CVE List - 2019 / December
Showing 1401 - 1500 of 1578 CVEs for December 2019 (Page 15 of 16)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2019-16896 | 2019-12-27 | In K7 Ultimate Security 16.0.0117, the module K7BKCExt.dll (aka the backup module) improperly validates the administrative privileges of the user, allowing an arbitrary file write via a symbolic link attack... |
| CVE-2013-4691 | 2019-12-27 | Sencha Labs Connect has XSS with connect.methodOverride() |
| CVE-2013-4664 | 2019-12-27 | SPBAS Business Automation Software 2012 has XSS. |
| CVE-2013-4665 | 2019-12-27 | SPBAS Business Automation Software 2012 has CSRF. |
| CVE-2013-4693 | 2019-12-27 | WordPress Xorbin Digital Flash Clock 1.0 has XSS |
| CVE-2013-4695 | 2019-12-27 | Winamp 5.63: Invalid Pointer Dereference leading to Arbitrary Code Execution |
| CVE-2013-4692 | 2019-12-27 | Xorbin Analog Flash Clock 1.0 extension for Joomia has XSS |
| CVE-2013-4763 | 2019-12-27 | Samsung Galaxy S3/S4 exposes an unprotected component allowing arbitrary SMS text messages without requesting permission. |
| CVE-2013-4764 | 2019-12-27 | Samsung Galaxy S3/S4 exposes an unprotected component allowing an unprivileged app to send arbitrary SMS texts to arbitrary destinations without permission. |
| CVE-2013-4743 | 2019-12-27 | Static HTTP Server 1.0 has a Local Overflow |
| CVE-2013-4621 | 2019-12-27 | Magnolia CMS before 4.5.9 has multiple access bypass vulnerabilities |
| CVE-2013-4796 | 2019-12-27 | ReviewBoard 1.6.17 allows code execution by attaching PHP scripts to review request |
| CVE-2013-4859 | 2019-12-27 | INSTEON Hub 2242-222 lacks Web and API authentication |
| CVE-2013-4867 | 2019-12-27 | Electronic Arts Karotz Smart Rabbit 12.07.19.00 allows Python module hijacking |
| CVE-2013-4868 | 2019-12-27 | Karotz API 12.07.19.00: Session Token Information Disclosure |
| CVE-2014-4519 | 2019-12-27 | Cross-site scripting (XSS) vulnerability in the Conversador plugin 2.61 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the 'page' parameter. |
| CVE-2013-4975 | 2019-12-27 | Hikvision DS-2CD7153-E IP Camera has Privilege Escalation |
| CVE-2013-4976 | 2019-12-27 | Hikvision DS-2CD7153-E IP Camera has security bypass via hardcoded credentials |
| CVE-2014-4592 | 2019-12-27 | Cross-site scripting (XSS) vulnerability in rss.class/scripts/magpie_debug.php in the WP-Planet plugin 0.1 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the url parameter. |
| CVE-2013-4982 | 2019-12-27 | AVTECH AVN801 DVR has a security bypass via the administration login captcha |
| CVE-2013-4985 | 2019-12-27 | Multiple Vivotek IP Cameras remote authentication bypass that could allow access to the video stream |
| CVE-2013-5027 | 2019-12-27 | Collabtive 1.0 has incorrect access control |
| CVE-2007-0158 | 2019-12-27 | thttpd 2007 has buffer underflow. |
| CVE-2019-20049 | 2019-12-27 | An issue was discovered on Alcatel-Lucent OmniVista 4760 devices. A remote unauthenticated attacker can chain a directory traversal (which helps to bypass authentication) with an insecure file upload to achieve... |
| CVE-2019-20048 | 2019-12-27 | An issue was discovered on Alcatel-Lucent OmniVista 8770 devices before 4.1.2. An authenticated remote attacker, with elevated privileges in the Web Directory component on port 389, may upload a PHP... |
| CVE-2019-20047 | 2019-12-27 | An issue was discovered on Alcatel-Lucent OmniVista 4760 devices, and 8770 devices before 4.1.2. An incorrect web server configuration allows a remote unauthenticated attacker to retrieve the content of its... |
