VYPR

CVEs

31,174 total · page 488 of 624

  • CVE-2019-7321CriJun 13, 2019
    risk 0.64cvss 9.8epss 0.03

    Usage of an uninitialized variable in the function fz_load_jpeg in Artifex MuPDF 1.14 can result in a heap overflow vulnerability that allows an attacker to execute arbitrary code.

  • CVE-2019-12798CriJun 13, 2019
    risk 0.64cvss 9.8epss 0.02

    An issue was discovered in Artifex MuJS 1.0.5. regcompx in regexp.c does not restrict regular expression program size, leading to an overflow of the parsed syntax list size.

  • CVE-2019-11119CriJun 13, 2019
    risk 0.64cvss 9.8epss 0.02

    Insufficient session validation in the service API for Intel(R) RWC3 version 4.186 and before may allow an unauthenticated user to potentially enable escalation of privilege via network access.

  • CVE-2019-7840CriJun 12, 2019
    risk 0.65cvss 9.8epss 0.17

    ColdFusion versions Update 3 and earlier, Update 10 and earlier, and Update 18 and earlier have a deserialization of untrusted data vulnerability. Successful exploitation could lead to arbitrary code execution.

  • CVE-2019-7839CriJun 12, 2019
    risk 0.67cvss 9.8epss 0.44

    ColdFusion versions Update 3 and earlier, Update 10 and earlier, and Update 18 and earlier have a command injection vulnerability. Successful exploitation could lead to arbitrary code execution.

  • CVE-2019-7838CriJun 12, 2019
    risk 0.65cvss 9.8epss 0.17

    ColdFusion versions Update 3 and earlier, Update 10 and earlier, and Update 18 and earlier have a file extension blacklist bypass vulnerability. Successful exploitation could lead to arbitrary code execution.

  • CVE-2019-3947CriJun 12, 2019
    risk 0.64cvss 9.8epss 0.02

    Fuji Electric V-Server before 6.0.33.0 stores database credentials in project files as plaintext. An attacker that can gain access to the project file can recover the database credentials and gain access to the database server.

  • CVE-2019-0304CriJun 12, 2019
    risk 0.64cvss 9.8epss 0.02

    FTP Function of SAP NetWeaver AS ABAP Platform, versions- KRNL32NUC 7.21, 7.21EXT, 7.22, 7.22EXT, KRNL32UC 7.21, 7.21EXT, 7.22, 7.22EXT, KRNL64NUC 7.21, 7.21EXT, 7.22, 7.22EXT, 7.49, KRNL64UC 7.21, 7.21EXT, 7.22, 7.22EXT, 7.49, 7.73, KERNEL 7.21, 7.45, 7.49, 7.53, 7.73, allows…

  • CVE-2019-6580CriJun 12, 2019
    risk 0.64cvss 9.8epss 0.02

    A vulnerability has been identified in Siveillance VMS 2017 R2 (All versions < V11.2a), Siveillance VMS 2018 R1 (All versions < V12.1a), Siveillance VMS 2018 R2 (All versions < V12.2a), Siveillance VMS 2018 R3 (All versions < V12.3a), Siveillance VMS 2019 R1 (All versions <…

  • CVE-2019-3888CriJun 12, 2019
    risk 0.64cvss 9.8epss 0.03

    A vulnerability was found in Undertow web server before 2.0.21. An information exposure of plain text credentials through log files because Connectors.executeRootHandler:402 logs the HttpServerExchange object at ERROR level using UndertowLogger.REQUEST_LOGGER.undertowRequestFaile…

  • CVE-2019-12149CriJun 11, 2019
    risk 0.64cvss 9.8epss 0.01

    SQL injection vulnerability in silverstripe/restfulserver module 1.0.x before 1.0.9, 2.0.x before 2.0.4, and 2.1.x before 2.1.2 and silverstripe/registry module 2.1.x before 2.1.1 and 2.2.x before 2.2.1 allows attackers to execute arbitrary SQL commands.

  • CVE-2019-12154CriJun 11, 2019
    risk 0.59cvss 9.1epss 0.02

    XXE in the XML parser library in RealObjects PDFreactor before 10.1.10722 allows attackers to supply malicious XML content in externally referenced resources, leading to disclosure of local file contents and/or denial of service conditions.

