Web UI cross site scriting [CVE-2019-4611]low🔒---
146828IBM Cloud Pak for Data Watson Assistant cross site scriting [CVE-2019-4428]low🔒---
146827OpenStack Keystone Credentials API credentials insufficiently protected credentialslow🔒---
146826Nop Solution Ltd nopCommerce RoxyFileman RoxyFilemanController.cs cross-site request forgerylow🔒---
146825Nop Solution Ltd nopCommerce File Upload PluginController.cs unrestricted uploadmedium🔒---
146824Nop Solution Ltd nopCommerce NewsController.cs SaveStoreMappings cross site scriptinglow🔒---
146823Xray Test Management Test Issue cross site scripting [CVE-2019-19679]low🔒---
146822Xray Test Management Generic Test Definition cross site scriptinglow🔒---
146821SQLite NOT NULL pragma.c unusual conditionmedium🔒---
146820SQLite ALTER TABLE Statement alter.c recursionlow🔒---
146819SQLite CREATE Statement privileges management [CVE-2019-19603]medium🔒---
146818CA Release Automation DataManagement deserialization [CVE-2019-19230]medium🔒---
146817Symantec Industrial Control System Protection improper authenticationmedium🔒---
146816Trend Micro Security Consumer null pointer dereference [CVE-2019-18190]low🔒---
146815Temenos Channels Login Page GetImage downloadDocServer path traversalmedium🔒---
146812Samsung m2m1shot Driver Framework m2m1shot_compat_ioctl32 out-of-bounds writemedium🔒---
146811Accentis Content Resource Management System cross site scriptinglow🔒---
146810Accentis Content Resource Management System sql injection [CVE-2015-3424]medium🔒---
146809Chrony denial of service [CVE-2015-1853]low🔒--🔒
146808libcapsinetwork/monopd listener.cpp readBuf off-by-onelow🔒--🔒
146807mod_wsgi Embedded Mode information disclosure [CVE-2014-0242]low🔒--🔒
146806pyrad packet.py CreateID input validationmedium🔒---
146805Nop Solution Ltd nopCommerce FileRoxyFilemanService.cs path traversalmedium🔒---
146804Microsoft Windows Media Center xml external entity referencelow🔒---
146803Microsoft Visual Studio xml external entity referencemedium🔒---
146802YARA macho.c macho_parse_file out-of-bounds readmedium🔒---
146801radare2 asm.c r_asm_pseudo_incbin input validationlow🔒---
146800Microsoft Excel XML Import xml external entity referencemedium🔒---
146799rConfig privileges management [CVE-2019-19268]medium🔒---
146798OpenNetAdmin code injectionmedium🔒---
146797Supermicro X8STi-F setvmdrive.asp os command injectionmedium🔒---
146796libsixel frompnm.c load_pnm out-of-bounds writemedium🔒---
146795libsixel fromsixel.c sixel_decode_raw_impl integer overflowmedium🔒---
146794libsixel tosixel.c sixel_encode_body integer overflowmedium🔒---
146793libsixel fromsixel.c sixel_decode_raw_impl out-of-bounds writemedium🔒---
146792HTMLDOC string.c hd_strlcpy out-of-bounds writemedium🔒---
146791Linux Kernel f2fs Filesystem Image segment.c f2fs_build_segment_manager out-of-bounds readmedium🔒---
146790Linux Kernel btrfs Filesystem free-space-cache.c try_merge_free_space use after freemedium🔒---
146789Linux Kernel ext4 Filesystem Image super.c ext4_put_super use after freemedium🔒---
146788Google Android Permission RecentLocationApps.java permission assignmentlow🔒---
146787Google Android Unicode TextLine.java handleRun input validationlow🔒---
146786Google Android blob.cpp Blob input validationlow🔒---
146785Google Android NativeNfcManager.cpp nfcManager_unrouteAid use after freelow🔒---
146784Google Android BaseWidgetProvider.java updateWidget information disclosurelow🔒---
146783Google Android array.c array_find out-of-bounds readlow🔒---
146782Google Android Bluetooth btif_av.cc DeepCopy out-of-bounds readlow🔒---
146781Google Android Bluetooth Server device_class.cc device_class_to_int out-of-bounds readlow🔒---
146780Google Android Bluetooth Pairing privileges management [CVE-2019-2225]medium🔒---
146779Google Android mat.c ReadMATImage out-of-bounds writemedium🔒---
146778Google Android ihevcd_ref_list.c ihevcd_ref_list out-of-bounds writemedium🔒---
146777Google Android ihevcd_parse_slice.c ihevcd_parse_slice_data out-of-bounds writemedium🔒---
146776Google Android WindowProcessController.java hasActivityInVisibleTask input validationmedium🔒---
146775Google Android AppOpsService.java checkOperation information disclosurelow🔒---
146774Google Android System UI race condition [CVE-2019-2219]low🔒---
146773Google Android Permission Check PackageInstallerService.java createSessionInternal permission assignmentmedium🔒---
146772Google Android GpuStats.cpp setCpuVulkanInUse use after freemedium🔒---
146771ShapeShift KeepKey Hardware Wallet Finite State Machine improper validation of integrity check valuemedium🔒---
146770ShapeShift KeepKey Hardware Wallet USB Packet out-of-bounds writemedium🔒---
146769Dell Command Configure uncontrolled search path [CVE-2019-18575]low🔒---
146768serialize-to-js Regular Expression RegExp.prototype.toString cross site scriptinglow🔒---
146767Armeria response splitting [CVE-2019-16771]medium🔒---
146766Weidmueller IE-SW-VL05M/IE-SW-VL08MT/IE-SW-PL10M Cookie Credentials information disclosurelow🔒---
146765Weidmueller IE-SW-VL05M/IE-SW-VL08MT/IE-SW-PL10M Password Storage missing encryptionlow🔒---
146764Weidmueller IE-SW-VL05M/IE-SW-VL08MT/IE-SW-PL10M Credentials missing encryptionlow🔒---
146763Weidmueller IE-SW-VL05M/IE-SW-VL08MT/IE-SW-PL10M denial of servicemedium🔒---
146762Weidmueller IE-SW-VL05M/IE-SW-VL08MT/IE-SW-PL10M Authentication Mechanism Brute Force information disclosurelow🔒---
146761OpenSSL Montgomery Square information disclosure [CVE-2019-1551]medium🔒---
146760SiteVision Access Control privileges management [CVE-2019-12734]medium🔒---
146759SiteVision input validation [CVE-2019-12733]medium🔒---
146758Cloud Foundry UAA Log Credentials log filelow🔒---
146757safer-eval Sandbox input validationmedium🔒---
146756TITool PrintMonitor Login Time sql injectionmedium🔒---
146755JBoxx AS Java Security Policy privileges management [CVE-2012-2148]medium🔒---
146754PolarSSL DH inadequate encryption [CVE-2012-2130]low🔒--🔒
146753Ubuntu Cobbler cobbler-ubuntu-import signature verification [CVE-2012-2092]low🔒---
146752OpenSLP out-of-bounds write [CVE-2019-5544]medium🔒---
146751SROS 2 ROS 2 Node information disclosure [CVE-2019-19627]low🔒---
146750SROS 2 Node Information governance.xml information disclosurelow🔒---
146749OpenCV dis_flow.cpp ocl_calc out-of-bounds readmedium🔒---
146748SecureWorks Red Cloak Windows Agent Telemetry Alert permissionslow🔒---
146747Sangoma FreePBX Userman cross site scripting [CVE-2019-19552]low🔒---
146746Sangoma FreePBX Userman cross site scripting [CVE-2019-19551]low🔒---
146745libyang YANG Parser stack-based overflow [CVE-2019-19334]medium🔒---
146744libyang YANG Parser stack-based overflow [CVE-2019-19333]medium🔒---
146743Audible App SSL Certificate certificate validation [CVE-2019-11554]low🔒---
146742Fedoraproject Sectool DBus File privileges management [CVE-2012-1615]medium🔒--🔒
146741Documize Markdown markdown.go cross site scriptinglow🔒---
146740phpMyAdmin Git Information GitRevision.php Remote Code Executionhigh🔒---
146739Xtivia Web Time/Expense GetAttachment resource transferlow🔒---
146738QNAP QTS Photo Station external reference [CVE-2019-7195]medium🔒---
146737QNAP QTS Photo Station external reference [CVE-2019-7194]medium🔒---
146736QNAP QTS input validation [CVE-2019-7193]medium🔒---
146735QNAP QTS Photo Station privileges management [CVE-2019-7192]medium🔒---
146734QNAP QTS Music Station cross site scripting [CVE-2019-7185]low🔒---
146733QNAP QTS Video Station cross site scripting [CVE-2019-7184]low🔒---
146732QNAP QTS Link link following [CVE-2019-7183]medium🔒---
146731AMD Driver Pixel Shader ATIDXX64.DLL out-of-bounds readmedium🔒---
146730chkstat Tool symlink [CVE-2019-3690]medium🔒---
146729Strapi Framework Plugin execa input validationmedium🔒---
146728Adobe Stock API upload.php unrestricted uploadmedium🔒---
146727Adobe Stock API multi_upload.php unrestricted uploadmedium🔒---
146726Norton Password Manager information disclosure [CVE-2019-19546]low🔒---
146725Norton Password Manager origin validation [CVE-2019-19545]medium🔒---
146724SCEditor cross site scripting [CVE-2019-19466]low🔒---
146722Intelbras IWR 3000N user Credentials insufficiently protected credentialslow🔒---
146721Norton Password Manager origin validation [CVE-2019-18381]medium🔒---
146720OTRS Filename infinite loop [CVE-2019-18180]low🔒---
146719Palo Alto PAN-OS insufficient permissions or privileges [CVE-2019-17437]medium🔒---
146718Aviatrix VPN Client File Permission privileges management [CVE-2019-17388]medium🔒---
146717Aviatrix VPN Client AVPNC_RP Service privileges management [CVE-2019-17387]medium🔒---
146716Puma Connection allocation of resources [CVE-2019-16770]low🔒---
146715Yahoo serialize-javascript cross site scripting [CVE-2019-16769]low🔒---
146714Sylius Exception Message AuthenticationServiceException information exposurelow🔒---
146713ThinkParQ BeeGFS beegfs-ctl missing authentication [CVE-2019-15897]medium🔒---
146712KeyCloak LDAP User Federation authentication bypass [CVE-2019-14910]medium🔒---
146711Kubernetes CSI Sidecar Container Persistent input validationlow🔒---
146710Kubernetes API Server redirect [CVE-2018-1002102]medium🔒---
146709OpenStack Nova Base Image permission assignment [CVE-2013-0326]low🔒---
146708Katello Notification Page cross site scripting [CVE-2013-0283]low🔒---
146707haskell-tls-extra TLS Connection input validation [CVE-2013-0243]low🔒---
146706Openshift haproxy cartridge tmp exposure of resourcelow🔒---
146705Apache Struts XSLT File unrestricted upload [CVE-2012-1592]medium🔒---
146704LDAP Account Manager Pro cmd.php cross site scriptinglow🔒--🔒
146703LDAP Account Manager Pro cmd.php cross site scriptinglow🔒--🔒
146702Jasig php-pear-CAS Authentication Service tmp setCacheTimesForAuthRecheck information disclosurelow🔒--🔒
146701phpCAS Service Proxy setCacheTimesForAuthRecheck privileges managementmedium🔒--🔒
146700Linux Kernel internal.h fpregs_state_valid permission assignmentmedium🔒---
146699OpenDetex detex.l TexOpen memory corruptionmedium🔒---
146698SQLite resolve.c lookupName input validationmedium🔒---
146697D-Link DAP-1860 timestamp improper authenticationmedium🔒---
146696D-Link DAP-1860 HTTP Header improper authentication [CVE-2019-19597]medium🔒---
146695GitBook MD File cross site scripting [CVE-2019-19596]low🔒---
146694radare2 asm.c r_asm_massemble integer overflowmedium🔒---
146693Lever PDF Embedder Plugin input validation [CVE-2019-19589]high🔒---
146692Validator Package resource consumption [CVE-2019-19588]low🔒---
146691Wireshark CMS Dissector packet-cms-template.c injectionlow🔒---
146690QNAP NetBak Replicator QVssService unquoted search path [CVE-2019-7201]medium🔒---
146689QNAP QTS Stored cross site scripting [CVE-2019-7197]low🔒---
146688WSO2 Enterprise Integrator Management Console Reflected cross site scritinglow🔒---
146687Xen Incomplete Fix CVE-2019-18424 input validation [CVE-2019-19579]medium🔒---
146686verot.net class.upload class.upload.php unrestricted uploadmedium🔒---
146685Xfig fig2dev read.c out-of-bounds writemedium🔒---
146684OpenBSD S-Key/Yubikey improper authentication [CVE-2019-19522]medium🔒---
146683OpenBSD libc auth_subr.c improper authenticationmedium🔒---
146682OpenBSD xlock loader.c privileges managementmedium🔒---
146681OpenBSD su.c main input validationmedium🔒---
146680Sony Catalyst Production Suite/Catalyst Browse DLL Loader untrusted search pathmedium🔒---
146679Fronius Solar Inverter service.fcgi path traversalmedium🔒---
146678Fronius Solar Inverter web_users.conf cleartext storagemedium🔒---
146677CSS Hero Plugin csshero_action=edit_page Reflected cross site scriptinglow🔒---
146676TrevorC2 Fingerprint information disclosure [CVE-2019-18850]low🔒---
146675DAViCal Stored cross site scripting [CVE-2019-18347]low🔒---
146674DAViCal cross-site request forgery [CVE-2019-18346]low🔒---
146673Apache Olingo Public API AbstractService deserializationmedium🔒---
146672Apache Olingo AsyncResponseWrapperImpl input validationlow🔒---
146671Apache Olingo Deserialization xml external entity reference [CVE-2019-17554]medium🔒---
146670Decentralized Anonymous Payment System Signature signature verificationmedium🔒---
146669Decentralized Anonymous Payment System cross-site request forgerylow🔒---
146668COPA-DATA zenone32 zenon Editor uncontrolled search path [CVE-2019-15638]low🔒---
146667KeyCloak LDAP improper authentication [CVE-2019-14909]medium🔒---
146666Proxygen HPACK use after free [CVE-2019-11940]medium🔒---
146665Mcrouter Carbon Protocol resource consumption [CVE-2019-11937]low🔒---
146664HHVM APC denial of service [CVE-2019-11936]low🔒---
146663HHVM mb_ereg_replace out-of-bounds readmedium🔒---
146662AsyncSSLSocket close_notify Alert out-of-bounds read [CVE-2019-11934]medium🔒---
146661HHVM mb_detect_order release of referencemedium🔒---
146660Mcrouter ASCII Parser resource consumption [CVE-2019-11923]low🔒---
146659BMC Smart Reporting XML Data unrestricted upload [CVE-2019-11216]medium🔒---
146658QNAP QTS File Station injection [CVE-2018-0730]medium🔒---
146657QNAP QTS Music Station injection [CVE-2018-0729]medium🔒---
146656QNAP QTS Helpdesk privileges management [CVE-2018-0728]low🔒---
146655minidlna sql injection [CVE-2013-2745]medium🔒---
146654Cameron Hamilton-Rich axTLS TLS Handshake tls1.c process_certificate buffer overflowmedium🔒---
146653Autodesk FBX Software Development Kit FBX File buffer overflowmedium🔒---
146652Autodesk Desktop Application DLL Loader untrusted search pathmedium🔒---
146651shadowsocks-libev ss-manager missing authentication [CVE-2019-5164]medium🔒---
146650shadowsocks-libev UDPRelay missing authenticationlow🔒---
146649AccuSoft ImageGear igcore19d.dll out-of-bounds write [CVE-2019-5133]medium🔒---
146648AccuSoft ImageGear GEM Raster Parser igcore19d.dll out-of-bounds writemedium🔒---
146647Forma LMS ajax.server.php sql injectionmedium🔒---
146646Forma LMS ajax.server.php sql injectionmedium🔒---
146645Forma LMS sql injection [CVE-2019-5110]medium🔒---
146644Forma LMS sql injection [CVE-2019-5109]medium🔒---
146643Goahead Web Server Multi-Part Request infinite loop [CVE-2019-5097]low🔒---
146642Goahead Web Server Multi-Part Request use after free [CVE-2019-5096]medium🔒---
146641AccuSoft ImageGear igcore19d.dll TIFdecodethunderscan out-of-bounds writemedium🔒---
146640AccuSoft ImageGear PNG Header igcore19d.dll out-of-bounds writemedium🔒---
146639IBM Cloud Pak System Web UI cross site scriting [CVE-2019-4468]low🔒---
146638IBM Cloud Pak System Web UI cross site scriting [CVE-2019-4467]low🔒---
146637IBM Cloud Pak System Stored information disclosure [CVE-2019-4465]low🔒---
146636IBM Cloud Pak System Web UI cross site scriting [CVE-2019-4226]low🔒---
146635IBM Cloud Pak System File Upload code injection [CVE-2019-4130]medium🔒---
146634IBM Cloud Pak System Web UI cross site scriting [CVE-2019-4098]low🔒---
146633Harbor API Endpoint users information disclosurelow🔒---
146632Dell Command Update Directory Permission uncontrolled search pathlow🔒---
146631Dell Command Update uncontrolled search path [CVE-2019-3749]low🔒---
146630Linux Kernel serial_ir.c serial_ir_init_module use after freemedium🔒---
146629Linux Kernel USB Device file.c race conditionlow🔒---
146628Linux Kernel USB Device pcan_usb_pro.c information disclosurelow🔒---
146627Linux Kernel USB Device pcan_usb_fd.c information disclosurelow🔒---
146626Linux Kernel USB Device pcan_usb_core.c information disclosurelow🔒---
146625Linux Kernel USB Device ttusb_dec.c release of resourcelow🔒---
146624Linux Kernel USB Device hid-axff.c out-of-bounds writemedium🔒---
146623Linux Kernel USB Device yurex.c use after freemedium🔒---
146622Linux Kernel USB Device cdc-acm.c use after freemedium🔒---
146621Linux Kernel USB Device mcba_usb.c use after freemedium🔒---
146620Linux Kernel USB Device iowarrior.c use after freemedium🔒---
146619Linux Kernel USB Device hiddev.c use after freemedium🔒---
146618Linux Kernel USB Device usb.c use after freemedium🔒---
146617Linux Kernel USB Device atusb.c use after freemedium🔒---
146616Linux Kernel USB Device ff-memless.c use after freemedium🔒---
146615Linux Kernel USB Device adutux.c use after freemedium🔒---
146614SALTO ProAccess SPACE Webserver default permission [CVE-2019-19460]medium🔒---
146613SALTO ProAccess SPACE input validation [CVE-2019-19459]medium🔒---
146612SALTO ProAccess SPACE Data Export path traversal [CVE-2019-19458]medium🔒---
146611SALTO ProAccess SPACE cross site scripting [CVE-2019-19457]low🔒---
146610freeFTPd SIZE Command buffer overflow [CVE-2019-19383]medium🔒---
146609OpenWrt forwards cross site scriptinglow🔒---
146608OpenWrt rules cross site scriptinglow🔒---
146607Dell EMC RSA Authentication Manager Security Console Stored cross site scriptinglow🔒---
146606OkayCMS ProductsView.php injectionmedium🔒---
146605FreeRADIUS EAP-pwd Handshake information disclosure [CVE-2019-13456]low🔒---
146603Cameron Hamilton-Rich axTLS asn1.c get_asn1_length buffer overflowmedium🔒---
146602mod_fcgid input validation [CVE-2016-1000104]medium🔒--🔒
146601node-cli Temp File input validation [CVE-2016-1000021]medium🔒---
146600libgwenhywfar CA Certificate cleartext transmission [CVE-2015-7542]medium🔒--🔒
146599devscripts Tarball code injection [CVE-2013-7325]medium🔒--🔒
146598Zanata Log injection [CVE-2013-4486]medium🔒---
146597Review Board URL authorization [CVE-2013-4411]medium🔒--🔒
146596shadow Directory Tree toctou [CVE-2013-4235]low🔒---
146595SaltStack RSA Key Generation excessive authentication [CVE-2013-2228]low🔒---
146594webauth Credentials insufficiently protected credentials [CVE-2013-2106]low🔒---
146593openshift URL input validation [CVE-2013-2103]low🔒---
146592Katello cross site scripting [CVE-2013-2101]low🔒---
146591Huawei Honor Play Screen Lock information disclosure [CVE-2019-5309]low🔒---
146590Huawei 20 RS ADB Mode authorization [CVE-2019-5308]medium🔒---
146589Huawei Myna Cloud information disclosure [CVE-2019-5271]medium🔒---
146588Huawei Home Router authorization [CVE-2019-5269]medium🔒---
146587Huawei Home Router input validation [CVE-2019-5268]low🔒---
146586Huawei HiSuite/HwBackup information disclosure [CVE-2019-5263]low🔒---
146585Huawei Atlas 300/Atlas 500 buffer overflow [CVE-2019-5247]medium🔒---
146584Huawei Viewpoint random values [CVE-2019-5232]low🔒---
146583Huawei P30/P30 Pro/Mate 20/HiSuite Upgrade Package input validationmedium🔒---
146582Huawei P30/P30 Pro/Mate 20/HiSuite Upgrade Package input validationmedium🔒---
146581Huawei P30/Mate 20/P30 Pro buffer overflow [CVE-2019-5225]medium🔒---
146580Huawei P30 Application out-of-bounds read [CVE-2019-5224]medium🔒---
146579Huawei Band 2/Honor Band 3 improper authentication [CVE-2019-5218]medium🔒---
146578Huawei Share Access Control information disclosure [CVE-2019-5212]medium🔒---
146577Huawei P20 Huawei Share input validation [CVE-2019-5211]low🔒---
146576Nova 5i/5 array index [CVE-2019-5210]medium🔒---
146575McAfee Web Advisor Web Interface privileges management [CVE-2019-3666]medium🔒---
146574McAfee Web Advisor Web Interface code injection [CVE-2019-3665]medium🔒---
146573Intelbras WRN 150 Password Change SysToolChangePwd cross-site request forgerylow🔒---
146572jpv Type Detection compareCommon improper authenticationmedium🔒---
146571Image Uploader/Browser plugin Pathname pluginconfig.php input validationhigh🔒---
146570Alfresco Enterprise HTML File Upload Stored cross site scriptinglow🔒---
146569Kentico File Upload unrestricted upload [CVE-2019-19493]low🔒---
146568FreeSWITCH event_socket.conf.xml hard-coded credentialsmedium🔒---
146567TestLink archiveData.php cross site scripting [CVE-2019-19491]low🔒---
146566LiteManager Permission ROMFUSClient.exe default permissionmedium🔒---
146565SMPlayer m3u File buffer overflow [CVE-2019-19489]medium🔒---
146564OpenSC CAC Certificate card-cac1.c memory corruptionmedium🔒---
146563OpenSC pkcs15-prkey.c sc_pkcs15_decode_prkdf_entry operation after expirationmedium🔒---
146562OpenSC SETCOS Attribute card-setcos.c out-of-bounds readmedium🔒---
146561Zmanda Management Console Default Credentials ZMC_Admin_Advanced cross-site request forgerymedium🔒---
146560Free Photo Viewer BMP File unrestricted upload [CVE-2019-19468]medium🔒---
146559CBC Gem App missing encryption [CVE-2019-19464]medium🔒---
146558Anhui Huami Mi Fit App Update Check missing encryption [CVE-2019-19463]medium🔒---
146557Linux Kernel relay.c relay_open null pointer dereferencelow🔒---
146556GNOME Dia Encoding infinite loop [CVE-2019-19451]low🔒---
146555illumos Thread ip_attr.c conn_ixa input validationlow🔒---
146554LuaJIT type confusion [CVE-2019-19391]medium🔒---
146553FusionPBX dialplan_detail_edit.php cross site scriptinglow🔒---
146552FusionPBX fifo_interactive.php cross site scriptinglow🔒---
146551FusionPBX voicemail_greeting_edit.php cross site scriptinglow🔒---
146550FusionPBX dialplans.php cross site scriptinglow🔒---
146549FusionPBX fax_log_view.php cross site scriptinglow🔒---
146548MISP TagsController.php permission assignmentmedium🔒---
146547Linux Kernel btrfs Filesystem raid56.c index_rbio_pages out-of-bounds writemedium🔒---
146546Linux Kernel btrfs Filesystem async-thread.c btrfs_queue_work use after freemedium🔒---
146545Octopus Deploy Team API input validation [CVE-2019-19376]medium🔒---
146544Octopus Deploy SSL Offloading missing initialization of resourcelow🔒---
146543rConfig downloadFile.php path traversal [Disputed]medium🔒---
146542TeamViewer Desktop Application Chat information disclosure [CVE-2019-19362]low🔒---
146541Terraform risky encryption [CVE-2019-19316]low🔒---
146540ProFTPD tls_verify_crl null pointer dereferencelow🔒---
146539Django save default permissionmedium🔒---
146538TitanHQ WebTitan Administration Interface hard-coded credentialsmedium🔒---
146537TitanHQ WebTitan Administration Web Interface unrestricted uploadmedium🔒---
146536TitanHQ WebTitan Hotfix Download injection [CVE-2019-19019]medium🔒---
146535TitanHQ WebTitan Administration Interface dbconfig.ini Database information disclosurelow🔒---
146534TitanHQ WebTitan Installation race condition [CVE-2019-19017]high🔒---
146533TitanHQ WebTitan Administration Interface history-x.php sql injectionmedium🔒---
146532TitanHQ WebTitan Proxy Service exposure of resource [CVE-2019-19015]medium🔒---
146531TitanHQ WebTitan privileges management [CVE-2019-19014]medium🔒---
146530Allied Telesis AT-GS950-8 Web Interface path traversal [CVE-2019-18922]medium🔒---
146529RabbitMQ amqp_connection.c memcpy integer overflowmedium🔒---
146528ezmaster Admin Sys Mode unnecessary privileges [CVE-2019-16767]low🔒---
146527wagtail-2fa authentication spoofing [CVE-2019-16766]medium🔒---
146526Kaspersky Secure Connection exposure of resource [CVE-2019-15689]medium🔒---
146525MuleSoft Mule Community Edition code injection [CVE-2019-15631]medium🔒---
146524Trend Micro Security 2020 DLL Loader untrusted search path [CVE-2019-15628]medium🔒---
146523Linux Kernel Marvell Wifi Chip Driver resource consumption [CVE-2019-14901]medium🔒---
146522Linux Kernel Marvell Wifi Chip Driver stack-based overflow [CVE-2019-14897]medium🔒---
146521Linux Kernel Marvell Wifi Chip Driver heap-based overflow [CVE-2019-14895]medium🔒---
146520grub2 grub2-set-bootflag denial of service [CVE-2019-14865]low🔒---
146519Anviz CrossChex Access Control Management Software buffer overflowmedium🔒---
146518Inateck BCST-60 injection [CVE-2019-12503]medium🔒---
146517Anviz Access Control Password Change improper authenticationmedium🔒---
146516Anviz Access Control authentication replay [CVE-2019-12393]medium🔒---
146515Anviz Access Control authorization [CVE-2019-12392]medium🔒---
146514Anviz Management System Log unknown vulnerability [CVE-2019-12391]medium🔒---
146513Anviz Access Control Service Port 5010 PIN information disclosurelow🔒---
146512Anviz Access Control Service Port 5010 Credentials information disclosurelow🔒---
146511Anviz Access Control Service Port 5010 information disclosurelow🔒---
146510Module::Signature PGP Signature Parser numeric conversion [CVE-2015-3406]medium🔒--🔒
146509cabextract File Extraction path traversal [CVE-2015-2060]medium🔒--🔒
146508Ruby OpenSSL Extension verify_certificate_identity input validationmedium🔒--🔒
146507Libgcrypt/GnuPG mpi_powm information exposurelow🔒--🔒
146506Docker Container Protection Mechanism path traversal [CVE-2014-9356]medium🔒--🔒
146505Libgcrypt/GnuPG Elgamal Decryption information disclosure [CVE-2014-3591]low🔒--🔒
146504Zabbix inadequate encryption [CVE-2013-7484]low🔒---
146503ReviewBoard REST API authorization [CVE-2013-4410]medium🔒--🔒
146502rhn-proxy RHN Satellige cleartext transmission [CVE-2012-5562]low🔒---
146501FreeBSD input validation [CVE-2012-4576]medium🔒--🔒
146500Piwigo Incomplete Fix CVE-2012-4525 password.php cross site scriptinglow🔒---
146499Piwigo password.php cross site scriptinglow🔒---
146498mom PIF File run privileges managementmedium🔒--🔒
146497OpenSLP SLPIntersectStringList out-of-bounds readlow🔒--🔒
146495NAPC Xinet Elegant 6 Asset Library sql injection [CVE-2019-19245]medium🔒---
146494Max Secure Anti Virus permission assignment [CVE-2019-19382]medium🔒---
146493F5 SSL Orchestrator TMM input validation [CVE-2019-6674]low🔒---
146492F5 BIG-IP TMM input validation [CVE-2019-6673]low🔒---
146491F5 BIG-IP AFM Virtual Server Performance input validationlow🔒---
146490F5 BIG-IP TMM release of resource [CVE-2019-6671]low🔒---
146489F5 BIG-IP vCMP Hypervisor cleartext storage [CVE-2019-6670]low🔒---
146488F5 BIG-IP TMM input validation [CVE-2019-6669]low🔒---
146487F5 BIG-IP APM Edge Client authorization [CVE-2019-6668]medium🔒---
146486F5 BIG-IP TMM resource consumption [CVE-2019-6667]low🔒---
146485F5 BIG-IP TMM input validation [CVE-2019-6666]low🔒---
146484F5 BIG-IP ASM/BIG-IQ/iWorkflow/Enterprise Manager improper authenticationlow🔒---
146483FusionPBX fax_files.php cross site scriptinglow🔒---
146482FusionPBX xml_cdr_search.php cross site scriptinglow🔒---
146481HAProxy HTTP2 injection [CVE-2019-19330]high🔒---
146480WiKID Javascript Rendering Engine cross site scripting [CVE-2019-19329]low🔒---
146479Wikibase Wikidata Query Service GUI Tooltip Rdf.js injectionlow🔒---
146478Wikibase Wikidata Query Service GUI Reporting ResultView.js cross site scriptinglow🔒---
146477Linux Kernel ext4 Image xattr.c ext4_xattr_set_entry out-of-bounds writemedium🔒---
146476Linux Kernel btrfs Image Mount rwsem.c rwsem_down_write_slowpath use after freemedium🔒---
146475gnome-font-viewer TTF File sushi-font-widget.c text_to_glyphs null pointer dereferencelow🔒---
146474SQLite expr.c sqlite3ExprCodeTarget sql injectionmedium🔒---
146473Linux Kernel Spectre-RSB Mitigation entry_64.S information disclosurelow🔒---
146472Relion 670 path traversal [CVE-2019-18253]medium🔒---
146471Relion 650/670 input validation [CVE-2019-18247]low🔒---
146470Crestron DMC-STRO Ping os command injection [CVE-2019-18184]medium🔒---
146469Fortinet FortiOS SSL VPN Portal input validation [CVE-2019-15705]low🔒---
146468Centreon Web ldap_host.php sql injectionmedium🔒---
146467Centreon Web Administration Interface formMibs.php injectionmedium🔒---
146466Ghostscript setuserparams2 Remote Code Executionmedium🔒---
146465Siemens Polarion Web Page Generator Persistent cross site scriptinglow🔒---
146464Siemens Polarion Web Page Generator Reflected cross site scriptinglow🔒---
146463Siemens Polarion Web Page Generator Reflected cross site scriptinglow🔒---
146462Linux Kernel CIFS Path path traversalmedium🔒---
146461Ghostscript Remote Code Execution [CVE-2019-10216]medium🔒---
146460Mersive Solstice Pod os command injection [CVE-2017-12945]medium🔒---
146459xquest Password Generator random values [CVE-2016-4980]low🔒--🔒
146458Python CGI Script CGIHandler redirectmedium🔒--🔒
146457Frams' Fast File EXchange rup Reflected cross site scriptinglow🔒--🔒
146456OTRS Help Desk before/ITSM/FAQ Object Linking privileges managementmedium🔒--🔒
146455AccountService user.c user_change_password_authorized_cb Password permission assignmentlow🔒---
146454dhclient Path Variable input validation [CVE-2012-2248]medium🔒---
146453DHCPv6 Client DHCP Message injection [CVE-2011-2717]medium🔒---
146452vsftpd Service Port 6200 os command injection [CVE-2011-2523]high🔒---
146451PackageKit RPM permission assignment [CVE-2011-2515]medium🔒--🔒
146450FreeBSD/NetBSD 802.11 Stack information disclosure [CVE-2011-2480]low🔒---
146449dirmngr System Call certificate validation [CVE-2011-2207]low🔒---
146448xscreensaver Activation missing authentication [CVE-2011-2187]low🔒---
146447OpenOffice Suite Tools privileges management [CVE-2011-2177]medium🔒---
146446Linux Kernel Marvell Wifi Chip Driver cfg.c lbs_ibss_join_existing heap-based overflowmedium🔒---
146445Ipa Kerberos Key Data Parser ber_scanf resource consumptionmedium🔒---
146444Ipa Batch Processing Password information disclosurelow🔒---
146443Cloudera HUE LdapBackend improper authentication [CVE-2019-7319]medium🔒---
146442F5 BIG-IP Active Directory/LDAP/Client Certificate improper authenticationmedium🔒---
146441ISC BIND denial of service [CVE-2019-6477]low🔒---
146440IBM Sterling B2B Integrator Standard Edition Back-End Database sql injectionmedium🔒---
146439Cesanta Mongoose mongoose.c integer overflowmedium🔒---
146438Zoho CRM Lead Magnet Plugin Module cross site scripting [CVE-2019-19306]low🔒---
146437typed_ast Python Interpreter ast_for_arguments out-of-bounds readlow🔒---
146436typed_ast Python Interpreter handle_keywordonly_args out-of-bounds readlow🔒---
146435Dolibarr CRM/ERP Profile Picture viewimage.php Stored cross site scriptinglow🔒---
146434AfterLogic Webmail Pro/Aurora Attachment Name Stored cross site scriptinglow🔒---
146433Squid Web Proxy HTTP Digest Authentication information disclosurelow🔒---
146432Squid Web Proxy URL request smuggling [CVE-2019-18678]medium🔒---
146431Squid Web Proxy Hostname cross-site request forgery [CVE-2019-18677]medium🔒---
146430Squid Web Proxy URI Scheme input validation [CVE-2019-18676]medium🔒---
146429Dell EMC Storage Monitoring/Reporting Java RMI Deserialization deserializationmedium🔒---
146428GitLab Community Edition/Enterprise Edition Permission permission assignmentmedium🔒---
146427GitLab Community Edition/Enterprise Edition Permission privileges managementmedium🔒---
146426GitLab Community Edition/Enterprise Edition Sub Group Epic information disclosuremedium🔒---
146425GitLab Community Edition/Enterprise Edition Access Control information disclosuremedium🔒---
146424GitLab Community Edition/Enterprise Edition Environment permission assignmentmedium🔒---
146423GitLab Community Edition/Enterprise Edition Permission permissionsmedium🔒---
146422GitLab Community Edition/Enterprise Edition Security Token permissionsmedium🔒---
146421GitLab Community Edition/Enterprise Edition Elasticsearch information disclosuremedium🔒---
146420GitLab Community Edition/Enterprise Edition Nested GraphQL Query infinite looplow🔒---
146419GitLab Community Edition/Enterprise Edition Rdoc Wiki Page cross site scriptinglow🔒---
146418GitLab Community Edition/Enterprise Edition Comment permission assignmentmedium🔒---
146417GitLab Community Edition/Enterprise Edition Private Project permission assignmentmedium🔒---
146416GitLab Community Edition/Enterprise Edition Internal Redirect Filter redirectmedium🔒---
146415GitLab Community Edition/Enterprise Edition Project Label permission assignmentmedium🔒---
146414GitLab Community Edition/Enterprise Edition Autocomplete information disclosuremedium🔒---
146413GitLab Community Edition/Enterprise Edition Access Control information disclosuremedium🔒---
146412GitLab Community Edition/Enterprise Edition Permission permission assignmentmedium🔒---
146411GitLab Community Edition/Enterprise Edition Permission permission assignmentmedium🔒---
146410CSRF Magic Library CSRF Protection csrf_callback cross-site request forgerylow🔒---
146409Progress Sitefinity Password Recovery password recovery [CVE-2019-17392]high🔒---
146408PEGA Platform Audit Log information disclosure [CVE-2019-16388]low🔒---
146407PEGA Platform exposure of resource [CVE-2019-16387]low🔒---
146406PEGA Platform information disclosure [CVE-2019-16386]low🔒---
146405Ruby shell.rb injection [CVE-2019-16255]medium🔒---
146404Ruby Incomplete Fix injection [CVE-2019-16254]medium🔒---
146403TCL Alcatel Cingular Flip 2 B9HUAH1 Web API injection [CVE-2019-16243]medium🔒---
146402TCL Alcatel Cingular Flip 2 B9HUAH1 omamock os command injectionmedium🔒---
146401TCL Alcatel Cingular Flip 2 B9HUAH1 PIN Authentication authorizationmedium🔒---
146400Ruby Regular Expression backtracking DigestAuth improper authenticationlow🔒---
146399Centreon cross site scripting [CVE-2019-16195]low🔒---
146398Ruby Path File.fnmatch privileges managementmedium🔒---
146397Kaspersky Anti-Virus Web Protection redirect [CVE-2019-15688]medium🔒---
146396Kaspersky Anti-Virus Web Protection information disclosure [CVE-2019-15687]low🔒---
146395Kaspersky Anti-Virus Antivirus Protection Feature input validationlow🔒---
146394Kaspersky Anti-Virus Web Protection input validation [CVE-2019-15685]low🔒---
146393Ansible input validation [CVE-2019-14856]medium🔒---
146392python-ecdsa Signature Decoding denial of service [CVE-2019-14853]low🔒---
146391libnbd NBD Protocol nbd_pread input validationmedium🔒---
146390Cloudera Manager Impala Query cross site scripting [CVE-2019-14449]low🔒---
146389Squid Web Proxy URN Response buffer overflow [CVE-2019-12526]medium🔒---
146388Squid Web Proxy Access Check input validation [CVE-2019-12523]medium🔒---
146387Fastweb Askey RTV1907VW injection [CVE-2019-12489]medium🔒---
146386Cloudera Data Science Workbench Permission Check default permissionmedium🔒---
146385Cloudera CDH Permission default permission [CVE-2018-17860]medium🔒---
146384Cloudera Manager Username privileges management [CVE-2017-7399]low🔒---
146383Cloudera Manager Help Search cross site scripting [CVE-2016-9271]low🔒---
146382Cloudera CDH Search RealTimeGetHandler authorizationmedium🔒---
146381Cloudera CDH Diagnostic Support Bundles information disclosurelow🔒---
146380Cloudera CDH Impala Command authorization [CVE-2016-4572]medium🔒---
146379Cloudera Manager cleartext storage [CVE-2016-3192]medium🔒---
146378Cloudera CDH authorization [CVE-2016-3131]medium🔒---
146377Fast Secure Contact Form Plugin cross site scripting [CVE-2015-9539]low🔒---
146376NextGEN Gallery path traversal [CVE-2015-9538]medium🔒---
146375NextGEN Gallery cross site scripting [CVE-2015-9537]low🔒---
146374Cloudera HUE CDH privileges management [CVE-2015-7831]medium🔒---
146373Cloudera Manager Diagnostic Support Bundles information disclosurelow🔒---
146371Cloudera Manager UI cross site scripting [CVE-2015-4457]low🔒---
146370CMSMS News Module input validation [CVE-2011-4310]low🔒---
146369Zend Framework Encoding sql injection [CVE-2011-1939]medium🔒--🔒
146368lilo lilo-uuid-diskid lilo.conf information disclosurelow🔒---
146367Jifty::DBI sql injection [CVE-2011-1933]medium🔒---
146366Ansible Tower config Credentials cleartext storagelow🔒---
146365mod_auth_openidc redirect [CVE-2019-14857]medium🔒---
146364Google Chrome IndexedDB use after free [CVE-2019-5826]medium🔒---
146363Google Chrome Javascript use after free [CVE-2019-5825]medium🔒---
146362ProFTPD TLS tls_verify_crl null pointer dereferencelow🔒---
146361ProFTPD CRL tls_verify_crl certificate validationlow🔒---