| CVE-2014-4567 | 2019-12-27 | Cross-site scripting (XSS) vulnerability in comments/videowhisper2/r_logout.php in the Video Comments Webcam Recorder plugin 1.55, as downloaded before 20140116 for WordPress allows remote attackers to inject arbitrary web script or HTML... |
| CVE-2014-4539 | 2019-12-27 | Cross-site scripting (XSS) vulnerability in the Movies plugin 0.6 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the filename parameter to getid3/demos/demo.mimeonly.php. |
| CVE-2014-4544 | 2019-12-27 | Cross-site scripting (XSS) vulnerability in the Podcast Channels plugin 0.20 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the Filename parameter to getid3/demos/demo.write.php. |
| CVE-2014-4548 | 2019-12-27 | Cross-site scripting (XSS) vulnerability in tinymce/popup.php in the Ruven Toolkit plugin 1.1 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the popup parameter. |
| CVE-2014-4558 | 2019-12-27 | Cross-site scripting (XSS) vulnerability in test-plugin.php in the Swipe Checkout for WooCommerce plugin 2.7.1 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the... |
| CVE-2014-4536 | 2019-12-27 | Multiple cross-site scripting (XSS) vulnerabilities in tests/notAuto_test_ContactService_pauseCampaign.php in the Infusionsoft Gravity Forms plugin before 1.5.6 for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1)... |
| CVE-2014-4535 | 2019-12-27 | Cross-site scripting (XSS) vulnerability in the Import Legacy Media plugin 0.1 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the filename parameter to... |
| CVE-2014-4550 | 2019-12-27 | Cross-site scripting (XSS) vulnerability in preview-shortcode-external.php in the Shortcode Ninja plugin 1.4 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the shortcode parameter. |
| CVE-2014-3136 | 2019-12-27 | Cross-site request forgery (CSRF) vulnerability in D-Link DWR-113 (Rev. Ax) with firmware before 2.03b02 allows remote attackers to hijack the authentication of administrators for requests that change the admin password... |
| CVE-2012-4980 | 2019-12-27 | Multiple stack-based buffer overflows in CFProfile.exe in Toshiba ConfigFree Utility 8.0.38 allow user-assisted attackers to execute arbitrary code. |
| CVE-2014-5289 | 2019-12-27 | Buffer overflow in Senkas Kolibri 2.0 allows remote attackers to execute arbitrary code via a long URI in a POST request. |
| CVE-2014-6420 | 2019-12-27 | Cross-site scripting (XSS) vulnerability in Livefyre LiveComments 3.0 allows remote attackers to inject arbitrary web script or HTML via the name of an uploaded picture. |
| CVE-2019-20051 | 2019-12-27 | A floating-point exception was discovered in PackLinuxElf::elf_hash in p_lx_elf.cpp in UPX 3.95. The vulnerability causes an application crash, which leads to denial of service. |
| CVE-2019-20053 | 2019-12-27 | An invalid memory address dereference was discovered in the canUnpack function in p_mach.cpp in UPX 3.95 via a crafted Mach-O file. |
| CVE-2019-20052 | 2019-12-27 | A memory leak was discovered in Mat_VarCalloc in mat.c in matio 1.5.17 because SafeMulDims does not consider the rank==0 case. |
| CVE-2019-20054 | 2019-12-28 | In the Linux kernel before 5.0.6, there is a NULL pointer dereference in drop_sysctl_table() in fs/proc/proc_sysctl.c, related to put_links, aka CID-23da9588037e. |
| CVE-2019-20055 | 2019-12-29 | LuquidPixels LiquiFire OS 4.8.0 allows SSRF via the call%3Durl substring followed by a URL in square brackets. |
| CVE-2019-20056 | 2019-12-29 | stb_image.h (aka the stb image loader) 2.23, as used in libsixel and other products, has an assertion failure in stbi__shiftsigned. |
| CVE-2019-20057 | 2019-12-29 | com.proxyman.NSProxy.HelperTool in Privileged Helper Tool in Proxyman for macOS 1.11.0 and earlier allows an attacker to change the System Proxy and redirect all traffic to an attacker-controlled computer, enabling MITM... |