  • CVE-2019-12153CriJun 11, 2019
    risk 0.65cvss 10.0epss 0.02

    Lack of validation in the HTML parser in RealObjects PDFreactor before 10.1.10722 leads to SSRF, allowing attackers to access network or file resources on behalf of the server by supplying malicious HTML content.

  • CVE-2019-12146CriJun 11, 2019
    risk 0.59cvss 9.1epss 0.04

    A Directory Traversal issue was discovered in SSHServerAPI.dll in Progress ipswitch WS_FTP Server 2018 before 8.6.1. Attackers have the ability to abuse a flaw in the SCP listener by crafting strings using specific patterns to write files and create directories outside of their…

  • CVE-2019-12144CriJun 11, 2019
    risk 0.64cvss 9.8epss 0.03

    An issue was discovered in SSHServerAPI.dll in Progress ipswitch WS_FTP Server 2018 before 8.6.1. Attackers have the ability to abuse a path traversal vulnerability using the SCP protocol. Attackers who leverage this flaw could also obtain remote code execution by crafting a…

  • CVE-2018-20841CriJun 11, 2019
    risk 0.68cvss 9.8epss 0.48

    HooToo TripMate Titan HT-TM05 and HT-05 routers with firmware 2.000.022 and 2.000.082 allow remote command execution via shell metacharacters in the mac parameter of a protocol.csp?function=set&fname=security&opt=mac_table request.

  • CVE-2017-18377CriJun 11, 2019
    risk 0.64cvss 9.8epss 0.06

    An issue was discovered on Wireless IP Camera (P2P) WIFICAM cameras. There is Command Injection in the set_ftp.cgi script via shell metacharacters in the pwd variable, as demonstrated by a set_ftp.cgi?svr=192.168.1.1&port=21&user=ftp URI.

  • CVE-2016-10760CriJun 11, 2019
    risk 0.64cvss 9.8epss 0.03

    On Seowon Intech routers, there is a Command Injection vulnerability in diagnostic.cgi via shell metacharacters in the ping_ipaddr parameter.

  • CVE-2013-7471CriJun 11, 2019
    risk 0.66cvss 9.8epss 0.24

    An issue was discovered in soap.cgi?service=WANIPConn1 on D-Link DIR-845 before v1.02b03, DIR-600 before v2.17b01, DIR-645 before v1.04b11, DIR-300 rev. B, and DIR-865 devices. There is Command Injection via shell metacharacters in the NewInternalClient, NewExternalPort, or…

  • CVE-2010-5330CriKEVJun 11, 2019
    risk 0.78cvss 9.8epss 0.34

    On certain Ubiquiti devices, Command Injection exists via a GET request to stainfo.cgi (aka Show AP info) because the ifname variable is not sanitized, as demonstrated by shell metacharacters. The fixed version is v4.0.1 for 802.11 ISP products, v5.3.5 for AirMax ISP products,…

  • CVE-2009-5156CriJun 11, 2019
    risk 0.65cvss 9.8epss 0.11

    An issue was discovered on ASMAX AR-804gu 66.34.1 devices. There is Command Injection via the cgi-bin/script query string.

  • CVE-2019-3412CriJun 11, 2019
    risk 0.64cvss 9.8epss 0.03

    All versions up to BD_R218V2.4 of ZTE MF920 product are impacted by command execution vulnerability. Due to some interfaces do not adequately verify parameters, an attacker can execute arbitrary commands through specific interfaces.

  • CVE-2019-3409CriJun 11, 2019
    risk 0.59cvss 9.0epss 0.02

    All versions up to UKBB_WF820+_1.0.0B06 of ZTE WF820+ LTE Outdoor CPE product are impacted by command injection vulnerability. Due to inadequate parameter verification, unauthorized users can take advantage of this vulnerability to control the user terminal system.

  • CVE-2019-12765CriJun 11, 2019
    risk 0.68cvss 9.8epss 0.10

    An issue was discovered in Joomla! before 3.9.7. The CSV export of com_actionslogs is vulnerable to CSV injection.