146360ProFTPD CRL tls_verify_crl certificate validationmedium🔒---
146359SQLite Distinct select.c sqlite3Select input validationlow🔒---
146358Omron CX-Supervisor Teamviewer Remote Code Execution [CVE-2019-18251]high🔒---
146357ABB Power Generation Information Manager/Plant Connect authentication bypassmedium🔒---
146356Philips IntelliBridge EC40 SSH Server inadequate encryption [CVE-2019-18241]low🔒---
146355Eclipse Jetty Error Response cross site scripting [CVE-2019-17632]low🔒---
146354Cisco SD-WAN Solution vManage Web-based UI cross-site request forgerylow🔒---
146353Cisco WebEx Teams DLL Loader uncontrolled search path [CVE-2019-16001]medium🔒---
146352Cisco IOS XR Access Control List access control [CVE-2019-15998]medium🔒---
146351Cisco DNA Spaces Connector CLI input validation [CVE-2019-15997]medium🔒---
146350Cisco DNA Spaces Connector CLI access control [CVE-2019-15996]medium🔒---
146349Cisco DNA Spaces Connector Web UI sql injection [CVE-2019-15995]medium🔒---
146348Cisco Stealthwatch Enterprise Web-based Management Interface cross site scriptinglow🔒---
146347Cisco Small Business RV Series Router Web-based Management Interface improper authorizationlow🔒---
146346Cisco Email Security Appliance Antispam Protection Mechanism input validationmedium🔒---
146345Cisco Webex Event Center Web Interface improper authenticationlow🔒---
146344Cisco Unity Express CLI os command injection [CVE-2019-15986]medium🔒---
146343Cisco Industrial Network Director Web-based Management Interface cross site scriptinglow🔒---
146342Cisco Unified Communications Manager Web-based Management Interface sql injectionmedium🔒---
146341Cisco AsyncOS/Email Security Appliance MP3 Detection Engine input validationmedium🔒---
146340Cisco Unified Communications Domain Manager Web-based Management Interface cross site scriptinglow🔒---
146339Cisco TelePresence Collaboration Endpoint/RoomOS CLI access controllow🔒---
146338Cisco Webex Meeting WebEx Network Recording Admin Page access controlmedium🔒---
146337Cisco Prime Infrastructure REST API input validation [CVE-2019-15958]high🔒---
146336Cisco AsyncOS/Web Security Appliance Web Management Interface access controllow🔒---
146335Trend Micro Password Manager information disclosure [CVE-2019-15629]low🔒---
146334UniFi Video command injection [CVE-2019-15595]medium🔒---
146333Cisco TelePresence Collaboration Endpoint CLI input validationmedium🔒---
146332Cisco WebEx Network Recording Player/Webex Player ARF File memory corruptionmedium🔒---
146331Cisco WebEx Network Recording Player/Webex Player ARF File memory corruptionmedium🔒---
146330Cisco Wireless LAN Controller Software Web Interface input validationlow🔒---
146329Cisco Small Business RV Series Router Web-based Management Interface deserializationmedium🔒---
146328Cloud Foundry UAA Log Credentials log filelow🔒---
146327iobroker.web GET Reflected cross site scriptinglow🔒---
146326Yaws URL path traversal [CVE-2011-4350]medium🔒---
146325Ruby OpenSSL Extension inadequate encryption [CVE-2011-4121]medium🔒---
146324Yubico PAM Module pam_sm_authenticate input validationmedium🔒--🔒
146323Serendipity Karma Plugin serendipity_admin.php cross site scriptinglow🔒---
146322phpLDAPadmin HTTP Header resource consumption [CVE-2011-4082]medium🔒---
146321OpenStack Nova Key information disclosure [CVE-2011-4076]low🔒--🔒
146320Hardlink link following [CVE-2011-3632]low🔒--🔒
146319Hardlink integer overflow [CVE-2011-3631]medium🔒--🔒
146318Hardlink out-of-bounds write [CVE-2011-3630]low🔒--🔒
146317Ruby Log File HTTPRequest injectionmedium🔒---
146316Tahoe-LAFS authorization [CVE-2011-3617]low🔒---
146315Red Hat JBoss Application Server cross-site request forgery [CVE-2011-3609]low🔒---
146314Red Hat JBoss Application Server Aministration Console DOM-Based cross site scriptinglow🔒---
146313Apache OFBiz XML-RPC Event xmlrpc xml external entity referencemedium🔒---
146312Polipo assertion [CVE-2011-3596]low🔒--🔒
146311wec_discussion Extension sql injection [CVE-2011-3584]medium🔒---
146310TYPO3 sql injection [CVE-2011-3583]medium🔒---
146309apt apt-key signature verification [CVE-2011-3374]medium🔒---
146308Views Builk Operations Module cross site scripting [CVE-2011-3373]low🔒--🔒
146307evolution-data-server Email Message missing encryption [CVE-2011-3355]low🔒---
146306openvas-scanner Temp File link following [CVE-2011-3351]low🔒---
146305Google Chrome Swiftshader out-of-bounds read [CVE-2019-5881]low🔒---
146304Google Chrome Policy Enforcement information disclosure [CVE-2019-5880]low🔒---
146303Google Chrome Same Origin Policy input validation [CVE-2019-5879]medium🔒---
146302Google Chrome v8 use after free [CVE-2019-5878]medium🔒---
146301Google Chrome Javascript memory corruption [CVE-2019-5877]medium🔒---
146300Google Chrome Media use after free [CVE-2019-5876]medium🔒---
146299Google Chrome Downloads Address input validationmedium🔒---
146298Google Chrome Navigation input validation [CVE-2019-5874]medium🔒---
146297Google Chrome Navigation Address input validationmedium🔒---
146296Google Chrome Mojo use after free [CVE-2019-5872]medium🔒---
146295Google Chrome Skia out-of-bounds write [CVE-2019-5871]medium🔒---
146294Google Chrome Media use after free [CVE-2019-5870]medium🔒---
146293Google Chrome Blink use after free [CVE-2019-5869]medium🔒---
146292Google Chrome Javascript memory corruption [CVE-2019-5866]medium🔒---
146291Google Chrome Policy Enforcement input validation [CVE-2019-5865]medium🔒---
146290Google Chrome Content Security Policy input validation [CVE-2019-5864]medium🔒---
146289Google Chrome AppCache input validation [CVE-2019-5862]medium🔒---
146288Google Chrome Blink improper restriction of rendered ui layersmedium🔒---
146287Google Chrome PDFium use after free [CVE-2019-5860]medium🔒---
146286Google Chrome URI Scheme input validation [CVE-2019-5859]medium🔒---
146285Google Chrome Services Integration input validation [CVE-2019-5858]medium🔒---
146284Google Chrome Javascript memory corruption [CVE-2019-5857]medium🔒---
146283Google Chrome Policy Enforcement input validation [CVE-2019-5856]medium🔒---
146282Google Chrome PDFium integer overflow [CVE-2019-5855]medium🔒---
146281Google Chrome PDFium integer overflow [CVE-2019-5854]medium🔒---
146280Google Chrome Javascript input validation [CVE-2019-5853]medium🔒---
146279Google Chrome Javascript input validation [CVE-2019-5852]low🔒---
146278Google Chrome WebAudio use after free [CVE-2019-5851]medium🔒---
146277Google Chrome Offline Mode use after free [CVE-2019-5850]medium🔒---
146276Google Chrome Skia out-of-bounds read [CVE-2019-5849]medium🔒---
146275Google Chrome Font information disclosure [CVE-2019-5848]low🔒---
146274Google Chrome Javascript memory corruption [CVE-2019-5847]medium🔒---
146273Google Chrome Blink use after free [CVE-2019-5842]medium🔒---
146272IBM Spectrum Protect Backup-Archive Client TCP/IP information exposurelow🔒---
146271Linux Kernel vcsu Device vc_screen.c vcs_write out-of-bounds readmedium🔒---
146270OpenTrade v1.js sql injectionmedium🔒---
146269QueryTree Invitation InvitationsController.cs input validationhigh🔒---
146268Oniguruma regexec.c str_lower_case_match out-of-bounds readmedium🔒---
146267Linux Kernel cpia2_core.c cpia2_remap_buffer integer overflowmedium🔒---
146266Symantec Critical System Protection improper authentication [CVE-2019-18374]medium🔒---
146265Nokia Impact path traversal [CVE-2019-17406]medium🔒---
146264Nokia Impact Reflected cross site scripting [CVE-2019-17405]low🔒---
146263Nokia Impact Path path traversal [CVE-2019-17404]low🔒---
146262Nokia Impact File Upload unrestricted upload [CVE-2019-17403]medium🔒---
146261vscode-codeql codeQL.cli.executablePath path traversal [CVE-2019-16765]medium🔒---
146260pow_assent PowAssent.Phoenix.AuthorizationController resource consumptionlow🔒---
146259Kaspersky Protection Extension authorization [CVE-2019-15684]low🔒---
146258Katello Password Storage Credentials cleartext transmissionlow🔒---
146257Google Chrome WebBluetooth out-of-bounds write [CVE-2019-13724]medium🔒---
146256Google Chrome WebBluetooth use after free [CVE-2019-13723]medium🔒---
146255Google Chrome PDFium use after free [CVE-2019-13721]medium🔒---
146254Google Chrome WebAudio use after free [CVE-2019-13720]medium🔒---
146253Google Chrome Full Screen Mode insecure storage of sensitive informationlow🔒---
146252Google Chrome Omnibox Domain input validationmedium🔒---
146251Google Chrome Full Screen Mode insecure storage of sensitive informationlow🔒---
146250Google Chrome Policy Enforcement authorization [CVE-2019-13716]medium🔒---
146249Google Chrome Omnibox Domain authentication spoofingmedium🔒---
146248Google Chrome Color Enhancer Extension css injectionmedium🔒---
146247Google Chrome Policy Enforcement information disclosure [CVE-2019-13713]low🔒---
146246Google Chrome Policy Enforcement information disclosure [CVE-2019-13711]low🔒---
146245Google Chrome Downloads input validation [CVE-2019-13710]medium🔒---
146244Google Chrome Policy Enforcement authentication spoofing [CVE-2019-13709]medium🔒---
146243Google Chrome Navigation Address authentication spoofingmedium🔒---
146242Google Chrome information disclosure [CVE-2019-13707]low🔒---
146241Google Chrome PDFium out-of-bounds read [CVE-2019-13706]medium🔒---
146240Google Chrome Policy Enforcement information disclosure [CVE-2019-13705]low🔒---
146239Google Chrome Content Security Policy authentication spoofingmedium🔒---
146238Google Chrome Policy Enforcement Address authentication spoofingmedium🔒---
146237Google Chrome Installer privileges management [CVE-2019-13702]medium🔒---
146236Google Chrome Navigation Address authentication spoofingmedium🔒---
146235Google Chrome Renderer memory corruption [CVE-2019-13700]medium🔒---
146234Google Chrome Renderer use after free [CVE-2019-13699]medium🔒---
146233Google Chrome Javascript memory corruption [CVE-2019-13698]medium🔒---
146232Google Chrome Policy Enforcement permission assignment [CVE-2019-13697]low🔒---
146231Google Chrome Javascript use after free [CVE-2019-13696]medium🔒---
146230Google Chrome use after free [CVE-2019-13695]medium🔒---
146229Google Chrome WebRTC use after free [CVE-2019-13694]medium🔒---
146228Google Chrome IndexedDB use after free [CVE-2019-13693]medium🔒---
146227Google Chrome Policy Enforcement input validation [CVE-2019-13692]medium🔒---
146226Google Chrome Navigation Address input validationmedium🔒---
146225Google Chrome Blink use after free [CVE-2019-13688]medium🔒---
146224Google Chrome Blink use after free [CVE-2019-13687]medium🔒---
146223Google Chrome Offline Mode use after free [CVE-2019-13686]medium🔒---
146222Google Chrome use after free [CVE-2019-13685]medium🔒---
146221Google Chrome Javascript information disclosure [CVE-2019-13684]low🔒---
146220Google Chrome Policy Enforcement permission assignment [CVE-2019-13683]low🔒---
146219Google Chrome Same Origin Policy permission assignment [CVE-2019-13682]medium🔒---
146218Google Chrome Download permission assignment [CVE-2019-13681]medium🔒---
146217Google Chrome TLS IP Address privileges managementmedium🔒---
146216Google Chrome Policy Enforcement permission assignment [CVE-2019-13679]medium🔒---
146215Google Chrome Download Domain input validationmedium🔒---
146214Google Chrome Policy Enforcement permission assignment [CVE-2019-13677]medium🔒---
146213Google Chrome Policy Enforcement Domain permission assignmentmedium🔒---
146212Google Chrome Extension input validation [CVE-2019-13675]low🔒---
146211Google Chrome Omnibox Domain input validationmedium🔒---
146210Google Chrome Developer Tools input validation [CVE-2019-13673]low🔒---
146209Google Chrome Security UI input validation [CVE-2019-13671]medium🔒---
146208Google Chrome input validation [CVE-2019-13670]medium🔒---
146207Google Chrome Navigation Address input validationmedium🔒---
146206Google Chrome Policy Enforcement permission assignment [CVE-2019-13668]low🔒---
146205Google Chrome Omnibox URL input validationmedium🔒---
146204Google Chrome information disclosure [CVE-2019-13666]low🔒---
146203Google Chrome Blink permission assignment [CVE-2019-13665]medium🔒---
146202Google Chrome Content Security Policy permission assignment [CVE-2019-13664]medium🔒---
146201Google Chrome Omnibox Domain input validationmedium🔒---
146200Google Chrome Content Security Policy permission assignment [CVE-2019-13662]medium🔒---
146199Google Chrome Notification input validation [CVE-2019-13661]medium🔒---
146198Google Chrome Notification input validation [CVE-2019-13660]medium🔒---
146197Google Chrome Omnibox permission assignment [CVE-2019-13659]medium🔒---
146196389-ds-base Verbose Mode insufficiently protected credentialslow🔒---
146195Ansible GCP Module service_account_contents information disclosurelow🔒---
146194Openshift Container Platform Debug Log neutralization for logslow🔒---
146193Linux Kernel Bluetooth null pointer dereference [CVE-2019-10207]low🔒---
146192IBM Spectrum Protect Backup-Archive Client CIT privileges managementmedium🔒---
146191GNU Patch Incomplete Fix path traversal [CVE-2015-1396]medium🔒--🔒
146189cloud-init EC2 Instance Data privileges management [CVE-2012-6639]medium🔒---
146188libuser Home Directory information disclosure [CVE-2012-5644]low🔒--🔒
146187thttpd .htpasswd File null pointer dereference [CVE-2012-5640]low🔒---
146186Ipa Server Identity Cookie cookie validationlow🔒---
146185libuser Directory Tree toctou [CVE-2012-5630]low🔒--🔒
146184gksu-polkit PolicyKit Policy Configuration File privileges managementmedium🔒--🔒
146183opendnssec libcurl API input validation [CVE-2012-5582]high🔒---
146182Python Keyring default permission [CVE-2012-5578]low🔒---
146181gnome-system-log polkit Policy information disclosure [CVE-2012-5535]low🔒--🔒
146180Claws Mail vCalendar Plugin Interface Credentials insufficiently protected credentialslow🔒---
146179Quagga ospf6d assertion [CVE-2012-5521]low🔒---
146178vdsm Certificate Generator certificate validation [CVE-2012-5518]medium🔒--🔒
146177Zope Incomplete Fix CVE-2010-1104 cross site scripting [CVE-2011-4924]low🔒---
146176cri-o Container denial of service [CVE-2019-14891]low🔒---
146175ibus DBus Server authorization [CVE-2019-14822]medium🔒---
146174Linux Kernel WMM heap-based overflow [CVE-2019-14815]medium🔒---
146173Red Hat Enterprise Linux Image Library insufficiently protected credentialslow🔒---
146172Infinispan invokeAccessibly Remote Privilege Escalationmedium🔒---
146171Apple iPhone malloc privileges management [CVE-2019-9536]medium🔒---
146170IBM Tivoli Netcool Impact Error Message information disclosurelow🔒---
146169IBM Tivoli Netcool Impact Web UI cross site scriting [CVE-2019-4569]low🔒---
146168IBM SmartCloud Analytics solrconfig.xml information disclosurelow🔒---
146167IBM SmartCloud Analytics Host Header Cache Poisoning privileges managementmedium🔒---
146166IBM SmartCloud Analytics input validation [CVE-2019-4215]medium🔒---
146165IBM SmartCloud Analytics Token/Cookie authorization [CVE-2019-4214]low🔒---
146164McAfee Client Proxy Microsoft Windows Client privileges managementmedium🔒---
146163ZTE ZXCDN IAMWEB Management Portal input validation [CVE-2019-3428]low🔒---
146162ZTE XCDN IAMWEB Management Page injection [CVE-2019-3427]medium🔒---
146161EmbedThis GoAhead HTTP Header memory corruption [CVE-2019-19240]medium🔒---
146160Linux Kernel AppleTalk Subsystem aarp.c register_snap_client null pointer dereferencelow🔒---
146159Pagekit CSRF Token cross-site request forgery [CVE-2019-19013]low🔒---
146158Sangoma Asterisk/Certified Asterisk res_pjsip_t38.c null pointer dereferencelow🔒---
146157HP ThinPro Citrix Receiver Wrapper input validation [CVE-2019-18910]medium🔒---
146156HP ThinPro input validation [CVE-2019-18909]medium🔒---
146155Sangoma Asterisk/Certified Asterisk chan_sip.c authorizationmedium🔒---
146154phpMyAdmin Designer sql injection [CVE-2019-18622]medium🔒---
146153Sangoma Asterisk/Certified Asterisk Asterisk Manager Interface manager.c authorizationmedium🔒---
146152Eracent EPA Agent Agent Executable untrusted search path [CVE-2019-17446]low🔒---
146151Eracent EDA/EPA/EPM/EUA/FLW/SUM Agent Executable link followinglow🔒---
146150Pannellum data URI cross site scripting [CVE-2019-16763]low🔒---
146149HP ThinPro Application Filter privileges management [CVE-2019-16287]medium🔒---
146148HP ThinPro OS Application Filter authorization [CVE-2019-16286]medium🔒---
146147HP ThinPro authorization [CVE-2019-16285]low🔒---
146146NSSLGlobal SatLink VSAT Modem Unit Web Interface cross site scriptinglow🔒---
146145GitLab Comment resource consumption [CVE-2019-15593]low🔒---
146144ros_comm/ros-melodic-ros-comm buffer overflow [CVE-2019-13566]medium🔒---
146143NAVER Vaccine nsz Archive nsGreen.dll path traversalmedium🔒---
146142Pivotal RabbitMQ Policy Management cross site scripting [CVE-2019-11291]low🔒---
146141Pivotal RabbitMQ Web Management Plugin resource consumption [CVE-2019-11287]low🔒---
146140ansible-playbook-k/Ansible CLI Tools Template Password input validationlow🔒---
146139PowerDNS input validation [CVE-2019-10203]low🔒---
146138CloudForms v2v Infrastructure Mapping Delete Stored cross site scriptinglow🔒---
146137libbluray JAR File MountManager toctoulow🔒---
146136OpenStack Designate DNS Protocol infinite loop [CVE-2015-5694]medium🔒---
146135oVirt Permission authorization [CVE-2015-1780]medium🔒---
146134ace Privileges generate_doygen.pl random valueslow🔒---
146133CHICKEN select buffer overflowmedium🔒---
146132redhat-upgrade-tool GPG Signature signature verification [CVE-2014-3585]medium🔒---
146131POSH login.php cross site scriptinglow🔒---
146130POSH scr_sendmd5.php redirectmedium🔒---
146129Gael Q-Pulse managedlistdialog.aspx cross site scriptinglow🔒---
146128FlashCanvas proxy.php cross site scriptingmedium🔒---
146127Mijosoft MijoSearch Error Message search information exposurelow🔒---
146126Mijosoft MijoSearch search cross site scriptinglow🔒---
146125D-Link DSL-6740U Remote Management cross-site request forgerylow🔒---
146124Exis Contexis Photo Gallery Model cross site scripting [CVE-2013-6239]low🔒---
146123SpagoBI Worksheet Designer unrestricted upload [CVE-2013-6234]low🔒---
146122ownCloud new.php cross site scriptinglow🔒---
146121W3 Total Cache Database Cache information disclosure [CVE-2012-6079]low🔒---
146120W3 Total Cache Hash Generation information disclosure [CVE-2012-6078]low🔒---
146119W3 Total Cache Secure Storage Password information disclosurelow🔒---
146118plow buffer overflow [CVE-2012-3407]medium🔒---
146117PyXML Hash Table resource consumption [CVE-2012-0877]low🔒---
146116PostfixAdmin menu.php cross site scriptinglow🔒--🔒
146115Qualcomm Snapdragon Auto Xtra Daemon use after free [CVE-2019-10490]medium🔒---
146114Qualcomm Snapdragon Auto Qurt Kernel buffer overflow [CVE-2018-13916]medium🔒---
146113Fortinet FortiOS Configuration Backup hard-coded credentialslow🔒---
146112Beckhoff TwinCAT Profinet Driver divide by zero [CVE-2019-5637]low🔒---
146111Beckhoff TwinCAT Runtime ADS Discovery Service denial of servicelow🔒---
146110NetApp ONTAP Select Deploy Administration Utility injection [CVE-2019-5509]medium🔒---
146109xcftools xcf2png/xcf2pnm flattenIncrementally integer overflowmedium🔒---
146108xcftools xcf2png/xcf2pnm flattenIncrementally integer overflowmedium🔒---
146107Tenda AC9 Router AC1200 WanParameterSetting os command injectionmedium🔒---
146106Tenda AC9 Router AC1200 WanParameterSetting os command injectionmedium🔒---
146105Qualcomm Snapdragon Auto memory corruption [CVE-2019-2339]medium🔒---
146104Qualcomm Snapdragon Auto CBO Listener use after free [CVE-2019-2336]medium🔒---
146103Qualcomm Snapdragon Auto Attach Reject Message infinite looplow🔒---
146102Qualcomm Snapdragon Compute use after free [CVE-2019-2329]medium🔒---
146101Qualcomm Snapdragon Auto Kernel out-of-bounds read [CVE-2019-2318]low🔒---
146100Qualcomm Snapdragon Auto API memory corruption [CVE-2019-2315]medium🔒---
146099Qualcomm Snapdragon Auto SNDCP Module out-of-bounds read [CVE-2019-2303]medium🔒---
146098Qualcomm Snapdragon Auto NAN Message integer underflow [CVE-2019-2297]medium🔒---
146097Qualcomm Snapdragon Auto SDI memory corruption [CVE-2019-2295]low🔒---
146096Qualcomm Snapdragon Auto Modem improper authentication [CVE-2019-2289]medium🔒---
146095Qualcomm Snapdragon Auto Downlink Session out-of-bounds readmedium🔒---
146094Qualcomm Snapdragon Auto P2P Action Frame out-of-bounds readmedium🔒---
146093Qualcomm Snapdragon Auto Camera Sensor use after free [CVE-2019-2266]medium🔒---
146092Qualcomm Snapdragon Auto Bitmap File buffer overflow [CVE-2019-2251]medium🔒---
146091libarchive archive_string.c archive_wstring_append_from_mbs out-of-bounds readmedium🔒---
146090rConfig devices.php sql injectionmedium🔒---
146089Oniguruma regparse.c fetch_interval_quantifier out-of-bounds readmedium🔒---
146088Oniguruma gb18030.c gb18030_mbc_enc_len out-of-bounds readmedium🔒---
146087vTiger CRM My Preferences default permission [CVE-2019-19202]medium🔒---
146086Kyrol Internet Security IOCTL kyrld.sys permission assignmentmedium🔒---
146085Shibboleth Service Provider Spec File link following [CVE-2019-19191]medium🔒---
146084Jalios JCMS improper authentication [CVE-2019-19033]medium🔒---
146083Sangoma FreePBX Access Control authorization [CVE-2019-19006]medium🔒---
146082Nitro Pro Log File debug.log input validationmedium🔒---
146081Zulip Server Password Authentication API Key improper authenticationlow🔒---
146080Redmine sql injection [CVE-2019-18890]medium🔒---
146079Symfony Cache Adapter Interface injection [CVE-2019-18889]medium🔒---
146078Symfony MIME Type input validation [CVE-2019-18888]medium🔒---
146077Symfony UriSigner race condition [CVE-2019-18887]medium🔒---
146076Symfony User information disclosure [CVE-2019-18886]low🔒---
146075HotkeyP Commands.cpp privilege privileges managementmedium🔒---
146074Fortinet FortiClient Security Check os command injection [CVE-2019-17650]medium🔒---
146073Zoho ManageEngine OpManager/Firewall Analyzer Nipper default permissionmedium🔒---
146072NetApp ONTAP Select Deploy Administration Utility input validationmedium🔒---
146071Lexmark Services Monitor Service Port 2070 path traversal [CVE-2019-16758]medium🔒---
146070Google Compute Engine Plugin ComputeEngineCloud#doProvision cross-site request forgerylow🔒---
146069Google Compute Engine Plugin API Endpoint permission assignmentlow🔒---
146068Google Compute Engine Plugin SSH Host Key authorization [CVE-2019-16546]medium🔒---
146067QMetry for JIRA Test Management Plugin cleartext transmissionlow🔒---
146066QMetry for JIRA Test Management Plugin config.xml Credentials credentials storagelow🔒---
146065Spira Importer Plugin Global Configuration Credentials credentials storagelow🔒---
146064Anchore Container Image Scanner Plugin config.xml Credentials credentials storagelow🔒---
146063Jira Plugin Site Definition exposure of resource [CVE-2019-16541]medium🔒---
146062Support Core Plugin Permission path traversal [CVE-2019-16540]medium🔒---
146061Support Core Plugin Permission Check improper authorization [CVE-2019-16539]medium🔒---
146059Centreon Web OVA/OVF permission assignment [CVE-2019-16406]medium🔒---
146058Centreon Web Macro Expression Location Setting input validationmedium🔒---
146057Belkin Linksys Velop sysinfo_json.cgi Key authorizationlow🔒---
146056Fortinet FortiClient SSL VPN Gateway information disclosure [CVE-2019-15704]low🔒---
146055GOG Galaxy GalaxyClientService privileges management [CVE-2019-15511]medium🔒---
146054Symfony VarExport var-exporter input validationmedium🔒---
146053ioBroker path traversal [CVE-2019-10767]medium🔒---
146052Qualcomm IPS Interpreter integer overflow [CVE-2019-10627]medium🔒---
146051Qualcomm QCA6174_9377 Registry privileges management [CVE-2019-10617]medium🔒---
146050Qualcomm Snapdragon Auto WLAN Module buffer overflow [CVE-2019-10566]medium🔒---
146049Qualcomm Snapdragon Auto Message out-of-bounds read [CVE-2019-10563]medium🔒---
146048Qualcomm Snapdragon Auto Loop memory corruption [CVE-2019-10535]medium🔒---
146047Qualcomm Snapdragon Auto Camera Driver array index [CVE-2019-10503]medium🔒---
146046Qualcomm Snapdragon Auto Ressource Lock toctou [CVE-2019-10486]medium🔒---
146045Fotinet FortiOS URL/SPAM/AV hard-coded credentials [CVE-2018-9195]low🔒---
146044Asuswrt-Merlin blocking.asp out-of-bounds writemedium🔒---
146043Synametrics SynaMan/Syncrify/SynTail cross-site request forgerylow🔒---
146042Ikiwiki openid-selector.tmpl cross site scriptinglow🔒--🔒
146041Zhone zNID 2426A Web Administrative Portal authorization [CVE-2014-8356]medium🔒---
146040xcfa Temp File race condition [CVE-2014-5255]medium🔒---
146039xcfa Temp File race condition [CVE-2014-5254]medium🔒---
146038eDeploy eval injectionmedium🔒---
146037wolfSSL Server Certificate improper authentication [CVE-2014-2904]medium🔒---
146036wolfSSL CA Certificate certificate validation [CVE-2014-2902]medium🔒---
146035wolfSSL Certificate certificate validation [CVE-2014-2901]medium🔒---
146034python-rply Temp File rply-*.json link followingmedium🔒---
146033Gamera Temp File io.py tempfile.mktemp input validationmedium🔒---
146032rc Temp File input validation [CVE-2014-1936]medium🔒---
1460319base Temp File input validation [CVE-2014-1935]medium🔒---
146030openshift-origin-node Gem cronjob Timeout input validation [CVE-2014-0084]low🔒---
146029net-ldap gem SSHA Password Generation password.rb LDAP Salt unknown vulnerabilitymedium🔒---
146028Slackware iodbctest/iodbctestw input validation [CVE-2013-7172]medium🔒---
146027Slackware/Slackware LLVM Privileges tmp input validationmedium🔒---
146026Loftek Nexus 543 IP Camera get_realip.cgi information disclosurelow🔒---
146025Loftek Nexus 543 IP Camera check_users.cgi Password insufficiently protected credentialsmedium🔒---
146024Loftek Nexus 543 IP Camera set_users.cgi cross-site request forgerylow🔒---
146023Loftek Nexus 543 IP Camera path traversal [CVE-2013-3311]medium🔒---
146022xlockmore dclock input validation [CVE-2012-4524]medium🔒--🔒
146021Mono ASP.NET Web Form Hash input validation [CVE-2012-3543]low🔒--🔒
146020cumin PostgreSQL Database input validation [CVE-2012-3460]medium🔒---
146019pam_shield Default Configuration input validation [CVE-2012-2350]medium🔒---
146018trytond ModelView.button authorizationmedium🔒---
146017Activity Module cross-site request forgery [CVE-2012-2079]low🔒---
146016Activity Module cross site scripting [CVE-2012-2078]low🔒---
146015Quick Tabs Module cross site scripting [CVE-2012-1637]low🔒---
146014Chyrp ajax.php cross site scriptinglow🔒---
146013Linux Kernel extent-tree.c __btrfs_free_extent information disclosurelow🔒---
146012Linux Kernel namei.c ext4_empty_dir null pointer dereferencelow🔒---
146011Linux Kernel ctree.c btrfs_root_node null pointer dereferencelow🔒---
146010Schneider Electric Andover Continuum Web Server cross site scriptinglow🔒---
146009Schneider Electric Modicon M340 CPU Web Server information disclosuremedium🔒---
146008VMware Workstation/Fusion RPC input validation [CVE-2019-5542]low🔒---
146007VMware Workstation/Fusion e1000e Virtual Network Adapter out-of-bounds writemedium🔒---
146006VMware Workstation/Fusion vmnetdhcp information disclosure [CVE-2019-5540]low🔒---
146005IBM Security Identity Manager Deserialization code injectionmedium🔒---
146004IBM Maximo Asset Management denial of service [CVE-2019-4530]low🔒---
146003postgresql-common pg_ctlcluster privileges managementmedium🔒---
146002CODESYS Web Server buffer overflow [CVE-2019-18858]medium🔒---
146001GNU Serveez reader http_cgi_write information disclosuremedium🔒---
146000iobroker.admin path traversal [CVE-2019-10765]low🔒---
145999Google Chrome unknown vulnerability [CVE-2016-9652]low🔒--🔒
145998Google Chrome Product Security memory corruption [CVE-2016-5194]medium🔒--🔒
145997PostgreSQL Error Message information disclosure [CVE-2015-3167]low🔒--🔒
145996PostgreSQL snprintf memory corruptionlow🔒--🔒
145995GnuPG Sign Extension keybox-search.c input validationmedium🔒--🔒
145994GnuPG Keyring DB use after free [CVE-2015-1606]medium🔒--🔒
145993Dolibarr ERP CRM barcode.lib.php input validation [CVE-2013-2093]medium🔒---
145992Dolibarr ERP CRM functions.lib.php cross site scripting [CVE-2013-2092]low🔒---
145991Dolibarr ERP CRM fiche.php sql injectionmedium🔒---
145990MediaWiki api.php information disclosurelow🔒--🔒
145989MediaWiki HttpFunctions.php input validationmedium🔒--🔒
145988Piwik cross site scripting [CVE-2013-0195]low🔒---
145987Piwik cross site scripting [CVE-2013-0194]low🔒---
145986Piwik cross site scripting [CVE-2013-0193]low🔒---
145985tuned default permission [CVE-2012-6136]medium🔒---
145984Pidgin dbus cleartext transmission [CVE-2012-1257]low🔒---
145983Tiki tiki-admin_system.php cross site scriptinglow🔒---
145982Tiki tiki-remind_password.php cross site scriptinglow🔒---
145981Smarty3 input validation [CVE-2011-1028]medium🔒---
145980Weborf HTTP input validation [CVE-2011-0529]low🔒---
145979statusnet addslashes input validationmedium🔒---
145978statusnet Error Message cross site scripting [CVE-2010-4659]low🔒---
145977Lenovo Paper software privileges management [CVE-2019-6191]medium🔒---
145976Lenovo System Interface Foundation DLL Loader untrusted search pathmedium🔒---
145975Lenovo XClarity Controller Stored injection [CVE-2019-6187]medium🔒---
145974Lenovo System Interface Foundation code injection [CVE-2019-6186]medium🔒---
145973Customer Engagement Service privileges management [CVE-2019-6184]medium🔒---
145972ThinkPad USB-C Dock denial of service [CVE-2019-6176]low🔒---
145971Mail2000 redirect [CVE-2019-15073]medium🔒---
145970Mail2000 Login portal cross site scriptinglow🔒---
145969Mail2000 go cross site scriptinglow🔒---
IDTitleVulDBCVSSSecuniaXForceNessus
145968GNU C Library setuid Program information disclosure [CVE-2019-19126]medium🔒---
145967Apache NiFi Authentication Mechanism Logout session expirationmedium🔒---
145966AngularJS merge input validationmedium🔒---
145965Apache NiFi API information disclosure [CVE-2019-10083]low🔒---
145964Apache NiFi XMLFileLookupService xml external entity referencemedium🔒---
145963Zikula cross site scripting [CVE-2011-3352]low🔒---
145962masqmail log.c seteuid dropped privilegesmedium🔒---
145961LightDM Permission privileges management [CVE-2011-3349]medium🔒---
145960foomatic-rip Filter Debug Mode link following [CVE-2011-2924]medium🔒--🔒
145959foomatic-rip Filter Debug Mode link following [CVE-2011-2923]low🔒--🔒
145958Unbound IPsec Module input validation [CVE-2019-18934]medium🔒---
145957Cloud Foundry Routing Nonce input validation [CVE-2019-11289]low🔒---
145956Pixie limit sql injectionmedium🔒---
145955Node-cookie-signature Comparison race condition [CVE-2016-1000236]low🔒---
145954RubyGems Startup input validation [CVE-2012-6135]medium🔒---
145953nuSOAP Certificate Validation certificate validation [CVE-2012-6071]medium🔒---
145952Falconpl libcurl API input validation [CVE-2012-6070]medium🔒---
145951ktsuss GTK Interface input validation [CVE-2011-2922]medium🔒--🔒
145950ktsuss Privileges dropped privileges [CVE-2011-2921]medium🔒--🔒
145949Code42 DLL Loader untrusted search path [CVE-2019-16861]medium🔒---
145948Code42 DLL Loader untrusted search path [CVE-2019-16860]medium🔒---
145947HHVM __construct use after freemedium🔒---
145946sniffit Configuration File out-of-bounds write [CVE-2014-5439]high🔒--🔒
145945uzbl Cookie Storage information disclosure [CVE-2012-0843]low🔒--🔒
145944Surf Cookie Jahr information disclosure [CVE-2012-0842]low🔒--🔒
145943gnusound format string [CVE-2012-0824]medium🔒---
145942nginx HTTP Proxy Module input validation [CVE-2011-4968]medium🔒---
145941tog-Pegasus Package Hash input validation [CVE-2011-4967]low🔒---
145940Cobbler privileges management [CVE-2011-4954]medium🔒--🔒
145939Cobbler cross-site request forgery [CVE-2011-4952]low🔒--🔒
145938mpack information disclosure [CVE-2011-4919]low🔒--🔒
145937NVIDIA NVFlash privileges management [CVE-2019-5688]medium🔒---
145936OpenWrt ustream-ssl certificate validation [CVE-2019-5102]medium🔒---
145935OpenWrt ustream-ssl __ustream_ssl_poll certificate validationmedium🔒---
145934ZTE C520V21 Web Service improper authentication [CVE-2019-3424]medium🔒---
145933ZTE C520V21 URL path traversal [CVE-2019-3423]medium🔒---
145932PHICOMM K2 autoupgrade.lua input validation [CVE-2019-19117]medium🔒---
145931newbee-mall NewBeeMallGoodsMapper.xml sql injectionmedium🔒---
145930Octopus Server Persistent cross site scripting [CVE-2019-19085]low🔒---
145929Octopus Deploy Package unrestricted upload [CVE-2019-19084]medium🔒---
145928Norton App Lock privileges management [CVE-2019-18373]low🔒---
145927Comodo Internet Security Signature Validation signmgr.dll untrusted search pathmedium🔒---
145926Micro Focus Operations Agent XML Data xml external entity referencemedium🔒---
145925Footy Tipping Software AFL Web Edition File Upload unrestricted uploadmedium🔒---
145924Footy Tipping Software AFL Web Edition cross site scripting [CVE-2019-17057]low🔒---
145923Mailbird HTML Mail Message cross site scripting [CVE-2019-15054]low🔒---
145922Social Photo Gallery plugin Album input validation [CVE-2019-14467]medium🔒---
145921Apache Shiro Configuration Padding input validationmedium🔒---
145920Apache Solr Configuration File solr.in.sh unrestricted uploadmedium🔒---
145918Sandline Centraleyezer File Upload Stored cross site scriptinglow🔒---
145917Sandline Centraleyezer Category Stored cross site scriptinglow🔒---
145916Sandline Centraleyezer File Upload unrestricted upload [CVE-2019-12271]medium🔒---
145915elliptic-php Private Key Elliptic-Curve race conditionlow🔒---
145914Pimcore pimcore sql injectionmedium🔒---
145913Codehaus jackson-mapper-asl XML Data xml external entity referencemedium🔒---
145912Apache Atlas Search Stored cross site scriptinglow🔒---
145911Plex Media Server Access Control insufficiently protected credentialsmedium🔒---
145910Raritan CommandCenter Secure Gateway XML Data xml external entity referencemedium🔒---
145909BlackBoard Learn bb-auth-provider-cas Authentication Module redirectmedium🔒---
145908TBOOT Boot Loader loader.c input validationmedium🔒--🔒
145907Jenkins CI Game Plugin cross site scripting [CVE-2012-4441]low🔒---
145906Jenkins Violations Plugin cross site scripting [CVE-2012-4440]low🔒---
145905Jenkins URL cross site scripting [CVE-2012-4439]low🔒---
145904Jenkins input validation [CVE-2012-4438]medium🔒---
145903Distributed Ruby instance_eval Remote Code Executionhigh🔒---
145902Distributed Ruby Syscall Remote Code Execution [CVE-2011-5330]high🔒---
145901Iceweasel-firegpg Temp File link following [CVE-2008-7273]medium🔒---
145900Linux Kernel dc clock_source_create resource consumptionlow🔒---
145899Linux Kernel dc create_resource_pool resource consumptionlow🔒---
145898Linux Kernel main.c nfp_flower_spawn_vnic_reprs resource consumptionlow🔒---
145897Linux Kernel main.c nfp_flower_spawn_phy_reprs resource consumptionlow🔒---
145896Linux Kernel tun.c qrtr_tun_write_iter resource consumptionlow🔒---
145895Linux Kernel usb.c ath10k_usb_hif_tx_sg resource consumptionlow🔒---
145894Linux Kernel ib_verbs.c bnxt_re_create_srq resource consumptionlow🔒---
145893Linux Kernel cls.c nfp_abm_u32_knode_replace resource consumptionlow🔒---
145892Linux Kernel ca8210.c ca8210_probe resource consumptionlow🔒---
145891Linux Kernel wmi.c ath9k_wmi_cmd resource consumptionlow🔒---
145890Linux Kernel htc_hst.c wait_for_completion_timeout resource consumptionlow🔒---