| CVE-2019-20058 | 2019-12-29 | Bolt 3.7.0, if Symfony Web Profiler is used, allows XSS because unsanitized search?search= input is shown on the _profiler page. NOTE: this is disputed because profiling was never intended for... |
| CVE-2019-20063 | 2019-12-29 | hdf/dataobject.c in libmysofa before 0.8 has an uninitialized use of memory, as demonstrated by mysofa2json. |
| CVE-2019-20076 | 2019-12-29 | On Netis DL4323 devices, XSS exists via the form2Ddns.cgi username parameter (DynDns settings of the Dynamic DNS Configuration). |
| CVE-2019-20075 | 2019-12-29 | On Netis DL4323 devices, pingrtt_v6.html has XSS (Ping6 Diagnostic). |
| CVE-2019-20074 | 2019-12-29 | On Netis DL4323 devices, any user role can view sensitive information, such as a user password or the FTP password, via the form2saveConf.cgi page. |
| CVE-2019-20073 | 2019-12-29 | On Netis DL4323 devices, XSS exists via the form2userconfig.cgi username parameter (User Account Configuration). |
| CVE-2019-20072 | 2019-12-29 | On Netis DL4323 devices, XSS exists via the form2Ddns.cgi hostname parameter (Dynamic DNS Configuration). |
| CVE-2019-20071 | 2019-12-29 | On Netis DL4323 devices, CSRF exists via form2logaction.cgi to delete all logs. |
| CVE-2019-20070 | 2019-12-29 | On Netis DL4323 devices, XSS exists via the urlFQDN parameter to form2url.cgi (aka the Keyword field of the URL Blocking Configuration). |
| CVE-2019-20079 | 2019-12-30 | The autocmd feature in window.c in Vim before 8.1.2136 accesses freed memory. |
| CVE-2019-20085 | 2019-12-30 | TVT NVMS-1000 devices allow GET /.. Directory Traversal |
| CVE-2019-20094 | 2019-12-30 | An issue was discovered in libsixel 1.8.4. There is a heap-based buffer overflow in the function gif_init_frame at fromgif.c. |
| CVE-2019-20093 | 2019-12-30 | The PoDoFo::PdfVariant::DelayedLoad function in PdfVariant.h in PoDoFo 0.9.6 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted file, because of ImageExtractor.cpp. |
| CVE-2019-20092 | 2019-12-30 | An issue was discovered in Bento4 1.5.1.0. There is a NULL pointer dereference in AP4_Descriptor::GetTag in mp42ts when called from AP4_EsDescriptor::GetDecoderConfigDescriptor in Ap4EsDescriptor.cpp. |
| CVE-2019-20091 | 2019-12-30 | An issue was discovered in Bento4 1.5.1.0. There is a NULL pointer dereference in AP4_Descriptor::GetTag in mp42ts when called from AP4_DecoderConfigDescriptor::GetDecoderSpecificInfoDescriptor in Ap4DecoderConfigDescriptor.cpp. |
| CVE-2019-20090 | 2019-12-30 | An issue was discovered in Bento4 1.5.1.0. There is a use-after-free in AP4_Sample::GetOffset in Core/Ap4Sample.h when called from Ap4LinearReader.cpp. |
| CVE-2019-20089 | 2019-12-30 | GoPro GPMF-parser 1.2.3 has an heap-based buffer over-read in GPMF_SeekToSamples in GPMF_parse.c for the size calculation. |
| CVE-2019-20088 | 2019-12-30 | GoPro GPMF-parser 1.2.3 has a heap-based buffer over-read in GetPayload in GPMF_mp4reader.c. |
| CVE-2019-20087 | 2019-12-30 | GoPro GPMF-parser 1.2.3 has a heap-based buffer over-read in GPMF_seekToSamples in GPMF-parse.c for the "matching tags" feature. |
| CVE-2019-20086 | 2019-12-30 | GoPro GPMF-parser 1.2.3 has a heap-based buffer over-read in GPMF_Next in GPMF_parser.c. |
| CVE-2019-20096 | 2019-12-30 | In the Linux kernel before 5.1, there is a memory leak in __feat_register_sp() in net/dccp/feat.c, which may cause denial of service, aka CID-1d3ff0950e2b. |
| CVE-2019-20095 | 2019-12-30 | mwifiex_tm_cmd in drivers/net/wireless/marvell/mwifiex/cfg80211.c in the Linux kernel before 5.1.6 has some error-handling cases that did not free allocated hostcmd memory, aka CID-003b686ace82. This will cause a memory leak and denial... |