  • CVE-2018-11801CriJun 11, 2019
    risk 0.64cvss 9.8epss 0.05

    SQL injection vulnerability in Apache Fineract before 1.3.0 allows attackers to execute arbitrary SQL commands via a query on a m_center data related table.

  • CVE-2018-11800CriJun 11, 2019
    risk 0.64cvss 9.8epss 0.05

    SQL injection vulnerability in Apache Fineract before 1.3.0 allows attackers to execute arbitrary SQL commands via a query on the GroupSummaryCounts related table.

  • CVE-2019-11027CriJun 10, 2019
    risk 0.57cvss 9.8epss 0.03

    Ruby OpenID (aka ruby-openid) through 2.8.0 has a remotely exploitable flaw. This library is used by Rails web applications to integrate with OpenID Providers. Severity can range from medium to critical, depending on how a web application developer chose to employ the…

  • CVE-2019-9880CriJun 10, 2019
    risk 0.58cvss 9.1epss 0.35

    An issue was discovered in the WPGraphQL 0.2.3 plugin for WordPress. By querying the 'users' RootQuery, it is possible, for an unauthenticated attacker, to retrieve all WordPress users details such as email address, role, and username.

  • CVE-2019-9879CriJun 10, 2019
    risk 0.70cvss 9.8epss 0.47

    The WPGraphQL 0.2.3 plugin for WordPress allows remote attackers to register a new user with admin privileges, whenever new user registrations are allowed. This is related to the registerUser mutation.

  • CVE-2018-20356CriJun 10, 2019
    risk 0.64cvss 9.8epss 0.04

    An invalid read of 8 bytes due to a use-after-free vulnerability in the mg_http_free_proto_data_cgi function call in mongoose.c in Cesanta Mongoose Embedded Web Server Library 6.13 and earlier allows a denial of service (application crash) or remote code execution.

  • CVE-2018-20355CriJun 10, 2019
    risk 0.64cvss 9.8epss 0.04

    An invalid write of 8 bytes due to a use-after-free vulnerability in the mg_http_free_proto_data_cgi function call in mongoose.c in Cesanta Mongoose Embedded Web Server Library 6.13 and earlier allows a denial of service (application crash) or remote code execution.

  • CVE-2018-20354CriJun 10, 2019
    risk 0.64cvss 9.8epss 0.04

    An invalid read of 8 bytes due to a use-after-free vulnerability during a "return" in the mg_http_get_proto_data function in mongoose.c in Cesanta Mongoose Embedded Web Server Library 6.13 and earlier allows a denial of service (application crash) or remote code execution.

  • CVE-2018-20353CriJun 10, 2019
    risk 0.64cvss 9.8epss 0.04

    An invalid read of 8 bytes due to a use-after-free vulnerability during a "NULL test" in the mg_http_get_proto_data function in mongoose.c in Cesanta Mongoose Embedded Web Server Library 6.13 and earlier allows a denial of service (application crash) or remote code execution.

  • CVE-2019-12780CriJun 10, 2019
    risk 0.72cvss 9.8epss 0.72

    The Belkin Wemo Enabled Crock-Pot allows command injection in the Wemo UPnP API via the SmartDevURL argument to the SetSmartDevInfo action. A simple POST request to /upnp/control/basicevent1 can allow an attacker to execute commands without authentication.

  • CVE-2019-9087CriJun 7, 2019
    risk 0.64cvss 9.8epss 0.02

    HotelDruid before v2.3.1 has SQL Injection via the /tab_tariffe.php numtariffa1 parameter.

  • CVE-2019-9086CriJun 7, 2019
    risk 0.64cvss 9.8epss 0.02

    HotelDruid before v2.3.1 has SQL Injection via the /visualizza_tabelle.php anno parameter.

