Lista CVE - 2019 / Ottobre
Visualizzazione 1101 - 1200 di 1566 CVE per Ottobre 2019 (Pagina 12 di 16)
| ID CVE | Data | Titolo |
|---|---|---|
| CVE-2019-16862 | 2019-10-21 | Reflected XSS in interface/forms/eye_mag/view.php in OpenEMR 5.x before 5.0.2.1 allows... |
| CVE-2019-18217 | 2019-10-21 | ProFTPD before 1.3.6b and 1.3.7rc before 1.3.7rc2 allows remote unauthenticated... |
| CVE-2019-18218 | 2019-10-21 | cdf_read_property_info in cdf.c in file through 5.37 does not restrict... |
| CVE-2019-16530 | 2019-10-21 | Sonatype Nexus Repository Manager 2.x before 2.14.15 and 3.x before... |
| CVE-2019-16978 | 2019-10-21 | In FusionPBX up to v4.5.7, the file app\devices\device_settings.php uses an... |
| CVE-2019-16980 | 2019-10-21 | In FusionPBX up to v4.5.7, the file app\call_broadcast\call_broadcast_edit.php uses an... |
| CVE-2019-16979 | 2019-10-21 | In FusionPBX up to v4.5.7, the file app\contacts\contact_urls.php uses an... |
| CVE-2019-16990 | 2019-10-21 | In FusionPBX up to v4.5.7, the file app/music_on_hold/music_on_hold.php uses an... |
| CVE-2019-16982 | 2019-10-21 | In FusionPBX up to v4.5.7, the file app\access_controls\access_control_nodes.php uses an... |
| CVE-2019-16981 | 2019-10-21 | In FusionPBX up to v4.5.7, the file app\conference_profiles\conference_profile_params.php uses an... |
| CVE-2019-16983 | 2019-10-21 | In FusionPBX up to v4.5.7, the file resources\paging.php has a... |
| CVE-2019-16984 | 2019-10-21 | In FusionPBX up to v4.5.7, the file app\recordings\recording_play.php uses an... |
| CVE-2019-16985 | 2019-10-21 | In FusionPBX up to v4.5.7, the file app\xml_cdr\xml_cdr_delete.php uses an... |
| CVE-2019-16987 | 2019-10-21 | In FusionPBX up to v4.5.7, the file app\contacts\contact_import.php uses an... |
| CVE-2019-16986 | 2019-10-21 | In FusionPBX up to v4.5.7, the file resources\download.php uses an... |
| CVE-2019-16989 | 2019-10-21 | In FusionPBX up to v4.5.7, the file app\conferences_active\conference_interactive.php uses an... |
| CVE-2019-16991 | 2019-10-21 | In FusionPBX up to v4.5.7, the file app\edit\filedelete.php uses an... |
| CVE-2019-16988 | 2019-10-21 | In FusionPBX up to v4.5.7, the file app\basic_operator_panel\resources\content.php uses an... |
| CVE-2019-18224 | 2019-10-21 | idn2_to_ascii_4i in lib/lookup.c in GNU libidn2 before 2.1.1 has a... |
| CVE-2019-18225 | 2019-10-21 | An issue was discovered in Citrix Application Delivery Controller (ADC)... |
| CVE-2019-18203 | 2019-10-21 | On the RICOH MP 501 printer, HTML Injection and Stored... |
| CVE-2019-16964 | 2019-10-21 | app/call_centers/cmd.php in the Call Center Queue Module in FusionPBX up... |
| CVE-2019-9491 | 2019-10-21 | Trend Micro Anti-Threat Toolkit (ATTK) versions 1.62.0.1218 and below have... |
| CVE-2019-16965 | 2019-10-21 | resources/cmd.php in FusionPBX up to 4.5.7 suffers from a command... |
| CVE-2019-16966 | 2019-10-21 | An issue was discovered in Contactmanager 13.x before 13.0.45.3, 14.x... |
| CVE-2019-16967 | 2019-10-21 | An issue was discovered in Manager 13.x before 13.0.2.6 and... |
| CVE-2019-16968 | 2019-10-21 | An issue was discovered in FusionPBX up to 4.5.7. In... |
| CVE-2019-16970 | 2019-10-21 | In FusionPBX up to 4.5.7, the file app\sip_status\sip_status.php uses an... |
| CVE-2019-17220 | 2019-10-21 | Rocket.Chat before 2.1.0 allows XSS via a URL on a... |
| CVE-2019-16969 | 2019-10-21 | In FusionPBX up to 4.5.7, the file app\fifo_list\fifo_interactive.php uses an... |
| CVE-2019-16974 | 2019-10-21 | In FusionPBX up to 4.5.7, the file app\contacts\contact_times.php uses an... |
| CVE-2019-17400 | 2019-10-21 | The unoconv package before 0.9 mishandles untrusted pathnames, leading to... |
