CVE List - 2019 / October
Showing 701 - 800 of 1566 CVEs for October 2019 (Page 8 of 16)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2019-14823 | 2019-10-14 | A flaw was found in the "Leaf and Chain" OCSP... |
| CVE-2019-17592 | 2019-10-14 | The csv-parse module before 4.4.6 for Node.js is vulnerable to... |
| CVE-2019-17593 | 2019-10-14 | JIZHICMS 1.5.1 allows admin.php/Admin/adminadd.html CSRF to add an administrator. |
| CVE-2019-17595 | 2019-10-14 | There is a heap-based buffer over-read in the fmt_entry function... |
| CVE-2019-17594 | 2019-10-14 | There is a heap-based buffer over-read in the _nc_find_entry function... |
| CVE-2019-17223 | 2019-10-15 | There is HTML Injection in the Note field in Dolibarr... |
| CVE-2019-17195 | 2019-10-15 | Connect2id Nimbus JOSE+JWT before v7.9 can throw various uncaught exceptions... |
| CVE-2019-17600 | 2019-10-15 | Intelbras IWR 1000N 1.6.4 devices allow disclosure of the administrator... |
| CVE-2019-12944 | 2019-10-15 | Glue Smart Lock 2.7.8 devices do not properly block guest... |
| CVE-2019-17397 | 2019-10-15 | In the DoorDash application through 11.5.2 for Android, the username... |
| CVE-2019-10759 | 2019-10-15 | safer-eval before 1.3.4 are vulnerable to Arbitrary Code Execution. A... |
| CVE-2019-10760 | 2019-10-15 | safer-eval before 1.3.2 are vulnerable to Arbitrary Code Execution. A... |
| CVE-2017-1002201 | 2019-10-15 | In haml versions prior to version 5.0.0.beta.2, when using user... |
| CVE-2019-14832 | 2019-10-15 | A flaw was found in the Keycloak REST API before... |
| CVE-2019-17356 | 2019-10-15 | The Infinite Design application 3.4.12 for Android sends a username... |
| CVE-2019-17398 | 2019-10-15 | In the Dark Horse Comics application 1.3.21 for Android, token... |
| CVE-2019-17355 | 2019-10-15 | In the Orbitz application 19.31.1 for Android, the username and... |
| CVE-2019-17601 | 2019-10-15 | In MiniShare 1.4.1, there is a stack-based buffer overflow via... |
| CVE-2019-17396 | 2019-10-15 | In the PowerSchool Mobile application 1.1.8 for Android, the username... |
| CVE-2019-17394 | 2019-10-15 | In the Seesaw Parent and Family application 6.2.5 for Android,... |
| CVE-2019-17602 | 2019-10-15 | An issue was discovered in Zoho ManageEngine OpManager before 12.4... |
| CVE-2019-17395 | 2019-10-15 | In the Rapid Gator application 0.7.1 for Android, the username... |
| CVE-2019-17613 | 2019-10-15 | qibosoft 7 allows remote code execution because do/jf.php makes eval... |
| CVE-2019-17612 | 2019-10-15 | An issue was discovered in 74CMS v5.2.8. There is a... |
| CVE-2019-13392 | 2019-10-15 | A reflected Cross-Site Scripting (XSS) vulnerability in MindPalette NateMail 3.0.15... |
| CVE-2016-11016 | 2019-10-16 | NETGEAR JNR1010 devices before 1.0.0.32 allow webproc?getpage= XSS. |
| CVE-2016-11015 | 2019-10-16 | NETGEAR JNR1010 devices before 1.0.0.32 allow cgi-bin/webproc CSRF via the... |
| CVE-2016-11014 | 2019-10-16 | NETGEAR JNR1010 devices before 1.0.0.32 have Incorrect Access Control because... |
| CVE-2019-17624 | 2019-10-16 | "" In X.Org X Server 1.20.4, there is a stack-based... |
| CVE-2019-17625 | 2019-10-16 | There is a stored XSS in Rambox 0.6.9 that can... |
| CVE-2019-17626 | 2019-10-16 | ReportLab through 3.5.26 allows remote code execution because of toColor(eval(arg))... |
| CVE-2019-17627 | 2019-10-16 | The Yale Bluetooth Key application for mobile devices allows unauthorized... |
| CVE-2019-17630 | 2019-10-16 | CMS Made Simple (CMSMS) 2.2.11 allows stored XSS by an... |
| CVE-2019-17629 | 2019-10-16 | CMS Made Simple (CMSMS) 2.2.11 allows stored XSS by an... |
