VulDB
the community-driven vulnerability database
Home
Overview
Live Recent
Live Updates
Live Archive
Entries
Recent
Updates
Commits
Archive
Stats
Submit
Products
Vendor
Product
Type
Risks
Threat
Exploits
CVSSv3
CVSSv2
Risks
References
References
Tools
Videos
Exports
Search
Search
Advanced Search
API
Support
FAQ
Documentation
Contact
Login
Login
Signup
Upgrade
Tools
2019
ID
Title
Nessus
OpenVAS
Snort
Suricata
TippingPoint
163851
Apple iTunes libxml2 memory corruption [CVE-2019-8756]
163850
Apple watchOS libxml2 memory corruption [CVE-2019-8756]
163849
Apple tvOS libxml2 memory corruption [CVE-2019-8756]
163848
Apple iCloud libxml2 memory corruption [CVE-2019-8756]
163847
Apple iOS libxml2 memory corruption [CVE-2019-8756]
163829
Apple iTunes libxml2 memory corruption [CVE-2019-8749]
163828
Apple watchOS libxml2 memory corruption [CVE-2019-8749]
163827
Apple tvOS libxml2 memory corruption [CVE-2019-8749]
163826
Apple iCloud libxml2 memory corruption [CVE-2019-8749]
163819
Apple iOS Kernel memory corruption [CVE-2019-8744]
163818
Apple watchOS Kernel memory corruption [CVE-2019-8744]
163798
Apple iOS PluginKit memory corruption [CVE-2019-8715]
163790
Apple iOS PluginKit information disclosure [CVE-2019-8708]
163789
Apple watchOS Audio memory corruption [CVE-2019-8706]
163788
Apple tvOS Audio memory corruption [CVE-2019-8706]
163787
Apple iOS/iPadOS Audio memory corruption [CVE-2019-8706]
163756
Apple iOS Wi-Fi privileges management [CVE-2019-8612]
163755
Apple watchOS Wi-Fi privileges management [CVE-2019-8612]
163754
Apple tvOS Wi-Fi privileges management [CVE-2019-8612]
163753
Apple iOS CoreAudio memory corruption [CVE-2019-8592]
163752
Apple watchOS CoreAudio memory corruption [CVE-2019-8592]
163751
Apple tvOS CoreAudio memory corruption [CVE-2019-8592]
163735
Apple iOS Kernel memory corruption [CVE-2019-8547]
163734
Apple watchOS Kernel memory corruption [CVE-2019-8547]
163721
Apple iOS Kernel memory corruption [CVE-2019-8525]
163720
Apple watchOS Kernel memory corruption [CVE-2019-8525]
163719
Apple macOS Live Photos in FaceTime Local Privilege Escalation
162269
Microsoft Windows OleCreateFontIndirectExt out-of-bounds read [Disputed]
159432
Sricam IP CCTV Camera Device Viewer memory corruption
159431
Sricam IP CCTV Camera Device Viewer stack-based overflow
150766
Apple iCloud CoreCrypto denial of service [CVE-2019-8741]
150765
Apple iCloud CoreCrypto denial of service [CVE-2019-8741]
150764
Apple iTunes CoreCrypto denial of service [CVE-2019-8741]
150763
Apple macOS CoreCrypto denial of service [CVE-2019-8741]
150762
Apple watchOS CoreCrypto denial of service [CVE-2019-8741]
150761
Apple iOS CoreCrypto denial of service [CVE-2019-8741]
150737
Apple tvOS CoreCrypto denial of service [CVE-2019-8741]
149460
Adobe Acrobat Reader use after free [CVE-2019-8257]
149459
Adobe Acrobat Reader type confusion [CVE-2019-7131]
149313
Microsoft Outlook Email input validation [CVE-2019-1460]
149312
Microsoft Windows User Profile Service privileges management
149311
Microsoft Visual Studio Code Debug Listener privileges management
149310
Microsoft Dynamics 365 Impersonation privileges management [CVE-2018-8654]
148215
rovinbhandari FTP file_transfer_functions.c receive_file input validation
148214
FiberHome an5506-04-f cross site scripting [CVE-2019-9556]
148213
Craft CMS Header new cross site scripting
148212
Bolt pages cross site scripting
148211
Unity Editor Protocol os command injection [CVE-2019-9197]
148210
Ricoh MarcomCentral FPProducerInternetServer.exe path traversal
148209
Zoho ManageEngine ADSelfService Plus information disclosure [CVE-2019-7162]
148208
Blink XT2 Sync Module injection [CVE-2019-3984]
148207
ezXML ezxml_char_content release of reference
148206
ezXML xml injection [CVE-2019-20201]
148205
ezXML ezxml_decode out-of-bounds read
148204
ezXML strlen out-of-bounds read
148203
ezXML ezxml_ent_ok resource consumption
148202
Nagios XI schedulereport.php os command injection
148201
Pure-FTPd ls.c listdir resource consumption
148200
Avira Free Antivirus Kernel Local Privilege Escalation [CVE-2019-18568]
148199
GONiCUS GOsa Cookie deserialization [CVE-2019-14466]
148198
Generalitat de Catalunya accesuniversitat.gencat.cat Java API information disclosure
148197
OutSystems Platform ImageResourceDetail.aspx cross-site request forgery
148196
Sylius/Grid __toString cross site scripting
148195
MailStore Server Directory Service improper authentication [CVE-2019-10229]
148194
openITCOCKPIT 404 Not Found Reflected cross site scripting
148193
BOMBBA improper authentication [CVE-2018-19834]
148192
DDQ improper authentication [CVE-2018-19833]
148191
NewIntelTechMedia NETM improper authentication
148190
Cryptbond Network ToOwner improper authentication
148189
Business Alliance Financial Circle UBSexToken authorization
148188
GeniXCMS admin.php cross site scripting
148187
SonicOS Configuration Mode improper authorization [CVE-2019-7479]
148186
GMS Webservice Module sql injection [CVE-2019-7478]
147944
IBM MQ Data Conversion Routine denial of service [CVE-2019-4655]
147943
IBM Cognos Analytics Web UI cross site scriting [CVE-2019-4623]
147942
IBM Cognos Analytics origin validation [CVE-2019-4343]
147941
IBM Watson Studio Local Key File information disclosure [CVE-2019-4335]
147940
QEMU core.c ide_dma_cb unusual condition [Disputed]
147939
SerenityOS Syscall MemoryManager.cpp privileges management
147938
GPAC box_code_base.c metx_New release of resource
147937
GPAC ipmpx_code.c GF_IPMPX_AUTH_Delete release of reference
147936
GPAC box_code_base.c trak_Read use after free
147935
GPAC box_funcs.c gf_isom_box_dump_ex use after free
147934
GPAC box_code_drm.c senc_Parse null pointer dereference
147933
GPAC box_dump.c gf_isom_dump null pointer dereference
147932
GPAC box_code_apple.c ilst_item_Read null pointer dereference
147931
GPAC box_funcs.c gf_isom_box_del null pointer dereference
147930
GPAC descriptors.c gf_odf_avc_cfg_write_bs null pointer dereference
147929
GPAC box_funcs.c gf_isom_box_parse_ex out-of-bounds write
147928
GPAC ipmpx_code.c ReadGF_IPMPX_WatermarkingInit out-of-bounds write
147927
GPAC av_parsers.c av1_parse_tile_group out-of-bounds write
147926
GPAC box_code_base.c dinf_New release of resource
147925
kind-of Type Detection index.js ctorName injection
147924
Laborator Neon Theme autosuggest-remote.php cross site scripting
147923
libsixel fromgif.c gif_out_code out-of-bounds write
147922
Nagios XI nocscreenapi.php cross site scripting
147921
Linux Kernel f2fs Filesystem ttm_page_alloc.c. ttm_put_pages out-of-bounds read
147920
MFScripts YetiShare _account_forgot_password.ajax.php information disclosure
147919
MFScripts YetiShare _account_forgot_password.ajax.php information disclosure
147918
MFScripts YetiShare Session Cookie information disclosure [CVE-2019-19739]
147917
MFScripts YetiShare log_file_viewer.php cross site scripting
147916
MFScripts YetiShare Session Cookie cross-site request forgery
147915
MFScripts YetiShare Session Cookie httponly permission assignment
147914
MFScripts YetiShare Password Reset class.userpeer.php unknown vulnerability
147913
MFScripts YetiShare _account_move_file_in_folder.ajax.php sql injection
147912
MFScripts YetiShare _get_all_file_server_paths.ajax.php cross site scripting
147911
MFScripts YetiShare translation_manage_text.ajax.php sql injection
147910
TinyWall Controller Debug Memory privileges management
147909
XMLBlueprint XML Data xml injection [CVE-2019-19032]
147908
Easy XML Editor XML Data xml injection [CVE-2019-19031]
147907
D-Link DIR-859 UPnP Service gena.cgi os command injection
147906
Apache Solr input validation [CVE-2019-17558]
147905
Tiny File Manager Upload os command injection [CVE-2019-16790]
147904
ClickHouse Decompression out-of-bounds read [CVE-2019-16535]
147903
ClickHouse input validation [CVE-2019-15024]
147902
ros-melodic-ros-comm spinner.cpp remove memory corruption
147901
ros-melodic-ros-comm record.cpp parseOptions integer overflow
147900
php-shellcommand os command injection [CVE-2019-10774]
147899
D-Link DGS-1510 cross site scripting [CVE-2018-7859]
147898
GitLab Enterprise Edition Access Control missing authentication
🔒
147897
GitLab Community Edition/Enterprise Edition Access Control authorization
🔒
147896
GitLab Community Edition/Enterprise Edition server-side request forgery
🔒
147895
GitLab Community Edition/Enterprise Edition Access Control authorization
🔒
147894
GitLab Community Edition/Enterprise Edition server-side request forgery
🔒
147893
GitLab Community Edition/Enterprise Edition cross site scripting
🔒
147892
GitLab Community Edition/Enterprise Edition information disclosure
🔒
147891
GitLab Community Edition/Enterprise Edition Access Control authorization
🔒
147890
GitLab Community Edition/Enterprise Edition Access Control authorization
🔒
147889
GitLab Enterprise Edition Persistent cross site scripting [CVE-2018-20491]
🔒
147888
GitLab Community Edition/Enterprise Edition Persistent cross site scripting
🔒
147887
GitLab Community Edition/Enterprise Edition Access Control improper authentication
🔒
147886
GitLab Community Edition/Enterprise Edition information disclosure
🔒
147885
IBM Watson Studio Local information disclosure [CVE-2018-1682]
147884
QEMU Virtio privileges management [CVE-2013-2016]
🔒
🔒
147883
cumin Server Certificate Validator certificate validation [CVE-2013-0264]
147882
OpenShift Enterprise Web Console cross-site request forgery [CVE-2013-0196]
147881
isearch Package tmp tempnam cleanup
147880
Freeciv Server resource consumption [CVE-2012-5645]
🔒
🔒
147879
OpenStack Dashboard Package quantum.conf Password information disclosure
147878
Red Hat OpenStack Platform local_settings Secret Key missing encryption
🔒
147877
HTTP Authentication Library Password Hash inadequate encryption
147876
Linux Kernel feat.c __feat_register_sp resource consumption
147875
Linux Kernel Error cfg80211.c mwifiex_tm_cmd release of resource
147874
libsixel fromgif.c gif_init_frame out-of-bounds write
147873
PoDoFo PdfVariant.h DelayedLoad null pointer dereference
147872
Bento4 Ap4EsDescriptor.cpp GetTag null pointer dereference
147871
Bento4 Ap4DecoderConfigDescriptor.cpp GetTag null pointer dereference
147870
Bento4 Ap4Sample.h GetOffset use after free
147869
GoPro gpmf-parser GPMF_parse.c GPMF_SeekToSamples out-of-bounds read
147868
GoPro gpmf-parser GPMF_mp4reader.c GetPayload out-of-bounds read
147867
GoPro gpmf-parser GPMF-parse.c GPMF_seekToSamples out-of-bounds read
147866
GoPro gpmf-parser GPMF_parser.c GPMF_Next out-of-bounds read
147865
TVT NVMS-1000 GET Request path traversal [CVE-2019-20085]
147864
VIM autocmd window.c use after free
147863
Netis DL4323 Dynamic DNS Configuration form2Ddns.cgi cross site scripting
147862
Netis DL4323 Ping6 Diagnostic pingrtt_v6.html cross site scripting
147861
Netis DL4323 form2saveConf.cgi Password insufficiently protected credentials
147860
Netis DL4323 User Account Configuration form2userconfig.cgi cross site scripting
147859
Netis DL4323 Dynamic DNS Configuration form2Ddns.cgi cross site scripting
147858
Netis DL4323 Log form2logaction.cgi cross-site request forgery
147857
Netis DL4323 form2url.cgi cross site scripting
147856
libmysofa dataobject.c mysofa2json initialization
147855
Bolt Symfony Web Profiler cross site scripting [CVE-2019-20058]
147854
Proxyman Privileged Helper Tool Proxy insufficient verification of data authenticity
147853
stb Image Loader stb_image.h stbi__shiftsigned assertion
147852
LuquidPixels LiquiFire OS URL server-side request forgery [CVE-2019-20055]
147851
Linux Kernel proc_sysctl.c drop_sysctl_table null pointer dereference
147850
UPX Mach-O File p_mach.cpp canUnpack input validation
147849
matio mat.c Mat_VarCalloc release of resource
147848
UPX p_lx_elf.cpp elf_hash calculation
147847
Alcatel-Lucent OmniVista 4760 __construct code injection
147846
Alcatel-Lucent OmniVista 8770 Service Port 389 unrestricted upload
147845
Alcatel-Lucent OmniVista 4760/OmniVista 8770 Web Server Configuration sess_
insufficiently protected credentials
147844
K7 Ultimate Security Backup Module K7BKCExt.dll link following
147843
Tenable Nessus UI Stored cross site scripting
🔒
147842
Tenable Nessus UI Stored cross site scripting
🔒
147841
Livefyre LiveComments Picture cross site scripting [CVE-2014-6420]
147840
Senkas Kolibri URI input validation [CVE-2014-5289]
147839
WP-Planet Plugin magpie_debug.php cross site scripting
147838
Video Comments Webcam Recorder Plugin r_logout.php cross site scripting
147837
Swipe Checkout for WooCommerce Plugin test-plugin.php cross site scripting
147836
Shortcode Ninja Plugin preview-shortcode-external.php cross site scripting
147835
Ruven Toolkit Plugin popup.php cross site scripting
147834
Podcast Channels Plugin demo.write.php cross site scripting
147833
Movies Plugin demo.mimeonly.php cross site scripting
147832
Infusionsoft Gravity Forms Plugin notAuto_test_ContactService_pauseCampaign.php cross site scripting
147831
Import Legacy Media Plugin demo.mimeonly.php cross site scripting
147830
Conversador Plugin cross site scripting [CVE-2014-4519]
147829
D-Link DWR-113 cross-site request forgery [CVE-2014-3136]
147828
Collabtive Access Control install.php privileges management
147827
Vivotek IP Camera authorization [CVE-2013-4985]
147826
AVTECH AVN801 DVR Administration Login Captcha improper authentication
🔒
147825
Hikvision DS-2CD7153-E improper authentication [CVE-2013-4976]
147824
Hikvision DS-2CD7153-E privileges management [CVE-2013-4975]
147823
Karotz API Session Token information disclosure [CVE-2013-4868]
147822
Electronic Arts Karotz Smart Rabbit Python Module privileges management
147821
Insteon Hub 2242-222 Web/API default permission [CVE-2013-4859]
147820
ReviewBoard unrestricted upload [CVE-2013-4796]
147819
Samsung Galaxy S3/Galaxy S4 SMS Text Message default permission
147818
Samsung Galaxy S3/Galaxy S4 SMS Text Message default permission
147817
Static HTTP Server http.ini buffer overflow
147816
NullSoft WinAmp gen_ff.dll release of reference [CVE-2013-4695]
🔒
147815
Xorbin Digital Flash Clock Extension xorAnalogClock.swf cross site scripting
147814
Xorbin Analog Flash Clock Extension xorAnalogClock.swf cross site scripting
147813
Sencha Connect connect.methodOverride cross site scripting
147812
SPBAS Business Automation Software index.php cross-site request forgery
147811
SPBAS Business Automation Software cross site scripting [CVE-2013-4664]
147810
Magnolia CMS improper authentication [CVE-2013-4621]
🔒
147809
Toshiba ConfigFree Utility CFProfile.exe out-of-bounds write
147808
thttpd Underflow out-of-bounds write [CVE-2007-0158]
147807
WordPress REST API class-wp-rest-posts-controller.php privileges management
147806
WordPress Protection Mechanism formatting.php wp_targeted_link_rel cross site scripting
147805
WordPress HTML5 kses.php wp_kses_bad_protocol input validation
147804
Citrix Application Delivery Controller/Gateway path traversal
147803
Swipe Checkout for WP e-Commerce Plugin test-plugin.php cross site scripting
147802
Ebay Feeds Plugin magpie_slashbox.php cross site scripting
147801
Easy Career Openings Plugin cross site scripting [CVE-2014-4523]
147800
Huawei USG9500 X.509 out-of-bounds write [CVE-2019-5275]
147799
Huawei USG9500 X.509 buffer overflow [CVE-2019-5274]
147798
Huawei USG9500 X.509 buffer overflow [CVE-2019-5273]
147797
Huawei USG9500 Integrity Check improper validation of integrity check value
147796
libsixel fromsixel.c image_buffer_resize out-of-bounds write
147795
libsixel fromsixel.c image_buffer_resize release of resource
147794
libsixel frompnm.c load_pnm operation after expiration
147793
UPX Mach-O File p_mach.cpp canUnpack out-of-bounds write
147792
matio mat5.c ReadNextStructField out-of-bounds read
147791
matio mat5.c Mat_VarRead5 resource consumption
147790
matio mat5.c ReadNextCell out-of-bounds read
147789
matio mat5.c Mat_VarReadNextInfo5 out-of-bounds read
147788
libmysofa dataobject.c readOHDRHeaderMessageDatatype out-of-bounds write
147787
GNU LibreDWG dwg.spec dwg_decode_LWPOLYLINE_private resource consumption
147786
GNU LibreDWG free.c dwg_free double free
147785
GNU LibreDWG dwg.spec decode_3dsolid resource consumption
147784
GNU LibreDWG dwg.spec dwg_decode_HATCH_private resource consumption
147783
GNU LibreDWG decode.c decode_R13_R2000 out-of-bounds read
147782
GNU LibreDWG decode.c resolve_objectref_vector use after free
147781
GNU LibreDWG dwg.spec dwg_decode_SPLINE_private resource consumption
147780
Archery Project Name Stored cross site scripting
147779
ezXML ezxml.c ezxml_parse_str null pointer dereference
147778
ezXML ezxml_char_content use after free
147777
ezXML XML File strchr out-of-bounds read
147776
Intelbras IWR 3000N JSON login input validation
147775
Intelbras IWR 3000N user cross-site request forgery
147774
Huawei MediaPad M5 Lite 10 input validation [CVE-2019-19398]
147773
JetBrains Ktor Framework cross site scripting [CVE-2019-19389]
147772
Waitress Proxy request smuggling [CVE-2019-16789]
147771
WordPress Block Editor cross site scripting [CVE-2019-16781]
147770
WordPress Block Editor cross site scripting [CVE-2019-16780]
147769
D-Link DIR-601 B1 improper authentication [CVE-2019-16327]
147768
D-Link DIR-601 B1 cross-site request forgery [CVE-2019-16326]
147767
GitLab Community Edition/Enterprise Edition Access Control authorization
🔒
147766
ircd-ratbox MONITOR Command memory corruption [CVE-2015-5290]
147765
Features Gem tmp File injection
147764
Belkin N900 Javascript Debugging improper authentication [CVE-2013-3088]
147763
Belkin F5D8236-4 Web Management Interface improper authentication
147762
W3 Super Cache Plugin Incomplete Fix CVE-2013-2009 escape output
🔒
147761
Java SE Virtual Machine information disclosure [CVE-2012-4420]
147760
sssd HBAC Rule improper authentication [CVE-2012-3462]
147759
NetworkManager AdHoc Mode missing authentication [CVE-2012-2736]
🔒
🔒
147758
pax-linux arch_get_unmapped_area_topdown resource consumption
147757
Athenz redirect [CVE-2019-6035]
147756
A-Blog CMS injection [CVE-2019-6034]
147755
A-Blog CMS cross site scripting [CVE-2019-6033]
147754
NTV News24 X.509 Certificate Validation certificate validation
147753
KINZA RSS Reader cross site scripting [CVE-2019-6031]
147752
Custom Body Class cross-site request forgery [CVE-2019-6030]
147751
Custom Body Class cross site scripting [CVE-2019-6029]
147750
WP Spell Check cross-site request forgery [CVE-2019-6027]
147749
MOTEX LanScope Cat Client privileges management [CVE-2019-6026]
147748
Movable Type redirect [CVE-2019-6025]
147747
Rakuma App insufficiently protected credentials [CVE-2019-6024]
147746
Cybozu Office Access Restriction privileges management [CVE-2019-6023]
147745
Cybozu Office Customapp path traversal
147744
Library Information Management System LIMEDIO redirect [CVE-2019-6021]
147743
PowerCMS redirect [CVE-2019-6020]
147742
STAMP Workbench Installer untrusted search path [CVE-2019-6019]
147741
NetCommons cross site scripting [CVE-2019-6018]
147740
REMISE Payment Module information disclosure [CVE-2019-6017]
147739
REMISE Payment Module cross site scripting [CVE-2019-6016]
147738
D-Link DBA-1510P Web User Interface os command injection [CVE-2019-6014]
147737
D-Link DBA-1510P Command Line Interface os command injection
147736
wpDataTables Lite sql injection [CVE-2019-6012]
147735
wpDataTables Lite cross site scripting [CVE-2019-6011]
147734
Yokogawa Exaopc Unquoted Search Path unquoted search path [CVE-2019-6008]
147733
Pandora FMS Alert System authorization [CVE-2019-19681]
147732
ListingPro Theme Listing Submit Page Persistent cross site scripting
147731
ListingPro Theme Listing Submit Page Persistent cross site scripting
147730
ListingPro Theme Reflected cross site scripting [CVE-2019-19540]
147729
TigerVNC readSetCursor stack-based overflow
147728
TigerVNC decodeRect heap-based overflow
147727
TigerVNC FilterGradient heap-based overflow
147726
TigerVNC CopyRectDecoder heap-based overflow
147725
TigerVNC ZRLEDecoder memory corruption [CVE-2019-15691]
147724
BullGuard Premium Protection Symlink toctou [CVE-2019-20000]
147723
Halo Template server-side request forgery [CVE-2019-19999]
147722
Xiuno BBS token.php xml external entity reference
147721
Email Subscribers / Newsletters File Download information disclosure
147720
Email Subscribers / Newsletters Campaign privileges management
147719
Fast Velocity Minify fastvelocity_min_files Path information disclosure
147718
Email Subscribers / Newsletters unknown vulnerability [CVE-2019-19982]
147717
Email Subscribers / Newsletters Plugin Settings cross-site request forgery
147716
Email Subscribers / Newsletters Administrative Dashboard wp_ajax privileges management
147715
WP Maintenance Maintenance Mode cross site scriting [CVE-2019-19979]
147714
libESMTP ntlmstruct.c ntlm_build_type_2 out-of-bounds read
147713
UPC Connect Box EuroDOCSIS 3.0 Voice Gateway Administration Page setter.xml cleartext transmission
147712
CrushFTP redirect [CVE-2018-18288]
147711
NVIDIA GeForce Experience GameStream authorization [CVE-2019-5702]
147710
Linux Kernel cpia2_v4l.c cpia2_exit use after free
147709
Linux Kernel Port Connection sas_discover.c race condition
147708
wolfSSL DAS information disclosure [CVE-2019-19963]
147707
wolfSSL RSA wc_SignatureGenerateHash risky encryption
147706
wolfSSL wc_ecc_mulmod_ex information disclosure
147705
libIEC61850 string_utilities.c StringUtils_createStringFromBuffer resource consumption
147704
libIEC61850 mms_access_result.c getNumberOfElements out-of-bounds read
147703
libxml2 parser.c xmlParseBalancedChunkMemoryRecover release of resource
147702
Signal Desktop wmic.exe privileges management
147701
SQLite Update zipfile.c zipfileUpdate unrestricted upload
147700
SQLite Error expr.c sqlite3WindowRewrite exceptional condition
147699
SQLite SELECT DISTINCT select.c flattenSubquery null pointer dereference
147698
Trend Micro Antivirus for Mac 2019 link following [CVE-2019-19695]
147697
Reliable Controls MACH-ProWebCom Link cross site scripting [CVE-2019-18249]
147696
mongo-express Endpoint toBSON code injection
147695
Fermax Outdoor Panel DTMF Receiver authorization [CVE-2017-16778]
147694
GraphicsMagick pict.c EncodeImage out-of-bounds read
147693
ImageMagick png.c MngInfoDiscardObject use after free
147692
GraphicsMagick miff.c ImportRLEPixels out-of-bounds write
147691
GraphicsMagick error.c ThrowLoggedException use after free
147690
ImageMagick png.c WritePNGImage out-of-bounds read
147689
ImageMagick sgi.c WriteSGIImage out-of-bounds write
147688
Check Point Endpoint Security Client Log File link following
147687
upload-image-with-ajax File Upload unrestricted upload [CVE-2019-8293]
147686
SonicWALL Email Security Appliance improper authorization [CVE-2019-7489]
147685
SonicWALL Email Security Appliance Database credentials management
147684
F5 BIG-IP/BIG-IQ UCS Backup File information disclosure [CVE-2019-6688]
147683
F5 BIG-IP ASM Cloud Security Services Profile improper authentication
147682
F5 BIG-IP Traffic Management Microkernel input validation [CVE-2019-6686]
147681
F5 BIG-IP iRule privileges management [CVE-2019-6685]
147680
F5 BIG-IP Virtual Clustered Multiprocessing input validation
147679
F5 BIG-IP Virtual Server FastL4 Profile resource consumption
147678
F5 BIG-IP ASM Security Policy resource consumption [CVE-2019-6682]
147677
F5 BIG-IP Multicast Forwarding Cache release of resource [CVE-2019-6681]
147676
F5 BIG-IP FastL4 Virtual Server input validation [CVE-2019-6680]
147675
F5 BIG-IP SCP link following [CVE-2019-6679]
147674
F5 BIG-IP Packet Filter input validation [CVE-2019-6678]
147673
F5 BIG-IP TMM input validation [CVE-2019-6677]
147672
F5 BIG-IP TMM input validation [CVE-2019-6676]
147671
Forcepoint NGFW Security Management Center Configuration Database type conversion
147631
VMware Workstation/Horizon View Agent DLL Loader untrusted search path
147630
Huawei Smart Phone buffer overflow [CVE-2019-5276]
147629
Huawei OceanStor SNS3096 Operation information disclosure [CVE-2019-5267]
147628
Huawei P30 Share input validation [CVE-2019-5266]
147627
Huawei P30 Share information disclosure [CVE-2019-5265]
147626
Linux Kernel IAPP Location Update input validation [CVE-2019-5108]
147625
Debian-edu-config ACL privileges management [CVE-2019-3467]
147624
ZTE ZXCLOUD GoldenData VAP insufficiently protected credentials
147623
ZTE ZXCLOUD GoldenData VAP information disclosure [CVE-2019-3430]
147622
ZTE ZXCLOUD GoldenData VAP Log File log file [CVE-2019-3429]
147621
Linux Kernel USB Device kvaser_usb_leaf.c information disclosure
147620
libIEC61850 ber_decode.c BerDecoder_decodeUint32 out-of-bounds read
147619
Red Hat Ceph Storage RADOS Gateway Daemon input validation [CVE-2019-19337]
147618
F5 BIG-IP/BIG-IQ/iWorkflow/Enterprise Manager TMOS Shell privileges management
147617
F5 BIG-IP APM Log log file [CVE-2019-19150]
147616
virglrenderer Command vrend_renderer.c vrend_renderer_transfer_write_iov out-of-bounds write
147615
virglrenderer Command vrend_renderer.c vrend_blit_need_swizzle out-of-bounds read
147614
virglrenderer vrend_renderer.c vrend_renderer_transfer_write_iov out-of-bounds write
147613
virglrenderer Command vrend_renderer.c null pointer dereference
147612
PLC Editor Project File stack-based overflow [CVE-2019-18236]
147611
Equinox Control Expert sql injection [CVE-2019-18234]
147610
Orckestra C1 CMS Deserialization Composite.dll EntityTokenSerializer deserialization
147609
Apache Tomcat FORM Authentication session fixiation [CVE-2019-17563]
147608
Open TFTP Server SP Error Packet logMess out-of-bounds write
147607
Open TFTP Server MT Error Packet logMess out-of-bounds write
147606
Apache Tomcat JMX Remote Lifecycle Listener insufficiently protected credentials
147605
TFTP Server MT Error Packet logMess format string
147604
TFTP Server SP Error Packet logMess format string
147603
TFTP Server SP Error Packet out-of-bounds write [CVE-2018-10387]
147602
libIEC61850 mms_access_result.c MmsValue_decodeMmsData out-of-bounds write
147601
libIEC61850 mms_value.c MmsValue_newOctetString integer overflow
147600
Malwarebytes AdwCleaner DLL untrusted search path [CVE-2019-19929]
147599
SQLite Incomplete Fix CVE-2019-19880 select.c multiSelect null pointer dereference
147598
Linux Kernel Slice fair.c resource consumption
147597
sa-exim CF File Greylisting.pm os command injection
147596
PHP EXIF Extension exif_read_data out-of-bounds read
147595
PHP Header mail double free
147594
PHP EXIF Extension exif_read_data out-of-bounds read
147593
PHP bcmath out-of-bounds read [CVE-2019-11046]
147592
PHP Filename DirectoryIterator null termination
147591
PHP Filename link null termination
147590
IBM Financial Transaction Manager Web UI cross site scriting
147589
IBM Financial Transaction Manager Session missing encryption
147588
IBM Financial Transaction Manager clickjacking [CVE-2019-4742]
147587
IBM Financial Transaction Manager cross-site request forgery
147586
IBM Cognos Analytics Web UI cross site scriting [CVE-2019-4555]
147585
IBM Cognos Analytics cross-site request forgery [CVE-2019-4231]
147584
handlebars injection [CVE-2019-19919]
147583
Lout z02.c srcnext out-of-bounds write
147582
Lout z39.c StringQuotedWord buffer overflow
147581
NeuVector Active Directory Authentication weak password [CVE-2019-19747]
147580
CA Client Automation File Access Local Privilege Escalation [CVE-2019-19231]
147579
Log4j Deserialization SocketServer deserialization
147578
NetHack Configuration File privileges management [CVE-2019-16787]
147577
Waitress HTTP Header request smuggling [CVE-2019-16786]
147576
Waitress Split request smuggling [CVE-2019-16785]
147575
Xiaomi DGNWG03LM/ZNCZ03LM/MCCGQ01LM/WSDCGQ01LM/RTCGQ01LM Zigbee input validation
147574
Xiaomi DGNWG03LM/ZNCZ03LM/MCCGQ01LM/WSDCGQ01LM/RTCGQ01LM Zigbee input validation
147573
Xiaomi DGNWG03LM/ZNCZ03LM/MCCGQ01LM/WSDCGQ01LM/RTCGQ01LM Zigbee authorization
147572
Asus HG100/WS-101/TS-101 ZigBee Pro input validation [CVE-2019-15912]
147571
Asus HG100/WS-101/TS-101 ZigBee Pro cleartext transmission [CVE-2019-15911]
147570
Asus HG100/WS-101/TS-101 ZigBee Pro input validation [CVE-2019-15910]
147569
GitLab Community Edition/Enterprise Edition resource consumption
147568
IBM Cognos Business Intelligence cross-site request forgery [CVE-2018-1934]
147567
Midori Browser Content Security Policy cross site scripting [CVE-2019-19916]
147566
phpMyChat-Plus Password Reset URL pass_reset.php Reflected cross site scripting
147565
3S-Smart CODESYS SP Realtime NT null pointer dereference [CVE-2019-19789]
147564
Trend Micro Security 2020 information disclosure [CVE-2019-19693]
147563
Trend Micro Apex One Product Console cross site scripting [CVE-2019-19692]
147562
Trend Micro Apex One/OfficeScan XG Development Tool Credentials insufficiently protected credentials
147561
Philips Veradius Unity inadequate encryption [CVE-2019-18263]
147560
Palo Alto PAN-OS Log Forwarding Card Remote Code Execution [CVE-2019-17440]
147559
Swagger-UI Key Name cross site scripting [CVE-2016-1000229]
147558
negotiator Regular Expression resource consumption [CVE-2016-1000022]
🔒
147557
GnuTLS CBC Mode information exposure [CVE-2015-8313]
🔒
🔒
147556
gnome-keyring gnome_keyring_lock_all_sync input validation
147555
CUPS Localhost cupsd.conf authorization
🔒
🔒
147554
LibreOffice/OpenOffice Embedded Content input validation [CVE-2012-5639]
147553
ecryptfs-utils suid Helper input validation [CVE-2012-3409]
🔒
🔒
147552
Adobe ColdFusion Permission default permission [CVE-2019-8256]
147551
Brackets injection [CVE-2019-8255]
147550
Adobe Photoshop CC memory corruption [CVE-2019-8254]
147549
Adobe Photoshop CC memory corruption [CVE-2019-8253]
147548
301 Redirects - Easy Redirect Manager Plugin privileges management
147547
MediaWiki MinervaNeue Skin cross site scripting [CVE-2019-19910]
147546
Public Knowledge Project pkp-lib OJS Report Generator deserialization
147545
Kopano Groupware Core freebusyutil.cpp HrAddFBBlock buffer overflow
147544
cyrus-sasl OpenLDAP common.c _sasl_add_string out-of-bounds write
147543
NetHack Configuration File buffer overflow [CVE-2019-19905]
147542
Backdrop CMS File Type Description cross site scripting [CVE-2019-19903]
147541
Backdrop CMS File Upload information disclosure [CVE-2019-19902]
147540
Backdrop CMS Block Description cross site scripting [CVE-2019-19901]
147539
Backdrop CMS Content Type cross site scripting [CVE-2019-19900]
147538
Ansible Tower websocket Password information exposure
147537
Ansible Tower Database Backup tower Credentials file access
147536
Ansible Tower RabbitMQ Management Interface information disclosure
147535
sudo privileges management [CVE-2019-19234]
147534
sudo Runas privileges management [CVE-2019-19232]
147533
Plex Media Server Camera Upload unrestricted upload [CVE-2019-19141]
147532
Lansweeper Web Console cross site scripting [CVE-2019-18955]
147531
CloudVision Portal API Password insufficiently protected credentials
147530
CloudVision Portal CVP API privileges management [CVE-2019-18181]
147529
Eclipse Che Workspace cross-site request forgery [CVE-2019-17633]
147528
JS JOBS FREE Extension custormfields.php dataForDepandantField sql injection
147527
Beckhoff Embedded Windows PLC ADS Protocol input validation [CVE-2019-16871]
147526
Odoo Community/Enterprise Access Control access control [CVE-2019-11780]
147525
Cloud Foundry Cloud Controller API Global Service Broker information disclosure
147524
Kibana Region Map cross site scripting [CVE-2019-7621]
147523
SonicOS SSLVPN NACagent Installation unquoted search path [CVE-2019-7487]
147522
SonicWALL SMA100 CGI Script viewcacert code injection
147521
SonicWALL SMA100 CGI Script DEARegister buffer overflow
147520
SonicWALL SMA100 CGI Script viewcacert sql injection
147519
SonicWALL SMA100 CGI Script handleWAFRedirect path traversal
147518
SonicWALL SMA100 libSys.so stack-based overflow
147517
GitLab Enterprise Edition Access Control access control [CVE-2019-5487]
147516
GitLab Community Edition/Enterprise Edition Salesforce Login authentication bypass
147515
GitLab Community Edition/Enterprise Edition Project Archive authorization
147514
WAGO PFC100/PFC200 iocheckd Service buffer overflow [CVE-2019-5081]
147513
WAGO PFC100/PFC200 iocheckd Service missing authentication [CVE-2019-5080]
147512
WAGO PFC100/PFC200 iocheckd Service out-of-bounds write [CVE-2019-5079]
147511
WAGO PFC100/PFC200 iocheckd Service missing authentication [CVE-2019-5078]
147510
WAGO PFC100/PFC200 iocheckd Service missing authentication [CVE-2019-5077]
147509
WAGO PFC100/PFC200 Command Line Utility memory corruption [CVE-2019-5075]
147508
WAGO PFC100/PFC200 iocheckd Service buffer overflow [CVE-2019-5074]
147507
WAGO PFC100/PFC200 iocheckd Service information disclosure [CVE-2019-5073]
147506
Pebble Templates Protection Mechanism getClass input validation
147505
Humax Wireless Voice Gateway HGB10R-2 insufficiently protected credentials
147504
Humax Wireless Voice Gateway HGB10R-2 Backup File backupsettings.conf cleartext transmission
147503
ffjpeg jfif.c jfif_decode divide by zero
147502
ffjpeg bitstr.c bitstr_tell null pointer dereference
147501
Django Password Reset password recovery [CVE-2019-19844]
147500
Opera Web Browser Sandbox origin validation [CVE-2019-19788]
147499
Singularity Permission .singularity default permission
147498
Trend Micro Mobile Security weak password [CVE-2019-19690]
147497
Trend Micro HouseCall for Home Networks DLL untrusted search path
147496
Trend Micro HouseCall for Home Networks DLL privileges management
147495
ABB PB610 Panel Builder 600 HMISimulator unknown vulnerability
147494
ABB PB610 Panel Builder 600 HMIStudio Local Privilege Escalation
147493
ABB PB610 Panel Builder 600 HMISimulator input validation [CVE-2019-18995]
147492
ABB PB610 Panel Builder 600 HMIStudio input validation [CVE-2019-18994]
147491
Zoho ManageEngine ADSelfService Plus redirect [CVE-2019-18781]
147490
RSA Identity Governance Session Local Privilege Escalation [CVE-2019-18573]
147489
RSA Identity Governance JMX Agent missing authentication [CVE-2019-18572]
147488
RSA Identity Governance My Access Live Module Reflected cross site scripting
147487
GE S2020 Fast Switch 61850 Reflected cross site scripting [CVE-2019-18267]
147486
Pronestor Planner Outlook Add-in PronestorHealthMonitor.exe privileges management
147485
Rack Session timing discrepancy [CVE-2019-16782]
147484
http_server path traversal [CVE-2019-15600]
147483
tree-kill code injection [CVE-2019-15599]
147482
treekill code injection [CVE-2019-15598]
147481
node-df code injection [CVE-2019-15597]
147480
statics-server path traversal [CVE-2019-15596]
147479
GitLab Community Edition/Enterprise Edition Access Control access control
147478
GitLab Community Edition/Enterprise Edition Clone access control
147477
GitLab Community Edition/Enterprise Edition Pipeline insertion of sensitive information into sent data
147476
GitLab Community Edition/Enterprise Edition Project Milestone information disclosure
147475
GitLab Community Edition/Enterprise Edition GraphQL Endpoint information disclosure
147474
GitLab Community Edition/Enterprise Edition API command injection
147473
Atlassian Confluence Server/Confluence Data Center Previews Plugin dynamically-managed code resources
147472
Git Clone input validation [CVE-2019-1387]
147471
HPE UIoT information disclosure [CVE-2019-11995]
147470
Intel CSME/TXE/Detection Tool Access Control privileges management
147469
Intel AMT Subsystem cross site scripting [CVE-2019-11132]
147468
Intel AMT Subsystem privileges management [CVE-2019-11131]
147467
Intel CSME/TXE Subsystem improper authentication [CVE-2019-11110]
147466
Intel SPS Subsystem denial of service [CVE-2019-11109]
147465
Intel CSME Subsystem input validation [CVE-2019-11108]
147464
Intel AMT Subsystem input validation [CVE-2019-11107]
147463
Intel CSME/TXE Subsystem session expiration [CVE-2019-11106]
147462
Intel CSME Subsystem privileges management [CVE-2019-11105]
147461
Intel CSME/TXE input validation [CVE-2019-11104]
147460
Intel CSME Firmware Update input validation [CVE-2019-11103]
147459
Intel DAL/CSME/TXE input validation [CVE-2019-11102]
147458
Intel CSME/TXE Subsystem input validation [CVE-2019-11101]
147457
Intel AMT Subsystem input validation [CVE-2019-11100]
147456
Intel Management Engine Consumer Driver Directory Permission default permission
147455
Intel AMT Subsystem input validation [CVE-2019-11088]
147454
Intel CSME/TXE Subsystem input validation [CVE-2019-11087]
147453
Intel AMT Subsystem input validation [CVE-2019-11086]
147452
Intel CSME/TXE Subsystem out-of-bounds write [CVE-2019-0169]
147451
Intel CSME/TXE input validation [CVE-2019-0168]
147450
Intel AMT input validation [CVE-2019-0166]
147449
Intel CSME input validation [CVE-2019-0165]
147448
Intel AMT input validation [CVE-2019-0131]
147447
Apache Xerces-C XML Parser use after free [CVE-2018-1311]
147446
Restlet Endpoint xml external entity reference [CVE-2012-2656]
147444
Apple macOS Web Page History information disclosure
147443
Apple iCloud memory corruption [CVE-2019-8763]
147442
Apple iTunes memory corruption [CVE-2019-8763]
147441
Apple Safari memory corruption [CVE-2019-8763]
147440
Apple tvOS memory corruption [CVE-2019-8763]
147439
Apple iCloud Text File out-of-bounds read [CVE-2019-8745]
147438
Apple iTunes Text File out-of-bounds read [CVE-2019-8745]
147437
Apple tvOS Text File out-of-bounds read [CVE-2019-8745]
147436
Apple iCloud use after free [CVE-2019-8735]
147435
Apple iTunes use after free [CVE-2019-8735]
147434
Apple iCloud memory corruption [CVE-2019-8733]
147433
Apple iTunes memory corruption [CVE-2019-8733]
147432
Apple iCloud memory corruption [CVE-2019-8726]
147431
Apple iTunes memory corruption [CVE-2019-8726]
147430
Apple iCloud State Management Universal cross site scripting
147429
Apple iTunes State Management Universal cross site scripting
147428
Apple tvOS Kernel memory corruption [CVE-2019-8717]
147427
Apple iCloud use after free [CVE-2019-8707]
147426
Apple iTunes use after free [CVE-2019-8707]
147425
Apple iClouds State Management Universal cross site scripting
147424
Apple iTunes State Management Universal cross site scripting
147423
SwiftNIO SSL TLS stack-based overflow [CVE-2019-8849]
147422
Apple Xcode File memory corruption [CVE-2019-8806]
147421
Apple Xcode File memory corruption [CVE-2019-8800]
147420
Shazam App URL injection [CVE-2019-8792]
147419
Shazam App URL Scheme redirect [CVE-2019-8791]
147418
Apple macOS State Management memory corruption [CVE-2019-8781]
147417
Apple macOS Encrypted PDF inadequate encryption [CVE-2019-8772]
147416
Apple macOS Document permission assignment [CVE-2019-8770]
147415
Apple iOS/iPadOS Web Page History information disclosure
147414
Apple macOS History information disclosure [CVE-2019-8768]
147413
Apple iOS/iPadOS memory corruption [CVE-2019-8763]
147412
Apple macOS null pointer dereference [CVE-2019-8758]
147411
Apple macOS User Preferences race condition [CVE-2019-8757]
147410
Apple macOS Kernel Kernel Memory null pointer dereference
147409
Apple macOS Kernel null pointer dereference [CVE-2019-8748]
147408
Apple macOS Text File buffer overflow [CVE-2019-8745]
147407
Apple tvOS use after free [CVE-2019-8735]
147406
Apple tvOS memory corruption [CVE-2019-8733]
147405
Apple macOS Search Result information disclosure [CVE-2019-8730]
147404
Apple tvOS memory corruption [CVE-2019-8726]
147403
Apple tvOS State Management Universal cross site scripting
147402
Apple macOS Kernel memory corruption [CVE-2019-8717]
147401
Apple tvOS use after free [CVE-2019-8707]
147400
Apple macOS memory corruption [CVE-2019-8701]
147399
Apple Texture Analytics Data memory corruption [CVE-2019-8632]
147398
Apple tvOS State Management Universal cross site scripting
147397
Apple watchOS Passcode information disclosure [CVE-2019-8548]
147396
Apple Shortcuts Sandbox external reference [CVE-2019-7290]
147395
Apple Shortcuts input validation [CVE-2019-7289]
147394
shadowsocks-libev Network Packet information disclosure [CVE-2019-5152]
147393
IBM Planning Analytics TM1 Script privileges management [CVE-2019-4716]
147392
IBM API Connect missing encryption [CVE-2019-4609]
147391
HCL AppScan Source Web UI cross site scripting [CVE-2019-4388]
147390
Qualcomm Snapdragon Auto Event Argument buffer overflow [CVE-2019-2304]
147389
Qualcomm Snapdragon Auto RPU Write improper authentication [CVE-2019-2274]
147388
Qualcomm Snapdragon Auto integer overflow [CVE-2019-2242]
147387
shadow privileges management [CVE-2019-19882]
147386
SQLite ORDER BY window.c exprListAppendList null pointer dereference
147385
Tautulli Media Server shutdown cross-site request forgery
147384
Xerox AltaLink C8035 cross-site request forgery [CVE-2019-19832]
147383
SolarWinds Serv-U FTP Server cross site scripting [CVE-2019-19829]
147382
D-Link DIR-615 Account Configuration Page cross site scripting
147381
Asus ATK AsLdrSrv.exe input validation
147380
GNU Bash shell.c disable_priv_mode dropped privileges
147379
HPE OneView for VMware vCenter cross site scripting [CVE-2019-11992]
147378
TRENDnet TEW-651BR/TEW-652BRP/TEW-652BRU get_set.ccp memory corruption
147377
TRENDnet TEW-651BR/TEW-652BRP/TEW-652BRU get_set.ccp os command injection
147376
Qualcomm Snapdragon Auto out-of-bounds write [CVE-2019-10614]
147375
Qualcomm Snapdragon Auto buffer overflow [CVE-2019-10607]
147374
Qualcomm Snapdragon Auto IEEE 802.11 Header buffer overflow [CVE-2019-10605]
147373
Qualcomm Snapdragon Auto WMI Message array index [CVE-2019-10601]
147372
Qualcomm Snapdragon Auto Netlink CB Callback null pointer dereference
147371
Qualcomm Snapdragon Auto IBSS Connection Mode buffer overflow
147370
Qualcomm Snapdragon Auto Message input validation [CVE-2019-10595]
147369
Qualcomm Snapdragon Auto Debug Queue out-of-bounds read [CVE-2019-10584]
147368
Qualcomm Snapdragon Auto Video Driver integer overflow [CVE-2019-10572]
147367
Qualcomm Snapdragon Auto EEPROM out-of-bounds read [CVE-2019-10564]
147366
Qualcomm Snapdragon Auto Wireless Driver out-of-bounds read [CVE-2019-10557]
147365
Qualcomm Snapdragon Auto memory corruption [CVE-2019-10544]
147364
Qualcomm Snapdragon Auto FW Response integer overflow [CVE-2019-10537]
147363
Qualcomm Snapdragon Auto double free [CVE-2019-10536]
147362
Qualcomm Snapdragon Auto SIB Read out-of-bounds write [CVE-2019-10525]
147361
Qualcomm Snapdragon Auto iWLAN use after free [CVE-2019-10518]
147360
Qualcomm Snapdragon Auto Thread double free [CVE-2019-10517]
147359
Qualcomm Snapdragon Auto MM out-of-bounds read [CVE-2019-10516]
147358
Qualcomm Snapdragon Auto SPDM Command null pointer dereference
147357
Qualcomm Snapdragon Auto MT Secondary PDP Request memory corruption
147356
Qualcomm Snapdragon Auto SMS OTA Message out-of-bounds read [CVE-2019-10487]
147355
Qualcomm Snapdragon Auto information disclosure [CVE-2019-10482]
147354
Qualcomm Snapdragon Auto WMI FW Event array index [CVE-2019-10481]
147353
Qualcomm Snapdragon Auto WMI Firmware Event buffer overflow [CVE-2019-10480]
147352
Qualcomm Snapdragon Auto Broadcast qdf_nbuf_trim_tail buffer overflow
147351
JBoss AS 7 Community Release Security Context Propagation privileges management
147350
SonicWALL SMA100 sql injection [CVE-2019-7481]
147349
elog Proxy confused deputy [CVE-2019-3996]
147348
elog null pointer dereference [CVE-2019-3995]
147347
elog retrieve_url use after free
147346
elog Credentials information disclosure [CVE-2019-3993]
147345
elog Configuration File information disclosure [CVE-2019-3992]
147344
Joomla CMS sql injection [CVE-2019-19846]
147343
Joomla CMS Access Check Path path traversal
147342
Zulip Server Image Thumbnail redirect [CVE-2019-19775]
147341
Alt-N MDaemon Attachment cross site scripting [CVE-2019-19497]
147340
Linux Kernel io-wq.c privileges management
147339
Advantech DiagAnywhere Server stack-based overflow [CVE-2019-18257]
147338
TIBCO Spotfire Analytics Platform for AWS Marketplace Spotfire Library Reflected cross site scriting
147337
TIBCO Spotfire Analytics Platform for AWS Marketplace Data Access Layer Credentials information disclosure
147336
TIBCO Spotfire Analytics Platform for AWS Marketplace Data Access Layer information disclosure
147335
TIBCO Spotfire Analyst privileges management [CVE-2019-17334]
147334
JIRA WorkflowResource authorization
147333
Micro Focus Arcsight Logger cross-site request forgery [CVE-2019-11657]
147332
SAP Treasury/Risk Management authorization [CVE-2019-0384]
147331
SAP Treasury/Risk Management Transaction Management authorization
147330
Linux Kernel Thread sendmsg privileges management
147329
TYPO3 QueryGenerator sql injection
147328
TYPO3 Deserialization QueryView privileges management
147327
TYPO3 Extension Manager path traversal [CVE-2019-19848]
147326
Libspiro spiro.c spiro_to_bpath0 out-of-bounds write
147325
SPIP medias input validation
147324
Linux Kernel btrfs Filesystem volumes.c __btrfs_map_block out-of-bounds write
147323
Linux Kernel f2fs Filesystem Image recovery.c null pointer dereference
147322
Linux Kernel f2fs Filesystem Image __remove_dirty_segment out-of-bounds write
147321
Linux Kernel btrfs Filesystem mutex.c __mutex_lock use after free
147320
Contao Back End unrestricted upload [CVE-2019-19745]
147319
Contao Output escape output [CVE-2019-19714]
147318
Contao Permission default permission [CVE-2019-19712]
147317
Ivanti Workspace Control Managed Application Security default permission
147316
verot.net class.upload File Extension class.upload.php unrestricted upload
147315
Nalpeiron Licensing Service NLSSRV32.EXE permission assignment
147314
Simplifile RecordFusion information disclosure [CVE-2019-19264]
147313
Divisa Proxia Suite/SparkSpace/Proxia PHR Java Deserialization deserialization
147312
Barco ClickShare Button R9861500D01 TLS Connection missing encryption
147311
Barco ClickShare Button R9861500D01 Credential Management insufficiently protected credentials
147310
Barco ClickShare Button R9861500D01 DLL Loader Clickshare_For_Windows.exe untrusted search path
147309
Barco ClickShare Huddle CS-100/ClickShare Huddle CS-200 Credential Management missing encryption
147308
Barco ClickShare Button R9861500D01 Integrity Check input validation
147307
Acer Quick Access QAAdminAgent.exe untrusted search path
147306
Alauda Kubernetes Support Plugin improper authorization [CVE-2019-16576]
147305
Alauda Kubernetes Support Plugin cross-site request forgery [CVE-2019-16575]
147304
Alauda DevOps Pipeline Plugin Permission Check improper authorization
147303
Alauda DevOps Pipeline Plugin cross-site request forgery [CVE-2019-16573]
147302
Weibo Plugin Global Configuration Credentials credentials storage
147301
RapidDeploy Plugin Permission Check improper authorization [CVE-2019-16571]
147300
RapidDeploy Plugin cross-site request forgery [CVE-2019-16570]
147299
Mantis Plugin cross-site request forgery [CVE-2019-16569]
147298
SCTMExecutor Plugin Global Configuration Credentials cleartext transmission
147297
Team Concert Plugin Permission Check Credentials improper authorization
147296
Team Concert Plugin Permission Check improper authorization [CVE-2019-16566]
147295
Team Concert Plugin cross-site request forgery [CVE-2019-16565]
147294
Pipeline Aggregator View Plugin Stored cross site scripting [CVE-2019-16564]
147293
Mission Control Plugin Escape Job Stored cross site scripting
147292
buildgraph-view Plugin Stored cross site scripting [CVE-2019-16562]
147291
WebSphere Deployer Plugin SSL/TLS Certificate Validator certificate validation
147290
WebSphere Deployer Plugin cross-site request forgery [CVE-2019-16560]
147289
WebSphere Deployer Plugin Permission Check improper authorization
147288
Spira Importer Plugin TLS Certificate Validation certificate validation
147287
Redgate SQL Change Automation Plugin Configuration File config.xml Credentials credentials storage
147286
Rundeck Plugin Configuration File config.xml Credentials credentials storage
147285
Build Failure Analyzer Plugin Regular Expression resource consumption
147284
Build Failure Analyzer Plugin Regular Expression improper authorization
147283
Build Failure Analyzer Plugin Regular Expression cross-site request forgery
147282
Gerrit Trigger Plugin Permission Check improper authorization
147281
Gerrit Trigger Plugin cross-site request forgery [CVE-2019-16551]
147280
Maven Release Plugin Connection Test Form cross-site request forgery
147279
Maven Release Plugin XML Parser xml external entity reference
147278
CentOS-WebPanel.com CentOS Web Panel sess_xxxxxx insufficiently protected credentials
147277
Application Links ListEntityLinksServlet default permission
147276
CentOS-WebPanel.com CentOS Web Panel tmp insufficiently protected credentials
147275
Atlassian Crowd Demo Application cross-site request forgery [CVE-2017-18107]
147274
Docker Engine Manifest input validation [CVE-2014-8179]
🔒
🔒
147273
Docker Engine Image Layer Cache Poisoning input validation
🔒
🔒
147272
ownCloud sharing.php cross site scripting
🔒
147271
Mahara cross site scripting [CVE-2012-2237]
🔒
🔒
147270
Huawei AR3600 information disclosure [CVE-2019-5259]
147269
IBM MQ/MQ Appliance Message denial of service [CVE-2019-4560]
147268
IBM API Connect Developer Portal Password information disclosure
147267
Views Dynamic Fields Module views_handler_filter_dynamic_fields.inc code injection
147266
Nitro Free PDF Reader Unicode npdf.dll PDAnnotHandlerDestroyData2+0xa08a out-of-bounds read
147265
Cyrus IMAP Sieve Script Command lmtp_sieve.c autosieve_createfolder input validation
147264
D-Link DIR-615 Portal input validation [CVE-2019-19743]
147263
Roxy Fileman RENAMEFILE path traversal
147262
Rumpus FTP Web File Manager Login Page Reflected cross site scripting
147261
knot-resolver DNS Reply algorithmic complexity [CVE-2019-19331]
147260
Barco ClickShare Button R9861500D01 Certificate Private Key information disclosure
147259
Bridge ClickShare Button R9861500D01 Dongre Bridge Program os command injection
147258
Barco ClickShare Button R9861500D01 Debug Interface insufficiently protected credentials
147257
Barco ClickShare Button R9861500D01 JTAG input validation [CVE-2019-18827]
147256
Barco ClickShare Button R9861500D01 Certificate Validation certificate validation
147255
Dell XPS 13 2-in-1 BIOS Configuration config [CVE-2019-18579]
147254
Omron PLC CJ/PLC CS Lock Remote Code Execution [CVE-2019-18269]
147253
Omron PLC CS/PLC CJ/PLC NJ Brute Force excessive authentication
147252
Omron PLC CJ/PLC CS authentication spoofing [CVE-2019-18259]
147251
Trend Micro Deep Security Service Quick Setup Cloud Formation Template authorization
147250
excon Gem Persistent Connection resource control [CVE-2019-16779]
147249
TensorFlow UnsortedSegmentSum heap-based overflow
147248
Intel NUC Firmware out-of-bounds write [CVE-2019-14612]
147247
Intel NUC Firmware integer overflow [CVE-2019-14611]
147246
Intel NUC Access Control privileges management [CVE-2019-14610]
147245
Intel NUC Firmware Validation input validation [CVE-2019-14609]
147244
Intel NUC memory corruption [CVE-2019-14608]
147243
Intel CPU unusual condition [CVE-2019-14607]
147242
Intel SCS Platform Discovery Utility Installer default permission
147241
Intel Quartus Prime Pro Edition FPGA Kernel Driver null pointer dereference
147240
Intel Quartus Prime Pro Edition License Server default permission
147239
Control Center-I privileges management [CVE-2019-14599]
147238
Intel RST default permission [CVE-2019-14568]
147237
Omron PLC CJ/PLC CS authentication replay [CVE-2019-13533]
147236
SolarWinds Serv-U FTP Server Web UI Stored cross site scripting
147235
SolarWinds Serv-U FTP Server Web UI injection [CVE-2019-13181]
147234
Apache Incubator Superset SQLLab information disclosure [CVE-2019-12414]
147233
Apache Incubator Superset Database Metadata information disclosure
147232
Intel FPGA SDK for OpenCL Pro Edition Kernel Driver unusual condition
147231
Intel CPU unusual condition [CVE-2019-11157]
147230
Intel Ethernet I218 Adapter Driver Memory Protection information disclosure
147229
Yarn Package Installer link following [CVE-2019-10773]
147228
Intel Network Adapter Linux Administrative Tools privileges management
147227
Intel Dynamic Platform/Thermal Framework default permission [CVE-2019-0134]
147226
Puppet Agent SSL Certificate Valu certificate validation [CVE-2018-11751]
147225
Linux Kernel timer.c snd_timer_close_locked use after free
147224
Xfig fig2dev read.c read_colordef out-of-bounds write
147223
python-requests-Kerberos Mutual Authentication improper authentication
🔒
147222
ImageMagick infinite loop [CVE-2014-8561]
147221
ZF2014-0 View Helper cross site scripting [CVE-2014-4913]
147220
eDeploy Temp File race condition [CVE-2014-3701]
147219
eDeploy cPickle Deserialization deserialization [CVE-2014-3699]
147218
JBoss KeyCloak URL Validator redirect [CVE-2014-3652]
147217
jersey SAX Parser xml external entity reference [CVE-2014-3643]
147216
CloudForms Management Engine Registration top_output.log Log log file
147215
Huawei Product insufficient verification of data authenticity
147214
Huawei S5700/S6700 input validation [CVE-2019-5290]
147213
Huawei CampusInsight Gauss100 OLTP Database out-of-bounds read
147212
Huawei CloudUSM-EUA information disclosure [CVE-2019-5277]
147211
Huawei Mate 9 Applock information disclosure [CVE-2019-5264]
147210
Huawei Y9/Honor View 20 TD-SCDMA Message input validation [CVE-2019-5260]
147209
Huawei eSpace U1981 buffer overflow [CVE-2019-5258]
147208
Huawei AP2000 Management buffer overflow [CVE-2019-5257]
147207
Huawei eSpace U1981 resource consumption [CVE-2019-5256]
147206
Huawei eSpace U1981 null pointer dereference [CVE-2019-5255]
147205
Huawei eSpace U1981 Message out-of-bounds read [CVE-2019-5254]
147204
Huawei E5572-855 improper authentication [CVE-2019-5253]
147203
Huawei Y9/Honor 8X/Honor 9 Lite/Honor 9i/Y6 Pro Applock improper authentication
147202
Huawei Smartphone path traversal [CVE-2019-5251]
147201
Huawei Mate 20 Pro authorization [CVE-2019-5250]
147200
Huawei CloudEngine 12800 release of resource [CVE-2019-5248]
147199
Huawei Smart Phone null pointer dereference [CVE-2019-5235]
147198
IBM Case Manager Case Builder cross site scriting [CVE-2019-4426]
147197
Yabasic Basic Source Code function.c myformat out-of-bounds write
147196
Samurai Build File util.c canonpath out-of-bounds write
147195
miekg Go DNS Random Number Generator weak prng [CVE-2019-19794]
147194
Cyxtera AppGate SDP Client privileges management [CVE-2019-19793]