145889Linux Kernel trace_events_filter.c predicate_parse resource consumptionlow🔒---
145888Linux Kernel rsi_91x_mgmt.c rsi_send_beacon resource consumptionlow🔒---
145887Linux Kernel spi-gpio.c spi_gpio_probe resource consumptionlow🔒---
145886Linux Kernel fastrpc.c fastrpc_dma_buf_attach resource consumptionlow🔒---
145885Linux Kernel rtl8xxxu_core.c rtl8xxxu_submit_int_urb resource consumptionlow🔒---
145884Linux Kernel amdgpu_acp.c acp_hw_init resource consumptionlow🔒---
145883Linux Kernel bfad_attr.c bfad_im_get_stats resource consumptionlow🔒---
145882Linux Kernel sdma.c sdma_init resource consumptionlow🔒---
145881Linux Kernel spi-fsl-lpspi.c fsl_lpspi_probe resource consumptionlow🔒---
145880Linux Kernel usb.c rtl_usb_probe resource consumptionlow🔒---
145879Linux Kernel crypto_user_base.c crypto_report resource consumptionlow🔒---
145878Linux Kernel adis_buffer.c adis_update_scan_mode_burst resource consumptionlow🔒---
145877Linux Kernel adis_buffer.c adis_update_scan_mode resource consumptionlow🔒---
145876Linux Kernel ctxt-info-gen3.c iwl_pcie_ctxt_info_gen3_init resource consumptionlow🔒---
145875Linux Kernel dbg.c alloc_sgtable resource consumptionlow🔒---
145874Linux Kernel pcie.c mwifiex_pcie_init_evt_ring resource consumptionlow🔒---
145873Linux Kernel pcie.c mwifiex_pcie_alloc_cmdrsp_buf resource consumptionlow🔒---
145872Linux Kernel nl80211.c nl80211_get_ftm_responder_stats resource consumptionlow🔒---
145871Linux Kernel cx23888-ir.c cx23888_ir_probe resource consumptionlow🔒---
145870Linux Kernel rpmsg_char.c rpmsg_eptdev_write_iter resource consumptionlow🔒---
145869Linux Kernel gs_usb.c gs_can_open resource consumptionlow🔒---
145868Linux Kernel op-rfkill.c i2400m_op_rfkill_sw_toggle resource consumptionlow🔒---
145867Linux Kernel crypto_user_stat.c crypto_reportstat resource consumptionlow🔒---
145866Linux Kernel unittest.c unittest_data_add resource consumptionlow🔒---
145865Linux Kernel vboxguest_utils.c crypto_reportstat resource consumptionlow🔒---
145864Linux Kernel health.c mlx5_fw_fatal_reporter_dump resource consumptionlow🔒---
145863Linux Kernel ipmi_msghandler.c __ipmi_bmc_register resource consumptionlow🔒---
145862Linux Kernel conn.c mlx5_fpga_conn_create_cq resource consumptionlow🔒---
145861Linux Kernel v3d_gem.c v3d_submit_cl_ioctl resource consumptionlow🔒---
145860Linux Kernel i40e_main.c i40e_setup_macvlans resource consumptionlow🔒---
145859Xorux Lpar2RRD/Stor2RRD Upgrade Package os command injectionmedium🔒---
145858KairosDB view.html cross site scriptinglow🔒---
145857jhead jpgfile.c process_SOFn out-of-bounds readmedium🔒---
145856iTerm2 Search History information disclosure [CVE-2019-19022]low🔒---
145855Oniguruma regexec.c search_in_range integer overflowmedium🔒---
145854MiniUPnP ngiflib ngiflib.c GifIndexToTrueColor null pointer dereferencelow🔒---
145853F5 BIG-IP Management Port input validation [CVE-2019-6664]medium🔒---
145852F5 BIG-IP/BIG-IQ/iWorkflow/Enterprise Manager Configuration Utility DNS Rebinding input validationmedium🔒---
145851F5 BIG-IP Log log file [CVE-2019-6662]low🔒---
145850F5 BIG-IP APM APD/APMD resource consumption [CVE-2019-6661]low🔒---
145849F5 BIG-IP resource consumption [CVE-2019-6660]low🔒---
145848F5 BIG-IP Virtual Server input validation [CVE-2019-6659]low🔒---
145847Math Plugin Eval input validation [CVE-2019-19010]medium🔒---
145846AbuseFilter Extension information disclosure [CVE-2019-18987]low🔒---
145845Pimcore Forgot Password excessive authentication [CVE-2019-18986]low🔒---
145844Pimcore 2FA Token excessive authentication [CVE-2019-18985]low🔒---
145843Pimcore Email Log Preview EmailController.php cross site scriptinglow🔒---
145842Pimcore ID privileges management [CVE-2019-18981]medium🔒---
145841Cyrus IMAP privileges management [CVE-2019-18928]medium🔒---
145840Symantec Endpoint Protection privileges management [CVE-2019-18372]medium🔒---
145839slpjs Bitcoin Script input validation [CVE-2019-16762]low🔒---
145838slp-validate Bitcoin Script input validation [CVE-2019-16761]low🔒---
145837Ghostscript .charkeys Remote Code Executionmedium🔒---
145836TemaTres Administrator Account privileges management [CVE-2019-14345]medium🔒---
145835TemaTres Stored cross site scripting [CVE-2019-14343]low🔒---
145834Marvell 88W8688 Parrot Faurecia Automotive FC6050W out-of-bounds writemedium🔒---
145833Marvell 88W8688 Parrot Faurecia Automotive FC6050W out-of-bounds writemedium🔒---
145832Symantec Endpoint Protection Manager privileges management [CVE-2019-12759]medium🔒---
145831Symantec Endpoint Protection Digital Signature input validationmedium🔒---
145830Symantec Endpoint Protection privileges management [CVE-2019-12757]medium🔒---
145829Symantec Endpoint Protection Password Protection authorizationmedium🔒---
145828Symantec Endpoint Protection Manager privileges management [CVE-2018-18368]medium🔒---
145827NSS ssl3_ComputeRecordMACConstantTime null pointer dereferencelow🔒--🔒
145826openshift Install Script exposure of resource [CVE-2014-0023]medium🔒---
145825Chrony cmdmon Protocol Amplification privileges managementmedium🔒--🔒
145824ClamAV dbg_printhex information disclosurelow🔒--🔒
145823ClamAV libclamav buffer overflow [CVE-2013-7088]medium🔒--🔒
145822ClamAV WWPack memory corruption [CVE-2013-7087]medium🔒--🔒
145821Perdition IMAP Server/POP Server ssl_outgoing_ciphers exceptional conditionlow🔒---
145820qtnx Configuration File Key cleartext storagelow🔒---
145819ax25-tools AX.25 Daemon setuid privileges managementmedium🔒---
145818Drupal File Upload authorization [CVE-2011-2726]medium🔒---
145817gksu-polkit xauth input validation [CVE-2011-0703]medium🔒---
145816Jetty Cookie Dump Servlet Escape memory corruptionmedium🔒---
145815Intel fTPM race condition [CVE-2019-11090]low🔒---
145814Adobe Illustrator CC memory corruption [CVE-2019-8248]medium🔒---
145813Adobe Illustrator CC memory corruption [CVE-2019-8247]medium🔒---
145812Adobe Media Encoder out-of-bounds write [CVE-2019-8246]medium🔒---
145811Adobe Media Encoder out-of-bounds read [CVE-2019-8244]medium🔒---
145810Adobe Media Encoder out-of-bounds read [CVE-2019-8243]medium🔒---
145809Adobe Media Encoder out-of-bounds read [CVE-2019-8242]medium🔒---
145808Adobe Media Encoder out-of-bounds read [CVE-2019-8241]medium🔒---
145807Adobe Bridge CC memory corruption [CVE-2019-8240]medium🔒---
145806Adobe Bridge CC memory corruption [CVE-2019-8239]medium🔒---
145805Adobe Illustrator CC Library Loader untrusted search path [CVE-2019-7962]medium🔒---
145804Adobe Animate CC Library Loader untrusted search path [CVE-2019-7960]medium🔒---
145803Philips Taolight Smart Wi-Fi Wiz Connected LED Bulb API improper authenticationmedium🔒---
145802rack-cors Gem path traversal [CVE-2019-18978]medium🔒---
145801MicroStrategy Library Reflected cross site scriptinglow🔒---
145800SnowHaze input validation [CVE-2019-18949]low🔒---
145799eQ-3 Homematic CCU2/Homematic CCU3 Web Interface exec.cgi input validationmedium🔒---
145798eQ-3 Homematic CCU2/Homematic CCU3 Web Interface save.cgi input validationmedium🔒---
145797eQ-3 Homematic CCU2/Homematic CCU3 Web Interface exec.cgi input validationmedium🔒---
145796Scanguard default permission [CVE-2019-18895]medium🔒---
145795Linux Kernel volumes.c null pointer dereferencelow🔒---
1457943xLogic Infinias Access Control cross-site request forgery [CVE-2019-18651]low🔒---
145793Untangle NG Firewall Report Stored cross site scriptinglow🔒---
145792Untangle NG Firewall Reflected cross site scripting [CVE-2019-18648]low🔒---
145791Untangle NG Firewall injection [CVE-2019-18647]medium🔒---
145790Within Authenticate Firewall sql injection [CVE-2019-18646]medium🔒---
145789Espressif ESP32 Secure Boot information disclosure [CVE-2019-17391]low🔒---
145788STMicroelectronics ST33TPHF2ESPI TPM Private Key TPM-Fail risky encryptionlow🔒---
145787Blade Shadow Network Protocol input validation [CVE-2019-16110]medium🔒---
145786ZyXEL GS1900 Password Recovery input validation [CVE-2019-15804]medium🔒---
145785ZyXEL GS1900 libfds.so fds_sys_passDebugPasswd_ret input validationmedium🔒---
145784ZyXEL GS1900 Configuration Backup libsal.so.0.0 sal_util_str_encrypt hard-coded credentialsmedium🔒---
145783ZyXEL GS1900 libfds.so.0.0 fds_sys_passDebugPasswd_ret insufficiently protected credentialsmedium🔒---
145782ZyXEL GS1900 libclicmd.so cmd_sys_traceroute_exec input validationmedium🔒---
145781ZyXEL GS1900 Web Interface privileges management [CVE-2019-15799]low🔒---
145780Sony Xperia XZs external reference [CVE-2019-15744]medium🔒---
145779Sony Xperia Touch external reference [CVE-2019-15743]medium🔒---
145778Xiaomi Mi A3 external reference [CVE-2019-15475]medium🔒---
145777Xiaomi Cepheus external reference [CVE-2019-15474]medium🔒---
145776Xiaomi Mi A2 Lite external reference [CVE-2019-15473]medium🔒---
145775Xiaomi Mi A2 Lite external reference [CVE-2019-15472]medium🔒---
145774Xiaomi Mi Mix 2S permission assignment [CVE-2019-15471]medium🔒---
145773Xiaomi Redmi Note 6 Pro permission assignment [CVE-2019-15470]medium🔒---
145772Xiaomi Mi Pad 4 permission assignment [CVE-2019-15469]medium🔒---
145771Xiaomi Mi A2 Lite external reference [CVE-2019-15468]medium🔒---
145770Xiaomi Mi Mix 2S external reference [CVE-2019-15467]medium🔒---
145769Xiaomi Redmi 6 Pro external reference [CVE-2019-15466]medium🔒---
145768Samsung J7 Pro permission assignment [CVE-2019-15465]medium🔒---
145767Samsung J7 Pro permission assignment [CVE-2019-15464]medium🔒---
145766Samsung j7popeltemtr permission assignment [CVE-2019-15463]medium🔒---
145765Samsung J7 Duo permission assignment [CVE-2019-15462]medium🔒---
145764Samsung J7 Neo permission assignment [CVE-2019-15461]medium🔒---
145763Samsung J7 Neo permission assignment [CVE-2019-15460]medium🔒---
145762Samsung J7 Neo permission assignment [CVE-2019-15459]medium🔒---
145761Samsung J7 Neo permission assignment [CVE-2019-15458]medium🔒---
145760Samsung J6 permission assignment [CVE-2019-15457]medium🔒---
145759Samsung J6 permission assignment [CVE-2019-15456]medium🔒---
145758Samsung J5 permission assignment [CVE-2019-15455]medium🔒---
145757Samsung J4 permission assignment [CVE-2019-15454]medium🔒---
145756Samsung J4 permission assignment [CVE-2019-15453]medium🔒---
145755Samsung J3 permission assignment [CVE-2019-15452]medium🔒---
145754Samsung J3 permission assignment [CVE-2019-15451]medium🔒---
145753Samsung j3popeltecan permission assignment [CVE-2019-15450]medium🔒---
145752Samsung S7 Edge permission assignment [CVE-2019-15449]medium🔒---
145751Samsung S7 Edge permission assignment [CVE-2019-15448]medium🔒---
145750Samsung S7 Edge permission assignment [CVE-2019-15447]medium🔒---
145749Samsung S7 permission assignment [CVE-2019-15446]medium🔒---
145748Samsung S7 permission assignment [CVE-2019-15445]medium🔒---
145747Samsung S7 permission assignment [CVE-2019-15444]medium🔒---
145746Samsung J7 Max permission assignment [CVE-2019-15443]medium🔒---
145745Samsung on7xelteskt permission assignment [CVE-2019-15442]medium🔒---
145744Samsung on7xeltelgt permission assignment [CVE-2019-15441]medium🔒---
145743Samsung J5 permission assignment [CVE-2019-15440]medium🔒---
145742Samsung XCover4 permission assignment [CVE-2019-15439]medium🔒---
145741Samsung XCover4 permission assignment [CVE-2019-15438]medium🔒---
145740Samsung XCover4 permission assignment [CVE-2019-15437]medium🔒---
145739Samsung A8+ permission assignment [CVE-2019-15436]medium🔒---
145738Samsung A7 permission assignment [CVE-2019-15435]medium🔒---
145737Samsung A5 permission assignment [CVE-2019-15434]medium🔒---
145736Samsung A3 permission assignment [CVE-2019-15433]medium🔒---
145735Evercoss U6 permission assignment [CVE-2019-15432]medium🔒---
145734Evercoss U50A permission assignment [CVE-2019-15431]medium🔒---
145733Bluboo D3 Pro permission assignment [CVE-2019-15430]medium🔒---
145732Panasonic ELUGA I9 external reference [CVE-2019-15429]medium🔒---
145731Xiaomi Mi Note 2 external reference [CVE-2019-15428]medium🔒---
145730Xiaomi Mi Mix external reference [CVE-2019-15427]medium🔒---
145729Xiaomi Mi 5s Plus external reference [CVE-2019-15426]medium🔒---
145728Kata M4s external reference [CVE-2019-15425]medium🔒---
145727Doogee BL5000 external reference [CVE-2019-15424]medium🔒---
145726Bluboo S1 external reference [CVE-2019-15423]medium🔒---
145725Doogee Mix external reference [CVE-2019-15422]medium🔒---
145724Blackview BV7000 Pro external reference [CVE-2019-15421]medium🔒---
145723Blackview BV9000Pro-F external reference [CVE-2019-15420]medium🔒---
145722Asus X015_1 external reference [CVE-2019-15419]medium🔒---
145721Asus X00K_1 external reference [CVE-2019-15418]medium🔒---
145720Tecno Spark Pro permission assignment [CVE-2019-15417]medium🔒---
145719Sony keyaki_kddi permission assignment [CVE-2019-15416]medium🔒---
145718Xiaomi Redmi 5 external reference [CVE-2019-15415]medium🔒---
145717Asus ZenFone AR permission assignment [CVE-2019-15414]medium🔒---
145716Asus ZenFone 3 Ultra permission assignment [CVE-2019-15413]medium🔒---
145715Asus ZenFone 4 Selfie com.asus.loguploader permission assignmentmedium🔒---
145714Asus ZenFone 3 Laser com.asus.loguploader permission assignmentmedium🔒---
145713Asus ZenFone 5Q com.asus.loguploader permission assignment [CVE-2019-15410]medium🔒---
145712Asus ZenFone 5Q com.asus.loguploader permission assignment [CVE-2019-15409]medium🔒---
145711Asus ZenFone 5 Lite com.asus.loguploader permission assignmentmedium🔒---
145710Asus X015_1 com.asus.loguploader permission assignment [CVE-2019-15407]medium🔒---
145709Asus X00LD_3 com.asus.loguploader permission assignment [CVE-2019-15406]medium🔒---
145708Asus X00K_1 com.asus.loguploader external reference [CVE-2019-15405]medium🔒---
145707Asus ZenFone Max 4 com.asus.loguploader permission assignmentmedium🔒---
145706Asus ZenFone 3s Max com.asus.loguploader permission assignmentmedium🔒---
145705Asus A002_2 com.asus.loguploader permission assignment [CVE-2019-15402]medium🔒---
145704Asus A002 com.asus.loguploader permission assignment [CVE-2019-15401]medium🔒---
145703Asus ZenFone 3 Ultra com.asus.loguploader permission assignmentmedium🔒---
145702Asus ZenFone 5Q com.asus.loguploader permission assignment [CVE-2019-15399]medium🔒---
145701Asus ZenFone 4 com.asus.loguploader permission assignment [CVE-2019-15398]medium🔒---
145700Asus ZenFone Max 4 com.asus.loguploader permission assignmentmedium🔒---
145699Asus ZenFone 3 com.asus.loguploader permission assignment [CVE-2019-15396]medium🔒---
145698Asus ZenFone 3s Max com.asus.loguploader permission assignmentmedium🔒---
145697Asus ZenFone 5 Selfie external reference [CVE-2019-15394]medium🔒---
145696Asus ZenFone Live external reference [CVE-2019-15393]medium🔒---
145695Asus ZenFone 4 Selfie Authorization authorization [CVE-2019-15392]medium🔒---
145694Asus ZenFone 4 Selfie Authorization authorization [CVE-2019-15391]medium🔒---
145693Haier G8 Authorization authorization [CVE-2019-15390]medium🔒---
145692Haier A6 Graphical User Interface permission assignment [CVE-2019-15389]medium🔒---
145691Coolpad 1851 Graphical User Interface injection [CVE-2019-15388]medium🔒---
145690Archos Core 101 Permission permission assignment [CVE-2019-15387]medium🔒---
145689LAVA Z60s Authorization permission assignment [CVE-2019-15386]medium🔒---
145688Infinix Note 5 Authorization authorization [CVE-2019-15385]medium🔒---
145687Elephone A4 Authorization authorization [CVE-2019-15384]medium🔒---
145686Allview X5 Authorization authorization [CVE-2019-15383]medium🔒---
145685Cubot Nova Authorization authorization [CVE-2019-15382]medium🔒---
145684BQ 5515L Authorization authorization [CVE-2019-15381]medium🔒---
145683Fly Photo Pro Authorization authorization [CVE-2019-15380]medium🔒---
145682Walton Primo G3 Authorization authorization [CVE-2019-15379]medium🔒---
145681Panasonic Eluga Ray 600 Authorization authorization [CVE-2019-15378]medium🔒---
145680Cherry Flare S7 Authorization authorization [CVE-2019-15377]medium🔒---
145679Panasonic Eluga Ray 530 Authorization authorization [CVE-2019-15376]medium🔒---
145678Haier G8 Authorization authorization [CVE-2019-15375]medium🔒---
145677LAVA Iris 88 Lite Authorization authorization [CVE-2019-15374]medium🔒---
145676Symphony i95 Lite Authorization authorization [CVE-2019-15373]medium🔒---
145675Hisense F17 Authorization authorization [CVE-2019-15372]medium🔒---
145674Symphony G100 Authorization authorization [CVE-2019-15371]medium🔒---
145673Haier G8 Authorization authorization [CVE-2019-15370]medium🔒---
145672LAVA Z61 Turbo Authorization authorization [CVE-2019-15369]medium🔒---
145671Coolpad 1851 Authorization authorization [CVE-2019-15368]medium🔒---
145670Haier P10 Authorization authorization [CVE-2019-15367]medium🔒---
145669Infinix Note 5 Authorization authorization [CVE-2019-15366]medium🔒---
145668LAVA Z92 Authorization authorization [CVE-2019-15365]medium🔒---
145667Dexp BL250 Authorization authorization [CVE-2019-15364]medium🔒---
145666Leagoo Power 5 Authorization authorization [CVE-2019-15363]medium🔒---
145665LAVA Iris 88 Go Authorization authorization [CVE-2019-15362]medium🔒---
145664Infinix Note 5 Authorization authorization [CVE-2019-15361]medium🔒---
145663Hisense U965 Authorization authorization [CVE-2019-15360]medium🔒---
145662Haier A6 Authorization authorization [CVE-2019-15359]medium🔒---
145661Dexp Z250 authorization [CVE-2019-15358]medium🔒---
145660Advan i6A authorization [CVE-2019-15357]medium🔒---
145659LAVA Flair Z1 authorization [CVE-2019-15356]medium🔒---
145658Tecno Camon iClick authorization [CVE-2019-15355]medium🔒---
145657Ulefone Armor 5 authorization [CVE-2019-15354]medium🔒---
145656Coolpad N3C authorization [CVE-2019-15353]medium🔒---
145655Coolpad 1851 authorization [CVE-2019-15352]medium🔒---
145654Tecno Camon Graphical User Interface permission assignment [CVE-2019-15351]medium🔒---
145653Tecno Camon Graphical User Interface permission assignment [CVE-2019-15350]medium🔒---
145652Tecno Camon Graphical User Interface permission assignment [CVE-2019-15349]medium🔒---
145651Tecno Camon Graphical User Interface permission assignment [CVE-2019-15348]medium🔒---
145650Tecno Camon iClick 2 Graphical User Interface permission assignmentmedium🔒---
145649Tecno Camon iClick 2 Graphical User Interface permission assignmentmedium🔒---
145648Tecno Camon iClick Graphical User Interface permission assignmentmedium🔒---
145647Tecno Camon iClick Graphical User Interface permission assignmentmedium🔒---
145646Tecno Camon iClick Graphical User Interface permission assignmentmedium🔒---
145645Tecno Camon iAir 2 Plus Graphical User Interface permission assignmentmedium🔒---
145644Tecno Camon iAir 2 Plus Graphical User Interface permission assignmentmedium🔒---
145643Xiaomi Redmi 6 Pro permission assignment [CVE-2019-15340]medium🔒---
145642LAVA Z60s permission assignment [CVE-2019-15339]medium🔒---
145641LAVA Iris 88 Lite permission assignment [CVE-2019-15338]medium🔒---
145640LAVA Z81 permission assignment [CVE-2019-15337]medium🔒---
145639LAVA Z61 Turbo permission assignment [CVE-2019-15336]medium🔒---
145638LAVA Z92 permission assignment [CVE-2019-15335]medium🔒---
145637LAVA Iris 88 Go permission assignment [CVE-2019-15334]medium🔒---
145636LAVA Flair Z1 permission assignment [CVE-2019-15333]medium🔒---
145635LAVA Z61 permission assignment [CVE-2019-15332]medium🔒---
145634dpdk File Descriptor resource consumption [CVE-2019-14818]low🔒---
145633SAS XML Mapper XML Data xml external entity reference [CVE-2019-14678]medium🔒---
145632Nuvoton CIR Driver Permission default permission [CVE-2019-14602]medium🔒---
145631Intel Graphics Driver API input validation [CVE-2019-14591]low🔒---
145630Intel Graphics Driver information disclosure [CVE-2019-14590]low🔒---
145629Intel Graphics Driver out-of-bounds read [CVE-2019-14574]medium🔒---
145628Intel SGX SDK input validation [CVE-2019-14566]medium🔒---
145627Intel SGX SDK input validation [CVE-2019-14565]medium🔒---
145626Facebook WhatsApp MP4 File stack-based overflow [CVE-2019-11931]medium🔒---
145625Intel Baseboard Management Controller memory corruption [CVE-2019-11182]medium🔒---
145624Intel Baseboard Management Controller out-of-bounds read [CVE-2019-11181]medium🔒---
145623Intel Baseboard Management Controller input validation [CVE-2019-11180]low🔒---
145622Intel Baseboard Management Controller input validation [CVE-2019-11179]low🔒---
145621Intel Baseboard Management Controller buffer overflow [CVE-2019-11178]medium🔒---
145620Intel Baseboard Management Controller exceptional condition [CVE-2019-11177]low🔒---
145619Intel Baseboard Management Controller input validation [CVE-2019-11175]low🔒---
145618Intel Baseboard Management Controller Access Control information disclosurelow🔒---
145617Intel Baseboard Management Controller Session session fixiationmedium🔒---
145616Intel Baseboard Management Controller out-of-bounds read [CVE-2019-11172]low🔒---
145615Intel Baseboard Management Controller memory corruption [CVE-2019-11171]medium🔒---
145614Intel Baseboard Management Controller improper authenticationmedium🔒---
145613Intel Baseboard Management Controller Session session expirationmedium🔒---
145612Intel PROSet Wireless WiFi Software privileges management [CVE-2019-11156]low🔒---
145611Intel PROSet Wireless WiFi Software Directory Permission default permissionlow🔒---
145610Intel PROSet Wireless WiFi Software Directory Permission default permissionlow🔒---
145609Intel PROSet Wireless WiFi Software DLL memory corruption [CVE-2019-11153]medium🔒---
145608Intel WiFi Driver memory corruption [CVE-2019-11152]medium🔒---
145607Intel WiFi Driver memory corruption [CVE-2019-11151]medium🔒---
145606Intel Xeon Voltage Modulation Interface unusual condition [CVE-2019-11139]low🔒---
145605Intel Xeon/Atom System Firmware input validation [CVE-2019-11137]medium🔒---
145604Intel Xeon Access Control privileges management [CVE-2019-11136]medium🔒---
145603Intel Graphics Driver Kernel Mode Module memory corruption [CVE-2019-11113]medium🔒---
145602Intel Graphics Driver Kernel Mode Driver privileges managementmedium🔒---
145601Intel Graphics Drivers Unified Shader Compiler null pointer dereferencemedium🔒---
145600Intel Graphics Driver input validation [CVE-2019-11089]low🔒---
145599Intel Core Processor/Xeon Protected Memory Subsystem information disclosurelow🔒---
145598Intel Core Processor/Xeon Protected Memory Subsystem information disclosurelow🔒---
145597Intel Core Processor/Pentium/Celeron/Atom/Xeon privileges managementmedium🔒---
145596Intel Core Processor/Pentium/Celeron/Atom/Xeon Access Control input validationlow🔒---
145595Intel Xeon System Management Mode memory corruption [CVE-2019-0152]medium🔒---
145594Intel Core Processor/Xeon Memory Protection memory corruptionmedium🔒---
145593Intel Ethernet 700 Series Controller Access Control authorizationlow🔒---
145592Intel Ethernet 700 Series Controller i40e Driver input validationlow🔒---
145591Intel Ethernet 700 Series Controller i40e Driver resource consumptionlow🔒---
145590Intel Ethernet 700 Series Controller i40e Driver input validationlow🔒---
145589Intel Ethernet 700 Series Controller i40e Driver resource consumptionlow🔒---
145588Intel Ethernet 700 Series Controller i40e Driver buffer overflowmedium🔒---
145587Intel Ethernet 700 Series Controller exceptional condition [CVE-2019-0144]low🔒---
145586Intel Ethernet 700 Series Controller Kernel-Mode Driver exceptional conditionlow🔒---
145585Intel Ethernet 700 Series Controller Access Control ilp60x64.sys privileges managementmedium🔒---
145584Intel Ethernet 700 Series Controller buffer overflow [CVE-2019-0140]medium🔒---
145583Intel Ethernet 700 Series Controller privileges management [CVE-2019-0139]medium🔒---
145582Intel CPU Memory Protection memory corruption [CVE-2019-0124]medium🔒---
145581Intel SGX Memory Protection memory corruption [CVE-2019-0123]medium🔒---
145580Intel SGX/Xeon Memory Subsystem information disclosure [CVE-2019-0117]low🔒---
145579Cryptocat Message cross site scripting [CVE-2013-4109]low🔒---
145578Cryptocat Remote Code Execution [CVE-2013-4108]high🔒---
145577Cryptocat Conversation Overview Nickname cross site scriptinglow🔒---
145576Netgear WNDR4700 path traversal [CVE-2013-3073]medium🔒---
145575Netgear WNDR4700 Administration Portal improper authenticationmedium🔒---
145574Netgear WNDR4700 Management Web Interface Credentials information disclosurelow🔒---
145573Moodle External Enrollment Plugin Context check externallib.php get_enrolled_users improper validation of integrity check valuemedium🔒--🔒
145572Moodle navigationlib.php load_for_user information disclosurelow🔒--🔒
145571Moodle Web Services input validation [CVE-2012-1168]medium🔒--🔒
145570Moodle Course Information coursetagslib.php information disclosurelow🔒--🔒
145569Moodle Form Subscription unsubscribe permission assignmentmedium🔒--🔒
145568Moodle lib.php fill_table information disclosurelow🔒--🔒
145567Moodle Gradebook grade_export_form.php definition information disclosurelow🔒--🔒
145566Moodle Repository access.php default permissionlow🔒--🔒
145565Moodle Backup log file [CVE-2012-1156]low🔒--🔒
145564Moodle Database Activity Export Permission export.php export information disclosurelow🔒--🔒
145563klibc DHCP Reply net-$DEVICE.conf command injectionmedium🔒--🔒
145562Thunar thunar_transfer_job_copy_node format stringlow🔒--🔒
145561rsyslog Daemon release of resource [CVE-2011-1490]low🔒--🔒
145560rsyslog Daemon release of resource [CVE-2011-1489]low🔒--🔒
145559rsyslog Daemon release of resource [CVE-2011-1488]low🔒--🔒
145558unixODBC SQLDriverConnect buffer overflowmedium🔒--🔒
145557tesseract Link link following [CVE-2011-1136]medium🔒---
145556v86d Kernel authorization [CVE-2011-1070]medium🔒---
145555Google Android Bootloader os command injection [CVE-2019-9467]medium🔒---
145554Google Android Broadcom Wi-Fi Driver input validation [CVE-2019-9466]medium🔒---
145553Huawei Product Message out-of-bounds read [CVE-2019-5294]low🔒---
145552Huawei Product Message release of resource [CVE-2019-5293]low🔒---
145551Huawei Honor 10/Honor 8A/Y6 Permission information disclosurelow🔒---
145550ManageOne Gauss100 OLTP Database out-of-bounds read [CVE-2019-5289]medium🔒---
145549Huawei P30 integer overflow [CVE-2019-5288]medium🔒---
145548Huawei P30 integer overflow [CVE-2019-5287]medium🔒---
145547Huawei Smart Phone Bastet Module double free [CVE-2019-5282]medium🔒---
145546Huawei Smart Phone information disclosure [CVE-2019-5279]low🔒---
145545Exhibitor Web UI Config Editor os command injection [CVE-2019-5029]medium🔒---
145543McAfee Advanced Threat Defense privileges management [CVE-2019-3663]medium🔒---
145542McAfee Advanced Threat Defense here path traversalmedium🔒---
145541McAfee Advanced Threat Defense sql injection [CVE-2019-3661]medium🔒---
145540McAfee Advanced Threat Defense privileges management [CVE-2019-3660]medium🔒---
145539McAfee Advanced Threat Defense ePO information disclosure [CVE-2019-3651]low🔒---
145538McAfee Advanced Threat Defense Credentials information disclosurelow🔒---
145537McAfee Advanced Threat Defense Log File Credentials information disclosurelow🔒---
145536McAfee Threat Intelligence Exchange API improper authorizationmedium🔒---
145535McAfee Data Loss Prevention ePO Extension Credentials missing encryptionlow🔒---
145534ZTE ZXHN H108N information disclosure [CVE-2019-3420]medium🔒---
145533Google Android UserSwitcherController.java getCount privileges managementmedium🔒---
145532Google Android Kernel binder.c binder_transaction privileges managementmedium🔒---
145531Google Android binder.c binder_free_transaction use after freemedium🔒---
145530Google Android poisson_distribution information disclosurelow🔒---
145529Google Android TvProvider.java createProjectionMapForQuery sql injectionmedium🔒---
145528Google Android qmi_vs_service.cc load_logging_config buffer overflowmedium🔒---
145527Google Android bta_dm_api.cc BTA_DmPinReply out-of-bounds readlow🔒---
145526Google Android v8 information disclosure [CVE-2019-2208]low🔒---
145525Google Android nfa_hci_act.cc nfa_hci_handle_admin_gate_rsp out-of-bounds writemedium🔒---
145524Google Android NFC rw_i93.cc rw_i93_sm_set_read_only out-of-bounds writemedium🔒---
145523Google Android proxy_resolver_v8.cc SetPacScript use after freemedium🔒---
145522Google Android objects.cc FindSharedFunctionInfo out-of-bounds readmedium🔒---
145521Google Android CryptoPlugin.cpp decrypt out-of-bounds writemedium🔒---
145520Google Android CryptoPlugin.cpp decrypt out-of-bounds writemedium🔒---
145519Google Android jsimd_arm64_neon.S generate_jsimd_ycc_rgb_convert_neon out-of-bounds writemedium🔒---
145518Google Android PackageInstallerService.java createSessionInternal privileges managementmedium🔒---
145517Google Android Download Provider sql injection [CVE-2019-2198]medium🔒---
145516Google Android CachedBluetoothDevice.java processPhonebookAccess insecure default initialization of resourcelow🔒---
145515Google Android Download Provider sql injection [CVE-2019-2196]medium🔒---
145514Google Android sqlite3_android.cpp input validationmedium🔒---
145513Google Android Device Policy Client WelcomeActivity.java privileges managementmedium🔒---
145512Google Android Permission SliceProvider.java input validationmedium🔒---
145511Google Android HidHostService.java okToConnect privileges managementmedium🔒---
145510Pomelo State entryHandler.js injectionmedium🔒---
145509SibSoft Xfilesharing up.cgi unrestricted uploadmedium🔒---
145508SibSoft Xfilesharing path traversal [CVE-2019-18951]medium🔒---
145507Western Digital My Cloud EX2 Ultra Instruction Pointer buffer overflowmedium🔒---
145506Western Digital My Cloud EX2 Ultra libscheddl.so out-of-bounds writemedium🔒---
145505Western Digital My Cloud EX2 Ultra download_mgr.cgi out-of-bounds writemedium🔒---
145504go-camo cross site scripting [CVE-2019-18923]medium🔒---
145503Rise Ultimate Project Manager add_team_member cross-site request forgerylow🔒---
145502Lavalite CMS cross site scripting [CVE-2019-18883]low🔒---
145501ACRN Device Model core.c assertionlow🔒---
145500FUDForum Stored cross site scripting [CVE-2019-18839]low🔒---
145499crun Image linux.c link followingmedium🔒---
145498Parallels Plesk Panel index.htm cross site scriptinglow🔒---
145497GNU FriBidi fribidi-bidi.c fribidi_get_par_embedding_levels_ex buffer overflowmedium🔒---
145496Phoenix SCT WinFlash Driver privileges management [CVE-2019-18279]medium🔒---
145495Fuji Electric V-Server heap-based overflow [CVE-2019-18240]medium🔒---
145494Blog2Social Plugin post.calendar.php Reflected cross site scriptinglow🔒---
145493Technicolor TC7300 wlanAccess.asp cross site scriptinglow🔒---
145492Technicolor TC7300 FTPDiag.asp cross site scriptinglow🔒---
145491CleanTalk cleantalk-spam-protect Plugin cleantalk-users.php Reflected cross site scriptinglow🔒---
145490Enghouse Web Chat Remote File Inclusion information disclosuremedium🔒---
145489Enghouse Web Chat cross site scripting [CVE-2019-16950]low🔒---
145488Enghouse Web Chat Chat Log input validation [CVE-2019-16949]medium🔒---
145487Enghouse Web Chat server-side request forgery [CVE-2019-16948]medium🔒---
145486Texas Instruments CC256x/WL18xx Bluetooth Low Energy buffer overflowmedium🔒---
145485Mitsubishi Electric MELSEC-Q/MELSEC-L FTP Service resource consumptionlow🔒---
145484SAP BusinessObjects Business Intelligence Platform XML Data input validationmedium🔒---
145483SAP Quality Management sql injection [CVE-2019-0393]medium🔒---
145482SAP NetWeaver AS JAVA information disclosure [CVE-2019-0391]medium🔒---
145481SAP Data Hub Connection Manager information disclosure [CVE-2019-0390]medium🔒---
145480SAP NetWeaver Application Server privileges management [CVE-2019-0389]medium🔒---
145479SAP UI5 HTTP Handler authentication spoofing [CVE-2019-0388]low🔒---
145478SAP ERP Sales/S4HANA Sales/S4CORE Order Proessing authorizationmedium🔒---
145477SAP Enable Now cross site scripting [CVE-2019-0385]low🔒---
145476SP Business Intelligence Platform cross site scripting [CVE-2019-0382]low🔒---
145475vdsm/vdsclient Hostname Validator certificate validation [CVE-2014-8167]medium🔒---
145474JBoss KeyCloak Soft Token cross-site request forgery [CVE-2014-3655]low🔒---
145473openshift Team Name Stored cross site scriptinglow🔒---
145472ProJoom Smart Flash Header upload.php unrestricted uploadmedium🔒---
145471Netgear WNR3500U/WNR3500L SMB Service path traversal [CVE-2013-4657]medium🔒---
145470Asus RT-AC66U/RT-N56U SMB Service path traversal [CVE-2013-4656]medium🔒---
145469Belkin N900 SMB Service link following [CVE-2013-4655]medium🔒---
145468TP-LINK TL-WDR4300/TL-1043ND path traversal [CVE-2013-4654]medium🔒---
145467Zen Theme template.php zen_breadcrumb cross site scriptinglow🔒---
145466Netgear WNR3500U/WNR3500L cross site scripting [CVE-2013-3517]low🔒---
145465Netgear WNR3500U/WNR3500L CSRF Token cross-site request forgerylow🔒---
145464TRENDnet TEW-691GR/TEW-692GR Telnet Service improper authenticationmedium🔒---
145463TRENDnet TEW-812DRU Telnet Service broadcom.c cross-site request forgerymedium🔒---
145462Verizon FIOS Actiontec MI424WR-GEN3I cross site scripting [CVE-2013-3097]low🔒---
145461Bitweaver index.php cross site scriptinglow🔒---
145460LetoDMS cross-site request forgery [CVE-2012-4385]low🔒---
145459LetoDMS Login Page/Document Owner/Calendar Stored cross site scriptinglow🔒---
145458Ckeditor Module hook_file_download information disclosurelow🔒---
145456phpBB BB Tag cross site scripting [CVE-2011-0544]low🔒---
145455Trac Workflow Permission default permission [CVE-2010-5108]medium🔒---
145454Pithos link following [CVE-2010-4817]medium🔒---
145453ConsoleKit Security Policy privileges management [CVE-2010-4664]medium🔒--🔒
145452udisks Kernel Module Loader unrestricted upload [CVE-2010-4661]medium🔒--🔒
145451PHP libxml2 release of resource [CVE-2010-4657]low🔒---
145450Poppler Command injection [CVE-2010-4654]medium🔒--🔒
145449Poppler Font integer overflow [CVE-2010-4653]medium🔒--🔒
145448Offlineimap SSL certificate validation [CVE-2010-4533]low🔒---
145447Offlineimap SSL Certificate Validator certificate validationlow🔒---
145446McAfee Total Protection Microsoft Windows Client privileges managementmedium🔒---
145445Lenovo ThinkPad BIOS Tamper Detection authorization [CVE-2019-6188]medium🔒---
145444Lenovo ThinkPad SMI Callback input validation [CVE-2019-6172]medium🔒---
145443Lenovo ThinkPad SMM input validation [CVE-2019-6170]medium🔒---
145442NVIDIA GeForce Experience/Windows GPU Display Driver Local Service Provider untrusted search pathmedium🔒---
145441Huawei Smartphone insufficient verification of data authenticitylow🔒---
145440Huawei Smartphone improper authentication [CVE-2019-5233]medium🔒---
145439Huawei P30 authorization [CVE-2019-5231]medium🔒---
145438Huawei P20 Pro/P20/Mate RS input validation [CVE-2019-5230]medium🔒---
145437Huawei P30 insufficient verification of data authenticity [CVE-2019-5229]low🔒---
145436Huawei P30/P30 Pro/V20 Detection Module race condition [CVE-2019-5228]medium🔒---
145435Huawei Honor Play improper authentication [CVE-2019-5213]medium🔒---
145434IBM Spectrum Protect Plus default permission [CVE-2019-4652]medium🔒---
145433Systematic IRIS Standards Management Reflected cross site scriptinglow🔒---
145432Systematic IRIS WebForms improper authentication [CVE-2019-18925]medium🔒---
145431Systematic IRIS WebForms path traversal [CVE-2019-18924]medium🔒---
