Lista CVE - 2019 / Luglio
Visualizzazione 301 - 400 di 1618 CVE per Luglio 2019 (Pagina 4 di 17)
| ID CVE | Data | Titolo |
|---|---|---|
| CVE-2019-5968 | 2019-07-05 | Cross-site request forgery (CSRF) vulnerability in GROWI v3.4.6 and earlier... |
| CVE-2019-5969 | 2019-07-05 | Open redirect vulnerability in GROWI v3.4.6 and earlier allows remote... |
| CVE-2019-5970 | 2019-07-05 | Cross-site scripting vulnerability in Attendance Manager 0.5.6 and earlier allows... |
| CVE-2019-5971 | 2019-07-05 | Cross-site request forgery (CSRF) vulnerability in Attendance Manager 0.5.6 and... |
| CVE-2019-5972 | 2019-07-05 | Cross-site scripting vulnerability in Online Lesson Booking 0.8.6 and earlier... |
| CVE-2019-5973 | 2019-07-05 | Cross-site request forgery (CSRF) vulnerability in Online Lesson Booking 0.8.6... |
| CVE-2019-5974 | 2019-07-05 | Cross-site request forgery (CSRF) vulnerability in Contest Gallery versions prior... |
| CVE-2019-5979 | 2019-07-05 | Cross-site request forgery (CSRF) vulnerability in Personalized WooCommerce Cart Page... |
| CVE-2019-5980 | 2019-07-05 | Cross-site request forgery (CSRF) vulnerability in Related YouTube Videos versions... |
| CVE-2019-5981 | 2019-07-05 | Improper authorization vulnerability in VAIO Update 7.3.0.03150 and earlier allows... |
| CVE-2019-5982 | 2019-07-05 | Improper download file verification vulnerability in VAIO Update 7.3.0.03150 and... |
| CVE-2019-5983 | 2019-07-05 | Cross-site request forgery (CSRF) vulnerability in HTML5 Maps 1.6.5.6 and... |
| CVE-2019-5984 | 2019-07-05 | Cross-site request forgery (CSRF) vulnerability in Custom CSS Pro 1.0.3... |
| CVE-2019-13313 | 2019-07-05 | libosinfo 1.5.0 allows local users to discover credentials by listing... |
| CVE-2019-13314 | 2019-07-05 | virt-bootstrap 1.1.0 allows local users to discover a root password... |
| CVE-2019-13339 | 2019-07-05 | In MiniCMS V1.10, stored XSS was found in mc-admin/page-edit.php (content... |
| CVE-2019-13340 | 2019-07-05 | In MiniCMS V1.10, stored XSS was found in mc-admin/post-edit.php via... |
| CVE-2019-13341 | 2019-07-05 | In MiniCMS V1.10, stored XSS was found in mc-admin/conf.php (comment... |
| CVE-2019-13344 | 2019-07-05 | An authentication bypass vulnerability in the CRUDLab WP Like Button... |
| CVE-2018-14027 | 2019-07-05 | Digisol Wireless Wifi Home Router HR-3300 allows XSS via the... |
| CVE-2019-13345 | 2019-07-05 | The cachemgr.cgi web module of Squid through 4.7 has XSS... |
| CVE-2018-12621 | 2019-07-05 | An issue was discovered in Eventum 3.5.0. /htdocs/switch.php has an... |
| CVE-2019-13351 | 2019-07-05 | posix/JackSocket.cpp in libjack in JACK2 1.9.1 through 1.9.12 (as distributed... |
| CVE-2019-13352 | 2019-07-05 | WolfVision Cynap before 1.30j uses a static, hard-coded cryptographic secret... |
| CVE-2019-12971 | 2019-07-05 | BKS EBK Ethernet-Buskoppler Pro before 3.01 allows Unrestricted Upload of... |
| CVE-2018-14528 | 2019-07-05 | Invoxia NVX220 devices allow TELNET access as admin with a... |
| CVE-2018-14529 | 2019-07-05 | Invoxia NVX220 devices allow access to /bin/sh via escape from... |
| CVE-2018-14733 | 2019-07-05 | The Odoo Community Association (OCA) dbfilter_from_header module makes Odoo 8.x,... |
| CVE-2018-16386 | 2019-07-05 | An issue was discovered in SWIFT Alliance Web Platform 7.1.23.... |
| CVE-2019-13358 | 2019-07-05 | lib/DocumentToText.php in OpenCats before 0.9.4-3 has XXE that allows remote... |
| CVE-2019-10638 | 2019-07-05 | In the Linux kernel before 5.1.7, a device can be... |
| CVE-2019-10639 | 2019-07-05 | The Linux kernel 4.x (starting from 4.1) and 5.x before... |
| CVE-2019-1892 | 2019-07-06 | Cisco Small Business Series Switches Memory Corruption Vulnerability |
