Lista CVE - 2019 / Settembre
Visualizzazione 301 - 400 di 1531 CVE per Settembre 2019 (Pagina 4 di 16)
| ID CVE | Data | Titolo |
|---|---|---|
| CVE-2019-16175 | 2019-09-09 | A clickjacking vulnerability was found in Limesurvey before 3.17.14. |
| CVE-2019-16174 | 2019-09-09 | An XML injection vulnerability was found in Limesurvey before 3.17.14 that allows remote attackers to import specially crafted XML files and execute code or compromise data integrity. |
| CVE-2019-16147 | 2019-09-09 | Liferay Portal through 7.2.0 GA1 allows XSS via a journal article title to journal_article/page.jsp in journal/journal-taglib. |
| CVE-2019-16145 | 2019-09-09 | The breadcrumbs contributed module through 0.2.0 for Padrino Framework allows XSS via a caption. |
| CVE-2019-15297 | 2019-09-09 | res_pjsip_t38 in Sangoma Asterisk 15.x before 15.7.4 and 16.x before 16.5.1 allows an attacker to trigger a crash by sending a declined stream in a response to a T.38 re-invite... |
| CVE-2019-10253 | 2019-09-09 | A Cross-Site Request Forgery (CSRF) vulnerability exists in TeamMate+ 21.0.0.0 that allows a remote attacker to modify application data (upload malicious/forged files on a TeamMate server, or replace existing uploaded... |
| CVE-2017-18596 | 2019-09-10 | The elementor plugin before 1.8.0 for WordPress has incorrect access control for internal functions. |
| CVE-2017-18597 | 2019-09-10 | The jtrt-responsive-tables plugin before 4.1.2 for WordPress has SQL Injection via the admin/class-jtrt-responsive-tables-admin.php tableId parameter. |
| CVE-2017-18598 | 2019-09-10 | The Qards plugin through 2017-10-11 for WordPress has XSS via a remote document specified in the url parameter to html2canvasproxy.php. |
| CVE-2017-18599 | 2019-09-10 | The Pinfinity theme before 2.0 for WordPress has XSS via the s parameter. |
| CVE-2017-18600 | 2019-09-10 | The formcraft3 plugin before 3.4 for WordPress has stored XSS via the "New Form > Heading > Heading Text" field. |
| CVE-2017-18601 | 2019-09-10 | The examapp plugin 1.0 for WordPress has XSS via exam input text fields. |
| CVE-2017-18602 | 2019-09-10 | The examapp plugin 1.0 for WordPress has SQL injection via the wp-admin/admin.php?page=examapp_UserResult id parameter. |
| CVE-2017-18603 | 2019-09-10 | The postman-smtp plugin through 2017-10-04 for WordPress has XSS via the wp-admin/tools.php?page=postman_email_log page parameter. |
| CVE-2017-18604 | 2019-09-10 | The sitebuilder-dynamic-components plugin through 1.0 for WordPress has PHP object injection via an AJAX request. |
| CVE-2017-18605 | 2019-09-10 | The gravitate-qa-tracker plugin through 1.2.1 for WordPress has PHP Object Injection. |
| CVE-2017-18606 | 2019-09-10 | The avada theme before 5.1.5 for WordPress has stored XSS. |
| CVE-2017-18607 | 2019-09-10 | The avada theme before 5.1.5 for WordPress has CSRF. |
| CVE-2017-18608 | 2019-09-10 | The spotim-comments plugin before 4.0.4 for WordPress has multiple XSS issues. |
| CVE-2017-18609 | 2019-09-10 | The magic-fields plugin before 1.7.2 for WordPress has XSS via the custom-write-panel-id parameter. |
| CVE-2017-18610 | 2019-09-10 | The magic-fields plugin before 1.7.2 for WordPress has XSS via the RCCWP_CreateCustomFieldPage.php custom-group-id parameter. |
| CVE-2017-18611 | 2019-09-10 | The magic-fields plugin before 1.7.2 for WordPress has XSS via the RCCWP_CreateCustomFieldPage.php custom-field-css parameter. |
| CVE-2019-16202 | 2019-09-10 | MISP before 2.4.115 allows privilege escalation in certain situations. After updating to 2.4.115, escalation attempts are blocked by the __checkLoggedActions function with a "This could be an indication of an... |
| CVE-2019-12401 | 2019-09-10 | Solr versions 1.3.0 to 1.4.1, 3.1.0 to 3.6.2 and 4.0.0 to 4.10.4 are vulnerable to an XML resource consumption attack (a.k.a. Lol Bomb) via it’s update handler.?By leveraging XML DOCTYPE... |