145430json-jwt Gem JWE String input validation [CVE-2019-18848]medium🔒---
145429File Sharing Wizard Structured Exception out-of-bounds writemedium🔒---
145428Hitachi Command Suite resource consumption [CVE-2019-17360]low🔒---
145427TIBCO EBX Digital Asset Manager Web Interface Stored cross site scritinglow🔒---
145426TIBCO EBX Data Exchange Web Interface Stored cross site scritinglow🔒---
145425TIBCO EBX Web Server Reflected cross site scritinglow🔒---
145424igniteup Plugin class-coming-soon-creator.php cross-site request forgerylow🔒---
145423igniteup Plugin class-coming-soon-creator.php Stored cross site scriptinglow🔒---
145422igniteup Plugin class-coming-soon-creator.php information disclosurelow🔒---
145421igniteup Plugin class-coming-soon-creator.php input validationmedium🔒---
145419ZyXEL P-1302-T10D v3 Access Control authorization [CVE-2019-15815]medium🔒---
145418Microsoft Office Excel input validation [CVE-2019-1457]medium🔒---
145417Slack-Chat Slack Access Token information disclosure [CVE-2019-14367]low🔒---
145416WP SlackSync Plugin Slack Access Token information disclosurelow🔒---
145415Intercom Plugin Slack Access Token information disclosure [CVE-2019-14365]low🔒---
145414AUO SunVeillance Monitoring System mvc_send_mail.aspx sql injectionmedium🔒---
145413AUO SunVeillance Monitoring System Access Control Picture_Manage_mvc.aspx unrestricted uploadmedium🔒---
145412Microsoft Windows Hyper-V Network Switch input validation [CVE-2019-0719]medium🔒---
145411Hitachi Command Suite information disclosure [CVE-2018-21026]low🔒---
145410Huawei Smart Phone null pointer dereference [CVE-2017-17224]low🔒---
145409OpenStack Keystone resource consumption [CVE-2012-1572]low🔒--🔒
145408mwlib exceptional condition [CVE-2012-1109]low🔒---
145407atop Temp File link following [CVE-2011-3618]medium🔒---
145406Google Chrome WebKit CSSSelector double freemedium🔒---
145405Google Chrome WebKit use after free [CVE-2011-2334]medium🔒---
145404Google Chrome WebKit SVGSMILElement.h double freemedium🔒---
145403Google Chrome WebKit null pointer dereference [CVE-2011-1802]medium🔒---
145402Microsoft Windows OpenType Font Parser memory corruption [CVE-2019-1456]medium🔒---
145401Microsoft Office ClickToRun Security Feature privileges managementmedium🔒---
145400Microsoft Office Excel memory corruption [CVE-2019-1448]medium🔒---
145399Microsoft Office Online Server input validation [CVE-2019-1447]medium🔒---
145398Microsoft Office Excel information disclosure [CVE-2019-1446]low🔒---
145397Microsoft Office Online Server input validation [CVE-2019-1445]medium🔒---
145396Microsoft SharePoint Server Upload unrestricted upload [CVE-2019-1443]low🔒---
145395Microsoft SharePoint Server Security Feature privileges managementmedium🔒---
145394Microsoft Windows Win32k information disclosure [CVE-2019-1440]low🔒---
145393Microsoft Windows GDI information disclosure [CVE-2019-1439]low🔒---
145392Microsoft Windows Graphics Component privileges management [CVE-2019-1438]medium🔒---
145391Microsoft Windows Graphics Component privileges management [CVE-2019-1437]medium🔒---
145390Microsoft Windows Win32k information disclosure [CVE-2019-1436]low🔒---
145389Microsoft Windows Graphics Component privileges management [CVE-2019-1435]medium🔒---
145388Microsoft Windows Win32k privileges management [CVE-2019-1434]medium🔒---
145387Microsoft Windows Graphics Component privileges management [CVE-2019-1433]medium🔒---
145386Microsoft Windows DirectWrite information disclosure [CVE-2019-1432]low🔒---
145385Microsoft Visual Studio Archive privileges management [CVE-2019-1425]medium🔒---
145384Microsoft Windows NetLogon Security Feature input validationmedium🔒---
145383Microsoft Windows StartTileData.dll privileges management [CVE-2019-1423]medium🔒---
145382Microsoft Windows iphlpsvc.dll privileges management [CVE-2019-1422]medium🔒---
145381Microsoft Windows dssvc.dll privileges management [CVE-2019-1420]medium🔒---
145380Microsoft Windows Modules Installer Service information disclosurelow🔒---
145379Microsoft Windows Data Sharing Service privileges managementmedium🔒---
145378Microsoft Windows Subsystem for Linux race condition [CVE-2019-1416]medium🔒---
145377Microsoft Windows Installer privileges management [CVE-2019-1415]medium🔒---
145376Microsoft Edge Security Feature input validation [CVE-2019-1413]medium🔒---
145375Microsoft Windows OpenType Font Driver ATMFD.dll information disclosurelow🔒---
145374Microsoft Windows DirectWrite information disclosure [CVE-2019-1411]low🔒---
145373Microsoft Windows Remote Procedure Call information disclosurelow🔒---
145372Microsoft Windows Win32k privileges management [CVE-2019-1408]medium🔒---
145371Microsoft Windows Graphics Component privileges management [CVE-2019-1407]medium🔒---
145370Microsoft Windows JET Database Engine memory corruption [CVE-2019-1406]medium🔒---
145369Microsoft Windows UPnP Service privileges management [CVE-2019-1405]medium🔒---
145368Microsoft Office information disclosure [CVE-2019-1402]low🔒---
145367Microsoft Windows Hyper-V input validation [CVE-2019-1399]low🔒---
145366Microsoft Windows Win32k privileges management [CVE-2019-1396]medium🔒---
145365Microsoft Windows Win32k privileges management [CVE-2019-1395]medium🔒---
145364Microsoft Windows Win32k privileges management [CVE-2019-1394]medium🔒---
145363Microsoft Windows Win32k privileges management [CVE-2019-1393]medium🔒---
145362Microsoft Windows Kernel privileges management [CVE-2019-1392]medium🔒---
145361Microsoft Windows input validation [CVE-2019-1391]medium🔒---
145360Microsoft Windows Certificate Dialog privileges management [CVE-2019-1388]medium🔒---
145359Microsoft Windows AppX Deployment Extension privileges managementmedium🔒---
145358Microsoft Windows Netlogon input validation [CVE-2019-1384]low🔒---
145357Microsoft Windows Data Sharing Service privileges managementmedium🔒---
145356Microsoft Windows ActiveX Installer Service privileges managementmedium🔒---
145355Microsoft Windows Servicing Stack information disclosure [CVE-2019-1381]low🔒---
145354Microsoft Windows splwow64.exe privileges managementmedium🔒---
145353Microsoft Windows Data Sharing Service privileges managementmedium🔒---
145352Microsoft Windows Error Reporting information disclosure [CVE-2019-1374]low🔒---
145351Microsoft Open Enclave SDK information disclosure [CVE-2019-1370]low🔒---
145350Microsoft Windows TCP/IP Stack information disclosure [CVE-2019-1324]low🔒---
145349Microsoft Windows Hyper-V Network Switch input validation [CVE-2019-1310]medium🔒---
145348Microsoft Windows Hyper-V Network Switch input validation [CVE-2019-1309]medium🔒---
145347Microsoft Azure Stack User Portal authentication spoofing [CVE-2019-1234]medium🔒---
145346Microsoft Windows Kernel information disclosure [CVE-2019-11135]low🔒---
145345Microsoft Windows Hyper-V input validation [CVE-2019-0712]medium🔒---
145344Microsoft Windows input validation [CVE-2018-12207]medium🔒---
145343Microsoft Exchange Server Metadata deserialization [CVE-2019-1373]medium🔒---
145342Microsoft Windows Win32k Graphics memory corruption [CVE-2019-1441]medium🔒---
145341Microsoft Windows Media Foundation memory corruption [CVE-2019-1430]medium🔒---
145340Microsoft Windows OpenType Font Parser memory corruption [CVE-2019-1419]medium🔒---
145339Microsoft Internet Explorer Scripting Engine memory corruptionmedium🔒---
145338Microsoft Edge/ChakraCore Scripting Engine memory corruptionmedium🔒---
145337Microsoft Edge/ChakraCore Scripting Engine memory corruptionmedium🔒---
145336Microsoft Edge/ChakraCore Scripting Engine memory corruptionmedium🔒---
145335Microsoft Internet Explorer VBScript memory corruption [CVE-2019-1390]medium🔒---
145334Microsoft Windows Hyper-V input validation [CVE-2019-1398]medium🔒---
145333Microsoft Windows Hyper-V input validation [CVE-2019-1397]medium🔒---
145332Microsoft Windows Hyper-V input validation [CVE-2019-1389]medium🔒---
145331Microsoft Windows Hyper-V Switch input validation [CVE-2019-0721]medium🔒---
145330MySQL-GUI-tools Process Password cleartext transmissionlow🔒---
145329JBoss BRMS cross site scripting [CVE-2010-3857]low🔒---
145328Ettercap ec_gtk_conf.c sscanf buffer overflowmedium🔒--🔒
145327babiloo Dictionary File code download [CVE-2010-3440]medium🔒---
145326alien-arena Download input validation [CVE-2010-3439]low🔒---
145325libpoe-component-irc-perl Line Feed format string [CVE-2010-3438]medium🔒---
145324gargoyle-free libgarglk.so input validationmedium🔒---
145323Pixelpost cross-site request forgery [CVE-2010-3305]low🔒---
145322Ruby on Rails Padding missing encryption [CVE-2010-3299]medium🔒---
145321Mailscanner Configuration missing encryption [CVE-2010-3292]medium🔒---
145320Mailscanner Incomplete Fix link following [CVE-2010-3095]low🔒---
145319ZNC Connection null pointer dereference [CVE-2010-2488]low🔒---
145318Istio infinite loop [CVE-2019-18817]low🔒---
145317Helm Chart link following [CVE-2019-18658]medium🔒---
145316Mitel MiCollab/MiVoice Business Express Web Conference Chat authorizationmedium🔒---
145315Python Twisted HTTP Client certificate validation [CVE-2014-7143]medium🔒---
145314HornetQ REST XML Data xml external entity reference [CVE-2014-3599]medium🔒---
145313Pacemaker Temp File link following [CVE-2011-5271]medium🔒---
145312statusnet cross site scripting [CVE-2011-3370]low🔒---
145311Elgg sql injection [CVE-2011-2936]medium🔒---
145310Elgg cross site scripting [CVE-2011-2935]low🔒---
145309gdk-pixbuf GIF input validation [CVE-2011-2897]medium🔒--🔒
145308WSO2 IS as Key Manager Content-Type download-userinfo.jag Stored cross site scriptinglow🔒---
145307WSO2 IS as a Key Manager Dashboard Reflected cross site scriptinglow🔒---
145306python-psutil refcount double free [CVE-2019-18874]medium🔒---
145305FUDForum admsession.php Stored cross site scriptinglow🔒---
145304GNU Mailutils maidag privileges management [CVE-2019-18862]medium🔒---
145303darylldoyle svg-sanitizer Attribute input validation [CVE-2019-18857]low🔒---
145302SVG Sanitizer Module input validation [CVE-2019-18856]low🔒---
145301safe-svg input validation [CVE-2019-18855]low🔒---
145300safe-svg recursion [CVE-2019-18854]low🔒---
145299ImageMagick SVG svg.c input validationlow🔒---
145298D-Link DIR-890L A1 Telnet Service image_sign hard-coded credentialsmedium🔒---
145297tnef Attachment authorized_keys out-of-bounds readmedium🔒---
145296Chartkick Gem Prototype input validation [CVE-2019-18841]medium🔒---
145295Envoy continue_on_listener_filters_timeout infinite looplow🔒---
145294Patriot Viper RGB Driver MsIo64.sys ZwMapViewOfSection privileges managementmedium🔒---
145293wolfSSL ASN.1 Certificate asn.c out-of-bounds writemedium🔒---
145292NVIDIA GeForce Experience GameStream untrusted search path [CVE-2019-5701]medium🔒---
145291NVIDIA Virtual GPU Manager vGPU Plugin input validation [CVE-2019-5698]low🔒---
145290NVIDIA Virtual GPU Manager Guest Access authorization [CVE-2019-5697]medium🔒---
145289NVIDIA Virtual GPU Manager Guest VM out-of-bounds read [CVE-2019-5696]medium🔒---
145288NVIDIA Windows GPU Display Driver DLL Loader untrusted search pathmedium🔒---
145287NVIDIA Windows GPU Display Driver Kernel Mode Layer nvlddmkm.sys uninitialized pointerlow🔒---
145286NVIDIA Windows GPU Display Driver Kernel Mode Layer nvlddmkm.sys DxgkDdiEscape input validationmedium🔒---
145285NVIDIA Windows GPU Display Driver Kernel Mode Layer nvlddmkm.sys DxgkDdiEscape null pointer dereferencemedium🔒---
145284NVIDIA Windows GPU Display Driver Kernel Mode Layer nvlddmkm.sys DxgkDdiEscape input validationmedium🔒---
145283NVIDIA GeForce Experience Downloader input validation [CVE-2019-5689]medium🔒---
145282IBM Cognos Analytics Web UI cross site scripting [CVE-2019-4645]low🔒---
145281IBM QRadar Web UI cross site scripting [CVE-2019-4581]low🔒---
145280IBM QRadar Advisor Blacklist input validation [CVE-2019-4556]medium🔒---
145279IBM QRadar authorization [CVE-2019-4509]low🔒---
145278IBM QRadar Web UI cross site scripting [CVE-2019-4470]low🔒---
145277IBM QRadar Web UI cross site scripting [CVE-2019-4454]low🔒---
145276IBM i Web UI cross site scripting [CVE-2019-4450]low🔒---
145275IBM Cognos Controller URL information disclosure [CVE-2019-4412]low🔒---
145274IBM Cognos Controller Session Identifier information disclosurelow🔒---
145273IBM Cognos Analytics information disclosure [CVE-2019-4334]low🔒---
145272openstack-mistral Log File information disclosure [CVE-2019-3866]low🔒---
145271ZTE ZXUPN-9000E input validation [CVE-2019-3426]medium🔒---
145270ZTE ZXUPN-9000E Change Password default permission [CVE-2019-3425]medium🔒---
145269EnergyCAP Public Dashboard privileges management [CVE-2019-18623]low🔒---
145268codepress-admin-columns Plugin CSV injection [CVE-2019-17661]medium🔒---
145267JEUS Administration Web Page path traversal [CVE-2019-17327]medium🔒---
145266Brocade SANnav Log Password log filelow🔒---
145265Brocade SANnav SSL ReportsTrustManager certificate validationlow🔒---
145264Brocade SANnav PBE risky encryption [CVE-2019-16208]medium🔒---
145263Brocade SANnav Back-End Database hard-coded credentials [CVE-2019-16207]medium🔒---
145262Brocade SANnav Authentication Mechanism log file [CVE-2019-16206]low🔒---
145261Brocade SANnav Session ID Random random valueslow🔒---
145260Syndesis unknown vulnerability [CVE-2019-14860]medium🔒---
145259389-ds-base deref Plugin Password use after freelow🔒---
145258Tasy EMR WebPortal information disclosure [CVE-2019-13557]low🔒---
145257Medtronic Valleylab Exchange Client hard-coded credentials [CVE-2019-13543]medium🔒---
145256Medtronic Valleylab Exchange Client Password Hashing input validationlow🔒---
145255Medtronic Valleylab LS10 Energy Platform RFID protection mechanismlow🔒---
145254Medtronic Valleylab LS10 Energy Platform RFID improper authenticationmedium🔒---
145253Apache Arrow Parquet null pointer dereference [CVE-2019-12410]medium🔒---
145252Apache Arrow Array null pointer dereference [CVE-2019-12408]medium🔒---
145251Ceph RGW Client Beast Front End resource consumption [CVE-2019-10222]low🔒---
145250Hibernate-Validator SafeHtml Validator cross site scripting [CVE-2019-10219]low🔒---
145249IBM Cognos Analytics Web Server xml injection [CVE-2018-1721]medium🔒---
145248mod_ruid2 Descriptor input validation [CVE-2013-1889]medium🔒---
145247tuned ktune Service input validation [CVE-2013-1820]low🔒---
145246qpid-cpp Message input validation [CVE-2009-5004]low🔒---
145245dtc-xen race condition [CVE-2009-4011]medium🔒---
145244liboping input validation [CVE-2009-3614]low🔒---
145243Red Hat Enterprise Virtualization Manager SSL Certificate Verification Service certificate validationmedium🔒---
145242MantisBT Attachment cross site scripting [CVE-2009-2802]low🔒---
145241alsa-utils alsa-info link followinglow🔒---
145240Troubleshooting/Support Tools Plugin Log Scan authorization [CVE-2019-15005]low🔒---
145239HP Inkjet Printer Print File assertion [CVE-2019-6337]low🔒---
145238Dell EMC iDRAC8/iDRAC9 Password improper authorization [CVE-2019-3764]low🔒---
145237Rob Richards XmlSecLibs Signature input validation [CVE-2019-3465]medium🔒---
145236ZTE MF910S One Click Update Tool Password information disclosurelow🔒---
145235Matrix Synapse Signature send_join signature verificationmedium🔒---
145234Eximious Logo Designer User Mode BuildGradientColorsTable+0x0000000000000053 out-of-bounds writemedium🔒---
145233Eximious Logo Designer out-of-bounds write [CVE-2019-18820]medium🔒---
145232Eximious Logo Designer User Mode out-of-bounds write [CVE-2019-18819]medium🔒---
145231strapi Password Reset Auth.js password recoveryhigh🔒---
145230PopojiCMS Stored cross site scripting [CVE-2019-18816]low🔒---
145229PopojiCMS redirect [CVE-2019-18815]medium🔒---
145228Linux Kernel audit.c aa_label_parse use after freemedium🔒---
145227Linux Kernel dwc3-pci.c dwc3_pci_probe resource consumptionlow🔒---
145226Linux Kernel debug.c sof_dfsentry_write resource consumptionlow🔒---
145225Linux Kernel ipc.c sof_set_get_large_ctrl_data resource consumptionlow🔒---
145224Linux Kernel komeda_wb_connector.c komeda_wb_connector_add resource consumptionlow🔒---
145223Linux Kernel af9005.c af9005_identify_state resource consumptionlow🔒---
145222Linux Kernel ccp-ops.c ccp_run_sha_cmd resource consumptionlow🔒---
145221Linux Kernel sja1105_spi.c sja1105_static_config_upload resource consumptionlow🔒---
145220Linux Kernel qla3xxx.c ql_alloc_large_buffers resource consumptionlow🔒---
145219Linux Kernel sysctl_net_ipv4.c tcp_ack_update_rtt integer overflowmedium🔒---
145218DjVuLibre IW44EncodeCodec.cpp filter_fv null pointer dereferencelow🔒---
145217eyecomms eyeCMS Assignment authorization [CVE-2019-17605]medium🔒---
145216eyecomms eyeCMS input validation [CVE-2019-17604]medium🔒---
145215Intelbras WRN 150 WAN Configuration Screen Stored cross site scriptinglow🔒---
145214Portainer cross site scripting [CVE-2019-16878]low🔒---
145213Portainer Access Control permission assignment [CVE-2019-16877]medium🔒---
145212Directory Portainer path traversal [CVE-2019-16876]medium🔒---
145211Portainer Access Control permission assignment [CVE-2019-16874]medium🔒---
145210Portainer cross site scripting [CVE-2019-16873]low🔒---
145209Portainer Access Control permission assignment [CVE-2019-16872]medium🔒---
145208PHPOffice PhpSpreadsheet XML Data std_table.php xml external entity referencemedium🔒---
145207HPE Nimble Storage System Multi Array Group privileges managementmedium🔒---
145206GNUBOARD5 board_form_update.php cross site scriptinglow🔒---
145205MantisBT Access Control input validation [CVE-2013-1811]medium🔒--🔒
145204Gambas link following [CVE-2013-1809]medium🔒---
145203Monkeyd Log File master.log log filelow🔒---
145202Twiki input validation [CVE-2013-1751]medium🔒--🔒
145201lintian link following [CVE-2013-1429]low🔒---
145200Mahara TinyMCE Editor wysiwyg.php cross site scriptinglow🔒---
145199ldap-git-backup Directory Permission Password default permissionlow🔒---
145198Tahoe-LAFS input validation [CVE-2012-0051]low🔒---
145197OpenTTD Join resource consumption [CVE-2012-0049]low🔒--🔒
145196Google Chrome WebKit Timer.cpp exceptional conditionmedium🔒---
145195Google Chrome WebKit replaceDocument use after freemedium🔒---
145194Google Chrome Blink type conversion [CVE-2011-2337]high🔒---
145193Google Chrome Blink AnimationControllerPrivate exceptional conditionmedium🔒---
145192syscp input validation [CVE-2010-2476]medium🔒---
145191Drupal Session Lockout input validation [CVE-2010-2473]medium🔒---
145190Drupal Locale Module/Dependent Contributed Module cross site scriptinglow🔒---
145189Shibboleth SP Private Key keygen.sh information disclosurelow🔒---
145188Gource Log File gource-$UID.tmp input validationmedium🔒---
145187gitolite Path Name Filter input validation [CVE-2010-2447]high🔒---
145186Drupal Site Installation cross site scripting [CVE-2010-2250]low🔒---
145185Linux Kernel clocksource.c input validationmedium🔒---
145184gri Temp File exposure of resource [CVE-2008-7291]medium🔒---
145183FireGPG cleartext storage [CVE-2008-7272]low🔒---
145182JON information disclosure [CVE-2008-5083]low🔒---
145181frysk f insecure default initialization of resourcemedium🔒---
145180ClamAV ScanOLE2 Floating Point Remote Code Executionhigh🔒---
145179ViewVC Access Control permission assignment [CVE-2007-5743]medium🔒---
145178Mondo Temp File exposure of resource [CVE-2007-3915]medium🔒---
145177Linux Kernel iret_exc denial of servicelow🔒---
145176Xorux lpar2rrd/stor2rrd os command injection [CVE-2019-19041]medium🔒---
145175WebKit putToPrimitive Universal cross site scritinglow🔒---
145174Atlassian Jira Service Desk Server Customer Context Filter path traversalmedium🔒---
145173Atlassian Jira Service Desk Server Customer Context Filter authorizationlow🔒---
145172NiceHash Miner Error Message information disclosure [CVE-2019-6122]low🔒---
145171NiceHash Miner Authorization authorization [CVE-2019-6121]low🔒---
145170NiceHash Miner Wallet input validation [CVE-2019-6120]low🔒---
145169Computing For Good's Basic Laboratory Information System Access Control privileges managementmedium🔒---
145168Computing For Good's Basic Laboratory Information System Access Control User improper authenticationlow🔒---
145167Rapid7 Metasploit Pro Web Interface permission assignment [CVE-2019-5642]low🔒---
145166Computing For Good's Basic Laboratory Information System Access Control password recoverymedium🔒---
145165LEADTOOLS JPEG2000 Parser out-of-bounds write [CVE-2019-5125]medium🔒---
145164LEADTOOLS Header Parsing integer overflow [CVE-2019-5100]medium🔒---
145163LEADTOOLS CMP Parser integer overflow [CVE-2019-5099]medium🔒---
145162LEADTOOLS TIF Parser out-of-bounds write [CVE-2019-5084]medium🔒---
145161Qualcomm Snapdragon Auto memory corruption [CVE-2019-2332]medium🔒---
145160Qualcomm Snapdragon Auto integer overflow [CVE-2019-2331]medium🔒---
145159Qualcomm Snapdragon Auto ADSP array index [CVE-2019-2325]medium🔒---
145158Qualcomm Snapdragon Auto ADSP memory corruption [CVE-2019-2324]medium🔒---
145157Qualcomm Snapdragon Auto Crypto Engine use of uninitialized resourcehigh🔒---
145156Qualcomm Snapdragon Auto Vendor Command integer overflow [CVE-2019-2302]medium🔒---
145155Qualcomm Snapdragon Auto out-of-bounds write [CVE-2019-2285]medium🔒---
145154Qualcomm Snapdragon Auto memory corruption [CVE-2019-2283]medium🔒---
145153Qualcomm Snapdragon Auto Key Blob input validation [CVE-2019-2275]medium🔒---
145152Qualcomm Snapdragon Auto Array Index array index [CVE-2019-2258]medium🔒---
145151Qualcomm Snapdragon Auto Kernel out-of-bounds read [CVE-2019-2249]medium🔒---
145150Qualcomm Snapdragon Auto Thread memory corruption [CVE-2019-2246]medium🔒---
145149Viber input validation [CVE-2019-18800]low🔒---
145148LibSass parser_selectors.cpp parseCompoundSelector null pointer dereferencelow🔒---
145147LibSass ast_sel_weave.cpp weaveParents out-of-bounds readmedium🔒---
145146LibSass eval.cpp Binary_Expression*) recursionlow🔒---
145145Zoho ManageEngine ADSelfService Plus User Profile Page cross-site request forgerylow🔒---
145144Samsung Galaxy S8 Plus/Galaxy S3/Galaxy Note 2/Exynos 4412 Bluetooth information disclosurelow🔒---
145143Samsung Galaxy S8 Plus/Galaxy S3/Galaxy Note 2/Exynos 4412 Bluetooth injectionlow🔒---
145142Quest KACE Systems Management Appliance Server Center ticket_associated_tickets.php cross site scriptinglow🔒---
145141Quest KACE Systems Management Appliance Server Center cross site scriptinglow🔒---
145140Quest KACE Systems Management Appliance Server Center history_log.php sql injectionmedium🔒---
145139Quest KACE Systems Management Appliance Server Center user_profile.php sql injectionmedium🔒---
145138Quest KACE Systems Management Appliance Server Center sam_detail_titled.php cross site scriptinglow🔒---
145137Quest KACE Systems Management Appliance Server Center ticket_list.php sql injectionmedium🔒---
145136Quest KACE Systems Management Appliance Server Center software_library.php sql injectionmedium🔒---
145135Quest KACE Systems Management Appliance Server Center software_library.php Reflected cross site scriptinglow🔒---
145134Apache CXF Access Token Service improper authentication [CVE-2019-12419]low🔒---
145133Apache CXF Attachment resource consumption [CVE-2019-12406]low🔒---
145132Qualcomm Snapdragon Auto Sensor Power double free [CVE-2019-10565]medium🔒---
145131Qualcomm Snapdragon Auto Header out-of-bounds read [CVE-2019-10542]medium🔒---
145130Qualcomm Snapdragon Auto FLV Clip memory corruption [CVE-2019-10541]high🔒---
145129Qualcomm Snapdragon Auto Super Index Entry null pointer dereferencelow🔒---
145128Qualcomm Snapdragon Auto Array Index array index [CVE-2019-10533]medium🔒---
145127Qualcomm Snapdragon Auto buffer overflow [CVE-2019-10531]medium🔒---
145126Qualcomm Snapdragon Auto Entry Page set_page_dirty race conditionmedium🔒---
145125Qualcomm Snapdragon Auto mdlog Session use after free [CVE-2019-10528]medium🔒---
145124Qualcomm Snapdragon Auto clk Driver use after free [CVE-2019-10524]medium🔒---
145123Qualcomm Snapdragon Auto buffer overflow [CVE-2019-10522]medium🔒---
145122Qualcomm Snapdragon Auto DCI Client use after free [CVE-2019-10515]medium🔒---
145121Qualcomm Snapdragon Auto Audio array index [CVE-2019-10512]medium🔒---
145120Qualcomm Snapdragon Auto IE Measurement out-of-bounds read [CVE-2019-10505]medium🔒---
145119Qualcomm Snapdragon Auto EXT Response resource consumption [CVE-2019-10504]low🔒---
145118Qualcomm Snapdragon Compute Camera Module buffer overflow [CVE-2019-10502]medium🔒---
145117Qualcomm Snapdragon Auto Data Structure buffer overflow [CVE-2019-10496]medium🔒---
145116Qualcomm Snapdragon Auto HEVC Encoding/AVC Encoding input validationmedium🔒---
145115Qualcomm Snapdragon Auto ADSP buffer overflow [CVE-2019-10491]medium🔒---
145114Qualcomm Snapdragon Auto Chunk Parser null pointer dereferencelow🔒---
145113MailPoet Newsletters Plugin Spam privileges management [CVE-2018-20853]medium🔒---
145111Progress Sitefinity CMS cross site scripting [CVE-2017-18639]low🔒---
145110Aruba ClearPass Policy Manager Credentials insufficiently protected credentialslow🔒---
145109Pagure Attachment Endpoint cross site scripting [CVE-2016-1000037]low🔒--🔒
145108Technicolor C2000T/C2100T hard-coded credentials [CVE-2015-7276]low🔒--🔒
145107WP Marketplace Plugin cart.php ajaxinit path traversallow🔒---
145106WP Marketplace Plugin cart.php ajaxinit input validationmedium🔒---
145105Red Hat Enterprise Linux Kernel initialization [CVE-2014-8181]low🔒---
145104Linux Kernel compat.c restart_syscall out-of-bounds read [Disputed]medium🔒---
145103TYPO3 Access Control ExtDirect input validationlow🔒---
145102TYPO3 RemoveXSS cross site scriptinglow🔒---
145101TYPO3 Webserver input validation [CVE-2011-4902]low🔒---
145100TYPO3 Database information disclosure [CVE-2011-4901]low🔒---
145099TYPO3 Backend information disclosure [CVE-2011-4900]low🔒---
145098TYPO3 tcemain Flash Message cross site scripting [CVE-2011-4632]low🔒---
145097TYPO3 System Extension Recycler cross site scripting [CVE-2011-4631]low🔒---
145096TYPO3 browse_links Wizard cross site scripting [CVE-2011-4630]low🔒---
145095TYPO3 Admin Panel cross site scripting [CVE-2011-4629]low🔒---
145094TYPO3 Backend improper authentication [CVE-2011-4628]medium🔒---
145093TYPO3 Backend information disclosure [CVE-2011-4627]low🔒---
145092TYPO3 typolink cross site scriptinglow🔒---
145091SimpleSAMLphp XML Encryption exceptional condition [CVE-2011-4625]medium🔒---
145090Google Chrome WebKit input validation [CVE-2011-2808]medium🔒---
145089Google Chrome WebKit fillRect integer overflowmedium🔒---
145088MySQL-GUI-tools Text Console Password insufficiently protected credentialslow🔒---
145087Drupal redirect [CVE-2010-2471]medium🔒---
145086Rbot Reaction Plugin input validation [CVE-2010-2446]medium🔒---
145085makepasswd insecure default initialization of resource [CVE-2010-2247]low🔒---
145084Konversation input validation [CVE-2009-5050]low🔒---
145083Jetty WebApp JSP Snoop Page cross site scripting [CVE-2009-5049]low🔒---
145082Jetty Cookie Dump Servlet Stored cross site scriptinglow🔒---
145081Jetty JSP Dump Servlet/Session Dump Servlet cross site scriptinglow🔒---
145080Jetty Dump Servlet information disclosure [CVE-2009-5045]low🔒---
145079Samba AD DC LDAP Server null pointer dereference [CVE-2019-14847]low🔒---
145078Samba Password Complexity weak password [CVE-2019-14833]low🔒---
145077Samba Client path traversal [CVE-2019-10218]medium🔒---
145076Magento Xpath xml injection [CVE-2019-8158]medium🔒---
145075Magento Download Link Stored cross site scriptinglow🔒---
145074Magento Configuration server-side request forgery [CVE-2019-8156]medium🔒---
145073Magento Product Stored cross site scriptinglow🔒---
145072Magento Design Configuration Stored cross site scriptinglow🔒---
145071Linux Kernel rcar_drif.c rcar_drif_g_fmt_sdr_cap Memory information disclosurelow🔒---
145070SuiteCRM sql injection [CVE-2019-18784]medium🔒---
145069Joomla CMS Access Check Path authorizationlow🔒---
145068Joomla CMS com_template cross-site request forgery [CVE-2019-18650]low🔒---
145066ClamAV fsg.c out-of-bounds writemedium🔒---
145065archivemail Temp File race condition [CVE-2006-4245]medium🔒---
145064Linux Kernel privileges management [CVE-2006-4243]medium🔒---
145063termpkg memory corruption [CVE-2006-3100]medium🔒---
145062xlockmore missing authentication [CVE-2006-0062]medium🔒---
145061xlockmore libpam-opensc missing authentication [CVE-2006-0061]medium🔒---
145060Magento HTML Comment cross site scripting [CVE-2019-8233]low🔒---
145059Magento Import input validation [CVE-2019-8232]medium🔒---
145058Magento Layout input validation [CVE-2019-8231]medium🔒---
145057Magento Config Setting input validation [CVE-2019-8230]medium🔒---
145056Magento Product Attribute input validation [CVE-2019-8229]medium🔒---
145055Magento Transaction Mail Page cross site scripting [CVE-2019-8228]low🔒---
145054Magento Profile cross site scripting [CVE-2019-8227]low🔒---
145053Magento os command injection [CVE-2019-8159]medium🔒---
145052Magento CSRF Token information disclosure [CVE-2019-8155]low🔒---
145051Magento Product Catalog input validation [CVE-2019-8154]medium🔒---
145050Magento escapeURL cross site scriptinglow🔒---
145049Magento Admin Dashboard blockDirective Stored cross site scriptinglow🔒---
145048Magento Shippment server-side request forgery [CVE-2019-8151]medium🔒---
145047Magento Page Layout input validation [CVE-2019-8150]medium🔒---
145046Magento Session Management session fixiation [CVE-2019-8149]medium🔒---
145045Magento Page Builder Stored cross site scriptinglow🔒---
145044Magento Customer Attribute Stored cross site scriptinglow🔒---
145043Magento Customer Attribute Stored cross site scriptinglow🔒---
145042Magento PageBuilder Template input validation [CVE-2019-8144]medium🔒---
145041Magento Email Template Stored sql injectionmedium🔒---
145040Magento Order Stored cross site scriptinglow🔒---
145039Magento Phar Deserialization deserialization [CVE-2019-8141]medium🔒---
145038Magento Synchronization unrestricted upload [CVE-2019-8140]medium🔒---
145037Magento Page Builder Stored cross site scriptinglow🔒---
145036Magento API Endpoint Stored cross site scriptinglow🔒---
145035Magento Layout input validation [CVE-2019-8137]medium🔒---
145034Magento Symphony Framework Remote Code Execution [CVE-2019-8136]high🔒---
145033Magento Symphony Framework injection [CVE-2019-8135]medium🔒---
145032Magento Email Template sql injection [CVE-2019-8134]medium🔒---
145031Magento Sitemap input validation [CVE-2019-8133]medium🔒---
145030Magento Inventory Source Stored cross site scriptinglow🔒---
145029Magento Database Connection sql injection [CVE-2019-8130]medium🔒---
145028Magento Expression Stored cross site scriptinglow🔒---
145027Magento Main Website Name Stored cross site scriptinglow🔒---
145026Magento Newsletter Template sql injection [CVE-2019-8127]medium🔒---
145025Magento XML Data xml entity expansion [CVE-2019-8126]medium🔒---
145024Magento Configuration Parameter input validation [CVE-2019-8125]medium🔒---
145023Magento Log insufficient verification of data authenticity [CVE-2019-8124]low🔒---
145022Magento Log input validation [CVE-2019-8123]low🔒---
145021Magento Layout Update input validation [CVE-2019-8122]medium🔒---
145020Magento Bootstrap/jquery/Knockout privileges management [CVE-2019-8121]medium🔒---
145019Magento Customer Email Address Stored cross site scriptinglow🔒---
145018Magento Bulk Product Import input validation [CVE-2019-8119]medium🔒---
145017Magento cleartext storage [CVE-2019-8118]medium🔒---
145016Magento Product View Stored cross site scriptinglow🔒---
145015Magento Session Management improper authentication [CVE-2019-8116]medium🔒---
145014Magento Product Reflected cross site scriptinglow🔒---
145013Magento Import unrestricted upload [CVE-2019-8114]medium🔒---
145012Magento Random Number Generator weak prng [CVE-2019-8113]low🔒---
145011Magento Email Confirmation insufficient verification of data authenticitymedium🔒---
145010Magento Plugin input validation [CVE-2019-8111]medium🔒---
145009Magento Template Hierarchy input validation [CVE-2019-8110]medium🔒---
145008Magento cross-site request forgery [CVE-2019-8109]low🔒---
145007Magento Session Management improper authentication [CVE-2019-8108]medium🔒---
145006Magento Export Data input validation [CVE-2019-8107]low🔒---
145005Magento unrestricted upload [CVE-2019-8093]medium🔒---
145004Magento Email Template Preview Reflected cross site scriptinglow🔒---
145003Magento Layout Update input validation [CVE-2019-8091]medium🔒---
145002Magento Design Layout denial of service [CVE-2019-8090]low🔒---
145001Forcepoint Email Security cross site scripting [CVE-2019-6142]low🔒---
145000Investintech Able2Extract Professional out-of-bounds write [CVE-2019-5089]medium🔒---
144999Investintech Able2Extract Professional out-of-bounds write [CVE-2019-5088]medium🔒---
144998X11 Mesa 3D Graphics Library Shared Memory permission assignmentmedium🔒---
144997Cisco Firepower Threat Defense Software HTTP Traffic Filter default permissionmedium🔒---
144996Cisco Firepower Threat Defense Software Normalization improper authenticationmedium🔒---
144995Cisco Firepower Threat Defense Software Protocol Detection improper authenticationmedium🔒---
144994Cisco Firepower Threat Defense Software Stream Reassembly improper authenticationmedium🔒---
144993Veritas InfoScale Cluster Server os command injection [CVE-2019-18780]high🔒---
144992Cisco Enterprise Chat/Email HTTP API information disclosure [CVE-2019-1877]low🔒---
144991ClamAV out-of-bounds read [CVE-2019-1789]medium🔒---
144990Cisco FXOS/NX-OS CLI Diagnostics information disclosure [CVE-2019-1734]low🔒---
144989HP Device Boot input validation [CVE-2019-16284]medium🔒---
144988Cisco TelePresence Advanced Media Gateway Web Application input validationlow🔒---
144987ClamAV ZIP Bomb denial of servicelow🔒---
144986Apache Impala Random Number Generator missing authenticationlow🔒---
144985CloakCoin Header resource consumption [CVE-2018-19167]low🔒---
144984peercoin Header resource consumption [CVE-2018-19166]low🔒---
144983neblio Header resource consumption [CVE-2018-19165]low🔒---
144982reddcoin Header resource consumption [CVE-2018-19164]low🔒---
144981stratisX Header resource consumption [CVE-2018-19163]low🔒---
144980Divi Header resource consumption [CVE-2018-19162]low🔒---
144979alqo Header resource consumption [CVE-2018-19161]low🔒---
144978Diamond Header resource consumption [CVE-2018-19160]low🔒---
144977lux Header resource consumption [CVE-2018-19159]low🔒---
144976Phore Header resource consumption [CVE-2018-19157]low🔒---
144975PIVX Header resource consumption [CVE-2018-19156]low🔒---
144974navcoin Header resource consumption [CVE-2018-19155]low🔒---
144973HTMLCOIN Header resource consumption [CVE-2018-19154]low🔒---
144972particl Header resource consumption [CVE-2018-19153]low🔒---
144971emercoin Header resource consumption [CVE-2018-19152]low🔒---
144970Dovecot SSL/TLS Key permission assignment [CVE-2016-4983]low🔒--🔒
144969Horde Groupware Webmail Edition basic.php cross-site request forgerylow🔒---
144968ISC BIND DNS Response Rate Cache Poisoning authentication spoofingmedium🔒---
144967Python PIP DNS Query improper authentication [CVE-2013-5123]medium🔒--🔒
144966Google Chrome WebKit type conversion [CVE-2011-1460]medium🔒---
144965Google Chrome Blink htmlpluginelement.cpp handleEvent resource consumptionlow🔒---