147193
Telerik UI for ASP.NET AJAX RadChart path traversal [CVE-2019-19790]
147192
ATasm m65 File setparse.c get_signed_expression out-of-bounds write
147191
ATasm m65 File setparse.c parse_expr out-of-bounds write
147190
ATasm m65 File asm.c to_comma out-of-bounds write
147189
AceaXe Plus FTP Client buffer overflow [CVE-2019-19782]
147188
libsixel loader.c load_sixel out-of-bounds read
147187
stb Image Loader stb_image.h stbi__load_main out-of-bounds read
147186
Zoho ManageEngine EventLog Analyzer runquery.do MD5 information disclosure
147185
Dovecot Push Notification Driver null pointer dereference [CVE-2019-19722]
147184
VeraCrypt VeraCryptExpander.exe privileges management
147183
Huawei Products risky encryption [CVE-2019-19397]
147182
Envoy Route Manager null pointer dereference [CVE-2019-18838]
147181
Envoy HTTP Header memory corruption [CVE-2019-18802]
147180
Envoy Access Control memory corruption [CVE-2019-18801]
147179
quiz-master-next Plugin quiz-options-page.php Reflected cross site scripting
147178
Petwant PF-103/Petalk AI libcommon.so processCommandUploadLog os command injection
147177
eGain Web Email API 11+ Message email) Header Injection input validation
147176
npm CLI Install Script path traversal [CVE-2019-16777]
147175
npm CLI Install Script path traversal [CVE-2019-16776]
147174
npm CLI Install Script symlink [CVE-2019-16775]
147173
Petwant PF-103/Petalk AI libcommon.so processCommandSetMac os command injection
147172
Petwant PF-103/Petalk AI libcommon.so processCommandUploadSnapshot out-of-bounds write
147171
Petwant PF-103/Petalk AI libcommon.so processCommandUploadLog out-of-bounds write
147170
Petwant PF-103/Petalk AI Telnet Service hard-coded credentials
147169
Petwant PF-103/Petalk AI libcommon.so processCommandSetUid os command injection
147168
Petalk PF-103/Petalk AI Communication signature verification
147167
Petwant PF-103/Petalk AI udpServerSys Service authorization [CVE-2019-16731]
147166
Petwant PF-103/Petalk AI libcommon.so processCommandUpgrade input validation
147165
TemaTres Reflected cross site scripting [CVE-2019-14344]
147164
SAML Single Sign On Plugin input validation [CVE-2019-13347]
147163
duplicity SSL Certificate Verification Service certificate validation
147162
Pen Temp File webfile.html exposure of resource
147161
suPHP Source Highlighting improper authentication [CVE-2014-1867]
147160
hammer_cli_foreman Gem foreman.yml insufficiently protected credentials
147159
qpid-cpp ACL Policy resource consumption [CVE-2014-0212]
147158
cfme CSRF Protection cross-site request forgery [CVE-2014-0197]
147157
MCollective Installation hard-coded credentials [CVE-2014-0175]
147156
Apple Safari WebKit integer underflow [CVE-2019-5144]
147155
Hostapd 802.11w Security State input validation [CVE-2019-5062]
147154
Hostapd IAPP Location Update input validation [CVE-2019-5061]
147153
Advantech WebAccess stack-based overflow [CVE-2019-3951]
147152
lodahs input validation [CVE-2019-19771]
147151
Linux Kernel inode.c debugfs_remov use after free
147150
Linux Kernel lock.h perf_trace_lock_acquire use after free
147149
Linux Kernel blktrace.c __blk_add_trace use after free
147148
Linux Kernel inode.c ext4_xattr_set_entry use after free
147147
Bitwarden Server inadequate encryption [CVE-2019-19766]
147146
Siemens SiNVR 3 Central Control Server SFTP Service routine [CVE-2019-18342]
147145
Siemens SiNVR 3 Central Control Server improper authentication
147144
Siemens SiNVR 3 Central Control Server Credentials information disclosure
147143
Siemens SiNVR 3 Central Control Server HTTP Service missing authentication
147142
Siemens SiNVR 3 Central Control Server XML Data path traversal
147141
Siemens SiNVR 3 Central Control Server XML Data improper authentication
147140
Siemens SPPA-T3000 Application Server Service Port 80 information disclosure
147139
Siemens SPPA-T3000 Application Server Service Port 8090 Username information disclosure
147138
Siemens SPPA-T3000 Application Server Service Port 8090 Directory information disclosure
147137
Siemens SPPA-T3000 Application Server Web Services Directory information disclosure
147136
Siemens SPPA-T3000 Application Server Service Port 1099 information disclosure
147135
Siemens SPPA-T3000 MS3000 Migration Server Service Port 5010 heap-based overflow
147134
Siemens SPPA-T3000 MS3000 Migration Server Service Port 5010 heap-based overflow
147133
Siemens SPPA-T3000 MS3000 Migration Server Service Port 5010 heap-based overflow
147132
Siemens SPPA-T3000 MS3000 Migration Server Service Port 5010 heap-based overflow
147131
Siemens SPPA-T3000 MS3000 Migration Server Service Port 5010 heap-based overflow
147130
Siemens SPPA-T3000 MS3000 Migration Server Service Port 5010 heap-based overflow
147129
Siemens SPPA-T3000 MS3000 Migration Server Service Port 5010 heap-based overflow
147128
Siemens SPPA-T3000 MS3000 Migration Server Service Port 5010 heap-based overflow
147127
Siemens SPPA-T3000 MS3000 Migration Server Service Port 5010 improper authentication
147126
Siemens SPPA-T3000 MS3000 Migration Server Service Port 5010 improper authentication
147125
Siemens SPPA-T3000 Application Server File Upload improper authentication
147124
Siemens SPPA-T3000 Application Server RMI improper authentication
147123
Siemens SPPA-T3000 Application Server RMI improper authentication
147122
Siemens SPPA-T3000 Application Server RMI improper authentication
147121
Siemens SPPA-T3000 Application Server Service Port 1099 deserialization
147120
Siemens SPPA-T3000 Application Server Service Port 8888 improper authentication
147119
Siemens SPPA-T3000 Application Server RMI improper authentication
147118
Siemens SPPA-T3000 MS3000 Migration Server RPC Service unrestricted upload
147117
Siemens SPPA-T3000 MS3000 Migration Server RPC Service improper authentication
147116
Siemens SPPA-T3000 MS3000 Migration Server Service Port 7061 denial of service
147115
Siemens SPPA-T3000 MS3000 Migration Server Service Port 7061 stack-based overflow
147114
Siemens SPPA-T3000 MS3000 Migration Server access control [CVE-2019-18309]
147113
Siemens SPPA-T3000 MS3000 Migration Server access control [CVE-2019-18308]
147112
Siemens SPPA-T3000 MS3000 Migration Server Service Port 5010 out-of-bounds read
147111
Siemens SPPA-T3000 MS3000 Migration Server Service Port 5010 out-of-bounds read
147110
Siemens SPPA-T3000 MS3000 Migration Server Service Port 5010 integer overflow
147109
Siemens SPPA-T3000 MS3000 Migration Server Service Port 5010 integer overflow
147108
Siemens SPPA-T3000 MS3000 Migration Server Service Port 5010 integer overflow
147107
Siemens SPPA-T3000 MS3000 Migration Server Service Port 5010 integer overflow
147106
Siemens SPPA-T3000 MS3000 Migration Server Service Port 5010 integer overflow
147105
Siemens SPPA-T3000 MS3000 Migration Server Service Port 5010 integer overflow
147104
Siemens SPPA-T3000 MS3000 Migration Server Service Port 5010 integer overflow
147103
Siemens SPPA-T3000 MS3000 Migration Server Service Port 5010 integer overflow
147102
Siemens SPPA-T3000 MS3000 Migration Server heap-based overflow
147101
Siemens SPPA-T3000 MS3000 Migration Server Service Port 5010 heap-based overflow
147100
Siemens SPPA-T3000 MS3000 Migration Server Service Port 5010 heap-based overflow
147099
Siemens SPPA-T3000 MS3000 Migration Server Service Port 5010 heap-based overflow
147098
Siemens SPPA-T3000 MS3000 Migration Server Service Port 5010 heap-based overflow
147097
Siemens SPPA-T3000 MS3000 Migration Server Service Port 5010 heap-based overflow
147096
Siemens SPPA-T3000 MS3000 Migration Server Service Port 5010 heap-based overflow
147095
Siemens SPPA-T3000 MS3000 Migration Server Service Port 5010 heap-based overflow
147094
Siemens SPPA-T3000 MS3000 Migration Server Service Port 5010 heap-based overflow
147093
Siemens SPPA-T3000 Application Server RMI interface unrestricted upload
147092
Siemens SPPA-T3000 Application Server Directory improper authentication
147091
Siemens SPPA-T3000 Application Server Directory improper authentication
147090
Siemens SPPA-T3000 Application Server RMI Communication cleartext transmission
147089
Siemens SPPA-T3000 Application Server AdminService improper authentication
147088
Siemens SPPA-T3000 Application Server AdminService deserialization
147087
phpfastcache Cookie Driver code injection [CVE-2019-16774]
147086
Siemens SiNVR 3 Central Control Server User Configuration Menu Password information disclosure
147085
Siemens EN100 Ethernet Module DNP3 Web Server path traversal
147084
Siemens EN100 Ethernet Module DNP3 Web Interface cross site scripting
147083
Siemens EN100 Ethernet Module DNP3 Webserver memory corruption
147082
XHQ Web Application input validation [CVE-2019-13932]
147081
XHQ Web Interface cross site scriting [CVE-2019-13931]
147080
XHQ Web Interface cross-site request forgery [CVE-2019-13930]
147079
Apache SpamAssassin Message resource consumption [CVE-2019-12420]
147078
Apache SpamAssassin CF File os command injection [CVE-2018-11805]
147077
IBM DB2 High Performance Unload privileges management [CVE-2019-4606]
147076
minerstat msOS SSH Key improper authentication [CVE-2019-19750]
147075
Electronic Arts Origin privileges management [CVE-2019-19248]
147074
Electronic Arts Origin privileges management [CVE-2019-19247]
147073
Scoutnet Kalender Plugin cross site scripting [CVE-2019-19198]
147072
DAViCal Reflected cross site scripting [CVE-2019-18345]
147071
Intesync Solismed Stored inadequate encryption [CVE-2019-17428]
147070
Cacti Deserialization functions.php deserialization
147069
Intesync Solismed information disclosure [CVE-2019-16246]
147068
Intesync Solismed File Upload unrestricted upload [CVE-2019-15936]
147067
Intesync Solismed cross site scripting [CVE-2019-15935]
147066
Intesync Solismed cross-site request forgery [CVE-2019-15934]
147065
Intesync Solismed sql injection [CVE-2019-15933]
147064
Intesync Solismed Access Control permission assignment [CVE-2019-15932]
147063
Intesync Solismed path traversal [CVE-2019-15931]
147062
Intesync Solismed improper restriction of rendered ui layers
147061
3scale Session Cookie httponly insertion of sensitive information into sent data
147060
Siemens SIMATIC S7-1200 CPU UART routine [CVE-2019-13945]
147059
Desigo PXC00-E.D Web Server denial of service [CVE-2019-13927]
147058
Qualcomm Snapdragon Auto Image memory corruption [CVE-2019-2338]
147057
Qualcomm Snapdragon Auto EMM out-of-bounds read [CVE-2019-2337]
147056
Qualcomm Snapdragon Auto HLOS buffer overflow [CVE-2019-2321]
147055
Qualcomm Snapdragon Auto array index [CVE-2019-2320]
147054
Qualcomm Snapdragon Auto HLOS privileges management [CVE-2019-2319]
147053
Qualcomm Snapdragon Auto out-of-bounds read [CVE-2019-2310]
147052
Qualcomm Snapdragon Auto TZ buffer overflow [CVE-2019-2288]
147051
Qualcomm Snapdragon Connectivity Driver information disclosure
147050
Qualcomm Snapdragon Auto QDCM API integer overflow [CVE-2019-10592]
147049
Qualcomm Snapdragon Auto Snapshot buffer overflow [CVE-2019-10571]
147048
Qualcomm Snapdragon Auto OGG File out-of-bounds read [CVE-2019-10559]
147047
Qualcomm Snapdragon Auto buffer overflow [CVE-2019-10555]
147046
Qualcomm Snapdragon Auto LLC Support null pointer dereference
147045
Qualcomm Snapdragon Auto Data Truncation integer overflow [CVE-2019-10530]
147044
Qualcomm Snapdragon Mobile/Snapdragon Voice / Music GPU Memory resource consumption
147043
Qualcomm Snapdragon Auto GSNDCP Compressed Mode array index [CVE-2019-10511]
147042
Qualcomm Snapdragon Auto Camera toctou [CVE-2019-10494]
147041
Qualcomm Snapdragon Auto buffer overflow [CVE-2019-10493]
147040
Qualcomm Snapdragon Auto Compressed Data infinite loop [CVE-2019-10485]
147039
Qualcomm Snapdragon Auto Command use after free [CVE-2019-10484]
147038
Work Time Calendar App cross site scripting [CVE-2019-19748]
147037
Xfig fig2dev arrow.c make_arrow integer overflow
147036
Octeth Oempro Campaign.Get sql injection
147035
OpenBSD setuid Program ld.so _dl_setup_env privileges management
147034
SnakeYAML Alias xml entity expansion [CVE-2017-18640]
147033
Microsoft Visual Studio Git input validation [CVE-2019-1387]
147032
Microsoft Visual Studio Git input validation [CVE-2019-1354]
147031
Microsoft Visual Studio Git input validation [CVE-2019-1352]
147030
Microsoft Visual Studio Git input validation [CVE-2019-1351]
147029
Microsoft Visual Studio Git input validation [CVE-2019-1350]
147028
Microsoft Visual Studio Git input validation [CVE-2019-1349]
147027
Avaya IP Office Application Server Web UI cross site scripting
147026
LEADTOOLS JPEG2000 File out-of-bounds write [CVE-2019-5154]
147025
LEADTOOLS DICOM libltdic.so integer overflow
147024
LEADTOOLS DICOM Image out-of-bounds write [CVE-2019-5092]
147023
LEADTOOLS libltdic.so infinite loop
147022
LEADTOOLS libltdic.so out-of-bounds read
147021
LEADTOOLS DICOM Parser libltdic.so integer overflow
147020
IBM Spectrum Scale command injection [CVE-2019-4715]
147019
IBM Spectrum Scale Web UI cross site scriting [CVE-2019-4665]
147018
Blink XT2 Sync Module Network Configuration os command injection
147017
Blink XT2 Sync Module WiFi os command injection [CVE-2019-3988]
147016
Blink XT2 Sync Module WiFi os command injection [CVE-2019-3987]
147015
Blink XT2 Sync Module WiFi os command injection [CVE-2019-3986]
147014
Blink XT2 Sync Module WiFi os command injection [CVE-2019-3985]
147013
Blink XT2 Sync Module UART insufficiently protected credentials
147012
bson-objectid ObjectID input validation
147011
sysstat sa_common.c check_file_actlst double free
147010
Zoho ManageEngine Applications Manager Agent.java sql injection
147009
Zoho ManageEngine Applications Manager SyncEventServlet.java doGet sql injection
147008
Xen VMX VMEntry Check input validation [CVE-2019-19583]
147007
Xen Bit Iteration infinite loop [CVE-2019-19582]
147006
Xen Bit Iteration memory corruption [CVE-2019-19581]
147005
Xen Incomplete Fix race condition [CVE-2019-19580]
147004
Xen Pagetable input validation [CVE-2019-19578]
147003
Xen Pagetable input validation [CVE-2019-19577]
147002
Squiz Matrix CMS File Upload form_question_type_file_upload.inc input validation
147001
Squiz Matrix CMS page_remote_content.inc deserialization
147000
Symantec Messaging Gateway server-side request forgery [CVE-2019-18379]
146999
Symantec Messaging Gateway cross site scripting [CVE-2019-18378]
146998
Symantec Messaging Gateway privileges management [CVE-2019-18377]
146997
Reliable Controls LicenseManager unquoted search path [CVE-2019-18245]
146996
Safenet Sentinel LDK License Manager Service link following [CVE-2019-18232]
146995
Micro Focus AcuToWeb File Download information disclosure [CVE-2019-17087]
146994
Atlassian FishEye/Crucible removeStarAjax.do authorization
146993
Atlassian FishEye/Crucible branchreview cross site scripting
146992
Atlassian FishEye/Crucible Branch cross site scripting [CVE-2019-15007]
146991
Linux/FreeBSD/OpenBSD/MacOS/iOS/Android VPN channel accessible
146990
wolfSSL/wolfCrypt DSA Nonce Generator dsa.c Key missing encryption
146989
enshrined svg-sanitize cross site scripting [CVE-2019-10772]
146988
Puppet Enterprise root_configuration Password log file
146987
Puppet Enterprise Express Install hard-coded credentials [CVE-2019-10694]
146986
SAP Enable Now User information disclosure [CVE-2019-0405]
146985
SAP Enable Now Error Message information disclosure [CVE-2019-0404]
146984
SAP Enable Now input validation [CVE-2019-0403]
146983
SAP Adaptive Server Enterprise information disclosure [CVE-2019-0402]
146982
SAP Project Management Project Dashboard information disclosure
146981
SAP BusinessObjects Business Intelligence Platform cross-site request forgery
146980
SAP BusinessObjects Business Intelligence Platform Fiori BI Launchpad Stored cross site scripting
146979
DBD::PgPP sql injection [CVE-2014-7257]
146978
openshift os command injection [CVE-2014-0163]
ID
Title
Nessus
OpenVAS
Snort
Suricata
TippingPoint
146977
Foreman input validation [CVE-2014-0091]
146976
katello-headpin REST API cross-site request forgery [CVE-2014-0026]
146975
node-connect Incomplete Fix CVE-2013-7370 cross site scripting
146974
Cart66 Lite Plugin products.php cross site scripting
146973
Zabbix sql injection [CVE-2013-5743]
🔒
🔒
146972
Puppet Enterprise cross site scripting [CVE-2013-4968]
🔒
146971
MediaWiki API IEUrlExtension.php cross site scripting
🔒
🔒
146970
AirLive POE-2600HD resource consumption [CVE-2013-3691]
146969
Grandstream GXV3500 Telnet Service hard-coded credentials [CVE-2013-3542]
🔒
146968
Adobe Acrobat Reader input validation [CVE-2019-16453]
146967
Adobe Acrobat Reader privileges management [CVE-2019-16444]
146966
Adobe Acrobat Reader null pointer dereference [CVE-2019-16463]
146965
Adobe Acrobat Reader null pointer dereference [CVE-2019-16460]
146964
Adobe Acrobat Reader null pointer dereference [CVE-2019-16455]
146963
Adobe Acrobat Reader null pointer dereference [CVE-2019-16446]
146962
Adobe Acrobat Reader memory corruption [CVE-2019-16462]
146961
Adobe Acrobat Reader out-of-bounds write [CVE-2019-16451]
146960
Adobe Acrobat Reader use after free [CVE-2019-16464]
146959
Adobe Acrobat Reader use after free [CVE-2019-16459]
146958
Adobe Acrobat Reader use after free [CVE-2019-16452]
146957
Adobe Acrobat Reader use after free [CVE-2019-16448]
146956
Adobe Acrobat Reader use after free [CVE-2019-16445]
146955
Adobe Acrobat Reader out-of-bounds write [CVE-2019-16454]
146954
Adobe Acrobat Reader out-of-bounds write [CVE-2019-16450]
146953
Adobe Acrobat Reader out-of-bounds read [CVE-2019-16465]
146952
Adobe Acrobat Reader out-of-bounds read [CVE-2019-16461]
146951
Adobe Acrobat Reader out-of-bounds read [CVE-2019-16458]
146950
Adobe Acrobat Reader out-of-bounds read [CVE-2019-16457]
146949
Adobe Acrobat Reader out-of-bounds read [CVE-2019-16456]
146948
Adobe Acrobat Reader information disclosure [CVE-2019-16449]
146947
McAfee Tech Check Microsoft Windows Client privileges management
146946
AWS Firecracker buffer overflow [CVE-2019-18960]
146945
Progress Telerik UI for ASP.NET AJAX .NET Deserialization RadAsyncUpload deserialization
146944
node-connect Middleware cross site scripting [CVE-2013-7370]
146943
JBossWeb Bayeux Reflected cross site scripting [CVE-2013-6495]
146942
omniauth-facebook Gem Access Token improper authentication [CVE-2013-4593]
146941
Orca Python Module input validation [CVE-2013-4245]
🔒
146940
SmokePing Incomplete Fix CVE-2012-0790 cross site scripting [CVE-2013-4158]
🔒
🔒
146939
Google Chrome Javascript memory corruption [CVE-2019-5843]
146938
Google Chrome Javascript memory corruption [CVE-2019-5841]
146937
libxslt xsltNumberFormatGetMultipleLevel type confusion
146936
Yabasic Basic Source Code flex.c yylex memory corruption
146935
Tableau Server embeddedAuthRedirect cross site scripting
146934
MediaWiki Protection Mechanism redirect [CVE-2019-19709]
146933
VisualEditor Extension Clipboard cross site scripting [CVE-2019-19708]
146932
Moxa EDS-G508E/EDS-G512E/EDS-G516E PROFINET DCE-RPC Endpoint denial of service
146931
Ktor redirect [CVE-2019-19703]
146930
modoboa-dmarc Plugin XML Data xml injection [CVE-2019-19702]
146929
Git Submodule Update input validation [CVE-2019-19604]
146928
Yachtcontrol os command injection [CVE-2019-17270]
146927
Microsoft Skype for Business Server input validation [CVE-2019-1490]
146926
Microsoft Windows Remote Desktop Protocol information disclosure
146925
libssh scp Client ssh_scp_new command injection
146924
Microsoft Windows Defender memory corruption [CVE-2019-1488]
146923
Ssamba S4U Kerberos Delegation improper authorization [CVE-2019-14870]
146922
Microsoft Authentication Library information disclosure [CVE-2019-1487]
146921
Samba AD Handleer dns_name_compare out-of-bounds read
146920
Microsoft Visual Studio redirect [CVE-2019-1486]
146919
Google Chrome Javascript type confusion [CVE-2019-13764]
146918
Google Chrome Payment input validation [CVE-2019-13763]
146917
Google Chrome Download input validation [CVE-2019-13762]
146916
Google Chrome Omnibox Domain input validation
146915
Google Chrome interstitials Domain input validation
146914
Google Chrome Navigation input validation [CVE-2019-13758]
146913
Google Chrome Omnibox Domain input validation
146912
Google Chrome Security UI Domain input validation
146911
Google Chrome Extension input validation [CVE-2019-13755]
146910
Google Chrome Extension input validation [CVE-2019-13754]
146909
Google Chrome SQLite out-of-bounds read [CVE-2019-13753]
146908
Google Chrome SQLite out-of-bounds read [CVE-2019-13752]
146907
Google Chrome SQLite information disclosure [CVE-2019-13751]
146906
Google Chrome SQLite input validation [CVE-2019-13750]
146905
Google Chrome Omnibox Address input validation
146904
Google Chrome Developer Tools input validation [CVE-2019-13748]
146903
Google Chrome input validation [CVE-2019-13747]
146902
Google Chrome Omnibox URL input validation
146901
Google Chrome Audio information disclosure [CVE-2019-13745]
146900
Google Chrome Policy Enforcement information disclosure [CVE-2019-13744]
146899
Google Chrome Security UI input validation [CVE-2019-13743]
146898
Google Chrome Omnibox Domain input validation
146897
Google Chrome Blink input validation [CVE-2019-13741]
146896
Google Chrome Security UI Domain input validation
146895
Google Chrome Policy Enforcement Domain input validation
146894
Google Chrome Policy Enforcement permission assignment [CVE-2019-13738]
146893
Google Chrome Policy Enforcement information disclosure [CVE-2019-13737]
146892
Google Chrome PDFium integer overflow [CVE-2019-13736]
146891
Google Chrome Javascript out-of-bounds write [CVE-2019-13735]
146890
Google Chrome SQLite out-of-bounds write [CVE-2019-13734]
146889
Google Chrome WebAudio use after free [CVE-2019-13732]
146888
Google Chrome Javascript type confusion [CVE-2019-13730]
146887
Google Chrome WebSocket use after free [CVE-2019-13729]
146886
Google Chrome Javascript out-of-bounds write [CVE-2019-13728]
146885
Google Chrome WebSocket permission assignment [CVE-2019-13727]
146884
Google Chrome Password Manager memory corruption [CVE-2019-13726]
146883
Google Chrome Bluetooth use after free [CVE-2019-13725]
146882
Google Chrome Omnibox input validation [CVE-2019-13672]
146880
OpenBSD Random Number Generator random.c prng seed
146879
Microsoft Windows OLE input validation [CVE-2019-1484]
146878
Microsoft Windows AppX Deployment Server privileges management
146877
Microsoft Windows Windows Media Player information disclosure
146876
Microsoft Windows Windows Media Player information disclosure
146875
Microsoft Windows COM Server privileges management [CVE-2019-1478]
146874
Microsoft Windows Printer Service privileges management [CVE-2019-1477]
146873
Microsoft Windows AppX Deployment Service privileges management
146872
Microsoft Windows Kernel information disclosure [CVE-2019-1474]
146871
Microsoft Windows Kernel information disclosure [CVE-2019-1472]
146870
Microsoft Windows Hyper-V information disclosure [CVE-2019-1470]
146869
Microsoft Windows GDI information disclosure [CVE-2019-1467]
146868
Microsoft Windows GDI information disclosure [CVE-2019-1466]
146867
Microsoft Windows GDI information disclosure [CVE-2019-1465]
146866
Microsoft Office Excel information disclosure [CVE-2019-1464]
146865
Microsoft Office Access information disclosure [CVE-2019-1463]
146864
Microsoft Office PowerPoint input validation [CVE-2019-1462]
146863
Microsoft Office Word input validation [CVE-2019-1461]
146862
Microsoft Windows Remote Desktop Protocol input validation [CVE-2019-1453]
146861
Microsoft Office Access information disclosure [CVE-2019-1400]
146860
Microsoft Power BI Report Server cross site scripting [CVE-2019-1332]
146859
Microsoft Internet Explorer VBScript memory corruption [CVE-2019-1485]
146858
Microsoft Windows Win32k information disclosure [CVE-2019-1469]
146857
Microsoft Windows Win32k privileges management [CVE-2019-1458]
146856
Microsoft Windows Hyper-V input validation [CVE-2019-1471]
146855
Microsoft Windows Win32k Graphics input validation [CVE-2019-1468]
146854
Lenovo Power Management Driver memory corruption [CVE-2019-6192]
146853
Lenovo Energy Management Driver input validation [CVE-2019-6183]
146852
IBM WebSphere Application Server Web UI cross site scripting
146851
IBM Cloud Pak System Platform System Manager injection [CVE-2019-4521]
146850
IBM SmartCloud Analytics Zookeeper privileges management [CVE-2019-4244]
146849
IBM Cloud Pak System cross-site request forgery [CVE-2019-4095]
146848
Last.fm Scrobbler input validation [CVE-2019-19251]
146847
Yaws redirect [CVE-2016-1000108]
146846
Erlang inets redirect [CVE-2016-1000107]
146845
JBoss KeyCloak login-status-iframe.html cross site scripting
146844
CPAN Data::UUID link following [CVE-2013-4184]
146843
kde-workspace Plasma Desktop crypt denial of service
🔒
146842
Katello API OAuth Authentication resource consumption [CVE-2013-4120]
146841
Monkey HTTP Daemon exposure of resource [CVE-2013-2183]
146840
python-keystoneclient Memcache insufficient verification of data authenticity
🔒
🔒
146839
python-keystoneclient Memcache inadequate encryption [CVE-2013-2166]
🔒
🔒
146838
Monkey HTTP Daemon auth.c improper authentication
146837
rubygem-openshift-origin-controller API cartridge_cache.rb URI.prase injection
146836
openstack-utils openstack-db Password missing authentication
146835
Mozilla Firefox Frame input validation [CVE-2013-1689]
146834
Ovirt Node Lock Screen privileges management [CVE-2013-0293]
146833
marc-q libwav libwav.c wav_content_read null pointer dereference
146832
CoreHR Core Portal cross-site request forgery
146831
IBM DataPower Gateway IPMI LAN Channel privileges management
146830
IBM Planning Analytics My Account Portal unrestricted upload
146829
IBM Planning Analytics Web UI cross site scriting [CVE-2019-4611]
146828
IBM Cloud Pak for Data Watson Assistant cross site scriting [CVE-2019-4428]
146827
OpenStack Keystone Credentials API credentials insufficiently protected credentials
146826
Nop Solution Ltd nopCommerce RoxyFileman RoxyFilemanController.cs cross-site request forgery
146825
Nop Solution Ltd nopCommerce File Upload PluginController.cs unrestricted upload
146824
Nop Solution Ltd nopCommerce NewsController.cs SaveStoreMappings cross site scripting
146823
Xray Test Management Test Issue cross site scripting [CVE-2019-19679]
146822
Xray Test Management Generic Test Definition cross site scripting
146821
SQLite NOT NULL pragma.c unusual condition
146820
SQLite ALTER TABLE Statement alter.c recursion
146819
SQLite CREATE Statement privileges management [CVE-2019-19603]
146818
CA Release Automation DataManagement deserialization [CVE-2019-19230]
146817
Symantec Industrial Control System Protection improper authentication
146816
Trend Micro Security Consumer null pointer dereference [CVE-2019-18190]
146815
Temenos Channels Login Page GetImage downloadDocServer path traversal
146812
Samsung m2m1shot Driver Framework m2m1shot_compat_ioctl32 out-of-bounds write
146811
Accentis Content Resource Management System cross site scripting
146810
Accentis Content Resource Management System sql injection [CVE-2015-3424]
146809
Chrony denial of service [CVE-2015-1853]
🔒
🔒
146808
libcapsinetwork/monopd listener.cpp readBuf off-by-one
🔒
🔒
146807
mod_wsgi Embedded Mode information disclosure [CVE-2014-0242]
🔒
🔒
146806
pyrad packet.py CreateID input validation
146805
Nop Solution Ltd nopCommerce FileRoxyFilemanService.cs path traversal
146804
Microsoft Windows Media Center xml external entity reference
146803
Microsoft Visual Studio xml external entity reference
146802
YARA macho.c macho_parse_file out-of-bounds read
146801
radare2 asm.c r_asm_pseudo_incbin input validation
146800
Microsoft Excel XML Import xml external entity reference
146799
rConfig privileges management [CVE-2019-19268]
146798
OpenNetAdmin code injection
146797
Supermicro X8STi-F setvmdrive.asp os command injection
146796
libsixel frompnm.c load_pnm out-of-bounds write
146795
libsixel fromsixel.c sixel_decode_raw_impl integer overflow
146794
libsixel tosixel.c sixel_encode_body integer overflow
146793
libsixel fromsixel.c sixel_decode_raw_impl out-of-bounds write
146792
HTMLDOC string.c hd_strlcpy out-of-bounds write
146791
Linux Kernel f2fs Filesystem Image segment.c f2fs_build_segment_manager out-of-bounds read
146790
Linux Kernel btrfs Filesystem free-space-cache.c try_merge_free_space use after free
146789
Linux Kernel ext4 Filesystem Image super.c ext4_put_super use after free
146788
Google Android Permission RecentLocationApps.java permission assignment
146787
Google Android Unicode TextLine.java handleRun input validation
146786
Google Android blob.cpp Blob input validation
146785
Google Android NativeNfcManager.cpp nfcManager_unrouteAid use after free
146784
Google Android BaseWidgetProvider.java updateWidget information disclosure
146783
Google Android array.c array_find out-of-bounds read
146782
Google Android Bluetooth btif_av.cc DeepCopy out-of-bounds read
146781
Google Android Bluetooth Server device_class.cc device_class_to_int out-of-bounds read
146780
Google Android Bluetooth Pairing privileges management [CVE-2019-2225]
146779
Google Android mat.c ReadMATImage out-of-bounds write
146778
Google Android ihevcd_ref_list.c ihevcd_ref_list out-of-bounds write
146777
Google Android ihevcd_parse_slice.c ihevcd_parse_slice_data out-of-bounds write
146776
Google Android WindowProcessController.java hasActivityInVisibleTask input validation
146775
Google Android AppOpsService.java checkOperation information disclosure
146774
Google Android System UI race condition [CVE-2019-2219]
146773
Google Android Permission Check PackageInstallerService.java createSessionInternal permission assignment
146772
Google Android GpuStats.cpp setCpuVulkanInUse use after free
146771
ShapeShift KeepKey Hardware Wallet Finite State Machine improper validation of integrity check value
146770
ShapeShift KeepKey Hardware Wallet USB Packet out-of-bounds write
146769
Dell Command Configure uncontrolled search path [CVE-2019-18575]
146768
serialize-to-js Regular Expression RegExp.prototype.toString cross site scripting
146767
Armeria response splitting [CVE-2019-16771]
146766
Weidmueller IE-SW-VL05M/IE-SW-VL08MT/IE-SW-PL10M Cookie Credentials information disclosure
146765
Weidmueller IE-SW-VL05M/IE-SW-VL08MT/IE-SW-PL10M Password Storage missing encryption
146764
Weidmueller IE-SW-VL05M/IE-SW-VL08MT/IE-SW-PL10M Credentials missing encryption
146763
Weidmueller IE-SW-VL05M/IE-SW-VL08MT/IE-SW-PL10M denial of service
146762
Weidmueller IE-SW-VL05M/IE-SW-VL08MT/IE-SW-PL10M Authentication Mechanism Brute Force information disclosure
146761
OpenSSL Montgomery Square information disclosure [CVE-2019-1551]
146760
SiteVision Access Control privileges management [CVE-2019-12734]
146759
SiteVision input validation [CVE-2019-12733]
146758
Cloud Foundry UAA Log Credentials log file
146757
safer-eval Sandbox input validation
146756
TITool PrintMonitor Login Time sql injection
146755
JBoxx AS Java Security Policy privileges management [CVE-2012-2148]
146754
PolarSSL DH inadequate encryption [CVE-2012-2130]
🔒
🔒
146753
Ubuntu Cobbler cobbler-ubuntu-import signature verification [CVE-2012-2092]
146752
OpenSLP out-of-bounds write [CVE-2019-5544]
146751
SROS 2 ROS 2 Node information disclosure [CVE-2019-19627]
146750
SROS 2 Node Information governance.xml information disclosure
146749
OpenCV dis_flow.cpp ocl_calc out-of-bounds read
146748
SecureWorks Red Cloak Windows Agent Telemetry Alert permissions
146747
Sangoma FreePBX Userman cross site scripting [CVE-2019-19552]
146746
Sangoma FreePBX Userman cross site scripting [CVE-2019-19551]
146745
libyang YANG Parser stack-based overflow [CVE-2019-19334]
146744
libyang YANG Parser stack-based overflow [CVE-2019-19333]
146743
Audible App SSL Certificate certificate validation [CVE-2019-11554]
146742
Fedoraproject Sectool DBus File privileges management [CVE-2012-1615]
🔒
🔒
146741
Documize Markdown markdown.go cross site scripting
146740
phpMyAdmin Git Information GitRevision.php Remote Code Execution
146739
Xtivia Web Time/Expense GetAttachment resource transfer
146738
QNAP QTS Photo Station external reference [CVE-2019-7195]
146737
QNAP QTS Photo Station external reference [CVE-2019-7194]
146736
QNAP QTS input validation [CVE-2019-7193]
146735
QNAP QTS Photo Station privileges management [CVE-2019-7192]
146734
QNAP QTS Music Station cross site scripting [CVE-2019-7185]
146733
QNAP QTS Video Station cross site scripting [CVE-2019-7184]
146732
QNAP QTS Link link following [CVE-2019-7183]
146731
AMD Driver Pixel Shader ATIDXX64.DLL out-of-bounds read
146730
chkstat Tool symlink [CVE-2019-3690]
146729
Strapi Framework Plugin execa input validation
146728
Adobe Stock API upload.php unrestricted upload
146727
Adobe Stock API multi_upload.php unrestricted upload
146726
Norton Password Manager information disclosure [CVE-2019-19546]
146725
Norton Password Manager origin validation [CVE-2019-19545]
146724
SCEditor cross site scripting [CVE-2019-19466]
146722
Intelbras IWR 3000N user Credentials insufficiently protected credentials
146721
Norton Password Manager origin validation [CVE-2019-18381]
146720
OTRS Filename infinite loop [CVE-2019-18180]
146719
Palo Alto PAN-OS insufficient permissions or privileges [CVE-2019-17437]
146718
Aviatrix VPN Client File Permission privileges management [CVE-2019-17388]
146717
Aviatrix VPN Client AVPNC_RP Service privileges management [CVE-2019-17387]
146716
Puma Connection allocation of resources [CVE-2019-16770]
146715
Yahoo serialize-javascript cross site scripting [CVE-2019-16769]
146714
Sylius Exception Message AuthenticationServiceException information exposure
146713
ThinkParQ BeeGFS beegfs-ctl missing authentication [CVE-2019-15897]
146712
KeyCloak LDAP User Federation authentication bypass [CVE-2019-14910]
146711
Kubernetes CSI Sidecar Container Persistent input validation
146710
Kubernetes API Server redirect [CVE-2018-1002102]
146709
OpenStack Nova Base Image permission assignment [CVE-2013-0326]
146708
Katello Notification Page cross site scripting [CVE-2013-0283]
146707
haskell-tls-extra TLS Connection input validation [CVE-2013-0243]
146706
Openshift haproxy cartridge tmp exposure of resource
146705
Apache Struts XSLT File unrestricted upload [CVE-2012-1592]
146704
LDAP Account Manager Pro cmd.php cross site scripting
🔒
🔒
146703
LDAP Account Manager Pro cmd.php cross site scripting
🔒
🔒
146702
Jasig php-pear-CAS Authentication Service tmp setCacheTimesForAuthRecheck information disclosure
🔒
🔒
146701
phpCAS Service Proxy setCacheTimesForAuthRecheck privileges management
🔒
🔒
146700
Linux Kernel internal.h fpregs_state_valid permission assignment
146699
OpenDetex detex.l TexOpen memory corruption
146698
SQLite resolve.c lookupName input validation
146697
D-Link DAP-1860 timestamp improper authentication
146696
D-Link DAP-1860 HTTP Header improper authentication [CVE-2019-19597]
146695
GitBook MD File cross site scripting [CVE-2019-19596]
146694
radare2 asm.c r_asm_massemble integer overflow
146693
Lever PDF Embedder Plugin input validation [CVE-2019-19589]
146692
Validator Package resource consumption [CVE-2019-19588]
146691
Wireshark CMS Dissector packet-cms-template.c injection
146690
QNAP NetBak Replicator QVssService unquoted search path [CVE-2019-7201]
146689
QNAP QTS Stored cross site scripting [CVE-2019-7197]
146688
WSO2 Enterprise Integrator Management Console Reflected cross site scriting
146687
Xen Incomplete Fix CVE-2019-18424 input validation [CVE-2019-19579]
146686
verot.net class.upload class.upload.php unrestricted upload
146685
Xfig fig2dev read.c out-of-bounds write
146684
OpenBSD S-Key/Yubikey improper authentication [CVE-2019-19522]
146683
OpenBSD libc auth_subr.c improper authentication
146682
OpenBSD xlock loader.c privileges management
146681
OpenBSD su.c main input validation
146680
Sony Catalyst Production Suite/Catalyst Browse DLL Loader untrusted search path
146679
Fronius Solar Inverter service.fcgi path traversal
146678
Fronius Solar Inverter web_users.conf cleartext storage
146677
CSS Hero Plugin csshero_action=edit_page Reflected cross site scripting
146676
TrevorC2 Fingerprint information disclosure [CVE-2019-18850]
146675
DAViCal Stored cross site scripting [CVE-2019-18347]
146674
DAViCal cross-site request forgery [CVE-2019-18346]
146673
Apache Olingo Public API AbstractService deserialization
146672
Apache Olingo AsyncResponseWrapperImpl input validation
146671
Apache Olingo Deserialization xml external entity reference [CVE-2019-17554]
146670
Decentralized Anonymous Payment System Signature signature verification
146669
Decentralized Anonymous Payment System cross-site request forgery
146668
COPA-DATA zenone32 zenon Editor uncontrolled search path [CVE-2019-15638]
146667
KeyCloak LDAP improper authentication [CVE-2019-14909]
146666
Proxygen HPACK use after free [CVE-2019-11940]
146665
Mcrouter Carbon Protocol resource consumption [CVE-2019-11937]
146664
HHVM APC denial of service [CVE-2019-11936]
146663
HHVM mb_ereg_replace out-of-bounds read
146662
AsyncSSLSocket close_notify Alert out-of-bounds read [CVE-2019-11934]
146661
HHVM mb_detect_order release of reference
146660
Mcrouter ASCII Parser resource consumption [CVE-2019-11923]
146659
BMC Smart Reporting XML Data unrestricted upload [CVE-2019-11216]
146658
QNAP QTS File Station injection [CVE-2018-0730]
146657
QNAP QTS Music Station injection [CVE-2018-0729]
146656
QNAP QTS Helpdesk privileges management [CVE-2018-0728]
146655
minidlna sql injection [CVE-2013-2745]
146654
Cameron Hamilton-Rich axTLS TLS Handshake tls1.c process_certificate buffer overflow
146653
Autodesk FBX Software Development Kit FBX File buffer overflow
146652
Autodesk Desktop Application DLL Loader untrusted search path
146651
shadowsocks-libev ss-manager missing authentication [CVE-2019-5164]
146650
shadowsocks-libev UDPRelay missing authentication
146649
AccuSoft ImageGear igcore19d.dll out-of-bounds write [CVE-2019-5133]
146648
AccuSoft ImageGear GEM Raster Parser igcore19d.dll out-of-bounds write
146647
Forma LMS ajax.server.php sql injection
146646
Forma LMS ajax.server.php sql injection
146645
Forma LMS sql injection [CVE-2019-5110]
146644
Forma LMS sql injection [CVE-2019-5109]
146643
Goahead Web Server Multi-Part Request infinite loop [CVE-2019-5097]
146642
Goahead Web Server Multi-Part Request use after free [CVE-2019-5096]
146641
AccuSoft ImageGear igcore19d.dll TIFdecodethunderscan out-of-bounds write
146640
AccuSoft ImageGear PNG Header igcore19d.dll out-of-bounds write
146639
IBM Cloud Pak System Web UI cross site scriting [CVE-2019-4468]
146638
IBM Cloud Pak System Web UI cross site scriting [CVE-2019-4467]
146637
IBM Cloud Pak System Stored information disclosure [CVE-2019-4465]
146636
IBM Cloud Pak System Web UI cross site scriting [CVE-2019-4226]
146635
IBM Cloud Pak System File Upload code injection [CVE-2019-4130]
146634
IBM Cloud Pak System Web UI cross site scriting [CVE-2019-4098]
146633
Harbor API Endpoint users information disclosure
146632
Dell Command Update Directory Permission uncontrolled search path
146631
Dell Command Update uncontrolled search path [CVE-2019-3749]
146630
Linux Kernel serial_ir.c serial_ir_init_module use after free
146629
Linux Kernel USB Device file.c race condition
146628
Linux Kernel USB Device pcan_usb_pro.c information disclosure
146627
Linux Kernel USB Device pcan_usb_fd.c information disclosure
146626
Linux Kernel USB Device pcan_usb_core.c information disclosure
146625
Linux Kernel USB Device ttusb_dec.c release of resource
146624
Linux Kernel USB Device hid-axff.c out-of-bounds write
146623
Linux Kernel USB Device yurex.c use after free
146622
Linux Kernel USB Device cdc-acm.c use after free
146621
Linux Kernel USB Device mcba_usb.c use after free
146620
Linux Kernel USB Device iowarrior.c use after free
146619
Linux Kernel USB Device hiddev.c use after free
146618
Linux Kernel USB Device usb.c use after free
146617
Linux Kernel USB Device atusb.c use after free
146616
Linux Kernel USB Device ff-memless.c use after free
146615
Linux Kernel USB Device adutux.c use after free
146614
SALTO ProAccess SPACE Webserver default permission [CVE-2019-19460]
146613
SALTO ProAccess SPACE input validation [CVE-2019-19459]
146612
SALTO ProAccess SPACE Data Export path traversal [CVE-2019-19458]
146611
SALTO ProAccess SPACE cross site scripting [CVE-2019-19457]
146610
freeFTPd SIZE Command buffer overflow [CVE-2019-19383]
146609
OpenWrt forwards cross site scripting
146608
OpenWrt rules cross site scripting
146607
Dell EMC RSA Authentication Manager Security Console Stored cross site scripting
146606
OkayCMS ProductsView.php injection
146605
FreeRADIUS EAP-pwd Handshake information disclosure [CVE-2019-13456]
146603
Cameron Hamilton-Rich axTLS asn1.c get_asn1_length buffer overflow
146602
mod_fcgid input validation [CVE-2016-1000104]
🔒
146601
node-cli Temp File input validation [CVE-2016-1000021]
146600
libgwenhywfar CA Certificate cleartext transmission [CVE-2015-7542]
🔒
🔒
146599
devscripts Tarball code injection [CVE-2013-7325]
🔒
🔒
146598
Zanata Log injection [CVE-2013-4486]
146597
Review Board URL authorization [CVE-2013-4411]
🔒
🔒
146596
shadow Directory Tree toctou [CVE-2013-4235]
146595
SaltStack RSA Key Generation excessive authentication [CVE-2013-2228]
146594
webauth Credentials insufficiently protected credentials [CVE-2013-2106]
146593
openshift URL input validation [CVE-2013-2103]
146592
Katello cross site scripting [CVE-2013-2101]
146591
Huawei Honor Play Screen Lock information disclosure [CVE-2019-5309]
146590
Huawei 20 RS ADB Mode authorization [CVE-2019-5308]
146589
Huawei Myna Cloud information disclosure [CVE-2019-5271]
146588
Huawei Home Router authorization [CVE-2019-5269]
146587
Huawei Home Router input validation [CVE-2019-5268]
146586
Huawei HiSuite/HwBackup information disclosure [CVE-2019-5263]
146585
Huawei Atlas 300/Atlas 500 buffer overflow [CVE-2019-5247]
146584
Huawei Viewpoint random values [CVE-2019-5232]
146583
Huawei P30/P30 Pro/Mate 20/HiSuite Upgrade Package input validation
146582
Huawei P30/P30 Pro/Mate 20/HiSuite Upgrade Package input validation
146581
Huawei P30/Mate 20/P30 Pro buffer overflow [CVE-2019-5225]
146580
Huawei P30 Application out-of-bounds read [CVE-2019-5224]
146579
Huawei Band 2/Honor Band 3 improper authentication [CVE-2019-5218]
146578
Huawei Share Access Control information disclosure [CVE-2019-5212]
146577
Huawei P20 Huawei Share input validation [CVE-2019-5211]
146576
Nova 5i/5 array index [CVE-2019-5210]
146575
McAfee Web Advisor Web Interface privileges management [CVE-2019-3666]
146574
McAfee Web Advisor Web Interface code injection [CVE-2019-3665]
146573
Intelbras WRN 150 Password Change SysToolChangePwd cross-site request forgery
146572
jpv Type Detection compareCommon improper authentication
146571
Image Uploader/Browser plugin Pathname pluginconfig.php input validation
146570
Alfresco Enterprise HTML File Upload Stored cross site scripting
146569
Kentico File Upload unrestricted upload [CVE-2019-19493]
146568
FreeSWITCH event_socket.conf.xml hard-coded credentials
146567
TestLink archiveData.php cross site scripting [CVE-2019-19491]
146566
LiteManager Permission ROMFUSClient.exe default permission
146565
SMPlayer m3u File buffer overflow [CVE-2019-19489]
146564
OpenSC CAC Certificate card-cac1.c memory corruption
146563
OpenSC pkcs15-prkey.c sc_pkcs15_decode_prkdf_entry operation after expiration
146562
OpenSC SETCOS Attribute card-setcos.c out-of-bounds read
146561
Zmanda Management Console Default Credentials ZMC_Admin_Advanced cross-site request forgery
146560
Free Photo Viewer BMP File unrestricted upload [CVE-2019-19468]
146559
CBC Gem App missing encryption [CVE-2019-19464]
146558
Anhui Huami Mi Fit App Update Check missing encryption [CVE-2019-19463]
146557
Linux Kernel relay.c relay_open null pointer dereference
146556
GNOME Dia Encoding infinite loop [CVE-2019-19451]
146555
illumos Thread ip_attr.c conn_ixa input validation
146554
LuaJIT type confusion [CVE-2019-19391]
146553
FusionPBX dialplan_detail_edit.php cross site scripting
146552
FusionPBX fifo_interactive.php cross site scripting
146551
FusionPBX voicemail_greeting_edit.php cross site scripting
146550
FusionPBX dialplans.php cross site scripting
146549
FusionPBX fax_log_view.php cross site scripting
146548
MISP TagsController.php permission assignment
146547
Linux Kernel btrfs Filesystem raid56.c index_rbio_pages out-of-bounds write
146546
Linux Kernel btrfs Filesystem async-thread.c btrfs_queue_work use after free
146545
Octopus Deploy Team API input validation [CVE-2019-19376]
146544
Octopus Deploy SSL Offloading missing initialization of resource
146543
rConfig downloadFile.php path traversal [Disputed]
146542
TeamViewer Desktop Application Chat information disclosure [CVE-2019-19362]
146541
Terraform risky encryption [CVE-2019-19316]
146540
ProFTPD tls_verify_crl null pointer dereference
146539
Django save default permission
146538
TitanHQ WebTitan Administration Interface hard-coded credentials
146537
TitanHQ WebTitan Administration Web Interface unrestricted upload
146536
TitanHQ WebTitan Hotfix Download injection [CVE-2019-19019]
146535
TitanHQ WebTitan Administration Interface dbconfig.ini Database information disclosure
146534
TitanHQ WebTitan Installation race condition [CVE-2019-19017]
146533
TitanHQ WebTitan Administration Interface history-x.php sql injection
146532
TitanHQ WebTitan Proxy Service exposure of resource [CVE-2019-19015]
146531
TitanHQ WebTitan privileges management [CVE-2019-19014]
146530
Allied Telesis AT-GS950-8 Web Interface path traversal [CVE-2019-18922]
146529
RabbitMQ amqp_connection.c memcpy integer overflow
146528
ezmaster Admin Sys Mode unnecessary privileges [CVE-2019-16767]
146527
wagtail-2fa authentication spoofing [CVE-2019-16766]
146526
Kaspersky Secure Connection exposure of resource [CVE-2019-15689]
146525
MuleSoft Mule Community Edition code injection [CVE-2019-15631]
146524
Trend Micro Security 2020 DLL Loader untrusted search path [CVE-2019-15628]
146523
Linux Kernel Marvell Wifi Chip Driver resource consumption [CVE-2019-14901]
146522
Linux Kernel Marvell Wifi Chip Driver stack-based overflow [CVE-2019-14897]
146521
Linux Kernel Marvell Wifi Chip Driver heap-based overflow [CVE-2019-14895]
146520
grub2 grub2-set-bootflag denial of service [CVE-2019-14865]
146519
Anviz CrossChex Access Control Management Software buffer overflow
146518
Inateck BCST-60 injection [CVE-2019-12503]
146517
Anviz Access Control Password Change improper authentication
146516
Anviz Access Control authentication replay [CVE-2019-12393]
146515
Anviz Access Control authorization [CVE-2019-12392]
146514
Anviz Management System Log unknown vulnerability [CVE-2019-12391]
146513
Anviz Access Control Service Port 5010 PIN information disclosure
146512
Anviz Access Control Service Port 5010 Credentials information disclosure
146511
Anviz Access Control Service Port 5010 information disclosure
146510
Module::Signature PGP Signature Parser numeric conversion [CVE-2015-3406]
🔒
🔒
146509
cabextract File Extraction path traversal [CVE-2015-2060]
🔒
🔒
146508
Ruby OpenSSL Extension verify_certificate_identity input validation
🔒
🔒
146507
Libgcrypt/GnuPG mpi_powm information exposure
🔒
🔒
146506
Docker Container Protection Mechanism path traversal [CVE-2014-9356]
🔒
🔒
146505
Libgcrypt/GnuPG Elgamal Decryption information disclosure [CVE-2014-3591]
🔒
🔒
146504
Zabbix inadequate encryption [CVE-2013-7484]
146503
ReviewBoard REST API authorization [CVE-2013-4410]
🔒
🔒
146502
rhn-proxy RHN Satellige cleartext transmission [CVE-2012-5562]
146501
FreeBSD input validation [CVE-2012-4576]
🔒
🔒
146500
Piwigo Incomplete Fix CVE-2012-4525 password.php cross site scripting
146499
Piwigo password.php cross site scripting
146498
mom PIF File run privileges management
🔒
🔒
146497
OpenSLP SLPIntersectStringList out-of-bounds read
🔒
🔒
146495
NAPC Xinet Elegant 6 Asset Library sql injection [CVE-2019-19245]
146494
Max Secure Anti Virus permission assignment [CVE-2019-19382]
146493
F5 SSL Orchestrator TMM input validation [CVE-2019-6674]
146492
F5 BIG-IP TMM input validation [CVE-2019-6673]
146491
F5 BIG-IP AFM Virtual Server Performance input validation
146490
F5 BIG-IP TMM release of resource [CVE-2019-6671]
146489
F5 BIG-IP vCMP Hypervisor cleartext storage [CVE-2019-6670]
146488
F5 BIG-IP TMM input validation [CVE-2019-6669]
146487
F5 BIG-IP APM Edge Client authorization [CVE-2019-6668]
146486
F5 BIG-IP TMM resource consumption [CVE-2019-6667]
146485
F5 BIG-IP TMM input validation [CVE-2019-6666]
146484
F5 BIG-IP ASM/BIG-IQ/iWorkflow/Enterprise Manager improper authentication
146483
FusionPBX fax_files.php cross site scripting
146482
FusionPBX xml_cdr_search.php cross site scripting
146481
HAProxy HTTP2 injection [CVE-2019-19330]
146480
WiKID Javascript Rendering Engine cross site scripting [CVE-2019-19329]
146479
Wikibase Wikidata Query Service GUI Tooltip Rdf.js injection
146478
Wikibase Wikidata Query Service GUI Reporting ResultView.js cross site scripting
146477
Linux Kernel ext4 Image xattr.c ext4_xattr_set_entry out-of-bounds write
146476
Linux Kernel btrfs Image Mount rwsem.c rwsem_down_write_slowpath use after free
146475
gnome-font-viewer TTF File sushi-font-widget.c text_to_glyphs null pointer dereference
146474
SQLite expr.c sqlite3ExprCodeTarget sql injection
146473
Linux Kernel Spectre-RSB Mitigation entry_64.S information disclosure
146472
Relion 670 path traversal [CVE-2019-18253]
146471
Relion 650/670 input validation [CVE-2019-18247]
146470
Crestron DMC-STRO Ping os command injection [CVE-2019-18184]
146469
Fortinet FortiOS SSL VPN Portal input validation [CVE-2019-15705]
146468
Centreon Web ldap_host.php sql injection
146467
Centreon Web Administration Interface formMibs.php injection
146466
Ghostscript setuserparams2 Remote Code Execution
146465
Siemens Polarion Web Page Generator Persistent cross site scripting
146464
Siemens Polarion Web Page Generator Reflected cross site scripting
146463
Siemens Polarion Web Page Generator Reflected cross site scripting
146462
Linux Kernel CIFS Path path traversal
146461
Ghostscript Remote Code Execution [CVE-2019-10216]
146460
Mersive Solstice Pod os command injection [CVE-2017-12945]
146459
xquest Password Generator random values [CVE-2016-4980]
🔒
🔒
146458
Python CGI Script CGIHandler redirect
🔒
🔒
146457
Frams' Fast File EXchange rup Reflected cross site scripting
🔒
🔒
146456
OTRS Help Desk before/ITSM/FAQ Object Linking privileges management
🔒
🔒
146455
AccountService user.c user_change_password_authorized_cb Password permission assignment
146454
dhclient Path Variable input validation [CVE-2012-2248]
146453
DHCPv6 Client DHCP Message injection [CVE-2011-2717]
146452
vsftpd Service Port 6200 os command injection [CVE-2011-2523]
146451
PackageKit RPM permission assignment [CVE-2011-2515]
🔒
🔒
146450
FreeBSD/NetBSD 802.11 Stack information disclosure [CVE-2011-2480]
146449
dirmngr System Call certificate validation [CVE-2011-2207]
146448
xscreensaver Activation missing authentication [CVE-2011-2187]
146447
OpenOffice Suite Tools privileges management [CVE-2011-2177]
146446
Linux Kernel Marvell Wifi Chip Driver cfg.c lbs_ibss_join_existing heap-based overflow
146445
Ipa Kerberos Key Data Parser ber_scanf resource consumption
146444
Ipa Batch Processing Password information disclosure
146443
Cloudera HUE LdapBackend improper authentication [CVE-2019-7319]
146442
F5 BIG-IP Active Directory/LDAP/Client Certificate improper authentication
146441
ISC BIND denial of service [CVE-2019-6477]
146440
IBM Sterling B2B Integrator Standard Edition Back-End Database sql injection
146439
Cesanta Mongoose mongoose.c integer overflow
146438
Zoho CRM Lead Magnet Plugin Module cross site scripting [CVE-2019-19306]
146437
typed_ast Python Interpreter ast_for_arguments out-of-bounds read
146436
typed_ast Python Interpreter handle_keywordonly_args out-of-bounds read
146435
Dolibarr CRM/ERP Profile Picture viewimage.php Stored cross site scripting
146434
AfterLogic Webmail Pro/Aurora Attachment Name Stored cross site scripting
146433
Squid Web Proxy HTTP Digest Authentication information disclosure
146432
Squid Web Proxy URL request smuggling [CVE-2019-18678]
146431
Squid Web Proxy Hostname cross-site request forgery [CVE-2019-18677]
146430
Squid Web Proxy URI Scheme input validation [CVE-2019-18676]
146429
Dell EMC Storage Monitoring/Reporting Java RMI Deserialization deserialization
146428
GitLab Community Edition/Enterprise Edition Permission permission assignment
146427
GitLab Community Edition/Enterprise Edition Permission privileges management
146426
GitLab Community Edition/Enterprise Edition Sub Group Epic information disclosure
146425
GitLab Community Edition/Enterprise Edition Access Control information disclosure
146424
GitLab Community Edition/Enterprise Edition Environment permission assignment
146423
GitLab Community Edition/Enterprise Edition Permission permissions
146422
GitLab Community Edition/Enterprise Edition Security Token permissions
146421
GitLab Community Edition/Enterprise Edition Elasticsearch information disclosure
146420
GitLab Community Edition/Enterprise Edition Nested GraphQL Query infinite loop
146419
GitLab Community Edition/Enterprise Edition Rdoc Wiki Page cross site scripting
146418
GitLab Community Edition/Enterprise Edition Comment permission assignment
146417
GitLab Community Edition/Enterprise Edition Private Project permission assignment
146416
GitLab Community Edition/Enterprise Edition Internal Redirect Filter redirect
146415
GitLab Community Edition/Enterprise Edition Project Label permission assignment
146414
GitLab Community Edition/Enterprise Edition Autocomplete information disclosure
146413
GitLab Community Edition/Enterprise Edition Access Control information disclosure
146412
GitLab Community Edition/Enterprise Edition Permission permission assignment
146411
GitLab Community Edition/Enterprise Edition Permission permission assignment
146410
CSRF Magic Library CSRF Protection csrf_callback cross-site request forgery
146409
Progress Sitefinity Password Recovery password recovery [CVE-2019-17392]
146408
PEGA Platform Audit Log information disclosure [CVE-2019-16388]
146407
PEGA Platform exposure of resource [CVE-2019-16387]