| CVE-2019-14721 | 2019-09-10 | In CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.851, an insecure object reference allows an attacker to remove a target user from phpMyAdmin via an attacker account. |
| CVE-2019-14722 | 2019-09-10 | In CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.851, an insecure object reference allows an attacker to delete an e-mail forwarding destination from a victim's account via an attacker account. |
| CVE-2019-14723 | 2019-09-10 | In CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.851, an insecure object reference allows an attacker to delete a victim's e-mail account via an attacker account. |
| CVE-2019-14726 | 2019-09-10 | In CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.851, an insecure object reference allows an attacker to access and delete DNS records of a victim's account via an attacker account. |
| CVE-2019-14727 | 2019-09-10 | In CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.851, an insecure object reference allows an attacker to change the e-mail password of a victim account via an attacker account. |
| CVE-2019-14729 | 2019-09-10 | In CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.851, an insecure object reference allows an attacker to delete a sub-domain from a victim's account via an attacker account. |
| CVE-2019-14728 | 2019-09-10 | In CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.851, an insecure object reference allows an attacker to add an e-mail forwarding destination to a victim's account via an attacker account. |
| CVE-2019-14730 | 2019-09-10 | In CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.851, an insecure object reference allows an attacker to delete a domain from a victim's account via an attacker account. |
| CVE-2019-15896 | 2019-09-10 | An issue was discovered in the LifterLMS plugin through 3.34.5 for WordPress. The upload_import function in the class.llms.admin.import.php script is prone to an unauthenticated options import vulnerability that could lead... |
| CVE-2019-16106 | 2019-09-10 | The Recruitment module in Humanica Humatrix 7 1.0.0.203 and 1.0.0.681 allows an unauthenticated attacker to change the password of any user via the recruitment_online/personalData/act_acounttab.cfm txtNewUserName and hdNP fields. |
| CVE-2019-5503 | 2019-09-10 | OnCommand Workflow Automation versions prior to 5.0 shipped without certain HTTP Security headers configured which could allow an attacker to obtain sensitive information via unspecified vectors. |
| CVE-2019-3975 | 2019-09-10 | Stack-based buffer overflow in Advantech WebAccess/SCADA 8.4.1 allows a remote, unauthenticated attacker to execute arbitrary code via a crafted IOCTL 70603 RPC message. |
| CVE-2019-0352 | 2019-09-10 | In SAP Business Objects Business Intelligence Platform, before versions 4.1, 4.2 and 4.3, some dynamic pages (like jsp) are cached, which leads to an attacker can see the sensitive information... |
| CVE-2019-0353 | 2019-09-10 | Under certain conditions SAP Business One client (B1_ON_HANA, SAP-M-BO), before versions 9.2 and 9.3, allows an attacker to access information which would otherwise be restricted. |
| CVE-2019-0355 | 2019-09-10 | SAP NetWeaver Application Server Java Web Container, ENGINEAPI (before versions 7.10, 7.20, 7.30, 7.31, 7.40, 7.50) and SAP-JEECOR (before versions 6.40, 7.0, 7.01), allows an attacker to inject code that... |
| CVE-2019-0361 | 2019-09-10 | SAP Supplier Relationship Management (Master Data Management Catalog - SRM_MDM_CAT, before versions 3.73, 7.31, 7.32) does not sufficiently encode user-controlled inputs, resulting in Cross-Site Scripting (XSS) vulnerability. |
| CVE-2019-0363 | 2019-09-10 | Attackers may misuse an HTTP/REST endpoint of SAP HANA Extended Application Services (Advanced model), before version 1.0.118, to overload the server or retrieve information about internal network ports. |