144964Serendipity Xinha manager.php cross site scriptinglow🔒---
144963Serendipity Xinha unrestricted upload [CVE-2011-1134]low🔒---
IDTitleVulDBCVSSSecuniaXForceNessus
144962Serendipity Xinha backend.php cross site scriptinglow🔒---
144961TYPO3 Frontend Search Box cross site scripting [CVE-2010-3674]low🔒---
144960TYPO3 HTML Mailing API information disclosure [CVE-2010-3673]low🔒---
144959TYPO3 extbase Extension cross site scripting [CVE-2010-3672]low🔒---
144958TYPO3 session fixiation [CVE-2010-3671]medium🔒---
144957TYPO3 Forgot Password Random inadequate encryptionmedium🔒---
144956Red Hat 389 Directory Server Search Query _ger_parse_control null pointer dereferencelow🔒---
144955Nvu Mozilla XPCOM Remote Code Execution [CVE-2005-2354]high🔒---
144954Centrify Authentication/Privileged Elevation Services deserializationmedium🔒---
144953Lightbend Play Framework play-ws Credentials insufficiently protected credentialslow🔒---
144952PhantomJS file:/ page.open file accesslow🔒---
144951ARM Mbed OS CoAP Library sn_coap_parser_options_parse out-of-bounds writemedium🔒---
144950ARM Mbed OS CoAP Library sn_coap_builder_calc_needed_packet_data_size_2 integer overflowmedium🔒---
144949Oxid eShop Admin Panel session fixiation [CVE-2019-17062]medium🔒---
144947gdm3 Screen Lock information disclosure [CVE-2016-1000002]low🔒---
144946Nokogiri XML Entity xml entity expansion [CVE-2013-6461]low🔒---
144945Nokogiri Gem XML Document xml entity expansion [CVE-2013-6460]low🔒---
144944Horde Groupware Webmail Edition Permission edit.php cross-site request forgerylow🔒---
144943Horde Groupware Webmail Edition Virtual Address Book search.php cross-site request forgerylow🔒---
144942Cryptocat Chat User List information disclosure [CVE-2013-4110]low🔒---
144941Cryptocat cryptocat.js handlePresence cross site scriptinglow🔒---
144940Open Build Service TLS Certificate Validation certificate validationmedium🔒---
144939kube-state-metrics Annotation information disclosure [CVE-2019-10223]low🔒---
144848ARP-GUARD forgot1 sql injectionmedium🔒---
144847FreeRTOS FATFS ff_file.c FF_Close use after freemedium🔒---
144846ARM Mbed OS MQTT Library readMQTTLenString input validationlow🔒---
144845One Identity Cloud Access Manager cross-site request forgerylow🔒---
144844One Identity Cloud Access Manager OTP improper validation of integrity check valuemedium🔒---
144843php-gettext Plural Form Formula input validation [CVE-2015-8980]medium🔒--🔒
144842Python Software Foundation Djblets eval input validationmedium🔒--🔒
144841RHQ Mongo DB Drift Server Temp File exposure of resource [CVE-2013-4374]medium🔒---
144840Redhat vsdm Temp File exposure of resource [CVE-2013-4280]medium🔒---
144839SciPy scipy.weave tmp privileges managementmedium🔒--🔒
144838Cryptocat Multiparty Encryption Scheme information disclosurelow🔒---
144837Cryptocat Entropy Cryptocat.random entropymedium🔒---
144836Cryptocat Firefox Conversation Overview input validation [CVE-2013-2259]medium🔒---
144835Cryptocat Nickname Impersonation authentication spoofingmedium🔒---
144834Cryptocat Key Generation excessive authentication [CVE-2013-2257]medium🔒---
144833TYPO3 Frontend Login Box redirect [CVE-2010-3669]low🔒---
144832TYPO3 Download Header Injection injectionmedium🔒---
144831TYPO3 Form Spam input validationmedium🔒---
144830TYPO3 uniqid Random random valueslow🔒---
144829TYPO3 Extension Manager cross site scripting [CVE-2010-3665]low🔒---
144828TYPO3 Backend information disclosure [CVE-2010-3664]low🔒---
144827TYPO3 Backend unrestricted upload [CVE-2010-3663]medium🔒---
144826TYPO3 Backend sql injection [CVE-2010-3662]medium🔒---
144825shadow/sudo Session input validation [CVE-2005-4890]medium🔒--🔒
144824sudo Descriptor 3 race conditionmedium🔒---
144823Linux Kernel V4L2 Subsystem vivid vivid_stop_generating_vid_cap race conditionmedium🔒---
144822Linux Kernel tcp.c rds_tcp_kill_sock null pointer dereferencelow🔒---
144821SAP HANA Database input validation [CVE-2019-0350]low🔒---
144820360 Safe Router Background Process injection [CVE-2018-19031]medium🔒---
144818JBoss AeroGear Reflected cross site scripting [CVE-2014-3649]low🔒---
144817Red Hat Update Infrastructure PKI information disclosure [CVE-2013-4518]low🔒---
144816CloudForms Password Storage insufficiently protected credentialsmedium🔒---
144815slim crypt null pointer dereferencelow🔒---
144814Cryptocat Socialist Millionnaire Protocol inadequate encryptionmedium🔒---
144813Cryptocat input validation [CVE-2013-4103]medium🔒---
144812Cryptocat strophe.js Math.random Random random valuesmedium🔒---
144811Cryptocat Link Markup Decorator addLinks input validationmedium🔒---
144810Cryptocat input validation [CVE-2013-4100]low🔒---
144809Cryptocat strophe.js information disclosurelow🔒---
144808Cryptocat Extension keygen.gif information disclosurelow🔒---
144807SHIFT BitBox02 OLED Display information disclosure [CVE-2019-18673]low🔒---
144806Currency Switcher Addon input validation [CVE-2019-18668]medium🔒---
144805freeradius3 for pfSense freeradius_view_config.php cross site scriptinglow🔒---
144804SECUDOS DOMOS Log Module path traversal [CVE-2019-18665]medium🔒---
144803SECUDOS DOMOS Log Module cross site scripting [CVE-2019-18664]low🔒---
144802YouPHPTube getChat.json.php sql injectionmedium🔒---
144801Hyundai Pay Kasse HK-1000 OLED Display information disclosurelow🔒---
144800Archos Safe-T OLED Display information disclosure [CVE-2019-14358]low🔒---
144799F5 BIG-IP AFM AFM Configuration Utility sql injection [CVE-2019-6658]medium🔒---
144798F5 BIG-IP Traffic Management User Interface Reflected cross site scriptinglow🔒---
144797Red Hat Linux Enterprise DHCP denial of service [CVE-2019-6470]low🔒---
144796Fastweb FASTgate Administration Console check_pwd information disclosuremedium🔒---
144795Facebook WhatsApp Wireless Emergency Alerts Protocol risky encryptionmedium🔒---
144794AVG Antivirus SSID Name cross site scripting [CVE-2019-18654]low🔒---
144793Avast Antivirus SSID Name cross site scripting [CVE-2019-18653]low🔒---
144792Nexus Repository Manager CommandLineExecutor.java os command injectionmedium🔒---
144791Symantec SONAR Tamper Protection default permission [CVE-2019-12752]medium🔒---
144790ovirt-engine os.chmod permission assignmentmedium🔒---
144789SmokePing Time Field cross site scripting [CVE-2013-4168]low🔒--🔒
144788OpenStack Keystone/OpenStack Compute SSL Certificate Validator HTTPSConnections certificate validationmedium🔒---
144787GLPI common.tabs.php input validationmedium🔒---
144786Foswiki Maketext Macro code injection [CVE-2013-1666]medium🔒--🔒
144785Red Hat ManageIQ EVM cross site scripting [CVE-2013-0186]low🔒---
144784Redis Temp File redis.ds input validationmedium🔒---
144783Redis Temp File redis-%p.vm input validationmedium🔒---
144782openshift Temp File dump.sh input validationmedium🔒---
144781FreeBSD nsd resource transfer [CVE-2012-2979]low🔒--🔒
144780Apache Struts ParameterInterceptor permission assignmenthigh🔒--🔒
144779TYPO3 Backend redirect [CVE-2010-3661]medium🔒---
144778TYPO3 Backend cross site scripting [CVE-2010-3660]low🔒---
144777gs-gpl Addon Script race condition [CVE-2005-2352]medium🔒---
144776Mutt Temp File exposure of resource [CVE-2005-2351]low🔒---
144775websieve Web User Interface cross site scripting [CVE-2005-2350]low🔒---
144774Jitbit .NET Forum Gravatar cross site scripting [CVE-2019-18636]low🔒---
144773Infosysta In-App / Desktop Notifications App Project NotificationSettings information disclosurelow🔒---
144772Infosysta In-App / Desktop Notifications App Project ProjectFilter information disclosurelow🔒---
144771php-symfony2-Validator Serialization input validation [CVE-2013-4751]medium🔒--🔒
144770Evince input validation [CVE-2013-3718]medium🔒---
144769minidlna memory corruption [CVE-2013-2739]medium🔒---
144768minidlna sql injection [CVE-2013-2738]medium🔒---
144767MiniUPnPd Minissdp.c snprintf information disclosurelow🔒---
144766Twiki Include injectionmedium🔒--🔒
144765YouPHPTube sql injection [CVE-2019-5151]medium🔒---
144764YouPHPTube VideoTags Plugin sql injection [CVE-2019-5150]medium🔒---
144763Tempo Plugin Permission authorization [CVE-2019-5095]low🔒---
144762AMD ATI Radeon Pixel Shader ATIDXX64.DLL out-of-bounds writemedium🔒---
144761Google Nest Cam IQ Indoor resource consumption [CVE-2019-5043]low🔒---
144760Rainbow PDF Office Server Document Converter PowerPoint Document Conversion parse out-of-bounds writemedium🔒---
144759grsecurity PaX Patch kmem read_kmem release of resourcelow🔒---
144758Python X.509 Certificate null pointer dereference [CVE-2019-5010]low🔒--🔒
144757ClickHouse Header Injection injection [CVE-2019-18657]medium🔒---
144756Technicolor TD5130v2 Web Interface mnt_ping.cgi os command injectionmedium🔒---
144755Honeywell IP Camera Audio Stream missing authentication [CVE-2019-18230]low🔒---
144754Advantech WISE-PaaS/RMM sql injection [CVE-2019-18229]medium🔒---
144753Honeywell IP Cameras input validation [CVE-2019-18228]low🔒---
144752Advantech WISE-PaaS/RMM XML Data xml external entity referencemedium🔒---
144751Honeywell IP Cameras authentication replay [CVE-2019-18226]medium🔒---
144750Infosysta In-App / Desktop Notifications App UserFilter Username improper authenticationlow🔒---
144749Infosysta In-App / Desktop Notifications App PushNotification improper authenticationlow🔒---
144748Phoenix Contact PC Worx/PC Worx Express/Config+ Config+ Project File input validationmedium🔒---
144747CentOS-WebPanel.com CentOS Web Panel filemanager2.php Stored cross site scriptinglow🔒---
144746Fortinet FortiExtender CLI Admin Console os command injectionmedium🔒---
144745Coldcard MK1/MK2 OLED Display information disclosure [CVE-2019-14356] [Disputed]low🔒---
144744Advantech WISE-PaaS/RMM path traversal [CVE-2019-13551]medium🔒---
144743Advantech WISE-PaaS/RMM authorization [CVE-2019-13547]medium🔒---
144742FreeTDS memory corruption [CVE-2019-13508]medium🔒---
144741Sierra Wireless AirLink ES450 ACEManager upload.cgi improper authenticationmedium🔒---
144740CUJO Smart Firewall Safe Browsing code injection [CVE-2018-4031]high🔒---
144739CUJO Smart Firewall mdnscap recursion [CVE-2018-4002]low🔒---
144738Atlantis Word Processor Word Document Parser uninitialized pointermedium🔒---
144737CHICKEN Incomplete Fix buffer overflow [CVE-2013-2075]medium🔒---
144736CHICKEN utils Module qs os command injectionmedium🔒--🔒
144735autojump privileges management [CVE-2013-2012]medium🔒---
144734MediaWiki Lua cross site scripting [CVE-2013-1951]low🔒--🔒
144733ruby193 unknown vulnerability [CVE-2013-1945]low🔒---
144732MantisBT Configuration Report Page adm_config_report.php cross site scriptinglow🔒--🔒
144731MantisBT Configuration Report Page adm_config_report.php cross site scriptinglow🔒--🔒
144730MantisBT manage_proj_ver_delete.php cross site scriptinglow🔒--🔒
144729MantisBT Workflow input validation [CVE-2013-1930]medium🔒--🔒
144728yum Metadata yumRepo.py input validationmedium🔒---
144727CHICKEN Hash Table Collision input validationhigh🔒---
144726CHICKEN Random Number Generator weak prng [CVE-2012-6124] [Disputed]medium🔒---
144725CHICKEN NULL Byte input validation [CVE-2012-6123]medium🔒---
144724CHICKEN Thread Scheduler select buffer overflowmedium🔒---
144723IcedTea6 JNLP Service information disclosure [CVE-2010-2783]medium🔒--🔒
144722IcedTea6 authorization [CVE-2010-2548]medium🔒--🔒
144721ZTE ZX297520V3 Terminal System injection [CVE-2019-3421]medium🔒---
144720ZTE ZXMP input validation [CVE-2019-3419]low🔒---
144719Pimcore translations.js cross site scriptinglow🔒---
144718Total Defense Anti-Virus Quarantine permission assignment [CVE-2019-18645]medium🔒---
144717Total Defense Anti-Virus Symlink toctou [CVE-2019-18644]low🔒---
144716Mooltipass Moolticute MPDevice_win.cpp null pointer dereferencelow🔒---
144715European Commission eIDAS-Node Integration Package Certificate Validation certificate validationmedium🔒---
144714European Commission eIDAS-Node Integration Package Certificate certificate validationmedium🔒---
144713Progress MOVEit Transfer SSH/SFTP missing authentication [CVE-2019-18465]medium🔒---
144712Progress MOVEit Transfer REST API sql injection [CVE-2019-18464]medium🔒---
144711Xen Descriptor privileges management [CVE-2019-18425]medium🔒---
144710Xen DMA os command injection [CVE-2019-18424]medium🔒---
144709Xen Hypercall p2m_resolve_translation_fault input validationlow🔒---
144708Xen Exception permission assignment [CVE-2019-18422]medium🔒---
144707Xen Promotion race condition [CVE-2019-18421]medium🔒---
144706Xen Hypercall hypercall_create_continuation input validationlow🔒---
144705JetBrains YouTrack Tag default permission [CVE-2019-18369]medium🔒---
144704JetBrains ToolBox App privileges management [CVE-2019-18368]medium🔒---
144703JetBrains TeamCity default permission [CVE-2019-18367]medium🔒---
144702JetBrains TeamCity Permission default permission [CVE-2019-18366]low🔒---
144701JetBrains TeamCity privileges management [CVE-2019-18365]medium🔒---
144700JetBrains TeamCity Java Deserialization deserialization [CVE-2019-18364]medium🔒---
144699JetBrains TeamCity information disclosure [CVE-2019-18363]low🔒---
144698JetBrains MPS Network Service information disclosure [CVE-2019-18362]medium🔒---
144697JetBrains IntelliJ IDEA privileges management [CVE-2019-18361]low🔒---
144696JetBrains Hub Password Recovery Username information disclosurelow🔒---
144695Zucchetti InfoBusiness Web Component cross site scripting [CVE-2019-18207]low🔒---
144694Zucchetti InfoBusiness File Upload cross-site request forgerylow🔒---
144693Zucchetti InfoBusiness Browsing Reflected cross site scriptinglow🔒---
144692Zucchetti InfoBusiness File Upload unrestricted upload [CVE-2019-18204]medium🔒---
144691Apak Wholesale Floorplanning Finance agreementView.faces cross site scriptinglow🔒---
144690ClipSoft REXPERT input validation [CVE-2019-17326]low🔒---
144689ClipSoft REXPERT RexViewerCtrl30.ocx ActiveX unrestricted uploadlow🔒---
144688ClipSoft REXPERT path traversal [CVE-2019-17324]medium🔒---
144687ClipSoft REXPERT xml injection [CVE-2019-17323]medium🔒---
144686ClipSoft REXPERT input validation [CVE-2019-17322]medium🔒---
144685ClipSoft REXPERT information disclosure [CVE-2019-17321]low🔒---
144684YIT Plugin Framework yit-plugin-panel-wc.php privileges managementmedium🔒---
144683BitDefender BOX Web API input validation [CVE-2019-12612]medium🔒---
144682Apache Airflow Metadata Database cross site scripting [CVE-2019-12417]low🔒---
144681medoo columnQuote sql injectionmedium🔒---
144680Jupyter Notebook CSP improper restriction of rendered ui layersmedium🔒---
144679systemd Certificate Validation certificate validation [CVE-2018-21029]medium🔒---
144678GNUBOARD5 Extra Contents boardgroup_form_update.php cross site scriptinglow🔒---
144677murmur-server Client Query input validation [CVE-2010-2490]low🔒---
144676Ikiwiki Comment cross site scripting [CVE-2010-1673]low🔒---
144675transmission Endgame memory corruption [CVE-2010-0749]low🔒---
144674transmission Magnet Link input validation [CVE-2010-0748]low🔒--🔒
144673drbd8 mount.cifs permission assignmentmedium🔒---
144672JBoss Operations Network CLI permission assignment [CVE-2010-0737]medium🔒---
144671Autokey link following [CVE-2010-0398]low🔒---
144670Xpdf xref Table infinite loop [CVE-2010-0207]low🔒---
144669Xpdf JBIG2 null pointer dereference [CVE-2010-0206]low🔒---
144668Burn Quotation Mark exceptional condition [CVE-2009-5043]high🔒---
144667python-docutils Temp File exposure of resource [CVE-2009-5042]medium🔒---
144666Overkill Player Name buffer overflow [CVE-2009-5041]medium🔒---
144665Apple iTunes WebKit Process Model memory corruption [CVE-2019-8815]medium🔒---
144664Apple iTunes WebKit memory corruption [CVE-2019-8823]medium🔒---
144663Apple iTunes WebKit memory corruption [CVE-2019-8822]medium🔒---
144662Apple iTunes WebKit memory corruption [CVE-2019-8821]medium🔒---
144661Apple iTunes WebKit memory corruption [CVE-2019-8820]medium🔒---
144660Apple iTunes WebKit memory corruption [CVE-2019-8819]medium🔒---
144659Apple iTunes WebKit memory corruption [CVE-2019-8816]medium🔒---
144658Apple iTunes WebKit memory corruption [CVE-2019-8814]medium🔒---
144657Apple iTunes WebKit memory corruption [CVE-2019-8812]medium🔒---
144656Apple iTunes WebKit memory corruption [CVE-2019-8811]medium🔒---
144655Apple iTunes WebKit memory corruption [CVE-2019-8808]medium🔒---
144654Apple iTunes WebKit memory corruption [CVE-2019-8783]medium🔒---
144653Apple iTunes WebKit memory corruption [CVE-2019-8782]medium🔒---
144652Apple iTunes WebKit Universal cross site scriptingmedium🔒---
144651Apple iTunes untrusted search path [CVE-2019-8801]medium🔒---
144650Apple iTunes Graphics Driver memory corruption [CVE-2019-8784]medium🔒---
144649Apple iCloud WebKit Process Model memory corruption [CVE-2019-8815]medium🔒---
144648Apple iCloud WebKit memory corruption [CVE-2019-8823]medium🔒---
144647Apple iCloud WebKit memory corruption [CVE-2019-8822]medium🔒---
144646Apple iCloud WebKit memory corruption [CVE-2019-8821]medium🔒---
144645Apple iCloud WebKit memory corruption [CVE-2019-8820]medium🔒---
144644Apple iCloud WebKit memory corruption [CVE-2019-8819]medium🔒---
144643Apple iCloud WebKit memory corruption [CVE-2019-8816]medium🔒---
144642Apple iCloud WebKit memory corruption [CVE-2019-8814]medium🔒---
144641Apple iCloud WebKit memory corruption [CVE-2019-8811]medium🔒---
144640Apple iCloud WebKit memory corruption [CVE-2019-8783]medium🔒---
144639Apple iCloud WebKit memory corruption [CVE-2019-8782]medium🔒---
144638Apple iCloud WebKit memory corruption [CVE-2019-8766]medium🔒---
144637Apple iCloud WebKit memory corruption [CVE-2019-8710]medium🔒---
144636Apple iCloud WebKit Universal cross site scriptingmedium🔒---
144635Apple iCloud libxslt memory corruption [CVE-2019-8750]medium🔒---
144634Apple iCloud Graphics Driver memory corruption [CVE-2019-8784]medium🔒---
144633Apple iCloud WebKit Process Model memory corruption [CVE-2019-8815]medium🔒---
144632Apple iCloud WebKit memory corruption [CVE-2019-8823]medium🔒---
144631Apple iCloud WebKit memory corruption [CVE-2019-8822]medium🔒---
144630Apple iCloud WebKit memory corruption [CVE-2019-8821]medium🔒---
144629Apple iCloud WebKit memory corruption [CVE-2019-8820]medium🔒---
144628Apple iCloud WebKit memory corruption [CVE-2019-8819]medium🔒---
144627Apple iCloud WebKit memory corruption [CVE-2019-8816]medium🔒---
144626Apple iCloud WebKit memory corruption [CVE-2019-8814]medium🔒---
144625Apple iCloud WebKit memory corruption [CVE-2019-8811]medium🔒---
144624Apple iCloud WebKit memory corruption [CVE-2019-8783]medium🔒---
144623Apple iCloud Graphics Driver memory corruption [CVE-2019-8784]medium🔒---
144622Apple macOS UIFoundation information disclosure [CVE-2019-8761]low🔒---
144621Apple macOS System Extensions input validation [CVE-2019-8805]medium🔒---
144620Apple macOS PluginKit memory corruption [CVE-2019-8715]medium🔒---
144619Apple macOS PluginKit information disclosure [CVE-2019-8708]low🔒---
144618Apple macOS manpages input validation [CVE-2019-8802]medium🔒---
144617Apple macOS libxslt memory corruption [CVE-2019-8750]medium🔒---
144616Apple macOS libxml2 memory corruption [CVE-2019-8756]medium🔒---
144615Apple macOS libxml2 memory corruption [CVE-2019-8749]medium🔒---
144614Apple macOS Kernel memory corruption [CVE-2019-8744]medium🔒---
144613Apple macOS Kernel memory corruption [CVE-2019-8786]medium🔒---
144612Apple macOS Kernel Memory input validationlow🔒---
144611Apple macOS iTunes untrusted search path [CVE-2019-8801]medium🔒---
144610Apple macOS IOGraphics denial of service [CVE-2019-8759]medium🔒---
144609Apple macOS Intel Graphics Driver memory corruption [CVE-2019-8807]medium🔒---
144608Apple macOS Graphics Driver memory corruption [CVE-2019-8784]medium🔒---
144607Apple macOS Graphics unrestricted upload [CVE-2018-1215]medium🔒---
144606Apple macOS Graphics unrestricted upload [CVE-2018-1215]medium🔒---
144605Apple macOS Graphics unrestricted upload [CVE-2018-1215]medium🔒---
144604Apple macOS File System Events memory corruption [CVE-2019-8798]medium🔒---
144603Apple macOS File Quarantine privileges management [CVE-2019-8509]medium🔒---
144602Apple macOS CUPS denial of service [CVE-2019-8737]low🔒---
144601Apple macOS CUPS heap-based overflow [CVE-2019-8767]medium🔒---
144600Apple macOS CUPS information disclosure [CVE-2019-8736]low🔒---
144599Apple macOS Contacts authentication spoofing [CVE-2017-7152]medium🔒---
144598Apple macOS Books link following [CVE-2019-8789]low🔒---
144597Apple macOS Audio memory corruption [CVE-2019-8797]medium🔒---
144596Apple macOS Audio memory corruption [CVE-2019-8785]medium🔒---
144595Apple macOS Audio memory corruption [CVE-2019-8706]medium🔒---
144594Apple macOS Associated Domains input validation [CVE-2019-8788]low🔒---
144593Apple macOS AppleGraphicsControl memory corruption [CVE-2019-8716]medium🔒---
144592Apple macOS AppleGraphicsControl Memory input validationlow🔒---
144591Apple macOS App Store session expiration [CVE-2019-8803]low🔒---
144590Apple macOS Accounts out-of-bounds read [CVE-2019-8787]medium🔒---
144589Apple watchOS WebKit memory corruption [CVE-2019-8820]medium🔒---
144588Apple watchOS WebKit memory corruption [CVE-2019-8816]medium🔒---
144587Apple watchOS WebKit memory corruption [CVE-2019-8812]medium🔒---
144586Apple watchOS WebKit memory corruption [CVE-2019-8811]medium🔒---
144585Apple watchOS WebKit memory corruption [CVE-2019-8808]medium🔒---
144584Apple watchOS WebKit memory corruption [CVE-2019-8766]medium🔒---
144583Apple watchOS WebKit memory corruption [CVE-2019-8765]medium🔒---
144582Apple watchOS WebKit memory corruption [CVE-2019-8743]medium🔒---
144581Apple watchOS WebKit Universal cross site scriptingmedium🔒---
144580Apple watchOS VoiceOver information disclosure [CVE-2019-8775]low🔒---
144579Apple watchOS libxslt memory corruption [CVE-2019-8750]medium🔒---
144578Apple watchOS Kernel memory corruption [CVE-2019-8786]medium🔒---
144577Apple watchOS Kernel input validation [CVE-2019-8794]low🔒---
144576Apple watchOS File System Events memory corruption [CVE-2019-8798]medium🔒---
144575Apple watchOS Contacts authentication spoofing [CVE-2017-7152]medium🔒---
144574Apple watchOS Audio memory corruption [CVE-2019-8797]medium🔒---
144573Apple watchOS Audio memory corruption [CVE-2019-8785]medium🔒---
144572Apple watchOS AppleFirmwareUpdateKext memory corruption [CVE-2019-8747]medium🔒---
144571Apple watchOS App Store session expiration [CVE-2019-8803]low🔒---
144570Apple watchOS Accounts out-of-bounds read [CVE-2019-8787]medium🔒---
144569Apple Safari WebKit Process Model memory corruption [CVE-2019-8815]medium🔒---
144568Apple Safari WebKit memory corruption [CVE-2019-8823]medium🔒---
144567Apple Safari WebKit memory corruption [CVE-2019-8822]medium🔒---
144566Apple Safari WebKit memory corruption [CVE-2019-8821]medium🔒---
144565Apple Safari WebKit memory corruption [CVE-2019-8820]medium🔒---
144564Apple Safari WebKit memory corruption [CVE-2019-8819]medium🔒---
144563Apple Safari WebKit memory corruption [CVE-2019-8816]medium🔒---
144562Apple Safari WebKit memory corruption [CVE-2019-8814]medium🔒---
144561Apple Safari WebKit memory corruption [CVE-2019-8812]medium🔒---
144560Apple Safari WebKit memory corruption [CVE-2019-8811]medium🔒---
144559Apple Safari WebKit memory corruption [CVE-2019-8808]medium🔒---
144558Apple Safari WebKit memory corruption [CVE-2019-8783]medium🔒---
144557Apple Safari WebKit memory corruption [CVE-2019-8782]medium🔒---
144556Apple Safari WebKit Universal cross site scriptingmedium🔒---
144555Apple iOS/iPadOS WebKit Process Model memory corruption [CVE-2019-8815]medium🔒---
144554Apple iOS/iPadOS WebKit memory corruption [CVE-2019-8823]medium🔒---
144553Apple iOS/iPadOS WebKit memory corruption [CVE-2019-8822]medium🔒---
144552Apple iOS/iPadOS WebKit memory corruption [CVE-2019-8821]medium🔒---
144551Apple iOS/iPadOS WebKit memory corruption [CVE-2019-8820]medium🔒---
144550Apple iOS/iPadOS WebKit memory corruption [CVE-2019-8819]medium🔒---
144549Apple iOS/iPadOS WebKit memory corruption [CVE-2019-8816]medium🔒---
144548Apple iOS/iPadOS WebKit memory corruption [CVE-2019-8814]medium🔒---
144547Apple iOS/iPadOS WebKit memory corruption [CVE-2019-8812]medium🔒---
144546Apple iOS/iPadOS WebKit memory corruption [CVE-2019-8811]medium🔒---
144545Apple iOS/iPadOS WebKit memory corruption [CVE-2019-8808]medium🔒---
144544Apple iOS/iPadOS WebKit memory corruption [CVE-2019-8783]medium🔒---
144543Apple iOS/iPadOS WebKit memory corruption [CVE-2019-8782]medium🔒---
144542Apple iOS/iPadOS WebKit Universal cross site scriptingmedium🔒---
144541Apple iOS/iPadOS Screen Recording input validation [CVE-2019-8793]low🔒---
144540Apple iOS/iPadOS Setup Assistant improper authentication [CVE-2019-8804]low🔒---
144539Apple iOS/iPadOS Kernel memory corruption [CVE-2019-8786]medium🔒---
144538Apple iOS/iPadOS Kernel Memory input validationlow🔒---
144537Apple iOS/iPadOS Graphics Driver memory corruption [CVE-2019-8784]medium🔒---
144536Apple iOS/iPadOS File System Events memory corruption [CVE-2019-8798]medium🔒---
144535Apple iOS/iPadOS Contacts authentication spoofing [CVE-2017-7152]medium🔒---
144534Apple iOS/iPadOS Books link following [CVE-2019-8789]low🔒---
144533Apple iOS/iPadOS AVEVideoEncoder memory corruption [CVE-2019-8795]medium🔒---
144532Apple iOS/iPadOS Audio memory corruption [CVE-2019-8797]medium🔒---
144531Apple iOS/iPadOS Audio memory corruption [CVE-2019-8785]medium🔒---
144530Apple iOS/iPadOS Associated Domains Exfiltration input validationlow🔒---
144529Apple iOS/iPadOS App Store session expiration [CVE-2019-8803]medium🔒---
144528Apple iOS/iPadOS Accounts out-of-bounds read [CVE-2019-8787]medium🔒---
144527Apple tvOS WebKit Process Model memory corruption [CVE-2019-8815]medium🔒---
144526Apple tvOS WebKit memory corruption [CVE-2019-8823]medium🔒---
144525Apple tvOS WebKit memory corruption [CVE-2019-8822]medium🔒---
144524Apple tvOS WebKit memory corruption [CVE-2019-8821]medium🔒---
144523Apple tvOS WebKit memory corruption [CVE-2019-8820]medium🔒---
144522Apple tvOS WebKit memory corruption [CVE-2019-8819]medium🔒---
144521Apple tvOS WebKit memory corruption [CVE-2019-8816]medium🔒---
144520Apple tvOS WebKit memory corruption [CVE-2019-8814]medium🔒---
144519Apple tvOS WebKit memory corruption [CVE-2019-8812]medium🔒---
144518Apple tvOS WebKit memory corruption [CVE-2019-8811]medium🔒---
144517Apple tvOS WebKit memory corruption [CVE-2019-8808]medium🔒---
144516Apple tvOS WebKit memory corruption [CVE-2019-8783]medium🔒---
144515Apple tvOS WebKit memory corruption [CVE-2019-8782]medium🔒---
144514Apple tvOS WebKit Universal cross site scriptingmedium🔒---
144513Apple tvOS Kernel memory corruption [CVE-2019-8786]medium🔒---
144512Apple tvOS Kernel input validation [CVE-2019-8794]low🔒---
144511Apple tvOS File System Events memory corruption [CVE-2019-8798]medium🔒---
144510Apple tvOS AVEVideoEncoder memory corruption [CVE-2019-8795]medium🔒---
144509Apple tvOS Audio memory corruption [CVE-2019-8797]medium🔒---
144508Apple tvOS Audio memory corruption [CVE-2019-8785]medium🔒---
144507Apple tvOS App Store session expiration [CVE-2019-8803]medium🔒---
144506Apple tvOS Accounts out-of-bounds read [CVE-2019-8787]medium🔒---
144505Logstash Beats Input Plugin input validation [CVE-2019-7620]low🔒---
144504Elasticsearch API Key Service Username risky encryptionlow🔒---
144503rdesktop out-of-bounds read [CVE-2019-15682]low🔒---
144502ISC BIND buffer.c assertionlow🔒--🔒
144492Aruba Instant injection [CVE-2018-16417]medium🔒---
144451LabKey Server reports-viewScriptReport.view cross-site request forgerylow🔒---
144450LabKey Server Display Name Stored cross site scriptinglow🔒---
144449LabKey Server SVG xml external entity reference [CVE-2019-9757]medium🔒---
144448TightVNC HandleCoRREBBP buffer overflowmedium🔒---
144447Magento input validation [CVE-2019-8235]low🔒---
144446Schneider Electric Modicon M580 TFTP information disclosure [CVE-2019-6851]low🔒---
144445Schneider Electric Modicon BMENOC 0321 Communication Module information disclosurelow🔒---
144444Schneider Electric Modicon BMENOC 0321 Communication Module information disclosurelow🔒---
144443Schneider Electric Modicon BMENOC 0321 Communication Module input validationlow🔒---
144442Modicon Modicon M580 Application exceptional condition [CVE-2019-6847]low🔒---
144441Schneider Electric Modicon M580 FTP cleartext transmission [CVE-2019-6846]low🔒---
144440Schneider Electric Modicon M580 Modbus cleartext transmissionlow🔒---
144439Schneider Electric Modicon M580 PLC exceptional condition [CVE-2019-6844]low🔒---
144438Schneider Electric Modicon M580 PLC exceptional condition [CVE-2019-6843]low🔒---
144437Schneider Electric Modicon M580 PLC exceptional condition [CVE-2019-6842]low🔒---
144436Schneider Electric Modicon M580 PLC exceptional condition [CVE-2019-6841]low🔒---
144435VMware SD-WAN information disclosure [CVE-2019-5533]low🔒---
144434RouterOS DNS Server input validation [CVE-2019-3979]medium🔒---
144433RouterOS DNS Cache Poisoning missing authenticationmedium🔒---
144432RouterOS Upgrade Package code download [CVE-2019-3977]medium🔒---
144431RouterOS Upgrade Package input validation [CVE-2019-3976]medium🔒---
144430Opera Mini File Download input validation [CVE-2019-18624]medium🔒---
144429AbuseFilter Extension information disclosure [CVE-2019-18612]low🔒---
144428CheckUser Extension API information disclosure [CVE-2019-18611]low🔒---
144427Cezerin Attribute cart input validationmedium🔒---
144426axodraw2 axohelp axohelp.c input validationhigh🔒---
144425OpenAFS RPC information disclosure [CVE-2019-18603]low🔒---
144424OpenAFS information disclosure [CVE-2019-18602]low🔒---
144423OpenAFS RPC Call deserialization [CVE-2019-18601]low🔒---
144422Maxthon Unquoted Search Path unquoted search path [CVE-2019-16647]medium🔒---
144421TurboVNC out-of-bounds write [CVE-2019-15683]medium🔒---
144420LibVNC VNC Server information disclosure [CVE-2019-15681]low🔒---
144419TightVNC HandleZlibBPP null pointer dereferencelow🔒---
144418TightVNC InitialiseRFBConnection out-of-bounds writemedium🔒---
144417TightVNC rfbServerCutText out-of-bounds writemedium🔒---
144416Sahi Pro Script Manager DBReports Reflected cross site scriptinglow🔒---
144415Sequelize JSON Path Key sql injection [CVE-2019-10749]medium🔒---
144414Sequelize JSON Path Key sql injection [CVE-2019-10748]medium🔒---
144413Archiver Unarchive path traversal [CVE-2019-10743]medium🔒---
144412PostgreSQL Installer input validation [CVE-2019-10211]medium🔒---
144411PostgreSQL Installer input validation [CVE-2019-10210]medium🔒---
144410PostgreSQL Memory information disclosure [CVE-2019-10209]low🔒---
144409PostgreSQL Execute Permission sql injection [CVE-2019-10208]medium🔒---
144408Apache Thrift TJSONProtocol/TSimpleJSONProtocol out-of-bounds readlow🔒---
144407Apache Thrift infinite loop [CVE-2019-0205]low🔒---
144406qtum Header resource consumption [CVE-2018-19151]low🔒---
144405TightRope Media Carousel Digital Signage Services privileges managementmedium🔒---
144404TightRope Media Carousel Digital Signage File Upload unrestricted uploadmedium🔒---
144403TightRope Media Carousel Seneca HDn hard-coded credentials [CVE-2018-18929]medium🔒---
144402Fabrikar Fabrik Component Reflected cross site scripting [CVE-2018-10727]low🔒---
144400GMER SysTreeView32 Control out-of-bounds write [CVE-2016-4289]medium🔒---
144399Apache Hadoop link following [CVE-2012-2945]medium🔒---
144398BitlBee Privilege unix.c dropped privilegesmedium🔒---
144397SugarCRM CE unserialize input validationmedium🔒---
144396MediaWiki ApiQueryRevisions.php information disclosurelow🔒---
144395gpw Password Generator weak password [CVE-2011-4931]low🔒---
144394Cisco Video Communications Server injection [CVE-2011-2538]medium🔒---
144393Ikiwiki TTY link following [CVE-2011-1408]medium🔒--🔒
144392Ikiwiki Comment cross site scripting [CVE-2011-0428]low🔒---
144391Mercurial SSL Certificate certificate validation [CVE-2010-4237]medium🔒--🔒
144390qtparted Library Loader input validation [CVE-2010-3375]medium🔒---
144389paxtest Temp File input validation [CVE-2010-3373]medium🔒---
144388rpcbind portmap.xdr link followinglow🔒---
144387rpcbind portmap.xdr input validationmedium🔒---
144386MapServer Symbol Index input validation [CVE-2010-1678]medium🔒---
144385ytnef path traversal [CVE-2009-3887]medium🔒---
144384Asterisk PBX Call authorization [CVE-2009-3723]medium🔒---
144383VMware vCenter Server Appliance Backup/Restore certificate validationlow🔒---
144382VMware vCenter Server Appliance Backup/Restore certificate validationlow🔒---
144381VMware ESXi/Workstation/Fusion Shader input validation [CVE-2019-5536]low🔒---
144380IBM API Connect information disclosure [CVE-2019-4600]low🔒---
144379IBM Maximo Health- Safety/Environment Manager privileges managementmedium🔒---
144378IBM Security Guardium Big Data Intelligence inadequate encryptionlow🔒---
144377IBM Security Guardium Big Data Intelligence Cookie cookie validationlow🔒---
144376IBM Security Guardium Big Data Intelligence Blacklist input validationmedium🔒---
144375IBM Security Guardium Big Data Intelligence information disclosurelow🔒---
144374IBM Security Guardium Big Data Intelligence information disclosurelow🔒---
144373IBM Security Guardium Big Data Intelligence hard-coded credentialsmedium🔒---
144372IBM Security Guardium Big Data Intelligence Credentials insufficiently protected credentialslow🔒---
144371IBM Security Guardium Big Data Intelligence Permission exposure of resourcemedium🔒---
144370Trend Micro Apex One/OfficeScan/Worry-Free Business Security Management Console path traversalmedium🔒---
144369Trend Micro Apex One ZIP File unrestricted upload [CVE-2019-18188]medium🔒---
144368Trend Micro OfficeScan ZIP File path traversal [CVE-2019-18187]medium🔒---
144367IntraSrv HTTP Request buffer overflow [CVE-2019-17181]medium🔒---
144366Repetier-Server XML File RepetierServer.exe path traversalmedium🔒---
144365Dzone AnswerHub xml external entity reference [CVE-2017-15725]medium🔒---
144364Keyring Lib Permission default permission [CVE-2012-5577]medium🔒---
144363McAfee Total Protection information disclosure [CVE-2019-3636]medium🔒---
144262libpod Podman link following [CVE-2019-18466]medium🔒---
144261TerraMaster FS-210 1.user.php privileges managementmedium🔒---
144260Compal Broadband CH7465LG Modem Web Interface path traversallow🔒---
144259K7 Antivirus Premium/Total Security/Ultimate Security Inter-Process Communication K7TSHlpr.dll privileges managementmedium🔒---
144258rConfig search.crud.php exec os command injectionmedium🔒---
144257rConfig ajaxServerSettingsChk.php exec os command injectionmedium🔒---
144256Mitsubishi Electric ME-RTU/INEA ME-RTU mobile.php os command injectionmedium🔒---
144255Mitsubishi Electric ME-RTU/INEA ME-RTU hard-coded credentialshigh🔒---
144254Mitsubishi Electric ME-RTU/INEA ME-RTU Credentials insufficiently protected credentialslow🔒---
144253Mitsubishi Electric ME-RTU/INEA ME-RTU index.php Stored cross site scriptinglow🔒---
144252Mitsubishi Electric ME-RTU/INEA ME-RTU Configuration File information disclosurelow🔒---
144251Mitsubishi Electric ME-RTU/INEA ME-RTU SSH Key ssh_host_rsa_key hard-coded credentialsmedium🔒---
144250Mitsubishi Electric ME-RTU/INEA ME-RTU Configuration File settings.xml Credentials default permissionlow🔒---