146406
PEGA Platform information disclosure [CVE-2019-16386]
146405
Ruby shell.rb injection [CVE-2019-16255]
146404
Ruby Incomplete Fix injection [CVE-2019-16254]
146403
TCL Alcatel Cingular Flip 2 B9HUAH1 Web API injection [CVE-2019-16243]
146402
TCL Alcatel Cingular Flip 2 B9HUAH1 omamock os command injection
146401
TCL Alcatel Cingular Flip 2 B9HUAH1 PIN Authentication authorization
146400
Ruby Regular Expression backtracking DigestAuth improper authentication
146399
Centreon cross site scripting [CVE-2019-16195]
146398
Ruby Path File.fnmatch privileges management
146397
Kaspersky Anti-Virus Web Protection redirect [CVE-2019-15688]
146396
Kaspersky Anti-Virus Web Protection information disclosure [CVE-2019-15687]
146395
Kaspersky Anti-Virus Antivirus Protection Feature input validation
146394
Kaspersky Anti-Virus Web Protection input validation [CVE-2019-15685]
146393
Ansible input validation [CVE-2019-14856]
146392
python-ecdsa Signature Decoding denial of service [CVE-2019-14853]
146391
libnbd NBD Protocol nbd_pread input validation
146390
Cloudera Manager Impala Query cross site scripting [CVE-2019-14449]
146389
Squid Web Proxy URN Response buffer overflow [CVE-2019-12526]
146388
Squid Web Proxy Access Check input validation [CVE-2019-12523]
146387
Fastweb Askey RTV1907VW injection [CVE-2019-12489]
146386
Cloudera Data Science Workbench Permission Check default permission
146385
Cloudera CDH Permission default permission [CVE-2018-17860]
146384
Cloudera Manager Username privileges management [CVE-2017-7399]
146383
Cloudera Manager Help Search cross site scripting [CVE-2016-9271]
146382
Cloudera CDH Search RealTimeGetHandler authorization
146381
Cloudera CDH Diagnostic Support Bundles information disclosure
146380
Cloudera CDH Impala Command authorization [CVE-2016-4572]
146379
Cloudera Manager cleartext storage [CVE-2016-3192]
146378
Cloudera CDH authorization [CVE-2016-3131]
146377
Fast Secure Contact Form Plugin cross site scripting [CVE-2015-9539]
146376
NextGEN Gallery path traversal [CVE-2015-9538]
146375
NextGEN Gallery cross site scripting [CVE-2015-9537]
146374
Cloudera HUE CDH privileges management [CVE-2015-7831]
146373
Cloudera Manager Diagnostic Support Bundles information disclosure
146371
Cloudera Manager UI cross site scripting [CVE-2015-4457]
146370
CMSMS News Module input validation [CVE-2011-4310]
146369
Zend Framework Encoding sql injection [CVE-2011-1939]
🔒
🔒
146368
lilo lilo-uuid-diskid lilo.conf information disclosure
146367
Jifty::DBI sql injection [CVE-2011-1933]
146366
Ansible Tower config Credentials cleartext storage
146365
mod_auth_openidc redirect [CVE-2019-14857]
146364
Google Chrome IndexedDB use after free [CVE-2019-5826]
146363
Google Chrome Javascript use after free [CVE-2019-5825]
146362
ProFTPD TLS tls_verify_crl null pointer dereference
146361
ProFTPD CRL tls_verify_crl certificate validation
146360
ProFTPD CRL tls_verify_crl certificate validation
146359
SQLite Distinct select.c sqlite3Select input validation
146358
Omron CX-Supervisor Teamviewer Remote Code Execution [CVE-2019-18251]
146357
ABB Power Generation Information Manager/Plant Connect authentication bypass
146356
Philips IntelliBridge EC40 SSH Server inadequate encryption [CVE-2019-18241]
146355
Eclipse Jetty Error Response cross site scripting [CVE-2019-17632]
146354
Cisco SD-WAN Solution vManage Web-based UI cross-site request forgery
146353
Cisco WebEx Teams DLL Loader uncontrolled search path [CVE-2019-16001]
146352
Cisco IOS XR Access Control List access control [CVE-2019-15998]
146351
Cisco DNA Spaces Connector CLI input validation [CVE-2019-15997]
146350
Cisco DNA Spaces Connector CLI access control [CVE-2019-15996]
146349
Cisco DNA Spaces Connector Web UI sql injection [CVE-2019-15995]
146348
Cisco Stealthwatch Enterprise Web-based Management Interface cross site scripting
146347
Cisco Small Business RV Series Router Web-based Management Interface improper authorization
146346
Cisco Email Security Appliance Antispam Protection Mechanism input validation
146345
Cisco Webex Event Center Web Interface improper authentication
146344
Cisco Unity Express CLI os command injection [CVE-2019-15986]
146343
Cisco Industrial Network Director Web-based Management Interface cross site scripting
146342
Cisco Unified Communications Manager Web-based Management Interface sql injection
146341
Cisco AsyncOS/Email Security Appliance MP3 Detection Engine input validation
146340
Cisco Unified Communications Domain Manager Web-based Management Interface cross site scripting
146339
Cisco TelePresence Collaboration Endpoint/RoomOS CLI access control
146338
Cisco Webex Meeting WebEx Network Recording Admin Page access control
146337
Cisco Prime Infrastructure REST API input validation [CVE-2019-15958]
146336
Cisco AsyncOS/Web Security Appliance Web Management Interface access control
146335
Trend Micro Password Manager information disclosure [CVE-2019-15629]
146334
UniFi Video command injection [CVE-2019-15595]
146333
Cisco TelePresence Collaboration Endpoint CLI input validation
146332
Cisco WebEx Network Recording Player/Webex Player ARF File memory corruption
146331
Cisco WebEx Network Recording Player/Webex Player ARF File memory corruption
146330
Cisco Wireless LAN Controller Software Web Interface input validation
146329
Cisco Small Business RV Series Router Web-based Management Interface deserialization
146328
Cloud Foundry UAA Log Credentials log file
146327
iobroker.web GET Reflected cross site scripting
146326
Yaws URL path traversal [CVE-2011-4350]
146325
Ruby OpenSSL Extension inadequate encryption [CVE-2011-4121]
146324
Yubico PAM Module pam_sm_authenticate input validation
🔒
🔒
146323
Serendipity Karma Plugin serendipity_admin.php cross site scripting
146322
phpLDAPadmin HTTP Header resource consumption [CVE-2011-4082]
146321
OpenStack Nova Key information disclosure [CVE-2011-4076]
🔒
🔒
146320
Hardlink link following [CVE-2011-3632]
🔒
🔒
146319
Hardlink integer overflow [CVE-2011-3631]
🔒
🔒
146318
Hardlink out-of-bounds write [CVE-2011-3630]
🔒
🔒
146317
Ruby Log File HTTPRequest injection
146316
Tahoe-LAFS authorization [CVE-2011-3617]
146315
Red Hat JBoss Application Server cross-site request forgery [CVE-2011-3609]
146314
Red Hat JBoss Application Server Aministration Console DOM-Based cross site scripting
146313
Apache OFBiz XML-RPC Event xmlrpc xml external entity reference
146312
Polipo assertion [CVE-2011-3596]
🔒
🔒
146311
wec_discussion Extension sql injection [CVE-2011-3584]
🔒
146310
TYPO3 sql injection [CVE-2011-3583]
🔒
146309
apt apt-key signature verification [CVE-2011-3374]
146308
Views Builk Operations Module cross site scripting [CVE-2011-3373]
🔒
🔒
146307
evolution-data-server Email Message missing encryption [CVE-2011-3355]
146306
openvas-scanner Temp File link following [CVE-2011-3351]
🔒
146305
Google Chrome Swiftshader out-of-bounds read [CVE-2019-5881]
146304
Google Chrome Policy Enforcement information disclosure [CVE-2019-5880]
146303
Google Chrome Same Origin Policy input validation [CVE-2019-5879]
146302
Google Chrome v8 use after free [CVE-2019-5878]
146301
Google Chrome Javascript memory corruption [CVE-2019-5877]
146300
Google Chrome Media use after free [CVE-2019-5876]
146299
Google Chrome Downloads Address input validation
146298
Google Chrome Navigation input validation [CVE-2019-5874]
146297
Google Chrome Navigation Address input validation
146296
Google Chrome Mojo use after free [CVE-2019-5872]
146295
Google Chrome Skia out-of-bounds write [CVE-2019-5871]
146294
Google Chrome Media use after free [CVE-2019-5870]
146293
Google Chrome Blink use after free [CVE-2019-5869]
146292
Google Chrome Javascript memory corruption [CVE-2019-5866]
146291
Google Chrome Policy Enforcement input validation [CVE-2019-5865]
146290
Google Chrome Content Security Policy input validation [CVE-2019-5864]
146289
Google Chrome AppCache input validation [CVE-2019-5862]
146288
Google Chrome Blink improper restriction of rendered ui layers
146287
Google Chrome PDFium use after free [CVE-2019-5860]
146286
Google Chrome URI Scheme input validation [CVE-2019-5859]
146285
Google Chrome Services Integration input validation [CVE-2019-5858]
146284
Google Chrome Javascript memory corruption [CVE-2019-5857]
146283
Google Chrome Policy Enforcement input validation [CVE-2019-5856]
146282
Google Chrome PDFium integer overflow [CVE-2019-5855]
146281
Google Chrome PDFium integer overflow [CVE-2019-5854]
146280
Google Chrome Javascript input validation [CVE-2019-5853]
146279
Google Chrome Javascript input validation [CVE-2019-5852]
146278
Google Chrome WebAudio use after free [CVE-2019-5851]
146277
Google Chrome Offline Mode use after free [CVE-2019-5850]
146276
Google Chrome Skia out-of-bounds read [CVE-2019-5849]
146275
Google Chrome Font information disclosure [CVE-2019-5848]
146274
Google Chrome Javascript memory corruption [CVE-2019-5847]
146273
Google Chrome Blink use after free [CVE-2019-5842]
146272
IBM Spectrum Protect Backup-Archive Client TCP/IP information exposure
146271
Linux Kernel vcsu Device vc_screen.c vcs_write out-of-bounds read
146270
OpenTrade v1.js sql injection
146269
QueryTree Invitation InvitationsController.cs input validation
146268
Oniguruma regexec.c str_lower_case_match out-of-bounds read
146267
Linux Kernel cpia2_core.c cpia2_remap_buffer integer overflow
146266
Symantec Critical System Protection improper authentication [CVE-2019-18374]
146265
Nokia Impact path traversal [CVE-2019-17406]
146264
Nokia Impact Reflected cross site scripting [CVE-2019-17405]
146263
Nokia Impact Path path traversal [CVE-2019-17404]
146262
Nokia Impact File Upload unrestricted upload [CVE-2019-17403]
146261
vscode-codeql codeQL.cli.executablePath path traversal [CVE-2019-16765]
146260
pow_assent PowAssent.Phoenix.AuthorizationController resource consumption
146259
Kaspersky Protection Extension authorization [CVE-2019-15684]
146258
Katello Password Storage Credentials cleartext transmission
146257
Google Chrome WebBluetooth out-of-bounds write [CVE-2019-13724]
146256
Google Chrome WebBluetooth use after free [CVE-2019-13723]
146255
Google Chrome PDFium use after free [CVE-2019-13721]
146254
Google Chrome WebAudio use after free [CVE-2019-13720]
146253
Google Chrome Full Screen Mode insecure storage of sensitive information
146252
Google Chrome Omnibox Domain input validation
146251
Google Chrome Full Screen Mode insecure storage of sensitive information
146250
Google Chrome Policy Enforcement authorization [CVE-2019-13716]
146249
Google Chrome Omnibox Domain authentication spoofing
146248
Google Chrome Color Enhancer Extension css injection
146247
Google Chrome Policy Enforcement information disclosure [CVE-2019-13713]
146246
Google Chrome Policy Enforcement information disclosure [CVE-2019-13711]
146245
Google Chrome Downloads input validation [CVE-2019-13710]
146244
Google Chrome Policy Enforcement authentication spoofing [CVE-2019-13709]
146243
Google Chrome Navigation Address authentication spoofing
146242
Google Chrome information disclosure [CVE-2019-13707]
146241
Google Chrome PDFium out-of-bounds read [CVE-2019-13706]
146240
Google Chrome Policy Enforcement information disclosure [CVE-2019-13705]
146239
Google Chrome Content Security Policy authentication spoofing
146238
Google Chrome Policy Enforcement Address authentication spoofing
146237
Google Chrome Installer privileges management [CVE-2019-13702]
146236
Google Chrome Navigation Address authentication spoofing
146235
Google Chrome Renderer memory corruption [CVE-2019-13700]
146234
Google Chrome Renderer use after free [CVE-2019-13699]
146233
Google Chrome Javascript memory corruption [CVE-2019-13698]
146232
Google Chrome Policy Enforcement permission assignment [CVE-2019-13697]
146231
Google Chrome Javascript use after free [CVE-2019-13696]
146230
Google Chrome use after free [CVE-2019-13695]
146229
Google Chrome WebRTC use after free [CVE-2019-13694]
146228
Google Chrome IndexedDB use after free [CVE-2019-13693]
146227
Google Chrome Policy Enforcement input validation [CVE-2019-13692]
146226
Google Chrome Navigation Address input validation
146225
Google Chrome Blink use after free [CVE-2019-13688]
146224
Google Chrome Blink use after free [CVE-2019-13687]
146223
Google Chrome Offline Mode use after free [CVE-2019-13686]
146222
Google Chrome use after free [CVE-2019-13685]
146221
Google Chrome Javascript information disclosure [CVE-2019-13684]
146220
Google Chrome Policy Enforcement permission assignment [CVE-2019-13683]
146219
Google Chrome Same Origin Policy permission assignment [CVE-2019-13682]
146218
Google Chrome Download permission assignment [CVE-2019-13681]
146217
Google Chrome TLS IP Address privileges management
146216
Google Chrome Policy Enforcement permission assignment [CVE-2019-13679]
146215
Google Chrome Download Domain input validation
146214
Google Chrome Policy Enforcement permission assignment [CVE-2019-13677]
146213
Google Chrome Policy Enforcement Domain permission assignment
146212
Google Chrome Extension input validation [CVE-2019-13675]
146211
Google Chrome Omnibox Domain input validation
146210
Google Chrome Developer Tools input validation [CVE-2019-13673]
146209
Google Chrome Security UI input validation [CVE-2019-13671]
146208
Google Chrome input validation [CVE-2019-13670]
146207
Google Chrome Navigation Address input validation
146206
Google Chrome Policy Enforcement permission assignment [CVE-2019-13668]
146205
Google Chrome Omnibox URL input validation
146204
Google Chrome information disclosure [CVE-2019-13666]
146203
Google Chrome Blink permission assignment [CVE-2019-13665]
146202
Google Chrome Content Security Policy permission assignment [CVE-2019-13664]
146201
Google Chrome Omnibox Domain input validation
146200
Google Chrome Content Security Policy permission assignment [CVE-2019-13662]
146199
Google Chrome Notification input validation [CVE-2019-13661]
146198
Google Chrome Notification input validation [CVE-2019-13660]
146197
Google Chrome Omnibox permission assignment [CVE-2019-13659]
146196
389-ds-base Verbose Mode insufficiently protected credentials
146195
Ansible GCP Module service_account_contents information disclosure
146194
Openshift Container Platform Debug Log neutralization for logs
146193
Linux Kernel Bluetooth null pointer dereference [CVE-2019-10207]
146192
IBM Spectrum Protect Backup-Archive Client CIT privileges management
146191
GNU Patch Incomplete Fix path traversal [CVE-2015-1396]
🔒
🔒
146189
cloud-init EC2 Instance Data privileges management [CVE-2012-6639]
146188
libuser Home Directory information disclosure [CVE-2012-5644]
🔒
🔒
146187
thttpd .htpasswd File null pointer dereference [CVE-2012-5640]
146186
Ipa Server Identity Cookie cookie validation
146185
libuser Directory Tree toctou [CVE-2012-5630]
🔒
🔒
146184
gksu-polkit PolicyKit Policy Configuration File privileges management
🔒
🔒
146183
opendnssec libcurl API input validation [CVE-2012-5582]
146182
Python Keyring default permission [CVE-2012-5578]
146181
gnome-system-log polkit Policy information disclosure [CVE-2012-5535]
🔒
🔒
146180
Claws Mail vCalendar Plugin Interface Credentials insufficiently protected credentials
146179
Quagga ospf6d assertion [CVE-2012-5521]
146178
vdsm Certificate Generator certificate validation [CVE-2012-5518]
🔒
🔒
146177
Zope Incomplete Fix CVE-2010-1104 cross site scripting [CVE-2011-4924]
146176
cri-o Container denial of service [CVE-2019-14891]
146175
ibus DBus Server authorization [CVE-2019-14822]
146174
Linux Kernel WMM heap-based overflow [CVE-2019-14815]
146173
Red Hat Enterprise Linux Image Library insufficiently protected credentials
146172
Infinispan invokeAccessibly Remote Privilege Escalation
146171
Apple iPhone malloc privileges management [CVE-2019-9536]
146170
IBM Tivoli Netcool Impact Error Message information disclosure
146169
IBM Tivoli Netcool Impact Web UI cross site scriting [CVE-2019-4569]
146168
IBM SmartCloud Analytics solrconfig.xml information disclosure
146167
IBM SmartCloud Analytics Host Header Cache Poisoning privileges management
146166
IBM SmartCloud Analytics input validation [CVE-2019-4215]
146165
IBM SmartCloud Analytics Token/Cookie authorization [CVE-2019-4214]
146164
McAfee Client Proxy Microsoft Windows Client privileges management
146163
ZTE ZXCDN IAMWEB Management Portal input validation [CVE-2019-3428]
146162
ZTE XCDN IAMWEB Management Page injection [CVE-2019-3427]
146161
EmbedThis GoAhead HTTP Header memory corruption [CVE-2019-19240]
146160
Linux Kernel AppleTalk Subsystem aarp.c register_snap_client null pointer dereference
146159
Pagekit CSRF Token cross-site request forgery [CVE-2019-19013]
146158
Sangoma Asterisk/Certified Asterisk res_pjsip_t38.c null pointer dereference
146157
HP ThinPro Citrix Receiver Wrapper input validation [CVE-2019-18910]
146156
HP ThinPro input validation [CVE-2019-18909]
146155
Sangoma Asterisk/Certified Asterisk chan_sip.c authorization
146154
phpMyAdmin Designer sql injection [CVE-2019-18622]
146153
Sangoma Asterisk/Certified Asterisk Asterisk Manager Interface manager.c authorization
146152
Eracent EPA Agent Agent Executable untrusted search path [CVE-2019-17446]
146151
Eracent EDA/EPA/EPM/EUA/FLW/SUM Agent Executable link following
146150
Pannellum data URI cross site scripting [CVE-2019-16763]
146149
HP ThinPro Application Filter privileges management [CVE-2019-16287]
146148
HP ThinPro OS Application Filter authorization [CVE-2019-16286]
146147
HP ThinPro authorization [CVE-2019-16285]
146146
NSSLGlobal SatLink VSAT Modem Unit Web Interface cross site scripting
146145
GitLab Comment resource consumption [CVE-2019-15593]
146144
ros_comm/ros-melodic-ros-comm buffer overflow [CVE-2019-13566]
146143
NAVER Vaccine nsz Archive nsGreen.dll path traversal
146142
Pivotal RabbitMQ Policy Management cross site scripting [CVE-2019-11291]
146141
Pivotal RabbitMQ Web Management Plugin resource consumption [CVE-2019-11287]
146140
ansible-playbook-k/Ansible CLI Tools Template Password input validation
146139
PowerDNS input validation [CVE-2019-10203]
146138
CloudForms v2v Infrastructure Mapping Delete Stored cross site scripting
146137
libbluray JAR File MountManager toctou
146136
OpenStack Designate DNS Protocol infinite loop [CVE-2015-5694]
146135
oVirt Permission authorization [CVE-2015-1780]
146134
ace Privileges generate_doygen.pl random values
146133
CHICKEN select buffer overflow
146132
redhat-upgrade-tool GPG Signature signature verification [CVE-2014-3585]
146131
POSH login.php cross site scripting
🔒
146130
POSH scr_sendmd5.php redirect
🔒
146129
Gael Q-Pulse managedlistdialog.aspx cross site scripting
146128
FlashCanvas proxy.php cross site scripting
146127
Mijosoft MijoSearch Error Message search information exposure
146126
Mijosoft MijoSearch search cross site scripting
146125
D-Link DSL-6740U Remote Management cross-site request forgery
146124
Exis Contexis Photo Gallery Model cross site scripting [CVE-2013-6239]
146123
SpagoBI Worksheet Designer unrestricted upload [CVE-2013-6234]
146122
ownCloud new.php cross site scripting
🔒
146121
W3 Total Cache Database Cache information disclosure [CVE-2012-6079]
146120
W3 Total Cache Hash Generation information disclosure [CVE-2012-6078]
146119
W3 Total Cache Secure Storage Password information disclosure
146118
plow buffer overflow [CVE-2012-3407]
146117
PyXML Hash Table resource consumption [CVE-2012-0877]
146116
PostfixAdmin menu.php cross site scripting
🔒
🔒
146115
Qualcomm Snapdragon Auto Xtra Daemon use after free [CVE-2019-10490]
146114
Qualcomm Snapdragon Auto Qurt Kernel buffer overflow [CVE-2018-13916]
146113
Fortinet FortiOS Configuration Backup hard-coded credentials
146112
Beckhoff TwinCAT Profinet Driver divide by zero [CVE-2019-5637]
146111
Beckhoff TwinCAT Runtime ADS Discovery Service denial of service
146110
NetApp ONTAP Select Deploy Administration Utility injection [CVE-2019-5509]
146109
xcftools xcf2png/xcf2pnm flattenIncrementally integer overflow
146108
xcftools xcf2png/xcf2pnm flattenIncrementally integer overflow
146107
Tenda AC9 Router AC1200 WanParameterSetting os command injection
146106
Tenda AC9 Router AC1200 WanParameterSetting os command injection
146105
Qualcomm Snapdragon Auto memory corruption [CVE-2019-2339]
146104
Qualcomm Snapdragon Auto CBO Listener use after free [CVE-2019-2336]
146103
Qualcomm Snapdragon Auto Attach Reject Message infinite loop
146102
Qualcomm Snapdragon Compute use after free [CVE-2019-2329]
146101
Qualcomm Snapdragon Auto Kernel out-of-bounds read [CVE-2019-2318]
146100
Qualcomm Snapdragon Auto API memory corruption [CVE-2019-2315]
146099
Qualcomm Snapdragon Auto SNDCP Module out-of-bounds read [CVE-2019-2303]
146098
Qualcomm Snapdragon Auto NAN Message integer underflow [CVE-2019-2297]
146097
Qualcomm Snapdragon Auto SDI memory corruption [CVE-2019-2295]
146096
Qualcomm Snapdragon Auto Modem improper authentication [CVE-2019-2289]
146095
Qualcomm Snapdragon Auto Downlink Session out-of-bounds read
146094
Qualcomm Snapdragon Auto P2P Action Frame out-of-bounds read
146093
Qualcomm Snapdragon Auto Camera Sensor use after free [CVE-2019-2266]
146092
Qualcomm Snapdragon Auto Bitmap File buffer overflow [CVE-2019-2251]
146091
libarchive archive_string.c archive_wstring_append_from_mbs out-of-bounds read
146090
rConfig devices.php sql injection
146089
Oniguruma regparse.c fetch_interval_quantifier out-of-bounds read
146088
Oniguruma gb18030.c gb18030_mbc_enc_len out-of-bounds read
146087
vTiger CRM My Preferences default permission [CVE-2019-19202]
146086
Kyrol Internet Security IOCTL kyrld.sys permission assignment
146085
Shibboleth Service Provider Spec File link following [CVE-2019-19191]
146084
Jalios JCMS improper authentication [CVE-2019-19033]
146083
Sangoma FreePBX Access Control authorization [CVE-2019-19006]
146082
Nitro Pro Log File debug.log input validation
146081
Zulip Server Password Authentication API Key improper authentication
146080
Redmine sql injection [CVE-2019-18890]
146079
Symfony Cache Adapter Interface injection [CVE-2019-18889]
146078
Symfony MIME Type input validation [CVE-2019-18888]
146077
Symfony UriSigner race condition [CVE-2019-18887]
146076
Symfony User information disclosure [CVE-2019-18886]
146075
HotkeyP Commands.cpp privilege privileges management
146074
Fortinet FortiClient Security Check os command injection [CVE-2019-17650]
146073
Zoho ManageEngine OpManager/Firewall Analyzer Nipper default permission
146072
NetApp ONTAP Select Deploy Administration Utility input validation
146071
Lexmark Services Monitor Service Port 2070 path traversal [CVE-2019-16758]
146070
Google Compute Engine Plugin ComputeEngineCloud#doProvision cross-site request forgery
146069
Google Compute Engine Plugin API Endpoint permission assignment
146068
Google Compute Engine Plugin SSH Host Key authorization [CVE-2019-16546]
146067
QMetry for JIRA Test Management Plugin cleartext transmission
146066
QMetry for JIRA Test Management Plugin config.xml Credentials credentials storage
146065
Spira Importer Plugin Global Configuration Credentials credentials storage
146064
Anchore Container Image Scanner Plugin config.xml Credentials credentials storage
146063
Jira Plugin Site Definition exposure of resource [CVE-2019-16541]
146062
Support Core Plugin Permission path traversal [CVE-2019-16540]
146061
Support Core Plugin Permission Check improper authorization [CVE-2019-16539]
146059
Centreon Web OVA/OVF permission assignment [CVE-2019-16406]
146058
Centreon Web Macro Expression Location Setting input validation
146057
Belkin Linksys Velop sysinfo_json.cgi Key authorization
146056
Fortinet FortiClient SSL VPN Gateway information disclosure [CVE-2019-15704]
146055
GOG Galaxy GalaxyClientService privileges management [CVE-2019-15511]
146054
Symfony VarExport var-exporter input validation
146053
ioBroker path traversal [CVE-2019-10767]
146052
Qualcomm IPS Interpreter integer overflow [CVE-2019-10627]
146051
Qualcomm QCA6174_9377 Registry privileges management [CVE-2019-10617]
146050
Qualcomm Snapdragon Auto WLAN Module buffer overflow [CVE-2019-10566]
146049
Qualcomm Snapdragon Auto Message out-of-bounds read [CVE-2019-10563]
146048
Qualcomm Snapdragon Auto Loop memory corruption [CVE-2019-10535]
146047
Qualcomm Snapdragon Auto Camera Driver array index [CVE-2019-10503]
146046
Qualcomm Snapdragon Auto Ressource Lock toctou [CVE-2019-10486]
146045
Fotinet FortiOS URL/SPAM/AV hard-coded credentials [CVE-2018-9195]
146044
Asuswrt-Merlin blocking.asp out-of-bounds write
146043
Synametrics SynaMan/Syncrify/SynTail cross-site request forgery
🔒
146042
Ikiwiki openid-selector.tmpl cross site scripting
🔒
🔒
146041
Zhone zNID 2426A Web Administrative Portal authorization [CVE-2014-8356]
146040
xcfa Temp File race condition [CVE-2014-5255]
146039
xcfa Temp File race condition [CVE-2014-5254]
146038
eDeploy eval injection
146037
wolfSSL Server Certificate improper authentication [CVE-2014-2904]
146036
wolfSSL CA Certificate certificate validation [CVE-2014-2902]
146035
wolfSSL Certificate certificate validation [CVE-2014-2901]
146034
python-rply Temp File rply-*.json link following
146033
Gamera Temp File io.py tempfile.mktemp input validation
146032
rc Temp File input validation [CVE-2014-1936]
146031
9base Temp File input validation [CVE-2014-1935]
146030
openshift-origin-node Gem cronjob Timeout input validation [CVE-2014-0084]
146029
net-ldap gem SSHA Password Generation password.rb LDAP Salt unknown vulnerability
146028
Slackware iodbctest/iodbctestw input validation [CVE-2013-7172]
146027
Slackware/Slackware LLVM Privileges tmp input validation
146026
Loftek Nexus 543 IP Camera get_realip.cgi information disclosure
146025
Loftek Nexus 543 IP Camera check_users.cgi Password insufficiently protected credentials
146024
Loftek Nexus 543 IP Camera set_users.cgi cross-site request forgery
146023
Loftek Nexus 543 IP Camera path traversal [CVE-2013-3311]
146022
xlockmore dclock input validation [CVE-2012-4524]
🔒
🔒
146021
Mono ASP.NET Web Form Hash input validation [CVE-2012-3543]
🔒
🔒
146020
cumin PostgreSQL Database input validation [CVE-2012-3460]
146019
pam_shield Default Configuration input validation [CVE-2012-2350]
146018
trytond ModelView.button authorization
146017
Activity Module cross-site request forgery [CVE-2012-2079]
146016
Activity Module cross site scripting [CVE-2012-2078]
146015
Quick Tabs Module cross site scripting [CVE-2012-1637]
146014
Chyrp ajax.php cross site scripting
146013
Linux Kernel extent-tree.c __btrfs_free_extent information disclosure
146012
Linux Kernel namei.c ext4_empty_dir null pointer dereference
146011
Linux Kernel ctree.c btrfs_root_node null pointer dereference
146010
Schneider Electric Andover Continuum Web Server cross site scripting
146009
Schneider Electric Modicon M340 CPU Web Server information disclosure
146008
VMware Workstation/Fusion RPC input validation [CVE-2019-5542]
146007
VMware Workstation/Fusion e1000e Virtual Network Adapter out-of-bounds write
146006
VMware Workstation/Fusion vmnetdhcp information disclosure [CVE-2019-5540]
146005
IBM Security Identity Manager Deserialization code injection
146004
IBM Maximo Asset Management denial of service [CVE-2019-4530]
146003
postgresql-common pg_ctlcluster privileges management
146002
CODESYS Web Server buffer overflow [CVE-2019-18858]
146001
GNU Serveez reader http_cgi_write information disclosure
146000
iobroker.admin path traversal [CVE-2019-10765]
145999
Google Chrome unknown vulnerability [CVE-2016-9652]
🔒
🔒
145998
Google Chrome Product Security memory corruption [CVE-2016-5194]
🔒
🔒
145997
PostgreSQL Error Message information disclosure [CVE-2015-3167]
🔒
🔒
145996
PostgreSQL snprintf memory corruption
🔒
🔒
145995
GnuPG Sign Extension keybox-search.c input validation
🔒
🔒
145994
GnuPG Keyring DB use after free [CVE-2015-1606]
🔒
🔒
145993
Dolibarr ERP CRM barcode.lib.php input validation [CVE-2013-2093]
145992
Dolibarr ERP CRM functions.lib.php cross site scripting [CVE-2013-2092]
145991
Dolibarr ERP CRM fiche.php sql injection
145990
MediaWiki api.php information disclosure
🔒
🔒
145989
MediaWiki HttpFunctions.php input validation
🔒
🔒
145988
Piwik cross site scripting [CVE-2013-0195]
145987
Piwik cross site scripting [CVE-2013-0194]
145986
Piwik cross site scripting [CVE-2013-0193]
145985
tuned default permission [CVE-2012-6136]
145984
Pidgin dbus cleartext transmission [CVE-2012-1257]
145983
Tiki tiki-admin_system.php cross site scripting
🔒
145982
Tiki tiki-remind_password.php cross site scripting
🔒
145981
Smarty3 input validation [CVE-2011-1028]
145980
Weborf HTTP input validation [CVE-2011-0529]
145979
statusnet addslashes input validation
145978
statusnet Error Message cross site scripting [CVE-2010-4659]
145977
Lenovo Paper software privileges management [CVE-2019-6191]
145976
Lenovo System Interface Foundation DLL Loader untrusted search path
145975
Lenovo XClarity Controller Stored injection [CVE-2019-6187]
145974
Lenovo System Interface Foundation code injection [CVE-2019-6186]
145973
Customer Engagement Service privileges management [CVE-2019-6184]
145972
ThinkPad USB-C Dock denial of service [CVE-2019-6176]
145971
Mail2000 redirect [CVE-2019-15073]
145970
Mail2000 Login portal cross site scripting
145969
Mail2000 go cross site scripting
ID
Title
Nessus
OpenVAS
Snort
Suricata
TippingPoint
145968
GNU C Library setuid Program information disclosure [CVE-2019-19126]
145967
Apache NiFi Authentication Mechanism Logout session expiration
145966
AngularJS merge input validation
145965
Apache NiFi API information disclosure [CVE-2019-10083]
145964
Apache NiFi XMLFileLookupService xml external entity reference
145963
Zikula cross site scripting [CVE-2011-3352]
145962
masqmail log.c seteuid dropped privileges
145961
LightDM Permission privileges management [CVE-2011-3349]
145960
foomatic-rip Filter Debug Mode link following [CVE-2011-2924]
🔒
🔒
145959
foomatic-rip Filter Debug Mode link following [CVE-2011-2923]
🔒
🔒
145958
Unbound IPsec Module input validation [CVE-2019-18934]
145957
Cloud Foundry Routing Nonce input validation [CVE-2019-11289]
145956
Pixie limit sql injection
145955
Node-cookie-signature Comparison race condition [CVE-2016-1000236]
145954
RubyGems Startup input validation [CVE-2012-6135]
145953
nuSOAP Certificate Validation certificate validation [CVE-2012-6071]
145952
Falconpl libcurl API input validation [CVE-2012-6070]
145951
ktsuss GTK Interface input validation [CVE-2011-2922]
🔒
🔒
145950
ktsuss Privileges dropped privileges [CVE-2011-2921]
🔒
🔒
145949
Code42 DLL Loader untrusted search path [CVE-2019-16861]
145948
Code42 DLL Loader untrusted search path [CVE-2019-16860]
145947
HHVM __construct use after free
145946
sniffit Configuration File out-of-bounds write [CVE-2014-5439]
🔒
145945
uzbl Cookie Storage information disclosure [CVE-2012-0843]
🔒
🔒
145944
Surf Cookie Jahr information disclosure [CVE-2012-0842]
🔒
🔒
145943
gnusound format string [CVE-2012-0824]
145942
nginx HTTP Proxy Module input validation [CVE-2011-4968]
145941
tog-Pegasus Package Hash input validation [CVE-2011-4967]
145940
Cobbler privileges management [CVE-2011-4954]
🔒
145939
Cobbler cross-site request forgery [CVE-2011-4952]
🔒
145938
mpack information disclosure [CVE-2011-4919]
🔒
🔒
145937
NVIDIA NVFlash privileges management [CVE-2019-5688]
145936
OpenWrt ustream-ssl certificate validation [CVE-2019-5102]
145935
OpenWrt ustream-ssl __ustream_ssl_poll certificate validation
145934
ZTE C520V21 Web Service improper authentication [CVE-2019-3424]
145933
ZTE C520V21 URL path traversal [CVE-2019-3423]
145932
PHICOMM K2 autoupgrade.lua input validation [CVE-2019-19117]
145931
newbee-mall NewBeeMallGoodsMapper.xml sql injection
145930
Octopus Server Persistent cross site scripting [CVE-2019-19085]
145929
Octopus Deploy Package unrestricted upload [CVE-2019-19084]
145928
Norton App Lock privileges management [CVE-2019-18373]
145927
Comodo Internet Security Signature Validation signmgr.dll untrusted search path
145926
Micro Focus Operations Agent XML Data xml external entity reference
145925
Footy Tipping Software AFL Web Edition File Upload unrestricted upload
145924
Footy Tipping Software AFL Web Edition cross site scripting [CVE-2019-17057]
145923
Mailbird HTML Mail Message cross site scripting [CVE-2019-15054]
145922
Social Photo Gallery plugin Album input validation [CVE-2019-14467]
145921
Apache Shiro Configuration Padding input validation
145920
Apache Solr Configuration File solr.in.sh unrestricted upload
145918
Sandline Centraleyezer File Upload Stored cross site scripting
145917
Sandline Centraleyezer Category Stored cross site scripting
145916
Sandline Centraleyezer File Upload unrestricted upload [CVE-2019-12271]
145915
elliptic-php Private Key Elliptic-Curve race condition
145914
Pimcore pimcore sql injection
145913
Codehaus jackson-mapper-asl XML Data xml external entity reference
145912
Apache Atlas Search Stored cross site scripting
145911
Plex Media Server Access Control insufficiently protected credentials
145910
Raritan CommandCenter Secure Gateway XML Data xml external entity reference
145909
BlackBoard Learn bb-auth-provider-cas Authentication Module redirect
145908
TBOOT Boot Loader loader.c input validation
🔒
🔒
145907
Jenkins CI Game Plugin cross site scripting [CVE-2012-4441]
145906
Jenkins Violations Plugin cross site scripting [CVE-2012-4440]
145905
Jenkins URL cross site scripting [CVE-2012-4439]
145904
Jenkins input validation [CVE-2012-4438]
145903
Distributed Ruby instance_eval Remote Code Execution
145902
Distributed Ruby Syscall Remote Code Execution [CVE-2011-5330]
145901
Iceweasel-firegpg Temp File link following [CVE-2008-7273]
145900
Linux Kernel dc clock_source_create resource consumption
145899
Linux Kernel dc create_resource_pool resource consumption
145898
Linux Kernel main.c nfp_flower_spawn_vnic_reprs resource consumption
145897
Linux Kernel main.c nfp_flower_spawn_phy_reprs resource consumption
145896
Linux Kernel tun.c qrtr_tun_write_iter resource consumption
145895
Linux Kernel usb.c ath10k_usb_hif_tx_sg resource consumption
145894
Linux Kernel ib_verbs.c bnxt_re_create_srq resource consumption
145893
Linux Kernel cls.c nfp_abm_u32_knode_replace resource consumption
145892
Linux Kernel ca8210.c ca8210_probe resource consumption
145891
Linux Kernel wmi.c ath9k_wmi_cmd resource consumption
145890
Linux Kernel htc_hst.c wait_for_completion_timeout resource consumption
145889
Linux Kernel trace_events_filter.c predicate_parse resource consumption
145888
Linux Kernel rsi_91x_mgmt.c rsi_send_beacon resource consumption
145887
Linux Kernel spi-gpio.c spi_gpio_probe resource consumption
145886
Linux Kernel fastrpc.c fastrpc_dma_buf_attach resource consumption
145885
Linux Kernel rtl8xxxu_core.c rtl8xxxu_submit_int_urb resource consumption
145884
Linux Kernel amdgpu_acp.c acp_hw_init resource consumption
145883
Linux Kernel bfad_attr.c bfad_im_get_stats resource consumption
145882
Linux Kernel sdma.c sdma_init resource consumption
145881
Linux Kernel spi-fsl-lpspi.c fsl_lpspi_probe resource consumption
145880
Linux Kernel usb.c rtl_usb_probe resource consumption
145879
Linux Kernel crypto_user_base.c crypto_report resource consumption
145878
Linux Kernel adis_buffer.c adis_update_scan_mode_burst resource consumption
145877
Linux Kernel adis_buffer.c adis_update_scan_mode resource consumption
145876
Linux Kernel ctxt-info-gen3.c iwl_pcie_ctxt_info_gen3_init resource consumption
145875
Linux Kernel dbg.c alloc_sgtable resource consumption
145874
Linux Kernel pcie.c mwifiex_pcie_init_evt_ring resource consumption
145873
Linux Kernel pcie.c mwifiex_pcie_alloc_cmdrsp_buf resource consumption
145872
Linux Kernel nl80211.c nl80211_get_ftm_responder_stats resource consumption
145871
Linux Kernel cx23888-ir.c cx23888_ir_probe resource consumption
145870
Linux Kernel rpmsg_char.c rpmsg_eptdev_write_iter resource consumption
145869
Linux Kernel gs_usb.c gs_can_open resource consumption
145868
Linux Kernel op-rfkill.c i2400m_op_rfkill_sw_toggle resource consumption
145867
Linux Kernel crypto_user_stat.c crypto_reportstat resource consumption
145866
Linux Kernel unittest.c unittest_data_add resource consumption
145865
Linux Kernel vboxguest_utils.c crypto_reportstat resource consumption
145864
Linux Kernel health.c mlx5_fw_fatal_reporter_dump resource consumption
145863
Linux Kernel ipmi_msghandler.c __ipmi_bmc_register resource consumption
145862
Linux Kernel conn.c mlx5_fpga_conn_create_cq resource consumption
145861
Linux Kernel v3d_gem.c v3d_submit_cl_ioctl resource consumption
145860
Linux Kernel i40e_main.c i40e_setup_macvlans resource consumption
145859
Xorux Lpar2RRD/Stor2RRD Upgrade Package os command injection
145858
KairosDB view.html cross site scripting
145857
jhead jpgfile.c process_SOFn out-of-bounds read
145856
iTerm2 Search History information disclosure [CVE-2019-19022]
145855
Oniguruma regexec.c search_in_range integer overflow
145854
MiniUPnP ngiflib ngiflib.c GifIndexToTrueColor null pointer dereference
145853
F5 BIG-IP Management Port input validation [CVE-2019-6664]
145852
F5 BIG-IP/BIG-IQ/iWorkflow/Enterprise Manager Configuration Utility DNS Rebinding input validation
145851
F5 BIG-IP Log log file [CVE-2019-6662]
145850
F5 BIG-IP APM APD/APMD resource consumption [CVE-2019-6661]
145849
F5 BIG-IP resource consumption [CVE-2019-6660]
145848
F5 BIG-IP Virtual Server input validation [CVE-2019-6659]
145847
Math Plugin Eval input validation [CVE-2019-19010]
145846
AbuseFilter Extension information disclosure [CVE-2019-18987]
145845
Pimcore Forgot Password excessive authentication [CVE-2019-18986]
145844
Pimcore 2FA Token excessive authentication [CVE-2019-18985]
145843
Pimcore Email Log Preview EmailController.php cross site scripting
145842
Pimcore ID privileges management [CVE-2019-18981]
145841
Cyrus IMAP privileges management [CVE-2019-18928]
145840
Symantec Endpoint Protection privileges management [CVE-2019-18372]
145839
slpjs Bitcoin Script input validation [CVE-2019-16762]
145838
slp-validate Bitcoin Script input validation [CVE-2019-16761]
145837
Ghostscript .charkeys Remote Code Execution
145836
TemaTres Administrator Account privileges management [CVE-2019-14345]
145835
TemaTres Stored cross site scripting [CVE-2019-14343]
145834
Marvell 88W8688 Parrot Faurecia Automotive FC6050W out-of-bounds write
145833
Marvell 88W8688 Parrot Faurecia Automotive FC6050W out-of-bounds write
145832
Symantec Endpoint Protection Manager privileges management [CVE-2019-12759]
145831
Symantec Endpoint Protection Digital Signature input validation
145830
Symantec Endpoint Protection privileges management [CVE-2019-12757]
145829
Symantec Endpoint Protection Password Protection authorization
145828
Symantec Endpoint Protection Manager privileges management [CVE-2018-18368]
145827
NSS ssl3_ComputeRecordMACConstantTime null pointer dereference
🔒
🔒
145826
openshift Install Script exposure of resource [CVE-2014-0023]
145825
Chrony cmdmon Protocol Amplification privileges management
🔒
🔒
145824
ClamAV dbg_printhex information disclosure
🔒
🔒
145823
ClamAV libclamav buffer overflow [CVE-2013-7088]
🔒
🔒
145822
ClamAV WWPack memory corruption [CVE-2013-7087]
🔒
🔒
145821
Perdition IMAP Server/POP Server ssl_outgoing_ciphers exceptional condition
145820
qtnx Configuration File Key cleartext storage
145819
ax25-tools AX.25 Daemon setuid privileges management
145818
Drupal File Upload authorization [CVE-2011-2726]
145817
gksu-polkit xauth input validation [CVE-2011-0703]
145816
Jetty Cookie Dump Servlet Escape memory corruption
145815
Intel fTPM race condition [CVE-2019-11090]
145814
Adobe Illustrator CC memory corruption [CVE-2019-8248]
145813
Adobe Illustrator CC memory corruption [CVE-2019-8247]
145812
Adobe Media Encoder out-of-bounds write [CVE-2019-8246]
145811
Adobe Media Encoder out-of-bounds read [CVE-2019-8244]
145810
Adobe Media Encoder out-of-bounds read [CVE-2019-8243]
145809
Adobe Media Encoder out-of-bounds read [CVE-2019-8242]
145808
Adobe Media Encoder out-of-bounds read [CVE-2019-8241]
145807
Adobe Bridge CC memory corruption [CVE-2019-8240]
145806
Adobe Bridge CC memory corruption [CVE-2019-8239]
145805
Adobe Illustrator CC Library Loader untrusted search path [CVE-2019-7962]
145804
Adobe Animate CC Library Loader untrusted search path [CVE-2019-7960]
145803
Philips Taolight Smart Wi-Fi Wiz Connected LED Bulb API improper authentication
145802
rack-cors Gem path traversal [CVE-2019-18978]
145801
MicroStrategy Library Reflected cross site scripting
145800
SnowHaze input validation [CVE-2019-18949]
145799
eQ-3 Homematic CCU2/Homematic CCU3 Web Interface exec.cgi input validation
145798
eQ-3 Homematic CCU2/Homematic CCU3 Web Interface save.cgi input validation
145797
eQ-3 Homematic CCU2/Homematic CCU3 Web Interface exec.cgi input validation
145796
Scanguard default permission [CVE-2019-18895]
145795
Linux Kernel volumes.c null pointer dereference
145794
3xLogic Infinias Access Control cross-site request forgery [CVE-2019-18651]
145793
Untangle NG Firewall Report Stored cross site scripting
145792
Untangle NG Firewall Reflected cross site scripting [CVE-2019-18648]
145791
Untangle NG Firewall injection [CVE-2019-18647]
145790
Within Authenticate Firewall sql injection [CVE-2019-18646]
145789
Espressif ESP32 Secure Boot information disclosure [CVE-2019-17391]
145788
STMicroelectronics ST33TPHF2ESPI TPM Private Key TPM-Fail risky encryption
145787
Blade Shadow Network Protocol input validation [CVE-2019-16110]
145786
ZyXEL GS1900 Password Recovery input validation [CVE-2019-15804]
145785
ZyXEL GS1900 libfds.so fds_sys_passDebugPasswd_ret input validation
145784
ZyXEL GS1900 Configuration Backup libsal.so.0.0 sal_util_str_encrypt hard-coded credentials
145783
ZyXEL GS1900 libfds.so.0.0 fds_sys_passDebugPasswd_ret insufficiently protected credentials
145782
ZyXEL GS1900 libclicmd.so cmd_sys_traceroute_exec input validation
145781
ZyXEL GS1900 Web Interface privileges management [CVE-2019-15799]
145780
Sony Xperia XZs external reference [CVE-2019-15744]
145779
Sony Xperia Touch external reference [CVE-2019-15743]
145778
Xiaomi Mi A3 external reference [CVE-2019-15475]
145777
Xiaomi Cepheus external reference [CVE-2019-15474]
145776
Xiaomi Mi A2 Lite external reference [CVE-2019-15473]
145775
Xiaomi Mi A2 Lite external reference [CVE-2019-15472]
145774
Xiaomi Mi Mix 2S permission assignment [CVE-2019-15471]
145773
Xiaomi Redmi Note 6 Pro permission assignment [CVE-2019-15470]
145772
Xiaomi Mi Pad 4 permission assignment [CVE-2019-15469]
145771
Xiaomi Mi A2 Lite external reference [CVE-2019-15468]
145770
Xiaomi Mi Mix 2S external reference [CVE-2019-15467]
145769
Xiaomi Redmi 6 Pro external reference [CVE-2019-15466]
145768
Samsung J7 Pro permission assignment [CVE-2019-15465]
145767
Samsung J7 Pro permission assignment [CVE-2019-15464]
145766
Samsung j7popeltemtr permission assignment [CVE-2019-15463]
145765
Samsung J7 Duo permission assignment [CVE-2019-15462]
145764
Samsung J7 Neo permission assignment [CVE-2019-15461]
145763
Samsung J7 Neo permission assignment [CVE-2019-15460]
145762
Samsung J7 Neo permission assignment [CVE-2019-15459]
145761
Samsung J7 Neo permission assignment [CVE-2019-15458]
145760
Samsung J6 permission assignment [CVE-2019-15457]
145759
Samsung J6 permission assignment [CVE-2019-15456]
145758
Samsung J5 permission assignment [CVE-2019-15455]
145757
Samsung J4 permission assignment [CVE-2019-15454]
145756
Samsung J4 permission assignment [CVE-2019-15453]
145755
Samsung J3 permission assignment [CVE-2019-15452]
145754
Samsung J3 permission assignment [CVE-2019-15451]
145753
Samsung j3popeltecan permission assignment [CVE-2019-15450]
145752
Samsung S7 Edge permission assignment [CVE-2019-15449]
145751
Samsung S7 Edge permission assignment [CVE-2019-15448]
145750
Samsung S7 Edge permission assignment [CVE-2019-15447]
145749
Samsung S7 permission assignment [CVE-2019-15446]
145748
Samsung S7 permission assignment [CVE-2019-15445]
145747
Samsung S7 permission assignment [CVE-2019-15444]
145746
Samsung J7 Max permission assignment [CVE-2019-15443]
145745
Samsung on7xelteskt permission assignment [CVE-2019-15442]
145744
Samsung on7xeltelgt permission assignment [CVE-2019-15441]
145743
Samsung J5 permission assignment [CVE-2019-15440]
145742
Samsung XCover4 permission assignment [CVE-2019-15439]
145741
Samsung XCover4 permission assignment [CVE-2019-15438]
145740
Samsung XCover4 permission assignment [CVE-2019-15437]
145739
Samsung A8+ permission assignment [CVE-2019-15436]
145738
Samsung A7 permission assignment [CVE-2019-15435]
145737
Samsung A5 permission assignment [CVE-2019-15434]
145736
Samsung A3 permission assignment [CVE-2019-15433]
145735
Evercoss U6 permission assignment [CVE-2019-15432]
145734
Evercoss U50A permission assignment [CVE-2019-15431]
145733
Bluboo D3 Pro permission assignment [CVE-2019-15430]
145732
Panasonic ELUGA I9 external reference [CVE-2019-15429]
145731
Xiaomi Mi Note 2 external reference [CVE-2019-15428]
145730
Xiaomi Mi Mix external reference [CVE-2019-15427]
145729
Xiaomi Mi 5s Plus external reference [CVE-2019-15426]
145728
Kata M4s external reference [CVE-2019-15425]
145727
Doogee BL5000 external reference [CVE-2019-15424]
145726
Bluboo S1 external reference [CVE-2019-15423]
145725
Doogee Mix external reference [CVE-2019-15422]
145724
Blackview BV7000 Pro external reference [CVE-2019-15421]
145723
Blackview BV9000Pro-F external reference [CVE-2019-15420]
145722
Asus X015_1 external reference [CVE-2019-15419]
145721
Asus X00K_1 external reference [CVE-2019-15418]
145720
Tecno Spark Pro permission assignment [CVE-2019-15417]
145719
Sony keyaki_kddi permission assignment [CVE-2019-15416]
145718
Xiaomi Redmi 5 external reference [CVE-2019-15415]
145717
Asus ZenFone AR permission assignment [CVE-2019-15414]
145716
Asus ZenFone 3 Ultra permission assignment [CVE-2019-15413]
145715
Asus ZenFone 4 Selfie com.asus.loguploader permission assignment
145714
Asus ZenFone 3 Laser com.asus.loguploader permission assignment
145713
Asus ZenFone 5Q com.asus.loguploader permission assignment [CVE-2019-15410]
145712
Asus ZenFone 5Q com.asus.loguploader permission assignment [CVE-2019-15409]
145711
Asus ZenFone 5 Lite com.asus.loguploader permission assignment
145710
Asus X015_1 com.asus.loguploader permission assignment [CVE-2019-15407]
145709
Asus X00LD_3 com.asus.loguploader permission assignment [CVE-2019-15406]
145708
Asus X00K_1 com.asus.loguploader external reference [CVE-2019-15405]
145707
Asus ZenFone Max 4 com.asus.loguploader permission assignment
145706
Asus ZenFone 3s Max com.asus.loguploader permission assignment
145705
Asus A002_2 com.asus.loguploader permission assignment [CVE-2019-15402]
145704
Asus A002 com.asus.loguploader permission assignment [CVE-2019-15401]
145703
Asus ZenFone 3 Ultra com.asus.loguploader permission assignment
145702
Asus ZenFone 5Q com.asus.loguploader permission assignment [CVE-2019-15399]
145701
Asus ZenFone 4 com.asus.loguploader permission assignment [CVE-2019-15398]
145700
Asus ZenFone Max 4 com.asus.loguploader permission assignment
145699
Asus ZenFone 3 com.asus.loguploader permission assignment [CVE-2019-15396]
145698
Asus ZenFone 3s Max com.asus.loguploader permission assignment
145697
Asus ZenFone 5 Selfie external reference [CVE-2019-15394]
145696
Asus ZenFone Live external reference [CVE-2019-15393]
145695
Asus ZenFone 4 Selfie Authorization authorization [CVE-2019-15392]
145694
Asus ZenFone 4 Selfie Authorization authorization [CVE-2019-15391]
145693
Haier G8 Authorization authorization [CVE-2019-15390]
145692
Haier A6 Graphical User Interface permission assignment [CVE-2019-15389]
145691
Coolpad 1851 Graphical User Interface injection [CVE-2019-15388]
145690
Archos Core 101 Permission permission assignment [CVE-2019-15387]
145689
LAVA Z60s Authorization permission assignment [CVE-2019-15386]
145688
Infinix Note 5 Authorization authorization [CVE-2019-15385]
145687
Elephone A4 Authorization authorization [CVE-2019-15384]
145686
Allview X5 Authorization authorization [CVE-2019-15383]
145685
Cubot Nova Authorization authorization [CVE-2019-15382]
145684
BQ 5515L Authorization authorization [CVE-2019-15381]
145683
Fly Photo Pro Authorization authorization [CVE-2019-15380]
145682
Walton Primo G3 Authorization authorization [CVE-2019-15379]
145681
Panasonic Eluga Ray 600 Authorization authorization [CVE-2019-15378]
145680
Cherry Flare S7 Authorization authorization [CVE-2019-15377]
145679
Panasonic Eluga Ray 530 Authorization authorization [CVE-2019-15376]
145678
Haier G8 Authorization authorization [CVE-2019-15375]
145677
LAVA Iris 88 Lite Authorization authorization [CVE-2019-15374]
145676
Symphony i95 Lite Authorization authorization [CVE-2019-15373]
145675
Hisense F17 Authorization authorization [CVE-2019-15372]
145674
Symphony G100 Authorization authorization [CVE-2019-15371]
145673
Haier G8 Authorization authorization [CVE-2019-15370]
145672
LAVA Z61 Turbo Authorization authorization [CVE-2019-15369]
145671
Coolpad 1851 Authorization authorization [CVE-2019-15368]
145670
Haier P10 Authorization authorization [CVE-2019-15367]
145669
Infinix Note 5 Authorization authorization [CVE-2019-15366]
145668
LAVA Z92 Authorization authorization [CVE-2019-15365]
145667
Dexp BL250 Authorization authorization [CVE-2019-15364]
145666
Leagoo Power 5 Authorization authorization [CVE-2019-15363]
145665
LAVA Iris 88 Go Authorization authorization [CVE-2019-15362]
145664
Infinix Note 5 Authorization authorization [CVE-2019-15361]
145663
Hisense U965 Authorization authorization [CVE-2019-15360]
145662
Haier A6 Authorization authorization [CVE-2019-15359]
145661
Dexp Z250 authorization [CVE-2019-15358]
145660
Advan i6A authorization [CVE-2019-15357]
145659
LAVA Flair Z1 authorization [CVE-2019-15356]
145658
Tecno Camon iClick authorization [CVE-2019-15355]
145657
Ulefone Armor 5 authorization [CVE-2019-15354]
145656
Coolpad N3C authorization [CVE-2019-15353]
145655
Coolpad 1851 authorization [CVE-2019-15352]
145654
Tecno Camon Graphical User Interface permission assignment [CVE-2019-15351]
145653
Tecno Camon Graphical User Interface permission assignment [CVE-2019-15350]
145652
Tecno Camon Graphical User Interface permission assignment [CVE-2019-15349]
145651
Tecno Camon Graphical User Interface permission assignment [CVE-2019-15348]
145650
Tecno Camon iClick 2 Graphical User Interface permission assignment
145649
Tecno Camon iClick 2 Graphical User Interface permission assignment
145648
Tecno Camon iClick Graphical User Interface permission assignment
145647
Tecno Camon iClick Graphical User Interface permission assignment
145646
Tecno Camon iClick Graphical User Interface permission assignment
145645
Tecno Camon iAir 2 Plus Graphical User Interface permission assignment
145644
Tecno Camon iAir 2 Plus Graphical User Interface permission assignment
145643
Xiaomi Redmi 6 Pro permission assignment [CVE-2019-15340]
145642
LAVA Z60s permission assignment [CVE-2019-15339]
145641
LAVA Iris 88 Lite permission assignment [CVE-2019-15338]
145640
LAVA Z81 permission assignment [CVE-2019-15337]
145639
LAVA Z61 Turbo permission assignment [CVE-2019-15336]
145638
LAVA Z92 permission assignment [CVE-2019-15335]
145637
LAVA Iris 88 Go permission assignment [CVE-2019-15334]
145636
LAVA Flair Z1 permission assignment [CVE-2019-15333]
145635
LAVA Z61 permission assignment [CVE-2019-15332]
145634
dpdk File Descriptor resource consumption [CVE-2019-14818]
145633
SAS XML Mapper XML Data xml external entity reference [CVE-2019-14678]
145632
Nuvoton CIR Driver Permission default permission [CVE-2019-14602]
145631
Intel Graphics Driver API input validation [CVE-2019-14591]
145630
Intel Graphics Driver information disclosure [CVE-2019-14590]
145629
Intel Graphics Driver out-of-bounds read [CVE-2019-14574]
145628
Intel SGX SDK input validation [CVE-2019-14566]
145627
Intel SGX SDK input validation [CVE-2019-14565]
145626
Facebook WhatsApp MP4 File stack-based overflow [CVE-2019-11931]
145625
Intel Baseboard Management Controller memory corruption [CVE-2019-11182]
145624
Intel Baseboard Management Controller out-of-bounds read [CVE-2019-11181]
145623
Intel Baseboard Management Controller input validation [CVE-2019-11180]
145622
Intel Baseboard Management Controller input validation [CVE-2019-11179]
145621
Intel Baseboard Management Controller buffer overflow [CVE-2019-11178]
145620
Intel Baseboard Management Controller exceptional condition [CVE-2019-11177]
145619
Intel Baseboard Management Controller input validation [CVE-2019-11175]
145618
Intel Baseboard Management Controller Access Control information disclosure
145617
Intel Baseboard Management Controller Session session fixiation
145616
Intel Baseboard Management Controller out-of-bounds read [CVE-2019-11172]
145615
Intel Baseboard Management Controller memory corruption [CVE-2019-11171]
145614
Intel Baseboard Management Controller improper authentication
145613
Intel Baseboard Management Controller Session session expiration
145612
Intel PROSet Wireless WiFi Software privileges management [CVE-2019-11156]
145611
Intel PROSet Wireless WiFi Software Directory Permission default permission
145610
Intel PROSet Wireless WiFi Software Directory Permission default permission
145609
Intel PROSet Wireless WiFi Software DLL memory corruption [CVE-2019-11153]
145608
Intel WiFi Driver memory corruption [CVE-2019-11152]
145607
Intel WiFi Driver memory corruption [CVE-2019-11151]
145606
Intel Xeon Voltage Modulation Interface unusual condition [CVE-2019-11139]
145605
Intel Xeon/Atom System Firmware input validation [CVE-2019-11137]
145604
Intel Xeon Access Control privileges management [CVE-2019-11136]
145603
Intel Graphics Driver Kernel Mode Module memory corruption [CVE-2019-11113]
145602
Intel Graphics Driver Kernel Mode Driver privileges management
145601
Intel Graphics Drivers Unified Shader Compiler null pointer dereference
145600
Intel Graphics Driver input validation [CVE-2019-11089]
145599
Intel Core Processor/Xeon Protected Memory Subsystem information disclosure
145598
Intel Core Processor/Xeon Protected Memory Subsystem information disclosure
145597
Intel Core Processor/Pentium/Celeron/Atom/Xeon privileges management
145596
Intel Core Processor/Pentium/Celeron/Atom/Xeon Access Control input validation
