Lista CVE - 2019 / Maggio
Visualizzazione 301 - 400 di 1316 CVE per Maggio 2019 (Pagina 4 di 14)
| ID CVE | Data | Titolo |
|---|---|---|
| CVE-2019-11886 | 2019-05-13 | The WaspThemes Visual CSS Style Editor (aka yellow-pencil-visual-theme-customizer) plugin before... |
| CVE-2018-20838 | 2019-05-13 | ampforwp_save_steps_data in the AMP for WP plugin before 0.9.97.21 for... |
| CVE-2019-11888 | 2019-05-13 | Go through 1.12.5 on Windows mishandles process creation with a... |
| CVE-2019-12041 | 2019-05-13 | lib/common/html_re.js in remarkable 1.7.1 allows Regular Expression Denial of Service... |
| CVE-2018-19037 | 2019-05-13 | On Virgin Media wireless router 3.0 hub devices, the web... |
| CVE-2018-14710 | 2019-05-13 | Cross-site scripting in appGet.cgi on ASUS RT-AC3200 version 3.0.0.4.382.50010 allows... |
| CVE-2018-14711 | 2019-05-13 | Missing cross-site request forgery protection in appGet.cgi on ASUS RT-AC3200... |
| CVE-2018-14712 | 2019-05-13 | Buffer overflow in appGet.cgi on ASUS RT-AC3200 version 3.0.0.4.382.50010 allows... |
| CVE-2018-14713 | 2019-05-13 | Format string vulnerability in appGet.cgi on ASUS RT-AC3200 version 3.0.0.4.382.50010... |
| CVE-2018-14714 | 2019-05-13 | System command injection in appGet.cgi on ASUS RT-AC3200 version 3.0.0.4.382.50010... |
| CVE-2018-12295 | 2019-05-13 | SQL injection in folderViewSpecific.psp in Seagate NAS OS version 4.3.15.1... |
| CVE-2018-12296 | 2019-05-13 | Insufficient access control in /api/external/7.0/system.System.get_infos in Seagate NAS OS version... |
| CVE-2018-12297 | 2019-05-13 | Cross-site scripting in API error pages in Seagate NAS OS... |
| CVE-2018-12298 | 2019-05-13 | Directory Traversal in filebrowser in Seagate NAS OS 4.3.15.1 allows... |
| CVE-2018-12299 | 2019-05-13 | Cross-site scripting in filebrowser in Seagate NAS OS version 4.3.15.1... |
| CVE-2018-12300 | 2019-05-13 | Arbitrary Redirect in echo-server.html in Seagate NAS OS version 4.3.15.1... |
| CVE-2018-12301 | 2019-05-13 | Unvalidated URL in Download Manager in Seagate NAS OS version... |
| CVE-2018-12302 | 2019-05-13 | Missing HTTPOnly flag on session cookies in the Seagate NAS... |
| CVE-2018-12303 | 2019-05-13 | Cross-site scripting in filebrowser in Seagate NAS OS version 4.3.15.1... |
| CVE-2018-12304 | 2019-05-13 | Cross-site scripting in Application Manager in Seagate NAS OS version... |
| CVE-2018-15530 | 2019-05-13 | Cross-site scripting (XSS) in the web interface of the Xerox... |
| CVE-2018-18558 | 2019-05-13 | An issue was discovered in Espressif ESP-IDF 2.x and 3.x... |
| CVE-2018-16639 | 2019-05-13 | Typesetter 5.1 allows XSS via the index.php/Admin LABEL parameter during... |
| CVE-2018-16626 | 2019-05-13 | index.php/Admin/Classes in Typesetter 5.1 allows XSS via the description of... |
| CVE-2018-16625 | 2019-05-13 | index.php/Admin/Uploaded in Typesetter 5.1 allows XSS via an SVG file... |
| CVE-2018-16624 | 2019-05-13 | panel/pages/home/edit in Kirby v2.5.12 allows XSS via the title of... |
| CVE-2018-16623 | 2019-05-13 | Kirby V2.5.12 is prone to a Persistent XSS attack via... |
| CVE-2018-18524 | 2019-05-13 | Evernote 6.15 on Windows has an incorrectly repaired stored XSS... |
| CVE-2018-18872 | 2019-05-13 | The Kieran O'Shea Calendar plugin before 1.3.11 for WordPress has... |
| CVE-2019-12043 | 2019-05-13 | In remarkable 1.7.1, lib/parser_inline.js mishandles URL filtering, which allows attackers... |
| CVE-2018-19048 | 2019-05-13 | Simditor through 2.3.21 allows DOM XSS via an onload attribute... |
| CVE-2018-15128 | 2019-05-13 | An issue was discovered in Polycom Group Series 6.1.6.1 and... |