144243pootle cross site scripting [CVE-2010-4245]low🔒---
144242Tiki Wiki CMS Groupware tiki-adminusers.php cross-site request forgerylow🔒---
144241Tiki Wiki CMS Groupware tiki-edit_wiki_section.php cross site scriptinglow🔒---
144240Tiki Wiki CMS Groupware tiki-jsplugin.php input validationmedium🔒---
144239Mailscanner Signature Update input validation [CVE-2010-3293]low🔒---
144238Pixelpost cross site scripting [CVE-2009-4900]low🔒---
144237Pixelpost sql injection [CVE-2009-4899]medium🔒---
144236Zoo path traversal [CVE-2005-2349]medium🔒---
144235Snoopy curl input validation [CVE-2002-2444]high🔒---
144234LabF nfsAxe FTP Client memory corruption [CVE-2017-14742]medium🔒---
144232Joomla CMS code injectionmedium🔒---
144231PHP FPM fpm_main.c env_path_info Underflow out-of-bounds writemedium🔒---
144230Adobe Experience Manager cross-site request forgery [CVE-2019-8234]low🔒---
144229Adobe Experience Manager injection [CVE-2019-8088]medium🔒---
144228Adobe Experience Manager XML Data xml external entity referencemedium🔒---
144227Adobe Experience Manager XML Data xml external entity referencemedium🔒---
144226Adobe Experience Manager Reflected cross site scripting [CVE-2019-8085]low🔒---
144225Adobe Experience Manager Reflected cross site scripting [CVE-2019-8084]low🔒---
144224Adobe Experience Manager cross site scripting [CVE-2019-8083]low🔒---
144223Adobe Experience Manager XML Data xml external entity referencemedium🔒---
144222Adobe Experience Manager improper authentication [CVE-2019-8081]low🔒---
144221NetApp Clustered Data ONTAP l2ping input validation [CVE-2019-5508]low🔒---
144220YouPHPTube Encoder getSpiritsFromVideo.php os command injectionmedium🔒---
144219YouPHPTube Encoder getImageMP4.php os command injectionmedium🔒---
144218YouPHPTube Encoder getImage.php os command injectionmedium🔒---
144217YouPHPTube pluginSwitch.json.php sql injectionmedium🔒---
144216YouPHPTube pluginSwitch.json.php sql injectionmedium🔒---
144215YouPHPTube pluginSwitch.json.php sql injectionmedium🔒---
144214YouPHPTube sql injection [CVE-2019-5120]medium🔒---
144213YouPHPTube sql injection [CVE-2019-5119]medium🔒---
144212YouPHPTube sql injection [CVE-2019-5117]medium🔒---
144211YouPHPTube sql injection [CVE-2019-5116]medium🔒---
144210YouPHPTube sql injection [CVE-2019-5114]medium🔒---
144209IBM Cloud Orchestrator cross site scripting [CVE-2019-4461]low🔒---
144208IBM Cloud Orchestrator path traversal [CVE-2019-4400]medium🔒---
144207IBM Cloud Orchestrator risky encryption [CVE-2019-4399]low🔒---
144206IBM Cloud Orchestrator cross site scripting [CVE-2019-4396]medium🔒---
144205IBM Cloud Orchestrator Temporary Script File information disclosurelow🔒---
144204IBM Cloud Orchestrator API Email input validationmedium🔒---
144203IBM Security Access Manager Appliance Reverse Proxy input validationlow🔒---
144202Foxit PhantomPDF DXF File out-of-bounds write [CVE-2019-17145]medium🔒---
144201Foxit PhantomPDF DWG File out-of-bounds write [CVE-2019-17144]medium🔒---
144200Foxit PhantomPDF DWG File use after free [CVE-2019-17143]low🔒---
144199Foxit PhantomPDF use after free [CVE-2019-17142]medium🔒---
144198Foxit PhantomPDF use after free [CVE-2019-17141]medium🔒---
144197Foxit PhantomPDF use after free [CVE-2019-17140]medium🔒---
144196Foxit PhantomPDF HTML2PDF Plugin out-of-bounds write [CVE-2019-17139]medium🔒---
144195Foxit Studio Photo JPEG Converter out-of-bounds read [CVE-2019-17138]low🔒---
1441943S-Smart CODESYS out-of-bounds write [CVE-2019-16265]medium🔒---
144193Repetier-Server XML Data RepetierServer.exe unrestricted uploadmedium🔒---
144192Rittal Chiller SK 3232 hard-coded credentials [CVE-2019-13553]medium🔒---
144191Rittal Chiller SK 3232 missing authentication [CVE-2019-13549]medium🔒---
144190IntelliSpace Perinatal Application Environment exposure of resourcemedium🔒---
144189IP-AK2 Access Control Panel Version Integrated Web Server missing authenticationlow🔒---
144182Google Chrome dial_registry.cc erase permission assignmentmedium🔒--🔒
144181Milesight IP Security Camera shadow hard-coded credentialsmedium🔒---
144180Milesight IP Security Camera vb.htm improper authenticationmedium🔒---
144179Milesight IP Security Camera hard-coded credentials [CVE-2016-2358]medium🔒---
144178Milesight IP Security Camera SSL Private Key config hard-coded credentialsmedium🔒---
144177Milesight IP Security Camera Web Application buffer overflowmedium🔒---
144176Zend Framework Postgresql sql injection [CVE-2015-0270]medium🔒---
144175D-Link DIR-865L router_info.xml xml injectionmedium🔒---
144174D-Link DIR-865L bsc_lan.php information disclosurelow🔒---
144173D-Link DIR-865L SMB path traversal [CVE-2013-4855]medium🔒---
144172TP-LINK TL-WDR4300 cross-site request forgery [CVE-2013-4848]low🔒---
144171Linksys EA6500 SMB path traversal [CVE-2013-4658]medium🔒---
144170CoreHR Core Portal Stored cross site scripting [CVE-2019-18221]low🔒---
144169Microsoft Windows Master File Table PushIndexRoot Blue Screen denial of servicelow🔒---
144168Adobe Experience Manager Stored cross site scripting [CVE-2019-8080]low🔒---
144167Adobe Experience Manager Stored cross site scripting [CVE-2019-8079]low🔒---
144166Adobe Experience Manager Reflected cross site scripting [CVE-2019-8078]low🔒---
144165ClonOS Web Control Panel index.php cross site scriptinglow🔒---
144164ClonOS Web Control Panel Session Management clonos.php session fixiationmedium🔒---
144163SourceCodester Management System File Upload unrestricted uploadmedium🔒---
144162SourceCodester Management System Member cross site scriptinglow🔒---
144161SourceCodester Management System Send Message Screen cross site scriptinglow🔒---
144160SourceCodester Management System staff-exec.php cross-site request forgerylow🔒---
144159TypeStack class-validator validate sql injectionmedium🔒---
144158Google Go Certificate Verification Remote Code Execution [CVE-2019-17596]medium🔒---
144157Horde Groupware Webmail Edition Trean cross-site request forgerylow🔒---
144154Fortinet FortiClient DLL Loader uncontrolled search path [CVE-2019-6692]medium🔒---
144153Wacom Driver Helper Service stopLaunchDProcess privileges managementmedium🔒---
144152Wacom Driver Helper Service privileges management [CVE-2019-5012]medium🔒---
144151IBM Maximo Asset Management Web UI cross site scripting [CVE-2019-4486]low🔒---
144150IBM Cloud Orchestrator/Cloud Orchestrator Enterprise Web UI cross site scriptinglow🔒---
144149IBM Cloud Orchestrator/Cloud Orchestrator Enterprise Session Management Cookie missing encryptionlow🔒---
144148IBM Cloud Orchestrator/Cloud Orchestrator Enterprise information disclosurelow🔒---
144147ruby_parser-legacy Gem ruby_parser.rb permission assignment [CVE-2019-18409]medium🔒---
144146libarchive archive_read_support_format_rar.c use after freemedium🔒---
144145Ignite Realtime Openfire FaviconServlet.java server-side request forgerymedium🔒---
144144Ignite Realtime Openfire PluginServlet.java path traversalmedium🔒---
144143Fujitsu Wireless Keyboard Set LX390 GK381 missing encryptionlow🔒---
144142Fujitsu Wireless Keyboard Set LX390 GK381 injection [CVE-2019-18200]low🔒---
144141Fujitsu Wireless Keyboard Set LX390 GK381 authentication replaylow🔒---
144140TeamViewer DLL Loader untrusted search path [CVE-2019-18196]medium🔒---
144139tonyy dormsystem DOM-Based cross site scripting [CVE-2019-17581]low🔒---
144138Craft CMS Login Form password recovery [CVE-2019-15929]low🔒---
144137Fortinet FortiOS ECDSA PRNG entropylow🔒---
144136TP-LINK M7350 Trigger Port os command injection [CVE-2019-13653]medium🔒---
144135TP-LINK M7350 Service Name os command injection [CVE-2019-13652]medium🔒---
144134TP-LINK M7350 os command injection [CVE-2019-13651]medium🔒---
144133TP-LINK M7350 Internal Port os command injection [CVE-2019-13650]medium🔒---
144132TP-LINK M7350 External Port os command injection [CVE-2019-13649]medium🔒---
144131Horde Groupware Webmail Edition Tag Cloud cross site scriptinglow🔒---
144130MapR CLDB JSON Framework input validation [CVE-2019-12017]medium🔒---
144129Schlix CMS File Upload mediamanager unrestricted uploadmedium🔒---
144126Darktrace Enterprise Immune System config cross-site request forgerylow🔒---
144125Darktrace Enterprise Immune System whitelisteddomains cross-site request forgerylow🔒---
144124Adobe Acrobat Reader path traversal [CVE-2019-8238]low🔒---
144123Adobe Acrobat Reader Security Feature inadequate encryption [CVE-2019-8237]medium🔒---
144122Creative Cloud Desktop Application privileges management [CVE-2019-8236]medium🔒---
144121Forcepoint One Endpoint DLP/Web Protection authorization [CVE-2019-6144]medium🔒---
144120Tenable Nessus Scan Type Import input validation [CVE-2019-3982]low🔒---
144119SourceCodester Hotel/Lodge Management System Edit Page sql injectionmedium🔒---
144118TerraMaster FS-210 Log File log file [CVE-2019-18385]low🔒---
144117TerraMaster FS-210 permission assignment [CVE-2019-18384]low🔒---
144116TerraMaster FS-210 Backup File permission assignment [CVE-2019-18383]low🔒---
144115AVStar PE204 Service Port 23456 input validation [CVE-2019-18382]low🔒---
144114Xiaomi Mi WiFi R3G Nginx Alias account path traversalmedium🔒---
144113Xiaomi Mi WiFi R3G Backup File speedtest_urls.xml input validationmedium🔒---
144112MP3Gain apetag.c ReadMP3APETag memory corruptionmedium🔒---
144111Thycotic Secret Server cross site scripting [CVE-2019-18357]low🔒---
144110Thycotic Secret Server cross site scripting [CVE-2019-18356]low🔒---
144109Thycotic Secret Server Legacy Web Launcher server-side request forgerymedium🔒---
144108Ant Design Pro Reflected cross site scripting [CVE-2019-18350]low🔒---
144107Python urllib2 urllib.request.urlopen injectionmedium🔒---
144106SourceCodester Online Grading System sql injection [CVE-2019-18344]medium🔒---
144105Qt qtbase qtextengine.cpp generateDirectionalRuns memory corruptionlow🔒---
144104SourceCodester Online Grading System cross-site request forgerylow🔒---
144103VideoLAN VLC Media Player libqt vlc_entry_license__3_0_0f+0x00000000003b9aba memory corruptionmedium🔒---
144102HAProxy Legacy Mode input validation [CVE-2019-18277]medium🔒---
144101Red Hat XML Language Support LSPXMLParserConfiguration.java xml injectionmedium🔒---
144100Red Hat XML Language Server XMLLanguageService.java path traversalmedium🔒---
144099hexo-admin Plugin Post Editor Stored cross site scriptinglow🔒---
144098Avast/AVG Antivirus DLL Loader wbemcomn.dll untrusted search pathmedium🔒---
144097FusionPBX extension_imports.php Reflected cross site scriptinglow🔒---
144096FusionPBX destination_imports.php Reflected cross site scriptinglow🔒---
144095FusionPBX contact_notes.php Reflected cross site scriptinglow🔒---
144094WUSTL XNAT xml external entity reference [CVE-2019-14276]medium🔒---
144093Apache POI XSSFExportToXml xml external entity reference [CVE-2019-12415]medium🔒---
144092libpl_droidsonroids_gif memory corruption [CVE-2019-11933]medium🔒---
144091Cloud Foundry SMB Volume Log Credentials log filelow🔒---
144090Cloud Foundry UAA SCIM information disclosure [CVE-2019-11282]medium🔒---
144089Zulip Plugin Global Configuration Credentials insufficiently protected credentialslow🔒---
144088build-metrics Plugin Reflected cross site scripting [CVE-2019-10475]low🔒---
144087Global Post Script Plugin Permission Check default permissionlow🔒---
144086Libvirt Slaves Plugin Permission Check Credentials default permissionlow🔒---
144085Libvirt Slaves Plugin Permission Check Credentials default permissionlow🔒---
144084Libvirt Slaves Plugin cross-site request forgery [CVE-2019-10471]low🔒---
144083ElasticBox Jenkins Kubernetes CI-CD Plugin Permission Check Credentials default permissionlow🔒---
144082ElasticBox Jenkins Kubernetes CI-CD Plugin Permission Check default permissionlow🔒---
144081ElasticBox Jenkins Kubernetes CI-CD Plugin cross-site request forgerylow🔒---
144080Sonar Gerrit Plugin config.xml Credentials insufficiently protected credentialslow🔒---
144079360 FireLine Plugin xml external entity reference [CVE-2019-10466]medium🔒---
144078Jenkins Deploy WebLogic Plugin Permission Check default permissionlow🔒---
144077Deploy WebLogic Plugin cross-site request forgery [CVE-2019-10464]low🔒---
144076Dynatrace Application Monitoring Plugin Permission Check default permissionmedium🔒---
144075Dynatrace Application Monitoring Plugin cross-site request forgerylow🔒---
144074Dynatrace Application Monitoring Plugin Global Configuration Credentials insufficiently protected credentialslow🔒---
144073Bitbucket OAuth Plugin Configuration File config.xml Credentials insufficiently protected credentialslow🔒---
144072Mattermost Notification Plugin Global Configuration config.xml Credentials insufficiently protected credentialslow🔒---
144071Easy Digital Downloads Twenty-Twelve Theme cross site scriptinglow🔒---
144070Easy Digital Downloads Shoppette Theme cross site scripting [CVE-2015-9535]low🔒---
144069Easy Digital Downloads Quota Theme cross site scripting [CVE-2015-9534]low🔒---
144068Easy Digital Downloads Lattice Theme cross site scripting [CVE-2015-9533]low🔒---
144067Easy Digital Downloads Digital Store Theme cross site scriptinglow🔒---
144066Easy Digital Downloads Wish Lists Extension cross site scriptinglow🔒---
144065Easy Digital Downloads Upload File Extension cross site scriptinglow🔒---
144064Easy Digital Downloads Stripe Extension cross site scriptinglow🔒---
144063Easy Digital Downloads Software Licensing Extension cross site scriptinglow🔒---
144062Easy Digital Downloads Simple Shipping Extension cross site scriptinglow🔒---
144060Easy Digital Downloads Recurring Payments Extension cross site scriptinglow🔒---
144059Easy Digital Downloads Recount Earnings Extension cross site scriptinglow🔒---
144058Easy Digital Downloads Recommended Products extension cross site scriptinglow🔒---
144057Easy Digital Downloads QR Code Extension cross site scriptinglow🔒---
144056Easy Digital Downloads Pushover Notifications Extension cross site scriptinglow🔒---
144055Easy Digital Downloads Per Product Emails Extension cross site scriptinglow🔒---
144054Easy Digital Downloads PDF Stamper Extension cross site scriptinglow🔒---
144053Easy Digital Downloads PDF Invoices Extension cross site scriptinglow🔒---
144052Easy Digital Downloads Manual Purchases Extension cross site scriptinglow🔒---
144051Easy Digital Downloads Invoices Extension cross site scriptinglow🔒---
144050Easy Digital Downloads htaccess Editor Extension cross site scriptinglow🔒---
144049Easy Digital Downloads Free Downloads Extension cross site scriptinglow🔒---
144048Easy Digital Downloads Favorites Extension cross site scriptinglow🔒---
144047Easy Digital Downloads CSV Manager Extension cross site scriptinglow🔒---
144046Easy Digital Downloads Conditional Success Redirects Extension cross site scriptinglow🔒---
144045Easy Digital Downloads Cross-sell Upsell Extension cross site scriptinglow🔒---
144044Easy Digital Downloads Content Restriction Extension cross site scriptinglow🔒---
144043Easy Digital Downloads Commissions Extension cross site scriptinglow🔒---
144042Easy Digital Downloads Attach Accounts to Orders Extension cross site scriptinglow🔒---
144041Easy Digital Downloads Amazon S3 Extension cross site scriptinglow🔒---
144040Easy Digital Downloads Core cross site scripting [CVE-2015-9505]low🔒---
144039weeklynews Theme cross site scripting [CVE-2015-9504]low🔒---
144038Modern Theme example.html cross site scriptinglow🔒---
144037Auberge Theme example.html cross site scriptinglow🔒---
144036Open Floodlight SDN Controller Service input validation [CVE-2014-2304]low🔒---
144035Open Floodlight SDN Switch input validation [CVE-2013-7333]low🔒---
144034GNU gcc New Operator integer overflow [CVE-2002-2439]medium🔒---
144033Codemagic Sitemagic CMS upgrade.php cross site scriptinglow🔒---
144032Adobe Experience Manager Forms Reflected cross site scriptinglow🔒---
144031totemodata Folder Name cross site scripting [CVE-2019-17189]low🔒---
144030FusionPBX contact_edit.php Reflected cross site scriptinglow🔒---
144029FusionPBX contact_addresses.php Reflected cross site scriptinglow🔒---
144028FusionPBX messages_thread.php Reflected cross site scriptinglow🔒---
144027Loofah Gem cross site scripting [CVE-2019-15587]low🔒---
144026Artificial Intelligence Theme cross site scripting [CVE-2015-9501]low🔒---
144025Exquisite Ultimate Newspaper Theme jquery.foundation.plugins.js cross site scriptinglow🔒---
144024Showbiz Pro Plugin unrestricted upload [CVE-2015-9499]medium🔒---
144023wps-hide-login Plugin Option Save cross-site request forgerylow🔒---
144022ad-inserter Plugin cross-site request forgery [CVE-2015-9497]low🔒---
144021freshmail-newsletter Plugin shortcode.php sql injectionmedium🔒---
144020syndication-links Plugin example.html cross site scriptinglow🔒---
144019indieweb-post-kinds Plugin example.html cross site scriptinglow🔒---
144018my-wish-list Plugin cross site scripting [CVE-2015-9493]low🔒---
144017IBM DB2 High Performance Unload buffer overflow [CVE-2019-4523]medium🔒---
144016nipper-ng Firewall Configuration process-general.c processPrivilage out-of-bounds writemedium🔒---
144015Stephan Mooltipass Moolticute Access Control cleartext transmissionmedium🔒---
144014GNU Libidn2 Roudtrip Check input validation [CVE-2019-12290]medium🔒---
144013Sangoma Session Border Controller GA Web Interface Webconfig.inc.php improper authenticationmedium🔒---
144012Sangoma Session Border Controller GA Web Interface Webconfig.inc.php injectionmedium🔒---
144011Micro Focus Self Service Password Reset Certificate Validation certificate validationmedium🔒---
144010Apache Traffic Server HTTP2 input validation [CVE-2019-10079]low🔒---
144009AVM Fritz!Box 7490 PPPoE Packet Padding information disclosurelow🔒---
144008Codemagic Sitemagic CMS cross-site request forgery [CVE-2019-18220]low🔒---
144007Codemagic Sitemagic CMS index.php cross site scriptinglow🔒---
144006Trend Micro Anti-Threat Toolkit input validation [CVE-2019-9491]medium🔒---
144004Citrix Application Delivery Controller/Gateway Management Interface improper authenticationmedium🔒---
144003Ricoh MP 501 adrsSetUserWizard.cgi Stored cross site scriptinglow🔒---
144002Libssh2 packet.c integer overflowmedium🔒---
144001unoconv Package server-side request forgery [CVE-2019-17400]medium🔒---
144000Rocket.Chat cross site scriptinglow🔒---
143999FusionPBX contact_times.php Reflected cross site scriptinglow🔒---
143998FusionPBX sip_status.php Reflected cross site scriptinglow🔒---
143997FusionPBX fifo_interactive.php Reflected cross site scriptinglow🔒---
143996FusionPBX conference_control_details.php Reflected cross site scriptinglow🔒---
143995FreePBX Manager form.php Reflected cross site scriptinglow🔒---
143994Contactmanager Contactmanager.class.php Reflected cross site scriptinglow🔒---
143993FusionPBX cmd.php injectionmedium🔒---
143992FusionPBX Call Center Queue Module cmd.php injectionmedium🔒---
143991OpenEMR eye_base.php sql injectionmedium🔒---
143989GNU Libidn2 lookup.c idn2_to_ascii_4i out-of-bounds writemedium🔒---
143988FusionPBX filedelete.php Reflected cross site scriptinglow🔒---
143987FusionPBX conference_interactive.php Reflected cross site scriptinglow🔒---
143986FusionPBX content.php Reflected cross site scriptinglow🔒---
143985FusionPBX contact_import.php Reflected cross site scriptinglow🔒---
143984FusionPBX download.php path traversallow🔒---
143983FusionPBX URL xml_cdr_delete.php path traversallow🔒---
143982FusionPBX recording_play.php Reflected cross site scriptinglow🔒---
143981FusionPBX paging.php paging Reflected cross site scriptinglow🔒---
143980FusionPBX access_control_nodes.php Reflected cross site scriptinglow🔒---
143979FusionPBX conference_profile_params.php Reflected cross site scriptinglow🔒---
143978FusionPBX music_on_hold.php path traversallow🔒---
143977FusionPBX call_broadcast_edit.php sql injectionmedium🔒---
143976FusionPBX contact_urls.php Reflected cross site scriptinglow🔒---
143975FusionPBX device_settings.php Reflected cross site scriptinglow🔒---
143974Sonatype Nexus Repository Manager/IQ Server unrestricted uploadmedium🔒---
143973File cdf.c cdf_read_property_info out-of-bounds writemedium🔒---
143972ProFTPD Command main.c infinite looplow🔒---
143971OpenEMR view.php Reflected cross site scriptinglow🔒---
143970OpenEMR view.php Reflected cross site scriptinglow🔒---
143969Verodin Director JSON REST API integrations.json Credentials insufficiently protected credentialslow🔒---
143968Verodin Director Stored cross site scripting [CVE-2019-10715]low🔒---
143967Asus ROG Zephyrus M GM501GS Battery input validation [CVE-2019-18216]medium🔒---
143966Video_Converter App FFmpeg release of resource [CVE-2019-18214]low🔒---
143965Etherpad-Lite URL pad.html cross site scriptinglow🔒---
143964WAGO PFC100/PFC200 Access Control external reference [CVE-2019-18202]low🔒---
143963Adobe Download Manager permission assignment [CVE-2019-8071]medium🔒---
143962HCL Traveler Problem Report Page cross site scripting [CVE-2019-4409]low🔒---
143961Linux Kernel fib6_rules.c fib6_rule_suppress release of resourcemedium🔒---
143960libxslt transform.c xsltCopyText use after freemedium🔒---
143959SageMath Sage Cell Server Python __import__('os').popen('whoami').read os command injectionmedium🔒---
143958Tomedo Server Vendor Communication insufficiently protected credentialslow🔒---
143957OpenWRT radio0.network1 cross-site request forgerylow🔒---
143956broken-link-checker table-printer.php Reflected cross site scriptinglow🔒---
143955Harbor API Access Control default permission [CVE-2019-16919]medium🔒---
143954slicer69 doas input validation [CVE-2019-15901]medium🔒---
143953slicer69 doas sscanf use of uninitialized resourcehigh🔒---
143952Horner Automation Cscape out-of-bounds write [CVE-2019-13545]medium🔒---
143951Horner Automation Cscape input validation [CVE-2019-13541]medium🔒---
143950ajenti API privileges managementmedium🔒---
143949Podman / Varlink API privileges managementmedium🔒---
143948Adobe Acrobat Reader null pointer dereference [CVE-2019-8205]medium🔒---
143947Adobe Acrobat Reader null pointer dereference [CVE-2019-8196]medium🔒---
143946Adobe Acrobat Reader null pointer dereference [CVE-2019-8195]medium🔒---
143945Adobe Acrobat Reader null pointer dereference [CVE-2019-8174]medium🔒---
143944Adobe Acrobat Reader type conversion [CVE-2019-8200]medium🔒---
143943Adobe Acrobat Reader type conversion [CVE-2019-8169]medium🔒---
143942Adobe Acrobat Reader type conversion [CVE-2019-8167]medium🔒---
143941Adobe Acrobat Reader type conversion [CVE-2019-8161]medium🔒---
143940Adobe Acrobat Reader information disclosure [CVE-2019-8226]low🔒---
143939Adobe Acrobat Reader race condition [CVE-2019-8162]medium🔒---
143938Adobe Acrobat Reader cross site scripting [CVE-2019-8160]low🔒---
143937Adobe Acrobat Reader memory corruption [CVE-2019-8166]medium🔒---
143936Adobe Acrobat Reader memory corruption [CVE-2019-8197]medium🔒---
143935Adobe Acrobat Reader memory corruption [CVE-2019-8183]medium🔒---
143934Adobe Acrobat Reader memory corruption [CVE-2019-8170]medium🔒---
143933Adobe Acrobat Reader use after free [CVE-2019-8225]medium🔒---
143932Adobe Acrobat Reader use after free [CVE-2019-8224]medium🔒---
143931Adobe Acrobat Reader use after free [CVE-2019-8223]medium🔒---
143930Adobe Acrobat Reader use after free [CVE-2019-8221]medium🔒---
143929Adobe Acrobat Reader use after free [CVE-2019-8220]medium🔒---
143928Adobe Acrobat Reader use after free [CVE-2019-8219]medium🔒---
143927Adobe Acrobat Reader use after free [CVE-2019-8217]medium🔒---
143926Adobe Acrobat Reader use after free [CVE-2019-8215]medium🔒---
143925Adobe Acrobat Reader use after free [CVE-2019-8214]medium🔒---
143924Adobe Acrobat Reader use after free [CVE-2019-8213]medium🔒---
143923Adobe Acrobat Reader use after free [CVE-2019-8212]medium🔒---
143922Adobe Acrobat Reader use after free [CVE-2019-8211]medium🔒---
143921Adobe Acrobat Reader use after free [CVE-2019-8210]medium🔒---
143920Adobe Acrobat Reader use after free [CVE-2019-8209]medium🔒---
143919Adobe Acrobat Reader use after free [CVE-2019-8208]medium🔒---
143918Adobe Acrobat Reader use after free [CVE-2019-8203]medium🔒---
143917Adobe Acrobat Reader use after free [CVE-2019-8192]medium🔒---
143916Adobe Acrobat Reader use after free [CVE-2019-8188]medium🔒---
143915Adobe Acrobat Reader use after free [CVE-2019-8187]medium🔒---
143914Adobe Acrobat Reader use after free [CVE-2019-8181]medium🔒---
143913Adobe Acrobat Reader use after free [CVE-2019-8180]medium🔒---
143912Adobe Acrobat Reader use after free [CVE-2019-8179]medium🔒---
143911Adobe Acrobat Reader use after free [CVE-2019-8178]medium🔒---
143910Adobe Acrobat Reader use after free [CVE-2019-8177]medium🔒---
143909Adobe Acrobat Reader use after free [CVE-2019-8176]medium🔒---
143908Adobe Acrobat Reader use after free [CVE-2019-8175]medium🔒---
143907Adobe Acrobat Reader out-of-bounds write [CVE-2019-8206]medium🔒---
143906Adobe Acrobat Reader out-of-bounds write [CVE-2019-8199]medium🔒---
143905Adobe Acrobat Reader out-of-bounds write [CVE-2019-8191]medium🔒---
143904Adobe Acrobat Reader out-of-bounds write [CVE-2019-8165]medium🔒---
143903Adobe Acrobat Reader out-of-bounds write [CVE-2019-8186]medium🔒---
143902Adobe Acrobat Reader out-of-bounds write [CVE-2019-8171]medium🔒---
143901Adobe Acrobat Reader out-of-bounds read [CVE-2019-8222]low🔒---
143900Adobe Acrobat Reader out-of-bounds read [CVE-2019-8218]low🔒---
143899Adobe Acrobat Reader out-of-bounds read [CVE-2019-8216]low🔒---
143898Adobe Acrobat Reader out-of-bounds read [CVE-2019-8207]low🔒---
143897Adobe Acrobat Reader out-of-bounds read [CVE-2019-8204]low🔒---
143896Adobe Acrobat Reader out-of-bounds read [CVE-2019-8202]low🔒---
143895Adobe Acrobat Reader out-of-bounds read [CVE-2019-8201]low🔒---
143894Adobe Acrobat Reader out-of-bounds read [CVE-2019-8198]low🔒---
143893Adobe Acrobat Reader out-of-bounds read [CVE-2019-8194]low🔒---
143892Adobe Acrobat Reader out-of-bounds read [CVE-2019-8193]low🔒---
143891Adobe Acrobat Reader out-of-bounds read [CVE-2019-8190]low🔒---
143890Adobe Acrobat Reader out-of-bounds read [CVE-2019-8163]low🔒---
143889Adobe Acrobat Reader out-of-bounds read [CVE-2019-8189]low🔒---
143888Adobe Acrobat Reader out-of-bounds read [CVE-2019-8185]low🔒---
143887Adobe Acrobat Reader out-of-bounds read [CVE-2019-8184]low🔒---
143886Adobe Acrobat Reader out-of-bounds read [CVE-2019-8182]low🔒---
143885Adobe Acrobat Reader out-of-bounds read [CVE-2019-8064]low🔒---
143884Adobe Acrobat Reader out-of-bounds read [CVE-2019-8173]low🔒---
143883Adobe Acrobat Reader out-of-bounds read [CVE-2019-8172]low🔒---
143882Adobe Acrobat Reader out-of-bounds read [CVE-2019-8168]low🔒---
143881Adobe Acrobat Reader out-of-bounds read [CVE-2019-8164]low🔒---
143880ISC BIND QNAME assertion [CVE-2019-6476]low🔒---
143879ISC BIND Mirror Zone input validation [CVE-2019-6475]low🔒---
143878GNU Guix permission assignment [CVE-2019-18192]medium🔒---
143877Eclipse OpenJ9 Privilege Check permission assignment [CVE-2019-17631]medium🔒---
143876Ratpack Netty Library DefaultHttpHeaders input validationmedium🔒---
143875WiKID 2FA Enterprise Server adm_usrs.jsp Reflected cross site scriptinglow🔒---
143874WiKID 2FA Enterprise Server Logs.jsp sql injectionmedium🔒---
143873WiKID 2FA Enterprise Server cross-site request forgery [CVE-2019-17118]low🔒---
143872WiKID 2FA Enterprise Server processPref.jsp sql injectionmedium🔒---
143871WiKID 2FA Enterprise Server groups.jsp Reflected cross site scriptinglow🔒---
143870WiKID 2FA Enterprise Server cross site scripting [CVE-2019-17115]low🔒---
143869WiKID 2FA Enterprise Server userPreregistration.jsp Reflected cross site scriptinglow🔒---
143868WiKID 2FA Enterprise Server searchDevices.jsp buildSearchWhereClause sql injectionmedium🔒---
143867NCH Express Accounts Accounting Persistent cross site scriptinglow🔒---
143866eQ-3 Homematic CCU3 ReGa.runScript input validationmedium🔒---
143865eQ-3 Homematic CCU3 session fixiation [CVE-2019-15849]medium🔒---
143864Trend Micro Deep Security Agent input validation [CVE-2019-15627]medium🔒---
143863Trend Micro Deep Security Manager application LDAP information disclosurelow🔒---
143862HiNet GPON Service Port 6998 input validation [CVE-2019-15066]high🔒---
143861HiNet GPON Service Port 6998 information disclosure [CVE-2019-15065]medium🔒---
143860HiNet GPON improper authentication [CVE-2019-15064]medium🔒---
143859eQ-3 Homematic CCU2 CUx-Daemon information disclosure [CVE-2019-14424]low🔒---
143858eQ-3 Homematic CCU2 CUx-Daemon code injection [CVE-2019-14423]medium🔒---
143857CA Performance Management hard-coded credentials [CVE-2019-13657]medium🔒---
143856HiNet GPON Service Port 3097 information disclosure [CVE-2019-13412]medium🔒---
143855HiNet GPON Service Port 3097 input validation [CVE-2019-13411]high🔒---
143854TOPMeeting Front End Page information disclosure [CVE-2019-13410]low🔒---
143853TOPMeeting Union sql injection [CVE-2019-13409]medium🔒---
143852BitDefender BOX miniupnpd allocation of resources [CVE-2019-12611]low🔒---
143851Pivotal Reactor Netty Header Credentials insufficiently protected credentialslow🔒---
143850Kubernetes API Server input validation [CVE-2019-11253]low🔒---
143849Sequelize JSON Query sequelize.json sql injectionmedium🔒---
143848Kea DHCP input validation [CVE-2019-6474]low🔒---
143847Kea DHCPv4 assertion [CVE-2019-6473]low🔒---
143846Kea DHCPv6 DUID assertion [CVE-2019-6472]low🔒---
143845MetInfo index.class.php doSaveSetup cross-site request forgerylow🔒---
143844WordPress Admin Pages type confusion [CVE-2019-17675]low🔒---
143843WordPress Customizer Stored cross site scriptinglow🔒---
143842WordPress Cache input validation [CVE-2019-17673]medium🔒---
143841WordPress Style Element Stored cross site scriptinglow🔒---
143840WordPress Static Query information disclosure [CVE-2019-17671]low🔒---
143839WordPress URL server-side request forgery [CVE-2019-17670]medium🔒---
143838WordPress URL server-side request forgery [CVE-2019-17669]medium🔒---
143837Samsung Galaxy S10/Note 10 Fingerprint input validation [CVE-2019-17668]medium🔒---
143836Comtech H8 Heights Remote Gateway cross site scripting [CVE-2019-17667]low🔒---
143835Linux Kernel ps.c rtl_p2p_noa_ie buffer overflowmedium🔒---
143834NSA Ghidra jansi.dll untrusted search path [CVE-2019-17665]medium🔒---
143833NSA Ghidra Python Interpreter untrusted search path [CVE-2019-17664]medium🔒---
143832D-Link DIR-866L Common Gateway Interface HtmlResponseMessage cross site scriptinglow🔒---
143831ThinVNC path traversal [CVE-2019-17662]medium🔒---
143830LimeSurvey translateheader_view.php cross site scriptinglow🔒---
143829HongCMS index.php cross site scriptinglow🔒---
143828HongCMS index.php cross site scriptinglow🔒---
143827HongCMS index.php cross site scriptinglow🔒---
143826HongCMS index.php cross site scriptinglow🔒---
143825HongCMS index.php cross site scriptinglow🔒---
143824Dolibarr Outgoing Email Setup cross site scripting [CVE-2019-17578]low🔒---
143823Dolibarr Outgoing Email Setup cross site scripting [CVE-2019-17577]low🔒---
143822Dolibarr Outgoing Email Setup cross site scripting [CVE-2019-17576]low🔒---
143821D-Link DIR-412 log_clear.php improper authenticationmedium🔒---
143820Palo Alto GlobalProtect Agent privileges management [CVE-2019-17436]medium🔒---
143819Palo Alto GlobalProtect Agent MSI Installer privileges managementmedium🔒---
143818slub_events Extension Event Registration unrestricted uploadmedium🔒---
143817sr_freecap Extension input validation [CVE-2019-16699]medium🔒---
143816direct_mail Extension Access Check information disclosure [CVE-2019-16698]medium🔒---
143815url_redirect Extension sql injection [CVE-2019-16682]medium🔒---
143814Cisco TelePresence Collaboration Endpoint CLI root default permissionmedium🔒---
143813Cisco Identity Services Engine Web-based Management Interface missing authenticationlow🔒---
143812Cisco Identity Services Engine Web-based Management Interface Stored cross site scriptinglow🔒---
143811Cisco FirePOWER Management Center Web-based Management Interface Stored cross site scriptinglow🔒---
143810Cisco TelePresence Collaboration Endpoint Privileges privileges managementmedium🔒---
143809Cisco TelePresence Collaboration Endpoint CLI privileges managementlow🔒---
143808Cisco TelePresence Collaboration Endpoint CLI os command injectionmedium🔒---
143807Cisco TelePresence Collaboration Endpoint CLI privileges managementmedium🔒---
143806Cisco FirePOWER Management Center Web-based Management Interface cross site scriptinglow🔒---
143805Cisco FirePOWER Management Center Web-based Management Interface cross site scriptinglow🔒---
143804Cisco FirePOWER Management Center Web-based Management Interface cross site scriptinglow🔒---
143803Cisco Wireless LAN Controller CLI path traversal [CVE-2019-15266]low🔒---
143802Cisco Aironet Access Point BPDU Forwarding handler input validationlow🔒---
143801Cisco Aironet Access Point/Catalyst 9100 Access Point Control/Provisioning resource consumptionlow🔒---
143800Cisco Wireless LAN Controller SSH Session Management input validationlow🔒---
143799Cisco Aironet Access Point PPTP VPN input validation [CVE-2019-15261]low🔒---
143798Cisco Aironet Access Point URL privileges management [CVE-2019-15260]medium🔒---
143797Cisco SPA100 ATA Web-based Management Interface input validationlow🔒---
143796Cisco SPA100 ATA Web-based Management Interface information disclosurelow🔒---
143795Cisco SPA100 ATA Web-based Management Interface memory corruptionmedium🔒---
143794Cisco SPA100 ATA Web-based Management Interface memory corruptionmedium🔒---
143793Cisco SPA100 ATA Web-based Management Interface memory corruptionmedium🔒---
143792Cisco SPA100 ATA Web-based Management Interface memory corruptionmedium🔒---
143791Cisco SPA100 ATA Web-based Management Interface memory corruptionmedium🔒---
143790Cisco SPA100 ATA Web-based Management Interface memory corruptionmedium🔒---
143789Cisco SPA100 ATA Web-based Management Interface memory corruptionmedium🔒---
143788Cisco SPA100 ATA Web-based Management Interface memory corruptionmedium🔒---
143787Cisco SPA100 ATA Web-based Management Interface memory corruptionmedium🔒---
143786Cisco SPA100 ATA Web-based Management Interface memory corruptionmedium🔒---
143785Cisco SPA100 ATA Web-based Management Interface memory corruptionmedium🔒---
143784Cisco SPA100 ATA Web-based Management Interface memory corruptionmedium🔒---
143783Cisco SPA100 ATA Web-based Management Interface memory corruptionmedium🔒---
143782MuleSoft Mule Runtime Engine Apache Commons Collections deserializationmedium🔒---
143781Cisco Small Business Switch/Managed Switch Web-based Interface cross site scriptinglow🔒---
143780Cisco SPA100 ATA Web-based Management Interface information disclosurelow🔒---
143779Cisco TelePresence Video Communication Server Web-based Management Interface cross site scriptinglow🔒---
143778Cisco SPA100 ATA Web-based Management Interface information disclosurelow🔒---
143777Cisco SPA122 ATA Web-based Management Interface cross site scriptinglow🔒---
143776Cisco SPA100 ATA Web-based Management Interface cross site scriptinglow🔒---
143775Cisco Identity Services Engine Web-based Management Interface cross site scriptinglow🔒---
143774Cisco Identity Services Engine Web-based Management Interface Stored cross site scriptinglow🔒---