| CVE-2019-20138 | 2019-12-30 | The HTTP Authentication library before 2019-12-27 for Nim has weak password hashing because the default algorithm for libsodium's crypto_pwhash_str is not used. |
| CVE-2019-16535 | 2019-12-30 | In all versions of ClickHouse before 19.14, an OOB read, OOB write and integer underflow in decompression algorithms can be used to achieve RCE or DoS via native protocol. |
| CVE-2019-15024 | 2019-12-30 | In all versions of ClickHouse before 19.14.3, an attacker having write access to ZooKeeper and who is able to run a custom server available from the network where ClickHouse runs,... |
| CVE-2019-20139 | 2019-12-30 | In Nagios XI 5.6.9, XSS exists via the nocscreenapi.php host, hostgroup, or servicegroup parameter, or the schedulereport.php hour or frequency parameter. Any authenticated user can attack the admin user. |
| CVE-2018-1682 | 2019-12-30 | IBM Watson Studio Local 1.2.3 could disclose sensitive information over the network that an attacked could use in further attacks against the system. IBM X-Force ID: 145238. |
| CVE-2019-4335 | 2019-12-30 | IBM Watson Studio Local 1.2.3 stores key files in the user's home directory which could be obtained by another local user. IBM X-Force ID: 161413. |
| CVE-2019-4343 | 2019-12-30 | IBM Cognos Analytics 11.0 and 11.1 allows overly permissive cross-origin resource sharing which could allow an attacker to transfer private information. An attacker could exploit this vulnerability to access content... |
| CVE-2019-4623 | 2019-12-30 | IBM Cognos Analytics 11.0 and 11.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially... |
| CVE-2019-4655 | 2019-12-30 | IBM MQ 9.1.0.0, 9.1.0.1, 9.1.0.2, 9.1.0.3, 9.1.1, 9.1.2, and 9.1.3 is vulnerable to a denial of service attack that would allow an authenticated user to reset client connections due to... |
| CVE-2019-17621 | 2019-12-30 | The UPnP endpoint URL /gena.cgi in the D-Link DIR-859 Wi-Fi router 1.05 and 1.06B01 Beta01 allows an Unauthenticated remote attacker to execute system commands as root, by sending a specially... |
| CVE-2019-10774 | 2019-12-30 | php-shellcommand versions before 1.6.1 have a command injection vulnerability. Successful exploitation could lead to arbitrary code execution. |
| CVE-2019-20140 | 2019-12-30 | An issue was discovered in libsixel 1.8.4. There is a heap-based buffer overflow in the function gif_out_code at fromgif.c. |
| CVE-2019-17558 | 2019-12-30 | Apache Solr 5.0.0 to Apache Solr 8.3.1 are vulnerable to a Remote Code Execution through the VelocityResponseWriter. A Velocity template can be provided through Velocity templates in a configset `velocity/`... |
| CVE-2019-19739 | 2019-12-30 | MFScripts YetiShare 3.5.2 through 4.5.3 does not set the Secure flag on session cookies, allowing the cookie to be sent over cleartext channels. |
| CVE-2019-20141 | 2019-12-30 | An XSS issue was discovered in the Laborator Neon theme 2.0 for WordPress via the data/autosuggest-remote.php q parameter. |
| CVE-2019-19732 | 2019-12-30 | translation_manage_text.ajax.php and various *_manage.ajax.php in MFScripts YetiShare 3.5.2 through 4.5.3 directly insert values from the aSortDir_0 and/or sSortDir_0 parameter into a SQL string. This allows an attacker to inject their... |
| CVE-2019-19733 | 2019-12-30 | _get_all_file_server_paths.ajax.php (aka get_all_file_server_paths.ajax.php) in MFScripts YetiShare 3.5.2 through 4.5.3 does not sanitize or encode the output from the fileIds parameter on the page, which would allow an attacker to input... |