145595
Intel Xeon System Management Mode memory corruption [CVE-2019-0152]
145594
Intel Core Processor/Xeon Memory Protection memory corruption
145593
Intel Ethernet 700 Series Controller Access Control authorization
145592
Intel Ethernet 700 Series Controller i40e Driver input validation
145591
Intel Ethernet 700 Series Controller i40e Driver resource consumption
145590
Intel Ethernet 700 Series Controller i40e Driver input validation
145589
Intel Ethernet 700 Series Controller i40e Driver resource consumption
145588
Intel Ethernet 700 Series Controller i40e Driver buffer overflow
145587
Intel Ethernet 700 Series Controller exceptional condition [CVE-2019-0144]
145586
Intel Ethernet 700 Series Controller Kernel-Mode Driver exceptional condition
145585
Intel Ethernet 700 Series Controller Access Control ilp60x64.sys privileges management
145584
Intel Ethernet 700 Series Controller buffer overflow [CVE-2019-0140]
145583
Intel Ethernet 700 Series Controller privileges management [CVE-2019-0139]
145582
Intel CPU Memory Protection memory corruption [CVE-2019-0124]
145581
Intel SGX Memory Protection memory corruption [CVE-2019-0123]
145580
Intel SGX/Xeon Memory Subsystem information disclosure [CVE-2019-0117]
145579
Cryptocat Message cross site scripting [CVE-2013-4109]
145578
Cryptocat Remote Code Execution [CVE-2013-4108]
145577
Cryptocat Conversation Overview Nickname cross site scripting
145576
Netgear WNDR4700 path traversal [CVE-2013-3073]
145575
Netgear WNDR4700 Administration Portal improper authentication
145574
Netgear WNDR4700 Management Web Interface Credentials information disclosure
145573
Moodle External Enrollment Plugin Context check externallib.php get_enrolled_users improper validation of integrity check value
🔒
🔒
145572
Moodle navigationlib.php load_for_user information disclosure
🔒
🔒
145571
Moodle Web Services input validation [CVE-2012-1168]
🔒
🔒
145570
Moodle Course Information coursetagslib.php information disclosure
🔒
🔒
145569
Moodle Form Subscription unsubscribe permission assignment
🔒
🔒
145568
Moodle lib.php fill_table information disclosure
🔒
🔒
145567
Moodle Gradebook grade_export_form.php definition information disclosure
🔒
🔒
145566
Moodle Repository access.php default permission
🔒
🔒
145565
Moodle Backup log file [CVE-2012-1156]
🔒
🔒
145564
Moodle Database Activity Export Permission export.php export information disclosure
🔒
🔒
145563
klibc DHCP Reply net-$DEVICE.conf command injection
🔒
🔒
145562
Thunar thunar_transfer_job_copy_node format string
🔒
145561
rsyslog Daemon release of resource [CVE-2011-1490]
🔒
145560
rsyslog Daemon release of resource [CVE-2011-1489]
🔒
145559
rsyslog Daemon release of resource [CVE-2011-1488]
🔒
145558
unixODBC SQLDriverConnect buffer overflow
🔒
145557
tesseract Link link following [CVE-2011-1136]
145556
v86d Kernel authorization [CVE-2011-1070]
145555
Google Android Bootloader os command injection [CVE-2019-9467]
145554
Google Android Broadcom Wi-Fi Driver input validation [CVE-2019-9466]
145553
Huawei Product Message out-of-bounds read [CVE-2019-5294]
145552
Huawei Product Message release of resource [CVE-2019-5293]
145551
Huawei Honor 10/Honor 8A/Y6 Permission information disclosure
145550
ManageOne Gauss100 OLTP Database out-of-bounds read [CVE-2019-5289]
145549
Huawei P30 integer overflow [CVE-2019-5288]
145548
Huawei P30 integer overflow [CVE-2019-5287]
145547
Huawei Smart Phone Bastet Module double free [CVE-2019-5282]
145546
Huawei Smart Phone information disclosure [CVE-2019-5279]
145545
Exhibitor Web UI Config Editor os command injection [CVE-2019-5029]
145543
McAfee Advanced Threat Defense privileges management [CVE-2019-3663]
145542
McAfee Advanced Threat Defense here path traversal
145541
McAfee Advanced Threat Defense sql injection [CVE-2019-3661]
145540
McAfee Advanced Threat Defense privileges management [CVE-2019-3660]
145539
McAfee Advanced Threat Defense ePO information disclosure [CVE-2019-3651]
145538
McAfee Advanced Threat Defense Credentials information disclosure
145537
McAfee Advanced Threat Defense Log File Credentials information disclosure
145536
McAfee Threat Intelligence Exchange API improper authorization
145535
McAfee Data Loss Prevention ePO Extension Credentials missing encryption
145534
ZTE ZXHN H108N information disclosure [CVE-2019-3420]
145533
Google Android UserSwitcherController.java getCount privileges management
145532
Google Android Kernel binder.c binder_transaction privileges management
145531
Google Android binder.c binder_free_transaction use after free
145530
Google Android poisson_distribution information disclosure
145529
Google Android TvProvider.java createProjectionMapForQuery sql injection
145528
Google Android qmi_vs_service.cc load_logging_config buffer overflow
145527
Google Android bta_dm_api.cc BTA_DmPinReply out-of-bounds read
145526
Google Android v8 information disclosure [CVE-2019-2208]
145525
Google Android nfa_hci_act.cc nfa_hci_handle_admin_gate_rsp out-of-bounds write
145524
Google Android NFC rw_i93.cc rw_i93_sm_set_read_only out-of-bounds write
145523
Google Android proxy_resolver_v8.cc SetPacScript use after free
145522
Google Android objects.cc FindSharedFunctionInfo out-of-bounds read
145521
Google Android CryptoPlugin.cpp decrypt out-of-bounds write
145520
Google Android CryptoPlugin.cpp decrypt out-of-bounds write
145519
Google Android jsimd_arm64_neon.S generate_jsimd_ycc_rgb_convert_neon out-of-bounds write
145518
Google Android PackageInstallerService.java createSessionInternal privileges management
145517
Google Android Download Provider sql injection [CVE-2019-2198]
145516
Google Android CachedBluetoothDevice.java processPhonebookAccess insecure default initialization of resource
145515
Google Android Download Provider sql injection [CVE-2019-2196]
145514
Google Android sqlite3_android.cpp input validation
145513
Google Android Device Policy Client WelcomeActivity.java privileges management
145512
Google Android Permission SliceProvider.java input validation
145511
Google Android HidHostService.java okToConnect privileges management
145510
Pomelo State entryHandler.js injection
145509
SibSoft Xfilesharing up.cgi unrestricted upload
145508
SibSoft Xfilesharing path traversal [CVE-2019-18951]
145507
Western Digital My Cloud EX2 Ultra Instruction Pointer buffer overflow
145506
Western Digital My Cloud EX2 Ultra libscheddl.so out-of-bounds write
145505
Western Digital My Cloud EX2 Ultra download_mgr.cgi out-of-bounds write
145504
go-camo cross site scripting [CVE-2019-18923]
145503
Rise Ultimate Project Manager add_team_member cross-site request forgery
145502
Lavalite CMS cross site scripting [CVE-2019-18883]
145501
ACRN Device Model core.c assertion
145500
FUDForum Stored cross site scripting [CVE-2019-18839]
145499
crun Image linux.c link following
145498
Parallels Plesk Panel index.htm cross site scripting
145497
GNU FriBidi fribidi-bidi.c fribidi_get_par_embedding_levels_ex buffer overflow
145496
Phoenix SCT WinFlash Driver privileges management [CVE-2019-18279]
145495
Fuji Electric V-Server heap-based overflow [CVE-2019-18240]
145494
Blog2Social Plugin post.calendar.php Reflected cross site scripting
145493
Technicolor TC7300 wlanAccess.asp cross site scripting
145492
Technicolor TC7300 FTPDiag.asp cross site scripting
145491
CleanTalk cleantalk-spam-protect Plugin cleantalk-users.php Reflected cross site scripting
145490
Enghouse Web Chat Remote File Inclusion information disclosure
145489
Enghouse Web Chat cross site scripting [CVE-2019-16950]
145488
Enghouse Web Chat Chat Log input validation [CVE-2019-16949]
145487
Enghouse Web Chat server-side request forgery [CVE-2019-16948]
145486
Texas Instruments CC256x/WL18xx Bluetooth Low Energy buffer overflow
145485
Mitsubishi Electric MELSEC-Q/MELSEC-L FTP Service resource consumption
145484
SAP BusinessObjects Business Intelligence Platform XML Data input validation
145483
SAP Quality Management sql injection [CVE-2019-0393]
145482
SAP NetWeaver AS JAVA information disclosure [CVE-2019-0391]
145481
SAP Data Hub Connection Manager information disclosure [CVE-2019-0390]
145480
SAP NetWeaver Application Server privileges management [CVE-2019-0389]
145479
SAP UI5 HTTP Handler authentication spoofing [CVE-2019-0388]
145478
SAP ERP Sales/S4HANA Sales/S4CORE Order Proessing authorization
145477
SAP Enable Now cross site scripting [CVE-2019-0385]
145476
SP Business Intelligence Platform cross site scripting [CVE-2019-0382]
145475
vdsm/vdsclient Hostname Validator certificate validation [CVE-2014-8167]
145474
JBoss KeyCloak Soft Token cross-site request forgery [CVE-2014-3655]
145473
openshift Team Name Stored cross site scripting
145472
ProJoom Smart Flash Header upload.php unrestricted upload
145471
Netgear WNR3500U/WNR3500L SMB Service path traversal [CVE-2013-4657]
145470
Asus RT-AC66U/RT-N56U SMB Service path traversal [CVE-2013-4656]
145469
Belkin N900 SMB Service link following [CVE-2013-4655]
145468
TP-LINK TL-WDR4300/TL-1043ND path traversal [CVE-2013-4654]
145467
Zen Theme template.php zen_breadcrumb cross site scripting
145466
Netgear WNR3500U/WNR3500L cross site scripting [CVE-2013-3517]
145465
Netgear WNR3500U/WNR3500L CSRF Token cross-site request forgery
145464
TRENDnet TEW-691GR/TEW-692GR Telnet Service improper authentication
145463
TRENDnet TEW-812DRU Telnet Service broadcom.c cross-site request forgery
145462
Verizon FIOS Actiontec MI424WR-GEN3I cross site scripting [CVE-2013-3097]
145461
Bitweaver index.php cross site scripting
🔒
145460
LetoDMS cross-site request forgery [CVE-2012-4385]
145459
LetoDMS Login Page/Document Owner/Calendar Stored cross site scripting
145458
Ckeditor Module hook_file_download information disclosure
145456
phpBB BB Tag cross site scripting [CVE-2011-0544]
145455
Trac Workflow Permission default permission [CVE-2010-5108]
145454
Pithos link following [CVE-2010-4817]
145453
ConsoleKit Security Policy privileges management [CVE-2010-4664]
🔒
145452
udisks Kernel Module Loader unrestricted upload [CVE-2010-4661]
🔒
145451
PHP libxml2 release of resource [CVE-2010-4657]
145450
Poppler Command injection [CVE-2010-4654]
🔒
🔒
145449
Poppler Font integer overflow [CVE-2010-4653]
🔒
🔒
145448
Offlineimap SSL certificate validation [CVE-2010-4533]
145447
Offlineimap SSL Certificate Validator certificate validation
145446
McAfee Total Protection Microsoft Windows Client privileges management
145445
Lenovo ThinkPad BIOS Tamper Detection authorization [CVE-2019-6188]
145444
Lenovo ThinkPad SMI Callback input validation [CVE-2019-6172]
145443
Lenovo ThinkPad SMM input validation [CVE-2019-6170]
145442
NVIDIA GeForce Experience/Windows GPU Display Driver Local Service Provider untrusted search path
145441
Huawei Smartphone insufficient verification of data authenticity
145440
Huawei Smartphone improper authentication [CVE-2019-5233]
145439
Huawei P30 authorization [CVE-2019-5231]
145438
Huawei P20 Pro/P20/Mate RS input validation [CVE-2019-5230]
145437
Huawei P30 insufficient verification of data authenticity [CVE-2019-5229]
145436
Huawei P30/P30 Pro/V20 Detection Module race condition [CVE-2019-5228]
145435
Huawei Honor Play improper authentication [CVE-2019-5213]
145434
IBM Spectrum Protect Plus default permission [CVE-2019-4652]
145433
Systematic IRIS Standards Management Reflected cross site scripting
145432
Systematic IRIS WebForms improper authentication [CVE-2019-18925]
145431
Systematic IRIS WebForms path traversal [CVE-2019-18924]
145430
json-jwt Gem JWE String input validation [CVE-2019-18848]
145429
File Sharing Wizard Structured Exception out-of-bounds write
145428
Hitachi Command Suite resource consumption [CVE-2019-17360]
145427
TIBCO EBX Digital Asset Manager Web Interface Stored cross site scriting
145426
TIBCO EBX Data Exchange Web Interface Stored cross site scriting
145425
TIBCO EBX Web Server Reflected cross site scriting
145424
igniteup Plugin class-coming-soon-creator.php cross-site request forgery
145423
igniteup Plugin class-coming-soon-creator.php Stored cross site scripting
145422
igniteup Plugin class-coming-soon-creator.php information disclosure
145421
igniteup Plugin class-coming-soon-creator.php input validation
145419
ZyXEL P-1302-T10D v3 Access Control authorization [CVE-2019-15815]
145418
Microsoft Office Excel input validation [CVE-2019-1457]
145417
Slack-Chat Slack Access Token information disclosure [CVE-2019-14367]
145416
WP SlackSync Plugin Slack Access Token information disclosure
145415
Intercom Plugin Slack Access Token information disclosure [CVE-2019-14365]
145414
AUO SunVeillance Monitoring System mvc_send_mail.aspx sql injection
145413
AUO SunVeillance Monitoring System Access Control Picture_Manage_mvc.aspx unrestricted upload
145412
Microsoft Windows Hyper-V Network Switch input validation [CVE-2019-0719]
145411
Hitachi Command Suite information disclosure [CVE-2018-21026]
145410
Huawei Smart Phone null pointer dereference [CVE-2017-17224]
145409
OpenStack Keystone resource consumption [CVE-2012-1572]
🔒
🔒
145408
mwlib exceptional condition [CVE-2012-1109]
145407
atop Temp File link following [CVE-2011-3618]
145406
Google Chrome WebKit CSSSelector double free
145405
Google Chrome WebKit use after free [CVE-2011-2334]
145404
Google Chrome WebKit SVGSMILElement.h double free
145403
Google Chrome WebKit null pointer dereference [CVE-2011-1802]
145402
Microsoft Windows OpenType Font Parser memory corruption [CVE-2019-1456]
145401
Microsoft Office ClickToRun Security Feature privileges management
145400
Microsoft Office Excel memory corruption [CVE-2019-1448]
145399
Microsoft Office Online Server input validation [CVE-2019-1447]
145398
Microsoft Office Excel information disclosure [CVE-2019-1446]
145397
Microsoft Office Online Server input validation [CVE-2019-1445]
145396
Microsoft SharePoint Server Upload unrestricted upload [CVE-2019-1443]
145395
Microsoft SharePoint Server Security Feature privileges management
145394
Microsoft Windows Win32k information disclosure [CVE-2019-1440]
145393
Microsoft Windows GDI information disclosure [CVE-2019-1439]
145392
Microsoft Windows Graphics Component privileges management [CVE-2019-1438]
145391
Microsoft Windows Graphics Component privileges management [CVE-2019-1437]
145390
Microsoft Windows Win32k information disclosure [CVE-2019-1436]
145389
Microsoft Windows Graphics Component privileges management [CVE-2019-1435]
145388
Microsoft Windows Win32k privileges management [CVE-2019-1434]
145387
Microsoft Windows Graphics Component privileges management [CVE-2019-1433]
145386
Microsoft Windows DirectWrite information disclosure [CVE-2019-1432]
145385
Microsoft Visual Studio Archive privileges management [CVE-2019-1425]
145384
Microsoft Windows NetLogon Security Feature input validation
145383
Microsoft Windows StartTileData.dll privileges management [CVE-2019-1423]
145382
Microsoft Windows iphlpsvc.dll privileges management [CVE-2019-1422]
145381
Microsoft Windows dssvc.dll privileges management [CVE-2019-1420]
145380
Microsoft Windows Modules Installer Service information disclosure
145379
Microsoft Windows Data Sharing Service privileges management
145378
Microsoft Windows Subsystem for Linux race condition [CVE-2019-1416]
145377
Microsoft Windows Installer privileges management [CVE-2019-1415]
145376
Microsoft Edge Security Feature input validation [CVE-2019-1413]
145375
Microsoft Windows OpenType Font Driver ATMFD.dll information disclosure
145374
Microsoft Windows DirectWrite information disclosure [CVE-2019-1411]
145373
Microsoft Windows Remote Procedure Call information disclosure
145372
Microsoft Windows Win32k privileges management [CVE-2019-1408]
145371
Microsoft Windows Graphics Component privileges management [CVE-2019-1407]
145370
Microsoft Windows JET Database Engine memory corruption [CVE-2019-1406]
145369
Microsoft Windows UPnP Service privileges management [CVE-2019-1405]
145368
Microsoft Office information disclosure [CVE-2019-1402]
145367
Microsoft Windows Hyper-V input validation [CVE-2019-1399]
145366
Microsoft Windows Win32k privileges management [CVE-2019-1396]
145365
Microsoft Windows Win32k privileges management [CVE-2019-1395]
145364
Microsoft Windows Win32k privileges management [CVE-2019-1394]
145363
Microsoft Windows Win32k privileges management [CVE-2019-1393]
145362
Microsoft Windows Kernel privileges management [CVE-2019-1392]
145361
Microsoft Windows input validation [CVE-2019-1391]
145360
Microsoft Windows Certificate Dialog privileges management [CVE-2019-1388]
145359
Microsoft Windows AppX Deployment Extension privileges management
145358
Microsoft Windows Netlogon input validation [CVE-2019-1384]
145357
Microsoft Windows Data Sharing Service privileges management
145356
Microsoft Windows ActiveX Installer Service privileges management
145355
Microsoft Windows Servicing Stack information disclosure [CVE-2019-1381]
145354
Microsoft Windows splwow64.exe privileges management
145353
Microsoft Windows Data Sharing Service privileges management
145352
Microsoft Windows Error Reporting information disclosure [CVE-2019-1374]
145351
Microsoft Open Enclave SDK information disclosure [CVE-2019-1370]
145350
Microsoft Windows TCP/IP Stack information disclosure [CVE-2019-1324]
145349
Microsoft Windows Hyper-V Network Switch input validation [CVE-2019-1310]
145348
Microsoft Windows Hyper-V Network Switch input validation [CVE-2019-1309]
145347
Microsoft Azure Stack User Portal authentication spoofing [CVE-2019-1234]
145346
Microsoft Windows Kernel information disclosure [CVE-2019-11135]
145345
Microsoft Windows Hyper-V input validation [CVE-2019-0712]
145344
Microsoft Windows input validation [CVE-2018-12207]
145343
Microsoft Exchange Server Metadata deserialization [CVE-2019-1373]
145342
Microsoft Windows Win32k Graphics memory corruption [CVE-2019-1441]
145341
Microsoft Windows Media Foundation memory corruption [CVE-2019-1430]
145340
Microsoft Windows OpenType Font Parser memory corruption [CVE-2019-1419]
145339
Microsoft Internet Explorer Scripting Engine memory corruption
145338
Microsoft Edge/ChakraCore Scripting Engine memory corruption
145337
Microsoft Edge/ChakraCore Scripting Engine memory corruption
145336
Microsoft Edge/ChakraCore Scripting Engine memory corruption
145335
Microsoft Internet Explorer VBScript memory corruption [CVE-2019-1390]
145334
Microsoft Windows Hyper-V input validation [CVE-2019-1398]
145333
Microsoft Windows Hyper-V input validation [CVE-2019-1397]
145332
Microsoft Windows Hyper-V input validation [CVE-2019-1389]
145331
Microsoft Windows Hyper-V Switch input validation [CVE-2019-0721]
145330
MySQL-GUI-tools Process Password cleartext transmission
145329
JBoss BRMS cross site scripting [CVE-2010-3857]
145328
Ettercap ec_gtk_conf.c sscanf buffer overflow
🔒
🔒
145327
babiloo Dictionary File code download [CVE-2010-3440]
145326
alien-arena Download input validation [CVE-2010-3439]
145325
libpoe-component-irc-perl Line Feed format string [CVE-2010-3438]
145324
gargoyle-free libgarglk.so input validation
145323
Pixelpost cross-site request forgery [CVE-2010-3305]
145322
Ruby on Rails Padding missing encryption [CVE-2010-3299]
145321
Mailscanner Configuration missing encryption [CVE-2010-3292]
145320
Mailscanner Incomplete Fix link following [CVE-2010-3095]
145319
ZNC Connection null pointer dereference [CVE-2010-2488]
145318
Istio infinite loop [CVE-2019-18817]
145317
Helm Chart link following [CVE-2019-18658]
145316
Mitel MiCollab/MiVoice Business Express Web Conference Chat authorization
145315
Python Twisted HTTP Client certificate validation [CVE-2014-7143]
145314
HornetQ REST XML Data xml external entity reference [CVE-2014-3599]
145313
Pacemaker Temp File link following [CVE-2011-5271]
145312
statusnet cross site scripting [CVE-2011-3370]
145311
Elgg sql injection [CVE-2011-2936]
145310
Elgg cross site scripting [CVE-2011-2935]
145309
gdk-pixbuf GIF input validation [CVE-2011-2897]
🔒
145308
WSO2 IS as Key Manager Content-Type download-userinfo.jag Stored cross site scripting
145307
WSO2 IS as a Key Manager Dashboard Reflected cross site scripting
145306
python-psutil refcount double free [CVE-2019-18874]
145305
FUDForum admsession.php Stored cross site scripting
145304
GNU Mailutils maidag privileges management [CVE-2019-18862]
145303
darylldoyle svg-sanitizer Attribute input validation [CVE-2019-18857]
145302
SVG Sanitizer Module input validation [CVE-2019-18856]
145301
safe-svg input validation [CVE-2019-18855]
145300
safe-svg recursion [CVE-2019-18854]
145299
ImageMagick SVG svg.c input validation
145298
D-Link DIR-890L A1 Telnet Service image_sign hard-coded credentials
145297
tnef Attachment authorized_keys out-of-bounds read
145296
Chartkick Gem Prototype input validation [CVE-2019-18841]
145295
Envoy continue_on_listener_filters_timeout infinite loop
145294
Patriot Viper RGB Driver MsIo64.sys ZwMapViewOfSection privileges management
145293
wolfSSL ASN.1 Certificate asn.c out-of-bounds write
145292
NVIDIA GeForce Experience GameStream untrusted search path [CVE-2019-5701]
145291
NVIDIA Virtual GPU Manager vGPU Plugin input validation [CVE-2019-5698]
145290
NVIDIA Virtual GPU Manager Guest Access authorization [CVE-2019-5697]
145289
NVIDIA Virtual GPU Manager Guest VM out-of-bounds read [CVE-2019-5696]
145288
NVIDIA Windows GPU Display Driver DLL Loader untrusted search path
145287
NVIDIA Windows GPU Display Driver Kernel Mode Layer nvlddmkm.sys uninitialized pointer
145286
NVIDIA Windows GPU Display Driver Kernel Mode Layer nvlddmkm.sys DxgkDdiEscape input validation
145285
NVIDIA Windows GPU Display Driver Kernel Mode Layer nvlddmkm.sys DxgkDdiEscape null pointer dereference
145284
NVIDIA Windows GPU Display Driver Kernel Mode Layer nvlddmkm.sys DxgkDdiEscape input validation
145283
NVIDIA GeForce Experience Downloader input validation [CVE-2019-5689]
145282
IBM Cognos Analytics Web UI cross site scripting [CVE-2019-4645]
145281
IBM QRadar Web UI cross site scripting [CVE-2019-4581]
145280
IBM QRadar Advisor Blacklist input validation [CVE-2019-4556]
145279
IBM QRadar authorization [CVE-2019-4509]
145278
IBM QRadar Web UI cross site scripting [CVE-2019-4470]
145277
IBM QRadar Web UI cross site scripting [CVE-2019-4454]
145276
IBM i Web UI cross site scripting [CVE-2019-4450]
145275
IBM Cognos Controller URL information disclosure [CVE-2019-4412]
145274
IBM Cognos Controller Session Identifier information disclosure
145273
IBM Cognos Analytics information disclosure [CVE-2019-4334]
145272
openstack-mistral Log File information disclosure [CVE-2019-3866]
145271
ZTE ZXUPN-9000E input validation [CVE-2019-3426]
145270
ZTE ZXUPN-9000E Change Password default permission [CVE-2019-3425]
145269
EnergyCAP Public Dashboard privileges management [CVE-2019-18623]
145268
codepress-admin-columns Plugin CSV injection [CVE-2019-17661]
145267
JEUS Administration Web Page path traversal [CVE-2019-17327]
145266
Brocade SANnav Log Password log file
145265
Brocade SANnav SSL ReportsTrustManager certificate validation
145264
Brocade SANnav PBE risky encryption [CVE-2019-16208]
145263
Brocade SANnav Back-End Database hard-coded credentials [CVE-2019-16207]
145262
Brocade SANnav Authentication Mechanism log file [CVE-2019-16206]
145261
Brocade SANnav Session ID Random random values
145260
Syndesis unknown vulnerability [CVE-2019-14860]
145259
389-ds-base deref Plugin Password use after free
145258
Tasy EMR WebPortal information disclosure [CVE-2019-13557]
145257
Medtronic Valleylab Exchange Client hard-coded credentials [CVE-2019-13543]
145256
Medtronic Valleylab Exchange Client Password Hashing input validation
145255
Medtronic Valleylab LS10 Energy Platform RFID protection mechanism
145254
Medtronic Valleylab LS10 Energy Platform RFID improper authentication
145253
Apache Arrow Parquet null pointer dereference [CVE-2019-12410]
145252
Apache Arrow Array null pointer dereference [CVE-2019-12408]
145251
Ceph RGW Client Beast Front End resource consumption [CVE-2019-10222]
145250
Hibernate-Validator SafeHtml Validator cross site scripting [CVE-2019-10219]
145249
IBM Cognos Analytics Web Server xml injection [CVE-2018-1721]
145248
mod_ruid2 Descriptor input validation [CVE-2013-1889]
145247
tuned ktune Service input validation [CVE-2013-1820]
145246
qpid-cpp Message input validation [CVE-2009-5004]
145245
dtc-xen race condition [CVE-2009-4011]
145244
liboping input validation [CVE-2009-3614]
145243
Red Hat Enterprise Virtualization Manager SSL Certificate Verification Service certificate validation
145242
MantisBT Attachment cross site scripting [CVE-2009-2802]
145241
alsa-utils alsa-info link following
145240
Troubleshooting/Support Tools Plugin Log Scan authorization [CVE-2019-15005]
145239
HP Inkjet Printer Print File assertion [CVE-2019-6337]
145238
Dell EMC iDRAC8/iDRAC9 Password improper authorization [CVE-2019-3764]
145237
Rob Richards XmlSecLibs Signature input validation [CVE-2019-3465]
145236
ZTE MF910S One Click Update Tool Password information disclosure
145235
Matrix Synapse Signature send_join signature verification
145234
Eximious Logo Designer User Mode BuildGradientColorsTable+0x0000000000000053 out-of-bounds write
145233
Eximious Logo Designer out-of-bounds write [CVE-2019-18820]
145232
Eximious Logo Designer User Mode out-of-bounds write [CVE-2019-18819]
145231
strapi Password Reset Auth.js password recovery
145230
PopojiCMS Stored cross site scripting [CVE-2019-18816]
145229
PopojiCMS redirect [CVE-2019-18815]
145228
Linux Kernel audit.c aa_label_parse use after free
145227
Linux Kernel dwc3-pci.c dwc3_pci_probe resource consumption
145226
Linux Kernel debug.c sof_dfsentry_write resource consumption
145225
Linux Kernel ipc.c sof_set_get_large_ctrl_data resource consumption
145224
Linux Kernel komeda_wb_connector.c komeda_wb_connector_add resource consumption
145223
Linux Kernel af9005.c af9005_identify_state resource consumption
145222
Linux Kernel ccp-ops.c ccp_run_sha_cmd resource consumption
145221
Linux Kernel sja1105_spi.c sja1105_static_config_upload resource consumption
145220
Linux Kernel qla3xxx.c ql_alloc_large_buffers resource consumption
145219
Linux Kernel sysctl_net_ipv4.c tcp_ack_update_rtt integer overflow
145218
DjVuLibre IW44EncodeCodec.cpp filter_fv null pointer dereference
145217
eyecomms eyeCMS Assignment authorization [CVE-2019-17605]
145216
eyecomms eyeCMS input validation [CVE-2019-17604]
145215
Intelbras WRN 150 WAN Configuration Screen Stored cross site scripting
145214
Portainer cross site scripting [CVE-2019-16878]
145213
Portainer Access Control permission assignment [CVE-2019-16877]
145212
Directory Portainer path traversal [CVE-2019-16876]
145211
Portainer Access Control permission assignment [CVE-2019-16874]
145210
Portainer cross site scripting [CVE-2019-16873]
145209
Portainer Access Control permission assignment [CVE-2019-16872]
145208
PHPOffice PhpSpreadsheet XML Data std_table.php xml external entity reference
145207
HPE Nimble Storage System Multi Array Group privileges management
145206
GNUBOARD5 board_form_update.php cross site scripting
145205
MantisBT Access Control input validation [CVE-2013-1811]
🔒
🔒
145204
Gambas link following [CVE-2013-1809]
145203
Monkeyd Log File master.log log file
145202
Twiki input validation [CVE-2013-1751]
🔒
145201
lintian link following [CVE-2013-1429]
145200
Mahara TinyMCE Editor wysiwyg.php cross site scripting
145199
ldap-git-backup Directory Permission Password default permission
145198
Tahoe-LAFS input validation [CVE-2012-0051]
145197
OpenTTD Join resource consumption [CVE-2012-0049]
🔒
🔒
145196
Google Chrome WebKit Timer.cpp exceptional condition
145195
Google Chrome WebKit replaceDocument use after free
145194
Google Chrome Blink type conversion [CVE-2011-2337]
145193
Google Chrome Blink AnimationControllerPrivate exceptional condition
145192
syscp input validation [CVE-2010-2476]
145191
Drupal Session Lockout input validation [CVE-2010-2473]
145190
Drupal Locale Module/Dependent Contributed Module cross site scripting
145189
Shibboleth SP Private Key keygen.sh information disclosure
145188
Gource Log File gource-$UID.tmp input validation
145187
gitolite Path Name Filter input validation [CVE-2010-2447]
145186
Drupal Site Installation cross site scripting [CVE-2010-2250]
145185
Linux Kernel clocksource.c input validation
145184
gri Temp File exposure of resource [CVE-2008-7291]
145183
FireGPG cleartext storage [CVE-2008-7272]
145182
JON information disclosure [CVE-2008-5083]
145181
frysk f insecure default initialization of resource
145180
ClamAV ScanOLE2 Floating Point Remote Code Execution
145179
ViewVC Access Control permission assignment [CVE-2007-5743]
145178
Mondo Temp File exposure of resource [CVE-2007-3915]
145177
Linux Kernel iret_exc denial of service
145176
Xorux lpar2rrd/stor2rrd os command injection [CVE-2019-19041]
145175
WebKit putToPrimitive Universal cross site scriting
145174
Atlassian Jira Service Desk Server Customer Context Filter path traversal
145173
Atlassian Jira Service Desk Server Customer Context Filter authorization
145172
NiceHash Miner Error Message information disclosure [CVE-2019-6122]
145171
NiceHash Miner Authorization authorization [CVE-2019-6121]
145170
NiceHash Miner Wallet input validation [CVE-2019-6120]
145169
Computing For Good's Basic Laboratory Information System Access Control privileges management
145168
Computing For Good's Basic Laboratory Information System Access Control User improper authentication
145167
Rapid7 Metasploit Pro Web Interface permission assignment [CVE-2019-5642]
145166
Computing For Good's Basic Laboratory Information System Access Control password recovery
145165
LEADTOOLS JPEG2000 Parser out-of-bounds write [CVE-2019-5125]
145164
LEADTOOLS Header Parsing integer overflow [CVE-2019-5100]
145163
LEADTOOLS CMP Parser integer overflow [CVE-2019-5099]
145162
LEADTOOLS TIF Parser out-of-bounds write [CVE-2019-5084]
145161
Qualcomm Snapdragon Auto memory corruption [CVE-2019-2332]
145160
Qualcomm Snapdragon Auto integer overflow [CVE-2019-2331]
145159
Qualcomm Snapdragon Auto ADSP array index [CVE-2019-2325]
145158
Qualcomm Snapdragon Auto ADSP memory corruption [CVE-2019-2324]
145157
Qualcomm Snapdragon Auto Crypto Engine use of uninitialized resource
145156
Qualcomm Snapdragon Auto Vendor Command integer overflow [CVE-2019-2302]
145155
Qualcomm Snapdragon Auto out-of-bounds write [CVE-2019-2285]
145154
Qualcomm Snapdragon Auto memory corruption [CVE-2019-2283]
145153
Qualcomm Snapdragon Auto Key Blob input validation [CVE-2019-2275]
145152
Qualcomm Snapdragon Auto Array Index array index [CVE-2019-2258]
145151
Qualcomm Snapdragon Auto Kernel out-of-bounds read [CVE-2019-2249]
145150
Qualcomm Snapdragon Auto Thread memory corruption [CVE-2019-2246]
145149
Viber input validation [CVE-2019-18800]
145148
LibSass parser_selectors.cpp parseCompoundSelector null pointer dereference
145147
LibSass ast_sel_weave.cpp weaveParents out-of-bounds read
145146
LibSass eval.cpp Binary_Expression*) recursion
145145
Zoho ManageEngine ADSelfService Plus User Profile Page cross-site request forgery
145144
Samsung Galaxy S8 Plus/Galaxy S3/Galaxy Note 2/Exynos 4412 Bluetooth information disclosure
145143
Samsung Galaxy S8 Plus/Galaxy S3/Galaxy Note 2/Exynos 4412 Bluetooth injection
145142
Quest KACE Systems Management Appliance Server Center ticket_associated_tickets.php cross site scripting
145141
Quest KACE Systems Management Appliance Server Center cross site scripting
145140
Quest KACE Systems Management Appliance Server Center history_log.php sql injection
145139
Quest KACE Systems Management Appliance Server Center user_profile.php sql injection
145138
Quest KACE Systems Management Appliance Server Center sam_detail_titled.php cross site scripting
145137
Quest KACE Systems Management Appliance Server Center ticket_list.php sql injection
145136
Quest KACE Systems Management Appliance Server Center software_library.php sql injection
145135
Quest KACE Systems Management Appliance Server Center software_library.php Reflected cross site scripting
145134
Apache CXF Access Token Service improper authentication [CVE-2019-12419]
145133
Apache CXF Attachment resource consumption [CVE-2019-12406]
145132
Qualcomm Snapdragon Auto Sensor Power double free [CVE-2019-10565]
145131
Qualcomm Snapdragon Auto Header out-of-bounds read [CVE-2019-10542]
145130
Qualcomm Snapdragon Auto FLV Clip memory corruption [CVE-2019-10541]
145129
Qualcomm Snapdragon Auto Super Index Entry null pointer dereference
145128
Qualcomm Snapdragon Auto Array Index array index [CVE-2019-10533]
145127
Qualcomm Snapdragon Auto buffer overflow [CVE-2019-10531]
145126
Qualcomm Snapdragon Auto Entry Page set_page_dirty race condition
145125
Qualcomm Snapdragon Auto mdlog Session use after free [CVE-2019-10528]
145124
Qualcomm Snapdragon Auto clk Driver use after free [CVE-2019-10524]
145123
Qualcomm Snapdragon Auto buffer overflow [CVE-2019-10522]
145122
Qualcomm Snapdragon Auto DCI Client use after free [CVE-2019-10515]
145121
Qualcomm Snapdragon Auto Audio array index [CVE-2019-10512]
145120
Qualcomm Snapdragon Auto IE Measurement out-of-bounds read [CVE-2019-10505]
145119
Qualcomm Snapdragon Auto EXT Response resource consumption [CVE-2019-10504]
145118
Qualcomm Snapdragon Compute Camera Module buffer overflow [CVE-2019-10502]
145117
Qualcomm Snapdragon Auto Data Structure buffer overflow [CVE-2019-10496]
145116
Qualcomm Snapdragon Auto HEVC Encoding/AVC Encoding input validation
145115
Qualcomm Snapdragon Auto ADSP buffer overflow [CVE-2019-10491]
145114
Qualcomm Snapdragon Auto Chunk Parser null pointer dereference
145113
MailPoet Newsletters Plugin Spam privileges management [CVE-2018-20853]
145111
Progress Sitefinity CMS cross site scripting [CVE-2017-18639]
145110
Aruba ClearPass Policy Manager Credentials insufficiently protected credentials
145109
Pagure Attachment Endpoint cross site scripting [CVE-2016-1000037]
🔒
🔒
145108
Technicolor C2000T/C2100T hard-coded credentials [CVE-2015-7276]
🔒
🔒
145107
WP Marketplace Plugin cart.php ajaxinit path traversal
145106
WP Marketplace Plugin cart.php ajaxinit input validation
145105
Red Hat Enterprise Linux Kernel initialization [CVE-2014-8181]
145104
Linux Kernel compat.c restart_syscall out-of-bounds read [Disputed]
145103
TYPO3 Access Control ExtDirect input validation
🔒
145102
TYPO3 RemoveXSS cross site scripting
🔒
145101
TYPO3 Webserver input validation [CVE-2011-4902]
🔒
145100
TYPO3 Database information disclosure [CVE-2011-4901]
🔒
145099
TYPO3 Backend information disclosure [CVE-2011-4900]
🔒
145098
TYPO3 tcemain Flash Message cross site scripting [CVE-2011-4632]
🔒
145097
TYPO3 System Extension Recycler cross site scripting [CVE-2011-4631]
🔒
145096
TYPO3 browse_links Wizard cross site scripting [CVE-2011-4630]
🔒
145095
TYPO3 Admin Panel cross site scripting [CVE-2011-4629]
🔒
145094
TYPO3 Backend improper authentication [CVE-2011-4628]
🔒
145093
TYPO3 Backend information disclosure [CVE-2011-4627]
🔒
145092
TYPO3 typolink cross site scripting
🔒
145091
SimpleSAMLphp XML Encryption exceptional condition [CVE-2011-4625]
🔒
145090
Google Chrome WebKit input validation [CVE-2011-2808]
145089
Google Chrome WebKit fillRect integer overflow
145088
MySQL-GUI-tools Text Console Password insufficiently protected credentials
145087
Drupal redirect [CVE-2010-2471]
145086
Rbot Reaction Plugin input validation [CVE-2010-2446]
145085
makepasswd insecure default initialization of resource [CVE-2010-2247]
145084
Konversation input validation [CVE-2009-5050]
145083
Jetty WebApp JSP Snoop Page cross site scripting [CVE-2009-5049]
145082
Jetty Cookie Dump Servlet Stored cross site scripting
145081
Jetty JSP Dump Servlet/Session Dump Servlet cross site scripting
145080
Jetty Dump Servlet information disclosure [CVE-2009-5045]
145079
Samba AD DC LDAP Server null pointer dereference [CVE-2019-14847]
145078
Samba Password Complexity weak password [CVE-2019-14833]
145077
Samba Client path traversal [CVE-2019-10218]
145076
Magento Xpath xml injection [CVE-2019-8158]
145075
Magento Download Link Stored cross site scripting
145074
Magento Configuration server-side request forgery [CVE-2019-8156]
145073
Magento Product Stored cross site scripting
145072
Magento Design Configuration Stored cross site scripting
145071
Linux Kernel rcar_drif.c rcar_drif_g_fmt_sdr_cap Memory information disclosure
145070
SuiteCRM sql injection [CVE-2019-18784]
145069
Joomla CMS Access Check Path authorization
145068
Joomla CMS com_template cross-site request forgery [CVE-2019-18650]
145066
ClamAV fsg.c out-of-bounds write
145065
archivemail Temp File race condition [CVE-2006-4245]
145064
Linux Kernel privileges management [CVE-2006-4243]
145063
termpkg memory corruption [CVE-2006-3100]
145062
xlockmore missing authentication [CVE-2006-0062]
145061
xlockmore libpam-opensc missing authentication [CVE-2006-0061]
145060
Magento HTML Comment cross site scripting [CVE-2019-8233]
145059
Magento Import input validation [CVE-2019-8232]
145058
Magento Layout input validation [CVE-2019-8231]
145057
Magento Config Setting input validation [CVE-2019-8230]
145056
Magento Product Attribute input validation [CVE-2019-8229]
145055
Magento Transaction Mail Page cross site scripting [CVE-2019-8228]
145054
Magento Profile cross site scripting [CVE-2019-8227]
145053
Magento os command injection [CVE-2019-8159]
145052
Magento CSRF Token information disclosure [CVE-2019-8155]
145051
Magento Product Catalog input validation [CVE-2019-8154]
145050
Magento escapeURL cross site scripting
145049
Magento Admin Dashboard blockDirective Stored cross site scripting
145048
Magento Shippment server-side request forgery [CVE-2019-8151]
145047
Magento Page Layout input validation [CVE-2019-8150]
145046
Magento Session Management session fixiation [CVE-2019-8149]
145045
Magento Page Builder Stored cross site scripting
145044
Magento Customer Attribute Stored cross site scripting
145043
Magento Customer Attribute Stored cross site scripting
145042
Magento PageBuilder Template input validation [CVE-2019-8144]
145041
Magento Email Template Stored sql injection
145040
Magento Order Stored cross site scripting
145039
Magento Phar Deserialization deserialization [CVE-2019-8141]
145038
Magento Synchronization unrestricted upload [CVE-2019-8140]
145037
Magento Page Builder Stored cross site scripting
145036
Magento API Endpoint Stored cross site scripting
145035
Magento Layout input validation [CVE-2019-8137]
145034
Magento Symphony Framework Remote Code Execution [CVE-2019-8136]
145033
Magento Symphony Framework injection [CVE-2019-8135]
145032
Magento Email Template sql injection [CVE-2019-8134]
145031
Magento Sitemap input validation [CVE-2019-8133]
145030
Magento Inventory Source Stored cross site scripting
145029
Magento Database Connection sql injection [CVE-2019-8130]
145028
Magento Expression Stored cross site scripting
145027
Magento Main Website Name Stored cross site scripting
145026
Magento Newsletter Template sql injection [CVE-2019-8127]
145025
Magento XML Data xml entity expansion [CVE-2019-8126]
145024
Magento Configuration Parameter input validation [CVE-2019-8125]
145023
Magento Log insufficient verification of data authenticity [CVE-2019-8124]
145022
Magento Log input validation [CVE-2019-8123]
145021
Magento Layout Update input validation [CVE-2019-8122]
145020
Magento Bootstrap/jquery/Knockout privileges management [CVE-2019-8121]
145019
Magento Customer Email Address Stored cross site scripting
145018
Magento Bulk Product Import input validation [CVE-2019-8119]
145017
Magento cleartext storage [CVE-2019-8118]
145016
Magento Product View Stored cross site scripting
145015
Magento Session Management improper authentication [CVE-2019-8116]
145014
Magento Product Reflected cross site scripting
145013
Magento Import unrestricted upload [CVE-2019-8114]
145012
Magento Random Number Generator weak prng [CVE-2019-8113]
145011
Magento Email Confirmation insufficient verification of data authenticity
145010
Magento Plugin input validation [CVE-2019-8111]
145009
Magento Template Hierarchy input validation [CVE-2019-8110]
145008
Magento cross-site request forgery [CVE-2019-8109]
145007
Magento Session Management improper authentication [CVE-2019-8108]
145006
Magento Export Data input validation [CVE-2019-8107]
145005
Magento unrestricted upload [CVE-2019-8093]
145004
Magento Email Template Preview Reflected cross site scripting
145003
Magento Layout Update input validation [CVE-2019-8091]
145002
Magento Design Layout denial of service [CVE-2019-8090]
145001
Forcepoint Email Security cross site scripting [CVE-2019-6142]
145000
Investintech Able2Extract Professional out-of-bounds write [CVE-2019-5089]
144999
Investintech Able2Extract Professional out-of-bounds write [CVE-2019-5088]
144998
X11 Mesa 3D Graphics Library Shared Memory permission assignment
144997
Cisco Firepower Threat Defense Software HTTP Traffic Filter default permission
144996
Cisco Firepower Threat Defense Software Normalization improper authentication
144995
Cisco Firepower Threat Defense Software Protocol Detection improper authentication
144994
Cisco Firepower Threat Defense Software Stream Reassembly improper authentication
144993
Veritas InfoScale Cluster Server os command injection [CVE-2019-18780]
144992
Cisco Enterprise Chat/Email HTTP API information disclosure [CVE-2019-1877]
144991
ClamAV out-of-bounds read [CVE-2019-1789]
144990
Cisco FXOS/NX-OS CLI Diagnostics information disclosure [CVE-2019-1734]
144989
HP Device Boot input validation [CVE-2019-16284]
144988
Cisco TelePresence Advanced Media Gateway Web Application input validation
144987
ClamAV ZIP Bomb denial of service
144986
Apache Impala Random Number Generator missing authentication
144985
CloakCoin Header resource consumption [CVE-2018-19167]
144984
peercoin Header resource consumption [CVE-2018-19166]
144983
neblio Header resource consumption [CVE-2018-19165]
144982
reddcoin Header resource consumption [CVE-2018-19164]
144981
stratisX Header resource consumption [CVE-2018-19163]
144980
Divi Header resource consumption [CVE-2018-19162]
144979
alqo Header resource consumption [CVE-2018-19161]
144978
Diamond Header resource consumption [CVE-2018-19160]
144977
lux Header resource consumption [CVE-2018-19159]
144976
Phore Header resource consumption [CVE-2018-19157]
144975
PIVX Header resource consumption [CVE-2018-19156]
144974
navcoin Header resource consumption [CVE-2018-19155]
144973
HTMLCOIN Header resource consumption [CVE-2018-19154]
144972
particl Header resource consumption [CVE-2018-19153]
144971
emercoin Header resource consumption [CVE-2018-19152]
144970
Dovecot SSL/TLS Key permission assignment [CVE-2016-4983]
🔒
144969
Horde Groupware Webmail Edition basic.php cross-site request forgery
144968
ISC BIND DNS Response Rate Cache Poisoning authentication spoofing
144967
Python PIP DNS Query improper authentication [CVE-2013-5123]
🔒
🔒
144966
Google Chrome WebKit type conversion [CVE-2011-1460]
144965
Google Chrome Blink htmlpluginelement.cpp handleEvent resource consumption
144964
Serendipity Xinha manager.php cross site scripting
144963
Serendipity Xinha unrestricted upload [CVE-2011-1134]
ID
Title
Nessus
OpenVAS
Snort
Suricata
TippingPoint
144962
Serendipity Xinha backend.php cross site scripting
144961
TYPO3 Frontend Search Box cross site scripting [CVE-2010-3674]
🔒
144960
TYPO3 HTML Mailing API information disclosure [CVE-2010-3673]
🔒
144959
TYPO3 extbase Extension cross site scripting [CVE-2010-3672]
🔒
144958
TYPO3 session fixiation [CVE-2010-3671]
🔒
144957
TYPO3 Forgot Password Random inadequate encryption
🔒
144956
Red Hat 389 Directory Server Search Query _ger_parse_control null pointer dereference
144955
Nvu Mozilla XPCOM Remote Code Execution [CVE-2005-2354]
144954
Centrify Authentication/Privileged Elevation Services deserialization
144953
Lightbend Play Framework play-ws Credentials insufficiently protected credentials
144952
PhantomJS file:/ page.open file access
144951
ARM Mbed OS CoAP Library sn_coap_parser_options_parse out-of-bounds write
144950
ARM Mbed OS CoAP Library sn_coap_builder_calc_needed_packet_data_size_2 integer overflow
144949
Oxid eShop Admin Panel session fixiation [CVE-2019-17062]
144947
gdm3 Screen Lock information disclosure [CVE-2016-1000002]
144946
Nokogiri XML Entity xml entity expansion [CVE-2013-6461]
144945
Nokogiri Gem XML Document xml entity expansion [CVE-2013-6460]
144944
Horde Groupware Webmail Edition Permission edit.php cross-site request forgery
144943
Horde Groupware Webmail Edition Virtual Address Book search.php cross-site request forgery
144942
Cryptocat Chat User List information disclosure [CVE-2013-4110]
144941
Cryptocat cryptocat.js handlePresence cross site scripting
144940
Open Build Service TLS Certificate Validation certificate validation
144939
kube-state-metrics Annotation information disclosure [CVE-2019-10223]
144848
ARP-GUARD forgot1 sql injection
144847
FreeRTOS FATFS ff_file.c FF_Close use after free
144846
ARM Mbed OS MQTT Library readMQTTLenString input validation
144845
One Identity Cloud Access Manager cross-site request forgery
144844
One Identity Cloud Access Manager OTP improper validation of integrity check value
144843
php-gettext Plural Form Formula input validation [CVE-2015-8980]
🔒
144842
Python Software Foundation Djblets eval input validation
🔒
🔒
144841
RHQ Mongo DB Drift Server Temp File exposure of resource [CVE-2013-4374]
144840
Redhat vsdm Temp File exposure of resource [CVE-2013-4280]
144839
SciPy scipy.weave tmp privileges management
🔒
🔒
144838
Cryptocat Multiparty Encryption Scheme information disclosure
144837
Cryptocat Entropy Cryptocat.random entropy
144836
Cryptocat Firefox Conversation Overview input validation [CVE-2013-2259]
144835
Cryptocat Nickname Impersonation authentication spoofing
144834
Cryptocat Key Generation excessive authentication [CVE-2013-2257]
144833
TYPO3 Frontend Login Box redirect [CVE-2010-3669]
🔒
144832
TYPO3 Download Header Injection injection
🔒
144831
TYPO3 Form Spam input validation
🔒
144830
TYPO3 uniqid Random random values
🔒
144829
TYPO3 Extension Manager cross site scripting [CVE-2010-3665]
🔒
144828
TYPO3 Backend information disclosure [CVE-2010-3664]
🔒
144827
TYPO3 Backend unrestricted upload [CVE-2010-3663]
🔒
144826
TYPO3 Backend sql injection [CVE-2010-3662]
🔒
144825
shadow/sudo Session input validation [CVE-2005-4890]
🔒
144824
sudo Descriptor 3 race condition
144823
Linux Kernel V4L2 Subsystem vivid vivid_stop_generating_vid_cap race condition
144822
Linux Kernel tcp.c rds_tcp_kill_sock null pointer dereference
144821
SAP HANA Database input validation [CVE-2019-0350]
144820
360 Safe Router Background Process injection [CVE-2018-19031]
144818
JBoss AeroGear Reflected cross site scripting [CVE-2014-3649]
144817
Red Hat Update Infrastructure PKI information disclosure [CVE-2013-4518]
144816
CloudForms Password Storage insufficiently protected credentials
144815
slim crypt null pointer dereference
144814
Cryptocat Socialist Millionnaire Protocol inadequate encryption
144813
Cryptocat input validation [CVE-2013-4103]
144812
Cryptocat strophe.js Math.random Random random values
144811
Cryptocat Link Markup Decorator addLinks input validation
144810
Cryptocat input validation [CVE-2013-4100]
144809
Cryptocat strophe.js information disclosure
144808
Cryptocat Extension keygen.gif information disclosure
144807
SHIFT BitBox02 OLED Display information disclosure [CVE-2019-18673]
144806
Currency Switcher Addon input validation [CVE-2019-18668]
144805
freeradius3 for pfSense freeradius_view_config.php cross site scripting
144804
SECUDOS DOMOS Log Module path traversal [CVE-2019-18665]
144803
SECUDOS DOMOS Log Module cross site scripting [CVE-2019-18664]
144802
YouPHPTube getChat.json.php sql injection
144801
Hyundai Pay Kasse HK-1000 OLED Display information disclosure
144800
Archos Safe-T OLED Display information disclosure [CVE-2019-14358]
144799
F5 BIG-IP AFM AFM Configuration Utility sql injection [CVE-2019-6658]
144798
F5 BIG-IP Traffic Management User Interface Reflected cross site scripting
144797
Red Hat Linux Enterprise DHCP denial of service [CVE-2019-6470]
144796
Fastweb FASTgate Administration Console check_pwd information disclosure
144795
Facebook WhatsApp Wireless Emergency Alerts Protocol risky encryption
144794
AVG Antivirus SSID Name cross site scripting [CVE-2019-18654]
144793
Avast Antivirus SSID Name cross site scripting [CVE-2019-18653]
144792
Nexus Repository Manager CommandLineExecutor.java os command injection
144791
Symantec SONAR Tamper Protection default permission [CVE-2019-12752]
144790
ovirt-engine os.chmod permission assignment
144789
SmokePing Time Field cross site scripting [CVE-2013-4168]
🔒
🔒
144788
OpenStack Keystone/OpenStack Compute SSL Certificate Validator HTTPSConnections certificate validation
144787
GLPI common.tabs.php input validation
🔒
144786
Foswiki Maketext Macro code injection [CVE-2013-1666]
🔒
144785
Red Hat ManageIQ EVM cross site scripting [CVE-2013-0186]
144784
Redis Temp File redis.ds input validation
144783
Redis Temp File redis-%p.vm input validation
144782
openshift Temp File dump.sh input validation
144781
FreeBSD nsd resource transfer [CVE-2012-2979]
🔒
🔒
144780
Apache Struts ParameterInterceptor permission assignment
🔒
144779
TYPO3 Backend redirect [CVE-2010-3661]
🔒
144778
TYPO3 Backend cross site scripting [CVE-2010-3660]
🔒
144777
gs-gpl Addon Script race condition [CVE-2005-2352]
144776
Mutt Temp File exposure of resource [CVE-2005-2351]
144775
websieve Web User Interface cross site scripting [CVE-2005-2350]
144774
Jitbit .NET Forum Gravatar cross site scripting [CVE-2019-18636]
144773
Infosysta In-App / Desktop Notifications App Project NotificationSettings information disclosure
144772
Infosysta In-App / Desktop Notifications App Project ProjectFilter information disclosure
144771
php-symfony2-Validator Serialization input validation [CVE-2013-4751]
🔒
🔒
144770
Evince input validation [CVE-2013-3718]
144769
minidlna memory corruption [CVE-2013-2739]
144768
minidlna sql injection [CVE-2013-2738]
144767
MiniUPnPd Minissdp.c snprintf information disclosure
144766
Twiki Include injection
🔒
144765
YouPHPTube sql injection [CVE-2019-5151]
144764
YouPHPTube VideoTags Plugin sql injection [CVE-2019-5150]
144763
Tempo Plugin Permission authorization [CVE-2019-5095]
144762
AMD ATI Radeon Pixel Shader ATIDXX64.DLL out-of-bounds write
144761
Google Nest Cam IQ Indoor resource consumption [CVE-2019-5043]
144760
Rainbow PDF Office Server Document Converter PowerPoint Document Conversion parse out-of-bounds write
144759
grsecurity PaX Patch kmem read_kmem release of resource
144758
Python X.509 Certificate null pointer dereference [CVE-2019-5010]
🔒
144757
ClickHouse Header Injection injection [CVE-2019-18657]
144756
Technicolor TD5130v2 Web Interface mnt_ping.cgi os command injection
144755
Honeywell IP Camera Audio Stream missing authentication [CVE-2019-18230]
144754
Advantech WISE-PaaS/RMM sql injection [CVE-2019-18229]
144753
Honeywell IP Cameras input validation [CVE-2019-18228]
144752
Advantech WISE-PaaS/RMM XML Data xml external entity reference
144751
Honeywell IP Cameras authentication replay [CVE-2019-18226]
144750
Infosysta In-App / Desktop Notifications App UserFilter Username improper authentication
144749
Infosysta In-App / Desktop Notifications App PushNotification improper authentication
144748
Phoenix Contact PC Worx/PC Worx Express/Config+ Config+ Project File input validation
144747
CentOS-WebPanel.com CentOS Web Panel filemanager2.php Stored cross site scripting
144746
Fortinet FortiExtender CLI Admin Console os command injection
144745
Coldcard MK1/MK2 OLED Display information disclosure [CVE-2019-14356] [Disputed]
144744
Advantech WISE-PaaS/RMM path traversal [CVE-2019-13551]
144743
Advantech WISE-PaaS/RMM authorization [CVE-2019-13547]
144742
FreeTDS memory corruption [CVE-2019-13508]
144741
Sierra Wireless AirLink ES450 ACEManager upload.cgi improper authentication
144740
CUJO Smart Firewall Safe Browsing code injection [CVE-2018-4031]
144739
CUJO Smart Firewall mdnscap recursion [CVE-2018-4002]
144738
Atlantis Word Processor Word Document Parser uninitialized pointer
144737
CHICKEN Incomplete Fix buffer overflow [CVE-2013-2075]
144736
CHICKEN utils Module qs os command injection
🔒
144735
autojump privileges management [CVE-2013-2012]
144734
MediaWiki Lua cross site scripting [CVE-2013-1951]
🔒
🔒
144733
ruby193 unknown vulnerability [CVE-2013-1945]
144732
MantisBT Configuration Report Page adm_config_report.php cross site scripting
🔒
🔒
144731
MantisBT Configuration Report Page adm_config_report.php cross site scripting
🔒
144730
MantisBT manage_proj_ver_delete.php cross site scripting
🔒
🔒
144729
MantisBT Workflow input validation [CVE-2013-1930]
🔒
🔒
144728
yum Metadata yumRepo.py input validation
144727
CHICKEN Hash Table Collision input validation
144726
CHICKEN Random Number Generator weak prng [CVE-2012-6124] [Disputed]
144725
CHICKEN NULL Byte input validation [CVE-2012-6123]
144724
CHICKEN Thread Scheduler select buffer overflow
144723
IcedTea6 JNLP Service information disclosure [CVE-2010-2783]
🔒
🔒
144722
IcedTea6 authorization [CVE-2010-2548]
🔒
🔒
144721
ZTE ZX297520V3 Terminal System injection [CVE-2019-3421]
144720
ZTE ZXMP input validation [CVE-2019-3419]
144719
Pimcore translations.js cross site scripting
144718
Total Defense Anti-Virus Quarantine permission assignment [CVE-2019-18645]
144717
Total Defense Anti-Virus Symlink toctou [CVE-2019-18644]
144716
Mooltipass Moolticute MPDevice_win.cpp null pointer dereference
144715
European Commission eIDAS-Node Integration Package Certificate Validation certificate validation
144714
European Commission eIDAS-Node Integration Package Certificate certificate validation
144713
Progress MOVEit Transfer SSH/SFTP missing authentication [CVE-2019-18465]
144712
Progress MOVEit Transfer REST API sql injection [CVE-2019-18464]
144711
Xen Descriptor privileges management [CVE-2019-18425]
144710
Xen DMA os command injection [CVE-2019-18424]
144709
Xen Hypercall p2m_resolve_translation_fault input validation
144708
Xen Exception permission assignment [CVE-2019-18422]
144707
Xen Promotion race condition [CVE-2019-18421]
144706
Xen Hypercall hypercall_create_continuation input validation
144705