143773Cisco Small Business Smart Switch/Managed Switch Web-based Management Interface cross-site request forgerylow🔒---
143772Pivotal RabbitMQ Host Limits Page/Federation Management UI cross site scriptinglow🔒---
143771Oracle VM VirtualBox denial of service [CVE-2019-2926]low🔒---
143770Oracle VM VirtualBox missing encryption [CVE-2019-1547]medium🔒---
143769Oracle VM VirtualBox information disclosure [CVE-2019-3031]medium🔒---
143768Oracle VM VirtualBox denial of service [CVE-2019-3005]medium🔒---
143767Oracle VM VirtualBox denial of service [CVE-2019-3002]medium🔒---
143766Oracle VM VirtualBox denial of service [CVE-2019-2984]medium🔒---
143765Oracle VM VirtualBox denial of service [CVE-2019-3021]medium🔒---
143764Oracle VM VirtualBox information disclosure [CVE-2019-3026]medium🔒---
143763Oracle VM VirtualBox denial of service [CVE-2019-2944]medium🔒---
143762Oracle VM VirtualBox Local Privilege Escalation [CVE-2019-3017]medium🔒---
143761Oracle VM VirtualBox Local Privilege Escalation [CVE-2019-3028]medium🔒---
143760Oracle Clusterware TFA Collectorjackson-databind information disclosuremedium🔒---
143759Oracle Diagnostic Assistant jQuery cross site scripting [CVE-2019-11358]medium🔒---
143758Oracle Agile Product Lifecycle Management for Process jQuery cross site scriptingmedium🔒---
143757Oracle Agile PLM Apache Tomcat input validation [CVE-2019-0232]medium🔒---
143756Oracle Agile Recipe Management for Pharmaceuticals Apache Groovy deserializationhigh🔒---
143755Oracle Solaris LDAP Library denial of service [CVE-2019-3008]low🔒---
143754Oracle Solaris SMF services / legacy daemons denial of servicelow🔒---
143753Oracle Solaris Filesystem denial of service [CVE-2019-2765]medium🔒---
143752Oracle Fujitsu M10-1 NSS cryptographic issues [CVE-2018-12404]medium🔒---
143751Oracle Fujitsu M10-1 USB Driver out-of-bounds write [CVE-2017-17558]medium🔒---
143750Oracle Fujitsu M10-1 OpenSSH access control [CVE-2019-6109]medium🔒---
143749Oracle Fujitsu M10-1 OpenSSL key management [CVE-2018-0732]medium🔒---
143748Oracle Fujitsu M10-1 Net SNMP null pointer dereference [CVE-2018-18066]medium🔒---
143747Oracle Fujitsu M10-1 NTP input validation [CVE-2018-7185]medium🔒---
143746Oracle Fujitsu M10-1 glibc null pointer dereference [CVE-2015-5180]medium🔒---
143745Oracle Solaris XScreenSaver Local Privilege Escalation [CVE-2019-3010]medium🔒---
143744Oracle Fujitsu M10-1 cURL information disclosure [CVE-2018-1000007]high🔒---
143743Oracle Siebel UI Framework EAI information disclosure [CVE-2019-2935]medium🔒---
143742Oracle Siebel UI Framework Apache Tomcat race condition [CVE-2018-8037]medium🔒---
143741Oracle Siebel Mobile Applications jQuery cross site scriptingmedium🔒---
143740Oracle Siebel Core - DB Deployment/Configuration Install Configuration information disclosuremedium🔒---
143739Oracle Retail Xstore Point of Service Point of Sale information disclosurelow🔒---
143738Oracle Retail Customer Management/Segmentation Foundation Segment authorizationmedium🔒---
143737Oracle Retail Xstore Point of Service jackson-databind information disclosuremedium🔒---
143736Oracle Retail Xstore Office Internal Operations information disclosuremedium🔒---
143735Oracle Retail Customer Management/Segmentation Foundation Segment information disclosuremedium🔒---
143734Oracle MICROS Relate CRM Software Internal Operations information disclosuremedium🔒---
143733Oracle Retail Customer Insights jQuery cross site scripting [CVE-2019-11358]medium🔒---
143732Oracle Retail Xstore Point of Service jackson-databind information disclosuremedium🔒---
143731Oracle Retail Integration Bus Spring Framework denial of servicemedium🔒---
143730Oracle MICROS Relate CRM Software Apache Tomcat input validationmedium🔒---
143729Oracle Retail Xstore Point of Service jackson-databind input validationhigh🔒---
143728Oracle MICROS Retail XBRi Loss Prevention jackson-databind deserializationhigh🔒---
143727Oracle Policy Automation for Mobile Devices jQuery cross site scriptingmedium🔒---
143726Oracle Policy Automation Connector for Siebel jQuery cross site scriptingmedium🔒---
143725Oracle Policy Automation jQuery cross site scripting [CVE-2019-11358]medium🔒---
143724Oracle Policy Automation Connector for Siebel Apache Axis server-side request forgerymedium🔒---
143723Oracle PeopleSoft Enterprise PeopleTools Integration Broker information disclosuremedium🔒---
143722Oracle PeopleSoft Enterprise HCM Human Resources US Federal Specific information disclosuremedium🔒---
143721Oracle PeopleSoft Enterprise PeopleTools Stylesheet unknown vulnerabilitymedium🔒---
143720Oracle PeopleSoft Enterprise SCM eProcurement information disclosuremedium🔒---
143719Oracle PeopleSoft Enterprise PeopleTools jQuery cross site scriptingmedium🔒---
143718Oracle PeopleSoft Enterprise PeopleTools Portal information disclosuremedium🔒---
143717Oracle PeopleSoft Enterprise PeopleTools Portal information disclosuremedium🔒---
143716Oracle PeopleSoft Enterprise PeopleTools Performance Monitor information disclosuremedium🔒---
143715Oracle PeopleSoft Enterprise PeopleTools Fluid Core information disclosuremedium🔒---
143714Oracle PeopleSoft Enterprise PeopleTools Fluid Core information disclosuremedium🔒---
143713Oracle PeopleSoft Enterprise PeopleTools Tree Manager information disclosuremedium🔒---
143712Oracle PeopleSoft Enterprise PeopleTools libssh2 out-of-bounds readhigh🔒---
143711Oracle PeopleSoft Enterprise PeopleTools Apache Xerces memory corruptionhigh🔒---
143710Oracle MySQL Server Information Schema information disclosurelow🔒---
143709Oracle MySQL Server Encryption information disclosure [CVE-2019-2910]low🔒---
143708Oracle MySQL Server Connection denial of service [CVE-2019-3009]medium🔒---
143707Oracle MySQL Server InnoDB input validation [CVE-2019-3018]medium🔒---
143706Oracle MySQL Server InnoDB input validation [CVE-2019-2938]medium🔒---
143705Oracle MySQL Server Encryption denial of service [CVE-2019-2957]medium🔒---
143704Oracle MySQL Server Replication denial of service [CVE-2019-2960]medium🔒---
143703Oracle MySQL Server Optimizer denial of service [CVE-2019-2998]medium🔒---
143702Oracle MySQL Server Optimizer denial of service [CVE-2019-2982]medium🔒---
143701Oracle MySQL Server Optimizer denial of service [CVE-2019-2950]medium🔒---
IDTitleVulDBCVSSSecuniaXForceNessus
143700Oracle MySQL Server Optimizer denial of service [CVE-2019-2948]medium🔒---
143699Oracle MySQL Server DDL denial of service [CVE-2019-2997]medium🔒---
143698Oracle MySQL Server InnoDB denial of service [CVE-2019-3003]medium🔒---
143697Oracle MySQL Server InnoDB denial of service [CVE-2019-2968]medium🔒---
143696Oracle MySQL Server InnoDB denial of service [CVE-2019-2963]medium🔒---
143695Oracle MySQL Workbench OpenSSL random values [CVE-2019-1549]medium🔒---
143694Oracle MySQL Server Encryption information disclosure [CVE-2019-2924]medium🔒---
143693Oracle MySQL Server Encryption information disclosure [CVE-2019-2923]medium🔒---
143692Oracle MySQL Server Encryption information disclosure [CVE-2019-2922]medium🔒---
143691Oracle MySQL Server C API denial of service [CVE-2019-2993]medium🔒---
143690Oracle MySQL Connectors Connector/ODBC authorization [CVE-2019-2920]medium🔒---
143689Oracle MySQL Server Optimizer denial of service [CVE-2019-2991]medium🔒---
143688Oracle MySQL Server Client programs information disclosure [CVE-2019-2969]medium🔒---
143687Oracle MySQL Server Encryption denial of service [CVE-2019-2914]medium🔒---
143686Oracle MySQL Server Parser denial of service [CVE-2019-3004]medium🔒---
143685Oracle MySQL Server PS denial of service [CVE-2019-2946]medium🔒---
143684Oracle MySQL Server Optimizer denial of service [CVE-2019-2974]medium🔒---
143683Oracle MySQL Server Optimizer denial of service [CVE-2019-2967]medium🔒---
143682Oracle MySQL Server Optimizer denial of service [CVE-2019-2966]medium🔒---
143681Oracle MySQL Server C API denial of service [CVE-2019-3011]medium🔒---
143680Oracle MySQL Connectors OpenSSL cryptographic issues [CVE-2019-1543]medium🔒---
143679Oracle MySQL Enterprise Monitor Apache Tomcat resource consumptionmedium🔒---
143678Oracle MySQL Server cURL code injection [CVE-2019-5443]medium🔒---
143677Oracle MySQL Workbench SQLite out-of-bounds read [CVE-2019-8457]high🔒---
143676Oracle JD Edwards EnterpriseOne Tools Log4j deserialization [CVE-2017-5645]high🔒---
143675Oracle Java SE Networking denial of service [CVE-2019-2945]low🔒---
143674Oracle Java SE Libraries information disclosure [CVE-2019-2933]low🔒---
143673Oracle Java SE Serialization denial of service [CVE-2019-2983]low🔒---
143672Oracle Java SE Security information disclosure [CVE-2019-2894]low🔒---
143671Oracle Java SE Networking denial of service [CVE-2019-2978]low🔒---
143670Oracle Java SE JAXP denial of service [CVE-2019-2981]low🔒---
143669Oracle Java SE JAXP denial of service [CVE-2019-2973]low🔒---
143668Oracle Java SE Concurrency denial of service [CVE-2019-2964]low🔒---
143667Oracle Java SE 2D denial of service [CVE-2019-2992]low🔒---
143666Oracle Java SE Apache Xerces denial of service [CVE-2019-2988]low🔒---
143665Oracle Java SE OpenSSL denial of service [CVE-2019-2962]low🔒---
143664Oracle Java SE OpenSSL denial of service [CVE-2019-2987]low🔒---
143663Oracle Java SE Apache Tomcat information disclosure [CVE-2019-2996]medium🔒---
143662Oracle Java SE Javadoc information disclosure [CVE-2019-2999]medium🔒---
143661Oracle Java SE SQLite denial of service [CVE-2019-2975]medium🔒---
143660Oracle Java SE Log4j denial of service [CVE-2019-2977]medium🔒---
143659Oracle Java SE libxslt access control [CVE-2019-11068]medium🔒---
143658Oracle Java SE Apache Xerces unknown vulnerability [CVE-2019-2958]medium🔒---
143657Oracle Java SE OpenSSL unknown vulnerability [CVE-2019-2989]medium🔒---
143656Oracle Java SE Kerberos information disclosure [CVE-2019-2949]medium🔒---
143655Oracle Hyperion Enterprise Performance Management Architect Apache Tomcat information disclosurelow🔒---
143654Oracle Hyperion Financial Reporting cURL unknown vulnerabilitymedium🔒---
143653Oracle Hyperion Data Relationship Management SQLite Remote Privilege Escalationmedium🔒---
143652Oracle Hospitality Guest Access Eclipse Jetty information disclosuremedium🔒---
143651Oracle Hospitality Cruise Dining Room Management libxslt information disclosuremedium🔒---
143650Oracle Hospitality Guest Access Apache Axis server-side request forgerymedium🔒---
143649Oracle Healthcare Translational Research jQuery cross site scriptingmedium🔒---
143648Oracle Healthcare Foundation jQuery cross site scripting [CVE-2019-11358]medium🔒---
143647Oracle GraalVM Enterprise Edition jQuery unknown vulnerabilitymedium🔒---
143646Oracle GraalVM Enterprise Edition Node.js resource consumptionmedium🔒---
143645Oracle GraalVM Enterprise Edition LLVM Interpreter denial of servicemedium🔒---
143644Oracle JDeveloper/ADF OAM information disclosure [CVE-2019-2899]low🔒---
143643Oracle WebLogic Server Web Services information disclosure [CVE-2019-2887]medium🔒---
143642Oracle BI Publisher BI Publisher Security information disclosuremedium🔒---
143641Oracle WebLogic Server TFA Collectorjackson-databind information disclosuremedium🔒---
143640Oracle Business Intelligence Enterprise Edition jQuery information disclosuremedium🔒---
143639Oracle Business Intelligence Enterprise Edition OpenSSL information disclosuremedium🔒---
143638Oracle API Gateway OpenSSL information disclosure [CVE-2019-1559]medium🔒---
143637Oracle WebLogic Server jQuery cross site scripting [CVE-2015-9251]medium🔒---
143636Oracle WebLogic Server JavaServer Faces cross site scriptingmedium🔒---
143635Oracle WebLogic Server jQuery cross site scripting [CVE-2019-11358]medium🔒---
143634Oracle WebLogic Server OpenSSH information disclosure [CVE-2019-2889]medium🔒---
143633Oracle WebLogic Server jQuery cross site scripting [CVE-2019-11358]medium🔒---
143632Oracle Service Bus jQuery cross site scripting [CVE-2019-11358]medium🔒---
143631Oracle JDeveloper/ADF jQuery cross site scripting [CVE-2019-11358]medium🔒---
143630Oracle Forms glibc information disclosure [CVE-2019-2886]medium🔒---
143629Oracle Business Intelligence Enterprise Edition JQuery cross site scriptingmedium🔒---
143628Oracle Business Intelligence Enterprise Edition Apache Tomcat information disclosuremedium🔒---
143627Oracle Data Integrator jQuery information disclosure [CVE-2019-2943]medium🔒---
143626Oracle WebLogic Server jackson-databind Remote Privilege Escalationmedium🔒---
143625Oracle Web Services jQuery information disclosure [CVE-2019-2907]medium🔒---
143624Oracle SOA Suite Apache Commons FileUpload access control [CVE-2016-1000031]medium🔒---
143623Oracle Outside In Technology Spring Framework denial of servicemedium🔒---
143622Oracle Outside In Technology Apache Tomcat denial of servicemedium🔒---
143621Oracle Outside In Technology jackson-databind denial of servicemedium🔒---
143620Oracle Outside In Technology jackson-databind denial of servicemedium🔒---
143619Oracle Outside In Technology jQuery denial of service [CVE-2019-2901]medium🔒---
143618Oracle Outside In Technology jQuery denial of service [CVE-2019-2970]medium🔒---
143617Oracle WebCenter Portal jackson-databind information disclosuremedium🔒---
143616Oracle GoldenGate Application Adapters Spring Framework denial of servicemedium🔒---
143615Oracle Enterprise Repository Apache POI infinite loop [CVE-2017-12626]medium🔒---
143614Oracle Enterprise Repository Apache Camel xml external entity referencemedium🔒---
143613Oracle Business Intelligence Enterprise Edition Apache Xerces information disclosuremedium🔒---
143612Oracle WebLogic Server OpenSSL Remote Code Execution [CVE-2019-2891]medium🔒---
143611Oracle BI Publisher OpenSSL information disclosure [CVE-2019-2906]medium🔒---
143610Oracle Business Intelligence Enterprise Edition Apache Tomcat information disclosuremedium🔒---
143609Oracle Virtual Directory Apache Commons FileUpload access controlhigh🔒---
143608Oracle JDeveloper/ADF SQLite Remote Code Execution [CVE-2019-2904]high🔒---
143607Oracle Hospitality Reporting/Analytics Log4j authorization [CVE-2019-2952]medium🔒---
143606Oracle Hospitality Materials Control jQuery cross site scriptingmedium🔒---
143605Oracle Hospitality Reporting/Analytics Eclipse Jetty information disclosuremedium🔒---
143604Oracle Hospitality Reporting/Analytics Apache Axis information disclosuremedium🔒---
143603Oracle Hospitality Reporting/Analytics jQuery information disclosuremedium🔒---
143602Oracle Hospitality Reporting/Analytics jQuery information disclosuremedium🔒---
143601Oracle Hospitality RES 3700 Interface Remote Code Execution [CVE-2019-3025]high🔒---
143600Oracle Banking Digital Experience OpenSSL authorization [CVE-2019-3019]medium🔒---
143599Oracle FLEXCUBE Direct Banking OpenSSL unknown vulnerabilitymedium🔒---
143598Oracle Financial Services Retail Performance Analytics jQuery cross site scriptingmedium🔒---
143597Oracle Financial Services Enterprise Financial Performance Analytics jQuery information disclosuremedium🔒---
143596Oracle FLEXCUBE Direct Banking jQuery information disclosuremedium🔒---
143595Oracle Financial Services Analytical Applications Infrastructure jackson-databind input validationhigh🔒---
143594Oracle Banking Platform jackson-databind input validation [CVE-2019-14379]high🔒---
143593Oracle Enterprise Manager Base Platform Eclipse Jetty information disclosuremedium🔒---
143592Oracle Application Testing Suite jQuery cross site scriptingmedium🔒---
143591Oracle Enterprise Manager Ops Center jQuery cross site scriptingmedium🔒---
143590Oracle Enterprise Manager Ops Center Apache HTTP Server resource consumptionmedium🔒---
143589Oracle Enterprise Manager for Exadata Spring Framework Remote Privilege Escalationmedium🔒---
143588Oracle Enterprise Manager Ops Center cURL code injection [CVE-2019-5443]medium🔒---
143587Oracle Enterprise Manager Base Platform Jython Remote Code Executionhigh🔒---
143586Oracle Workflow Apache Commons FileUpload unknown vulnerabilitymedium🔒---
143585Oracle Installed Base jQuery unknown vulnerability [CVE-2019-3024]medium🔒---
143584Oracle Field Service jQuery improper authentication [CVE-2019-2930]medium🔒---
143583Oracle Application Object Library jQuery denial of service [CVE-2019-3027]medium🔒---
143582Oracle Content Manager jackson-databind unknown vulnerabilitymedium🔒---
143581Oracle Marketing jackson-databind information disclosure [CVE-2019-3000]medium🔒---
143580Oracle Marketing Eclipse Jetty information disclosure [CVE-2019-2995]medium🔒---
143579Oracle Marketing jQuery information disclosure [CVE-2019-2994]medium🔒---
143578Oracle iStore Order Tracker information disclosure [CVE-2019-2990]medium🔒---
143577Oracle Advanced Outbound Telephony User Interface information disclosuremedium🔒---
143576Oracle Primavera Unifier jQuery cross site scripting [CVE-2019-11358]medium🔒---
143575Oracle Primavera P6 Enterprise Project Portfolio Management Apache POI information disclosuremedium🔒---
143574Oracle Primavera Unifier Apache POI infinite loop [CVE-2017-12626]medium🔒---
143573Oracle Primavera P6 Enterprise Project Portfolio Management Apache POI infinite loopmedium🔒---
143572Oracle Primavera Gateway Apache POI infinite loop [CVE-2017-12626]medium🔒---
143571Oracle Instantis EnterpriseTrack Apache POI infinite loop [CVE-2017-12626]medium🔒---
143570Oracle Instantis EnterpriseTrack Apache Axis server-side request forgerymedium🔒---
143569Oracle Instantis EnterpriseTrack Apache HTTP Server access controlmedium🔒---
143568Oracle Instantis EnterpriseTrack Apache Tomcat input validationmedium🔒---
143567Oracle Primavera P6 Enterprise Project Portfolio Management Web Access information disclosurehigh🔒---
143566Oracle Primavera Unifier jackson-databind input validation [CVE-2019-14379]high🔒---
143565Oracle Primavera Gateway jackson-databind input validation [CVE-2019-14379]high🔒---
143564Oracle Instantis EnterpriseTrack Apache Tomcat infinite loophigh🔒---
143563Oracle NoSQL Database server-side request forgery [CVE-2018-14721]high🔒---
143562Oracle Database Server Core RDBMS input validation [CVE-2019-2940]low🔒---
143561Oracle Database Server Core RDBMS unknown vulnerability [CVE-2019-2955]low🔒---
143560Oracle Database Server Core RDBMS denial of service [CVE-2019-2954]low🔒---
143559Oracle Database Server Apache Tomcat redirect [CVE-2018-11784]medium🔒---
143558Oracle Database Server Core RDBMS unknown vulnerability [CVE-2019-2734]medium🔒---
143557Oracle Database Server Core RDBMS information disclosure [CVE-2018-2875]medium🔒---
143556Oracle Database Server Core RDBMS information disclosure [CVE-2019-2939]medium🔒---
143555Oracle Database Server Core RDBMS information disclosure [CVE-2019-2913]medium🔒---
143554Oracle Database Server jackson-databind denial of service [CVE-2019-2956]medium🔒---
143553Oracle Database Server Java VM input validation [CVE-2019-2909]medium🔒---
143552HP LaserJet Application Signature input validation [CVE-2019-6334]medium🔒---
143551CMS Made Simple News Screen Stored cross site scriptinglow🔒---
143550CMS Made Simple File Manager Stored cross site scriptinglow🔒---
143549events-manager Plugin Stored cross site scripting [CVE-2019-16523]low🔒---
143548eu-cookie-law Plugin Stored cross site scripting [CVE-2019-16522]low🔒---
143547broken-link-checker Plugin Reflected cross site scripting [CVE-2019-16521]low🔒---
143546all-in-one-seo-pack Plugin Stored cross site scripting [CVE-2019-16520]low🔒---
143545Sonatype Nexus Repository Manager privileges management [CVE-2019-15893]medium🔒---
143544Puppet Enterprise Pipeline Custom Script Security Whitelist input validationmedium🔒---
143543Oracle Cloud Infrastructure Compute Classic Plugin permission assignmentmedium🔒---
143542Oracle Cloud Infrastructure Compute Classic Plugin cross-site request forgerylow🔒---
143541Rundeck Plugin Permission Check permission assignment [CVE-2019-10455]medium🔒---
143540Rundeck Plugin cross-site request forgery [CVE-2019-10454]low🔒---
143539Delphix Plugin Global Configuration Credentials cleartext storagelow🔒---
143538View26 Test-Reporting Plugin config.xml Credentials cleartext storagelow🔒---
143537SOASTA CloudTest Plugin Global Configuration Credentials cleartext storagelow🔒---
143536ElasticBox CI Plugin Configuration File config.xml Credentials cleartext storagelow🔒---
143535Fortify on Demand Plugin config.xml Credentials cleartext storagelow🔒---
143534Extensive Testing Plugin config.xml Credentials insufficiently protected credentialslow🔒---
143533Sofy.AI Plugin config.xml cleartext storagelow🔒---
143532Cadence vManager Plugin Hostname Verification certificate validationmedium🔒---
143531Google Kubernetes Engine Plugin Permission Check permission assignmentlow🔒---
143530Bumblebee HP ALM Plugin Hostname Verification certificate validationmedium🔒---
143529iceScrum Plugin config.xml Credentials cleartext storagelow🔒---
143528iceScrum Plugin Permission Check permission assignment [CVE-2019-10442]medium🔒---
143527iceScrum Plugin cross-site request forgery [CVE-2019-10441]low🔒---
143526NeoLoad Plugin Global Configuration config.xml Credentials cleartext storagemedium🔒---
143525CRX Content Package Deployer Plugin Permission Check doFillCredentialsIdItems Credentials insufficiently protected credentialslow🔒---
143524CRX Content Package Deployer Plugin Permission Check permission assignmentmedium🔒---
143523CRX Content Package Deployer Plugin cross-site request forgerylow🔒---
143522Google OAuth Credentials Plugin information disclosure [CVE-2019-10436]medium🔒---
143521IBM Workload Scheduler Distributed privileges management [CVE-2019-4031]medium🔒---
143520Yale Bluetooth Key App Bluetooth Low Energy improper authenticationmedium🔒---
143519ReportLab colors.py toColor xml injectionmedium🔒---
143518Rambox Service Stored cross site scriptinglow🔒---
143517X.org X Server ct.c_char XQueryKeymap out-of-bounds writemedium🔒---
143516MindPalette NateMail Reflected cross site scripting [CVE-2019-13392]low🔒---
143515Netgear JNR1010 webproc cross site scriptinglow🔒---
143514Netgear JNR1010 webproc cross-site request forgerylow🔒---
143513Netgear JNR1010 Access Control session expiration [CVE-2016-11014]medium🔒---
143512Google Android Qualcomm Component null pointer dereference [CVE-2019-10513]low🔒---
143511Google Android Qualcomm Component memory corruption [CVE-2019-2295]low🔒---
143510Google Android Qualcomm Component use after free [CVE-2019-10490]medium🔒---
143509Google Android Qualcomm Component infinite loop [CVE-2019-2335]medium🔒---
143508Google Android Qualcomm Component out-of-bounds read [CVE-2019-2318]low🔒---
143507Google Android Qualcomm Component out-of-bounds read [CVE-2019-2303]medium🔒---
143506Google Android Qualcomm Component memory corruption [CVE-2019-2339]medium🔒---
143505Google Android Qualcomm Component use after free [CVE-2019-2336]medium🔒---
143504Google Android Qualcomm Component use after free [CVE-2019-2329]medium🔒---
143503Google Android Qualcomm Component Local Privilege Escalationmedium🔒---
143502Google Android Qualcomm Component improper authentication [CVE-2019-2289]medium🔒---
143501Google Android Qualcomm Component out-of-bounds read [CVE-2019-2271]medium🔒---
143500Google Android Qualcomm Component buffer overflow [CVE-2019-2251]medium🔒---
143499Google Android Qualcomm Component buffer overflow [CVE-2018-13916]medium🔒---
143498qibosoft jf.php eval code injectionlow🔒---
14349774cms BackendController.class.php _list sql injectionmedium🔒---
143496Zoho ManageEngine OpManager OPMDeviceDetailsServlet Servlet sql injectionmedium🔒---
143495MiniShare HTTP CONNECT Request memory corruption [CVE-2019-17601]medium🔒---
143494Intelbras IWR 1000N user Credentials cross-site request forgerylow🔒---
143493Dark Horse Comics App Log log file [CVE-2019-17398]low🔒---
143492DoorDash App Log Credentials log filelow🔒---
143491PowerSchool Mobile App Log Credentials log filelow🔒---
143490Rapid Gator App Log Credentials log filelow🔒---
143489Seesaw Parent/Family App Log Credentials log filelow🔒---
143488Infinite Design App Authentication inadequate encryption [CVE-2019-17356]low🔒---
143487Orbitz App Log Credentials log filelow🔒---
143486Dolibarr ERP/CRM note.php injectionlow🔒---
143485Connect2id Nimbus JOSE+JWT JWT Parser unusual condition [CVE-2019-17195]medium🔒---
143484KeyCloak REST API authorization [CVE-2019-14832]medium🔒---
143483Glue Smart Lock Guest Access privileges management [CVE-2019-12944]medium🔒---
143482safer-eval Sandbox code injection [CVE-2019-10760]medium🔒---
143481safer-eval Sandbox code injection [CVE-2019-10759]medium🔒---
143479haml cross site scripting [CVE-2017-1002201]medium🔒---
143478Dell ImageAssist Image information disclosure [CVE-2019-3767]low🔒---
143477ncurses terminfo Library comp_hash.c fmt_entry out-of-bounds readmedium🔒---
143476ncurses terminfo Library comp_hash.c _nc_find_entry out-of-bounds readmedium🔒---
143475JIZHICMS adminadd.html cross-site request forgerylow🔒---
143474csv-parse Module Regular Expression __isInt input validationlow🔒---
143473NCH Express Invoice Quotes Persistent cross site scriptinglow🔒---
143472JSS CryptoManager OCSP Policy certificate validation [CVE-2019-14823]medium🔒---
143471Ubisoft Uplay Permission permission assignment [CVE-2019-14737]medium🔒---
143470AutoPi Device insufficiently protected credentials [CVE-2019-12941]medium🔒---
143469D-Link DIR-880L/DIR-895 fileaccess.cgi buffer overflowmedium🔒---
143468sudo Runas Restriction input validation [CVE-2019-14287]medium🔒---
143467CloudCTI HIP Integrator Recognition Configuration Tool EXQUISE privileges managementmedium🔒---
143466IBM FileNet Content Manager Log File Credentials log filelow🔒---
143465idreamsoft iCMS Comment resource consumption [CVE-2019-17583]low🔒---
143464tonyy dormsystem admin.php sql injectionmedium🔒---
143463Sonarsource SonarQube Project Link cross site scripting [CVE-2019-17579]low🔒---
143462WBCE CMS File Renaming Filter rename.php code injectionmedium🔒---
143461Popup Maker Plugin do_action authorizationmedium🔒---
143460MetInfo sql injection [CVE-2019-17553]medium🔒---
143459idreamsoft iCMS spider_project.admincp.php sql injectionmedium🔒---
143458D-Link DIR-412 Web Interface log_get.php improper authenticationlow🔒---
143457ZZZCMS zzzphp zzz_template.php parserIfLabel input validationmedium🔒---
143456BMC Patrol Agent default permission [CVE-2019-17044]medium🔒---
143455BMC Patrol Agent best1collect.exe default permissionmedium🔒---
143454ESET Cyber Security Scheduled Task input validation [CVE-2019-16519]medium🔒---
143453ScadaBR Login Form login.htm cross site scriptinglow🔒---
143452Nostromo nhttpd SSL_accept path traversallow🔒---
143451Nostromo nhttpd http_verify path traversalmedium🔒---
143450Ansible Engine/Tower log file [CVE-2019-14858]low🔒---
143449wildfly-core improper authentication [CVE-2019-14838]medium🔒---
143448OX App Suite cross site scripting [CVE-2019-14227]low🔒---
143447OX App Suite Permission permissions [CVE-2019-14226]medium🔒---
143446OX App Suite server-side request forgery [CVE-2019-14225]medium🔒---
143445ImageMagick draw.c TraceBezier use after freemedium🔒---
143444LibTIFF RGBA Image tif_getimage.c integer overflowmedium🔒---
143443GDAL ogr_expat.cpp OGRExpatRealloc double freemedium🔒---
143442GNU Aspell getdata.cpp unescape out-of-bounds readmedium🔒---
143441LZ4 LZ4_write32 buffer overflowmedium🔒---
143440FFmpeg vqavideo.c vqa_decode_init array indexmedium🔒---
143439ImageMagick string.c DestroyStringInfo use after freemedium🔒---
143438ImageMagick ps.c ReadPSInfo buffer overflowmedium🔒---
143437FFmpeg utils.c avcodec_open2 null pointer dereferencelow🔒---
143436Centreon os command injection [CVE-2019-17501]medium🔒---
143435Jiangnan Online Judge path traversal [CVE-2019-17538]medium🔒---
143434Jiangnan Online Judge path traversal [CVE-2019-17537]medium🔒---
143433Gila CMS File Upload fm.php moveAction unrestricted uploadmedium🔒---
143432Gila CMS Blog Theme/Mag Theme blog-list.php cross site scriptinglow🔒---
143431libvips gifload.c vips_foreign_load_gif_scan_image use after freemedium🔒---
143430matio mat4.c Mat_VarReadNextInfo4 out-of-bounds readmedium🔒---
143429Belkin Wemo Switch 28B Rule Processing rules1 input validationlow🔒---
143428FasterXML jackson-databind JSON Endpoint input validation [CVE-2019-17531]medium🔒---
143427Bento4 Encryption Ap4Atom.cpp AddField out-of-bounds readmedium🔒---
143426Bento4 Encryption Ap4CommonEncryption.cpp DoInspectFields out-of-bounds readmedium🔒---
143425Bento4 Ap4TfhdAtom.h SetDefaultSampleSize memory corruptionmedium🔒---
143424Hotaru CMS Stored cross site scripting [CVE-2019-17522]low🔒---
143423Landing-CMS cross-site request forgery [CVE-2019-17521]low🔒---
143422Hydra HTTP Header read.c process_header_end null pointer dereferencelow🔒---
143421Samsung Laser Printers input validation [CVE-2019-6335]low🔒---
143420HP Touchpoint Analytics System Service input validation [CVE-2019-6333]medium🔒---
143419Google Android nfc_ncif.cc nfc_ncif_decode_rf_params out-of-bounds readlow🔒---
143418Google Android combined_decode.cpp GetMBheader out-of-bounds writemedium🔒---
143417Google Android vlc_dequant.cpp VlcDequantH263IntraBlock_SH out-of-bounds writemedium🔒---
143416Google Android dec_pred_intra_dc.cpp PV_DecodePredictedIntraDC out-of-bounds writemedium🔒---
143415Google Android Cache RegisteredServicesCache.java generateServicesMap information disclosurelow🔒---
143414Google Android Permission Check ActivityStarter.java startActivityMayWait default permissionmedium🔒---
143413Google Android NFC default permission [CVE-2019-2114]medium🔒---
143412Google Android Permission Check ScreenRotationAnimation.java ScreenRotationAnimation information disclosurelow🔒---
143411Python Documentation Sorting calculation [CVE-2019-17514]medium🔒---
143410D-Link DIR-846 SetWizardConfig.php SetWizardConfig os command injectionhigh🔒---
143409D-Link DIR-846 SetMasterWLanSettings.php SetMasterWLanSettings os command injectionhigh🔒---
143408D-Link DIR-850/DIR-859 DEVICE.TIME.php os command injectionmedium🔒---
143407D-Link DIR-816 A1 Management Page input validation [CVE-2019-17507]medium🔒---
143406D-Link DIR-868L/DIR-817LW Web Interface getcfg.php Credentials improper authenticationlow🔒---
143405D-Link DAP-1320 Web Interface improper authentication [CVE-2019-17505]medium🔒---
143404Kirona Dynamic Resource Scheduling Reflected cross site scriptinglow🔒---
143403Kirona Dynamic Resource Scheduling REGISTER.cmd information disclosurelow🔒---
143402Compal CH7465LG Common Gateway Interface setter.xml os command injectionmedium🔒---
143401Genesys PureEngage Digital HtmlChatPanel.jsp cross site scriptinglow🔒---
143400Sophos Cyberoam Firewall SSL VPN Console injection [CVE-2019-17059]medium🔒---
143399Intel NUC System Firmware memory corruption [CVE-2019-14570]medium🔒---
143398Intel NUC System Firmware Pointer memory corruptionmedium🔒---
143397Kaseya VSA RMM LAN Cache default permission [CVE-2019-14510]medium🔒---
143396Intel Smart Connect Technology for Intel NUC File Permission privileges managementmedium🔒---
143395Intel Active System Console Installer privileges management [CVE-2019-11120]medium🔒---
143394Boa free release of resourcelow🔒---
143393Boa memory corruption [CVE-2018-21027]medium🔒---
143392GREE+ cross-site request forgery [CVE-2018-20582]low🔒---
143391Graphite views.py send_email server-side request forgerymedium🔒---
143390ThemeMakers SmartIT Premium Responsive Theme wp_users.dat information disclosurelow🔒---
143389ThemeMakers Blessing Premium Responsive Theme wp_users.dat information disclosurelow🔒---
143388ThemeMakers GamesTheme Premium Theme wp_users.dat information disclosurelow🔒---
143387ThemeMakers Goodnex Premium Responsive Theme wp_users.dat information disclosurelow🔒---
143386ThemeMakers Almera Responsive Portfolio Site Template wp_users.dat information disclosurelow🔒---
143385ThemeMakers Almera Responsive Portfolio Theme wp_users.dat information disclosurelow🔒---
143384ThemeMakers Axioma Premium Responsive Theme wp_users.dat information disclosurelow🔒---
143383ThemeMakers Accio Responsive Parallax One Page Site Template wp_users.dat information disclosurelow🔒---
143382ThemeMakers Accio One Page Parallax Responsive Theme wp_users.dat information disclosurelow🔒---
143381ThemeMakers Invento Responsive Gallery wp_users.dat information disclosurelow🔒---
143380ThemeMakers Car Dealer Theme wp_users.dat information disclosurelow🔒---
143379ThemeMakers Diplomat/Political Theme wp_users.dat information disclosurelow🔒---
143373XNU IPComp memory corruption [CVE-2019-8717]medium🔒---
143372Cobham Explorer 710 Firmware unrestricted upload [CVE-2019-9534]medium🔒---
143371Cobham Explorer 710 insufficiently protected credentials [CVE-2019-9533]high🔒---
143370Cobham Explorer 710 Web Application Portal cleartext transmissionmedium🔒---
143369Cobham Explorer 710 Web Application Portal improper authenticationmedium🔒---
143368Cobham Explorer 710 Access Restriction information disclosuremedium🔒---
143367Cobham Explorer 710 Web Application Portal missing authenticationmedium🔒---
143366Tracker PDF-XChange Editor NTLM SSO Hash insufficiently protected credentialslow🔒---
143365Craft CMS Stored cross site scripting [CVE-2019-17496]low🔒---
143364Swagger UI CSS injection [CVE-2019-17495]low🔒---
143363laravel-bjyblog URL cross site scripting [CVE-2019-17494]low🔒---
143362Jiangnan Online Judge create cross site scriptinglow🔒---
143361Jiangnan Online Judge create cross site scriptinglow🔒---
143360Jiangnan Online Judge File Upload ProblemController unrestricted uploadmedium🔒---
143359Jiangnan Online Judge create cross site scriptinglow🔒---
143358b3log Symphony HTTP Header cross site scripting [CVE-2019-17488]low🔒---
143357Libntlm smbutil.c tSmbNtlmAuthResponse buffer overflowmedium🔒---
143356animate-it Plugin edsanimate.php cross-site request forgerylow🔒---
143355Softing uaGate SI/uaGate MB/uaGate 840D CGI Script privileges managementmedium🔒---
143354EOS Label Distribution Protocol race condition [CVE-2019-14810]low🔒---
143353Softing uaGate SI memory corruption [CVE-2019-11528]medium🔒---
143352Softing uaGate SI CGI Script os command injection [CVE-2019-11527]medium🔒---
143351Softing uaGate SI Maintenance Script code injection [CVE-2019-11526]medium🔒---
143350Adobe Acrobat Reader privileges management [CVE-2018-19725]medium🔒---
143349VMware Workstation/Fusion IPv6 input validation [CVE-2019-5535]low🔒---
143348VMware ESXi/Workstation/Fusion/VMRC/Horizon Client Virtual Sound Device use after freemedium🔒---
143347IBM Maximo Anywhere Root Detection insecure storage of sensitive informationlow🔒---
143346Bento4 Ap4Descriptor.h GetTag null pointer dereferencelow🔒---
143345Bento4 Ap4Descriptor.h Action null pointer dereferencelow🔒---
143344Bento4 Ap4Descriptor.h Action null pointer dereferencelow🔒---
143343GNU binutils libbfd dwarf2.c _bfd_dwarf2_find_nearest_line integer overflowmedium🔒---
143342GNU binutils libbfd dwarf2.c find_abstract_instance recursionlow🔒---
143341Avira Software Updater DLL untrusted search path [CVE-2019-17449]medium🔒---
143340LavaLite Account Name cross site scripting [CVE-2019-17434]low🔒---
143339z-song laravel-admin cross site scripting [CVE-2019-17433]low🔒---
143338FastAdmin edit cross-site request forgerylow🔒---
143337FastAdmin add cross-site request forgerylow🔒---