| CVE-2019-16404 | 2019-10-21 | Authenticated SQL Injection in interface/forms/eye_mag/js/eye_base.php in OpenEMR through 5.0.2 allows... |
| CVE-2019-17424 | 2019-10-22 | A stack-based buffer overflow in the processPrivilage() function in IOS/process-general.c... |
| CVE-2019-4523 | 2019-10-22 | IBM DB2 High Performance Unload load for LUW 6.1 and... |
| CVE-2019-17189 | 2019-10-22 | totemodata 3.0.0_b936 has XSS via a folder name. |
| CVE-2019-11674 | 2019-10-22 | Man-in-the-middle vulnerability in Micro Focus Self Service Password Reset, affecting... |
| CVE-2019-12967 | 2019-10-22 | Stephan Mooltipass Moolticute through 0.42.1 (and possibly earlier versions) has... |
| CVE-2019-12290 | 2019-10-22 | GNU libidn2 before 2.2.0 fails to perform the roundtrip checks... |
| CVE-2019-12148 | 2019-10-22 | The Sangoma Session Border Controller (SBC) 2.3.23-119 GA web interface... |
| CVE-2019-10079 | 2019-10-22 | Apache Traffic Server is vulnerable to HTTP/2 setting flood attacks.... |
| CVE-2019-12147 | 2019-10-22 | The Sangoma Session Border Controller (SBC) 2.3.23-119 GA web interface... |
| CVE-2017-8087 | 2019-10-22 | Information Leakage in PPPoE Packet Padding in AVM Fritz!Box 7490... |
| CVE-2015-9493 | 2019-10-22 | The my-wish-list plugin before 1.4.2 for WordPress has multiple XSS... |
| CVE-2015-9494 | 2019-10-22 | The indieweb-post-kinds plugin before 1.3.1.1 for WordPress has XSS via... |
| CVE-2015-9495 | 2019-10-22 | The syndication-links plugin before 1.0.3 for WordPress has XSS via... |
| CVE-2019-15587 | 2019-10-22 | In the Loofah gem for Ruby through v2.3.0 unsanitized JavaScript... |
| CVE-2015-9496 | 2019-10-22 | The freshmail-newsletter plugin before 1.6 for WordPress has shortcode.php SQL... |
| CVE-2015-9497 | 2019-10-22 | The ad-inserter plugin before 1.5.3 for WordPress has CSRF with... |
| CVE-2015-9498 | 2019-10-22 | The wps-hide-login plugin before 1.1 for WordPress has CSRF that... |
| CVE-2015-9499 | 2019-10-22 | The Showbiz Pro plugin through 1.7.1 for WordPress has PHP... |
| CVE-2019-8089 | 2019-10-22 | Adobe Experience Manager Forms versions 6.3-6.5 have a reflected cross-site... |
| CVE-2015-9500 | 2019-10-22 | The Exquisite Ultimate Newspaper theme 1.3.3 for WordPress has XSS... |
| CVE-2015-9501 | 2019-10-22 | The Artificial Intelligence theme before 1.2.4 for WordPress has XSS... |
| CVE-2019-16971 | 2019-10-22 | In FusionPBX up to 4.5.7, the file app\messages\messages_thread.php uses an... |
| CVE-2019-16972 | 2019-10-22 | In FusionPBX up to 4.5.7, the file app\contacts\contact_addresses.php uses an... |
| CVE-2019-16973 | 2019-10-22 | In FusionPBX up to 4.5.7, the file app\contacts\contact_edit.php uses an... |
| CVE-2019-14276 | 2019-10-23 | WUSTL XNAT 1.7.5.3 allows XXE attacks via a POST request... |
| CVE-2019-10459 | 2019-10-23 | Jenkins Mattermost Notification Plugin 2.7.0 and earlier stored webhook URLs... |
| CVE-2019-10460 | 2019-10-23 | Jenkins Bitbucket OAuth Plugin 0.9 and earlier stored credentials unencrypted... |
| CVE-2019-10461 | 2019-10-23 | Jenkins Dynatrace Application Monitoring Plugin 2.1.3 and earlier stored credentials... |
| CVE-2019-10462 | 2019-10-23 | A cross-site request forgery vulnerability in Jenkins Dynatrace Application Monitoring... |
| CVE-2019-10463 | 2019-10-23 | A missing permission check in Jenkins Dynatrace Application Monitoring Plugin... |
| CVE-2019-10464 | 2019-10-23 | A cross-site request forgery vulnerability in Jenkins Deploy WebLogic Plugin... |
| CVE-2019-10465 | 2019-10-23 | A missing permission check in Jenkins Deploy WebLogic Plugin allows... |
| CVE-2019-10466 | 2019-10-23 | An XML external entities (XXE) vulnerability in Jenkins 360 FireLine... |