JetBrains YouTrack Tag default permission [CVE-2019-18369]
144704
JetBrains ToolBox App privileges management [CVE-2019-18368]
144703
JetBrains TeamCity default permission [CVE-2019-18367]
144702
JetBrains TeamCity Permission default permission [CVE-2019-18366]
144701
JetBrains TeamCity privileges management [CVE-2019-18365]
144700
JetBrains TeamCity Java Deserialization deserialization [CVE-2019-18364]
144699
JetBrains TeamCity information disclosure [CVE-2019-18363]
144698
JetBrains MPS Network Service information disclosure [CVE-2019-18362]
144697
JetBrains IntelliJ IDEA privileges management [CVE-2019-18361]
144696
JetBrains Hub Password Recovery Username information disclosure
144695
Zucchetti InfoBusiness Web Component cross site scripting [CVE-2019-18207]
144694
Zucchetti InfoBusiness File Upload cross-site request forgery
144693
Zucchetti InfoBusiness Browsing Reflected cross site scripting
144692
Zucchetti InfoBusiness File Upload unrestricted upload [CVE-2019-18204]
144691
Apak Wholesale Floorplanning Finance agreementView.faces cross site scripting
144690
ClipSoft REXPERT input validation [CVE-2019-17326]
144689
ClipSoft REXPERT RexViewerCtrl30.ocx ActiveX unrestricted upload
144688
ClipSoft REXPERT path traversal [CVE-2019-17324]
144687
ClipSoft REXPERT xml injection [CVE-2019-17323]
144686
ClipSoft REXPERT input validation [CVE-2019-17322]
144685
ClipSoft REXPERT information disclosure [CVE-2019-17321]
144684
YIT Plugin Framework yit-plugin-panel-wc.php privileges management
144683
BitDefender BOX Web API input validation [CVE-2019-12612]
144682
Apache Airflow Metadata Database cross site scripting [CVE-2019-12417]
144681
medoo columnQuote sql injection
144680
Jupyter Notebook CSP improper restriction of rendered ui layers
144679
systemd Certificate Validation certificate validation [CVE-2018-21029]
144678
GNUBOARD5 Extra Contents boardgroup_form_update.php cross site scripting
144677
murmur-server Client Query input validation [CVE-2010-2490]
144676
Ikiwiki Comment cross site scripting [CVE-2010-1673]
🔒
144675
transmission Endgame memory corruption [CVE-2010-0749]
144674
transmission Magnet Link input validation [CVE-2010-0748]
🔒
144673
drbd8 mount.cifs permission assignment
🔒
144672
JBoss Operations Network CLI permission assignment [CVE-2010-0737]
144671
Autokey link following [CVE-2010-0398]
144670
Xpdf xref Table infinite loop [CVE-2010-0207]
144669
Xpdf JBIG2 null pointer dereference [CVE-2010-0206]
144668
Burn Quotation Mark exceptional condition [CVE-2009-5043]
144667
python-docutils Temp File exposure of resource [CVE-2009-5042]
144666
Overkill Player Name buffer overflow [CVE-2009-5041]
144665
Apple iTunes WebKit Process Model memory corruption [CVE-2019-8815]
144664
Apple iTunes WebKit memory corruption [CVE-2019-8823]
144663
Apple iTunes WebKit memory corruption [CVE-2019-8822]
144662
Apple iTunes WebKit memory corruption [CVE-2019-8821]
144661
Apple iTunes WebKit memory corruption [CVE-2019-8820]
144660
Apple iTunes WebKit memory corruption [CVE-2019-8819]
144659
Apple iTunes WebKit memory corruption [CVE-2019-8816]
144658
Apple iTunes WebKit memory corruption [CVE-2019-8814]
144657
Apple iTunes WebKit memory corruption [CVE-2019-8812]
144656
Apple iTunes WebKit memory corruption [CVE-2019-8811]
144655
Apple iTunes WebKit memory corruption [CVE-2019-8808]
144654
Apple iTunes WebKit memory corruption [CVE-2019-8783]
144653
Apple iTunes WebKit memory corruption [CVE-2019-8782]
144652
Apple iTunes WebKit Universal cross site scripting
144651
Apple iTunes untrusted search path [CVE-2019-8801]
144650
Apple iTunes Graphics Driver memory corruption [CVE-2019-8784]
144649
Apple iCloud WebKit Process Model memory corruption [CVE-2019-8815]
144648
Apple iCloud WebKit memory corruption [CVE-2019-8823]
144647
Apple iCloud WebKit memory corruption [CVE-2019-8822]
144646
Apple iCloud WebKit memory corruption [CVE-2019-8821]
144645
Apple iCloud WebKit memory corruption [CVE-2019-8820]
144644
Apple iCloud WebKit memory corruption [CVE-2019-8819]
144643
Apple iCloud WebKit memory corruption [CVE-2019-8816]
144642
Apple iCloud WebKit memory corruption [CVE-2019-8814]
144641
Apple iCloud WebKit memory corruption [CVE-2019-8811]
144640
Apple iCloud WebKit memory corruption [CVE-2019-8783]
144639
Apple iCloud WebKit memory corruption [CVE-2019-8782]
144638
Apple iCloud WebKit memory corruption [CVE-2019-8766]
144637
Apple iCloud WebKit memory corruption [CVE-2019-8710]
144636
Apple iCloud WebKit Universal cross site scripting
144635
Apple iCloud libxslt memory corruption [CVE-2019-8750]
144634
Apple iCloud Graphics Driver memory corruption [CVE-2019-8784]
144633
Apple iCloud WebKit Process Model memory corruption [CVE-2019-8815]
144632
Apple iCloud WebKit memory corruption [CVE-2019-8823]
144631
Apple iCloud WebKit memory corruption [CVE-2019-8822]
144630
Apple iCloud WebKit memory corruption [CVE-2019-8821]
144629
Apple iCloud WebKit memory corruption [CVE-2019-8820]
144628
Apple iCloud WebKit memory corruption [CVE-2019-8819]
144627
Apple iCloud WebKit memory corruption [CVE-2019-8816]
144626
Apple iCloud WebKit memory corruption [CVE-2019-8814]
144625
Apple iCloud WebKit memory corruption [CVE-2019-8811]
144624
Apple iCloud WebKit memory corruption [CVE-2019-8783]
144623
Apple iCloud Graphics Driver memory corruption [CVE-2019-8784]
144622
Apple macOS UIFoundation information disclosure [CVE-2019-8761]
144621
Apple macOS System Extensions input validation [CVE-2019-8805]
144620
Apple macOS PluginKit memory corruption [CVE-2019-8715]
144619
Apple macOS PluginKit information disclosure [CVE-2019-8708]
144618
Apple macOS manpages input validation [CVE-2019-8802]
144617
Apple macOS libxslt memory corruption [CVE-2019-8750]
144616
Apple macOS libxml2 memory corruption [CVE-2019-8756]
144615
Apple macOS libxml2 memory corruption [CVE-2019-8749]
144614
Apple macOS Kernel memory corruption [CVE-2019-8744]
144613
Apple macOS Kernel memory corruption [CVE-2019-8786]
144612
Apple macOS Kernel Memory input validation
144611
Apple macOS iTunes untrusted search path [CVE-2019-8801]
144610
Apple macOS IOGraphics denial of service [CVE-2019-8759]
144609
Apple macOS Intel Graphics Driver memory corruption [CVE-2019-8807]
144608
Apple macOS Graphics Driver memory corruption [CVE-2019-8784]
144607
Apple macOS Graphics unrestricted upload [CVE-2018-1215]
144606
Apple macOS Graphics unrestricted upload [CVE-2018-1215]
144605
Apple macOS Graphics unrestricted upload [CVE-2018-1215]
144604
Apple macOS File System Events memory corruption [CVE-2019-8798]
144603
Apple macOS File Quarantine privileges management [CVE-2019-8509]
144602
Apple macOS CUPS denial of service [CVE-2019-8737]
144601
Apple macOS CUPS heap-based overflow [CVE-2019-8767]
144600
Apple macOS CUPS information disclosure [CVE-2019-8736]
144599
Apple macOS Contacts authentication spoofing [CVE-2017-7152]
144598
Apple macOS Books link following [CVE-2019-8789]
144597
Apple macOS Audio memory corruption [CVE-2019-8797]
144596
Apple macOS Audio memory corruption [CVE-2019-8785]
144595
Apple macOS Audio memory corruption [CVE-2019-8706]
144594
Apple macOS Associated Domains input validation [CVE-2019-8788]
144593
Apple macOS AppleGraphicsControl memory corruption [CVE-2019-8716]
144592
Apple macOS AppleGraphicsControl Memory input validation
144591
Apple macOS App Store session expiration [CVE-2019-8803]
144590
Apple macOS Accounts out-of-bounds read [CVE-2019-8787]
144589
Apple watchOS WebKit memory corruption [CVE-2019-8820]
144588
Apple watchOS WebKit memory corruption [CVE-2019-8816]
144587
Apple watchOS WebKit memory corruption [CVE-2019-8812]
144586
Apple watchOS WebKit memory corruption [CVE-2019-8811]
144585
Apple watchOS WebKit memory corruption [CVE-2019-8808]
144584
Apple watchOS WebKit memory corruption [CVE-2019-8766]
144583
Apple watchOS WebKit memory corruption [CVE-2019-8765]
144582
Apple watchOS WebKit memory corruption [CVE-2019-8743]
144581
Apple watchOS WebKit Universal cross site scripting
144580
Apple watchOS VoiceOver information disclosure [CVE-2019-8775]
144579
Apple watchOS libxslt memory corruption [CVE-2019-8750]
144578
Apple watchOS Kernel memory corruption [CVE-2019-8786]
144577
Apple watchOS Kernel input validation [CVE-2019-8794]
144576
Apple watchOS File System Events memory corruption [CVE-2019-8798]
144575
Apple watchOS Contacts authentication spoofing [CVE-2017-7152]
144574
Apple watchOS Audio memory corruption [CVE-2019-8797]
144573
Apple watchOS Audio memory corruption [CVE-2019-8785]
144572
Apple watchOS AppleFirmwareUpdateKext memory corruption [CVE-2019-8747]
144571
Apple watchOS App Store session expiration [CVE-2019-8803]
144570
Apple watchOS Accounts out-of-bounds read [CVE-2019-8787]
144569
Apple Safari WebKit Process Model memory corruption [CVE-2019-8815]
144568
Apple Safari WebKit memory corruption [CVE-2019-8823]
144567
Apple Safari WebKit memory corruption [CVE-2019-8822]
144566
Apple Safari WebKit memory corruption [CVE-2019-8821]
144565
Apple Safari WebKit memory corruption [CVE-2019-8820]
144564
Apple Safari WebKit memory corruption [CVE-2019-8819]
144563
Apple Safari WebKit memory corruption [CVE-2019-8816]
144562
Apple Safari WebKit memory corruption [CVE-2019-8814]
144561
Apple Safari WebKit memory corruption [CVE-2019-8812]
144560
Apple Safari WebKit memory corruption [CVE-2019-8811]
144559
Apple Safari WebKit memory corruption [CVE-2019-8808]
144558
Apple Safari WebKit memory corruption [CVE-2019-8783]
144557
Apple Safari WebKit memory corruption [CVE-2019-8782]
144556
Apple Safari WebKit Universal cross site scripting
144555
Apple iOS/iPadOS WebKit Process Model memory corruption [CVE-2019-8815]
144554
Apple iOS/iPadOS WebKit memory corruption [CVE-2019-8823]
144553
Apple iOS/iPadOS WebKit memory corruption [CVE-2019-8822]
144552
Apple iOS/iPadOS WebKit memory corruption [CVE-2019-8821]
144551
Apple iOS/iPadOS WebKit memory corruption [CVE-2019-8820]
144550
Apple iOS/iPadOS WebKit memory corruption [CVE-2019-8819]
144549
Apple iOS/iPadOS WebKit memory corruption [CVE-2019-8816]
144548
Apple iOS/iPadOS WebKit memory corruption [CVE-2019-8814]
144547
Apple iOS/iPadOS WebKit memory corruption [CVE-2019-8812]
144546
Apple iOS/iPadOS WebKit memory corruption [CVE-2019-8811]
144545
Apple iOS/iPadOS WebKit memory corruption [CVE-2019-8808]
144544
Apple iOS/iPadOS WebKit memory corruption [CVE-2019-8783]
144543
Apple iOS/iPadOS WebKit memory corruption [CVE-2019-8782]
144542
Apple iOS/iPadOS WebKit Universal cross site scripting
144541
Apple iOS/iPadOS Screen Recording input validation [CVE-2019-8793]
144540
Apple iOS/iPadOS Setup Assistant improper authentication [CVE-2019-8804]
144539
Apple iOS/iPadOS Kernel memory corruption [CVE-2019-8786]
144538
Apple iOS/iPadOS Kernel Memory input validation
144537
Apple iOS/iPadOS Graphics Driver memory corruption [CVE-2019-8784]
144536
Apple iOS/iPadOS File System Events memory corruption [CVE-2019-8798]
144535
Apple iOS/iPadOS Contacts authentication spoofing [CVE-2017-7152]
144534
Apple iOS/iPadOS Books link following [CVE-2019-8789]
144533
Apple iOS/iPadOS AVEVideoEncoder memory corruption [CVE-2019-8795]
144532
Apple iOS/iPadOS Audio memory corruption [CVE-2019-8797]
144531
Apple iOS/iPadOS Audio memory corruption [CVE-2019-8785]
144530
Apple iOS/iPadOS Associated Domains Exfiltration input validation
144529
Apple iOS/iPadOS App Store session expiration [CVE-2019-8803]
144528
Apple iOS/iPadOS Accounts out-of-bounds read [CVE-2019-8787]
144527
Apple tvOS WebKit Process Model memory corruption [CVE-2019-8815]
144526
Apple tvOS WebKit memory corruption [CVE-2019-8823]
144525
Apple tvOS WebKit memory corruption [CVE-2019-8822]
144524
Apple tvOS WebKit memory corruption [CVE-2019-8821]
144523
Apple tvOS WebKit memory corruption [CVE-2019-8820]
144522
Apple tvOS WebKit memory corruption [CVE-2019-8819]
144521
Apple tvOS WebKit memory corruption [CVE-2019-8816]
144520
Apple tvOS WebKit memory corruption [CVE-2019-8814]
144519
Apple tvOS WebKit memory corruption [CVE-2019-8812]
144518
Apple tvOS WebKit memory corruption [CVE-2019-8811]
144517
Apple tvOS WebKit memory corruption [CVE-2019-8808]
144516
Apple tvOS WebKit memory corruption [CVE-2019-8783]
144515
Apple tvOS WebKit memory corruption [CVE-2019-8782]
144514
Apple tvOS WebKit Universal cross site scripting
144513
Apple tvOS Kernel memory corruption [CVE-2019-8786]
144512
Apple tvOS Kernel input validation [CVE-2019-8794]
144511
Apple tvOS File System Events memory corruption [CVE-2019-8798]
144510
Apple tvOS AVEVideoEncoder memory corruption [CVE-2019-8795]
144509
Apple tvOS Audio memory corruption [CVE-2019-8797]
144508
Apple tvOS Audio memory corruption [CVE-2019-8785]
144507
Apple tvOS App Store session expiration [CVE-2019-8803]
144506
Apple tvOS Accounts out-of-bounds read [CVE-2019-8787]
144505
Logstash Beats Input Plugin input validation [CVE-2019-7620]
144504
Elasticsearch API Key Service Username risky encryption
144503
rdesktop out-of-bounds read [CVE-2019-15682]
144502
ISC BIND buffer.c assertion
🔒
144492
Aruba Instant injection [CVE-2018-16417]
144451
LabKey Server reports-viewScriptReport.view cross-site request forgery
144450
LabKey Server Display Name Stored cross site scripting
144449
LabKey Server SVG xml external entity reference [CVE-2019-9757]
144448
TightVNC HandleCoRREBBP buffer overflow
144447
Magento input validation [CVE-2019-8235]
144446
Schneider Electric Modicon M580 TFTP information disclosure [CVE-2019-6851]
144445
Schneider Electric Modicon BMENOC 0321 Communication Module information disclosure
144444
Schneider Electric Modicon BMENOC 0321 Communication Module information disclosure
144443
Schneider Electric Modicon BMENOC 0321 Communication Module input validation
144442
Modicon Modicon M580 Application exceptional condition [CVE-2019-6847]
144441
Schneider Electric Modicon M580 FTP cleartext transmission [CVE-2019-6846]
144440
Schneider Electric Modicon M580 Modbus cleartext transmission
144439
Schneider Electric Modicon M580 PLC exceptional condition [CVE-2019-6844]
144438
Schneider Electric Modicon M580 PLC exceptional condition [CVE-2019-6843]
144437
Schneider Electric Modicon M580 PLC exceptional condition [CVE-2019-6842]
144436
Schneider Electric Modicon M580 PLC exceptional condition [CVE-2019-6841]
144435
VMware SD-WAN information disclosure [CVE-2019-5533]
144434
RouterOS DNS Server input validation [CVE-2019-3979]
144433
RouterOS DNS Cache Poisoning missing authentication
144432
RouterOS Upgrade Package code download [CVE-2019-3977]
144431
RouterOS Upgrade Package input validation [CVE-2019-3976]
144430
Opera Mini File Download input validation [CVE-2019-18624]
144429
AbuseFilter Extension information disclosure [CVE-2019-18612]
144428
CheckUser Extension API information disclosure [CVE-2019-18611]
144427
Cezerin Attribute cart input validation
144426
axodraw2 axohelp axohelp.c input validation
144425
OpenAFS RPC information disclosure [CVE-2019-18603]
144424
OpenAFS information disclosure [CVE-2019-18602]
144423
OpenAFS RPC Call deserialization [CVE-2019-18601]
144422
Maxthon Unquoted Search Path unquoted search path [CVE-2019-16647]
144421
TurboVNC out-of-bounds write [CVE-2019-15683]
144420
LibVNC VNC Server information disclosure [CVE-2019-15681]
144419
TightVNC HandleZlibBPP null pointer dereference
144418
TightVNC InitialiseRFBConnection out-of-bounds write
144417
TightVNC rfbServerCutText out-of-bounds write
144416
Sahi Pro Script Manager DBReports Reflected cross site scripting
144415
Sequelize JSON Path Key sql injection [CVE-2019-10749]
144414
Sequelize JSON Path Key sql injection [CVE-2019-10748]
144413
Archiver Unarchive path traversal [CVE-2019-10743]
144412
PostgreSQL Installer input validation [CVE-2019-10211]
144411
PostgreSQL Installer input validation [CVE-2019-10210]
144410
PostgreSQL Memory information disclosure [CVE-2019-10209]
144409
PostgreSQL Execute Permission sql injection [CVE-2019-10208]
144408
Apache Thrift TJSONProtocol/TSimpleJSONProtocol out-of-bounds read
144407
Apache Thrift infinite loop [CVE-2019-0205]
144406
qtum Header resource consumption [CVE-2018-19151]
144405
TightRope Media Carousel Digital Signage Services privileges management
144404
TightRope Media Carousel Digital Signage File Upload unrestricted upload
144403
TightRope Media Carousel Seneca HDn hard-coded credentials [CVE-2018-18929]
144402
Fabrikar Fabrik Component Reflected cross site scripting [CVE-2018-10727]
144400
GMER SysTreeView32 Control out-of-bounds write [CVE-2016-4289]
144399
Apache Hadoop link following [CVE-2012-2945]
144398
BitlBee Privilege unix.c dropped privileges
144397
SugarCRM CE unserialize input validation
144396
MediaWiki ApiQueryRevisions.php information disclosure
144395
gpw Password Generator weak password [CVE-2011-4931]
144394
Cisco Video Communications Server injection [CVE-2011-2538]
144393
Ikiwiki TTY link following [CVE-2011-1408]
🔒
🔒
144392
Ikiwiki Comment cross site scripting [CVE-2011-0428]
🔒
144391
Mercurial SSL Certificate certificate validation [CVE-2010-4237]
🔒
144390
qtparted Library Loader input validation [CVE-2010-3375]
144389
paxtest Temp File input validation [CVE-2010-3373]
144388
rpcbind portmap.xdr link following
144387
rpcbind portmap.xdr input validation
144386
MapServer Symbol Index input validation [CVE-2010-1678]
144385
ytnef path traversal [CVE-2009-3887]
144384
Asterisk PBX Call authorization [CVE-2009-3723]
144383
VMware vCenter Server Appliance Backup/Restore certificate validation
144382
VMware vCenter Server Appliance Backup/Restore certificate validation
144381
VMware ESXi/Workstation/Fusion Shader input validation [CVE-2019-5536]
144380
IBM API Connect information disclosure [CVE-2019-4600]
144379
IBM Maximo Health- Safety/Environment Manager privileges management
144378
IBM Security Guardium Big Data Intelligence inadequate encryption
144377
IBM Security Guardium Big Data Intelligence Cookie cookie validation
144376
IBM Security Guardium Big Data Intelligence Blacklist input validation
144375
IBM Security Guardium Big Data Intelligence information disclosure
144374
IBM Security Guardium Big Data Intelligence information disclosure
144373
IBM Security Guardium Big Data Intelligence hard-coded credentials
144372
IBM Security Guardium Big Data Intelligence Credentials insufficiently protected credentials
144371
IBM Security Guardium Big Data Intelligence Permission exposure of resource
144370
Trend Micro Micro Apex One Management Console path traversal
144369
Trend Micro Apex One ZIP File unrestricted upload [CVE-2019-18188]
144368
Trend Micro OfficeScan ZIP File path traversal [CVE-2019-18187]
144367
IntraSrv HTTP Request buffer overflow [CVE-2019-17181]
144366
Repetier-Server XML File RepetierServer.exe path traversal
144365
Dzone AnswerHub xml external entity reference [CVE-2017-15725]
144364
Keyring Lib Permission default permission [CVE-2012-5577]
144363
McAfee Total Protection information disclosure [CVE-2019-3636]
144262
libpod Podman link following [CVE-2019-18466]
144261
TerraMaster FS-210 1.user.php privileges management
144260
Compal Broadband CH7465LG Modem Web Interface path traversal
144259
K7 Antivirus Premium/Total Security/Ultimate Security Inter-Process Communication K7TSHlpr.dll privileges management
144258
rConfig search.crud.php exec os command injection
144257
rConfig ajaxServerSettingsChk.php exec os command injection
144256
Mitsubishi Electric ME-RTU/INEA ME-RTU mobile.php os command injection
144255
Mitsubishi Electric ME-RTU/INEA ME-RTU hard-coded credentials
144254
Mitsubishi Electric ME-RTU/INEA ME-RTU Credentials insufficiently protected credentials
144253
Mitsubishi Electric ME-RTU/INEA ME-RTU index.php Stored cross site scripting
144252
Mitsubishi Electric ME-RTU/INEA ME-RTU Configuration File information disclosure
144251
Mitsubishi Electric ME-RTU/INEA ME-RTU SSH Key ssh_host_rsa_key hard-coded credentials
144250
Mitsubishi Electric ME-RTU/INEA ME-RTU Configuration File settings.xml Credentials default permission
144243
pootle cross site scripting [CVE-2010-4245]
144242
Tiki Wiki CMS Groupware tiki-adminusers.php cross-site request forgery
144241
Tiki Wiki CMS Groupware tiki-edit_wiki_section.php cross site scripting
144240
Tiki Wiki CMS Groupware tiki-jsplugin.php input validation
144239
Mailscanner Signature Update input validation [CVE-2010-3293]
144238
Pixelpost cross site scripting [CVE-2009-4900]
144237
Pixelpost sql injection [CVE-2009-4899]
144236
Zoo path traversal [CVE-2005-2349]
144235
Snoopy curl input validation [CVE-2002-2444]
144234
LabF nfsAxe FTP Client memory corruption [CVE-2017-14742]
144232
Joomla CMS code injection
144231
PHP FPM fpm_main.c env_path_info Underflow out-of-bounds write
144230
Adobe Experience Manager cross-site request forgery [CVE-2019-8234]
144229
Adobe Experience Manager injection [CVE-2019-8088]
144228
Adobe Experience Manager XML Data xml external entity reference
144227
Adobe Experience Manager XML Data xml external entity reference
144226
Adobe Experience Manager Reflected cross site scripting [CVE-2019-8085]
144225
Adobe Experience Manager Reflected cross site scripting [CVE-2019-8084]
144224
Adobe Experience Manager cross site scripting [CVE-2019-8083]
144223
Adobe Experience Manager XML Data xml external entity reference
144222
Adobe Experience Manager improper authentication [CVE-2019-8081]
144221
NetApp Clustered Data ONTAP l2ping input validation [CVE-2019-5508]
144220
YouPHPTube Encoder getSpiritsFromVideo.php os command injection
144219
YouPHPTube Encoder getImageMP4.php os command injection
144218
YouPHPTube Encoder getImage.php os command injection
144217
YouPHPTube pluginSwitch.json.php sql injection
144216
YouPHPTube pluginSwitch.json.php sql injection
144215
YouPHPTube pluginSwitch.json.php sql injection
144214
YouPHPTube sql injection [CVE-2019-5120]
144213
YouPHPTube sql injection [CVE-2019-5119]
144212
YouPHPTube sql injection [CVE-2019-5117]
144211
YouPHPTube sql injection [CVE-2019-5116]
144210
YouPHPTube sql injection [CVE-2019-5114]
144209
IBM Cloud Orchestrator cross site scripting [CVE-2019-4461]
144208
IBM Cloud Orchestrator path traversal [CVE-2019-4400]
144207
IBM Cloud Orchestrator risky encryption [CVE-2019-4399]
144206
IBM Cloud Orchestrator cross site scripting [CVE-2019-4396]
144205
IBM Cloud Orchestrator Temporary Script File information disclosure
144204
IBM Cloud Orchestrator API Email input validation
144203
IBM Security Access Manager Appliance Reverse Proxy input validation
144202
Foxit PhantomPDF DXF File out-of-bounds write [CVE-2019-17145]
144201
Foxit PhantomPDF DWG File out-of-bounds write [CVE-2019-17144]
144200
Foxit PhantomPDF DWG File use after free [CVE-2019-17143]
144199
Foxit PhantomPDF use after free [CVE-2019-17142]
144198
Foxit PhantomPDF use after free [CVE-2019-17141]
144197
Foxit PhantomPDF use after free [CVE-2019-17140]
144196
Foxit PhantomPDF HTML2PDF Plugin out-of-bounds write [CVE-2019-17139]
144195
Foxit Studio Photo JPEG Converter out-of-bounds read [CVE-2019-17138]
144194
3S-Smart CODESYS out-of-bounds write [CVE-2019-16265]
144193
Repetier-Server XML Data RepetierServer.exe unrestricted upload
144192
Rittal Chiller SK 3232 hard-coded credentials [CVE-2019-13553]
144191
Rittal Chiller SK 3232 missing authentication [CVE-2019-13549]
144190
IntelliSpace Perinatal Application Environment exposure of resource
144189
IP-AK2 Access Control Panel Version Integrated Web Server missing authentication
144182
Google Chrome dial_registry.cc erase permission assignment
🔒
🔒
144181
Milesight IP Security Camera shadow hard-coded credentials
144180
Milesight IP Security Camera vb.htm improper authentication
144179
Milesight IP Security Camera hard-coded credentials [CVE-2016-2358]
144178
Milesight IP Security Camera SSL Private Key config hard-coded credentials
144177
Milesight IP Security Camera Web Application buffer overflow
144176
Zend Framework Postgresql sql injection [CVE-2015-0270]
144175
D-Link DIR-865L router_info.xml xml injection
144174
D-Link DIR-865L bsc_lan.php information disclosure
144173
D-Link DIR-865L SMB path traversal [CVE-2013-4855]
144172
TP-LINK TL-WDR4300 cross-site request forgery [CVE-2013-4848]
144171
Linksys EA6500 SMB path traversal [CVE-2013-4658]
144170
CoreHR Core Portal Stored cross site scripting [CVE-2019-18221]
144169
Microsoft Windows Master File Table PushIndexRoot Blue Screen denial of service
144168
Adobe Experience Manager Stored cross site scripting [CVE-2019-8080]
144167
Adobe Experience Manager Stored cross site scripting [CVE-2019-8079]
144166
Adobe Experience Manager Reflected cross site scripting [CVE-2019-8078]
144165
ClonOS Web Control Panel index.php cross site scripting
144164
ClonOS Web Control Panel Session Management clonos.php session fixiation
144163
SourceCodester Management System File Upload unrestricted upload
144162
SourceCodester Management System Member cross site scripting
144161
SourceCodester Management System Send Message Screen cross site scripting
144160
SourceCodester Management System staff-exec.php cross-site request forgery
144159
TypeStack class-validator validate sql injection
144158
Google Go Certificate Verification Remote Code Execution [CVE-2019-17596]
144157
Horde Groupware Webmail Edition Trean cross-site request forgery
144154
Fortinet FortiClient DLL Loader uncontrolled search path [CVE-2019-6692]
144153
Wacom Driver Helper Service stopLaunchDProcess privileges management
144152
Wacom Driver Helper Service privileges management [CVE-2019-5012]
144151
IBM Maximo Asset Management Web UI cross site scripting [CVE-2019-4486]
144150
IBM Cloud Orchestrator/Cloud Orchestrator Enterprise Web UI cross site scripting
144149
IBM Cloud Orchestrator/Cloud Orchestrator Enterprise Session Management Cookie missing encryption
144148
IBM Cloud Orchestrator/Cloud Orchestrator Enterprise information disclosure
144147
ruby_parser-legacy Gem ruby_parser.rb permission assignment [CVE-2019-18409]
144146
libarchive archive_read_support_format_rar.c use after free
144145
Ignite Realtime Openfire FaviconServlet.java server-side request forgery
144144
Ignite Realtime Openfire PluginServlet.java path traversal
144143
Fujitsu Wireless Keyboard Set LX390 GK381 missing encryption
144142
Fujitsu Wireless Keyboard Set LX390 GK381 injection [CVE-2019-18200]
144141
Fujitsu Wireless Keyboard Set LX390 GK381 authentication replay
144140
TeamViewer DLL Loader untrusted search path [CVE-2019-18196]
144139
tonyy dormsystem DOM-Based cross site scripting [CVE-2019-17581]
144138
Craft CMS Login Form password recovery [CVE-2019-15929]
144137
Fortinet FortiOS ECDSA PRNG entropy
144136
TP-LINK M7350 Trigger Port os command injection [CVE-2019-13653]
144135
TP-LINK M7350 Service Name os command injection [CVE-2019-13652]
144134
TP-LINK M7350 os command injection [CVE-2019-13651]
144133
TP-LINK M7350 Internal Port os command injection [CVE-2019-13650]
144132
TP-LINK M7350 External Port os command injection [CVE-2019-13649]
144131
Horde Groupware Webmail Edition Tag Cloud cross site scripting
144130
MapR CLDB JSON Framework input validation [CVE-2019-12017]
144129
Schlix CMS File Upload mediamanager unrestricted upload
144126
Darktrace Enterprise Immune System config cross-site request forgery
144125
Darktrace Enterprise Immune System whitelisteddomains cross-site request forgery
144124
Adobe Acrobat Reader path traversal [CVE-2019-8238]
144123
Adobe Acrobat Reader Security Feature inadequate encryption [CVE-2019-8237]
144122
Creative Cloud Desktop Application privileges management [CVE-2019-8236]
144121
Forcepoint One Endpoint DLP/Web Protection authorization [CVE-2019-6144]
144120
Tenable Nessus Scan Type Import input validation [CVE-2019-3982]
144119
SourceCodester Hotel/Lodge Management System Edit Page sql injection
144118
TerraMaster FS-210 Log File log file [CVE-2019-18385]
144117
TerraMaster FS-210 permission assignment [CVE-2019-18384]
144116
TerraMaster FS-210 Backup File permission assignment [CVE-2019-18383]
144115
AVStar PE204 Service Port 23456 input validation [CVE-2019-18382]
144114
Xiaomi Mi WiFi R3G Nginx Alias account path traversal
144113
Xiaomi Mi WiFi R3G Backup File speedtest_urls.xml input validation
144112
MP3Gain apetag.c ReadMP3APETag memory corruption
144111
Thycotic Secret Server cross site scripting [CVE-2019-18357]
144110
Thycotic Secret Server cross site scripting [CVE-2019-18356]
144109
Thycotic Secret Server Legacy Web Launcher server-side request forgery
144108
Ant Design Pro Reflected cross site scripting [CVE-2019-18350]
144107
Python urllib2 urllib.request.urlopen injection
144106
SourceCodester Online Grading System sql injection [CVE-2019-18344]
144105
Qt qtbase qtextengine.cpp generateDirectionalRuns memory corruption
144104
SourceCodester Online Grading System cross-site request forgery
144103
VideoLAN VLC Media Player libqt vlc_entry_license__3_0_0f+0x00000000003b9aba memory corruption
144102
HAProxy Legacy Mode input validation [CVE-2019-18277]
144101
Red Hat XML Language Support LSPXMLParserConfiguration.java xml injection
144100
Red Hat XML Language Server XMLLanguageService.java path traversal
144099
hexo-admin Plugin Post Editor Stored cross site scripting
144098
Avast/AVG Antivirus DLL Loader wbemcomn.dll untrusted search path
144097
FusionPBX extension_imports.php Reflected cross site scripting
144096
FusionPBX destination_imports.php Reflected cross site scripting
144095
FusionPBX contact_notes.php Reflected cross site scripting
144094
WUSTL XNAT xml external entity reference [CVE-2019-14276]
144093
Apache POI XSSFExportToXml xml external entity reference [CVE-2019-12415]
144092
libpl_droidsonroids_gif memory corruption [CVE-2019-11933]
144091
Cloud Foundry SMB Volume Log Credentials log file
144090
Cloud Foundry UAA SCIM information disclosure [CVE-2019-11282]
144089
Zulip Plugin Global Configuration Credentials insufficiently protected credentials
144088
build-metrics Plugin Reflected cross site scripting [CVE-2019-10475]
144087
Global Post Script Plugin Permission Check default permission
144086
Libvirt Slaves Plugin Permission Check Credentials default permission
144085
Libvirt Slaves Plugin Permission Check Credentials default permission
144084
Libvirt Slaves Plugin cross-site request forgery [CVE-2019-10471]
144083
ElasticBox Jenkins Kubernetes CI-CD Plugin Permission Check Credentials default permission
144082
ElasticBox Jenkins Kubernetes CI-CD Plugin Permission Check default permission
144081
ElasticBox Jenkins Kubernetes CI-CD Plugin cross-site request forgery
144080
Sonar Gerrit Plugin config.xml Credentials insufficiently protected credentials
144079
360 FireLine Plugin xml external entity reference [CVE-2019-10466]
144078
Jenkins Deploy WebLogic Plugin Permission Check default permission
144077
Deploy WebLogic Plugin cross-site request forgery [CVE-2019-10464]
144076
Dynatrace Application Monitoring Plugin Permission Check default permission
144075
Dynatrace Application Monitoring Plugin cross-site request forgery
144074
Dynatrace Application Monitoring Plugin Global Configuration Credentials insufficiently protected credentials
144073
Bitbucket OAuth Plugin Configuration File config.xml Credentials insufficiently protected credentials
144072
Mattermost Notification Plugin Global Configuration config.xml Credentials insufficiently protected credentials
144071
Easy Digital Downloads Twenty-Twelve Theme cross site scripting
144070
Easy Digital Downloads Shoppette Theme cross site scripting [CVE-2015-9535]
144069
Easy Digital Downloads Quota Theme cross site scripting [CVE-2015-9534]
144068
Easy Digital Downloads Lattice Theme cross site scripting [CVE-2015-9533]
144067
Easy Digital Downloads Digital Store Theme cross site scripting
144066
Easy Digital Downloads Wish Lists Extension cross site scripting
144065
Easy Digital Downloads Upload File Extension cross site scripting
144064
Easy Digital Downloads Stripe Extension cross site scripting
144063
Easy Digital Downloads Software Licensing Extension cross site scripting
144062
Easy Digital Downloads Simple Shipping Extension cross site scripting
144060
Easy Digital Downloads Recurring Payments Extension cross site scripting
144059
Easy Digital Downloads Recount Earnings Extension cross site scripting
144058
Easy Digital Downloads Recommended Products extension cross site scripting
144057
Easy Digital Downloads QR Code Extension cross site scripting
144056
Easy Digital Downloads Pushover Notifications Extension cross site scripting
144055
Easy Digital Downloads Per Product Emails Extension cross site scripting
144054
Easy Digital Downloads PDF Stamper Extension cross site scripting
144053
Easy Digital Downloads PDF Invoices Extension cross site scripting
144052
Easy Digital Downloads Manual Purchases Extension cross site scripting
144051
Easy Digital Downloads Invoices Extension cross site scripting
144050
Easy Digital Downloads htaccess Editor Extension cross site scripting
144049
Easy Digital Downloads Free Downloads Extension cross site scripting
144048
Easy Digital Downloads Favorites Extension cross site scripting
144047
Easy Digital Downloads CSV Manager Extension cross site scripting
144046
Easy Digital Downloads Conditional Success Redirects Extension cross site scripting
144045
Easy Digital Downloads Cross-sell Upsell Extension cross site scripting
144044
Easy Digital Downloads Content Restriction Extension cross site scripting
144043
Easy Digital Downloads Commissions Extension cross site scripting
144042
Easy Digital Downloads Attach Accounts to Orders Extension cross site scripting
144041
Easy Digital Downloads Amazon S3 Extension cross site scripting
144040
Easy Digital Downloads Core cross site scripting [CVE-2015-9505]
144039
weeklynews Theme cross site scripting [CVE-2015-9504]
144038
Modern Theme example.html cross site scripting
144037
Auberge Theme example.html cross site scripting
144036
Open Floodlight SDN Controller Service input validation [CVE-2014-2304]
144035
Open Floodlight SDN Switch input validation [CVE-2013-7333]
144034
GNU gcc New Operator integer overflow [CVE-2002-2439]
144033
Codemagic Sitemagic CMS upgrade.php cross site scripting
144032
Adobe Experience Manager Forms Reflected cross site scripting
144031
totemodata Folder Name cross site scripting [CVE-2019-17189]
144030
FusionPBX contact_edit.php Reflected cross site scripting
144029
FusionPBX contact_addresses.php Reflected cross site scripting
144028
FusionPBX messages_thread.php Reflected cross site scripting
144027
Loofah Gem cross site scripting [CVE-2019-15587]
144026
Artificial Intelligence Theme cross site scripting [CVE-2015-9501]
144025
Exquisite Ultimate Newspaper Theme jquery.foundation.plugins.js cross site scripting
144024
Showbiz Pro Plugin unrestricted upload [CVE-2015-9499]
144023
wps-hide-login Plugin Option Save cross-site request forgery
144022
ad-inserter Plugin cross-site request forgery [CVE-2015-9497]
144021
freshmail-newsletter Plugin shortcode.php sql injection
144020
syndication-links Plugin example.html cross site scripting
144019
indieweb-post-kinds Plugin example.html cross site scripting
144018
my-wish-list Plugin cross site scripting [CVE-2015-9493]
144017
IBM DB2 High Performance Unload buffer overflow [CVE-2019-4523]
144016
nipper-ng Firewall Configuration process-general.c processPrivilage out-of-bounds write
144015
Stephan Mooltipass Moolticute Access Control cleartext transmission
144014
GNU Libidn2 Roudtrip Check input validation [CVE-2019-12290]
144013
Sangoma Session Border Controller GA Web Interface Webconfig.inc.php improper authentication
144012
Sangoma Session Border Controller GA Web Interface Webconfig.inc.php injection
144011
Micro Focus Self Service Password Reset Certificate Validation certificate validation
144010
Apache Traffic Server HTTP2 input validation [CVE-2019-10079]
144009
AVM Fritz!Box 7490 PPPoE Packet Padding information disclosure
144008
Codemagic Sitemagic CMS cross-site request forgery [CVE-2019-18220]
144007
Codemagic Sitemagic CMS index.php cross site scripting
144006
Trend Micro Anti-Threat Toolkit input validation [CVE-2019-9491]
144004
Citrix Application Delivery Controller/Gateway Management Interface improper authentication
144003
Ricoh MP 501 adrsSetUserWizard.cgi Stored cross site scripting
144002
Libssh2 packet.c integer overflow
144001
unoconv Package server-side request forgery [CVE-2019-17400]
144000
Rocket.Chat cross site scripting
143999
FusionPBX contact_times.php Reflected cross site scripting
143998
FusionPBX sip_status.php Reflected cross site scripting
143997
FusionPBX fifo_interactive.php Reflected cross site scripting
143996
FusionPBX conference_control_details.php Reflected cross site scripting
143995
FreePBX Manager form.php Reflected cross site scripting
143994
Contactmanager Contactmanager.class.php Reflected cross site scripting
143993
FusionPBX cmd.php injection
143992
FusionPBX Call Center Queue Module cmd.php injection
143991
OpenEMR eye_base.php sql injection
143989
GNU Libidn2 lookup.c idn2_to_ascii_4i out-of-bounds write
143988
FusionPBX filedelete.php Reflected cross site scripting
143987
FusionPBX conference_interactive.php Reflected cross site scripting
143986
FusionPBX content.php Reflected cross site scripting
143985
FusionPBX contact_import.php Reflected cross site scripting
143984
FusionPBX download.php path traversal
143983
FusionPBX URL xml_cdr_delete.php path traversal
143982
FusionPBX recording_play.php Reflected cross site scripting
143981
FusionPBX paging.php paging Reflected cross site scripting
143980
FusionPBX access_control_nodes.php Reflected cross site scripting
143979
FusionPBX conference_profile_params.php Reflected cross site scripting
143978
FusionPBX music_on_hold.php path traversal
143977
FusionPBX call_broadcast_edit.php sql injection
143976
FusionPBX contact_urls.php Reflected cross site scripting
143975
FusionPBX device_settings.php Reflected cross site scripting
143974
Sonatype Nexus Repository Manager/IQ Server unrestricted upload
143973
File cdf.c cdf_read_property_info out-of-bounds write
143972
ProFTPD Command main.c infinite loop
143971
OpenEMR view.php Reflected cross site scripting
143970
OpenEMR view.php Reflected cross site scripting
143969
Verodin Director JSON REST API integrations.json Credentials insufficiently protected credentials
143968
Verodin Director Stored cross site scripting [CVE-2019-10715]
143967
Asus ROG Zephyrus M GM501GS Battery input validation [CVE-2019-18216]
143966
Video_Converter App FFmpeg release of resource [CVE-2019-18214]
143965
Etherpad-Lite URL pad.html cross site scripting
143964
WAGO PFC100/PFC200 Access Control external reference [CVE-2019-18202]
143963
Adobe Download Manager permission assignment [CVE-2019-8071]
143962
HCL Traveler Problem Report Page cross site scripting [CVE-2019-4409]
143961
Linux Kernel fib6_rules.c fib6_rule_suppress release of resource
143960
libxslt transform.c xsltCopyText use after free
143959
SageMath Sage Cell Server Python __import__('os').popen('whoami').read os command injection
143958
Tomedo Server Vendor Communication insufficiently protected credentials
143957
OpenWRT radio0.network1 cross-site request forgery
143956
broken-link-checker table-printer.php Reflected cross site scripting
143955
Harbor API Access Control default permission [CVE-2019-16919]
143954
slicer69 doas input validation [CVE-2019-15901]
143953
slicer69 doas sscanf use of uninitialized resource
143952
Horner Automation Cscape out-of-bounds write [CVE-2019-13545]
143951
Horner Automation Cscape input validation [CVE-2019-13541]
143950
ajenti API privileges management
143949
Podman / Varlink API privileges management
143948
Adobe Acrobat Reader null pointer dereference [CVE-2019-8205]
143947
Adobe Acrobat Reader null pointer dereference [CVE-2019-8196]
143946
Adobe Acrobat Reader null pointer dereference [CVE-2019-8195]
143945
Adobe Acrobat Reader null pointer dereference [CVE-2019-8174]
143944
Adobe Acrobat Reader type conversion [CVE-2019-8200]
143943
Adobe Acrobat Reader type conversion [CVE-2019-8169]
143942
Adobe Acrobat Reader type conversion [CVE-2019-8167]
143941
Adobe Acrobat Reader type conversion [CVE-2019-8161]
143940
Adobe Acrobat Reader information disclosure [CVE-2019-8226]
143939
Adobe Acrobat Reader race condition [CVE-2019-8162]
143938
Adobe Acrobat Reader cross site scripting [CVE-2019-8160]
143937
Adobe Acrobat Reader memory corruption [CVE-2019-8166]
143936
Adobe Acrobat Reader memory corruption [CVE-2019-8197]
143935
Adobe Acrobat Reader memory corruption [CVE-2019-8183]
143934
Adobe Acrobat Reader memory corruption [CVE-2019-8170]
143933
Adobe Acrobat Reader use after free [CVE-2019-8225]
143932
Adobe Acrobat Reader use after free [CVE-2019-8224]
143931
Adobe Acrobat Reader use after free [CVE-2019-8223]
143930
Adobe Acrobat Reader use after free [CVE-2019-8221]
143929
Adobe Acrobat Reader use after free [CVE-2019-8220]
143928
Adobe Acrobat Reader use after free [CVE-2019-8219]
143927
Adobe Acrobat Reader use after free [CVE-2019-8217]
143926
Adobe Acrobat Reader use after free [CVE-2019-8215]
143925
Adobe Acrobat Reader use after free [CVE-2019-8214]
143924
Adobe Acrobat Reader use after free [CVE-2019-8213]
143923
Adobe Acrobat Reader use after free [CVE-2019-8212]
143922
Adobe Acrobat Reader use after free [CVE-2019-8211]
143921
Adobe Acrobat Reader use after free [CVE-2019-8210]
143920
Adobe Acrobat Reader use after free [CVE-2019-8209]
143919
Adobe Acrobat Reader use after free [CVE-2019-8208]
143918
Adobe Acrobat Reader use after free [CVE-2019-8203]
143917
Adobe Acrobat Reader use after free [CVE-2019-8192]
143916
Adobe Acrobat Reader use after free [CVE-2019-8188]
143915
Adobe Acrobat Reader use after free [CVE-2019-8187]
143914
Adobe Acrobat Reader use after free [CVE-2019-8181]
143913
Adobe Acrobat Reader use after free [CVE-2019-8180]
143912
Adobe Acrobat Reader use after free [CVE-2019-8179]
143911
Adobe Acrobat Reader use after free [CVE-2019-8178]
143910
Adobe Acrobat Reader use after free [CVE-2019-8177]
143909
Adobe Acrobat Reader use after free [CVE-2019-8176]
143908
Adobe Acrobat Reader use after free [CVE-2019-8175]
143907
Adobe Acrobat Reader out-of-bounds write [CVE-2019-8206]
143906
Adobe Acrobat Reader out-of-bounds write [CVE-2019-8199]
143905
Adobe Acrobat Reader out-of-bounds write [CVE-2019-8191]
143904
Adobe Acrobat Reader out-of-bounds write [CVE-2019-8165]
143903
Adobe Acrobat Reader out-of-bounds write [CVE-2019-8186]
143902
Adobe Acrobat Reader out-of-bounds write [CVE-2019-8171]
143901
Adobe Acrobat Reader out-of-bounds read [CVE-2019-8222]
143900
Adobe Acrobat Reader out-of-bounds read [CVE-2019-8218]
143899
Adobe Acrobat Reader out-of-bounds read [CVE-2019-8216]
143898
Adobe Acrobat Reader out-of-bounds read [CVE-2019-8207]
143897
Adobe Acrobat Reader out-of-bounds read [CVE-2019-8204]
143896
Adobe Acrobat Reader out-of-bounds read [CVE-2019-8202]
143895
Adobe Acrobat Reader out-of-bounds read [CVE-2019-8201]
143894
Adobe Acrobat Reader out-of-bounds read [CVE-2019-8198]
143893
Adobe Acrobat Reader out-of-bounds read [CVE-2019-8194]
143892
Adobe Acrobat Reader out-of-bounds read [CVE-2019-8193]
143891
Adobe Acrobat Reader out-of-bounds read [CVE-2019-8190]
143890
Adobe Acrobat Reader out-of-bounds read [CVE-2019-8163]
143889
Adobe Acrobat Reader out-of-bounds read [CVE-2019-8189]
143888
Adobe Acrobat Reader out-of-bounds read [CVE-2019-8185]
143887
Adobe Acrobat Reader out-of-bounds read [CVE-2019-8184]
143886
Adobe Acrobat Reader out-of-bounds read [CVE-2019-8182]
143885
Adobe Acrobat Reader out-of-bounds read [CVE-2019-8064]
143884
Adobe Acrobat Reader out-of-bounds read [CVE-2019-8173]
143883
Adobe Acrobat Reader out-of-bounds read [CVE-2019-8172]
143882
Adobe Acrobat Reader out-of-bounds read [CVE-2019-8168]
143881
Adobe Acrobat Reader out-of-bounds read [CVE-2019-8164]
143880
ISC BIND QNAME assertion [CVE-2019-6476]
143879
ISC BIND Mirror Zone input validation [CVE-2019-6475]
143878
GNU Guix permission assignment [CVE-2019-18192]
143877
Eclipse OpenJ9 Privilege Check permission assignment [CVE-2019-17631]
143876
Ratpack Netty Library DefaultHttpHeaders input validation
143875
WiKID 2FA Enterprise Server adm_usrs.jsp Reflected cross site scripting
143874
WiKID 2FA Enterprise Server Logs.jsp sql injection
143873
WiKID 2FA Enterprise Server cross-site request forgery [CVE-2019-17118]
143872
WiKID 2FA Enterprise Server processPref.jsp sql injection
143871
WiKID 2FA Enterprise Server groups.jsp Reflected cross site scripting
143870
WiKID 2FA Enterprise Server cross site scripting [CVE-2019-17115]
143869
WiKID 2FA Enterprise Server userPreregistration.jsp Reflected cross site scripting
143868
WiKID 2FA Enterprise Server searchDevices.jsp buildSearchWhereClause sql injection
143867
NCH Express Accounts Accounting Persistent cross site scripting
143866
eQ-3 Homematic CCU3 ReGa.runScript input validation
143865
eQ-3 Homematic CCU3 session fixiation [CVE-2019-15849]
143864
Trend Micro Deep Security Agent input validation [CVE-2019-15627]
143863
Trend Micro Deep Security Manager application LDAP information disclosure
143862
HiNet GPON Service Port 6998 input validation [CVE-2019-15066]
143861
HiNet GPON Service Port 6998 information disclosure [CVE-2019-15065]
143860
HiNet GPON improper authentication [CVE-2019-15064]
143859
eQ-3 Homematic CCU2 CUx-Daemon information disclosure [CVE-2019-14424]
143858
eQ-3 Homematic CCU2 CUx-Daemon code injection [CVE-2019-14423]
143857
CA Performance Management hard-coded credentials [CVE-2019-13657]
143856
HiNet GPON Service Port 3097 information disclosure [CVE-2019-13412]
143855
HiNet GPON Service Port 3097 input validation [CVE-2019-13411]
143854
TOPMeeting Front End Page information disclosure [CVE-2019-13410]
143853
TOPMeeting Union sql injection [CVE-2019-13409]
143852
BitDefender BOX miniupnpd allocation of resources [CVE-2019-12611]
143851
Pivotal Reactor Netty Header Credentials insufficiently protected credentials
143850
Kubernetes API Server input validation [CVE-2019-11253]
143849
Sequelize JSON Query sequelize.json sql injection
143848
Kea DHCP input validation [CVE-2019-6474]
143847
Kea DHCPv4 assertion [CVE-2019-6473]
143846
Kea DHCPv6 DUID assertion [CVE-2019-6472]
143845
MetInfo index.class.php doSaveSetup cross-site request forgery
143844
WordPress Admin Pages type confusion [CVE-2019-17675]
143843
WordPress Customizer Stored cross site scripting
143842
WordPress Cache input validation [CVE-2019-17673]
143841
WordPress Style Element Stored cross site scripting
143840
WordPress Static Query information disclosure [CVE-2019-17671]
143839
WordPress URL server-side request forgery [CVE-2019-17670]
143838
WordPress URL server-side request forgery [CVE-2019-17669]
143837
Samsung Galaxy S10/Note 10 Fingerprint input validation [CVE-2019-17668]
143836
Comtech H8 Heights Remote Gateway cross site scripting [CVE-2019-17667]
143835
Linux Kernel ps.c rtl_p2p_noa_ie buffer overflow
143834
NSA Ghidra jansi.dll untrusted search path [CVE-2019-17665]
143833
NSA Ghidra Python Interpreter untrusted search path [CVE-2019-17664]
143832
D-Link DIR-866L Common Gateway Interface HtmlResponseMessage cross site scripting
143831
ThinVNC path traversal [CVE-2019-17662]
143830
LimeSurvey translateheader_view.php cross site scripting
143829
HongCMS index.php cross site scripting
143828
HongCMS index.php cross site scripting
143827
HongCMS index.php cross site scripting
143826
HongCMS index.php cross site scripting
143825
HongCMS index.php cross site scripting
143824
Dolibarr Outgoing Email Setup cross site scripting [CVE-2019-17578]
143823
Dolibarr Outgoing Email Setup cross site scripting [CVE-2019-17577]
143822
Dolibarr Outgoing Email Setup cross site scripting [CVE-2019-17576]
143821
D-Link DIR-412 log_clear.php improper authentication
143820
Palo Alto GlobalProtect Agent privileges management [CVE-2019-17436]
143819
Palo Alto GlobalProtect Agent MSI Installer privileges management
143818
slub_events Extension Event Registration unrestricted upload
143817
sr_freecap Extension input validation [CVE-2019-16699]
143816
direct_mail Extension Access Check information disclosure [CVE-2019-16698]
143815
url_redirect Extension sql injection [CVE-2019-16682]
143814
Cisco TelePresence Collaboration Endpoint CLI root default permission
143813
Cisco Identity Services Engine Web-based Management Interface missing authentication
143812
Cisco Identity Services Engine Web-based Management Interface Stored cross site scripting
143811
Cisco FirePOWER Management Center Web-based Management Interface Stored cross site scripting
143810
Cisco TelePresence Collaboration Endpoint Privileges privileges management
143809
Cisco TelePresence Collaboration Endpoint CLI privileges management
143808
Cisco TelePresence Collaboration Endpoint CLI os command injection
143807
Cisco TelePresence Collaboration Endpoint CLI privileges management
143806
Cisco FirePOWER Management Center Web-based Management Interface cross site scripting
143805
Cisco FirePOWER Management Center Web-based Management Interface cross site scripting
143804
Cisco FirePOWER Management Center Web-based Management Interface cross site scripting
143803
Cisco Wireless LAN Controller CLI path traversal [CVE-2019-15266]
143802
Cisco Aironet Access Point BPDU Forwarding handler input validation
143801
Cisco Aironet Access Point/Catalyst 9100 Access Point Control/Provisioning resource consumption
143800
Cisco Wireless LAN Controller SSH Session Management input validation
143799
Cisco Aironet Access Point PPTP VPN input validation [CVE-2019-15261]
143798
Cisco Aironet Access Point URL privileges management [CVE-2019-15260]
143797
Cisco SPA100 ATA Web-based Management Interface input validation
143796
Cisco SPA100 ATA Web-based Management Interface information disclosure
143795
Cisco SPA100 ATA Web-based Management Interface memory corruption
143794
Cisco SPA100 ATA Web-based Management Interface memory corruption
143793
Cisco SPA100 ATA Web-based Management Interface memory corruption
143792
Cisco SPA100 ATA Web-based Management Interface memory corruption
143791
Cisco SPA100 ATA Web-based Management Interface memory corruption
143790
Cisco SPA100 ATA Web-based Management Interface memory corruption
143789
Cisco SPA100 ATA Web-based Management Interface memory corruption
143788
Cisco SPA100 ATA Web-based Management Interface memory corruption
143787
Cisco SPA100 ATA Web-based Management Interface memory corruption
143786
Cisco SPA100 ATA Web-based Management Interface memory corruption
143785
Cisco SPA100 ATA Web-based Management Interface memory corruption
143784
Cisco SPA100 ATA Web-based Management Interface memory corruption
143783
Cisco SPA100 ATA Web-based Management Interface memory corruption
143782
MuleSoft Mule Runtime Engine Apache Commons Collections deserialization
143781
Cisco Small Business Switch/Managed Switch Web-based Interface cross site scripting
143780
Cisco SPA100 ATA Web-based Management Interface information disclosure
143779
Cisco TelePresence Video Communication Server Web-based Management Interface cross site scripting
143778
Cisco SPA100 ATA Web-based Management Interface information disclosure
143777
Cisco SPA122 ATA Web-based Management Interface cross site scripting
143776
Cisco SPA100 ATA Web-based Management Interface cross site scripting
143775
Cisco Identity Services Engine Web-based Management Interface cross site scripting
143774
Cisco Identity Services Engine Web-based Management Interface Stored cross site scripting
143773
Cisco Small Business Smart Switch/Managed Switch Web-based Management Interface cross-site request forgery
143772
Pivotal RabbitMQ Host Limits Page/Federation Management UI cross site scripting
143771
Oracle VM VirtualBox denial of service [CVE-2019-2926]
143770
Oracle VM VirtualBox missing encryption [CVE-2019-1547]
143769
Oracle VM VirtualBox information disclosure [CVE-2019-3031]
143768
Oracle VM VirtualBox denial of service [CVE-2019-3005]
143767
Oracle VM VirtualBox denial of service [CVE-2019-3002]
143766
Oracle VM VirtualBox denial of service [CVE-2019-2984]
143765
Oracle VM VirtualBox denial of service [CVE-2019-3021]
143764
Oracle VM VirtualBox information disclosure [CVE-2019-3026]
143763
Oracle VM VirtualBox denial of service [CVE-2019-2944]
143762
Oracle VM VirtualBox Local Privilege Escalation [CVE-2019-3017]
143761
Oracle VM VirtualBox Local Privilege Escalation [CVE-2019-3028]
143760
Oracle Clusterware TFA Collectorjackson-databind information disclosure
143759
Oracle Diagnostic Assistant jQuery cross site scripting [CVE-2019-11358]
143758
Oracle Agile Product Lifecycle Management for Process jQuery cross site scripting
143757
Oracle Agile PLM Apache Tomcat input validation [CVE-2019-0232]
143756
Oracle Agile Recipe Management for Pharmaceuticals Apache Groovy deserialization
143755
Oracle Solaris LDAP Library denial of service [CVE-2019-3008]
143754
Oracle Solaris SMF services / legacy daemons denial of service
143753
Oracle Solaris Filesystem denial of service [CVE-2019-2765]
143752
Oracle Fujitsu M10-1 NSS cryptographic issues [CVE-2018-12404]
143751
Oracle Fujitsu M10-1 USB Driver out-of-bounds write [CVE-2017-17558]
143750
Oracle Fujitsu M10-1 OpenSSH access control [CVE-2019-6109]
143749
Oracle Fujitsu M10-1 OpenSSL key management [CVE-2018-0732]
143748
Oracle Fujitsu M10-1 Net SNMP null pointer dereference [CVE-2018-18066]
143747
Oracle Fujitsu M10-1 NTP input validation [CVE-2018-7185]
143746
Oracle Fujitsu M10-1 glibc null pointer dereference [CVE-2015-5180]
143745
Oracle Solaris XScreenSaver Local Privilege Escalation [CVE-2019-3010]
143744
Oracle Fujitsu M10-1 cURL information disclosure [CVE-2018-1000007]
143743
Oracle Siebel UI Framework EAI information disclosure [CVE-2019-2935]
143742
Oracle Siebel UI Framework Apache Tomcat race condition [CVE-2018-8037]
143741
Oracle Siebel Mobile Applications jQuery cross site scripting
143740
Oracle Siebel Core - DB Deployment/Configuration Install Configuration information disclosure
143739
Oracle Retail Xstore Point of Service Point of Sale information disclosure
143738
Oracle Retail Customer Management/Segmentation Foundation Segment authorization
143737
Oracle Retail Xstore Point of Service jackson-databind information disclosure