| CVE-2019-19734 | 2019-12-30 | _account_move_file_in_folder.ajax.php in MFScripts YetiShare 3.5.2 directly inserts values from the fileIds parameter into a SQL string. This allows an attacker to inject their own SQL and manipulate the query, typically... |
| CVE-2019-19735 | 2019-12-30 | class.userpeer.php in MFScripts YetiShare 3.5.2 through 4.5.3 uses an insecure method of creating password reset hashes (based only on microtime), which allows an attacker to guess the hash and set... |
| CVE-2019-19736 | 2019-12-30 | MFScripts YetiShare 3.5.2 through 4.5.3 does not set the HttpOnly flag on session cookies, allowing the cookie to be read by script, which can potentially be used by attackers to... |
| CVE-2019-19737 | 2019-12-30 | MFScripts YetiShare 3.5.2 through 4.5.3 does not set the SameSite flag on session cookies, allowing the cookie to be sent in cross-site requests and potentially be used in cross-site request... |
| CVE-2019-19738 | 2019-12-30 | log_file_viewer.php in MFScripts YetiShare 3.5.2 through 4.5.3 does not sanitize or encode the output from the lFile parameter on the page, which would allow an attacker to input HTML or... |
| CVE-2019-19805 | 2019-12-30 | _account_forgot_password.ajax.php in MFScripts YetiShare 3.5.2 through 4.5.3 takes a different amount of time to return depending on whether an email address is configured for the account name provided. This can... |
| CVE-2019-19806 | 2019-12-30 | _account_forgot_password.ajax.php in MFScripts YetiShare 3.5.2 through 4.5.3 displays a message indicating whether an email address is configured for the account name provided. This can be used by an attacker to... |
| CVE-2019-19470 | 2019-12-30 | Unsafe usage of .NET deserialization in Named Pipe message processing allows privilege escalation to NT AUTHORITY\SYSTEM for a local attacker. Affected product is TinyWall, all versions up to and including... |
| CVE-2019-13465 | 2019-12-30 | An issue was discovered in the ROS communications-related packages (aka ros_comm or ros-melodic-ros-comm) through 1.14.3. ROS_ASSERT_MSG only works when ROS_ASSERT_ENABLED is defined. This leads to a problem in the remove()... |
| CVE-2019-13445 | 2019-12-30 | An issue was discovered in the ROS communications-related packages (aka ros_comm or ros-melodic-ros-comm) through 1.14.3. parseOptions() in tools/rosbag/src/record.cpp has an integer overflow when a crafted split option can be entered... |
| CVE-2019-20149 | 2019-12-30 | ctorName in index.js in kind-of v6.0.2 allows external user input to overwrite certain internal attributes via a conflicting name, as demonstrated by 'constructor': {'name':'Symbol'}. Hence, a crafted payload can overwrite... |
| CVE-2012-5476 | 2019-12-30 | Within the RHOS Essex Preview (2012.2) of the OpenStack dashboard package, the file /etc/quantum/quantum.conf is world readable which exposes the admin password and token value. |
| CVE-2019-19031 | 2019-12-30 | Easy XML Editor through v1.7.8 is affected by: XML External Entity Injection. The impact is: Arbitrary File Read and DoS by consuming resources. The component is: XML Parsing. The attack... |
| CVE-2019-16790 | 2019-12-30 | Remote Code Execution in Tiny File Manager |
| CVE-2019-19032 | 2019-12-30 | XMLBlueprint through 16.191112 is affected by XML External Entity Injection. The impact is: Arbitrary File Read when an XML File is validated. The component is: XML Validate function. The attack... |
| CVE-2018-7859 | 2019-12-30 | A security vulnerability in D-Link DGS-1510-series switches with firmware 1.20.011, 1.30.007, 1.31.B003 and older that may allow a remote attacker to inject malicious scripts in the device and execute commands... |