| CVE-2019-15893 | 2019-10-16 | Sonatype Nexus Repository Manager 2.x before 2.14.15 allows Remote Code... |
| CVE-2019-4031 | 2019-10-16 | IBM Workload Scheduler Distributed 9.2, 9.3, 9.4, and 9.5 contains... |
| CVE-2019-10436 | 2019-10-16 | An arbitrary file read vulnerability in Jenkins Google OAuth Credentials... |
| CVE-2019-10437 | 2019-10-16 | A cross-site request forgery vulnerability in Jenkins CRX Content Package... |
| CVE-2019-10438 | 2019-10-16 | A missing permission check in Jenkins CRX Content Package Deployer... |
| CVE-2019-10439 | 2019-10-16 | A missing permission check in Jenkins CRX Content Package Deployer... |
| CVE-2019-10440 | 2019-10-16 | Jenkins NeoLoad Plugin 2.2.5 and earlier stored credentials unencrypted in... |
| CVE-2019-10441 | 2019-10-16 | A cross-site request forgery vulnerability in Jenkins iceScrum Plugin 1.1.5... |
| CVE-2019-10442 | 2019-10-16 | A missing permission check in Jenkins iceScrum Plugin 1.1.5 and... |
| CVE-2019-10443 | 2019-10-16 | Jenkins iceScrum Plugin 1.1.4 and earlier stored credentials unencrypted in... |
| CVE-2019-10444 | 2019-10-16 | Jenkins Bumblebee HP ALM Plugin 4.1.3 and earlier unconditionally disabled... |
| CVE-2019-10445 | 2019-10-16 | A missing permission check in Jenkins Google Kubernetes Engine Plugin... |
| CVE-2019-10446 | 2019-10-16 | Jenkins Cadence vManager Plugin 2.7.0 and earlier disabled SSL/TLS and... |
| CVE-2019-10447 | 2019-10-16 | Jenkins Sofy.AI Plugin stores credentials unencrypted in job config.xml files... |
| CVE-2019-10448 | 2019-10-16 | Jenkins Extensive Testing Plugin stores credentials unencrypted in job config.xml... |
| CVE-2019-10449 | 2019-10-16 | Jenkins Fortify on Demand Plugin stores credentials unencrypted in job... |
| CVE-2019-10450 | 2019-10-16 | Jenkins ElasticBox CI Plugin stores credentials unencrypted in the global... |
| CVE-2019-10451 | 2019-10-16 | Jenkins SOASTA CloudTest Plugin stores credentials unencrypted in its global... |
| CVE-2019-10452 | 2019-10-16 | Jenkins View26 Test-Reporting Plugin stores credentials unencrypted in job config.xml... |
| CVE-2019-10453 | 2019-10-16 | Jenkins Delphix Plugin stores credentials unencrypted in its global configuration... |
| CVE-2019-10454 | 2019-10-16 | A cross-site request forgery vulnerability in Jenkins Rundeck Plugin allows... |
| CVE-2019-10455 | 2019-10-16 | A missing permission check in Jenkins Rundeck Plugin allows attackers... |
| CVE-2019-10456 | 2019-10-16 | A cross-site request forgery vulnerability in Jenkins Oracle Cloud Infrastructure... |
| CVE-2019-10457 | 2019-10-16 | A missing permission check in Jenkins Oracle Cloud Infrastructure Compute... |
| CVE-2019-10458 | 2019-10-16 | Jenkins Puppet Enterprise Pipeline 1.3.1 and earlier specifies unsafe values... |
| CVE-2019-16520 | 2019-10-16 | The all-in-one-seo-pack plugin before 3.2.7 for WordPress (aka All in... |
| CVE-2019-16523 | 2019-10-16 | The events-manager plugin through 5.9.5 for WordPress (aka Events Manager)... |
| CVE-2019-16521 | 2019-10-16 | The broken-link-checker plugin through 1.11.8 for WordPress (aka Broken Link... |
| CVE-2019-16522 | 2019-10-16 | The eu-cookie-law plugin through 3.0.6 for WordPress (aka EU Cookie... |
| CVE-2019-6334 | 2019-10-16 | HP LaserJet, PageWide, OfficeJet Enterprise, and LaserJet Managed Printers have... |
| CVE-2019-11281 | 2019-10-16 | RabbitMQ XSS attack |
| CVE-2019-17660 | 2019-10-16 | A cross-site scripting (XSS) vulnerability in admin/translate/translateheader_view.php in LimeSurvey 3.19.1... |