143736
Oracle Retail Xstore Office Internal Operations information disclosure
143735
Oracle Retail Customer Management/Segmentation Foundation Segment information disclosure
143734
Oracle MICROS Relate CRM Software Internal Operations information disclosure
143733
Oracle Retail Customer Insights jQuery cross site scripting [CVE-2019-11358]
143732
Oracle Retail Xstore Point of Service jackson-databind information disclosure
143731
Oracle Retail Integration Bus Spring Framework denial of service
143730
Oracle MICROS Relate CRM Software Apache Tomcat input validation
143729
Oracle Retail Xstore Point of Service jackson-databind input validation
143728
Oracle MICROS Retail XBRi Loss Prevention jackson-databind deserialization
143727
Oracle Policy Automation for Mobile Devices jQuery cross site scripting
143726
Oracle Policy Automation Connector for Siebel jQuery cross site scripting
143725
Oracle Policy Automation jQuery cross site scripting [CVE-2019-11358]
143724
Oracle Policy Automation Connector for Siebel Apache Axis server-side request forgery
143723
Oracle PeopleSoft Enterprise PeopleTools Integration Broker information disclosure
143722
Oracle PeopleSoft Enterprise HCM Human Resources US Federal Specific information disclosure
143721
Oracle PeopleSoft Enterprise PeopleTools Stylesheet unknown vulnerability
143720
Oracle PeopleSoft Enterprise SCM eProcurement information disclosure
143719
Oracle PeopleSoft Enterprise PeopleTools jQuery cross site scripting
143718
Oracle PeopleSoft Enterprise PeopleTools Portal information disclosure
143717
Oracle PeopleSoft Enterprise PeopleTools Portal information disclosure
143716
Oracle PeopleSoft Enterprise PeopleTools Performance Monitor information disclosure
143715
Oracle PeopleSoft Enterprise PeopleTools Fluid Core information disclosure
143714
Oracle PeopleSoft Enterprise PeopleTools Fluid Core information disclosure
143713
Oracle PeopleSoft Enterprise PeopleTools Tree Manager information disclosure
143712
Oracle PeopleSoft Enterprise PeopleTools libssh2 out-of-bounds read
143711
Oracle PeopleSoft Enterprise PeopleTools Apache Xerces memory corruption
143710
Oracle MySQL Server Information Schema information disclosure
143709
Oracle MySQL Server Encryption information disclosure [CVE-2019-2910]
143708
Oracle MySQL Server Connection denial of service [CVE-2019-3009]
143707
Oracle MySQL Server InnoDB input validation [CVE-2019-3018]
143706
Oracle MySQL Server InnoDB input validation [CVE-2019-2938]
143705
Oracle MySQL Server Encryption denial of service [CVE-2019-2957]
143704
Oracle MySQL Server Replication denial of service [CVE-2019-2960]
143703
Oracle MySQL Server Optimizer denial of service [CVE-2019-2998]
143702
Oracle MySQL Server Optimizer denial of service [CVE-2019-2982]
143701
Oracle MySQL Server Optimizer denial of service [CVE-2019-2950]
ID
Title
Nessus
OpenVAS
Snort
Suricata
TippingPoint
143700
Oracle MySQL Server Optimizer denial of service [CVE-2019-2948]
143699
Oracle MySQL Server DDL denial of service [CVE-2019-2997]
143698
Oracle MySQL Server InnoDB denial of service [CVE-2019-3003]
143697
Oracle MySQL Server InnoDB denial of service [CVE-2019-2968]
143696
Oracle MySQL Server InnoDB denial of service [CVE-2019-2963]
143695
Oracle MySQL Workbench OpenSSL random values [CVE-2019-1549]
143694
Oracle MySQL Server Encryption information disclosure [CVE-2019-2924]
143693
Oracle MySQL Server Encryption information disclosure [CVE-2019-2923]
143692
Oracle MySQL Server Encryption information disclosure [CVE-2019-2922]
143691
Oracle MySQL Server C API denial of service [CVE-2019-2993]
143690
Oracle MySQL Connectors Connector/ODBC authorization [CVE-2019-2920]
143689
Oracle MySQL Server Optimizer denial of service [CVE-2019-2991]
143688
Oracle MySQL Server Client programs information disclosure [CVE-2019-2969]
143687
Oracle MySQL Server Encryption denial of service [CVE-2019-2914]
143686
Oracle MySQL Server Parser denial of service [CVE-2019-3004]
143685
Oracle MySQL Server PS denial of service [CVE-2019-2946]
143684
Oracle MySQL Server Optimizer denial of service [CVE-2019-2974]
143683
Oracle MySQL Server Optimizer denial of service [CVE-2019-2967]
143682
Oracle MySQL Server Optimizer denial of service [CVE-2019-2966]
143681
Oracle MySQL Server C API denial of service [CVE-2019-3011]
143680
Oracle MySQL Connectors OpenSSL cryptographic issues [CVE-2019-1543]
143679
Oracle MySQL Enterprise Monitor Apache Tomcat resource consumption
143678
Oracle MySQL Server cURL code injection [CVE-2019-5443]
143677
Oracle MySQL Workbench SQLite out-of-bounds read [CVE-2019-8457]
143676
Oracle JD Edwards EnterpriseOne Tools Log4j deserialization [CVE-2017-5645]
143675
Oracle Java SE Networking denial of service [CVE-2019-2945]
143674
Oracle Java SE Libraries information disclosure [CVE-2019-2933]
143673
Oracle Java SE Serialization denial of service [CVE-2019-2983]
143672
Oracle Java SE Security information disclosure [CVE-2019-2894]
143671
Oracle Java SE Networking denial of service [CVE-2019-2978]
143670
Oracle Java SE JAXP denial of service [CVE-2019-2981]
143669
Oracle Java SE JAXP denial of service [CVE-2019-2973]
143668
Oracle Java SE Concurrency denial of service [CVE-2019-2964]
143667
Oracle Java SE 2D denial of service [CVE-2019-2992]
143666
Oracle Java SE Apache Xerces denial of service [CVE-2019-2988]
143665
Oracle Java SE OpenSSL denial of service [CVE-2019-2962]
143664
Oracle Java SE OpenSSL denial of service [CVE-2019-2987]
143663
Oracle Java SE Apache Tomcat information disclosure [CVE-2019-2996]
143662
Oracle Java SE Javadoc information disclosure [CVE-2019-2999]
143661
Oracle Java SE SQLite denial of service [CVE-2019-2975]
143660
Oracle Java SE Log4j denial of service [CVE-2019-2977]
143659
Oracle Java SE libxslt access control [CVE-2019-11068]
143658
Oracle Java SE Apache Xerces unknown vulnerability [CVE-2019-2958]
143657
Oracle Java SE OpenSSL unknown vulnerability [CVE-2019-2989]
143656
Oracle Java SE Kerberos information disclosure [CVE-2019-2949]
143655
Oracle Hyperion Enterprise Performance Management Architect Apache Tomcat information disclosure
143654
Oracle Hyperion Financial Reporting cURL unknown vulnerability
143653
Oracle Hyperion Data Relationship Management SQLite Remote Privilege Escalation
143652
Oracle Hospitality Guest Access Eclipse Jetty information disclosure
143651
Oracle Hospitality Cruise Dining Room Management libxslt information disclosure
143650
Oracle Hospitality Guest Access Apache Axis server-side request forgery
143649
Oracle Healthcare Translational Research jQuery cross site scripting
143648
Oracle Healthcare Foundation jQuery cross site scripting [CVE-2019-11358]
143647
Oracle GraalVM Enterprise Edition jQuery unknown vulnerability
143646
Oracle GraalVM Enterprise Edition Node.js resource consumption
143645
Oracle GraalVM Enterprise Edition LLVM Interpreter denial of service
143644
Oracle JDeveloper/ADF OAM information disclosure [CVE-2019-2899]
143643
Oracle WebLogic Server Web Services information disclosure [CVE-2019-2887]
143642
Oracle BI Publisher BI Publisher Security information disclosure
143641
Oracle WebLogic Server TFA Collectorjackson-databind information disclosure
143640
Oracle Business Intelligence Enterprise Edition jQuery information disclosure
143639
Oracle Business Intelligence Enterprise Edition OpenSSL information disclosure
143638
Oracle API Gateway OpenSSL information disclosure [CVE-2019-1559]
143637
Oracle WebLogic Server jQuery cross site scripting [CVE-2015-9251]
143636
Oracle WebLogic Server JavaServer Faces cross site scripting
143635
Oracle WebLogic Server jQuery cross site scripting [CVE-2019-11358]
143634
Oracle WebLogic Server OpenSSH information disclosure [CVE-2019-2889]
143633
Oracle WebLogic Server jQuery cross site scripting [CVE-2019-11358]
143632
Oracle Service Bus jQuery cross site scripting [CVE-2019-11358]
143631
Oracle JDeveloper/ADF jQuery cross site scripting [CVE-2019-11358]
143630
Oracle Forms glibc information disclosure [CVE-2019-2886]
143629
Oracle Business Intelligence Enterprise Edition JQuery cross site scripting
143628
Oracle Business Intelligence Enterprise Edition Apache Tomcat information disclosure
143627
Oracle Data Integrator jQuery information disclosure [CVE-2019-2943]
143626
Oracle WebLogic Server jackson-databind Remote Privilege Escalation
143625
Oracle Web Services jQuery information disclosure [CVE-2019-2907]
143624
Oracle SOA Suite Apache Commons FileUpload access control [CVE-2016-1000031]
143623
Oracle Outside In Technology Spring Framework denial of service
143622
Oracle Outside In Technology Apache Tomcat denial of service
143621
Oracle Outside In Technology jackson-databind denial of service
143620
Oracle Outside In Technology jackson-databind denial of service
143619
Oracle Outside In Technology jQuery denial of service [CVE-2019-2901]
143618
Oracle Outside In Technology jQuery denial of service [CVE-2019-2970]
143617
Oracle WebCenter Portal jackson-databind information disclosure
143616
Oracle GoldenGate Application Adapters Spring Framework denial of service
143615
Oracle Enterprise Repository Apache POI infinite loop [CVE-2017-12626]
143614
Oracle Enterprise Repository Apache Camel xml external entity reference
143613
Oracle Business Intelligence Enterprise Edition Apache Xerces information disclosure
143612
Oracle WebLogic Server OpenSSL Remote Code Execution [CVE-2019-2891]
143611
Oracle BI Publisher OpenSSL information disclosure [CVE-2019-2906]
143610
Oracle Business Intelligence Enterprise Edition Apache Tomcat information disclosure
143609
Oracle Virtual Directory Apache Commons FileUpload access control
143608
Oracle JDeveloper/ADF SQLite Remote Code Execution [CVE-2019-2904]
143607
Oracle Hospitality Reporting/Analytics Log4j authorization [CVE-2019-2952]
143606
Oracle Hospitality Materials Control jQuery cross site scripting
143605
Oracle Hospitality Reporting/Analytics Eclipse Jetty information disclosure
143604
Oracle Hospitality Reporting/Analytics Apache Axis information disclosure
143603
Oracle Hospitality Reporting/Analytics jQuery information disclosure
143602
Oracle Hospitality Reporting/Analytics jQuery information disclosure
143601
Oracle Hospitality RES 3700 Interface Remote Code Execution [CVE-2019-3025]
143600
Oracle Banking Digital Experience OpenSSL authorization [CVE-2019-3019]
143599
Oracle FLEXCUBE Direct Banking OpenSSL unknown vulnerability
143598
Oracle Financial Services Retail Performance Analytics jQuery cross site scripting
143597
Oracle Financial Services Enterprise Financial Performance Analytics jQuery information disclosure
143596
Oracle FLEXCUBE Direct Banking jQuery information disclosure
143595
Oracle Financial Services Analytical Applications Infrastructure jackson-databind input validation
143594
Oracle Banking Platform jackson-databind input validation [CVE-2019-14379]
143593
Oracle Enterprise Manager Base Platform Eclipse Jetty information disclosure
143592
Oracle Application Testing Suite jQuery cross site scripting
143591
Oracle Enterprise Manager Ops Center jQuery cross site scripting
143590
Oracle Enterprise Manager Ops Center Apache HTTP Server resource consumption
143589
Oracle Enterprise Manager for Exadata Spring Framework Remote Privilege Escalation
143588
Oracle Enterprise Manager Ops Center cURL code injection [CVE-2019-5443]
143587
Oracle Enterprise Manager Base Platform Jython Remote Code Execution
143586
Oracle Workflow Apache Commons FileUpload unknown vulnerability
143585
Oracle Installed Base jQuery unknown vulnerability [CVE-2019-3024]
143584
Oracle Field Service jQuery improper authentication [CVE-2019-2930]
143583
Oracle Application Object Library jQuery denial of service [CVE-2019-3027]
143582
Oracle Content Manager jackson-databind unknown vulnerability
143581
Oracle Marketing jackson-databind information disclosure [CVE-2019-3000]
143580
Oracle Marketing Eclipse Jetty information disclosure [CVE-2019-2995]
143579
Oracle Marketing jQuery information disclosure [CVE-2019-2994]
143578
Oracle iStore Order Tracker information disclosure [CVE-2019-2990]
143577
Oracle Advanced Outbound Telephony User Interface information disclosure
143576
Oracle Primavera Unifier jQuery cross site scripting [CVE-2019-11358]
143575
Oracle Primavera P6 Enterprise Project Portfolio Management Apache POI information disclosure
143574
Oracle Primavera Unifier Apache POI infinite loop [CVE-2017-12626]
143573
Oracle Primavera P6 Enterprise Project Portfolio Management Apache POI infinite loop
143572
Oracle Primavera Gateway Apache POI infinite loop [CVE-2017-12626]
143571
Oracle Instantis EnterpriseTrack Apache POI infinite loop [CVE-2017-12626]
143570
Oracle Instantis EnterpriseTrack Apache Axis server-side request forgery
143569
Oracle Instantis EnterpriseTrack Apache HTTP Server access control
143568
Oracle Instantis EnterpriseTrack Apache Tomcat input validation
143567
Oracle Primavera P6 Enterprise Project Portfolio Management Web Access information disclosure
143566
Oracle Primavera Unifier jackson-databind input validation [CVE-2019-14379]
143565
Oracle Primavera Gateway jackson-databind input validation [CVE-2019-14379]
143564
Oracle Instantis EnterpriseTrack Apache Tomcat infinite loop
143563
Oracle NoSQL Database server-side request forgery [CVE-2018-14721]
143562
Oracle Database Server Core RDBMS input validation [CVE-2019-2940]
143561
Oracle Database Server Core RDBMS unknown vulnerability [CVE-2019-2955]
143560
Oracle Database Server Core RDBMS denial of service [CVE-2019-2954]
143559
Oracle Database Server Apache Tomcat redirect [CVE-2018-11784]
143558
Oracle Database Server Core RDBMS unknown vulnerability [CVE-2019-2734]
143557
Oracle Database Server Core RDBMS information disclosure [CVE-2018-2875]
143556
Oracle Database Server Core RDBMS information disclosure [CVE-2019-2939]
143555
Oracle Database Server Core RDBMS information disclosure [CVE-2019-2913]
143554
Oracle Database Server jackson-databind denial of service [CVE-2019-2956]
143553
Oracle Database Server Java VM input validation [CVE-2019-2909]
143552
HP LaserJet Application Signature input validation [CVE-2019-6334]
143551
CMS Made Simple News Screen Stored cross site scripting
143550
CMS Made Simple File Manager Stored cross site scripting
143549
events-manager Plugin Stored cross site scripting [CVE-2019-16523]
143548
eu-cookie-law Plugin Stored cross site scripting [CVE-2019-16522]
143547
broken-link-checker Plugin Reflected cross site scripting [CVE-2019-16521]
143546
all-in-one-seo-pack Plugin Stored cross site scripting [CVE-2019-16520]
143545
Sonatype Nexus Repository Manager privileges management [CVE-2019-15893]
143544
Puppet Enterprise Pipeline Custom Script Security Whitelist input validation
143543
Oracle Cloud Infrastructure Compute Classic Plugin permission assignment
143542
Oracle Cloud Infrastructure Compute Classic Plugin cross-site request forgery
143541
Rundeck Plugin Permission Check permission assignment [CVE-2019-10455]
143540
Rundeck Plugin cross-site request forgery [CVE-2019-10454]
143539
Delphix Plugin Global Configuration Credentials cleartext storage
143538
View26 Test-Reporting Plugin config.xml Credentials cleartext storage
143537
SOASTA CloudTest Plugin Global Configuration Credentials cleartext storage
143536
ElasticBox CI Plugin Configuration File config.xml Credentials cleartext storage
143535
Fortify on Demand Plugin config.xml Credentials cleartext storage
143534
Extensive Testing Plugin config.xml Credentials insufficiently protected credentials
143533
Sofy.AI Plugin config.xml cleartext storage
143532
Cadence vManager Plugin Hostname Verification certificate validation
143531
Google Kubernetes Engine Plugin Permission Check permission assignment
143530
Bumblebee HP ALM Plugin Hostname Verification certificate validation
143529
iceScrum Plugin config.xml Credentials cleartext storage
143528
iceScrum Plugin Permission Check permission assignment [CVE-2019-10442]
143527
iceScrum Plugin cross-site request forgery [CVE-2019-10441]
143526
NeoLoad Plugin Global Configuration config.xml Credentials cleartext storage
143525
CRX Content Package Deployer Plugin Permission Check doFillCredentialsIdItems Credentials insufficiently protected credentials
143524
CRX Content Package Deployer Plugin Permission Check permission assignment
143523
CRX Content Package Deployer Plugin cross-site request forgery
143522
Google OAuth Credentials Plugin information disclosure [CVE-2019-10436]
143521
IBM Workload Scheduler Distributed privileges management [CVE-2019-4031]
143520
Yale Bluetooth Key App Bluetooth Low Energy improper authentication
143519
ReportLab colors.py toColor xml injection
143518
Rambox Service Stored cross site scripting
143517
X.org X Server ct.c_char XQueryKeymap out-of-bounds write
143516
MindPalette NateMail Reflected cross site scripting [CVE-2019-13392]
143515
Netgear JNR1010 webproc cross site scripting
143514
Netgear JNR1010 webproc cross-site request forgery
143513
Netgear JNR1010 Access Control session expiration [CVE-2016-11014]
143512
Google Android Qualcomm Component null pointer dereference [CVE-2019-10513]
143511
Google Android Qualcomm Component memory corruption [CVE-2019-2295]
143510
Google Android Qualcomm Component use after free [CVE-2019-10490]
143509
Google Android Qualcomm Component infinite loop [CVE-2019-2335]
143508
Google Android Qualcomm Component out-of-bounds read [CVE-2019-2318]
143507
Google Android Qualcomm Component out-of-bounds read [CVE-2019-2303]
143506
Google Android Qualcomm Component memory corruption [CVE-2019-2339]
143505
Google Android Qualcomm Component use after free [CVE-2019-2336]
143504
Google Android Qualcomm Component use after free [CVE-2019-2329]
143503
Google Android Qualcomm Component Local Privilege Escalation
143502
Google Android Qualcomm Component improper authentication [CVE-2019-2289]
143501
Google Android Qualcomm Component out-of-bounds read [CVE-2019-2271]
143500
Google Android Qualcomm Component buffer overflow [CVE-2019-2251]
143499
Google Android Qualcomm Component buffer overflow [CVE-2018-13916]
143498
qibosoft jf.php eval code injection
143497
74cms BackendController.class.php _list sql injection
143496
Zoho ManageEngine OpManager OPMDeviceDetailsServlet Servlet sql injection
143495
MiniShare HTTP CONNECT Request memory corruption [CVE-2019-17601]
143494
Intelbras IWR 1000N user Credentials cross-site request forgery
143493
Dark Horse Comics App Log log file [CVE-2019-17398]
143492
DoorDash App Log Credentials log file
143491
PowerSchool Mobile App Log Credentials log file
143490
Rapid Gator App Log Credentials log file
143489
Seesaw Parent/Family App Log Credentials log file
143488
Infinite Design App Authentication inadequate encryption [CVE-2019-17356]
143487
Orbitz App Log Credentials log file
143486
Dolibarr ERP/CRM note.php injection
143485
Connect2id Nimbus JOSE+JWT JWT Parser unusual condition [CVE-2019-17195]
143484
KeyCloak REST API authorization [CVE-2019-14832]
143483
Glue Smart Lock Guest Access privileges management [CVE-2019-12944]
143482
safer-eval Sandbox code injection [CVE-2019-10760]
143481
safer-eval Sandbox code injection [CVE-2019-10759]
143479
haml cross site scripting [CVE-2017-1002201]
143478
Dell ImageAssist Image information disclosure [CVE-2019-3767]
143477
ncurses terminfo Library comp_hash.c fmt_entry out-of-bounds read
143476
ncurses terminfo Library comp_hash.c _nc_find_entry out-of-bounds read
143475
JIZHICMS adminadd.html cross-site request forgery
143474
csv-parse Module Regular Expression __isInt input validation
143473
NCH Express Invoice Quotes Persistent cross site scripting
143472
JSS CryptoManager OCSP Policy certificate validation [CVE-2019-14823]
143471
Ubisoft Uplay Permission permission assignment [CVE-2019-14737]
143470
AutoPi Device insufficiently protected credentials [CVE-2019-12941]
143469
D-Link DIR-880L/DIR-895 fileaccess.cgi buffer overflow
143468
sudo Runas Restriction input validation [CVE-2019-14287]
143467
CloudCTI HIP Integrator Recognition Configuration Tool EXQUISE privileges management
143466
IBM FileNet Content Manager Log File Credentials log file
143465
idreamsoft iCMS Comment resource consumption [CVE-2019-17583]
143464
tonyy dormsystem admin.php sql injection
143463
Sonarsource SonarQube Project Link cross site scripting [CVE-2019-17579]
143462
WBCE CMS File Renaming Filter rename.php code injection
143461
Popup Maker Plugin do_action authorization
143460
MetInfo sql injection [CVE-2019-17553]
143459
idreamsoft iCMS spider_project.admincp.php sql injection
143458
D-Link DIR-412 Web Interface log_get.php improper authentication
143457
ZZZCMS zzzphp zzz_template.php parserIfLabel input validation
143456
BMC Patrol Agent default permission [CVE-2019-17044]
143455
BMC Patrol Agent best1collect.exe default permission
143454
ESET Cyber Security Scheduled Task input validation [CVE-2019-16519]
143453
ScadaBR Login Form login.htm cross site scripting
143452
Nostromo nhttpd SSL_accept path traversal
143451
Nostromo nhttpd http_verify path traversal
143450
Ansible Engine/Tower log file [CVE-2019-14858]
143449
wildfly-core improper authentication [CVE-2019-14838]
143448
OX App Suite cross site scripting [CVE-2019-14227]
143447
OX App Suite Permission permissions [CVE-2019-14226]
143446
OX App Suite server-side request forgery [CVE-2019-14225]
143445
ImageMagick draw.c TraceBezier use after free
143444
LibTIFF RGBA Image tif_getimage.c integer overflow
143443
GDAL ogr_expat.cpp OGRExpatRealloc double free
143442
GNU Aspell getdata.cpp unescape out-of-bounds read
143441
LZ4 LZ4_write32 buffer overflow
143440
FFmpeg vqavideo.c vqa_decode_init array index
143439
ImageMagick string.c DestroyStringInfo use after free
143438
ImageMagick ps.c ReadPSInfo buffer overflow
143437
FFmpeg utils.c avcodec_open2 null pointer dereference
143436
Centreon os command injection [CVE-2019-17501]
143435
Jiangnan Online Judge path traversal [CVE-2019-17538]
143434
Jiangnan Online Judge path traversal [CVE-2019-17537]
143433
Gila CMS File Upload fm.php moveAction unrestricted upload
143432
Gila CMS Blog Theme/Mag Theme blog-list.php cross site scripting
143431
libvips gifload.c vips_foreign_load_gif_scan_image use after free
143430
matio mat4.c Mat_VarReadNextInfo4 out-of-bounds read
143429
Belkin Wemo Switch 28B Rule Processing rules1 input validation
143428
FasterXML jackson-databind JSON Endpoint input validation [CVE-2019-17531]
143427
Bento4 Encryption Ap4Atom.cpp AddField out-of-bounds read
143426
Bento4 Encryption Ap4CommonEncryption.cpp DoInspectFields out-of-bounds read
143425
Bento4 Ap4TfhdAtom.h SetDefaultSampleSize memory corruption
143424
Hotaru CMS Stored cross site scripting [CVE-2019-17522]
143423
Landing-CMS cross-site request forgery [CVE-2019-17521]
143422
Hydra HTTP Header read.c process_header_end null pointer dereference
143421
Samsung Laser Printers input validation [CVE-2019-6335]
143420
HP Touchpoint Analytics System Service input validation [CVE-2019-6333]
143419
Google Android nfc_ncif.cc nfc_ncif_decode_rf_params out-of-bounds read
143418
Google Android combined_decode.cpp GetMBheader out-of-bounds write
143417
Google Android vlc_dequant.cpp VlcDequantH263IntraBlock_SH out-of-bounds write
143416
Google Android dec_pred_intra_dc.cpp PV_DecodePredictedIntraDC out-of-bounds write
143415
Google Android Cache RegisteredServicesCache.java generateServicesMap information disclosure
143414
Google Android Permission Check ActivityStarter.java startActivityMayWait default permission
143413
Google Android NFC default permission [CVE-2019-2114]
143412
Google Android Permission Check ScreenRotationAnimation.java ScreenRotationAnimation information disclosure
143411
Python Documentation Sorting calculation [CVE-2019-17514]
143410
D-Link DIR-846 SetWizardConfig.php SetWizardConfig os command injection
143409
D-Link DIR-846 SetMasterWLanSettings.php SetMasterWLanSettings os command injection
143408
D-Link DIR-850/DIR-859 DEVICE.TIME.php os command injection
143407
D-Link DIR-816 A1 Management Page input validation [CVE-2019-17507]
143406
D-Link DIR-868L/DIR-817LW Web Interface getcfg.php Credentials improper authentication
143405
D-Link DAP-1320 Web Interface improper authentication [CVE-2019-17505]
143404
Kirona Dynamic Resource Scheduling Reflected cross site scripting
143403
Kirona Dynamic Resource Scheduling REGISTER.cmd information disclosure
143402
Compal CH7465LG Common Gateway Interface setter.xml os command injection
143401
Genesys PureEngage Digital HtmlChatPanel.jsp cross site scripting
143400
Sophos Cyberoam Firewall SSL VPN Console injection [CVE-2019-17059]
143399
Intel NUC System Firmware memory corruption [CVE-2019-14570]
143398
Intel NUC System Firmware Pointer memory corruption
143397
Kaseya VSA RMM LAN Cache default permission [CVE-2019-14510]
143396
Intel Smart Connect Technology for Intel NUC File Permission privileges management
143395
Intel Active System Console Installer privileges management [CVE-2019-11120]
143394
Boa free release of resource
143393
Boa memory corruption [CVE-2018-21027]
143392
GREE+ cross-site request forgery [CVE-2018-20582]
143391
Graphite views.py send_email server-side request forgery
143390
ThemeMakers SmartIT Premium Responsive Theme wp_users.dat information disclosure
143389
ThemeMakers Blessing Premium Responsive Theme wp_users.dat information disclosure
143388
ThemeMakers GamesTheme Premium Theme wp_users.dat information disclosure
143387
ThemeMakers Goodnex Premium Responsive Theme wp_users.dat information disclosure
143386
ThemeMakers Almera Responsive Portfolio Site Template wp_users.dat information disclosure
143385
ThemeMakers Almera Responsive Portfolio Theme wp_users.dat information disclosure
143384
ThemeMakers Axioma Premium Responsive Theme wp_users.dat information disclosure
143383
ThemeMakers Accio Responsive Parallax One Page Site Template wp_users.dat information disclosure
143382
ThemeMakers Accio One Page Parallax Responsive Theme wp_users.dat information disclosure
143381
ThemeMakers Invento Responsive Gallery wp_users.dat information disclosure
143380
ThemeMakers Car Dealer Theme wp_users.dat information disclosure
143379
ThemeMakers Diplomat/Political Theme wp_users.dat information disclosure
143373
XNU IPComp memory corruption [CVE-2019-8717]
143372
Cobham Explorer 710 Firmware unrestricted upload [CVE-2019-9534]
143371
Cobham Explorer 710 insufficiently protected credentials [CVE-2019-9533]
143370
Cobham Explorer 710 Web Application Portal cleartext transmission
143369
Cobham Explorer 710 Web Application Portal improper authentication
143368
Cobham Explorer 710 Access Restriction information disclosure
143367
Cobham Explorer 710 Web Application Portal missing authentication
143366
Tracker PDF-XChange Editor NTLM SSO Hash insufficiently protected credentials
143365
Craft CMS Stored cross site scripting [CVE-2019-17496]
143364
Swagger UI CSS injection [CVE-2019-17495]
143363
laravel-bjyblog URL cross site scripting [CVE-2019-17494]
143362
Jiangnan Online Judge create cross site scripting
143361
Jiangnan Online Judge create cross site scripting
143360
Jiangnan Online Judge File Upload ProblemController unrestricted upload
143359
Jiangnan Online Judge create cross site scripting
143358
b3log Symphony HTTP Header cross site scripting [CVE-2019-17488]
143357
Libntlm smbutil.c tSmbNtlmAuthResponse buffer overflow
143356
animate-it Plugin edsanimate.php cross-site request forgery
143355
Softing uaGate SI/uaGate MB/uaGate 840D CGI Script privileges management
143354
EOS Label Distribution Protocol race condition [CVE-2019-14810]
143353
Softing uaGate SI memory corruption [CVE-2019-11528]
143352
Softing uaGate SI CGI Script os command injection [CVE-2019-11527]
143351
Softing uaGate SI Maintenance Script code injection [CVE-2019-11526]
143350
Adobe Acrobat Reader privileges management [CVE-2018-19725]
143349
VMware Workstation/Fusion IPv6 input validation [CVE-2019-5535]
143348
VMware ESXi/Workstation/Fusion/VMRC/Horizon Client Virtual Sound Device use after free
143347
IBM Maximo Anywhere Root Detection insecure storage of sensitive information
143346
Bento4 Ap4Descriptor.h GetTag null pointer dereference
143345
Bento4 Ap4Descriptor.h Action null pointer dereference
143344
Bento4 Ap4Descriptor.h Action null pointer dereference
143343
GNU binutils libbfd dwarf2.c _bfd_dwarf2_find_nearest_line integer overflow
143342
GNU binutils libbfd dwarf2.c find_abstract_instance recursion
143341
Avira Software Updater DLL untrusted search path [CVE-2019-17449]
143340
LavaLite Account Name cross site scripting [CVE-2019-17434]
143339
z-song laravel-admin cross site scripting [CVE-2019-17433]
143338
FastAdmin edit cross-site request forgery
143337
FastAdmin add cross-site request forgery
143336
EyouCms login.php cross site scripting
143335
Adhouma CMS post.php sql injection
143334
NetSarang XFTP Client File Copy buffer overflow [CVE-2019-17320]
143333
new-contact-form-widget Plugin all-query-page.php sql injection
143332
client-dash Plugin cross site scripting [CVE-2019-17071]
143331
liquid-speech-balloon Plugin cross site scripting [CVE-2019-17070]
143330
Siemens SIMATIC IT UADM Service Port 1434 Credentials insufficiently protected credentials
143329
Siemens WinAC RTX improper authentication [CVE-2019-13921]
143328
Siemens SIMATIC/SINAMICS resource consumption [CVE-2019-10936]
143327
Siemens SIMATIC/SINAMICS IRT resource consumption [CVE-2019-10923]
143326
RobotCPA Plugin f.php path traversal
143325
ACF-Frontend-Display Plugin File Upload index.php unrestricted upload
143324
prettyPhoto jquery.prettyPhoto.js cross site scripting
143323
Vernissage Theme Option Update default permission [CVE-2015-9477]
143322
Teardrop Theme Option Update default permission [CVE-2015-9476]
143321
Pont Theme Option Update default permission [CVE-2015-9475]
143320
Simpolio Theme Option Update default permission [CVE-2015-9474]
143319
estrutura-basica Theme download.php path traversal
143318
incoming-links Plugin HTTP Header referrers.php cross site scripting
143317
dzs-zoomsounds Plugin File Upload upload.php unrestricted upload
143316
history-collection Plugin download.php path traversal
143315
content-grabber Plugin cross site scripting [CVE-2015-9469]
143314
broken-link-manager Plugin delURL cross site scripting
143313
broken-link-manager Plugin wpslEditURL sql injection
143312
wti-like-post Plugin WtiLikePostProcessVote sql injection
143311
yet-another-stars-rating Plugin yasr_get_multi_set_values_and_field sql injection
143310
s3bubble-amazon-s3-html-5-video-with-adverts Plugin downloader.php path traversal
143309
s3bubble-amazon-s3-audio-streaming Plugin downloader.php path traversal
143308
Portfolio Plugin afp_get_new_category_page sql injection
143307
Portfolio Plugin afp_get_new_portfolio_item_page sql injection
143306
booking-system Plugin display sql injection
143305
searchterms-tagging-2 Plugin options-general.php cross site scripting
143304
searchterms-tagging-2 Plugin pk_stt2_db_get_popular_terms sql injection
143303
pretty-link Plugin list_links sql injection
143302
Redmine Textile Persistent cross site scripting
143301
Automattic Mongoose Access Control input validation [CVE-2019-17426]
143300
OISF libhtp HTTP Protocol Parser input validation [CVE-2019-17420]
143299
MetInfo sql injection [CVE-2019-17419]
143298
MetInfo sql injection [CVE-2019-17418]
143297
PbootCMS cross site scripting [CVE-2019-17417]
143296
iTerm2 tmux Control Mode input validation [CVE-2019-9535]
143295
ISC BIND dispatch.c race condition
143294
ISC BIND EDNS Client Subnet input validation [CVE-2019-6469]
143293
ISC BIND nxdomain Redirect assertion [CVE-2019-6468]
143292
ISC BIND nxdomain Redirect query.c assertion
143291
ISC BIND Zone Transfer permission assignment [CVE-2019-6465]
143290
NVIDIA Shield TV Experience Boot Image input validation [CVE-2019-5700]
143289
NVIDIA Shield TV Experience Tegra Bootloader memory corruption
143288
SnapManager for Oracle information disclosure [CVE-2019-5507]
143287
Clustered Data ONTAP Hostname Verification certificate validation
143286
NitroPDF type conversion [CVE-2019-5053]
143285
NitroPDF memory corruption [CVE-2019-5050]
143284
NitroPDF out-of-bounds write [CVE-2019-5048]
143283
NitroPDF CharProcs Parser use after free [CVE-2019-5047]
143282
NitroPDF JPEG2000 File out-of-bounds write [CVE-2019-5046]
143281
NitroPDF JPEG2000 File out-of-bounds write [CVE-2019-5045]
143280
IBM Spectrum Scale injection [CVE-2019-4558]
143279
IBM Maximo Asset Management Error Message information exposure
143278
Dell EMC Avamar Server/Integrated Data Protection Appliance permission assignment
143277
McAfee Endpoint Security Configuration Tool missing authentication
143276
McAfee Endpoint Security Installer EPSetup.exe code injection
143275
File Sharing Wizard Structured Exception buffer overflow [CVE-2019-17415]
143274
tinylcy Vino vn_get_string input validation
143273
Exiv2 types.cpp getULong buffer overflow
143272
libyal liblnk liblnk_location_information.c network_share_name_offset out-of-bounds read
143271
Shack Forms Pro Extension File Attachment path traversal [CVE-2019-17399]
143270
RIOT MQTT-SN resource consumption [CVE-2019-17389]
143269
animate-it Plugin cross site scripting [CVE-2019-17385]
143268
animate-it Plugin cross site scripting [CVE-2019-17384]
143267
netaddr Gem File Permission default permission [CVE-2019-17383]
143266
Zabbix Dashboard Page improper authentication [CVE-2019-17382]
143265
cPanel WHM Update Preferences Interface cross site scripting
143264
cPanel WHM SSL Storage Manager Interface Stored cross site scripting
143263
cPanel SSL Key Delete Interface cross site scripting [CVE-2019-17378]
143262
cPanel LiveAPI Example Scripts cross site scripting [CVE-2019-17377]
143261
cPanel SSL Certificate Upload cross site scripting [CVE-2019-17376]
143260
cPanel API Token session expiration [CVE-2019-17375]
143259
Netgear WNR834Bv2 improper authentication [CVE-2019-17373]
143258
Netgear DC112A genieDisableLanChanged.cgi improper authentication
143257
libpng png_create_info_struct release of resource
143256
OTCMS sysCheckFile_deal.php input validation
143255
Citrix Application Delivery Management Access Control authorization
143254
Nix default permission [CVE-2019-17365]
143253
ZyXEL NBG-418N v2 Authentication wan.htm improper authentication
143252
D-Link DIR-615 wan.htm improper authentication
143251
Netreo OmniCenter Blind sql injection [CVE-2019-17128]
143250
Kramer VIAware Access Control default permission [CVE-2019-17124]
143249
Zoho ManageEngine DataSecurity Plus Configuration File file access
143248
Koji path traversal [CVE-2019-17109]
143247
OpenProject Project List cross site scripting [CVE-2019-17092]
143246
OpenSSH XMSS Key integer overflow [CVE-2019-16905]
143245
Socomec DIRIS A-40 Web Interface password.jsn Password insufficiently protected credentials
143244
Zingbox Inspector input validation [CVE-2019-1584]
143243
Altair PBS Professional privileges management [CVE-2019-15719]
143242
MantisBT os command injection [CVE-2019-15715]
143241
Envoy HTTP Header resource consumption [CVE-2019-15226]
143240
Zingbox Inspector 3rd Party Integration cleartext storage [CVE-2019-15023]
143239
Zingbox Inspector ARP authentication spoofing [CVE-2019-15022]
143238
Zingbox Inspector information disclosure [CVE-2019-15021]
143237
Zingbox Inspector Update Image injection [CVE-2019-15020]
143236
Zingbox Inspector Update Image input validation [CVE-2019-15019]
143235
Zingbox Inspector improper authentication [CVE-2019-15018]
143234
Zingbox Inspector SSH Service hard-coded credentials [CVE-2019-15017]
143233
Zingbox Inspector Management Interface sql injection [CVE-2019-15016]
143232
Zingbox Inspector hard-coded credentials [CVE-2019-15015]
143231
Zingbox Inspector CLI injection [CVE-2019-15014]
143230
RENPHO App JSON improper enforcement of message integrity [CVE-2019-14808]
143229
Sunny WebBox cross-site request forgery [CVE-2019-13529]
143228
Pi-Hole os command injection [CVE-2019-13051]
143227
Samsung Smart Phone Service Mode risky encryption [CVE-2019-11341]
143226
TIBCO MDM MDM Server cross site scripting [CVE-2019-11212]
143225
Juniper Junos Protocol Independent Multicast resource consumption
143224
Juniper Junos path traversal [CVE-2019-0074]
143223
Juniper Junos PKI Key permission assignment [CVE-2019-0073]
143222
Juniper SBR Carrier Access Management Credentials insufficiently protected credentials
143221
Juniper Junos Veriexec privileges management [CVE-2019-0071]
143220
Juniper Junos input validation [CVE-2019-0070]
143219
Juniper Junos Log Credentials cleartext transmission
143218
Juniper Junos flowd unusual condition [CVE-2019-0068]
143217
Juniper Junos vmcore input validation [CVE-2019-0067]
143216
Juniper Junos NG-mVPN input validation [CVE-2019-0066]
143215
Juniper Junos SIP ALG input validation [CVE-2019-0065]
143214
Juniper Junos flowd input validation [CVE-2019-0064]
143213
Juniper Junos BNG input validation [CVE-2019-0063]
143212
Juniper Junos J-Web session fixiation [CVE-2019-0062]
143211
Juniper Junos MGD privileges management [CVE-2019-0061]
143210
Juniper Junos flowd exceptional condition [CVE-2019-0060]
143209
Juniper Junos BGP release of resource [CVE-2019-0059]
143208
Juniper Junos Veriexec Subsystem privileges management [CVE-2019-0058]
143207
Juniper Junos JDM improper authentication [CVE-2019-0057]
143206
Juniper Junos OSPF input validation [CVE-2019-0056]
143205
Juniper Junos SIP ALG input validation [CVE-2019-0055]
143204
Juniper Junos Certificate Validation certificate validation [CVE-2019-0054]
143203
Juniper Junos flowd exceptional condition [CVE-2019-0051]
143202
Juniper Junos srxpfe input validation [CVE-2019-0050]
143201
Juniper Junos J-Web Persistent cross site scripting
143200
ISC BIND Managed Key risky encryption [CVE-2018-5745]
143199
ISC BIND EDNS Option release of resource [CVE-2018-5744]
143198
ISC BIND Connection allocation of resources [CVE-2018-5743]
143197
ISC DHCP Options memory corruption [CVE-2018-5732]
🔒
🔒
143192
SolarWinds Dameware Mini Remote Client Agent SmartCard Authentication DWRCS.exe input validation
143191
OTCMS Admin Panel member_deal.php cross-site request forgery
143190
S-Cms tpl.php cross site scripting
143189
Bouncy Castle Crypto ASN.1 Parser allocation of resources [CVE-2019-17359]
143188
Jfinal cos isSafeFile unrestricted upload
143187
vBulletin getHookList sql injection
143186
XnView Classic User Mode out-of-bounds write [CVE-2019-17262]
143185
XnView Classic User Mode out-of-bounds write [CVE-2019-17261]
143184
MPC-HC memory corruption [CVE-2019-17260]
143183
KMPlayer User Mode out-of-bounds write [CVE-2019-17259]
143182
IrfanView out-of-bounds write [CVE-2019-17258]
143181
IrfanView Exception unusual condition [CVE-2019-17257]
143180
IrfanView User Mode out-of-bounds write [CVE-2019-17256]
143179
IrfanView User Mode out-of-bounds write [CVE-2019-17255]
143178
IrfanView out-of-bounds write [CVE-2019-17254]
143177
IrfanView User Mode out-of-bounds write [CVE-2019-17253]
143176
IrfanView User Mode out-of-bounds write [CVE-2019-17252]
143175
IrfanView User Mode out-of-bounds write [CVE-2019-17251]
143174
IrfanView User Mode out-of-bounds write [CVE-2019-17250]
143173
IrfanView User Mode out-of-bounds write [CVE-2019-17249]
143172
IrfanView User Mode out-of-bounds write [CVE-2019-17248]
143171
IrfanView buffer overflow [CVE-2019-17247]
143170
IrfanView User Mode out-of-bounds write [CVE-2019-17246]
143169
IrfanView User Mode out-of-bounds write [CVE-2019-17245]
143168
IrfanView buffer overflow [CVE-2019-17244]
143167
IrfanView buffer overflow [CVE-2019-17243]
143166
IrfanView User Mode out-of-bounds write [CVE-2019-17242]
143165
IrfanView User Mode out-of-bounds write [CVE-2019-17241]
143164
FiberHome HG2201T downloadfile.cgi path traversal
143163
FiberHome HG2201T telnet.cgi input validation
143162
OpenStack Octavia Amphora Image improper authentication [CVE-2019-17134]
143161
Centreon Web brokerPerformance.php Stored cross site scripting
143160
Centreon Web minPlayCommand.php code injection
143159
Centreon Web cleartext storage [CVE-2019-17106]
143158
Centreon Web Token Generator index.php random values
143157
Centreon VM Apache HTTP Server httponly cookie validation
143156
Auth0 Access Control IdentityTokenValidator improper authentication
143155
Hrworks Flow Report cross site scripting [CVE-2019-16417]
143154
HRworks Report cross site scripting [CVE-2019-16416]
143153
Ansible Log Credentials log file
143152
openshift TLS Hostname Verification code download [CVE-2019-14845]
143151
Yealink Phone OpenVPN File Upload path traversal [CVE-2019-14657]
143150
Yealink Phone HTTP Service unrestricted upload [CVE-2019-14656]
143149
Dbell Wi-Fi Smart Video Doorbell DB01-S Gen 1 Service Port 81 openlock.cgi input validation
143148
Moxa EDR 810 Ping input validation [CVE-2019-10969]
143147
Moxa EDR 810 Log File log file [CVE-2019-10963]
143146
knex.js MSSQL sql injection [CVE-2019-10757]
143145
node-red-dashboard cross site scripting [CVE-2019-10756]
143144
Bootstrap-3-Typeahead highlighter cross site scripting
143143
SAP SQL Anywhere/IQ/Dynamic Tier file access [CVE-2019-0381]
143142
SAP Landscape Management Log log file [CVE-2019-0380]
143141
SAP NetWeaver Process Integration insufficient verification of data authenticity
143140
SAP Business Intelligence Platform Background Image Stored cross site scripting
143139
SAP Business Intelligence Platform Input Control Stored cross site scripting
143138
SAP Business Intelligence Platform Publication Name Stored cross site scripting
143137
SAP Business Intelligence Platform Export Dialog Box Reflected cross site scripting
143136
SAP Business Intelligence Platform Chart Title Reflected cross site scripting
143135
SAP Financial Consolidation Xpath xml injection [CVE-2019-0370]
143134
SAP Financial Consolidation Reflected cross site scripting [CVE-2019-0369]
143133
SAP Customer Relationship Management cross site scripting [CVE-2019-0368]
143132
SAP NetWeaver Process Integration Authorization authorization
143131
Centreon VM Configuration File centreon-backup.pl privileges management
143130
Centreon Web licenseUpload.php unrestricted upload
143129
Centreon Web getStats.php code injection
143128
Centreon Web makeXML_ListServices.php sql injection
143127
Centreon Web img_gantt.php sql injection
143126
Centreon Web input validation [CVE-2018-21020]
143125
Apple iPhone Siri Self privileges management [Disputed]
143124
Microsoft Windows Update Assistant privileges management [CVE-2019-1378]
143123
Microsoft SQL Server Management Studio Permission permission assignment
143122
Microsoft Dynamics 365 cross site scripting [CVE-2019-1375]
143121
Microsoft Internet Explorer memory corruption [CVE-2019-1371]
143120
Open Enclave SDK information disclosure [CVE-2019-1369]
143119
Microsoft Windows Secure Boot input validation [CVE-2019-1368]
143118
Microsoft Windows IIS memory corruption [CVE-2019-1365]
143117
Microsoft Windows Win32k memory corruption [CVE-2019-1364]
143116
Microsoft Windows GDI information disclosure [CVE-2019-1363]
143115
Microsoft Windows Win32k memory corruption [CVE-2019-1362]
143114
Microsoft Windows Graphics Component information disclosure [CVE-2019-1361]
143113
Microsoft Windows JET Database Engine memory corruption [CVE-2019-1359]
143112
Microsoft Windows JET Database Engine memory corruption [CVE-2019-1358]
143111
Microsoft Edge Cookie authentication spoofing [CVE-2019-1357]
143110
Microsoft Internet Explorer Cookie authentication spoofing [CVE-2019-1357]
143109
Microsoft Edge information disclosure [CVE-2019-1356]
143108
Microsoft Windows memory corruption [CVE-2019-1347]
143107
Microsoft Windows memory corruption [CVE-2019-1346]
143106
Microsoft Windows Kernel information disclosure [CVE-2019-1345]
143105
Microsoft Windows Code Integrity Module information disclosure
143104
Microsoft Windows memory corruption [CVE-2019-1343]
143103
Microsoft Windows Error Reporting Manager input validation [CVE-2019-1342]
143102
Microsoft Windows Power Service umpo.dll privileges management
143101
Microsoft Windows AppX Deployment Server privileges management
143100
Microsoft Windows Error Reporting privileges management [CVE-2019-1339]
143099
Microsoft Windows NTLMv2 inadequate encryption [CVE-2019-1338]
143098
Microsoft Windows Update Client information disclosure [CVE-2019-1337]
143097
Microsoft Windows Update Client privileges management [CVE-2019-1336]
143096
Microsoft Windows Kernel information disclosure [CVE-2019-1334]
143095
Microsoft Excel memory corruption [CVE-2019-1331]
143094
Microsoft SharePoint Foundation Impersonation privileges management
143093
Microsoft SharePoint Foundation/SharePoint Enterprise Server cross site scripting
143092
Microsoft SharePoint Foundation/SharePoint Enterprise Server cross site scripting
143091
Microsoft Excel memory corruption [CVE-2019-1327]
143090
Microsoft Windows Remote Desktop Protocol input validation [CVE-2019-1326]
143089
Microsoft Windows rdbss.sys memory corruption [CVE-2019-1325]
143088
Microsoft Windows Update Client privileges management [CVE-2019-1323]
143087
Microsoft Windows Authentication Request improper authentication
143086
Microsoft Windows CloudStore privileges management [CVE-2019-1321]
143085
Microsoft Windows Authentication Request improper authentication
143084
Microsoft Windows Error Reporting privileges management [CVE-2019-1319]
143083
Microsoft Windows TLS information disclosure [CVE-2019-1318]
143082
Microsoft Windows Hardlink link following [CVE-2019-1317]
143081
Microsoft Windows Setup privileges management [CVE-2019-1316]
143080
Microsoft Windows Error Reporting privileges management [CVE-2019-1315]
143079
Microsoft Windows Security Feature improper authentication [CVE-2019-1314]
143078
Microsoft SQL Server Management Studio Permission permission assignment
143077
Microsoft Windows Imaging API memory corruption [CVE-2019-1311]
143076
Microsoft Windows Hyper-V input validation [CVE-2019-1230]
143075
Microsoft Windows NTLM MIC improper authentication [CVE-2019-1166]
143074
Microsoft SharePoint Foundation/SharePoint Enterprise Server cross site scripting
143073
Microsoft Edge HTTP Content authentication spoofing [CVE-2019-0608]
143072
Microsoft Internet Explorer HTTP Content authentication spoofing
143071
Microsoft Windows MS XML xml external entity reference [CVE-2019-1060]
143070
Microsoft Azure App Service Sandbox memory corruption [CVE-2019-1372]
143069
Microsoft Edge/ChakraCore Chakra Scripting Engine memory corruption
143068
Microsoft Edge/ChakraCore Chakra Scripting Engine memory corruption
143067
Microsoft Edge/ChakraCore Chakra Scripting Engine memory corruption
143066
Microsoft Edge/ChakraCore Chakra Scripting Engine memory corruption
143065
Microsoft Internet Explorer VBScript memory corruption [CVE-2019-1239]
143064
Microsoft Internet Explorer VBScript memory corruption [CVE-2019-1238]
143063
Microsoft Windows Remote Desktop input validation [CVE-2019-1333]
143062
Dell Encryption Enterprise Installer untrusted search path [CVE-2019-3745]
143061
SuSE Linux Enterprise Server 15 Squid Binary pinger default permission
143060
Xen Linux Kernel balloon.c resource consumption
143059
Xen infinite loop [CVE-2019-17350]
143058
Xen infinite loop [CVE-2019-17349]
143057
Xen PCID input validation [CVE-2019-17348]
143056
Xen input validation [CVE-2019-17347]
143055
Xen PCID input validation [CVE-2019-17346]
143054
Xen IOMMU Operation input validation [CVE-2019-17345]
143053
Xen PTE Update input validation [CVE-2019-17344]
143052
Xen HVM input validation [CVE-2019-17343]
143051
Xen race condition [CVE-2019-17342]
143050
Xen PCI race condition [CVE-2019-17341]
143049
Xen grant-table Transfer input validation [CVE-2019-17340]
143048
SugarCRM Emails sql injection [CVE-2019-17319]
143047
SugarCRM pmse_Inbox sql injection [CVE-2019-17318]
143046
SugarCRM UpgradeWizard input validation [CVE-2019-17317]
143045
SugarCRM Import input validation [CVE-2019-17316]
143044
SugarCRM Administration input validation [CVE-2019-17315]
143043
SugarCRM Configurator path traversal [CVE-2019-17314]
143042
SugarCRM Studio path traversal [CVE-2019-17313]
143041
SugarCRM File path traversal [CVE-2019-17312]
143040
SugarCRM Attachment path traversal [CVE-2019-17311]
143039
SugarCRM Campaigns input validation [CVE-2019-17310]
143038
SugarCRM EmailMan input validation [CVE-2019-17309]
143037
SugarCRM Emails input validation [CVE-2019-17308]
143036
SugarCRM Tracker input validation [CVE-2019-17307]
143035
SugarCRM Configurator input validation [CVE-2019-17306]
143034
SugarCRM MergeRecords input validation [CVE-2019-17305]
143033
SugarCRM MergeRecords input validation [CVE-2019-17304]
143032
SugarCRM MergeRecords input validation [CVE-2019-17303]
143031
SugarCRM ModuleBuilder input validation [CVE-2019-17302]
143030
SugarCRM ModuleBuilder input validation [CVE-2019-17301]
143029
SugarCRM Administration input validation [CVE-2019-17300]
143028
SugarCRM Administration input validation [CVE-2019-17299]
143027
SugarCRM Administration sql injection [CVE-2019-17298]
143026
SugarCRM Quotes sql injection [CVE-2019-17297]
143025
SugarCRM Contacts sql injection [CVE-2019-17296]
143024
SugarCRM History sql injection [CVE-2019-17295]
143023
SugarCRM Export sql injection [CVE-2019-17294]
143022
SugarCRM pmse_Project sql injection [CVE-2019-17293]
143021
SugarCRM pmse_Inbox sql injection [CVE-2019-17292]
143020
download-plugins-dashboard plugin class-alg-download-plugins-settings.php Stored cross site scripting
143019
ultimate-faqs Plugin EWD_UFAQ_Import.php injection
143018
ultimate-faqs Plugin Option Import EWD_UFAQ_Import.php input validation
143017
rsyslog Cisco Log Message pmcisconames.c buffer overflow
143016
rsyslog AIX Log Message pmaixforwardedfrom.c buffer overflow
143015
PCProtect Antivirus Folder Permission privileges management
143014
Twitter Kit Framework Hostname Verification certificate validation
143013
Espressif ESP-IDF Secure Boot injection [CVE-2019-15894]
143012
Sitos Six SCORM File unrestricted upload [CVE-2019-15751]
143011
Sitos Six Blog cross site scripting [CVE-2019-15750]
143010
Sitos Six Password Reset password recovery [CVE-2019-15749]
143009
Sitos Six Import unrestricted upload [CVE-2019-15748]
143008
Sitos Six privileges management [CVE-2019-15747]
143007
Sitos Six injection [CVE-2019-15746]
143006
Amazon FreeRTOS MQTT Packet prvProcessReceivedPublish input validation
143005
MyBuilder Viewer Configuration File input validation [CVE-2019-12812]
143004
MyBuilder ActiveX Control ShellOpen os command injection
143003
Elementor Pro Plugin customize.php elementor-edit-template cross site scripting
143002
orbisius-child-theme-creator Plugin Access Control permission assignment
143001
buddypress-activity-plus Plugin admin-ajax.php cross-site request forgery
143000
smooth-slider Plugin sql injection [CVE-2015-9454]
142999
broken-link-manager Plugin HTTP Header cross site scripting [CVE-2015-9453]
142998
nex-forms-express-wp-form-builder Plugin sql injection [CVE-2015-9452]
142997
plugmatter-optin-feature-box-lite Plugin sql injection [CVE-2015-9451]
142996
plugmatter-optin-feature-box-lite Plugin sql injection [CVE-2015-9450]
142995
LibTomCrypt UTF-8 der_decode_utf8_string.c der_decode_utf8_string out-of-bounds read
142992
DameWare Remote Support memory corruption
142991
Google Android Binder Driver binder_poll use after free
142990
Intellian Remote Access Ping Test os command injection [CVE-2019-17269]
142989
FasterXML jackson-databind input validation [CVE-2019-17267]
142988
libsoup NTLM Message soup-auth-ntlm.c soup_ntlm_parse_challenge out-of-bounds read
142987
libyal liblnk liblnk_location_information.c liblnk_location_information_read_data out-of-bounds read
142986
libyal libfwsi libfwsi_extension_block.c libfwsi_extension_block_copy_from_byte_stream out-of-bounds read
142985
Bludit Brute-Force Protection security.class.php excessive authentication
142984
CMS Made Simple Module Manager cross site scripting [CVE-2019-17226]
142983
Subrion CMS cross site scripting [CVE-2019-17225]
142982
WebARX Plugin URI authorization [CVE-2019-17214]
142981
WebARX Plugin Stored cross site scripting [CVE-2019-17213]
142980
Frost Ming rediswrapper Pickled Object models.py deserialization
142979
TeamPass Login Stored cross site scripting
142978
TeamPass Knowledge Base Label Stored cross site scripting
142977
TeamPass Search Page Stored cross site scripting
142976
WPO webpagetest getfile.php path traversal
142975
OpenEMR Lifestyle Demographic Filter clinical_rules.php sql injection
142973
Foxit PhantomPDF AcroForm removeField use after free
142972
Foxit Reader AcroForm exportValues use after free
142971
Foxit Reader AcroForm deleteItemAt use after free
142970
Zendesk FON2601E-SE DNS Amplification input validation
142969
IBM Security Key Lifecycle Manager Web UI cross site scripting
142968
IBM Security Key Lifecycle Manager authorization [CVE-2019-4514]
142967
IBM MQ AMQP Listener session fixiation [CVE-2019-4227]
142966
Signal Messenger WebRTC input validation [CVE-2019-17192] [Disputed]
142965
Signal Messenger Call input validation [CVE-2019-17191]
142964
Fecshop FecMall File Upload imageupload getimagesize unrestricted upload
142963
Xerox AtlaLink C8070 privileges management [CVE-2019-17184]
142962
Foxit Reader release of resource [CVE-2019-17183]
142961
Valve Steam Client Filesystem path traversal [CVE-2019-17180]
142960
OpenEMR add_template.php cross site scripting
142959
LodePNG WinPR lodepng.c HuffmanTree_makeFromFrequencies release of resource
142958
FreeRDP region.c release of resource
142957
joyplus-cms admin_pic.php path traversal
142956
Linux Kernel SSID wext-sme.c cfg80211_mgd_wext_giwessid buffer overflow
142955
vBulletin Avatar input validation [CVE-2019-17132]
142954
vBulletin improper restriction of rendered ui layers [CVE-2019-17131]
142953
vBulletin URL vurl.php file access
142952
Liferay Portal CE JSON Payload deserialization [CVE-2019-16891]
142951
Pillow Image File allocation of resources [CVE-2019-16865]
142950
Foxit Reader AcroForm use after free [CVE-2019-13320]
142949
Foxit Reader XFA Form use after free [CVE-2019-13319]
142948
Foxit Reader format string [CVE-2019-13318]
142947