| CVE-2019-1891 | 2019-07-06 | Cisco Small Business Series Switches HTTP Denial of Service Vulnerability |
| CVE-2019-1887 | 2019-07-06 | Cisco Unified Communications Manager Session Initiation Protocol Denial of Service Vulnerability |
| CVE-2019-1911 | 2019-07-06 | Cisco Unified Communications Domain Manager Restricted Shell Escape Vulnerability |
| CVE-2019-1909 | 2019-07-06 | Cisco IOS XR Software Border Gateway Protocol Denial of Service Vulnerability |
| CVE-2019-1894 | 2019-07-06 | Cisco Enterprise NFV Infrastructure Software Arbitrary File Read and Write Vulnerability |
| CVE-2019-1893 | 2019-07-06 | Cisco Enterprise NFV Infrastructure Software Command Injection Vulnerability |
| CVE-2019-1922 | 2019-07-06 | Cisco IP Phone 7800 and 8800 Series Session Initiation Protocol Denial of Service Vulnerability |
| CVE-2019-1921 | 2019-07-06 | Cisco Email Security Appliance Content Filter Bypass Vulnerability |
| CVE-2019-1933 | 2019-07-06 | Cisco Email Security Appliance Content Filter Bypass Vulnerability |
| CVE-2019-1932 | 2019-07-06 | Cisco Advanced Malware Protection for Endpoints Windows Command Injection Vulnerability |
| CVE-2019-1931 | 2019-07-06 | Cisco Firepower Management Center RSS Cross-Site Scripting Vulnerabilities |
| CVE-2019-1930 | 2019-07-06 | Cisco Firepower Management Center RSS Cross-Site Scripting Vulnerabilities |
| CVE-2019-13362 | 2019-07-06 | Codedoc v3.2 has a stack-based buffer overflow in add_variable in... |
| CVE-2019-13370 | 2019-07-06 | index.php/admin/permissions in Ignited CMS through 2017-02-19 allows CSRF to add... |
| CVE-2019-13372 | 2019-07-06 | /web/Lib/Action/IndexAction.class.php in D-Link Central WiFi Manager CWM(100) before v1.03R0100_BETA6 allows... |
| CVE-2019-13373 | 2019-07-06 | An issue was discovered in the D-Link Central WiFi Manager... |
| CVE-2019-13374 | 2019-07-06 | A cross-site scripting (XSS) vulnerability in resource view in PayAction.class.php... |
| CVE-2019-13375 | 2019-07-06 | A SQL Injection was discovered in D-Link Central WiFi Manager... |
| CVE-2019-13183 | 2019-07-07 | Flarum before 0.1.0-beta.9 allows CSRF against all POST endpoints, as... |
| CVE-2019-13379 | 2019-07-07 | On AVTECH Room Alert 3E devices before 2.2.5, an attacker... |
| CVE-2019-13390 | 2019-07-07 | In FFmpeg 4.1.3, there is a division by zero at... |
| CVE-2019-13391 | 2019-07-07 | In ImageMagick 7.0.8-50 Q16, ComplexImages in MagickCore/fourier.c has a heap-based... |
| CVE-2019-13398 | 2019-07-08 | Dynacolor FCM-MB40 v1.2.0.0 devices allow remote attackers to execute arbitrary... |
| CVE-2019-13399 | 2019-07-08 | Dynacolor FCM-MB40 v1.2.0.0 devices have a hard-coded SSL/TLS key that... |
| CVE-2019-13400 | 2019-07-08 | Dynacolor FCM-MB40 v1.2.0.0 use /etc/appWeb/appweb.pass to store administrative web-interface credentials... |
| CVE-2019-13401 | 2019-07-08 | Dynacolor FCM-MB40 v1.2.0.0 devices have CSRF in all scripts under... |
| CVE-2019-13402 | 2019-07-08 | /usr/sbin/default.sh and /usr/apache/htdocs/cgi-bin/admin/hardfactorydefault.cgi on Dynacolor FCM-MB40 v1.2.0.0 devices implement an... |
| CVE-2019-13404 | 2019-07-08 | The MSI installer for Python through 2.7.16 on Windows defaults... |
| CVE-2018-11563 | 2019-07-08 | An issue was discovered in Open Ticket Request System (OTRS)... |
| CVE-2019-12171 | 2019-07-08 | Dropbox.exe (and QtWebEngineProcess.exe in the Web Helper) in the Dropbox... |
| CVE-2019-12174 | 2019-07-08 | hide.me before 2.4.4 on macOS suffers from a privilege escalation... |
| CVE-2019-13413 | 2019-07-08 | The Rencontre plugin before 3.1.3 for WordPress allows SQL Injection... |
| CVE-2019-13414 | 2019-07-08 | The Rencontre plugin before 3.1.3 for WordPress allows XSS via... |