143336EyouCms login.php cross site scriptinglow🔒---
143335Adhouma CMS post.php sql injectionmedium🔒---
143334NetSarang XFTP Client File Copy buffer overflow [CVE-2019-17320]medium🔒---
143333new-contact-form-widget Plugin all-query-page.php sql injectionmedium🔒---
143332client-dash Plugin cross site scripting [CVE-2019-17071]low🔒---
143331liquid-speech-balloon Plugin cross site scripting [CVE-2019-17070]low🔒---
143330Siemens SIMATIC IT UADM Service Port 1434 Credentials insufficiently protected credentialslow🔒---
143329Siemens WinAC RTX improper authentication [CVE-2019-13921]low🔒---
143328Siemens SIMATIC/SINAMICS resource consumption [CVE-2019-10936]low🔒---
143327Siemens SIMATIC/SINAMICS IRT resource consumption [CVE-2019-10923]low🔒---
143326RobotCPA Plugin f.php path traversalmedium🔒---
143325ACF-Frontend-Display Plugin File Upload index.php unrestricted uploadmedium🔒---
143324prettyPhoto jquery.prettyPhoto.js cross site scriptinglow🔒---
143323Vernissage Theme Option Update default permission [CVE-2015-9477]medium🔒---
143322Teardrop Theme Option Update default permission [CVE-2015-9476]medium🔒---
143321Pont Theme Option Update default permission [CVE-2015-9475]medium🔒---
143320Simpolio Theme Option Update default permission [CVE-2015-9474]medium🔒---
143319estrutura-basica Theme download.php path traversalmedium🔒---
143318incoming-links Plugin HTTP Header referrers.php cross site scriptinglow🔒---
143317dzs-zoomsounds Plugin File Upload upload.php unrestricted uploadmedium🔒---
143316history-collection Plugin download.php path traversalmedium🔒---
143315content-grabber Plugin cross site scripting [CVE-2015-9469]low🔒---
143314broken-link-manager Plugin delURL cross site scriptinglow🔒---
143313broken-link-manager Plugin wpslEditURL sql injectionmedium🔒---
143312wti-like-post Plugin WtiLikePostProcessVote sql injectionmedium🔒---
143311yet-another-stars-rating Plugin yasr_get_multi_set_values_and_field sql injectionmedium🔒---
143310s3bubble-amazon-s3-html-5-video-with-adverts Plugin downloader.php path traversalmedium🔒---
143309s3bubble-amazon-s3-audio-streaming Plugin downloader.php path traversalmedium🔒---
143308Portfolio Plugin afp_get_new_category_page sql injectionmedium🔒---
143307Portfolio Plugin afp_get_new_portfolio_item_page sql injectionmedium🔒---
143306booking-system Plugin display sql injectionmedium🔒---
143305searchterms-tagging-2 Plugin options-general.php cross site scriptinglow🔒---
143304searchterms-tagging-2 Plugin pk_stt2_db_get_popular_terms sql injectionlow🔒---
143303pretty-link Plugin list_links sql injectionmedium🔒---
143302Redmine Textile Persistent cross site scriptinglow🔒---
143301Automattic Mongoose Access Control input validation [CVE-2019-17426]medium🔒---
143300OISF libhtp HTTP Protocol Parser input validation [CVE-2019-17420]medium🔒---
143299MetInfo sql injection [CVE-2019-17419]medium🔒---
143298MetInfo sql injection [CVE-2019-17418]medium🔒---
143297PbootCMS cross site scripting [CVE-2019-17417]low🔒---
143296iTerm2 tmux Control Mode input validation [CVE-2019-9535]medium🔒---
143295ISC BIND dispatch.c race conditionlow🔒---
143294ISC BIND EDNS Client Subnet input validation [CVE-2019-6469]medium🔒---
143293ISC BIND nxdomain Redirect assertion [CVE-2019-6468]low🔒---
143292ISC BIND nxdomain Redirect query.c assertionlow🔒---
143291ISC BIND Zone Transfer permission assignment [CVE-2019-6465]medium🔒---
143290NVIDIA Shield TV Experience Boot Image input validation [CVE-2019-5700]medium🔒---
143289NVIDIA Shield TV Experience Tegra Bootloader memory corruptionmedium🔒---
143288SnapManager for Oracle information disclosure [CVE-2019-5507]low🔒---
143287Clustered Data ONTAP Hostname Verification certificate validationmedium🔒---
143286NitroPDF type conversion [CVE-2019-5053]medium🔒---
143285NitroPDF memory corruption [CVE-2019-5050]medium🔒---
143284NitroPDF out-of-bounds write [CVE-2019-5048]medium🔒---
143283NitroPDF CharProcs Parser use after free [CVE-2019-5047]medium🔒---
143282NitroPDF JPEG2000 File out-of-bounds write [CVE-2019-5046]medium🔒---
143281NitroPDF JPEG2000 File out-of-bounds write [CVE-2019-5045]medium🔒---
143280IBM Spectrum Scale injection [CVE-2019-4558]medium🔒---
143279IBM Maximo Asset Management Error Message information exposurelow🔒---
143278Dell EMC Avamar Server/Integrated Data Protection Appliance permission assignmentmedium🔒---
143277McAfee Endpoint Security Configuration Tool missing authenticationmedium🔒---
143276McAfee Endpoint Security Installer EPSetup.exe code injectionmedium🔒---
143275File Sharing Wizard Structured Exception buffer overflow [CVE-2019-17415]medium🔒---
143274tinylcy Vino vn_get_string input validationlow🔒---
143273Exiv2 types.cpp getULong buffer overflowlow🔒---
143272libyal liblnk liblnk_location_information.c network_share_name_offset out-of-bounds readmedium🔒---
143271Shack Forms Pro Extension File Attachment path traversal [CVE-2019-17399]medium🔒---
143270RIOT MQTT-SN resource consumption [CVE-2019-17389]low🔒---
143269animate-it Plugin cross site scripting [CVE-2019-17385]low🔒---
143268animate-it Plugin cross site scripting [CVE-2019-17384]low🔒---
143267netaddr Gem File Permission default permission [CVE-2019-17383]medium🔒---
143266Zabbix Dashboard Page improper authentication [CVE-2019-17382]medium🔒---
143265cPanel WHM Update Preferences Interface cross site scriptinglow🔒---
143264cPanel WHM SSL Storage Manager Interface Stored cross site scriptinglow🔒---
143263cPanel SSL Key Delete Interface cross site scripting [CVE-2019-17378]low🔒---
143262cPanel LiveAPI Example Scripts cross site scripting [CVE-2019-17377]low🔒---
143261cPanel SSL Certificate Upload cross site scripting [CVE-2019-17376]low🔒---
143260cPanel API Token session expiration [CVE-2019-17375]medium🔒---
143259Netgear WNR834Bv2 improper authentication [CVE-2019-17373]medium🔒---
143258Netgear DC112A genieDisableLanChanged.cgi improper authenticationmedium🔒---
143257libpng png_create_info_struct release of resourcelow🔒---
143256OTCMS sysCheckFile_deal.php input validationmedium🔒---
143255Citrix Application Delivery Management Access Control authorizationmedium🔒---
143254Nix default permission [CVE-2019-17365]medium🔒---
143253ZyXEL NBG-418N v2 Authentication wan.htm improper authenticationlow🔒---
143252D-Link DIR-615 wan.htm improper authenticationlow🔒---
143251Netreo OmniCenter Blind sql injection [CVE-2019-17128]medium🔒---
143250Kramer VIAware Access Control default permission [CVE-2019-17124]medium🔒---
143249Zoho ManageEngine DataSecurity Plus Configuration File file accessmedium🔒---
143248Koji path traversal [CVE-2019-17109]medium🔒---
143247OpenProject Project List cross site scripting [CVE-2019-17092]low🔒---
143246OpenSSH XMSS Key integer overflow [CVE-2019-16905]medium🔒---
143245Socomec DIRIS A-40 Web Interface password.jsn Password insufficiently protected credentialslow🔒---
143244Zingbox Inspector input validation [CVE-2019-1584]medium🔒---
143243Altair PBS Professional privileges management [CVE-2019-15719]medium🔒---
143242MantisBT os command injection [CVE-2019-15715]medium🔒---
143241Envoy HTTP Header resource consumption [CVE-2019-15226]low🔒---
143240Zingbox Inspector 3rd Party Integration cleartext storage [CVE-2019-15023]low🔒---
143239Zingbox Inspector ARP authentication spoofing [CVE-2019-15022]medium🔒---
143238Zingbox Inspector information disclosure [CVE-2019-15021]low🔒---
143237Zingbox Inspector Update Image injection [CVE-2019-15020]medium🔒---
143236Zingbox Inspector Update Image input validation [CVE-2019-15019]medium🔒---
143235Zingbox Inspector improper authentication [CVE-2019-15018]medium🔒---
143234Zingbox Inspector SSH Service hard-coded credentials [CVE-2019-15017]medium🔒---
143233Zingbox Inspector Management Interface sql injection [CVE-2019-15016]medium🔒---
143232Zingbox Inspector hard-coded credentials [CVE-2019-15015]medium🔒---
143231Zingbox Inspector CLI injection [CVE-2019-15014]medium🔒---
143230RENPHO App JSON improper enforcement of message integrity [CVE-2019-14808]low🔒---
143229Sunny WebBox cross-site request forgery [CVE-2019-13529]medium🔒---
143228Pi-Hole os command injection [CVE-2019-13051]medium🔒---
143227Samsung Smart Phone Service Mode risky encryption [CVE-2019-11341]low🔒---
143226TIBCO MDM MDM Server cross site scripting [CVE-2019-11212]low🔒---
143225Juniper Junos Protocol Independent Multicast resource consumptionlow🔒---
143224Juniper Junos path traversal [CVE-2019-0074]low🔒---
143223Juniper Junos PKI Key permission assignment [CVE-2019-0073]low🔒---
143222Juniper SBR Carrier Access Management Credentials insufficiently protected credentialslow🔒---
143221Juniper Junos Veriexec privileges management [CVE-2019-0071]medium🔒---
143220Juniper Junos input validation [CVE-2019-0070]medium🔒---
143219Juniper Junos Log Credentials cleartext transmissionlow🔒---
143218Juniper Junos flowd unusual condition [CVE-2019-0068]low🔒---
143217Juniper Junos vmcore input validation [CVE-2019-0067]low🔒---
143216Juniper Junos NG-mVPN input validation [CVE-2019-0066]low🔒---
143215Juniper Junos SIP ALG input validation [CVE-2019-0065]low🔒---
143214Juniper Junos flowd input validation [CVE-2019-0064]low🔒---
143213Juniper Junos BNG input validation [CVE-2019-0063]low🔒---
143212Juniper Junos J-Web session fixiation [CVE-2019-0062]medium🔒---
143211Juniper Junos MGD privileges management [CVE-2019-0061]medium🔒---
143210Juniper Junos flowd exceptional condition [CVE-2019-0060]low🔒---
143209Juniper Junos BGP release of resource [CVE-2019-0059]low🔒---
143208Juniper Junos Veriexec Subsystem privileges management [CVE-2019-0058]medium🔒---
143207Juniper Junos JDM improper authentication [CVE-2019-0057]medium🔒---
143206Juniper Junos OSPF input validation [CVE-2019-0056]low🔒---
143205Juniper Junos SIP ALG input validation [CVE-2019-0055]low🔒---
143204Juniper Junos Certificate Validation certificate validation [CVE-2019-0054]medium🔒---
143203Juniper Junos flowd exceptional condition [CVE-2019-0051]low🔒---
143202Juniper Junos srxpfe input validation [CVE-2019-0050]low🔒---
143201Juniper Junos J-Web Persistent cross site scriptinglow🔒---
143200ISC BIND Managed Key risky encryption [CVE-2018-5745]low🔒---
143199ISC BIND EDNS Option release of resource [CVE-2018-5744]medium🔒---
143198ISC BIND Connection allocation of resources [CVE-2018-5743]low🔒---
143197ISC DHCP Options memory corruption [CVE-2018-5732]medium🔒--🔒
143192SolarWinds Dameware Mini Remote Client Agent SmartCard Authentication DWRCS.exe input validationmedium🔒---
143191OTCMS Admin Panel member_deal.php cross-site request forgerylow🔒---
143190S-Cms tpl.php cross site scriptinglow🔒---
143189Bouncy Castle Crypto ASN.1 Parser allocation of resources [CVE-2019-17359]low🔒---
143188Jfinal cos isSafeFile unrestricted uploadmedium🔒---
143187vBulletin getHookList sql injectionmedium🔒---
143186XnView Classic User Mode out-of-bounds write [CVE-2019-17262]medium🔒---
143185XnView Classic User Mode out-of-bounds write [CVE-2019-17261]medium🔒---
143184MPC-HC memory corruption [CVE-2019-17260]medium🔒---
143183KMPlayer User Mode out-of-bounds write [CVE-2019-17259]medium🔒---
143182IrfanView out-of-bounds write [CVE-2019-17258]medium🔒---
143181IrfanView Exception unusual condition [CVE-2019-17257]medium🔒---
143180IrfanView User Mode out-of-bounds write [CVE-2019-17256]medium🔒---
143179IrfanView User Mode out-of-bounds write [CVE-2019-17255]medium🔒---
143178IrfanView out-of-bounds write [CVE-2019-17254]medium🔒---
143177IrfanView User Mode out-of-bounds write [CVE-2019-17253]medium🔒---
143176IrfanView User Mode out-of-bounds write [CVE-2019-17252]medium🔒---
143175IrfanView User Mode out-of-bounds write [CVE-2019-17251]medium🔒---
143174IrfanView User Mode out-of-bounds write [CVE-2019-17250]medium🔒---
143173IrfanView User Mode out-of-bounds write [CVE-2019-17249]medium🔒---
143172IrfanView User Mode out-of-bounds write [CVE-2019-17248]medium🔒---
143171IrfanView buffer overflow [CVE-2019-17247]medium🔒---
143170IrfanView User Mode out-of-bounds write [CVE-2019-17246]medium🔒---
143169IrfanView User Mode out-of-bounds write [CVE-2019-17245]medium🔒---
143168IrfanView buffer overflow [CVE-2019-17244]medium🔒---
143167IrfanView buffer overflow [CVE-2019-17243]medium🔒---
143166IrfanView User Mode out-of-bounds write [CVE-2019-17242]medium🔒---
143165IrfanView User Mode out-of-bounds write [CVE-2019-17241]medium🔒---
143164FiberHome HG2201T downloadfile.cgi path traversalmedium🔒---
143163FiberHome HG2201T telnet.cgi input validationmedium🔒---
143162OpenStack Octavia Amphora Image improper authentication [CVE-2019-17134]medium🔒---
143161Centreon Web brokerPerformance.php Stored cross site scriptinglow🔒---
143160Centreon Web minPlayCommand.php code injectionmedium🔒---
143159Centreon Web cleartext storage [CVE-2019-17106]medium🔒---
143158Centreon Web Token Generator index.php random valuesmedium🔒---
143157Centreon VM Apache HTTP Server httponly cookie validationlow🔒---
143156Auth0 Access Control IdentityTokenValidator improper authenticationmedium🔒---
143155Hrworks Flow Report cross site scripting [CVE-2019-16417]low🔒---
143154HRworks Report cross site scripting [CVE-2019-16416]low🔒---
143153Ansible Log Credentials log filelow🔒---
143152openshift TLS Hostname Verification code download [CVE-2019-14845]medium🔒---
143151Yealink Phone OpenVPN File Upload path traversal [CVE-2019-14657]medium🔒---
143150Yealink Phone HTTP Service unrestricted upload [CVE-2019-14656]medium🔒---
143149Dbell Wi-Fi Smart Video Doorbell DB01-S Gen 1 Service Port 81 openlock.cgi input validationmedium🔒---
143148Moxa EDR 810 Ping input validation [CVE-2019-10969]medium🔒---
143147Moxa EDR 810 Log File log file [CVE-2019-10963]low🔒---
143146knex.js MSSQL sql injection [CVE-2019-10757]medium🔒---
143145node-red-dashboard cross site scripting [CVE-2019-10756]low🔒---
143144Bootstrap-3-Typeahead highlighter cross site scriptinglow🔒---
143143SAP SQL Anywhere/IQ/Dynamic Tier file access [CVE-2019-0381]medium🔒---
143142SAP Landscape Management Log log file [CVE-2019-0380]low🔒---
143141SAP NetWeaver Process Integration insufficient verification of data authenticitymedium🔒---
143140SAP Business Intelligence Platform Background Image Stored cross site scriptinglow🔒---
143139SAP Business Intelligence Platform Input Control Stored cross site scriptinglow🔒---
143138SAP Business Intelligence Platform Publication Name Stored cross site scriptinglow🔒---
143137SAP Business Intelligence Platform Export Dialog Box Reflected cross site scriptinglow🔒---
143136SAP Business Intelligence Platform Chart Title Reflected cross site scriptinglow🔒---
143135SAP Financial Consolidation Xpath xml injection [CVE-2019-0370]medium🔒---
143134SAP Financial Consolidation Reflected cross site scripting [CVE-2019-0369]low🔒---
143133SAP Customer Relationship Management cross site scripting [CVE-2019-0368]low🔒---
143132SAP NetWeaver Process Integration Authorization authorizationmedium🔒---
143131Centreon VM Configuration File centreon-backup.pl privileges managementhigh🔒---
143130Centreon Web licenseUpload.php unrestricted uploadmedium🔒---
143129Centreon Web getStats.php code injectionmedium🔒---
143128Centreon Web makeXML_ListServices.php sql injectionmedium🔒---
143127Centreon Web img_gantt.php sql injectionmedium🔒---
143126Centreon Web input validation [CVE-2018-21020]medium🔒---
143125Apple iPhone Siri Self privileges management [Disputed]medium🔒---
143124Microsoft Windows Update Assistant privileges management [CVE-2019-1378]medium🔒---
143123Microsoft SQL Server Management Studio Permission permission assignmentlow🔒---
143122Microsoft Dynamics 365 cross site scripting [CVE-2019-1375]low🔒---
143121Microsoft Internet Explorer memory corruption [CVE-2019-1371]medium🔒---
143120Open Enclave SDK information disclosure [CVE-2019-1369]low🔒---
143119Microsoft Windows Secure Boot input validation [CVE-2019-1368]low🔒---
143118Microsoft Windows IIS memory corruption [CVE-2019-1365]medium🔒---
143117Microsoft Windows Win32k memory corruption [CVE-2019-1364]medium🔒---
143116Microsoft Windows GDI information disclosure [CVE-2019-1363]low🔒---
143115Microsoft Windows Win32k memory corruption [CVE-2019-1362]medium🔒---
143114Microsoft Windows Graphics Component information disclosure [CVE-2019-1361]low🔒---
143113Microsoft Windows JET Database Engine memory corruption [CVE-2019-1359]medium🔒---
143112Microsoft Windows JET Database Engine memory corruption [CVE-2019-1358]medium🔒---
143111Microsoft Edge Cookie authentication spoofing [CVE-2019-1357]medium🔒---
143110Microsoft Internet Explorer Cookie authentication spoofing [CVE-2019-1357]medium🔒---
143109Microsoft Edge information disclosure [CVE-2019-1356]low🔒---
143108Microsoft Windows memory corruption [CVE-2019-1347]medium🔒---
143107Microsoft Windows memory corruption [CVE-2019-1346]medium🔒---
143106Microsoft Windows Kernel information disclosure [CVE-2019-1345]low🔒---
143105Microsoft Windows Code Integrity Module information disclosurelow🔒---
143104Microsoft Windows memory corruption [CVE-2019-1343]low🔒---
143103Microsoft Windows Error Reporting Manager input validation [CVE-2019-1342]low🔒---
143102Microsoft Windows Power Service umpo.dll privileges managementmedium🔒---
143101Microsoft Windows AppX Deployment Server privileges managementmedium🔒---
143100Microsoft Windows Error Reporting privileges management [CVE-2019-1339]medium🔒---
143099Microsoft Windows NTLMv2 inadequate encryption [CVE-2019-1338]medium🔒---
143098Microsoft Windows Update Client information disclosure [CVE-2019-1337]low🔒---
143097Microsoft Windows Update Client privileges management [CVE-2019-1336]medium🔒---
143096Microsoft Windows Kernel information disclosure [CVE-2019-1334]low🔒---
143095Microsoft Excel memory corruption [CVE-2019-1331]medium🔒---
143094Microsoft SharePoint Foundation Impersonation privileges managementmedium🔒---
143093Microsoft SharePoint Foundation/SharePoint Enterprise Server cross site scriptinglow🔒---
143092Microsoft SharePoint Foundation/SharePoint Enterprise Server cross site scriptinglow🔒---
143091Microsoft Excel memory corruption [CVE-2019-1327]medium🔒---
143090Microsoft Windows Remote Desktop Protocol input validation [CVE-2019-1326]low🔒---
143089Microsoft Windows rdbss.sys memory corruption [CVE-2019-1325]medium🔒---
143088Microsoft Windows Update Client privileges management [CVE-2019-1323]medium🔒---
143087Microsoft Windows Authentication Request improper authenticationmedium🔒---
143086Microsoft Windows CloudStore privileges management [CVE-2019-1321]medium🔒---
143085Microsoft Windows Authentication Request improper authenticationmedium🔒---
143084Microsoft Windows Error Reporting privileges management [CVE-2019-1319]medium🔒---
143083Microsoft Windows TLS information disclosure [CVE-2019-1318]low🔒---
143082Microsoft Windows Hardlink link following [CVE-2019-1317]medium🔒---
143081Microsoft Windows Setup privileges management [CVE-2019-1316]medium🔒---
143080Microsoft Windows Error Reporting privileges management [CVE-2019-1315]medium🔒---
143079Microsoft Windows Security Feature improper authentication [CVE-2019-1314]medium🔒---
143078Microsoft SQL Server Management Studio Permission permission assignmentlow🔒---
143077Microsoft Windows Imaging API memory corruption [CVE-2019-1311]medium🔒---
143076Microsoft Windows Hyper-V input validation [CVE-2019-1230]low🔒---
143075Microsoft Windows NTLM MIC improper authentication [CVE-2019-1166]medium🔒---
143074Microsoft SharePoint Foundation/SharePoint Enterprise Server cross site scriptinglow🔒---
143073Microsoft Edge HTTP Content authentication spoofing [CVE-2019-0608]medium🔒---
143072Microsoft Internet Explorer HTTP Content authentication spoofingmedium🔒---
143071Microsoft Windows MS XML xml external entity reference [CVE-2019-1060]medium🔒---
143070Microsoft Azure App Service Sandbox memory corruption [CVE-2019-1372]high🔒---
143069Microsoft Edge/ChakraCore Chakra Scripting Engine memory corruptionmedium🔒---
143068Microsoft Edge/ChakraCore Chakra Scripting Engine memory corruptionmedium🔒---
143067Microsoft Edge/ChakraCore Chakra Scripting Engine memory corruptionmedium🔒---
143066Microsoft Edge/ChakraCore Chakra Scripting Engine memory corruptionmedium🔒---
143065Microsoft Internet Explorer VBScript memory corruption [CVE-2019-1239]medium🔒---
143064Microsoft Internet Explorer VBScript memory corruption [CVE-2019-1238]medium🔒---
143063Microsoft Windows Remote Desktop input validation [CVE-2019-1333]medium🔒---
143062Dell Encryption Enterprise Installer untrusted search path [CVE-2019-3745]medium🔒---
143061SuSE Linux Enterprise Server 15 Squid Binary pinger default permissionmedium🔒---
143060Xen Linux Kernel balloon.c resource consumptionlow🔒---
143059Xen infinite loop [CVE-2019-17350]low🔒---
143058Xen infinite loop [CVE-2019-17349]low🔒---
143057Xen PCID input validation [CVE-2019-17348]low🔒---
143056Xen input validation [CVE-2019-17347]medium🔒---
143055Xen PCID input validation [CVE-2019-17346]medium🔒---
143054Xen IOMMU Operation input validation [CVE-2019-17345]low🔒---
143053Xen PTE Update input validation [CVE-2019-17344]low🔒---
143052Xen HVM input validation [CVE-2019-17343]medium🔒---
143051Xen race condition [CVE-2019-17342]medium🔒---
143050Xen PCI race condition [CVE-2019-17341]medium🔒---
143049Xen grant-table Transfer input validation [CVE-2019-17340]medium🔒---
143048SugarCRM Emails sql injection [CVE-2019-17319]medium🔒---
143047SugarCRM pmse_Inbox sql injection [CVE-2019-17318]medium🔒---
143046SugarCRM UpgradeWizard input validation [CVE-2019-17317]medium🔒---
143045SugarCRM Import input validation [CVE-2019-17316]medium🔒---
143044SugarCRM Administration input validation [CVE-2019-17315]medium🔒---
143043SugarCRM Configurator path traversal [CVE-2019-17314]medium🔒---
143042SugarCRM Studio path traversal [CVE-2019-17313]medium🔒---
143041SugarCRM File path traversal [CVE-2019-17312]medium🔒---
143040SugarCRM Attachment path traversal [CVE-2019-17311]medium🔒---
143039SugarCRM Campaigns input validation [CVE-2019-17310]medium🔒---
143038SugarCRM EmailMan input validation [CVE-2019-17309]medium🔒---
143037SugarCRM Emails input validation [CVE-2019-17308]medium🔒---
143036SugarCRM Tracker input validation [CVE-2019-17307]medium🔒---
143035SugarCRM Configurator input validation [CVE-2019-17306]medium🔒---
143034SugarCRM MergeRecords input validation [CVE-2019-17305]medium🔒---
143033SugarCRM MergeRecords input validation [CVE-2019-17304]medium🔒---
143032SugarCRM MergeRecords input validation [CVE-2019-17303]medium🔒---
143031SugarCRM ModuleBuilder input validation [CVE-2019-17302]medium🔒---
143030SugarCRM ModuleBuilder input validation [CVE-2019-17301]medium🔒---
143029SugarCRM Administration input validation [CVE-2019-17300]medium🔒---
143028SugarCRM Administration input validation [CVE-2019-17299]medium🔒---
143027SugarCRM Administration sql injection [CVE-2019-17298]medium🔒---
143026SugarCRM Quotes sql injection [CVE-2019-17297]medium🔒---
143025SugarCRM Contacts sql injection [CVE-2019-17296]medium🔒---
143024SugarCRM History sql injection [CVE-2019-17295]medium🔒---
143023SugarCRM Export sql injection [CVE-2019-17294]medium🔒---
143022SugarCRM pmse_Project sql injection [CVE-2019-17293]medium🔒---
143021SugarCRM pmse_Inbox sql injection [CVE-2019-17292]medium🔒---
143020download-plugins-dashboard plugin class-alg-download-plugins-settings.php Stored cross site scriptinglow🔒---
143019ultimate-faqs Plugin EWD_UFAQ_Import.php injectionlow🔒---
143018ultimate-faqs Plugin Option Import EWD_UFAQ_Import.php input validationmedium🔒---
143017rsyslog Cisco Log Message pmcisconames.c buffer overflowmedium🔒---
143016rsyslog AIX Log Message pmaixforwardedfrom.c buffer overflowmedium🔒---
143015PCProtect Antivirus Folder Permission privileges managementmedium🔒---
143014Twitter Kit Framework Hostname Verification certificate validationmedium🔒---
143013Espressif ESP-IDF Secure Boot injection [CVE-2019-15894]medium🔒---
143012Sitos Six SCORM File unrestricted upload [CVE-2019-15751]medium🔒---
143011Sitos Six Blog cross site scripting [CVE-2019-15750]low🔒---
143010Sitos Six Password Reset password recovery [CVE-2019-15749]medium🔒---
143009Sitos Six Import unrestricted upload [CVE-2019-15748]medium🔒---
143008Sitos Six privileges management [CVE-2019-15747]medium🔒---
143007Sitos Six injection [CVE-2019-15746]medium🔒---
143006Amazon FreeRTOS MQTT Packet prvProcessReceivedPublish input validationlow🔒---
143005MyBuilder Viewer Configuration File input validation [CVE-2019-12812]medium🔒---
143004MyBuilder ActiveX Control ShellOpen os command injectionmedium🔒---
143003Elementor Pro Plugin customize.php elementor-edit-template cross site scriptinglow🔒---
143002orbisius-child-theme-creator Plugin Access Control permission assignmentmedium🔒---
143001buddypress-activity-plus Plugin admin-ajax.php cross-site request forgerylow🔒---
143000smooth-slider Plugin sql injection [CVE-2015-9454]medium🔒---
142999broken-link-manager Plugin HTTP Header cross site scripting [CVE-2015-9453]low🔒---
142998nex-forms-express-wp-form-builder Plugin sql injection [CVE-2015-9452]medium🔒---
142997plugmatter-optin-feature-box-lite Plugin sql injection [CVE-2015-9451]medium🔒---
142996plugmatter-optin-feature-box-lite Plugin sql injection [CVE-2015-9450]medium🔒---
142995LibTomCrypt UTF-8 der_decode_utf8_string.c der_decode_utf8_string out-of-bounds readmedium🔒---
142992DameWare Remote Support memory corruptionmedium🔒---
142991Google Android Binder Driver binder_poll use after freemedium🔒---
142990Intellian Remote Access Ping Test os command injection [CVE-2019-17269]medium🔒---
142989FasterXML jackson-databind input validation [CVE-2019-17267]high🔒---
142988libsoup NTLM Message soup-auth-ntlm.c soup_ntlm_parse_challenge out-of-bounds readmedium🔒---
142987libyal liblnk liblnk_location_information.c liblnk_location_information_read_data out-of-bounds readmedium🔒---
142986libyal libfwsi libfwsi_extension_block.c libfwsi_extension_block_copy_from_byte_stream out-of-bounds readmedium🔒---
142985Bludit Brute-Force Protection security.class.php excessive authenticationlow🔒---
142984CMS Made Simple Module Manager cross site scripting [CVE-2019-17226]low🔒---
142983Subrion CMS cross site scripting [CVE-2019-17225]low🔒---
142982WebARX Plugin URI authorization [CVE-2019-17214]medium🔒---
142981WebARX Plugin Stored cross site scripting [CVE-2019-17213]low🔒---
142980Frost Ming rediswrapper Pickled Object models.py deserializationmedium🔒---
142979TeamPass Login Stored cross site scriptinglow🔒---
142978TeamPass Knowledge Base Label Stored cross site scriptinglow🔒---
142977TeamPass Search Page Stored cross site scriptinglow🔒---
142976WPO webpagetest getfile.php path traversalmedium🔒---
142975OpenEMR Lifestyle Demographic Filter clinical_rules.php sql injectionmedium🔒---
142973Foxit PhantomPDF AcroForm removeField use after freemedium🔒---
142972Foxit Reader AcroForm exportValues use after freemedium🔒---
142971Foxit Reader AcroForm deleteItemAt use after freemedium🔒---
142970Zendesk FON2601E-SE DNS Amplification input validationlow🔒---
142969IBM Security Key Lifecycle Manager Web UI cross site scriptinglow🔒---
142968IBM Security Key Lifecycle Manager authorization [CVE-2019-4514]low🔒---
142967IBM MQ AMQP Listener session fixiation [CVE-2019-4227]medium🔒---
142966Signal Messenger WebRTC input validation [CVE-2019-17192] [Disputed]low🔒---
142965Signal Messenger Call input validation [CVE-2019-17191]medium🔒---
142964Fecshop FecMall File Upload imageupload getimagesize unrestricted uploadmedium🔒---
142963Xerox AtlaLink C8070 privileges management [CVE-2019-17184]medium🔒---
142962Foxit Reader release of resource [CVE-2019-17183]low🔒---
142961Valve Steam Client Filesystem path traversal [CVE-2019-17180]medium🔒---
142960OpenEMR add_template.php cross site scriptinglow🔒---
142959LodePNG WinPR lodepng.c HuffmanTree_makeFromFrequencies release of resourcelow🔒---
142958FreeRDP region.c release of resourcelow🔒---
142957joyplus-cms admin_pic.php path traversalmedium🔒---
142956Linux Kernel SSID wext-sme.c cfg80211_mgd_wext_giwessid buffer overflowmedium🔒---
142955vBulletin Avatar input validation [CVE-2019-17132]medium🔒---
142954vBulletin improper restriction of rendered ui layers [CVE-2019-17131]medium🔒---
142953vBulletin URL vurl.php file accessmedium🔒---
142952Liferay Portal CE JSON Payload deserialization [CVE-2019-16891]medium🔒---
142951Pillow Image File allocation of resources [CVE-2019-16865]low🔒---
142950Foxit Reader AcroForm use after free [CVE-2019-13320]medium🔒---
142949Foxit Reader XFA Form use after free [CVE-2019-13319]medium🔒---
142948Foxit Reader format string [CVE-2019-13318]medium🔒---
142947Foxit PhantomPDF Calculate Action use after free [CVE-2019-13317]medium🔒---
142946Foxit PhantomPDF Calculate Action use after free [CVE-2019-13316]medium🔒---
142945Foxit Reader removeField use after freemedium🔒---
142944Micro Focus Arcsight Logger Stored cross site scripting [CVE-2019-11656]low🔒---
142943Micro Focus Arcsight Logger File Upload unrestricted upload [CVE-2019-11655]medium🔒---
142942Apache Hadoop fsimage memory corruption [CVE-2018-11768]medium🔒---
142941REDCap cross site scripting [CVE-2019-17121]low🔒---
142940libopenmpt libopenmpt_modplug.c ModPlug_SampleName buffer overflowmedium🔒---
142939kube-state-metrics Metric information disclosure [CVE-2019-17110]low🔒---
142938Visualizer Plugin Admin Dashboard Block.php Stored cross site scriptinglow🔒---
142937Unbound NOTIFY Query memory corruption [CVE-2019-16866]low🔒---
142936RPyC Remote Procedure Call authorization [CVE-2019-16328]medium🔒---
142935KSLabs KSWEB path traversal [CVE-2019-16198]medium🔒---
142934KSLabs KSWEB Ajax code injection [CVE-2019-15766]medium🔒---
142933tcpdump print-lmp.c lmp_print_data_link_subobjs input validationmedium🔒---
142932libpcap PHB Header sf-pcapng.c input validationmedium🔒---
142931libpcap URL daemon.c server-side request forgerymedium🔒---
142930libpcap daemon.c crypt null pointer dereferencelow🔒---
142929libpcap daemon.c Username insufficient verification of data authenticitylow🔒---
142928libpcap daemon.c input validationmedium🔒---
142927Foxit Reader XFA Form use after free [CVE-2019-13332]medium🔒---
142926Foxit Reader JPG File out-of-bounds read [CVE-2019-13331]medium🔒---
142925Foxit Reader JPG File type confusion [CVE-2019-13330]medium🔒---
142924Foxit Reader tif File type confusion [CVE-2019-13329]medium🔒---
142923Foxit Reader Acroform Object use after free [CVE-2019-13328]medium🔒---
142922Foxit Reader Acroform Object use after free [CVE-2019-13327]medium🔒---
142921Foxit Reader Acroform Object out-of-bounds read [CVE-2019-13326]medium🔒---
142920Foxit Studio Photo EPS File out-of-bounds read [CVE-2019-13325]medium🔒---
142919Foxit Studio Photo TIFF File out-of-bounds read [CVE-2019-13324]medium🔒---
142918Foxit Studio Photo tif File out-of-bounds write [CVE-2019-13323]medium🔒---
142917libpl_droidsonroids_gif decoding.c DDGifSlurp double freemedium🔒---
142916tcpdump SMB Parser smbutil.c smb_fdata recursionlow🔒---
142915tcpdump SMB Parser print-smb.c print_trans out-of-bounds readmedium🔒---
142914libpcap pcapng buffer overflow [CVE-2018-16301]medium🔒---
142913tcpdump BGP Parser print-bgp.c bgp_attr_print recursionlow🔒---
142912tcpdump BGP Parser print-bgp.c bgp_attr_print out-of-bounds readmedium🔒---
142911tcpdump DCCP Parser print-dccp.c dccp_print_option out-of-bounds readmedium🔒---
142910tcpdump HNCP Parser print-hncp.c print_prefix out-of-bounds readmedium🔒---
142909tcpdump IEEE 802.11 Parser print-802_11.c out-of-bounds readmedium🔒---
142908tcpdump ICMPv6 Parser print-icmp6.c out-of-bounds readmedium🔒---
142907tcpdump BGP Parser print-bgp.c bgp_capabilities_print out-of-bounds readmedium🔒---
142906tcpdump OSPFv3 Parser print-ospf6.c ospf6_print_lshdr out-of-bounds readmedium🔒---
142905LINE tcpdump CLI Parser tcpdump.c get_next_file buffer overflowmedium🔒---
142904tcpdump print-babel.c babel_print_v2 out-of-bounds readmedium🔒---
142903tcpdump IKEv1 Parser print-isakmp.c ikev1_n_print out-of-bounds readmedium🔒---
142902tcpdump FRF.16 Parser print-fr.c mfr_print out-of-bounds readmedium🔒---
142901tcpdump BGP Parser print-bgp.c bgp_capabilities_print out-of-bounds readmedium🔒---
142900tcpdump Rx Parser print-rx.c rx_cache_find out-of-bounds readmedium🔒---
142899tcpdump RSVP Parser print-rsvp.c rsvp_obj_print out-of-bounds readmedium🔒---
142898tcpdump LMP Parser print-lmp.c lmp_print_data_link_subobjs out-of-bounds readmedium🔒---
142897tcpdump print-vrrp.c vrrp_print out-of-bounds readmedium🔒---
142896tcpdump ICMP Parser print-icmp.c icmp_print out-of-bounds readmedium🔒---
142895tcpdump LDP Parser print-ldp.c ldp_tlv_print out-of-bounds readmedium🔒---
142894tcpdump SMB Data input validation [CVE-2018-10105]medium🔒---
142893tcpdump SMB Data input validation [CVE-2018-10103]medium🔒---
142892IBM WebSphere Application Server Stack Trace information exposurelow🔒---
142891IBM Security Guardium improper authentication [CVE-2019-4422]medium🔒---
142890Red Hat JBoss Operations Network Remote Code Execution [CVE-2019-3834]medium🔒---
142889Athena SCS Smartcard ECDSA Key Generation race condition [CVE-2019-15809]low🔒---
142888MatrixSSL ECDSA Signature ecc_math.c risky encryptionlow🔒---
142887wolfSSL/wolfCrypt ECDSA Signature ecc.c information exposurelow🔒---
142886Cisco Unified Communications Manager Web-based Interface cross-site request forgerylow🔒---
142885JetBrains ReSharper Installer DLL untrusted search path [CVE-2019-16407]low🔒---
142884JetBrains YouTrack Issue Page Stored cross site scriptinglow🔒---
142883Cisco Unified Communications Manager Web-based Interface request smugglingmedium🔒---
142882Cisco Unified Contact Center Express Web Server input validationmedium🔒---
142881Cisco ASA/Firepower Threat Defense IKEv1 resource consumptionlow🔒---
142880JetBrains YouTrack Settings Page cross-site request forgery [CVE-2019-15040]low🔒---
142879JetBrains TeamCity Settings Page cross site scripting [CVE-2019-15037]low🔒---
142878JetBrains TeamCity os command injection [CVE-2019-15036]medium🔒---
142877JetBrains ToolBox URL missing encryption [CVE-2019-14959]medium🔒---
142876JetBrains PyCharm Connection resource consumption [CVE-2019-14958]medium🔒---
142875JetBrains YouTrack Permission permissions [CVE-2019-14956]medium🔒---
142874Umbraco GetInpectSearch sql injectionmedium🔒---
142873JetBrains Ktor Framework UserHashedTableAuth unknown vulnerabilitymedium🔒---
142872JetBrains Ktor Framework LDAP input validation [CVE-2019-12736]medium🔒---
142871Cisco Unified Communications Manager Web-based Interface cross site scriptinglow🔒---
142870Cisco Unified Communications Manager Web-based Interface cross site scriptinglow🔒---
142869Cisco IC3000 Industrial Compute Gateway Web-based Management Interface resource consumptionlow🔒---
142868Cisco Prime Infrastructure Web-based Management Interface cross site scriptinglow🔒---
142867Cisco Prime Infrastructure Web-based Management Interface cross site scriptinglow🔒---
142866Cisco Unified Communications Manager Web-based Interface xml external entity referencemedium🔒---
142865Cisco Unified Communications Manager Web-based Interface sql injectionmedium🔒---
142864