Foxit PhantomPDF Calculate Action use after free [CVE-2019-13317]
142946
Foxit PhantomPDF Calculate Action use after free [CVE-2019-13316]
142945
Foxit Reader removeField use after free
142944
Micro Focus Arcsight Logger Stored cross site scripting [CVE-2019-11656]
142943
Micro Focus Arcsight Logger File Upload unrestricted upload [CVE-2019-11655]
142942
Apache Hadoop fsimage memory corruption [CVE-2018-11768]
142941
REDCap cross site scripting [CVE-2019-17121]
142940
libopenmpt libopenmpt_modplug.c ModPlug_SampleName buffer overflow
142939
kube-state-metrics Metric information disclosure [CVE-2019-17110]
142938
Visualizer Plugin Admin Dashboard Block.php Stored cross site scripting
142937
Unbound NOTIFY Query memory corruption [CVE-2019-16866]
142936
RPyC Remote Procedure Call authorization [CVE-2019-16328]
142935
KSLabs KSWEB path traversal [CVE-2019-16198]
142934
KSLabs KSWEB Ajax code injection [CVE-2019-15766]
142933
tcpdump print-lmp.c lmp_print_data_link_subobjs input validation
142932
libpcap PHB Header sf-pcapng.c input validation
142931
libpcap URL daemon.c server-side request forgery
142930
libpcap daemon.c crypt null pointer dereference
142929
libpcap daemon.c Username insufficient verification of data authenticity
142928
libpcap daemon.c input validation
142927
Foxit Reader XFA Form use after free [CVE-2019-13332]
142926
Foxit Reader JPG File out-of-bounds read [CVE-2019-13331]
142925
Foxit Reader JPG File type confusion [CVE-2019-13330]
142924
Foxit Reader tif File type confusion [CVE-2019-13329]
142923
Foxit Reader Acroform Object use after free [CVE-2019-13328]
142922
Foxit Reader Acroform Object use after free [CVE-2019-13327]
142921
Foxit Reader Acroform Object out-of-bounds read [CVE-2019-13326]
142920
Foxit Studio Photo EPS File out-of-bounds read [CVE-2019-13325]
142919
Foxit Studio Photo TIFF File out-of-bounds read [CVE-2019-13324]
142918
Foxit Studio Photo tif File out-of-bounds write [CVE-2019-13323]
142917
libpl_droidsonroids_gif decoding.c DDGifSlurp double free
142916
tcpdump SMB Parser smbutil.c smb_fdata recursion
142915
tcpdump SMB Parser print-smb.c print_trans out-of-bounds read
142914
libpcap pcapng buffer overflow [CVE-2018-16301]
142913
tcpdump BGP Parser print-bgp.c bgp_attr_print recursion
142912
tcpdump BGP Parser print-bgp.c bgp_attr_print out-of-bounds read
142911
tcpdump DCCP Parser print-dccp.c dccp_print_option out-of-bounds read
142910
tcpdump HNCP Parser print-hncp.c print_prefix out-of-bounds read
142909
tcpdump IEEE 802.11 Parser print-802_11.c out-of-bounds read
142908
tcpdump ICMPv6 Parser print-icmp6.c out-of-bounds read
142907
tcpdump BGP Parser print-bgp.c bgp_capabilities_print out-of-bounds read
142906
tcpdump OSPFv3 Parser print-ospf6.c ospf6_print_lshdr out-of-bounds read
142905
LINE tcpdump CLI Parser tcpdump.c get_next_file buffer overflow
142904
tcpdump print-babel.c babel_print_v2 out-of-bounds read
142903
tcpdump IKEv1 Parser print-isakmp.c ikev1_n_print out-of-bounds read
142902
tcpdump FRF.16 Parser print-fr.c mfr_print out-of-bounds read
142901
tcpdump BGP Parser print-bgp.c bgp_capabilities_print out-of-bounds read
142900
tcpdump Rx Parser print-rx.c rx_cache_find out-of-bounds read
142899
tcpdump RSVP Parser print-rsvp.c rsvp_obj_print out-of-bounds read
142898
tcpdump LMP Parser print-lmp.c lmp_print_data_link_subobjs out-of-bounds read
142897
tcpdump print-vrrp.c vrrp_print out-of-bounds read
142896
tcpdump ICMP Parser print-icmp.c icmp_print out-of-bounds read
142895
tcpdump LDP Parser print-ldp.c ldp_tlv_print out-of-bounds read
142894
tcpdump SMB Data input validation [CVE-2018-10105]
142893
tcpdump SMB Data input validation [CVE-2018-10103]
142892
IBM WebSphere Application Server Stack Trace information exposure
142891
IBM Security Guardium improper authentication [CVE-2019-4422]
142890
Red Hat JBoss Operations Network Remote Code Execution [CVE-2019-3834]
142889
Athena SCS Smartcard ECDSA Key Generation race condition [CVE-2019-15809]
142888
MatrixSSL ECDSA Signature ecc_math.c risky encryption
142887
wolfSSL/wolfCrypt ECDSA Signature ecc.c information exposure
142886
Cisco Unified Communications Manager Web-based Interface cross-site request forgery
142885
JetBrains ReSharper Installer DLL untrusted search path [CVE-2019-16407]
142884
JetBrains YouTrack Issue Page Stored cross site scripting
142883
Cisco Unified Communications Manager Web-based Interface request smuggling
142882
Cisco Unified Contact Center Express Web Server input validation
142881
Cisco ASA/Firepower Threat Defense IKEv1 resource consumption
142880
JetBrains YouTrack Settings Page cross-site request forgery [CVE-2019-15040]
142879
JetBrains TeamCity Settings Page cross site scripting [CVE-2019-15037]
142878
JetBrains TeamCity os command injection [CVE-2019-15036]
142877
JetBrains ToolBox URL missing encryption [CVE-2019-14959]
142876
JetBrains PyCharm Connection resource consumption [CVE-2019-14958]
142875
JetBrains YouTrack Permission permissions [CVE-2019-14956]
142874
Umbraco GetInpectSearch sql injection
142873
JetBrains Ktor Framework UserHashedTableAuth unknown vulnerability
142872
JetBrains Ktor Framework LDAP input validation [CVE-2019-12736]
142871
Cisco Unified Communications Manager Web-based Interface cross site scripting
142870
Cisco Unified Communications Manager Web-based Interface cross site scripting
142869
Cisco IC3000 Industrial Compute Gateway Web-based Management Interface resource consumption
142868
Cisco Prime Infrastructure Web-based Management Interface cross site scripting
142867
Cisco Prime Infrastructure Web-based Management Interface cross site scripting
142866
Cisco Unified Communications Manager Web-based Interface xml external entity reference
142865
Cisco Unified Communications Manager Web-based Interface sql injection
142864
Cisco Unified Communications Web-based Interface cross site scripting
142863
Cisco Email Security Appliance Sender Policy Framework input validation
142862
Cisco FirePOWER Management Center Malware Inspection input validation
142861
Cisco Firepower Threat Defense Pluggable Authentication resource consumption
142860
Cisco FXOS/Firepower Threat Defense input validation [CVE-2019-12699]
142859
Cisco ASA/Firepower Threat Defense WebVPN resource consumption
142858
Cisco Firepower System Software Detection Engine input validation
142857
Cisco Firepower System Software Detection Engine input validation
142856
Cisco ASA/Firepower Threat Defense WebVPN Portal cross site scripting
142855
Cisco Firepower Threat Defense Command Line Interface input validation
142854
Cisco ASA scp type conversion [CVE-2019-12693]
142853
Cisco FirePOWER Management Center Web-based Management Interface path traversal
142852
Cisco FirePOWER Management Center Web UI os command injection
142851
Cisco FirePOWER Management Center Web-based Management Interface input validation
142850
Cisco FirePOWER Management Center Web UI memory corruption [CVE-2019-12688]
142849
Cisco FirePOWER Management Center Web UI memory corruption [CVE-2019-12687]
142848
Cisco FirePOWER Management Center Web-based Management Interface sql injection
142847
Cisco FirePOWER Management Center Web-based Management Interface sql injection
142846
Cisco FirePOWER Management Center Web-based Management Interface sql injection
142845
Cisco FirePOWER Management Center Web-based Management Interface sql injection
142844
Cisco FirePOWER Management Center Web-based Management Interface sql injection
142843
Cisco FirePOWER Management Center Web-based Management Interface sql injection
142842
Cisco FirePOWER Management Center Web-based Management Interface sql injection
142841
Cisco FirePOWER Management Center Web-based Management Interface sql injection
142840
Cisco ASA/Firepower Threat Defense Session Initiation Protocol integer underflow
142839
Cisco ASA SSL VPN exceptional condition [CVE-2019-12677]
142838
Cisco ASA/Firepower Threat Defense OSPF input validation [CVE-2019-12676]
142837
Cisco Firepower Threat Defense Container escape output [CVE-2019-12675]
142836
Cisco Firepower Threat Defense Container escape output [CVE-2019-12674]
142835
Cisco ASA/Firepower Threat Defense FTP Inspection Engine input validation
142834
Cisco Identity Services Engine Web-based Management Interface cross site scripting
142833
Cisco Security Manager Java Deserialization deserialization [CVE-2019-12630]
142832
JetBrains TeamCity injection [CVE-2019-12157]
142831
JetBrains TeamCity Error Message information exposure [CVE-2019-12156]
142830
HHVM Number memory corruption [CVE-2019-11929]
142829
Micro Focus Enterprise Developer/Enterprise Server Reflected cross site scripting
142828
Undertow Debug Log Credentials log file
142827
Check Point R80.30 Security Gateway Configuration exceptional condition
142826
Foxit PDF Reader Javascript Engine exceptional condition [CVE-2019-5031]
142825
IBM Security Directory Server insecure storage of sensitive information
142824
IBM Security Directory Server Web UI cross site scripting [CVE-2019-4542]
142823
IBM Security Directory Server XML Data xml injection [CVE-2019-4539]
142822
IBM Security Directory Server redirect [CVE-2019-4538]
142821
IBM Security Directory Server Lockout excessive authentication
142820
Eclipse Mojarra Client Window Field PartialViewContextImpl.java Reflected cross site scripting
142819
mintinstall deserialization [CVE-2019-17080]
142818
EnterpriseDT CompleteFTP Server Bootstrap.log Credentials log file
142817
SalesAgility SuiteCRM privileges management [CVE-2019-14454]
142816
CA Network Flow Analysis hard-coded credentials [CVE-2019-13658]
142815
Butor Portal wl path traversal
142814
SalesAgility SuiteCRM server-side request forgery [CVE-2019-13335]
142813
Compal CH7465LG Access Control input validation [CVE-2019-13025]
142812
Online Store delete_product.php missing authentication
142811
Online Store delete_file.php path traversal
142810
Online Store Registration Form sent_register.php cross site scripting
142809
Online Store user_view.php Stored cross site scripting
142808
Online Store user_view.php Stored cross site scripting
142807
Elastic Code Repository Import permission assignment [CVE-2019-7618]
142806
Linux Kernel cxgb4 Driver mem.c write_tpt_entry memory corruption
142805
XunRuiCMS Stored cross site scripting [CVE-2019-17074]
142804
emlog path traversal [CVE-2019-17073]
142803
JetBrains YouTrack Whitelist redirect [CVE-2019-15041]
142802
JetBrains TeamCity information disclosure [CVE-2019-15035]
142801
Apache MINA TLS Message cleartext transmission [CVE-2019-0231]
142800
IBM Jazz Reporting Service Web UI cross site scripting [CVE-2019-4497]
142799
IBM Jazz Reporting Service Web UI cross site scripting [CVE-2019-4495]
142798
IBM Jazz Reporting Service Web UI cross site scripting [CVE-2019-4494]
142797
IBM Daeja ViewONE Virtual information disclosure [CVE-2019-4246]
142796
PuTTY SSH-1 input validation [CVE-2019-17069]
142795
PuTTY Protection Mechanism Clipboard injection
142794
PuTTY Port-Forwarding allocation of resources [CVE-2019-17067]
142793
Xpdf Catalog.cc Catalog.pageLabels null pointer dereference
142792
Snowtide PDFxStream Page-Tree input validation [CVE-2019-17063]
142791
Linux Kernel AF_NFC Network Module llcp_sock.c llcp_sock_create default permission
142790
Linux Kernel AF_ISDN Network Module socket.c base_sock_create input validation
142789
Linux Kernel AF_APPLETALK Network Module ddp.c atalk_create default permission
142788
Linux Kernel AF_IEEE802154 Network Module socket.c ieee802154_create default permission
142787
Linux Kernel AF_AX25 Network Module af_ax25.c ax25_create default permission
142786
FasterXML jackson-databind JSON Endpoint input validation [CVE-2019-16943]
142785
FasterXML jackson-databind RMI Endpoint input validation [CVE-2019-16942]
142784
Google Chrome OS Imagination Technologies Driver card1 PVRSRVBridgeSyncPrimOpCreate integer overflow
142783
Victure PC530 Telnet Service missing authentication [CVE-2019-15940]
142782
JetBrains TeamCity SSL Certificate certificate validation [CVE-2019-15042]
142781
JetBrains TeamCity input validation [CVE-2019-15039]
142780
JetBrains TeamCity HTTP Header input validation [CVE-2019-15038]
142779
JetBrains Upsource Code Block Comment cross site scripting [CVE-2019-14961]
142778
JetBrains Rider JetBrains.Rider.Unity.Editor.Plugin.Repacked.dll untrusted search path
142777
JetBrains VIM Plugin Project File vim_settings.xml insecure storage of sensitive information
142776
JetBrains Hub Password Expiration Policy password recovery [CVE-2019-14955]
142775
JetBrains IntelliJ IDEA Markdown missing encryption [CVE-2019-14954]
142774
JetBrains YouTrack Attachment cross site scripting [CVE-2019-14953]
142773
JetBrains YouTrack Issue Title cross site scripting [CVE-2019-14952]
142772
Pivotal Application Manager CSV permission assignment [CVE-2019-11275]
142771
SourceGear Vault Plugin Configuration Form Credentials cleartext transmission
142770
LDAP Email Plugin Configuration Form Credentials cleartext transmission
142769
Dingding Plugin Job Configuration config.xml cleartext storage
142768
HTML Publisher Plugin Project Name cross site scripting [CVE-2019-10432]
142767
Script Security Plugin Sandbox code injection [CVE-2019-10431]
142766
Codehaus deserialization [CVE-2019-10202]
142765
IBM Sterling File Gateway URL path traversal [CVE-2019-4423]
142764
IBM WebSphere Application Server Liberty Cookie cookie validation
142763
IBM WebSphere Application Server Liberty Session session fixiation
142762
IBM Sterling File Gateway information disclosure [CVE-2019-4280]
142761
IBM WebSphere eXtreme Scale Admin API cross site scripting [CVE-2019-4115]
142760
IBM WebSphere eXtreme Scale Admin Console Stored information disclosure
142759
IBM WebSphere eXtreme Scale Admin Console improper restriction of rendered ui layers
142758
IBM WebSphere eXtreme Scale Admin Console cross site scripting
142757
RSA BSAFE Crypto-C Micro Edition information disclosure [CVE-2019-3733]
142756
RSA BSAFE Crypto-C Micro Edition information exposure [CVE-2019-3732]
142755
RSA BSAFE Crypto-C Micro Edition information exposure [CVE-2019-3731]
142754
RSA BSAFE Micro Edition Suite Error Message information exposure
142753
RSA BSAFE Micro Edition Suite ECDSA Signature buffer overflow
142752
RSA BSAFE Micro Edition Suite DSA Signature out-of-bounds read
142751
Qualcomm Snapdragon Auto Audio Buffer buffer overflow [CVE-2019-2341]
142750
Qualcomm Snapdragon Auto IPA Driver buffer overflow [CVE-2019-2333]
142749
Qualcomm Snapdragon Auto Heap Guard random values [CVE-2019-2294]
142748
Qualcomm Snapdragon Compute Camera use after free [CVE-2019-2284]
142747
Qualcomm Snapdragon Auto Video buffer overflow [CVE-2019-2252]
142746
Evernote Attachment File input validation [CVE-2019-17051]
142745
Voyager Package authorization [CVE-2019-17050]
142744
Netgear SRX5308 sql injection [CVE-2019-17049]
142743
Visualizer Plugin upload-data server-side request forgery
142742
Rust Cargo code download [CVE-2019-16760]
142741
Xoops image-manager cross site scripting [CVE-2019-16684]
142740
Xoops image-manager cross site scripting [CVE-2019-16683]
142739
Google Go request smuggling [CVE-2019-16276]
142738
Netdisco Search Reflected cross site scripting
142737
Western Digital SSD Dashboard/SanDisk SSD Dashboard Web Service input validation
142736
Western Digital SSD Dashboard/SanDisk SSD Dashboard Access Control information disclosure
142735
Foxit Reader Javascript Engine recursion [CVE-2019-13124]
142734
Foxit Reader Javascript Engine recursion [CVE-2019-13123]
142733
Qualcomm Snapdragon Auto WLAN NAN buffer overflow [CVE-2019-10540]
142732
Qualcomm Snapdragon Auto IE Header buffer overflow [CVE-2019-10539]
142731
Qualcomm Snapdragon Auto HLOS input validation [CVE-2019-10538]
142730
Qualcomm Snapdragon Auto BT null pointer dereference [CVE-2019-10510]
142729
Qualcomm Snapdragon Auto ACL Disconnect use after free [CVE-2019-10509]
142728
Qualcomm Snapdragon Auto WLAN buffer overflow [CVE-2019-10508]
142727
Qualcomm Snapdragon Auto Extscan Scan Result out-of-bounds read
142726
Qualcomm Snapdragon Auto Vendor Command input validation [CVE-2019-10506]
142725
Qualcomm Snapdragon Auto Volume Listener Library use after free
142724
Qualcomm Snapdragon Mobile FIFO array index [CVE-2019-10499]
142723
Qualcomm Snapdragon Auto buffer overflow [CVE-2019-10498]
142722
Qualcomm Snapdragon Auto use after free [CVE-2019-10497]
142721
Qualcomm Snapdragon Auto Boot Image risky encryption [CVE-2019-10492]
142720
Qualcomm Snapdragon Auto AVI Clip null pointer dereference [CVE-2019-10489]
142719
Ilch index unrestricted upload
142718
Ilch Jobs Tab Stored cross site scripting
142717
rsyslog pmdb2diag.c out-of-bounds read
142716
CloudBoot getNumByStatus sql injection
142715
MetInfo language_general.class.php sql injection
142714
MetInfo product_admin.class.php sql injection
142713
Linux Kernel hsr_device.c hsr_dev_finalize release of resource
142712
Linux Kernel sit.c sit_init_net release of resource
142711
phpBB BBcode Page acp_bbcodes.php cross-site request forgery
142709
eBrigade evenement_choice.php sql injection
142708
eBrigade evenements.php sql injection
142707
eBrigade evenement_ical.php sql injection
142706
Plataformatec Simple Form Access Control form_builder.rb file_method input validation
142705
GFI Kerio Control Login Page DOM-Based cross site scripting
142704
SalesAgility SuiteCRM cross site scripting [CVE-2019-14752]
142703
CDG path traversal [CVE-2017-18636]
142702
Apple iPhone UBS checkm8 privileges management
142701
Keybase App Private Key signature verification [CVE-2019-16992]
142700
Apple iOS/iPadOS Sandbox exposure of resource [CVE-2019-8779]
142699
NSA Ghidra Experimental Mode FileBitPatternInfoReader.java xml injection
142698
Zcash Zcashd IP Address exceptional condition
142697
Dell EMC ECS Authentication Brute Force excessive authentication
142696
Dell EMC Integrated Data Protection Appliance ACM Stored cross site scripting
142695
Dell EMC Integrated Data Protection Appliance ACM API excessive authentication
142694
Dell EMC Integrated Data Protection Appliance ACM Credentials insufficiently protected credentials
142693
Python XML-RPC Server DocXMLRPCServer.py server_title cross site scripting
142692
Exim EHLO Command string.c string_vformat buffer overflow
142691
Xpdf TextOutputDev.cc findGaps out-of-bounds write
142690
Flower Worker Name cross site scripting [CVE-2019-16926]
142689
Flower cross site scripting [CVE-2019-16925]
142688
Dolibarr Email Template mails_templates.php Stored cross site scripting
142687
Dolibarr User Profile card.php Stored cross site scripting
ID
Title
Nessus
OpenVAS
Snort
Suricata
TippingPoint
142686
Dolibarr User Note note.php Stored cross site scripting
142685
Dolibarr User Group Description card.php Stored cross site scripting
142684
Facebook WhatsApp Media Parsing Library out-of-bounds write [CVE-2019-11927]
142683
LibreOffice Macro escape output [CVE-2019-9853]
142682
Google Android Platform privileges management [CVE-2019-9463]
142681
Google Android Bluetooth out-of-bounds read [CVE-2019-9462]
142680
Google Android Mediaserver out-of-bounds write [CVE-2019-9460]
142679
Google Android libttspico buffer overflow [CVE-2019-9459]
142678
Google Android AOSP Email external reference [CVE-2019-9440]
142677
Google Android Package Manager Service external reference [CVE-2019-9438]
142676
Google Android Bluetooth out-of-bounds read [CVE-2019-9435]
142675
Google Android Bluetooth out-of-bounds read [CVE-2019-9434]
142674
Google Android libvpx input validation [CVE-2019-9433]
142673
Google Android Bluetooth out-of-bounds read [CVE-2019-9432]
142672
Google Android Bluetooth use after free [CVE-2019-9431]
142671
Google Android Bluetooth null pointer dereference [CVE-2019-9430]
142670
Google Android profman out-of-bounds write [CVE-2019-9429]
142669
Google Android Framework information disclosure [CVE-2019-9428]
142668
Google Android Bluetooth use after free [CVE-2019-9427]
142667
Google Android Bluetooth out-of-bounds read [CVE-2019-9425]
142666
Google Android Screen Lock information disclosure [CVE-2019-9424]
142665
Google Android opencv out-of-bounds write [CVE-2019-9423]
142664
Google Android Bluetooth out-of-bounds read [CVE-2019-9422]
142663
Google Android libandroidfw out-of-bounds read [CVE-2019-9421]
142662
Google Android libhevc integer overflow [CVE-2019-9420]
142661
Google Android Bluetooth out-of-bounds read [CVE-2019-9419]
142660
Google Android libstagefright resource consumption [CVE-2019-9418]
142659
Google Android Bluetooth out-of-bounds read [CVE-2019-9417]
142658
Google Android libstagefright use of uninitialized resource [CVE-2019-9416]
142657
Google Android libstagefright use of uninitialized resource [CVE-2019-9415]
142656
Google Android wpa_supplicant input validation [CVE-2019-9414]
142655
Google Android Bluetooth out-of-bounds read [CVE-2019-9413]
142654
Google Android libSBRdec out-of-bounds read [CVE-2019-9412]
142653
Google Android libavc use of uninitialized resource [CVE-2019-9411]
142652
Google Android libavc use of uninitialized resource [CVE-2019-9410]
142651
Google Android libhevc use of uninitialized resource [CVE-2019-9409]
142650
Google Android libavc use of uninitialized resource [CVE-2019-9408]
142649
Google Android Service Manager permission assignment [CVE-2019-9407]
142648
Google Android libhevc use of uninitialized resource [CVE-2019-9406]
142647
Google Android libAACdec integer overflow [CVE-2019-9405]
142646
Google Android Bluetooth input validation [CVE-2019-9404]
142645
Google Android cn-cbor out-of-bounds read [CVE-2019-9403]
142644
Google Android Bluetooth memory corruption [CVE-2019-9402]
142643
Google Android Bluetooth input validation [CVE-2019-9401]
142642
Google Android Bluetooth null pointer dereference [CVE-2019-9400]
142641
Google Android Print Service inadequate encryption [CVE-2019-9399]
142640
Google Android Bluetooth input validation [CVE-2019-9398]
142639
Google Android Bluetooth input validation [CVE-2019-9397]
142638
Google Android Bluetooth input validation [CVE-2019-9396]
142637
Google Android Bluetooth input validation [CVE-2019-9395]
142636
Google Android Bluetooth input validation [CVE-2019-9394]
142635
Google Android Bluetooth input validation [CVE-2019-9393]
142634
Google Android libxaac use of uninitialized resource [CVE-2019-9391]
142633
Google Android Bluetooth out-of-bounds read [CVE-2019-9390]
142632
Google Android Bluetooth out-of-bounds read [CVE-2019-9389]
142631
Google Android Bluetooth Service out-of-bounds read [CVE-2019-9388]
142630
Google Android Bluetooth out-of-bounds read [CVE-2019-9387]
142629
Google Android NFC Server out-of-bounds write [CVE-2019-9386]
142628
Google Android libxaac out-of-bounds read [CVE-2019-9385]
142627
Google Android LockPatternUtils permission assignment [CVE-2019-9384]
142626
Google Android NFC Server out-of-bounds read [CVE-2019-9383]
142625
Google Android libeffects out-of-bounds write [CVE-2019-9382]
142624
Google Android netd use after free [CVE-2019-9381]
142623
Google Android Settings UI authorization [CVE-2019-9380]
142622
Google Android libstagefright resource consumption [CVE-2019-9379]
142621
Google Android Activity Manager Service permission assignment
142620
Google Android FingerprintService authorization [CVE-2019-9377]
142619
Google Android Accounts Package input validation [CVE-2019-9376]
142618
Google Android hostapd out-of-bounds read [CVE-2019-9375]
142617
Google Android CompanionDeviceManager permission assignment [CVE-2019-9374]
142616
Google Android JobStore deserialization [CVE-2019-9373]
142615
Google Android libskia input validation [CVE-2019-9372]
142614
Google Android libvpx input validation [CVE-2019-9371]
142613
Google Android sonivox out-of-bounds read [CVE-2019-9370]
142612
Google Android Bluetooth use of uninitialized resource [CVE-2019-9369]
142611
Google Android Bluetooth out-of-bounds read [CVE-2019-9368]
142610
Google Android Bluetooth out-of-bounds read [CVE-2019-9367]
142609
Google Android libSBRdec out-of-bounds read [CVE-2019-9366]
142608
Google Android Bluetooth input validation [CVE-2019-9365]
142607
Google Android AudioService permission assignment [CVE-2019-9364]
142606
Google Android Bluetooth out-of-bounds write [CVE-2019-9363]
142605
Google Android libSACdec out-of-bounds read [CVE-2019-9362]
142604
Google Android libavc use of uninitialized resource [CVE-2019-9361]
142603
Google Android TEE out-of-bounds read [CVE-2019-9360]
142602
Google Android libavc use of uninitialized resource [CVE-2019-9359]
142601
Google Android NFC out-of-bounds write [CVE-2019-9358]
142600
Google Android libAACdec integer overflow [CVE-2019-9357]
142599
Google Android NFC Server out-of-bounds read [CVE-2019-9356]
142598
Google Android Bluetooth out-of-bounds read [CVE-2019-9355]
142597
Google Android NFC Server out-of-bounds read [CVE-2019-9354]
142596
Google Android Bluetooth out-of-bounds read [CVE-2019-9353]
142595
Google Android libstagefright resource consumption [CVE-2019-9352]
142594
Google Android SyncStatusObserver authorization [CVE-2019-9351]
142593
Google Android Keymaster use after free [CVE-2019-9350]
142592
Google Android libstagefright resource consumption [CVE-2019-9349]
142591
Google Android libstagefright input validation [CVE-2019-9348]
142590
Google Android m4v_h263 Codec use after free [CVE-2019-9347]
142589
Google Android libstagefright out-of-bounds write [CVE-2019-9346]
142588
Google Android NFC Server out-of-bounds read [CVE-2019-9344]
142587
Google Android Bluetooth out-of-bounds read [CVE-2019-9343]
142586
Google Android Bluetooth out-of-bounds read [CVE-2019-9342]
142585
Google Android Bluetooth out-of-bounds read [CVE-2019-9341]
142584
Google Android libavc missing initialization of resource [CVE-2019-9338]
142583
Google Android libavc missing initialization of resource [CVE-2019-9337]
142582
Google Android libavc missing initialization of resource [CVE-2019-9336]
142581
Google Android libavc missing initialization of resource [CVE-2019-9335]
142580
Google Android libhevc missing initialization of resource [CVE-2019-9334]
142579
Google Android Bluetooth out-of-bounds read [CVE-2019-9333]
142578
Google Android Bluetooth out-of-bounds read [CVE-2019-9332]
142577
Google Android Bluetooth out-of-bounds read [CVE-2019-9331]
142576
Google Android Bluetooth out-of-bounds read [CVE-2019-9330]
142575
Google Android Bluetooth missing initialization of resource [CVE-2019-9329]
142574
Google Android Bluetooth out-of-bounds read [CVE-2019-9328]
142573
Google Android Bluetooth out-of-bounds read [CVE-2019-9327]
142572
Google Android Bluetooth out-of-bounds read [CVE-2019-9326]
142571
Google Android libvpx out-of-bounds read [CVE-2019-9325]
142570
Google Android Wallpaper Manager Service authorization [CVE-2019-9323]
142569
Google Android libavc missing initialization of resource [CVE-2019-9322]
142568
Google Android libavc missing initialization of resource [CVE-2019-9321]
142567
Google Android libavc missing initialization of resource [CVE-2019-9320]
142566
Google Android libavc missing initialization of resource [CVE-2019-9319]
142565
Google Android libhevc missing initialization of resource [CVE-2019-9318]
142564
Google Android libstagefright missing initialization of resource
142563
Google Android libstagefright missing initialization of resource
142562
Google Android libhevc missing initialization of resource [CVE-2019-9315]
142561
Google Android libavc missing initialization of resource [CVE-2019-9314]
142560
Google Android libstagefright missing initialization of resource
142559
Google Android Bluetooth out-of-bounds read [CVE-2019-9312]
142558
Google Android Bluetooth integer overflow [CVE-2019-9311]
142557
Google Android libFDK integer overflow [CVE-2019-9310]
142556
Google Android NFC out-of-bounds write [CVE-2019-9309]
142555
Google Android libAACdec integer overflow [CVE-2019-9308]
142554
Google Android libAACdec integer overflow [CVE-2019-9307]
142553
Google Android libMpegTPDec out-of-bounds write [CVE-2019-9306]
142552
Google Android libAACdec integer overflow [CVE-2019-9305]
142551
Google Android libMpegTPDec integer overflow [CVE-2019-9304]
142550
Google Android libFDK integer overflow [CVE-2019-9303]
142549
Google Android libAACdec integer overflow [CVE-2019-9302]
142548
Google Android libAACdec integer overflow [CVE-2019-9301]
142547
Google Android libAACdec integer overflow [CVE-2019-9300]
142546
Google Android libAACdec integer overflow [CVE-2019-9299]
142545
Google Android libAACdec integer overflow [CVE-2019-9298]
142544
Google Android libAACdec integer overflow [CVE-2019-9297]
142543
Google Android NFC out-of-bounds read [CVE-2019-9296]
142542
Google Android Permission Check permission assignment [CVE-2019-9295]
142541
Google Android libstagefright out-of-bounds read [CVE-2019-9294]
142540
Google Android libstagefright out-of-bounds read [CVE-2019-9293]
142539
Google Android Activity Manager Service external reference [CVE-2019-9292]
142538
Google Android Bluetooth allocation of resources [CVE-2019-9291]
142537
Google Android tzdata allocation of resources [CVE-2019-9290]
142536
Google Android Bluetooth out-of-bounds read [CVE-2019-9289]
142535
Google Android libhidcommand_jni out-of-bounds write [CVE-2019-9288]
142534
Google Android Bluetooth out-of-bounds read [CVE-2019-9287]
142533
Google Android Bluetooth out-of-bounds read [CVE-2019-9286]
142532
Google Android Bluetooth out-of-bounds read [CVE-2019-9285]
142531
Google Android Bluetooth out-of-bounds read [CVE-2019-9284]
142530
Google Android AAC Codec input validation [CVE-2019-9283]
142529
Google Android Skia out-of-bounds read [CVE-2019-9282]
142528
Google Android GoogleContactsSyncAdapter path traversal [CVE-2019-9281]
142527
Google Android Keyguard permission assignment [CVE-2019-9280]
142526
Google Android WiFi Hotspot Service null pointer dereference
142525
Google Android libexif integer overflow [CVE-2019-9278]
142524
Google Android proc Filesystem log file [CVE-2019-9277]
142523
Google Android WiFi permission assignment [CVE-2019-9272]
142522
Google Android System Settings permission assignment [CVE-2019-9269]
142521
Google Android libstagefright use after free [CVE-2019-9268]
142520
Google Android sensorservice out-of-bounds write [CVE-2019-9266]
142519
Google Android Bluetooth out-of-bounds read [CVE-2019-9265]
142518
Google Android libxaac out-of-bounds read [CVE-2019-9264]
142517
Google Android Telephony permission assignment [CVE-2019-9263]
142516
Google Android MPEG4Extractor integer overflow [CVE-2019-9262]
142515
Google Android libxaac out-of-bounds read [CVE-2019-9261]
142514
Google Android Bluetooth out-of-bounds read [CVE-2019-9260]
142513
Google Android Bluetooth Stack out-of-bounds write [CVE-2019-9259]
142512
Google Android wifilogd out-of-bounds write [CVE-2019-9258]
142511
Google Android Bluetooth out-of-bounds write [CVE-2019-9257]
142510
Google Android libmediaextractor integer overflow [CVE-2019-9256]
142509
Google Android KeyStore insecure storage of sensitive information
142508
Google Android libavc use of uninitialized resource [CVE-2019-9252]
142507
Google Android NFC out-of-bounds read [CVE-2019-9251]
142506
Google Android Bluetooth out-of-bounds read [CVE-2019-9250]
142505
Google Android Bluetooth out-of-bounds read [CVE-2019-9249]
142504
Google Android AAC Codec missing initialization of resource [CVE-2019-9247]
142503
Google Android NFC out-of-bounds read [CVE-2019-9246]
142502
Google Android NFC out-of-bounds read [CVE-2019-9244]
142501
Google Android wpa_supplicant_8 out-of-bounds read [CVE-2019-9243]
142500
Google Android NFC out-of-bounds read [CVE-2019-9242]
142499
Google Android Bluetooth out-of-bounds read [CVE-2019-9241]
142498
Google Android NFC out-of-bounds read [CVE-2019-9240]
142497
Google Android NFC out-of-bounds read [CVE-2019-9239]
142496
Google Android NFC Stack out-of-bounds write [CVE-2019-9238]
142495
Google Android Bluetooth out-of-bounds read [CVE-2019-9237]
142494
Google Android NFC out-of-bounds read [CVE-2019-9236]
142493
Google Android NFC out-of-bounds read [CVE-2019-9235]
142492
Google Android wpa_supplicant_8 out-of-bounds read [CVE-2019-9234]
142491
Google Android wpa_supplicant_8 out-of-bounds read [CVE-2019-9233]
142490
Google Android libvpx out-of-bounds read [CVE-2019-9232]
142489
Adobe Flash Player Same Origin Policy origin validation [CVE-2019-8075]
142488
Adobe ColdFusion path traversal [CVE-2019-8074]
142487
Adobe ColdFusion injection [CVE-2019-8073]
142486
Adobe ColdFusion information disclosure [CVE-2019-8072]
142485
IBM MQ Cluster resource consumption [CVE-2019-4141]
142484
Google Android LG LAF information disclosure [CVE-2019-2191]
142483
Google Android LG LAF information disclosure [CVE-2019-2190]
142482
Google Android Easel Driver race condition [CVE-2019-2189]
142481
Google Android Easel Driver race condition [CVE-2019-2188]
142480
Google Android libxaac use of uninitialized resource [CVE-2019-2172]
142479
Google Android libxaac initialization [CVE-2019-2171]
142478
Google Android libxaac initialization [CVE-2019-2170]
142477
Google Android libxaac initialization [CVE-2019-2169]
142476
Google Android libxaac initialization [CVE-2019-2168]
142475
Google Android libxaac initialization [CVE-2019-2167]
142474
Google Android libxaac initialization [CVE-2019-2166]
142473
Google Android libxaac out-of-bounds read [CVE-2019-2165]
142472
Google Android libxaac out-of-bounds read [CVE-2019-2164]
142471
Google Android libxaac out-of-bounds read [CVE-2019-2163]
142470
Google Android libxaac out-of-bounds read [CVE-2019-2162]
142469
Google Android libxaac out-of-bounds read [CVE-2019-2161]
142468
Google Android libxaac out-of-bounds read [CVE-2019-2160]
142467
Google Android libxaac out-of-bounds write [CVE-2019-2159]
142466
Google Android libxaac out-of-bounds read [CVE-2019-2158]
142465
Google Android libxaac out-of-bounds read [CVE-2019-2157]
142464
Google Android libxaac out-of-bounds read [CVE-2019-2156]
142463
Google Android libxaac out-of-bounds read [CVE-2019-2155]
142462
Google Android libxaac out-of-bounds read [CVE-2019-2154]
142461
Google Android libxaac out-of-bounds read [CVE-2019-2153]
142460
Google Android libxaac out-of-bounds read [CVE-2019-2152]
142459
Google Android libxaac out-of-bounds read [CVE-2019-2151]
142458
Google Android libxaac out-of-bounds read [CVE-2019-2150]
142457
Google Android libxaac out-of-bounds read [CVE-2019-2149]
142456
Google Android libxaac out-of-bounds read [CVE-2019-2148]
142455
Google Android libxaac out-of-bounds read [CVE-2019-2147]
142454
Google Android libxaac out-of-bounds read [CVE-2019-2146]
142453
Google Android libxaac out-of-bounds read [CVE-2019-2145]
142452
Google Android libxaac out-of-bounds read [CVE-2019-2144]
142451
Google Android libxaac out-of-bounds read [CVE-2019-2143]
142450
Google Android libxaac out-of-bounds read [CVE-2019-2142]
142449
Google Android libxaac out-of-bounds write [CVE-2019-2141]
142448
Google Android libxaac use of uninitialized resource [CVE-2019-2140]
142447
Google Android libxaac out-of-bounds read [CVE-2019-2139]
142446
Google Android libxaac out-of-bounds read [CVE-2019-2138]
142445
Google Android libxaac out-of-bounds write [CVE-2019-2087]
142444
Google Android libxaac out-of-bounds write [CVE-2019-2086]
142443
Google Android libxaac out-of-bounds write [CVE-2019-2085]
142442
Google Android libxaac out-of-bounds write [CVE-2019-2084]
142441
Google Android libxaac out-of-bounds write [CVE-2019-2083]
142440
Google Android libxaac out-of-bounds write [CVE-2019-2082]
142439
Google Android libxaac out-of-bounds write [CVE-2019-2081]
142438
Google Android libxaac out-of-bounds write [CVE-2019-2080]
142437
Google Android libxaac out-of-bounds read [CVE-2019-2079]
142436
Google Android libxaac out-of-bounds write [CVE-2019-2078]
142435
Google Android libxaac out-of-bounds write [CVE-2019-2077]
142434
Google Android libxaac out-of-bounds write [CVE-2019-2076]
142433
Google Android libxaac out-of-bounds write [CVE-2019-2075]
142432
Google Android libxaac out-of-bounds write [CVE-2019-2074]
142431
Google Android libxaac out-of-bounds write [CVE-2019-2073]
142430
Google Android libxaac out-of-bounds write [CVE-2019-2072]
142429
Google Android libxaac out-of-bounds write [CVE-2019-2071]
142428
Google Android libxaac out-of-bounds write [CVE-2019-2070]
142427
Google Android libxaac out-of-bounds write [CVE-2019-2069]
142426
Google Android libxaac out-of-bounds write [CVE-2019-2068]
142425
Google Android libxaac out-of-bounds write [CVE-2019-2067]
142424
Google Android libxaac out-of-bounds write [CVE-2019-2066]
142423
Google Android libxaac out-of-bounds write [CVE-2019-2065]
142422
Google Android libxaac out-of-bounds write [CVE-2019-2064]
142421
Google Android Media Server out-of-bounds write [CVE-2019-2063]
142420
Google Android libxaac out-of-bounds write [CVE-2019-2062]
142419
Google Android libxaac out-of-bounds write [CVE-2019-2061]
142418
Google Android libxaac out-of-bounds read [CVE-2019-2060]
142417
Google Android libxaac out-of-bounds write [CVE-2019-2059]
142416
Google Android libxaac out-of-bounds write [CVE-2019-2055]
142415
Nulock App Bluetooth Credentials cleartext transmission
142414
kkcms jx.php cross site scripting
142413
SalesAgility SuiteCRM information disclosure [CVE-2019-16922]
142412
Mozilla Thunderbird SMIME input validation [CVE-2019-11755]
142411
Mozilla Firefox Pointer Lock requestPointerLock input validation
142410
Mozilla Firefox Maintenance Service improper validation of integrity check value
142409
Mozilla Firefox/Thunderbird/Firefox ESR IndexedDB use after free
142408
Mozilla Firefox Log input validation [CVE-2019-11751]
142407
Mozilla Firefox type conversion [CVE-2019-11750]
142406
Mozilla Firefox WebRTC getUserMedia information disclosure
142405
Mozilla Firefox WebRTC permission assignment [CVE-2019-11748]
142404
Mozilla Firefox History HSTS initialization
142403
Mozilla Firefox/Thunderbird/Firefox ESR Video Element use after free
142402
Mozilla Firefox/Thunderbird/Firefox ESR Bracket cross site scripting
142401
Mozilla Firefox/Thunderbird/Firefox ESR Navigation information disclosure
142400
Mozilla Firefox/Thunderbird/Firefox ESR SVG Filter unknown vulnerability
142399
Mozilla Firefox Sandbox Universal cross site scripting
142398
Mozilla Firefox/Thunderbird/Firefox ESR memory corruption [CVE-2019-11740]
142397
Mozilla Thunderbird SMIME information disclosure [CVE-2019-11739]
142396
Mozilla Firefox Content Security Policy Javascript default permission
142395
Mozilla Firefox Content Security Policy insufficient verification of data authenticity
142394
Mozilla Firefox Maintenance Service race condition [CVE-2019-11736]
142393
Mozilla Firefox buffer overflow [CVE-2019-11735]
142392
Mozilla Firefox buffer overflow [CVE-2019-11734]
142391
Mozilla Firefox Password Storage information disclosure [CVE-2019-11733]
142389
Google Android WiFi information disclosure [CVE-2018-9581]
142388
Google Android Permission Check privileges management [CVE-2018-9425]
142387
Corsair Link CLink4Service default permission [CVE-2018-19592]
142384
Cisco Carrier Routing System ACL authorization [CVE-2012-1342]
142383
Linux Kernel hns_roce_main.c hns_roce_alloc_ucontext initialization
142382
D-Link DIR-655C/DIR-866L/DIR-652/DHP-1565 Common Gateway Interface os command injection
142381
pfSense picture.widget.php file_put_contents input validation
142380
pfSense services_captiveportal_mac.php cross site scripting
142379
ARforms Plugin arformcontroller.php arf_delete_file Path input validation
142378
pfSense diag_command.php csrf_callback cross-site request forgery
142377
CKFinder Documentation Content Sniffing information disclosure
142376
CKFinder File Name unrestricted upload [CVE-2019-15862]
142375
phpBB Remote Avatar cross-site request forgery [CVE-2019-13376]
142374
DNN Admin Notification notification cross site scripting
142373
Cloud Foundry UAA Scope privileges management [CVE-2019-11279]
142372
Cloud Foundry UAA SCIM Query input validation [CVE-2019-11278]
142371
Apple macOS Foundation out-of-bounds read [CVE-2019-8641]
142370
Apple watchOS Foundation out-of-bounds read [CVE-2019-8641]
142369
Apple iOS Foundation out-of-bounds read [CVE-2019-8641]
142368
Apple iOS/iPadOS VoiceOver Lockscreen information disclosure
142367
Apple Safari Service Workers History information disclosure
142366
Apple Safari Juno Im input validation
142365
Apple tvOS improper authentication [CVE-2019-8704]
142364
Apple Xcode otool memory corruption [CVE-2019-8739]
142363
Apple Xcode otool memory corruption [CVE-2019-8738]
142362
Apple Xcode ld64 input validation [CVE-2019-8724]
142361
Apple Xcode ld64 input validation [CVE-2019-8723]
142360
Apple Xcode ld64 input validation [CVE-2019-8722]
142359
Apple Xcode ld64 input validation [CVE-2019-8721]
142358
Apple Xcode IDE SCM integer overflow [CVE-2019-3855]
142357
Apple watchOS Foundation out-of-bounds read [CVE-2019-8641]
142356
Apple Safari WebKit Page Loading Universal cross site scripting
142355
Apple iOS WebKit Page Loading Universal cross site scripting
142354
Apple iOS Safari Address input validation
142353
Apple iOS Quick Look default permission [CVE-2019-8731]
142352
Apple iOS Messages Lockscreen information disclosure
142351
Apple iOS Keyboards improper authentication [CVE-2019-8704]
142350
Apple iOS Foundation out-of-bounds read [CVE-2019-8641]
142349
Apple iOS Face ID inadequate encryption [CVE-2019-8760]
142348
Apple iOS CoreAudio memory corruption [CVE-2019-8705]
142347
Apple iOS Bluetooth information disclosure [CVE-2019-8711]
142346
Lenovo System Update Configuration File input validation [CVE-2019-6175]
142345
ThinkAgile CP-SB BMC Session session fixiation [CVE-2019-6161]
142344
IBM MQ Command Server input validation [CVE-2019-4378]
142343
IBM QRadar SIEM server-side request forgery [CVE-2019-4262]
142342
ARM Mbed TLS/ARM Mbed Crypto ECDSA RNG information disclosure
142341
TeamPass Password cross site scripting [CVE-2019-16904]
142340
Platinum UPnP SDK PltHttpServer.cpp path traversal
142338
inoERP Deserialization download.php sql injection
142337
Netty Whitespace request smuggling [CVE-2019-16869]
142336
BMC MyIT Digital Workplace DWP administrator deserialization
142335
YzmCMS HTTP Host Header injection [CVE-2019-16532]
142334
easy-fancybox Plugin Settings Menu class-easyfancybox.php Stored cross site scripting
142333
SilverStripe Versioned Files Module information disclosure [CVE-2019-16409]
142332
krb5 KDC input validation [CVE-2019-14844]
142331
SilverStripe Assets Access Control file access [CVE-2019-14273]
142330
SilverStripe asset-admin File Title cross site scripting [CVE-2019-14272]
142329
Honeywell Performance IP Cameras/Performance NVR Integrated Web Server information disclosure
142328
SilverStripe Cache Pollution privileges management
142327
Netskope Client Service Connection os command injection [CVE-2019-12091]
142326
Netskope Client Service Connection doHandshakefromServer buffer overflow
142325
Apache HTTP Server mod_remoteip null pointer dereference [CVE-2019-10097]
142324
Apache HTTP Server mod_proxy cross site scripting [CVE-2019-10092]
142323
Apache HTTP Server HTTP2 Session use after free [CVE-2019-10082]
142322
Apache Subversion svnserve Server Process Disruption input validation
142321
Apache Subversion svnserve Server Process Disruption input validation
142320
F5 BIG-IP APM Edge Client Log log file [CVE-2019-6656]
142319
F5 BIG-IP information disclosure [CVE-2019-6655]
142318
F5 BIG-IP Management Interface input validation [CVE-2019-6654]
142317
F5 BIG-IQ Stored cross site scripting [CVE-2019-6653]
142316
F5 BIG-IQ Authentication improper authentication [CVE-2019-6652]
142315
F5 BIG-IP/BIG-IQ/iWorkflow/Enterprise Manager Configuration Utility Login Page information exposure
142314
IBM Content Navigator Web UI cross site scripting [CVE-2019-4571]
142313
Advantech WebAccess/HMI Designer Exception exceptional condition
142312
Advantech WebAccess/HMI Designer User Mode memory corruption
142311
Advantech WebAccess/HMI Designer GetNICInfo+0x0000000000512918 memory corruption
142310
Rubyzip ZIP File resource consumption [CVE-2019-16892]
142309
Halo comments cross site scripting
142308
Ubiquiti EdgeMAX Cache File resource consumption [CVE-2019-16889]
142307
IrfanView buffer overflow [CVE-2019-16887]
142306
runc AppArmor rootfs_linux.go authorization
142305
MediaWiki Special:Redirect Username information disclosure
142304
Samsung Text-to-speech Engine App privileges management [CVE-2019-16253]
142303
LemonLDAP::NG OpenID Connect Issuer authorization [CVE-2019-15941]
142302
Smart Battery A4 Authentication Interface improper authentication
142301
Smart Battery A4 improper authentication [CVE-2019-15068]
142300
Smart Battery A2-25DE Login Page improper authentication [CVE-2019-15067]
142299
GLPI Password Reset autocompletion.php insufficiently protected credentials
142298
Cisco NX-OS CLI os command injection [CVE-2019-12717]
142297
Cisco IOS XR Virtualization Manager os command injection [CVE-2019-12709]
142296
Cisco IOS XE link following [CVE-2019-12672]
142295
Cisco IOS XE CLI authorization [CVE-2019-12671]
142294
Cisco IOS XE IOx Guest Shell permission assignment [CVE-2019-12670]
142293
Cisco IOS XE RADIUS Change of Authorization input validation
142292
Cisco IOS/IOS XE Web Framework Stored cross site scripting
142291
Cisco IOS XE Web Framework Stored cross site scripting
142290
Cisco IOS XE Guest Shell path traversal [CVE-2019-12666]
142289
Cisco IOS/IOS XE HTTP Client Persistent inadequate encryption
142288
Cisco IOS XE Dialer Interface Feature for ISDN improper authentication
142287
Cisco IOS XE CTS PAC input validation [CVE-2019-12663]
142286
Cisco NX-OS/IOS XE Signature Verification signature verification
142285
Cisco IOS XE Virtualization Manager os command injection [CVE-2019-12661]
142284
Cisco IOS XE CLI input validation [CVE-2019-12660]
142283
Cisco IOS XE HTTP Service input validation [CVE-2019-12659]
142282
Cisco IOS XE Filesystem Resource Management resource consumption
142281
Cisco IOS XE Unified Threat Defense input validation [CVE-2019-12657]
142280
Cisco IOS/IOS XE IOx Web Server input validation [CVE-2019-12656]
142279
Cisco IOS XE ALG/NAT/ZBFW buffer overflow [CVE-2019-12655]
142278
Cisco IOS/IOS XE Session Initiation Protocol null pointer dereference
142277
Cisco IOS XE Raw Socket Transport input validation [CVE-2019-12653]
142276
Cisco IOS Management Plane resource consumption [CVE-2019-12652]
142275
Cisco IOS XE Web-based User Interface os command injection [CVE-2019-12651]
142274
Cisco IOS XE Web-based User Interface os command injection [CVE-2019-12650]
142273
Cisco IOS XE Image Verification signature verification [CVE-2019-12649]
142272
Cisco IOS IOx Application Environment authorization [CVE-2019-12648]
142271
Cisco IOS/IOS XE Ident Protocol null pointer dereference [CVE-2019-12647]
142270
Cisco IOS XE NAT SIP ALG initialization [CVE-2019-12646]
142269
SilverStripe Access Control loadIntoFile information disclosure
142268
SilverStripe Flash Clipboard Reflected cross site scripting
142267
SilverStripe install.php privileges management
142266
SilverStripe Change Password session fixiation [CVE-2019-12203]
142265
noVNC Web Page cross site scripting [CVE-2017-18635]
142264
microblog-poster Plugin sql injection [CVE-2015-9449]
142263
sendpress Plugin sql injection [CVE-2015-9448]
142262
unite-gallery-lite Plugin admin.php cross-site request forgery
142261
unite-gallery-lite Plugin admin-ajax.php sql injection
142260
unite-gallery-lite Plugin admin-ajax.php unitegallery_ajax_action cross-site request forgery
142259
altos-connect Plugin cross site scripting [CVE-2015-9444]
142258
accurate-form-data-real-time-form-validation Plugin cross-site request forgery
142257
avenirsoft-directdownload Plugin cross-site request forgery [CVE-2015-9442]
142256
bookmarkify Plugin cross-site request forgery [CVE-2015-9441]
142255
monetize Plugin cross-site request forgery [CVE-2015-9440]
142254
addthis Plugin cross site scripting [CVE-2015-9439]
142253
display-widgets Plugin cross site scripting [CVE-2015-9438]
142252
dynamic-widgets Plugin cross-site request forgery [CVE-2015-9437]
142251
dynamic-widgets Plugin cross site scripting [CVE-2015-9436]
142250
oauth2-provider Plugin Random Number Generator weak prng [CVE-2015-9435]
142249
kiwi-logo-carousel Plugin cross-site request forgery [CVE-2015-9434]
142248
wp-social-bookmarking-light Plugin cross-site request forgery
142247
alpine-photo-tile-for-instagram Plugin cross-site request forgery
142246
qtranslate-x Plugin cross-site request forgery [CVE-2015-9431]
142245
crazy-bone Plugin cross site scripting [CVE-2015-9430]
142244
yith-maintenance-mode Plugin cross-site request forgery [CVE-2015-9429]
142243
wplegalpages Plugin cross-site request forgery [CVE-2015-9428]
142242
googmonify Plugin cross-site request forgery [CVE-2015-9427]
142241
manual-image-crop Plugin cross site scripting [CVE-2015-9426]
142240
social-locker Plugin cross-site request forgery [CVE-2015-9425]
142239
multicons Plugin cross-site request forgery [CVE-2015-9424]
142238
PlugNedit Adaptive Editor Plugin cross site scripting [CVE-2015-9423]
142237
PlugNedit Adaptive Editor Plugin cross-site request forgery [CVE-2015-9422]
142236
olevmedia-shortcodes Plugin cross-site request forgery [CVE-2015-9421]
142235
soundcloud-is-gold Plugin cross site scripting [CVE-2015-9420]
142234
captain-slider Plugin Section cross site scripting [CVE-2015-9419]
142233
Watu Pro Plugin Quiz cross-site request forgery [CVE-2015-9418]
142232
testimonial-slider Plugin cross-site request forgery [CVE-2015-9417]
142231
sitepress-multilingual-cms Plugin cross site scripting [CVE-2015-9416]
142230
bj-lazy-load Plugin Remote File Inclusion input validation [CVE-2015-9415]
142229
wp-symposium Plugin get_album_item.php cross site scripting
142228
eShop Plugin cross-site request forgery [CVE-2015-9413]
142227
Royal-Slider Plugin cross site scripting [CVE-2015-9412]
142226
Postmatic Plugin cross site scripting [CVE-2015-9411]
142225
Blubrry PowerPress Podcasting Plugin cross site scripting [CVE-2015-9410]
142224
string-interner Crate Cloning use after free [CVE-2019-16882]
142223
portaudio-rs Crate stream_finished_callback use after free
142222
linea Crate zip_elements double free
142221
pfSense pfsense.exec_php os command injection
142220
Centreon makeXMLForOneService.php sql injection
142219
HCL AppScan Source XML Data xml external entity reference [CVE-2019-16188]
142218
libgcrypt20 ECDSA race condition [CVE-2019-13627]
142217
NeuVector Vulnerability Scanner Plugin Global Configuration Credentials cleartext storage
142216
GitLab Logo Plugin Global Configuration Credentials cleartext storage
142215
Aqua Security Scanner Plugin Configuration Form Credentials cleartext transmission
142214
Aqua MicroScanner Plugin Configuration Form Credentials cleartext transmission
142213
Gem Publisher Plugin Global Configuration Credentials cleartext storage
142212
Google Calendar Plugin config.xml Credentials cleartext storage
142211
elOyente Plugin Global Configuration Credentials cleartext storage
142210
CodeScan Plugin Global Configuration Credentials cleartext storage
142209
Call Remote Job Plugin config.xml Credentials cleartext storage
142208
Azure Event Grid Build Notifier Plugin config.xml Credentials cleartext storage
142207
Assembla Plugin Global Configuration Credentials cleartext storage
142206
vFabric Application Director Plugin Global Configuration Credentials cleartext storage
142205
Arquillian Steps Plugin Sandbox privileges management [CVE-2019-10418]
142204
Kubernetes Steps Plugin Sandbox privileges management [CVE-2019-10417]
142203
Violation Comments to GitLab Plugin config.xml Credentials cleartext storage
142202
Violation Comments to GitLab Plugin Global Configuration Credentials cleartext storage
142201
Git Changelog Plugin config.xml Credentials cleartext storage
142200
Data Theorem CI-CD Plugin config.xml Credentials cleartext storage
142199
Inedo ProGet Plugin Configuration Form cleartext transmission
142198
Inedo BuildMaster Plugin Configuration Form cleartext transmission
142197
Log Parser Plugin Error Message cross site scripting [CVE-2019-10410]
142196
Project Inheritance Plugin Permission Check permission assignment
142195
Project Inheritance Plugin Template cross-site request forgery
142194
Project Inheritance Plugin information disclosure [CVE-2019-10407]
142193
Jenkins Global Configuration Stored cross site scripting
142192
Jenkins HTTP Header information disclosure [CVE-2019-10405]
142191
Jenkins Tooltip Stored cross site scripting
142190
Jenkins SCM Tag Stored cross site scripting
142189
Jenkins Combobox Form Stored cross site scripting
142188
Jenkins Textbox Control Stored cross site scripting
142187
Apache HTTP Server mod_rewrite redirect [CVE-2019-10098]
142186
alo-easymail Plugin alo-easymail-admin-options.php cross-site request forgery
142185
emlog path traversal [CVE-2019-16868]
142184
HongCMS input validation [CVE-2019-16867]
142183
ONTAP Select Deploy Administration Utility insufficiently protected credentials
142182
ONTAP Select Deploy Administration Utility HTTP Service input validation
142181
E2fsprogs Quota File out-of-bounds write [CVE-2019-5094]
142180
Dell EMC Update Package Framework uncontrolled search path [CVE-2019-3726]
142179
vBulletin widget_php input validation
142178
RIOT MQTT Server null pointer dereference [CVE-2019-16754]
142177
Devise Token Auth Callback Controller fallback_render Reflected cross site scripting
142176
Joomla CMS Default Template cross site scripting [CVE-2019-16725]
142175
File Sharing Wizard Exception buffer overflow [CVE-2019-16724]
142174
Suricata Options decode-ipv4.c IPV4OptValidateTimestamp out-of-bounds read
142173
Suricata Fragmented Packet defrag.c Defrag4Reassemble out-of-bounds read
142172
Suricata SSLv3 app-layer-ssl.c TLSDecodeHSHelloExtensions out-of-bounds read
142171
SICK FX0-GPNT00000/FX0-GENT00000 buffer overflow [CVE-2019-14753]
142170
NXP Kinetis KV1x/Kinetis KV3x/Kinetis K8x Access Control improper authentication
142169
STMicroelectronics STM32F7 Proprietary Code Read Out Protection improper authentication
142168
BlueStacks Virtual Machine information disclosure [CVE-2019-14220]
142167
Niagara AX Utility improper authentication [CVE-2019-13528]
142166