| CVE-2019-10467 | 2019-10-23 | Jenkins Sonar Gerrit Plugin stores credentials unencrypted in job config.xml... |
| CVE-2019-10468 | 2019-10-23 | A cross-site request forgery vulnerability in Jenkins ElasticBox Jenkins Kubernetes... |
| CVE-2019-10469 | 2019-10-23 | A missing permission check in Jenkins ElasticBox Jenkins Kubernetes CI/CD... |
| CVE-2019-10470 | 2019-10-23 | A missing permission check in Jenkins ElasticBox Jenkins Kubernetes CI/CD... |
| CVE-2019-10471 | 2019-10-23 | A cross-site request forgery vulnerability in Jenkins Libvirt Slaves Plugin... |
| CVE-2019-10472 | 2019-10-23 | A missing permission check in Jenkins Libvirt Slaves Plugin allows... |
| CVE-2019-10473 | 2019-10-23 | A missing permission check in Jenkins Libvirt Slaves Plugin in... |
| CVE-2019-10474 | 2019-10-23 | A missing permission check in Jenkins Global Post Script Plugin... |
| CVE-2019-10475 | 2019-10-23 | A reflected cross-site scripting vulnerability in Jenkins build-metrics Plugin allows... |
| CVE-2019-10476 | 2019-10-23 | Jenkins Zulip Plugin 1.1.0 and earlier stored credentials unencrypted in... |
| CVE-2019-18277 | 2019-10-23 | A flaw was found in HAProxy before 2.0.6. In legacy... |
| CVE-2019-18219 | 2019-10-23 | Sitemagic CMS 4.4.1 is affected by a Cross-Site-Scripting (XSS) vulnerability,... |
| CVE-2019-18220 | 2019-10-23 | Sitemagic CMS 4.4.1 is affected by a Cross-Site-Request-Forgery (CSRF) issue... |
| CVE-2019-18278 | 2019-10-23 | When executing VideoLAN VLC media player 3.0.8 with libqt on... |
| CVE-2019-18280 | 2019-10-23 | Sourcecodester Online Grading System 1.0 is affected by a Cross... |
| CVE-2019-18281 | 2019-10-23 | An out-of-bounds memory access in the generateDirectionalRuns() function in qtextengine.cpp... |
| CVE-2019-16976 | 2019-10-23 | In FusionPBX up to 4.5.7, the file app\destinations\destination_imports.php uses an... |
| CVE-2019-18344 | 2019-10-23 | Sourcecodester Online Grading System 1.0 is vulnerable to unauthenticated SQL... |
| CVE-2019-11282 | 2019-10-23 | UAA is vulnerable to a Blind SCIM injection leading to information disclosure |
| CVE-2019-11283 | 2019-10-23 | Password leak in smbdriver logs |
| CVE-2019-11933 | 2019-10-23 | A heap buffer overflow bug in libpl_droidsonroids_gif before 1.2.19, as... |
| CVE-2015-9536 | 2019-10-23 | The Easy Digital Downloads (EDD) Twenty-Twelve theme for WordPress, as... |
| CVE-2019-16975 | 2019-10-23 | In FusionPBX up to 4.5.7, the file app\contacts\contact_notes.php uses an... |
| CVE-2015-9535 | 2019-10-23 | The Easy Digital Downloads (EDD) Shoppette theme for WordPress, as... |
| CVE-2015-9534 | 2019-10-23 | The Easy Digital Downloads (EDD) Quota theme for WordPress, as... |
| CVE-2015-9533 | 2019-10-23 | The Easy Digital Downloads (EDD) Lattice theme for WordPress, as... |
| CVE-2015-9532 | 2019-10-23 | The Easy Digital Downloads (EDD) Digital Store theme for WordPress,... |
| CVE-2015-9531 | 2019-10-23 | The Easy Digital Downloads (EDD) Wish Lists extension for WordPress,... |
| CVE-2015-9530 | 2019-10-23 | The Easy Digital Downloads (EDD) Upload File extension for WordPress,... |
| CVE-2015-9529 | 2019-10-23 | The Easy Digital Downloads (EDD) Stripe extension for WordPress, as... |
| CVE-2015-9528 | 2019-10-23 | The Easy Digital Downloads (EDD) Software Licensing extension for WordPress,... |
| CVE-2015-9527 | 2019-10-23 | The Easy Digital Downloads (EDD) Simple Shipping extension for WordPress,... |
| CVE-2015-9526 | 2019-10-23 | The Easy Digital Downloads (EDD) Reviews extension for WordPress, as... |
| CVE-2015-9525 | 2019-10-23 | The Easy Digital Downloads (EDD) Recurring Payments extension for WordPress,... |