| CVE-2019-13354 | 2019-07-08 | The strong_password gem 0.0.7 for Ruby, as distributed on RubyGems.org,... |
| CVE-2019-10973 | 2019-07-08 | Quest KACE, all versions prior to version 8.0.x, 8.1.x, and... |
| CVE-2019-2104 | 2019-07-08 | In HIDL, safe_union, and other C++ structs/unions being sent to... |
| CVE-2019-2105 | 2019-07-08 | In FileInputStream::Read of file_input_stream.cc, there is a possible memory corruption... |
| CVE-2019-2106 | 2019-07-08 | In ihevcd_sao_shift_ctb of ihevcd_sao.c, there is a possible out of... |
| CVE-2019-2107 | 2019-07-08 | In ihevcd_parse_pps of ihevcd_parse_headers.c, there is a possible out of... |
| CVE-2019-2109 | 2019-07-08 | In MakeMPEG4VideoCodecSpecificData of AVIExtractor.cpp, there is a possible out of... |
| CVE-2019-2111 | 2019-07-08 | In loop of DnsTlsSocket.cpp, there is a possible heap memory... |
| CVE-2019-2112 | 2019-07-08 | In several functions of alarm.cc, there is possible memory corruption... |
| CVE-2019-2113 | 2019-07-08 | In setup wizard there is a bypass of some checks... |
| CVE-2019-2116 | 2019-07-08 | In save_attr_seq of sdp_discovery.cc, there is a possible out-of-bound read... |
| CVE-2019-2117 | 2019-07-08 | In checkQueryPermission of TelephonyProvider.java, there is a possible disclosure of... |
| CVE-2019-2118 | 2019-07-08 | In various functions of Parcel.cpp, there are uninitialized or partially... |
| CVE-2019-2119 | 2019-07-08 | In multiple functions of key_store_service.cpp, there is a possible Information... |
| CVE-2019-9629 | 2019-07-08 | Sonatype Nexus Repository Manager before 3.17.0 establishes a default administrator... |
| CVE-2019-9630 | 2019-07-08 | Sonatype Nexus Repository Manager before 3.17.0 has a weak default... |
| CVE-2019-12930 | 2019-07-08 | A cross-site scripting (XSS) vulnerability in noMenu() and noSubMenu() in... |
| CVE-2019-12923 | 2019-07-08 | In MailEnable Enterprise Premium 10.23, the potential cross-site request forgery... |
| CVE-2019-12924 | 2019-07-08 | MailEnable Enterprise Premium 10.23 was vulnerable to XML External Entity... |
| CVE-2019-12925 | 2019-07-08 | MailEnable Enterprise Premium 10.23 was vulnerable to multiple directory traversal... |
| CVE-2019-12926 | 2019-07-08 | MailEnable Enterprise Premium 10.23 did not use appropriate access control... |
| CVE-2019-12927 | 2019-07-08 | MailEnable Enterprise Premium 10.23 was vulnerable to stored and reflected... |
| CVE-2019-13449 | 2019-07-09 | In the Zoom Client before 4.4.2 on macOS, remote attackers... |
| CVE-2019-13450 | 2019-07-09 | In the Zoom Client through 4.4.4 and RingCentral 7.0.136380.0312 on... |
| CVE-2018-15738 | 2019-07-09 | An issue was discovered in STOPzilla AntiMalware 6.5.2.59. The driver... |
| CVE-2018-14833 | 2019-07-09 | Intuit Lacerte 2017 has Incorrect Access Control. |
| CVE-2019-11889 | 2019-07-09 | Sony BRAVIA Smart TV devices allow remote attackers to cause... |
| CVE-2019-11890 | 2019-07-09 | Sony Bravia Smart TV devices allow remote attackers to cause... |
| CVE-2019-12747 | 2019-07-09 | TYPO3 8.x through 8.7.26 and 9.x through 9.5.7 allows Deserialization... |
| CVE-2019-12748 | 2019-07-09 | TYPO3 8.3.0 through 8.7.26 and 9.0.0 through 9.5.7 allows XSS. |
| CVE-2019-12782 | 2019-07-09 | An authorization bypass vulnerability in pinboard updates in ThoughtSpot 4.4.1... |
| CVE-2018-11307 | 2019-07-09 | An issue was discovered in FasterXML jackson-databind 2.0.0 through 2.9.5.... |
| CVE-2019-11019 | 2019-07-09 | Lack of authentication in case-exporting components in DDRT Dashcom Live... |
| CVE-2019-13454 | 2019-07-09 | ImageMagick 7.0.1-0 to 7.0.8-54 Q16 allows Division by Zero in... |