Rockwell Automation Arena Simulation Software Cat. 9502-Ax Arena File uninitialized pointer
142165
QEMU LSI SCSI Adapter Emulator lsi_execute_script infinite loop
142164
IBM Security Key Lifecycle Manager Credentials cleartext storage
142163
IBM Security Key Lifecycle Manager cross-site request forgery
142162
wolfSSL ASN.1 Certificate asn.c CheckCertSignature_ex out-of-bounds read
142161
Linux Kernel Beacon Head nl80211.c validate_beacon_head buffer overflow
142160
pam-python privileges management [CVE-2019-16729]
142159
DOMPurify cross site scripting [CVE-2019-16728]
142158
Progress MOVEit Transfer REST API MOVEit.DMZ.WebApi.dll sql injection
142157
makandra consul Gem Access Control authorization [CVE-2019-16377]
142156
Grafana Save/Test Credentials insufficiently protected credentials
142155
Total Defense Anti-Virus caschelp.exe untrusted search path
142154
Total Defense Anti-Virus Access Control AMRT.exe privileges management
142153
Total Defense Anti-Virus Access Control ccschedulersvc.exe privileges management
142152
Apache JSPWiki Plugin Link cross site scripting [CVE-2019-12407]
142151
Cloud Foundry NFS Volume Service LDAP injection [CVE-2019-11277]
142150
Red Lion Controls Crimson use after free [CVE-2019-10996]
142149
Red Lion Controls Crimson Configuration File hard-coded credentials
142148
Red Lion Controls Crimson uninitialized pointer [CVE-2019-10984]
142147
Red Lion Controls Crimson memory corruption [CVE-2019-10978]
142146
pac4j-saml SAML Identifier Generator SAML2Utils.java RandomStringUtils PRNG weak prng
142145
Apereo CAS Token Generator PRNG weak prng
142144
Apache JSPWiki Plugin Link cross site scripting [CVE-2019-10090]
142143
CoreOS Tectonic Grafana Web Application cross site scripting
142142
Home Assistant Error Log api.py information disclosure
142141
TLS Protocol/DTLS Protocol MAC Check Lucky Thirteen cryptographic issues
🔒
🔒
142140
Microsoft Windows Defender File input validation [CVE-2019-1255]
142139
Microsoft Internet Explorer Scripting Engine DarkHotel memory corruption
142138
ZTE ZXV10 B860A Terminal System input validation [CVE-2019-3416]
142137
Cacti Authorization graph_json.php authorization
142136
ZZZCMS zzzphp Protection Mechanism input validation [CVE-2019-16722]
142135
NoneCms dele.html cross-site request forgery
142134
ZZZCMS zzzphp File Upload unrestricted upload [CVE-2019-16720]
142133
WTCMS cross-site request forgery [CVE-2019-16719]
142132
radare2 cbin.c bin_symbols os command injection
142131
Linux Kernel recv.c rds6_inc_info_copy information disclosure
142130
ImageMagick dot.c PingImage release of resource
142129
ImageMagick ps3.c Huffman2DEncodeImage release of resource
142128
ImageMagick ps2.c Huffman2DEncodeImage release of resource
142127
ImageMagick dot.c AcquireMagickMemory release of resource
142126
ImageMagick dps.c XCreateImage release of resource
142125
ImageMagick xwindow.c XCreateImage release of resource
142124
Hunspell suggestmgr.cxx leftcommonsubstring memory corruption
142123
kkcms cms_user_add.php cross-site request forgery
142121
Vandy Vape Platform Bluetooth Low Energy Temperature exposure of resource
142120
Within Sahi Pro Script View Page path traversal [CVE-2019-13063]
142119
Apache JSPWiki Plugin Link InfoContent.jsp cross site scripting
142118
Apache JSPWiki WYSIWYG Editor cross site scripting [CVE-2019-10089]
142117
Apache JSPWiki Plugin Link cross site scripting [CVE-2019-10087]
142116
libming decompile.c OpCode out-of-bounds read
142115
PHPMyWind infoclass_update.php Stored cross site scripting
142114
PHPMyWind infolist_add.php Stored cross site scripting
142113
Integard Pro LoginAdmin buffer overflow
142112
phpipam edit.php sql injection
142111
phpipam filter.php sql injection
142110
phpipam edit-result.php sql injection
142109
phpipam order.php sql injection
142108
phpipam filter-result.php sql injection
142107
Mastodon Session Timeout session expiration
142106
Traveloka App cross site scripting [CVE-2019-16681]
142105
GNOME file-roller path traversal [CVE-2019-16680]
142104
Gila CMS path traversal [CVE-2019-16679]
142103
YzmCMS add.html cross-site request forgery
142102
idreamsoft iCMS cross-site request forgery [CVE-2019-16677]
142101
Pagekit Reset Password Email information exposure
142100
ThinkSAAS cross site scripting [CVE-2019-16665]
142099
ThinkSAAS cross site scripting [CVE-2019-16664]
142098
Ogma CMS New Blog Creation cross site scripting [CVE-2019-16661]
142097
joyplus-cms cross-site request forgery [CVE-2019-16660]
142096
TuziCMS do_add cross-site request forgery
142095
TuziCMS do_add cross-site request forgery
142094
TuziCMS cross site scripting [CVE-2019-16657]
142089
F5 BIG-IP ASM Config information disclosure [CVE-2019-6650]
142088
F5 BIG-IP/Enterprise Manager Config information disclosure [CVE-2019-6649]
142087
Forcepoint VPN Client Unquoted Search Path unquoted search path
142086
VMware ESXi/Fusion/Workstation Pixel Shader out-of-bounds read
142085
IBM Security Key Lifecycle Manager Password Policy weak password
142084
IBM WebSphere Application Server Network Deployment information disclosure
142083
EmbedThis GoAhead login injection
142082
TuziCMS ZhuantiController.class.php sql injection
142081
ZrLog Article Stored cross site scripting
142080
DrayTek Vigor2925 General Setup cross site scripting [CVE-2019-16534]
142079
DrayTek Vigor2925 Access Control loginset.htm cross site scripting
142078
html-pdf Package XMLHttpRequest information disclosure [CVE-2019-15138]
142077
Linux Kernel Marvell Wifi Chip Driver buffer overflow [CVE-2019-14816]
142076
Linux Kernel Marvell Wifi Chip Driver buffer overflow [CVE-2019-14814]
142075
Topcon Positioning Net-G5 GNSS Receiver Web Interface path traversal
142074
Topcon Positioning Net-G5 GNSS Receiver Web Interface Password privileges management
142073
Pivotal Application Service Apps Manager privileges management
142072
Prospecta Master Data Online cross-site request forgery [CVE-2018-17789]
142071
Mautic Company Name Stored cross site scripting
142070
xpinner-lite Pplugin options-general.php cross-site request forgery
142069
xpinner-lite Plugin xpinner-lite.php cross site scripting
142068
mTheme-Unus Theme css.php path traversal
142067
wp-piwik Plugin cross site scripting [CVE-2015-9405]
142066
neuvoo-jobroll Plugin cross site scripting [CVE-2015-9404]
142065
neuvoo-jobroll Plugin cross site scripting [CVE-2015-9403]
142064
users-ultra Plugin File Upload unrestricted upload [CVE-2015-9402]
142063
websimon-tables Plugin tools.php cross site scripting
142062
wordpress-meta-robots Plugin post-new.php sql injection
142061
wp-stats-dashboard Plugin graph_trend.php sql injection
142060
gocodes Plugin tools.php sql injection
142059
gocodes Plugin tools.php cross site scripting
142058
auto-thickbox-plus Plugin cross site scripting [CVE-2015-9396]
142057
users-ultra Plugin Ajax sql injection [CVE-2015-9395]
142056
users-ultra Plugin admin-ajax.php cross-site request forgery
142055
users-ultra Plugin cross site scripting [CVE-2015-9393]
142054
users-ultra Plugin cross site scripting [CVE-2015-9392]
142053
Antioch Theme download.php path traversal [CVE-2014-10397]
142052
epic Theme download.php path traversal
142051
TuziCMS ZhuantiController.class.php sql injection
142050
PRiSE adAS cross-site request forgery [CVE-2019-15089]
142049
PRiSE adAS type conversion [CVE-2019-15088]
142048
PRiSE adAS authorization [CVE-2019-15087]
142047
PRiSE adAS Error Message Reflected cross site scripting
142046
PRiSE adAS Change Password insufficiently protected credentials
142045
PRiSE adAS File Upload unrestricted upload [CVE-2019-14916]
142044
PRiSE adAS Certificate cross site scripting [CVE-2019-14915]
142043
PRiSE adAS medatadata_del path traversal
142042
PRiSE adAS Administration Panel Persistent cross site scripting
142041
PRiSE adAS OPENSSO Module redirect [CVE-2019-14912]
142040
PRiSE adAS OPENSSO Module Reflected cross site scripting
142039
wp-listings Plugin single-listing.php cross site scripting
142038
sola-support-tickets Plugin Access Control wp-admin cross site scripting
142037
wp-invoice Plugin privileges management [CVE-2016-11011]
142036
wp-invoice Plugin Access Control exposure of resource [CVE-2016-11010]
142035
wp-invoice Plugin Access Control exposure of resource [CVE-2016-11009]
142034
wp-invoice Plugin Access Control exposure of resource [CVE-2016-11008]
142033
wp-invoice Plugin Access Control exposure of resource [CVE-2016-11007]
142032
wp-invoice Plugin Access Control exposure of resource [CVE-2016-11006]
142031
instalinker Plugin cross site scripting [CVE-2016-11005]
142030
Elegant Themes Monarch Plugin privileges management [CVE-2016-11004]
142029
Elegant Themes Bloom Plugin privileges management [CVE-2016-11003]
142028
Elegant Themes Extra Theme privileges management [CVE-2016-11002]
142027
user-submitted-posts Plugin cross site scripting [CVE-2016-11001]
142026
wp-ultimate-exporter Plugin sql injection [CVE-2016-11000]
142025
Goodnews Theme cross site scripting [CVE-2016-10999]
142024
ocim-mp3 Plugin pages.php cross site scripting
142023
beauty-premium Theme File Upload sendmail.php cross-site request forgery
142022
optinmonster Plugin Access Control authorization [CVE-2016-10996]
142021
yawpp Plugin cross site scripting [CVE-2015-9391]
142020
admin-management-xtended Plugin wp_ajax privileges management
142019
mtouch-quiz Plugin Quiz Name cross site scripting [CVE-2015-9389]
142018
mtouch-quiz Plugin edit.php cross-site request forgery
142017
mtouch-quiz Plugin options-general.php cross-site request forgery
142016
mtouch-quiz Plugin Quiz Manage cross site scripting [CVE-2015-9386]
142015
quotes-and-tips Plugin cross site scripting [CVE-2015-9385]
142014
relevant Plugin cross site scripting [CVE-2015-9384]
142013
libavcodec Subtitle Decoder srtdec.c srt_to_ass buffer overflow
142012
libav Subtitle Decoder srtdec.c srt_to_ass buffer overflow
142011
libav Subtitle Decoder srtdec.c srt_to_ass input validation
142009
LayerBB System Settings general.php cross-site request forgery
142008
checklist Plugin checklist-icon.php cross site scripting
142007
Linux Kernel KVM Hypervisor kvm out-of-bounds write
142006
LINE integer overflow [CVE-2019-6010]
142005
SuSE Linux Enterprise Server nfs-utils Package nfs privileges management
142004
FireGiant WiX Toolset DTF Microsoft.Deployment.Compression.Cab.dll path traversal
142003
libIEC61850 mms_server.c MmsServer_waitReady use after free
142002
Tenda N301 Wireless Router wanMTU setSysTools input validation
142001
Keeper K5 SD Card Data zskj_script_run.sh input validation
142000
Counter-Strike: Global Offensive Map vphysics.dll input validation
141999
Pydio Remote Link index.php server-side request forgery
141998
Pydio Error Reporting information exposure [CVE-2019-15032]
141997
Atlassian JIRA Server/Data Center Jira Importers Plugin injection
141996
Bitbucket Server/Data Center REST Endpoint injection [CVE-2019-15000]
141995
Atlassian Jira Service Desk Server Customer Context Filter path traversal
141994
Eclipse Mosquitto Subscribe Packet unusual condition [CVE-2019-11779]
141993
Linux Kernel p9 Filesystem i_size_write infinite loop
141992
Dahua IPC-HDW1X2X IP Address information disclosure [CVE-2019-9680]
141991
Dahua IPC-HDW1X2X Debug Function default permission [CVE-2019-9679]
141990
Dahua IPC-HDW1X2X Login input validation [CVE-2019-9678]
141989
Dahua IPC-HDW1X2X CGI Interface buffer overflow [CVE-2019-9677]
141988
VMware vCenter Server vAppConfig Credentials insufficiently protected credentials
141987
VMware vCenter Server Log Credentials insufficiently protected credentials
141986
VMware vSphere ESXi/vCenter Server Session Expiration session expiration
141985
Aspose.PDF use after free [CVE-2019-5067]
141984
Aspose.PDF LZW Compression use after free [CVE-2019-5066]
141983
Aspose.PDF FunctionType 0 PDF Element use after free [CVE-2019-5042]
141982
Dell EMC RSA Archer improper authentication [CVE-2019-3758]
141981
Dell EMC RSA Archer Backend Database information disclosure [CVE-2019-3756]
141980
RSA BSAFE Crypto-J DAS Key Generation information disclosure
141979
RSA BSAFE Crypto-J ECDSA Key Generation information exposure
141978
RSA BSAFE Crypto-J Signature Collision signature verification
141977
Terrasoft Bpm'online CRM-System SDK Terrasoft.Core.DB.Column.Const sql injection
141976
Vivotek IP Camera HTTP Header input validation [CVE-2019-14458]
141975
Advantech WebAccess code injection [CVE-2019-13558]
141974
Advantech WebAccess memory corruption [CVE-2019-13556]
141973
Advantech WebAccess os command injection [CVE-2019-13552]
141972
Advantech WebAccess authorization [CVE-2019-13550]
141971
Eclipse Mosquitto MQTT v5 Client use after free [CVE-2019-11778]
141970
Micro Focus Service Manager Browser insufficiently protected credentials
141969
Micro Focus Service Manager Tomcat insufficiently protected credentials
141968
Micro Focus Service Manager Error Message information exposure
141967
Micro Focus Service Manager Table authorization [CVE-2019-11661]
141966
TIBCO Enterprise Runtime for R Server input validation [CVE-2019-11211]
141965
TIBCO Enterprise Runtime for R Server input validation [CVE-2019-11210]
141964
Cisco HyperFlex Software Web-based Interface cross site scripting
141963
Webkul Bagisto authorization [CVE-2019-16403]
141962
Western Digital WD My Book World improper authentication [CVE-2019-16399]
141961
Zulip Server File Upload Stored cross site scripting
141960
Zulip Server Markdown Parser resource consumption [CVE-2019-16215]
141959
Xiaomi Millet Mobile Phone File Upload unrestricted upload [CVE-2019-15843]
141958
Publisure userAccFunctions.php sql injection
141957
Publisure Secure Portal AdminDir authorization
141956
Publisure Secure Portal adminCons.php unrestricted upload
141955
Cisco HyperFlex Software Statistics Collection Service insufficient verification of data authenticity
141954
IBM Financial Transaction Manager URL path traversal [CVE-2018-1847]
141953
Tevolution Plugin File Upload single_upload.php unrestricted upload
141952
Truemag Theme cross site scripting [CVE-2016-10994]
141951
Dahua IPC-HDW1X2X Online Upgrade Reverse Engineering information disclosure
141950
3S-Smart CODESYS Control Runtime input validation [CVE-2019-9009]
141949
Schneider Electric U.motion Server Message format string [CVE-2019-6840]
141948
Schneider Electric U.motion Server Access Control unrestricted upload
141947
Schneider Electric U.motion Server Access Control authorization
141946
Schneider Electric U.motion Server server-side request forgery
141945
Schneider Electric U.motion Server Access Control authorization
141944
Schneider Electric U.motion Server cross site scripting [CVE-2019-6835]
141943
Schneider Electric HMI Panel HMIGTO Exception Freeze unusual condition
141942
Schneider Electric spaceLYnk/Wiser for KNX improper authentication
141941
Schneider Electric Modicon M340 Connection unusual condition
141940
Schneider Electric Modicon M580 Time exceptional condition [CVE-2019-6830]
141939
Schneider Electric Modicon M580/Modicon M340 Modbus exceptional condition
141938
Schneider Electric Modicon M580 Modbus exceptional condition
141937
Schneider Electric SoMachine HVAC DLL Loader untrusted search path
141936
Schneider Electric Modicon M340 SNMP Server Truncate unusual condition
141935
Schneider Electric Modicon Quantum 140 NOE771x1 unusual condition
141934
Schneider Electric BMXNOR0200H Ethernet-Serial RTU Module Access Control authorization
141933
Schneider Electric Modicon M580 Controller exceptional condition
141932
IBM WebSphere Application Server Log information disclosure [CVE-2019-4477]
141931
IBM WebSphere Application Server path traversal [CVE-2019-4442]
141930
IBM Cognos Analytics Web UI cross site scripting [CVE-2019-4342]
141929
IBM WebSphere Application Server Pollution input validation [CVE-2019-4271]
141928
IBM WebSphere Application Server Web UI cross site scripting
141927
IBM WebSphere Application Server URL path traversal [CVE-2019-4268]
141926
IBM Cognos Analytics resource consumption [CVE-2019-4183]
141925
IBM Cognos Controller inadequate encryption [CVE-2019-4175]
141924
IBM Cognos Controller Authorization Token information disclosure
141923
IBM Cloud Application Performance Management improper restriction of rendered ui layers
141922
GnuCOBOL COBOL Source parser.y end_scope_of_program_name use after free
141921
GnuCOBOL COBOL Source tree.c cb_name buffer overflow
141920
SPIP Password Reminder Email information disclosure
141919
SPIP URL headers.php redirect
141918
SPIP Error Message login.php cross site scripting
141917
SPIP meta.php authorization
141916
eQ-3 Homematic CCU2/Homematic CCU3 Web Interface improper authentication
141915
Linux Kernel virtqueue Buffer buffer overflow [CVE-2019-14835]
141914
FreeIPA Session session expiration [CVE-2019-14826]
141913
3S-Smart CODESYS V3 null pointer dereference [CVE-2019-13542]
141912
3S-Smart CODESYS V3 Library cross site scripting [CVE-2019-13538]
141911
Norton Password Manager information disclosure [CVE-2019-12755]
141910
Micro Focus Service Manager Contact Information information disclosure
141909
Micro Focus Service Manager Deserialization deserialization [CVE-2019-11666]
141908
Micro Focus Service Manager information disclosure [CVE-2019-11665]
141907
APC UPS Network Management Card 2 AOS Remote Monitoring Credentials insufficiently protected credentials
141906
Asuswrt-Merlin UDP wanduck.c parse_req_queries buffer overflow
141905
3S-Smart CODESYS V3 permission assignment [CVE-2019-9008]
141904
OpenDMARC Signature authentication spoofing [CVE-2019-16378]
141903
OpenConnect process_http_response buffer overflow
141902
GitLab Community Edition/Enterprise Edition Internal Endpoint information disclosure
141901
Code42 Enterprise File Upload unrestricted upload [CVE-2019-15131]
141900
HRworks Login Reflected cross site scripting
141899
ScoreMe Theme cross site scripting [CVE-2016-10993]
141898
music-store Plugin cross site scripting [CVE-2016-10992]
141897
imdb-widget Plugin input validation [CVE-2016-10991]
141896
wp-cerber Plugin HTTP Header cross site scripting [CVE-2016-10990]
141895
leenkme Plugin cross-site request forgery [CVE-2016-10989]
141894
leenkme Plugin Stored cross site scripting [CVE-2016-10988]
141893
persian-woocommerce-sms Plugin cross site scripting [CVE-2016-10987]
141892
tweet-wheel Plugin cross site scripting [CVE-2016-10986]
141891
echosign Plugin add_templates.php cross site scripting
141890
echosign Plugin inc.php cross site scripting
141889
ghost Plugin Access Control improper authentication [CVE-2016-10983]
141888
kento-post-view-counter Plugin cross-site request forgery [CVE-2016-10982]
141887
kento-post-view-counter Plugin Stored cross site scripting [CVE-2016-10981]
141886
kento-post-view-counter Plugin cross site scripting [CVE-2016-10980]
141885
fossura-tag-miner Plugin cross site scripting [CVE-2016-10979]
141884
fossura-tag-miner Plugin cross-site request forgery [CVE-2016-10978]
141883
nelio-ab-testing Plugin path traversal [CVE-2016-10977]
141882
safe-editor Plugin cross site scripting [CVE-2016-10976]
141881
fluid-responsive-slideshow Plugin Reflected cross site scripting
141880
fluid-responsive-slideshow Plugin frs_save Stored cross-site request forgery
141879
OpenEMR cross site scripting [CVE-2019-8368]
141878
cURL TFTP Protocol buffer overflow [CVE-2019-5482]
141877
cURL FTP-Kerberos double free [CVE-2019-5481]
141876
IBM Sterling File Gateway Back-End Database sql injection [CVE-2019-4147]
141875
LogMeIn LastPass insufficiently protected credentials [CVE-2019-16371]
141874
Gradle PGP Signing SHA1 input validation
141873
GitLab Omnibus logrotate privileges management [CVE-2019-15741]
141872
GitLab Community Edition/Enterprise Edition Image Upload Location information disclosure
141871
GitLab Community Edition/Enterprise Edition Markdown cross site scripting
141870
GitLab Community Edition/Enterprise Edition ID Email information disclosure
141869
GitLab Community Edition/Enterprise Edition Session Management improper authentication
141868
GitLab Community Edition/Enterprise Edition CI Pipeline resource consumption
141867
GitLab Community Edition/Enterprise Edition Commit Title information disclosure
141866
OpenEMR code injection [CVE-2019-8371]
141865
XS Javascript xsAPI.c fxBeginHost buffer overflow
141864
Beego File Session Manager default permission [CVE-2019-16355]
141863
Beego File Session Manager race condition [CVE-2019-16354]
141862
Emerson GE Automation Proficy Machine Edition Traffic input validation
141861
ffjpeg jfif.c jfif_load memory corruption
141860
ffjpeg huffman.c huffman_decode_step null pointer dereference
141859
ffjpeg dct.c idct2d8x8 null pointer dereference
141858
Bento4 Ap4ByteStream.cpp ReadUI32 null pointer dereference
141857
marc-q libwav wav_gain.c gain_file null pointer dereference
141856
ngiflib ngiflib.c WritePixels memory corruption
141855
ngiflib ngiflib.c WritePixel memory corruption
141854
Escuela de Gestion Publica Plurinacional Sistema Integrado de Gestion Academica Authentication Form sql injection
141853
Dolibarr HTTP Header card.php cross site scripting
141852
GitLab Enterprise Edition Access Control permission assignment
141851
D-Link DNS-320 CGI Script login_mgr.cgi os command injection
141850
CRM Plugin vCard Data cross site scripting [CVE-2019-15950]
141849
GitLab Community Edition/Enterprise Edition Branch Name information disclosure
141848
GitLab Community Edition/Enterprise Edition Project Import API information disclosure
141847
GitLab Community Edition/Enterprise Edition Merge Request permission assignment
141846
GitLab Community Edition/Enterprise Edition Jira Integration server-side request forgery
141845
GitLab Community Edition/Enterprise Edition Kubernetes Integration server-side request forgery
141844
GitLab Community Edition/Enterprise Edition Permission Check information disclosure
141843
GitLab Community Edition/Enterprise Edition Markdown IP Address information disclosure
141842
GitLab Community Edition/Enterprise Edition API information disclosure
141841
GitLab Community Edition/Enterprise Edition Label Description injection
141840
GitLab Community Edition/Enterprise Edition permission assignment
141839
GitLab Community Edition/Enterprise Edition Markdown resource consumption
141838
GitLab Community Edition/Enterprise Edition Internal Endpoint permission assignment
141837
TELESTAR Imperial i600 Access Control set_dname improper authentication
141836
Inteno EG200 JUCI ACL Key information exposure
141835
Intel Microprocessor DDIO Cache race condition [CVE-2019-11184]
141834
Intel Easy Streaming Wizard File Permission privileges management
141833
Apache Tapestry ctx ContextResource path traversal
141832
Apache Tapestry AppModule deserialization
141831
GPAC box_code_base.c dinf_Read resource consumption
141830
GPAC box_code_base.c audio_sample_entry_AddBox out-of-bounds read
141829
GPAC avc_ext.c AVC_DuplicateConfig null pointer dereference
141828
newspaper Theme admin-ajax.php injection
141827
Brafton Plugin cross site scripting [CVE-2016-10973]
141826
newspaper Theme Access Control td_ajax_update_panel privileges management
141825
MemberSonic Lite Plugin Access Control privileges management
141824
supportflow Plugin Ticket Excerpt cross site scripting [CVE-2016-10970]
141823
supportflow Plugin Discussion Ticket Title cross site scripting
141822
peepso-core Plugin PeepSoProfilePreferencesAjax->save privileges management
141821
real3d-flipbook-lite Plugin flipbooks.php cross site scripting
141820
real3d-flipbook-lite Plugin File Upload path traversal [CVE-2016-10966]
141819
real3d-flipbook-lite Plugin path traversal [CVE-2016-10965]
141818
dwnldr Plugin cross site scripting [CVE-2016-10964]
141817
icegram Plugin cross site scripting [CVE-2016-10963]
141816
icegram Plugin edit.php cross-site request forgery
141815
colorway Theme cross site scripting [CVE-2016-10961]
141814
wsecure Plugin wsecure-config.php input validation
141813
estatik Plugin File Upload admin-ajax.php unrestricted upload
141812
estatik Plugin File Upload admin-ajax.php unrestricted upload
141811
Akal Theme preview.php cross site scripting
141810
mail-masta Plugin count_of_send.php input validation
141809
FasterXML jackson-databind input validation [CVE-2019-16335]
141808
Bludit Categories Persistent cross site scripting
141807
GetSimple CMS theme-edit.php Persistent cross site scripting
141806
api-bearer-auth Plugin swagger-config.yaml.php cross site scripting
141805
FasterXML jackson-databind input validation [CVE-2019-14540]
141804
ScadaBR cross site scripting [CVE-2019-16321]
141803
Cobham Sea Tel SNMP Service information disclosure [CVE-2019-16320]
141802
Wireshark Gryphon Dissector packet-gryphon.c resource consumption
141801
Pimcore File Extension Filter unrestricted upload [CVE-2019-16318]
141800
Pimcore PHAR File deserialization [CVE-2019-16317]
141799
Indexhibit input validation [CVE-2019-16314]
141798
ifw8 Router ROM HTML Source Code usermanager.htm Credentials insufficiently protected credentials
141797
S-Cms cross site scripting [CVE-2019-16312]
141796
Niushop index.php cross-site request forgery
141795
Niushop cross site scripting [CVE-2019-16310]
141794
FlameCMS login.php sql injection
141793
Fuji Xerox DocuShare WebEx Module webExMeetingLogin.jsp Reflected cross site scripting
141792
MobaXterm Protocol injection [CVE-2019-16305]
141791
Notepad++ Scintilla SciLexer.dll input validation
141790
gitlabhook Repository Name os command injection [CVE-2019-5485]
141789
Bower Install path traversal [CVE-2019-5484]
141788
Aruba ArubaOS Web Management Interface os command injection [CVE-2019-5315]
141787
Aruba ArubaOS URL cross site scripting [CVE-2019-5314]
141786
McAfee Total Protection Free Antivirus Trial DLL untrusted search path
141785
JHipster/JHipster Kotlin Generator weak prng [CVE-2019-16303]
141784
Open-AudIT Create Discoveries os command injection [CVE-2019-16293]
141783
insert-php Plugin cross site scripting [CVE-2019-16289]
141782
Tenda N301 Wireless Router setWifi input validation
141781
PicoC string.c StringStrcpy memory corruption
141780
Linux Kernel process.c information disclosure
141779
Linux Kernel Hardware Transaction process.c input validation
141778
Siemens IE-WSN-PA Link WirelessHART Gateway Web Interface cross site scripting
141777
Siemens SINEMA Remote Connect Server Password unknown vulnerability
141776
Siemens SINEMA Remote Connect Server Web Application cross-site request forgery
141775
Siemens SINEMA Remote Connect Server information disclosure [CVE-2019-13919]
141774
Siemens SINEMA Remote Connect Server Web Interface weak password
141773
CODESYS V3 Web Server buffer overflow [CVE-2019-13548]
141772
CODESYS V3 Web Server path traversal [CVE-2019-13532]
141771
Piwigo cross site scripting [CVE-2019-13364]
141770
Piwigo cross site scripting [CVE-2019-13363]
141769
phpMyAdmin Setup Page cross-site request forgery [CVE-2019-12922]
141768
slickquiz Plugin admin-ajax.php save_quiz_score Stored cross site scripting
141767
slickquiz Plugin sql injection [CVE-2019-12516]
141766
Micro Focus Data Protector privileges management [CVE-2019-11660]
141765
Siemens SIMATIC TDC CP51M1 UDP Packet input validation [CVE-2019-10937]
141764
Aruba ArubaOS Mobility Controller input validation [CVE-2018-7081]
141763
kama-clic-counter Plugin cross site scripting [CVE-2017-18615]
141762
kama-clic-counter Plugin admin.php sql injection
141761
trust-form Plugin cross site scripting [CVE-2017-18613]
141760
wp-whois-domain Plugin func-whois.php cross site scripting
141759
cysteme-finder Plugin File Upload unrestricted upload [CVE-2016-10955]
141758
Neosense Theme qquploader unrestricted upload [CVE-2016-10954]
141757
Headway Theme License Key cross site scripting [CVE-2016-10953]
141756
quotes-collection Plugin cross site scripting [CVE-2016-10952]
141755
fs-shopping-cart Plugin sql injection [CVE-2016-10951]
141754
sirv Plugin sql injection [CVE-2016-10950]
141753
Relevanssi Premium Plugin Unserialization sql injection [CVE-2016-10949]
141752
Post Indexer Plugin unserialize input validation
141751
Post Indexer Plugin sql injection [CVE-2016-10947]
141750
wp-d3 Plugin cross-site request forgery [CVE-2016-10946]
141749
PageLines Theme cross-site request forgery [CVE-2016-10945]
141748
multisite-post-duplicator Plugin cross-site request forgery [CVE-2016-10944]
141747
zx-csv-upload Plugin sql injection [CVE-2016-10943]
141746
podlove-podcasting-plugin-for-wordpress Plugin sql injection
141745
podlove-podcasting-plugin-for-wordpress Plugin cross site scripting
141744
zm-gallery Plugin sql injection [CVE-2016-10940]
141743
xtremelocator Plugin sql injection [CVE-2016-10939]
141742
copy-me Plugin cross-site request forgery [CVE-2016-10938]
141741
Integard Pro/Home Web Server buffer overflow [CVE-2010-5333]
141740
Microsoft Windows NTFS excessive authentication
141739
SHIRASAGI redirect [CVE-2019-6009]
141738
apng-drawable integer overflow [CVE-2019-6007]
141737
Smart TV Box Service Port 5555 privileges management [CVE-2019-6005]
141736
ApeosWare Management Suite redirect [CVE-2019-6004]
141735
Amazon Pay Plugin cross site scripting [CVE-2019-6003]
141734
Video Insight VMS sql injection [CVE-2019-5996]
141733
Category Specific RSS Feed Subscription cross-site request forgery
141732
Ultra Simple Paypal Shopping Cart cross-site request forgery
141731
Cybozu Garoon sql injection [CVE-2019-5991]
141730
Hikari Denwa Router/Home GateWay cross-site request forgery [CVE-2019-5986]
141729
Hikari Denwa Router/Home GateWay cross site scripting [CVE-2019-5985]
141728
Cybozu Garoon Scheduler redirect [CVE-2019-5978]
141727
Cybozu Garoon E-Mail injection [CVE-2019-5977]
141726
Cybozu Garoon input validation [CVE-2019-5976]
141725
Cybozu Garoon DOM-Based injection [CVE-2019-5975]
141724
WonderCMS path traversal [CVE-2019-5956]
141723
McAfee Web Gateway Administrators Web Console Reflected cross site scripting
141722
hostapd/wpa_supplicant Disconnection input validation [CVE-2019-16275]
141721
Tripp Lite PDUMH15AT improper authentication [CVE-2019-16261]
141720
Motorola Device SIMalliance Toolbox Browser privileges management
141719
Samsung Device SIMalliance Toolbox Browser privileges management
141718
AfterLogic Aurora cross site scripting [CVE-2019-16238]
141717
NXP Kinetis KV1x/Kinetis KV3x/Kinetis K8x FAC authorization [CVE-2019-14237]
141716
STMicroelectronics STM32L0/STM32L1/STM32L4/STM32F4/STM32F7/STM32H7 PCROP authorization
141715
Philips IntelliVue WLAN code download [CVE-2019-13534]
141714
Philips IntelliVue WLAN FTP hard-coded credentials [CVE-2019-13530]
141713
Bosch Access Professional Edition Windows SMB information disclosure
141712
Bosch Access Professional Edition Service Tools hard-coded credentials
141711
Eclipse OMR Versioner toctou [CVE-2019-11774]
141710
Eclipse OMR RPATH code injection [CVE-2019-11773]
141709
Script Security Plugin Sandbox input validation [CVE-2019-10400]
141708
Script Security Plugin Sandbox input validation [CVE-2019-10399]
141707
Beaker Builder Plugin Global Configuration Credentials insufficiently protected credentials
141706
Aqua Security Serverless Scanner Plugin Job Configuration insufficiently protected credentials
141705
Dashboard View Plugin Build Description cross site scripting
141704
Build Environment Plugin View cross site scripting [CVE-2019-10395]
141703
Script Security Plugin Sandbox input validation [CVE-2019-10394]
141702
Script Security Plugin Sandbox input validation [CVE-2019-10393]
141701
Git Client Plugin URL os command injection [CVE-2019-10392]
141700
Trend Micro Security Manager/Vulnerability Protection XML Data xml external entity reference
141699
JIRA makeRequest JiraWhitelist server-side request forgery
141698
JIRA Optimization Plugin cross site scripting [CVE-2019-8450]
141697
JIRA groupuserpicker Username information disclosure
141696
Netgear N300 Host Access Point Daemon null pointer dereference
141695
Netgear N300 Session null pointer dereference [CVE-2019-5054]
141694
Dell EMC RSA Identity Governance Debug Log File Password information disclosure
141693
Dell EMC RSA Identity Governance Access Request Module Stored cross site scripting
141692
Dell EMC RSA Identity Governance Back-End Database sql injection
141691
Dell EMC RSA Identity Governance Groovy Script code injection
141690
McAfee Web Gateway Scanning Proxy input validation [CVE-2019-3644]
141689
McAfee Web Gateway Scanning Proxy input validation [CVE-2019-3643]
141688
Ocean Extra Plugin CSS wizard.php input validation
141687
OpenCV intrin_sse.hpp v_load out-of-bounds read
141686
Telegram Delete input validation [CVE-2019-16248]
141685
Delta DCISoft User Mode SetSerializeData+0x000000000000001b memory corruption
141684
Dino MAM Message 0313_message_archive_management.vala input validation
141683
Dino Push Authorization module.vala authorization
141682
Dino Carbon Message 0280_message_carbons.vala input validation
141681
Linux Kernel trans.c null pointer dereference
141680
Linux Kernel qla_os.c null pointer dereference
141679
Linux Kernel if_sdio.c null pointer dereference [CVE-2019-16232]
141678
Linux Kernel fjes_main.c null pointer dereference
141677
Linux Kernel radeon_display.c null pointer dereference
ID
Title
Nessus
OpenVAS
Snort
Suricata
TippingPoint
141676
Linux Kernel kfd_interrupt.c null pointer dereference
141675
py-lmdb mdb_env_open2 divide by zero
141674
py-lmdb mdb_cursor_set memory corruption
141673
py-lmdb memmove mdb_node_del memory corruption
141672
py-lmdb memory corruption [CVE-2019-16225]
141671
py-lmdb memory corruption [CVE-2019-16224]
141670
WordPress Post Preview cross site scripting [CVE-2019-16223]
141669
WordPress URL kses.php wp_kses_bad_protocol_once cross site scripting
141668
WordPress Dashboard Reflected cross site scripting
141667
WordPress pluggable.php wp_validate_redirect
141666
WordPress Shortcode Preview cross site scripting [CVE-2019-16219]
141665
WordPress Comment Stored cross site scripting
141664
WordPress Media Upload cross site scripting [CVE-2019-16217]
141663
Micro-Star MSI Afterburner Driver RTCore64.sys privileges management
141662
XWiki CryptPad Pad Management Logic input validation [CVE-2019-15302]
141661
JIRA cross-site request forgery [CVE-2019-14998]
141660
JIRA Cache AccessLogFilter information disclosure
141659
JIRA FilterPickerPopup.jspa cross site scripting
141658
JIRA Attachment render default permission
141657
Easy!Appointments Plugin Credentials information disclosure [CVE-2019-14936]
141656
Delta Electronics TPEditor Project File out-of-bounds write [CVE-2019-13544]
141655
Delta Electronics TPEditor Project File memory corruption [CVE-2019-13540]
141654
Delta Electronics TPEditor Project File buffer overflow [CVE-2019-13536]
141653
TELESTAR Imperial i600 Telnet Service hard-coded credentials
141652
Microsoft Windows Common Log File System Driver information disclosure
141651
Eclipse Paho Java Client Library TLS Connection input validation
141650
TeamViewer GUI Teamviewer.exe insufficiently protected credentials
141649
Apache OFBiz Form Widget input validation [CVE-2019-10074]
141648
Apache OFBiz Stored cross site scripting [CVE-2019-10073]
141647
Apache OFBiz XmlSerializer httpService deserialize deserialization
141646
Apache OFBiz HTTP Service httpService input validation
141645
ArcGIS Enterprise My Profile cross site scripting [CVE-2019-16193]
141644
CentOS-WebPanel.com CentOS Web Panel Email authorization [CVE-2019-14725]
141643
CentOS-WebPanel.com CentOS Web Panel Email Forwarding authorization
141642
Adobe Flash Player origin validation [CVE-2019-8069]
141641
Adobe Flash Player use after free [CVE-2019-8070]
141640
Adobe Application Manager Installer untrusted search path [CVE-2019-8076]
141639
Microsoft SharePoint Foundation cross-site request forgery [CVE-2019-1259]
141638
Microsoft Team Foundation Server/Azure DevOps Server cross site scripting
141637
Microsoft Windows AppX Deployment Server privileges management
141636
Microsoft ASP.NET Core Project Template input validation [CVE-2019-1302]
141635
Microsoft .NET Core input validation [CVE-2019-1301]
141634
Microsoft Edge information disclosure [CVE-2019-1299]
141633
Microsoft Excel memory corruption [CVE-2019-1297]
141632
Microsoft Windows Secure Boot input validation [CVE-2019-1294]
141631
Microsoft Windows SMB Client Driver information disclosure [CVE-2019-1293]
141630
Microsoft Windows memory corruption [CVE-2019-1292]
141629
Microsoft Windows Update Delivery Optimization privileges management
141628
Microsoft Windows Network Connectivity Assistant input validation
141627
Microsoft Windows GDI information disclosure [CVE-2019-1286]
141626
Microsoft Windows Win32k privileges management [CVE-2019-1285]
141625
Microsoft Windows DirectX memory corruption [CVE-2019-1284]
141624
Microsoft Windows Graphics Component information disclosure [CVE-2019-1283]
141623
Microsoft Windows unistore.dll privileges management [CVE-2019-1278]
141622
Microsoft Windows Audio Service privileges management [CVE-2019-1277]
141621
Microsoft Windows Kernel information disclosure [CVE-2019-1274]
141620
Microsoft Windows Active Directory Federation Services cross site scripting
141619
Microsoft Windows ALPC privileges management [CVE-2019-1272]
141618
Microsoft Windows hdAudio.sys privileges management [CVE-2019-1271]
141617
Microsoft Windows Store Installer privileges management [CVE-2019-1270]
141616
Microsoft Windows ALPC privileges management [CVE-2019-1269]
141615
Microsoft Windows Winlogon privileges management [CVE-2019-1268]
141614
Microsoft Windows Compatibility Appraiser privileges management
141613
Microsoft Exchange Server Outlook Web App input validation [CVE-2019-1266]
141612
Microsoft Yammer Security Feature Policy input validation
141611
Microsoft Office Security Feature input validation [CVE-2019-1264]
141610
Microsoft Excel information disclosure [CVE-2019-1263]
141609
Microsoft SharePoint Foundation cross site scripting [CVE-2019-1262]
141608
Microsoft SharePoint Enterprise Server cross-site request forgery
141607
Microsoft SharePoint Enterprise Server privileges management
141606
Microsoft Windows Win32k privileges management [CVE-2019-1256]
141605
Microsoft Windows Hyper-V information disclosure [CVE-2019-1254]
141604
Microsoft Windows AppX Deployment Server privileges management
141603
Microsoft Windows GDI information disclosure [CVE-2019-1252]
141602
Microsoft Windows DirectWrite information disclosure [CVE-2019-1251]
141601
Microsoft Windows JET Database Engine memory corruption [CVE-2019-1250]
141600
Microsoft Windows JET Database Engine memory corruption [CVE-2019-1249]
141599
Microsoft Windows JET Database Engine memory corruption [CVE-2019-1248]
141598
Microsoft Windows JET Database Engine memory corruption [CVE-2019-1247]
141597
Microsoft Windows JET Database Engine memory corruption [CVE-2019-1246]
141596
Microsoft Windows DirectWrite information disclosure [CVE-2019-1245]
141595
Microsoft Windows DirectWrite information disclosure [CVE-2019-1244]
141594
Microsoft Windows JET Database Engine memory corruption [CVE-2019-1243]
141593
Microsoft Windows JET Database Engine memory corruption [CVE-2019-1242]
141592
Microsoft Windows JET Database Engine memory corruption [CVE-2019-1241]
141591
Microsoft Windows JET Database Engine memory corruption [CVE-2019-1240]
141590
Microsoft Windows Text Service Framework input validation [CVE-2019-1235]
141589
Microsoft Exchange Server memory corruption [CVE-2019-1233]
141588
Microsoft Windows Diagnostics Hub Standard Collector Service privileges management
141587
Microsoft Rome SDK Certificate Validation certificate validation
141586
Microsoft Rome SDK Certificate Validation certificate validation
141585
Microsoft Internet Explorer Security Feature permission assignment
141584
Microsoft Edge Security Feature permission assignment [CVE-2019-1220]
141583
Microsoft Lync Server Conference information disclosure [CVE-2019-1209]
141582
Microsoft .NET Framework Common Language Runtime privileges management
141581
Microsoft Windows Hyper-V input validation [CVE-2019-0928]
141580
Microsoft Windows Transaction Manager information disclosure
141579
Microsoft Windows DirectX information disclosure [CVE-2019-1216]
141578
Microsoft Windows Winsock ws2ifsl.sys privileges management
141577
Microsoft Windows Common Log File System Driver privileges management
141576
Microsoft Team Foundation Server/Azure DevOps Server input validation
141575
Microsoft Windows lnk File input validation [CVE-2019-1280]
141574
Microsoft Internet Explorer VBScript memory corruption [CVE-2019-1236]
141573
Microsoft Internet Explorer VBScript memory corruption [CVE-2019-1208]
141572
Microsoft Internet Explorer Scripting Engine memory corruption
141571
Microsoft Edge/ChakraCore Chakra Scripting Engine memory corruption
141570
Microsoft Edge/ChakraCore Chakra Scripting Engine memory corruption
141569
Microsoft Edge/ChakraCore Chakra Scripting Engine memory corruption
141568
Microsoft Edge/ChakraCore Chakra Scripting Engine memory corruption
141567
Microsoft Edge/ChakraCore Chakra Scripting Engine memory corruption
141566
Microsoft SharePoint Enterprise Server API input validation [CVE-2019-1295]
141565
Microsoft SharePoint Enterprise Server API input validation [CVE-2019-1296]
141564
Microsoft SharePoint Enterprise Server Markup input validation
141563
Microsoft Windows Remote Desktop input validation [CVE-2019-0787]
141562
Microsoft Windows Remote Desktop input validation [CVE-2019-0788]
141561
Microsoft Windows Remote Desktop input validation [CVE-2019-1290]
141560
Microsoft Windows Remote Desktop input validation [CVE-2019-1291]
141559
Facebook Libra Core Inline Comment parser.rs input validation
141557
Vivotek IP Camera buffer overflow [CVE-2019-14457]
141556
Mendix Excel Importer Module server-side request forgery [CVE-2019-12996]
141555
TTLock Access Control password recovery [CVE-2019-12943]
141554
TTLock Guest Access privileges management [CVE-2019-12942]
141553
Micro Focus Service Manager Checkbox authorization [CVE-2019-11669]
141552
Micro Focus Service Manager Cookie information disclosure [CVE-2019-11668]
141551
Couchbase Server certificate validation [CVE-2019-11497]
141550
Couchbase Server Bucket Setting Reset improper authentication
141549
Couchbase Server epmd Service PRNG code injection
141548
Couchbase Server JSON Document resource consumption [CVE-2019-11467]
141547
Couchbase Server Eventing Debug Endpoint improper authentication
141546
Vivotek IPCam improper authentication [CVE-2019-10256]
141545
OnCommand Workflow Automation HTTP Header information disclosure
141544
Advantech WebAccess/SCADA RPC Message buffer overflow [CVE-2019-3975]
141543
MISP __checkLoggedActions privileges management
141542
Humanica Humatrix 7 Recruitment Module act_acounttab.cfm default permission
141541
LifterLMS Plugin class.llms.admin.import.php upload_import privileges management
141540
OpenSSL Bleichenbacher missing encryption [CVE-2019-1563]
141539
OpenSSL Random Number Generator random values [CVE-2019-1549]
141538
OpenSSL EC Group missing encryption [CVE-2019-1547]
141537
CentOS-WebPanel.com CentOS Web Panel Domain input validation
141536
CentOS-WebPanel.com CentOS Web Panel Subdomain input validation
141535
CentOS-WebPanel.com CentOS Web Panel Email Forwarding input validation
141534
CentOS-WebPanel.com CentOS Web Panel Email Password input validation
141533
CentOS-WebPanel.com CentOS Web Panel DNS Record input validation
141532
CentOS-WebPanel.com CentOS Web Panel Email input validation [CVE-2019-14723]
141531
CentOS-WebPanel.com CentOS Web Panel Email Forwarding input validation
141530
CentOS-WebPanel.com CentOS Web Panel User authorization [CVE-2019-14721]
141529
Apache Solr XML Document resource consumption [CVE-2019-12401]
141528
supervisor supervisord missing authentication [CVE-2019-12105]
141527
Couchbase Server Memcache information exposure [CVE-2019-11465]
141526
Couchbase Server HTTP Server Port 8092 cross site scripting [CVE-2019-11464]
141525
SAP Kernel resource consumption [CVE-2019-0365]
141524
SAP HANA Extended Application Services Endpoint Port input validation
141523
SAP HANA Extended Application Services Endpoint input validation
141522
SAP Supplier Relationship Management cross site scripting [CVE-2019-0361]
141521
SAP HANA Database privileges management [CVE-2019-0357]
141520
SAP NetWeaver Process Integration Runtime Workbench information disclosure
141519
SAP NetWeaver Application Server Java Web Container code injection
141518
SAP Business One Client information disclosure [CVE-2019-0353]
141517
SAP Business Intelligence Platform Cache information disclosure
141516
magic-fields Plugin RCCWP_CreateCustomFieldPage.php cross site scripting
141515
magic-fields Plugin RCCWP_CreateCustomFieldPage.php cross site scripting
141514
magic-fields Plugin cross site scripting [CVE-2017-18609]
141513
spotim-comments Plugin cross site scripting [CVE-2017-18608]
141512
avada Theme cross-site request forgery [CVE-2017-18607]
141511
avada Theme Stored cross site scripting [CVE-2017-18606]
141510
gravitate-qa-tracker Plugin deserialization [CVE-2017-18605]
141509
sitebuilder-dynamic-components Plugin Ajax deserialization [CVE-2017-18604]
141508
postman-smtp Plugin cross site scripting [CVE-2017-18603]
141507
examapp Plugin sql injection [CVE-2017-18602]
141506
examapp Plugin Input Text Field cross site scripting [CVE-2017-18601]
141505
formcraft3 Plugin Stored cross site scripting [CVE-2017-18600]
141504
Pinfinity Theme cross site scripting [CVE-2017-18599]
141503
Qards Plugin html2canvasproxy.php cross site scripting
141502
jtrt-responsive-tables Plugin class-jtrt-responsive-tables-admin.php sql injection
141501
elementor Plugin Access Control privileges management [CVE-2017-18596]
141500
GitLab Community Edition/Enterprise Edition Access Control authorization
🔒
141499
GitLab Community Edition/Enterprise Edition Access Control information disclosure
🔒
141498
GitLab Enterprise Edition Access Control information disclosure
🔒
141497
GitLab Community Edition/Enterprise Edition Access Control permissions
🔒
141496
GitLab Community Edition/Enterprise Edition Access Control privileges management
🔒
141495
GitLab Community Edition/Enterprise Edition input validation
🔒
141494
GitLab Community Edition/Enterprise Edition Project Import Commit information disclosure
🔒
141493
GitLab Community Edition/Enterprise Edition Jira Integration server-side request forgery
🔒
141492
GitLab Community Edition/Enterprise Edition Project Import Error information disclosure
🔒
141491
GitLab Community Edition/Enterprise Edition Access Control permissions
🔒
141490
GitLab Community Edition/Enterprise Edition Permission information disclosure
🔒
141489
GitLab Community Edition/Enterprise Edition information disclosure
🔒
141488
GitLab Community Edition/Enterprise Edition Access Control input validation
🔒
141487
GitLab Community Edition/Enterprise Edition Project Import input validation
🔒
141486
GitLab Community Edition/Enterprise Edition KaTeX Persistent cross site scripting
🔒
141485
GitLab Community Edition/Enterprise Edition path traversal [CVE-2019-6783]
🔒
141484
GitLab Community Edition/Enterprise Edition Project information disclosure
🔒
141483
Seneca Environment Variable information exposure [CVE-2019-5483]
141482
GitLab Community Edition/Enterprise Edition Email Verification improper authentication
141481
GitLab Community Edition/Enterprise Edition Email Notification Persistent cross site scripting
141480
GitLab Community Edition/Enterprise Edition Wiki Page Persistent cross site scripting
141479
GitLab Community Edition/Enterprise Edition Authorization authorization
141478
GitLab Community Edition/Enterprise Edition Service Integration Internal input validation
141477
DocCms Module Management File managemodel.php upload_model privileges management
141476
D-Link DIR-868L REVB/DIR-885L REVA/DIR-895L REVA SharePort Web Access folder_view.php improper authentication
141475
LimeSurvey Cookie httponly information disclosure
141474
LimeSurvey Plugin Manager default permission [CVE-2019-16186]
141473
LimeSurvey Permission default permission [CVE-2019-16185]
141472
LimeSurvey Response injection [CVE-2019-16184]
141471
LimeSurvey Integrity Check default permission [CVE-2019-16183]
141470
LimeSurvey File Upload Reflected cross site scripting
141469
LimeSurvey Notification input validation [CVE-2019-16181]
141468
LimeSurvey LDAP Authentication Brute Force information disclosure
141467
LimeSurvey Default Configuration TLS certificate validation
141466
LimeSurvey Home Page Stored cross site scripting
141465
LimeSurvey Cache information disclosure [CVE-2019-16177]
141464
LimeSurvey information disclosure [CVE-2019-16176]
141463
LimeSurvey improper restriction of rendered ui layers [CVE-2019-16175]
141462
LimeSurvey Import xml external entity reference [CVE-2019-16174]
141461
LimeSurvey Survey_Common_Action.php Reflected cross site scripting
141460
LimeSurvey Stored cross site scripting [CVE-2019-16172]
141459
SQLite sqlite3.c whereLoopAddBtreeIndex divide by zero
141458
sysstat sa_common.c remap_struct integer overflow
141457
GNU cflow parser.c nexttoken out-of-bounds read
141456
GNU cflow parser.c reference use after free
141455
MyHTML tree.c myhtml_tree_node_remove null pointer dereference
141454
Oniguruma regcomp.c resource consumption
141453
Onigmo regenc.c parse_char_class out-of-bounds read
141452
Onigmo regparse.c onig_error_code_to_str null pointer dereference
141451
Liferay Portal Article Title page.jsp cross site scripting
141450
Breadcrumbs Contributed Module Caption cross site scripting [CVE-2019-16145]
141449
Sangoma Asterisk Invite res_pjsip_t38 null pointer dereference
141448
Apache Traffic Control LDAP improper authentication [CVE-2019-12405]
141447
GitLab Community Edition/Enterprise Edition API Endpoint information disclosure
141446
GitLab Community Edition/Enterprise Edition Connection Error Credentials information disclosure
141445
GitLab Community Edition/Enterprise Edition Access Control cross site scripting
141444
GitLab Community Edition/Enterprise Edition Branch Name cross site scripting
141443
GitLab Community Edition/Enterprise Edition race condition [CVE-2019-11546]
141442
GitLab Community Edition/Enterprise Edition Private Project information disclosure
141441
GitLab Community Edition/Enterprise Edition Notifications information disclosure
141440
BIRD Internet Routing Daemon BGP Daemon buffer overflow [CVE-2019-16159]
141439
Sakai Chat User Name cross site scripting [CVE-2019-16148]
141438
Gophish cross site scripting [CVE-2019-16146]
141437
Generator Crate Scope input validation [CVE-2019-16144]
141436
blake2 Crate HMAC input validation [CVE-2019-16143]
141435
renderdoc Crate Multi-Threading input validation [CVE-2019-16142]
141434
once_cell Crate Lazy Panic input validation
141433
chttp Crate use after free [CVE-2019-16140]
141432
compact_arena Crate out-of-bounds write [CVE-2019-16139]
141431
Image Crate HDR Image Decoder set_len use after free
141430
Spin Crate RwLock Memory memory corruption
141429
eteams OA Session Password session expiration
141428
OKLite tpl_control.php path traversal
141427
OKLite File Upload modulec_control.php unrestricted upload
141426
YII2-CMS Contact.php cross site scripting
141425
Grav Stored cross site scripting [CVE-2019-16126]
141424
Jobberbase page_subscribe.php sql injection
141423
YouPHPTube Configuration File checkConfiguration.php privileges management
141422
Kartatopia PilusCart catalog.php path traversal
141421
ATutor header.php access control
141420
Search Exclude Plugin Option search-exclude.php access control
141419
Sangoma Asterisk RTP Packet translate.c input validation
141418
LibreNMS ajax_rulesuggest.php sql injection
141417
LibreNMS pdf.php path traversal
141416
LibreNMS Graphing Option common.inc.php code injection
141415
LibreNMS graph.php sql injection
141414
LibreNMS inventory.inc.php mysqli_escape_real_string cross site scripting
141413
LibreNMS collectd.inc.php passthru injection
141412
LibreNMS Authentication Library improper authentication [CVE-2019-10668]
141411
LibreNMS Path Fingerprint information disclosure
141410
LibreNMS csv.php include code injection
141409
LibreNMS Graphing Option common.inc.php input validation
141408
buddyboss-media Plugin Stored cross site scripting [CVE-2018-21014]
141407
Swape Theme Access Control admin-ajax.php privileges management
141406
cf7-invisible-recaptcha Plugin cross site scripting [CVE-2018-21012]
141405
charitable Plugin Donation information disclosure [CVE-2018-21011]
141404
event-tickets Plugin Export injection [CVE-2019-16120]
141403
photo-gallery Plugin Albumsgalleries.php sql injection
141402
photo-gallery Plugin Options.php cross site scripting
141401
photo-gallery Plugin Galleries.php cross site scripting
141400
Xpdf Function.cc transform memory corruption
141399
Bludit upload-images.php code injection
141398
Plataformatec Device Confirmation Token input validation [CVE-2019-16109] [Disputed]
141397
Silver Peak EdgeConnect SD-WAN path traversal [CVE-2019-16105]
141396
Silver Peak EdgeConnect SD-WAN Reflected cross site scripting
141395
Silver Peak EdgeConnect SD-WAN spsshell access control [CVE-2019-16103]
141394
Silver Peak EdgeConnect SD-WAN SNMP Service input validation
141393
Silver Peak EdgeConnect SD-WAN REST API banners Trace information disclosure
141392
Silver Peak EdgeConnect SD-WAN Web Interface Slow input validation
141391
Silver Peak EdgeConnect SD-WAN SWF File cross-site request forgery
141390
Harbor API user.go access control
141389
IMAPFilter SSL Certificate Validator certificate validation [CVE-2016-10937]
141388
Kilo Tab integer overflow [CVE-2019-16096]
141387
Symonics libmysofa reader.c getDimension out-of-bounds read
141386
Symonics libmysofa dataobject.c readOHDRHeaderMessageDataLayout out-of-bounds read
141385
Symonics libmysofa dataobject.c readOHDRHeaderMessageDataLayout out-of-bounds write
141384
Symonics libmysofa reader.c getHrtf null pointer dereference
141383
Symonics libmysofa fractalhead.c directblockRead out-of-bounds read
141382
LibreOffice LibreLogo path error [CVE-2019-9855]
141381
LibreOffice URL Encoding python access control
141380
Google Android VPN Routing information disclosure [CVE-2019-9461]
141379
Google Android Video Driver race condition [CVE-2019-9458]
141378
Google Android ELF File Loader integer overflow [CVE-2019-9457]