| CVE-2019-0364 | 2019-09-10 | Attackers may misuse an HTTP/REST endpoint of SAP HANA Extended Application Services (Advanced model), before version 1.0.118, to enumerate open ports. |
| CVE-2019-0365 | 2019-09-10 | SAP Kernel (RFC), KRNL32NUC, KRNL32UC and KRNL64NUC before versions 7.21, 7.21EXT, 7.22, 7.22EXT, KRNL64UC, before versions 7.21, 7.21EXT, 7.22, 7.22EXT, 7.49, 7.73 and KERNEL before versions 7.21, 7.49, 7.53, 7.73,... |
| CVE-2019-12105 | 2019-09-10 | In Supervisor through 4.0.2, an unauthenticated user can read log files or restart a service. Note: The maintainer responded that the affected component, inet_http_server, is not enabled by default but... |
| CVE-2019-0356 | 2019-09-10 | Under certain conditions SAP NetWeaver Process Integration Runtime Workbench – MESSAGING and SAP_XIAF (before versions 7.31, 7.40, 7.50) allows an attacker to access information which would otherwise be restricted. |
| CVE-2019-11464 | 2019-09-10 | Some enterprises require that REST API endpoints include security-related headers in REST responses. Headers such as X-Frame-Options and X-Content-Type-Options are generally advisable, however some information security professionals additionally look for... |
| CVE-2019-0357 | 2019-09-10 | The administrator of SAP HANA database, before versions 1.0 and 2.0, can misuse HANA to execute commands with operating system "root" privileges. |
| CVE-2019-11465 | 2019-09-10 | An issue was discovered in Couchbase Server 5.5.x through 5.5.3 and 6.0.0. The Memcached "connections" stat block command emits a non-redacted username. The system information submitted to Couchbase as part... |
| CVE-2019-1547 | 2019-09-10 | ECDSA remote timing attack |
| CVE-2019-1549 | 2019-09-10 | Fork Protection |
| CVE-2019-1563 | 2019-09-10 | Padding Oracle in PKCS7_dataDecode and CMS_decrypt_set1_pkey |
| CVE-2019-11466 | 2019-09-10 | In Couchbase Server 6.0.0 and 5.5.0, the eventing service exposes system diagnostic profile via an HTTP endpoint that does not require credentials on a port earmarked for internal traffic only.... |
| CVE-2019-11495 | 2019-09-10 | In Couchbase Server 5.1.1, the cookie used for intra-node communication was not generated securely. Couchbase Server uses erlang:now() to seed the PRNG which results in a small search space for... |
| CVE-2019-11467 | 2019-09-10 | In Couchbase Server 4.6.3 and 5.5.0, secondary indexing encodes the entries to be indexed using collatejson. When index entries contain certain characters like \t, <, >, it caused buffer overrun... |
| CVE-2019-11497 | 2019-09-10 | In Couchbase Server 5.0.0, when an invalid Remote Cluster Certificate was entered as part of the reference creation, XDCR did not parse and check the certificate signature. It then accepted... |
| CVE-2019-11496 | 2019-09-10 | In versions of Couchbase Server prior to 5.0, the bucket named "default" was a special bucket that allowed read and write access without authentication. As part of 5.0, the behavior... |
| CVE-2019-14457 | 2019-09-10 | VIVOTEK IP Camera devices with firmware before 0x20x have a stack-based buffer overflow via a crafted HTTP header. |
| CVE-2019-10256 | 2019-09-10 | An authentication bypass vulnerability in VIVOTEK IPCam versions prior to 0x13a was found. |
| CVE-2019-12996 | 2019-09-10 | In Mendix 7.23.5 and earlier, issue in XML import mappings allow DOCTYPE declarations in the XML input that is potentially unsafe. |
| CVE-2019-11668 | 2019-09-10 | HTTP cookie in Micro Focus Service manager, Versions 9.30, 9.31, 9.32, 9.33, 9.34, 9.35, 9.40, 9.41, 9.50, 9.51, 9.52, 9.60, 9.61, 9.62. And Micro Focus Service Manager Chat Server, versions... |
| CVE-2019-11669 | 2019-09-10 | Modifiable read only check box In Micro Focus Service Manager, versions 9.60p1, 9.61, 9.62. This vulnerability could be exploited to allow unauthorized modification of data. |