| CVE-2018-19986 | 2019-05-13 | In the /HNAP1/SetRouterSettings message, the RemotePort parameter is vulnerable, and... |
| CVE-2018-19987 | 2019-05-13 | D-Link DIR-822 Rev.B 202KRb06, DIR-822 Rev.C 3.10B06, DIR-860L Rev.B 2.03.B03,... |
| CVE-2018-19988 | 2019-05-13 | In the /HNAP1/SetClientInfoDemo message, the AudioMute and AudioEnable parameters are... |
| CVE-2018-19989 | 2019-05-13 | In the /HNAP1/SetQoSSettings message, the uplink parameter is vulnerable, and... |
| CVE-2018-19990 | 2019-05-13 | In the /HNAP1/SetWiFiVerifyAlpha message, the WPSPIN parameter is vulnerable, and... |
| CVE-2012-6652 | 2019-05-13 | Directory traversal vulnerability in pageflipbook.php script from index.php in Page... |
| CVE-2019-8350 | 2019-05-13 | The Simple - Better Banking application 2.45.0 through 2.45.3 (fixed... |
| CVE-2019-7404 | 2019-05-13 | An issue was discovered on LG GAMP-7100, GAPM-7200, and GAPM-8000... |
| CVE-2019-7411 | 2019-05-13 | Multiple stored cross-site scripting (XSS) in the MyThemeShop Launcher plugin... |
| CVE-2019-7409 | 2019-05-13 | Multiple cross-site scripting (XSS) vulnerabilities in ProfileDesign CMS v6.0.2.5 allows... |
| CVE-2019-3684 | 2019-05-13 | susemanager installer creates world-readable swap files |
| CVE-2019-12047 | 2019-05-13 | Gridea v0.8.0 has an XSS vulnerability through which the Nodejs... |
| CVE-2019-11429 | 2019-05-13 | CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.793 (Free/Open Source Version),... |
| CVE-2018-4014 | 2019-05-13 | An exploitable code execution vulnerability exists in Wi-Fi Command 9999... |
| CVE-2018-4016 | 2019-05-13 | An exploitable code execution vulnerability exists in the URL-parsing functionality... |
| CVE-2018-4017 | 2019-05-13 | An exploitable vulnerability exists in the Wi-Fi Access Point feature... |
| CVE-2018-4023 | 2019-05-13 | An exploitable code execution vulnerability exists in the XML_UploadFile Wi-Fi... |
| CVE-2018-4026 | 2019-05-13 | An exploitable denial-of-service vulnerability exists in the XML_GetScreen Wi-Fi command... |
| CVE-2018-4025 | 2019-05-13 | An exploitable denial-of-service vulnerability exists in the XML_GetRawEncJpg Wi-Fi command... |
| CVE-2018-4018 | 2019-05-13 | An exploitable firmware update vulnerability exists in the NT9665X Chipset... |
| CVE-2018-4028 | 2019-05-13 | An exploitable firmware update vulnerability exists in the NT9665X Chipset... |
| CVE-2018-4027 | 2019-05-13 | An exploitable denial-of-service vulnerability exists in the XML_UploadFile Wi-Fi command... |
| CVE-2018-4024 | 2019-05-13 | An exploitable denial-of-service vulnerability exists in the thumbnail display functionality... |
| CVE-2018-4029 | 2019-05-13 | An exploitable code execution vulnerability exists in the HTTP request-parsing... |
| CVE-2015-9287 | 2019-05-13 | Directory Traversal was discovered in University of Cambridge mod_ucam_webauth before... |
| CVE-2019-4259 | 2019-05-13 | A security vulnerability has been identified in IBM Spectrum Scale... |
| CVE-2019-7690 | 2019-05-13 | In MobaTek MobaXterm Personal Edition v11.1 Build 3860, the SSH... |
| CVE-2019-8342 | 2019-05-13 | A Local Privilege Escalation in libqcocoa.dylib in Foxit Reader 3.1.0.0111... |
| CVE-2019-10050 | 2019-05-13 | A buffer over-read issue was discovered in Suricata 4.1.x before... |
| CVE-2019-9726 | 2019-05-13 | Directory Traversal / Arbitrary File Read in eQ-3 AG Homematic... |
| CVE-2019-9727 | 2019-05-13 | Unauthenticated password hash disclosure in the User.getUserPWD method in eQ-3... |
| CVE-2019-3702 | 2019-05-13 | A Remote Code Execution issue in the DNS Query Web... |
| CVE-2019-11680 | 2019-05-13 | KonaKart 8.9.0.0 is vulnerable to Remote Code Execution by uploading... |