  • CVE-2019-2097CriJun 7, 2019
    risk 0.64cvss 9.8epss 0.01

    In HAliasAnalyzer.Query of hydrogen-alias-analysis.h, there is possible memory corruption due to type confusion. This could lead to remote code execution from a malicious proxy configuration, with no additional execution privileges needed. User interaction is not needed for…

  • CVE-2018-10698CriJun 7, 2019
    risk 0.64cvss 9.8epss 0.02

    An issue was discovered on Moxa AWK-3121 1.14 devices. The device enables an unencrypted TELNET service by default. This allows an attacker who has been able to gain an MITM position to easily sniff the traffic between the device and the user. Also an attacker can easily connect…

  • CVE-2019-12601CriJun 7, 2019
    risk 0.64cvss 9.8epss 0.01

    SuiteCRM 7.8.x before 7.8.30, 7.10.x before 7.10.17, and 7.11.x before 7.11.5 allows SQL Injection (issue 3 of 3).

  • CVE-2019-12600CriJun 7, 2019
    risk 0.64cvss 9.8epss 0.01

    SuiteCRM 7.8.x before 7.8.30, 7.10.x before 7.10.17, and 7.11.x before 7.11.5 allows SQL Injection (issue 2 of 3).

  • CVE-2019-12599CriJun 7, 2019
    risk 0.64cvss 9.8epss 0.01

    SuiteCRM 7.10.x before 7.10.17 and 7.11.x before 7.11.5 allows SQL Injection.

  • CVE-2019-12598CriJun 7, 2019
    risk 0.64cvss 9.8epss 0.01

    SuiteCRM 7.8.x before 7.8.30, 7.10.x before 7.10.17, and 7.11.x before 7.11.5 allows SQL Injection (issue 1 of 3).

  • CVE-2019-10160CriJun 7, 2019
    risk 0.00cvss 9.8epss 0.05

    A security regression of CVE-2019-9636 was discovered in python since commit d537ab0ff9767ef024f26246899728f0116b1ec3 affecting versions 2.7, 3.5, 3.6, 3.7 and from v3.8.0a4 through v3.8.0b1, which still allows an attacker to exploit CVE-2019-9636 by abusing the user and…

  • CVE-2018-19800CriJun 7, 2019
    risk 0.57cvss 9.8epss 0.02

    aubio v0.4.0 to v0.4.8 has a Buffer Overflow in new_aubio_tempo.

  • CVE-2019-12776CriJun 7, 2019
    risk 0.64cvss 9.8epss 0.02

    An issue was discovered on the ENTTEC Datagate MK2, Storm 24, Pixelator, and E-Streamer MK2 with firmware 70044_update_05032019-482. They include a hard-coded SSH backdoor for remote SSH and SCP access as the root user. A command in the relocate and relocate_revB scripts copies…

  • CVE-2018-20091CriJun 7, 2019
    risk 0.64cvss 9.9epss 0.01

    An SQL injection vulnerability was found in Cloudera Data Science Workbench (CDSW) 1.4.0 through 1.4.2. This would allow any authenticated user to run arbitrary queries against CDSW's internal database. The database contains user contact information, encrypted CDSW passwords (in…

  • CVE-2019-12771CriJun 7, 2019
    risk 0.64cvss 9.8epss 0.03

    Command injection is possible in ThinStation through 6.1.1 via shell metacharacters after the cgi-bin/CdControl.cgi action= substring, or after the cgi-bin/VolControl.cgi OK= substring.

  • CVE-2019-11523CriJun 6, 2019
    risk 0.64cvss 9.8epss 0.01

    Anviz Global M3 Outdoor RFID Access Control executes any command received from any source. No authentication/encryption is done. Attackers can fully interact with the device: for example, send the "open door" command, download the users list (which includes RFID codes and…

  • CVE-2019-3723CriJun 6, 2019
    risk 0.59cvss 9.1epss 0.02

    Dell EMC OpenManage Server Administrator (OMSA) versions prior to 9.1.0.3 and prior to 9.2.0.4 contain a web parameter tampering vulnerability. A remote unauthenticated attacker could potentially manipulate parameters of web requests to OMSA to create arbitrary files with empty…

  • CVE-2019-12135CriJun 6, 2019
    risk 0.64cvss 9.8epss 0.02

    An unspecified vulnerability in the application server in PaperCut MF and NG versions 18.3.8 and earlier and versions 19.0.3 and earlier allows remote attackers to execute arbitrary code via an unspecified vector.