| CVE-2019-12942 | 2019-09-10 | TTLock devices do not properly block guest access in certain situations where the network connection to the cloud is unavailable. |
| CVE-2019-12943 | 2019-09-10 | TTLock devices do not properly restrict password-reset attempts, leading to incorrect access control and disclosure of sensitive information about valid account names. |
| CVE-2019-13473 | 2019-09-11 | TELESTAR Bobs Rock Radio, Dabman D10, Dabman i30 Stereo, Imperial i110, Imperial i150, Imperial i200, Imperial i200-cd, Imperial i400, Imperial i450, Imperial i500-bt, and Imperial i600 TN81HH96-g102h-g102 devices have an... |
| CVE-2019-16214 | 2019-09-11 | Libra Core before 2019-09-03 has an erroneous regular expression for inline comments, which makes it easier for attackers to interfere with code auditing by using a nonstandard line-break character for... |
| CVE-2019-14725 | 2019-09-11 | In CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.851, an insecure object reference allows an attacker to change the e-mail usage value of a victim account via an attacker account. |
| CVE-2019-14724 | 2019-09-11 | In CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.851, an insecure object reference allows an attacker to edit an e-mail forwarding destination of a victim's account via an attacker account. |
| CVE-2019-16193 | 2019-09-11 | In ArcGIS Enterprise 10.6.1, a crafted IFRAME element can be used to trigger a Cross Frame Scripting (XFS) attack through the EDIT MY PROFILE feature. |
| CVE-2019-16218 | 2019-09-11 | WordPress before 5.2.3 allows XSS in stored comments. |
| CVE-2019-16220 | 2019-09-11 | In WordPress before 5.2.3, validation and sanitization of a URL in wp_validate_redirect in wp-includes/pluggable.php could lead to an open redirect if a provided URL path does not start with a... |
| CVE-2019-16223 | 2019-09-11 | WordPress before 5.2.3 allows XSS in post previews by authenticated users. |
| CVE-2019-16222 | 2019-09-11 | WordPress before 5.2.3 has an issue with URL sanitization in wp_kses_bad_protocol_once in wp-includes/kses.php that can lead to cross-site scripting (XSS) attacks. |
| CVE-2019-16221 | 2019-09-11 | WordPress before 5.2.3 allows reflected XSS in the dashboard. |
| CVE-2019-16219 | 2019-09-11 | WordPress before 5.2.3 allows XSS in shortcode previews. |
| CVE-2019-16217 | 2019-09-11 | WordPress before 5.2.3 allows XSS in media uploads because wp_ajax_upload_attachment is mishandled. |
| CVE-2019-14995 | 2019-09-11 | The /rest/api/1.0/render resource in Jira before version 8.4.0 allows remote anonymous attackers to determine if an attachment with a specific name exists and if an issue key is valid via... |
| CVE-2019-14996 | 2019-09-11 | The FilterPickerPopup.jspa resource in Jira before version 7.13.7, and from version 8.0.0 before version 8.3.3 allows remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting (XSS)... |
| CVE-2019-14997 | 2019-09-11 | The AccessLogFilter class in Jira before version 8.4.0 allows remote anonymous attackers to learn details about other users, including their username, via an information expose through caching vulnerability when Jira... |
| CVE-2019-14998 | 2019-09-11 | The Webwork action Cross-Site Request Forgery (CSRF) protection implementation in Jira before version 8.4.0 allows remote attackers to bypass its protection via "cookie tossing" a CSRF cookie from a subdomain... |
| CVE-2019-8449 | 2019-09-11 | The /rest/api/latest/groupuserpicker resource in Jira before version 8.4.0 allows remote attackers to enumerate usernames via an information disclosure vulnerability. |
| CVE-2019-8450 | 2019-09-11 | Various templates of the Optimization plugin in Jira before version 7.13.6, and from version 8.0.0 before version 8.4.0 allow remote attackers who have permission to manage custom fields to inject... |