| CVE-2019-7217 | 2019-05-13 | Citrix ShareFile before 19.12 allows User Enumeration. It is possible... |
| CVE-2019-7218 | 2019-05-13 | Citrix ShareFile before 19.23 allows a downgrade from two-factor authentication... |
| CVE-2018-18912 | 2019-05-13 | An issue was discovered in Easy File Sharing (EFS) Web... |
| CVE-2019-12083 | 2019-05-13 | The Rust Programming Language Standard Library 1.34.x before 1.34.2 contains... |
| CVE-2019-1649 | 2019-05-13 | Cisco Secure Boot Hardware Tampering Vulnerability |
| CVE-2019-1862 | 2019-05-13 | Cisco IOS XE Software Web UI Command Injection Vulnerability |
| CVE-2018-16139 | 2019-05-13 | Cross-site scripting (XSS) vulnerability in BIBLIOsoft BIBLIOpac 2008 allows remote... |
| CVE-2019-11600 | 2019-05-13 | A SQL injection vulnerability in the activities API in OpenProject... |
| CVE-2019-10053 | 2019-05-13 | An issue was discovered in Suricata 4.1.x before 4.1.4. If... |
| CVE-2018-16136 | 2019-05-13 | An issue was discovered in the administrator interface in IPBRICK... |
| CVE-2018-16137 | 2019-05-13 | An issue was discovered in the Web Management Console in... |
| CVE-2018-16138 | 2019-05-13 | An issue was discovered in the administration page in IPBRICK... |
| CVE-2019-8951 | 2019-05-13 | An Open Redirect vulnerability located in the webserver affects several... |
| CVE-2019-8952 | 2019-05-13 | A Path Traversal vulnerability located in the webserver affects several... |
| CVE-2019-9618 | 2019-05-13 | The GraceMedia Media Player plugin 1.0 for WordPress allows Local... |
| CVE-2019-12087 | 2019-05-14 | Samsung S9+, S10, and XCover 4 P(9.0) devices can become... |
| CVE-2019-11336 | 2019-05-14 | Sony Bravia Smart TV devices allow remote attackers to retrieve... |
| CVE-2018-18800 | 2019-05-14 | The Tubigan "Welcome to our Resort" 1.0 software allows SQL... |
| CVE-2019-6512 | 2019-05-14 | An issue was discovered in WSO2 API Manager 2.6.0. It... |
| CVE-2019-6514 | 2019-05-14 | An issue was discovered in WSO2 Dashboard Server 2.0.0. It... |
| CVE-2019-6515 | 2019-05-14 | An issue was discovered in WSO2 API Manager 2.6.0. Uploaded... |
| CVE-2019-6516 | 2019-05-14 | An issue was discovered in WSO2 Dashboard Server 2.0.0. It... |
| CVE-2019-8390 | 2019-05-14 | qdPM 9.1 suffers from Cross-site Scripting (XSS) in the search[keywords]... |
| CVE-2019-8391 | 2019-05-14 | qdPM 9.1 suffers from Cross-site Scripting (XSS) via configuration?type=[XSS] parameter. |
| CVE-2018-11691 | 2019-05-14 | Emerson DeltaV Smart Switch Command Center application, available in versions... |
| CVE-2019-8404 | 2019-05-14 | An issue was discovered in Webiness Inventory 2.3. The ProductModel... |
| CVE-2019-8923 | 2019-05-14 | XAMPP through 5.6.8 and previous allows SQL injection via the... |
| CVE-2019-9861 | 2019-05-14 | Due to the use of an insecure RFID technology (MIFARE... |
| CVE-2019-11846 | 2019-05-14 | /servlets/ajax_file_upload?fieldName=binary3 in dotCMS 5.1.1 allows XSS and HTML Injection. |
| CVE-2019-11845 | 2019-05-14 | An HTML Injection vulnerability has been discovered on the RICOH... |
| CVE-2019-11844 | 2019-05-14 | An HTML Injection vulnerability has been discovered on the RICOH... |
| CVE-2019-11419 | 2019-05-14 | vcodec2_hls_filter in libvoipCodec_v7a.so in the WeChat application through 7.0.3 for... |
| CVE-2018-8940 | 2019-05-14 | ClientServiceConfigController.cs in Enghouse Cloud Contact Center Platform 7.2.5 has functionality... |
| CVE-2018-6885 | 2019-05-14 | An issue was discovered in MicroStrategy Web Services (the Microsoft... |
| CVE-2019-8978 | 2019-05-14 | An improper authentication vulnerability can be exploited through a race... |