| CVE-2019-6472 | 2019-10-16 | A packet containing a malformed DUID can cause the kea-dhcp6 server to terminate |
| CVE-2019-6473 | 2019-10-16 | A packet containing a malformed DUID can cause the kea-dhcp6 server to terminate |
| CVE-2019-6474 | 2019-10-16 | A packet containing a malformed DUID can cause the kea-dhcp6 server to terminate |
| CVE-2019-17662 | 2019-10-16 | ThinVNC 1.0b1 is vulnerable to arbitrary file read, which leads... |
| CVE-2019-17578 | 2019-10-16 | An issue was discovered in Dolibarr 10.0.2. It has XSS... |
| CVE-2019-17577 | 2019-10-16 | An issue was discovered in Dolibarr 10.0.2. It has XSS... |
| CVE-2019-2896 | 2019-10-16 | Vulnerability in the MICROS Relate CRM Software product of Oracle... |
| CVE-2018-2875 | 2019-10-16 | Vulnerability in the Core RDBMS component of Oracle Database Server.... |
| CVE-2018-3300 | 2019-10-16 | Vulnerability in the Oracle Retail Xstore Office product of Oracle... |
| CVE-2019-2734 | 2019-10-16 | Vulnerability in the Core RDBMS component of Oracle Database Server.... |
| CVE-2019-2765 | 2019-10-16 | Vulnerability in the Oracle Solaris product of Oracle Systems (component:... |
| CVE-2019-2872 | 2019-10-16 | Vulnerability in the Oracle Retail Xstore Point of Service product... |
| CVE-2019-2883 | 2019-10-16 | Vulnerability in the Oracle Retail Customer Management and Segmentation Foundation... |
| CVE-2019-2884 | 2019-10-16 | Vulnerability in the Oracle Retail Customer Management and Segmentation Foundation... |
| CVE-2019-2886 | 2019-10-16 | Vulnerability in the Oracle Forms product of Oracle Fusion Middleware... |
| CVE-2019-2887 | 2019-10-16 | Vulnerability in the Oracle WebLogic Server product of Oracle Fusion... |
| CVE-2019-2888 | 2019-10-16 | Vulnerability in the Oracle WebLogic Server product of Oracle Fusion... |
| CVE-2019-2889 | 2019-10-16 | Vulnerability in the Oracle WebLogic Server product of Oracle Fusion... |
| CVE-2019-2890 | 2019-10-16 | Vulnerability in the Oracle WebLogic Server product of Oracle Fusion... |
| CVE-2019-2891 | 2019-10-16 | Vulnerability in the Oracle WebLogic Server product of Oracle Fusion... |
| CVE-2019-2894 | 2019-10-16 | Vulnerability in the Java SE, Java SE Embedded product of... |
| CVE-2019-2895 | 2019-10-16 | Vulnerability in the Enterprise Manager for Exadata product of Oracle... |
| CVE-2019-2897 | 2019-10-16 | Vulnerability in the Oracle Business Intelligence Enterprise Edition product of... |
| CVE-2019-2898 | 2019-10-16 | Vulnerability in the BI Publisher (formerly XML Publisher) product of... |
| CVE-2019-2899 | 2019-10-16 | Vulnerability in the Oracle JDeveloper and ADF product of Oracle... |
| CVE-2019-2900 | 2019-10-16 | Vulnerability in the Oracle Business Intelligence Enterprise Edition product of... |
| CVE-2019-2901 | 2019-10-16 | Vulnerability in the Oracle Outside In Technology product of Oracle... |
| CVE-2019-2902 | 2019-10-16 | Vulnerability in the Oracle Outside In Technology product of Oracle... |
| CVE-2019-2903 | 2019-10-16 | Vulnerability in the Oracle Outside In Technology product of Oracle... |
| CVE-2019-2904 | 2019-10-16 | Vulnerability in the Oracle JDeveloper and ADF product of Oracle... |
| CVE-2019-2905 | 2019-10-16 | Vulnerability in the Oracle Business Intelligence Enterprise Edition product of... |
| CVE-2019-2906 | 2019-10-16 | Vulnerability in the BI Publisher (formerly XML Publisher) product of... |
| CVE-2019-2907 | 2019-10-16 | Vulnerability in the Oracle Web Services product of Oracle Fusion... |
| CVE-2019-2909 | 2019-10-16 | Vulnerability in the Java VM component of Oracle Database Server.... |