| CVE-2019-8451 | 2019-09-11 | The /plugins/servlet/gadgets/makeRequest resource in Jira before version 8.4.0 allows remote attackers to access the content of internal network resources via a Server Side Request Forgery (SSRF) vulnerability due to a... |
| CVE-2019-3643 | 2019-09-11 | MWG scanners updated to address CVE-2019-9511 |
| CVE-2019-3644 | 2019-09-11 | MWG scanners updated to address CVE-2019-9517 |
| CVE-2019-16228 | 2019-09-11 | An issue was discovered in py-lmdb 0.97. There is a divide-by-zero error in the function mdb_env_open2 if mdb_env_read_header obtains a zero value for a certain size field. NOTE: this outcome... |
| CVE-2019-16227 | 2019-09-11 | An issue was discovered in py-lmdb 0.97. For certain values of mn_flags, mdb_cursor_set triggers a memcpy with an invalid write operation within mdb_xcursor_init1. NOTE: this outcome occurs when accessing a... |
| CVE-2019-16226 | 2019-09-11 | An issue was discovered in py-lmdb 0.97. mdb_node_del does not validate a memmove in the case of an unexpected node->mn_hi, leading to an invalid write operation. NOTE: this outcome occurs... |
| CVE-2019-16225 | 2019-09-11 | An issue was discovered in py-lmdb 0.97. For certain values of mp_flags, mdb_page_touch does not properly set up mc->mc_pg[mc->top], leading to an invalid write operation. NOTE: this outcome occurs when... |
| CVE-2019-16224 | 2019-09-11 | An issue was discovered in py-lmdb 0.97. For certain values of md_flags, mdb_node_add does not properly set up a memcpy destination, leading to an invalid write operation. NOTE: this outcome... |
| CVE-2019-16234 | 2019-09-11 | drivers/net/wireless/intel/iwlwifi/pcie/trans.c in the Linux kernel 5.2.14 does not check the alloc_workqueue return value, leading to a NULL pointer dereference. |
| CVE-2019-16233 | 2019-09-11 | drivers/scsi/qla2xxx/qla_os.c in the Linux kernel 5.2.14 does not check the alloc_workqueue return value, leading to a NULL pointer dereference. |
| CVE-2019-16232 | 2019-09-11 | drivers/net/wireless/marvell/libertas/if_sdio.c in the Linux kernel 5.2.14 does not check the alloc_workqueue return value, leading to a NULL pointer dereference. |
| CVE-2019-16231 | 2019-09-11 | drivers/net/fjes/fjes_main.c in the Linux kernel 5.2.14 does not check the alloc_workqueue return value, leading to a NULL pointer dereference. |
| CVE-2019-16230 | 2019-09-11 | drivers/gpu/drm/radeon/radeon_display.c in the Linux kernel 5.2.14 does not check the alloc_workqueue return value, leading to a NULL pointer dereference. NOTE: A third-party software maintainer states that the work queue allocation... |
| CVE-2019-16229 | 2019-09-11 | drivers/gpu/drm/amd/amdkfd/kfd_interrupt.c in the Linux kernel 5.2.14 does not check the alloc_workqueue return value, leading to a NULL pointer dereference. NOTE: The security community disputes this issues as not being serious... |
| CVE-2019-16098 | 2019-09-11 | The driver in Micro-Star MSI Afterburner 4.6.2.15658 (aka RTCore64.sys and RTCore32.sys) allows any authenticated user to read and write to arbitrary memory, I/O ports, and MSRs. This can be exploited... |
| CVE-2019-11777 | 2019-09-11 | In the Eclipse Paho Java client library version 1.2.0, when connecting to an MQTT server using TLS and setting a host name verifier, the result of that verification is not... |
| CVE-2019-9488 | 2019-09-11 | Trend Micro Deep Security Manager (10.x, 11.x) and Vulnerability Protection (2.0) are vulnerable to a XML External Entity Attack. However, for the attack to be possible, the attacker must have... |
| CVE-2019-14936 | 2019-09-11 | Easy!Appointments 1.3.2 plugin for WordPress allows Sensitive Information Disclosure (Username and Password Hash). |
| CVE-2019-16237 | 2019-09-11 | Dino before 2019-09-10 does not properly check the source of an MAM message in module/xep/0313_message_archive_management.vala. |