CVE List - 2019 / March
Showing 601 - 700 of 1194 CVEs for March 2019 (Page 7 of 12)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2018-19525 | 2019-03-17 | An issue was discovered on Systrome ISG-600C, ISG-600H, and ISG-800W... |
| CVE-2019-7222 | 2019-03-17 | The KVM implementation in the Linux kernel through 4.20.5 has... |
| CVE-2018-13103 | 2019-03-17 | OX App Suite 7.8.4 and earlier allows SSRF. |
| CVE-2018-17996 | 2019-03-17 | LayerBB before 1.1.3 allows CSRF for adding a user via... |
| CVE-2018-19694 | 2019-03-17 | HMS Industrial Networks Netbiter WS100 3.30.5 devices and previous have... |
| CVE-2018-13104 | 2019-03-17 | OX App Suite 7.8.4 and earlier allows XSS. Internal reference:... |
| CVE-2018-17997 | 2019-03-17 | LayerBB 1.1.1 allows XSS via the titles of conversations (PMs). |
| CVE-2019-7383 | 2019-03-17 | An issue was discovered on Systrome Cumilon ISG-600C, ISG-600H, and... |
| CVE-2019-7384 | 2019-03-17 | An authenticated shell command injection issue has been discovered in... |
| CVE-2018-19783 | 2019-03-17 | Kentix MultiSensor-LAN 5.63.00 devices and previous allow Authentication Bypass via... |
| CVE-2018-18435 | 2019-03-17 | KioWare Server version 4.9.6 and older installs by default to... |
| CVE-2019-8934 | 2019-03-17 | hw/ppc/spapr.c in QEMU through 3.1.0 allows Information Exposure because the... |
| CVE-2019-7385 | 2019-03-17 | An authenticated shell command injection issue has been discovered in... |
| CVE-2018-6517 | 2019-03-17 | Prior to version 0.3.0, chloride's use of net-ssh resulted in... |
| CVE-2018-11747 | 2019-03-17 | Previously, Puppet Discovery was shipped with a default generated TLS... |
| CVE-2018-18762 | 2019-03-17 | SaltOS 3.1 r8126 contains a database download vulnerability. |
| CVE-2018-19917 | 2019-03-17 | Microweber 1.0.8 has reflected cross-site scripting (XSS) vulnerabilities. |
| CVE-2019-7386 | 2019-03-17 | A Denial of Service issue has been discovered in the... |
| CVE-2019-5417 | 2019-03-17 | A path traversal vulnerability in serve npm package version 7.0.1... |
| CVE-2019-5415 | 2019-03-17 | A bug in handling the ignore files and directories feature... |
| CVE-2019-7391 | 2019-03-17 | ZyXEL VMG3312-B10B DSL-491HNU-B1B v2 devices allow login/login-page.cgi CSRF. |
| CVE-2018-18798 | 2019-03-17 | Attendance Monitoring System 1.0 has SQL Injection via the 'id'... |
| CVE-2019-5416 | 2019-03-17 | A path traversal vulnerability in localhost-now npm package version 1.0.2... |
| CVE-2018-19934 | 2019-03-17 | SolarWinds Serv-U FTP Server 15.1.6.25 has reflected cross-site scripting (XSS)... |
| CVE-2019-5413 | 2019-03-17 | An attacker can use the format parameter to inject arbitrary... |
| CVE-2019-7416 | 2019-03-17 | XSS and/or a Client Side URL Redirect exists in OpenText... |
| CVE-2019-7417 | 2019-03-17 | XSS exists in Ericsson Active Library Explorer (ALEX) 14.3 in... |
| CVE-2019-5414 | 2019-03-17 | If an attacker can control the port, which in itself... |
| CVE-2019-7418 | 2019-03-17 | XSS exists in SAMSUNG X7400GX SyncThru Web Service V6.A6.25 V11.01.05.25_08-21-2015... |
| CVE-2018-18845 | 2019-03-17 | internal/advanced_comment_system/index.php and internal/advanced_comment_system/admin.php in Advanced Comment System, version 1.0, contain... |
| CVE-2018-19985 | 2019-03-17 | The function hso_get_config_data in drivers/net/usb/hso.c in the Linux kernel through... |
| CVE-2019-7419 | 2019-03-17 | XSS exists in SAMSUNG X7400GX SyncThru Web Service V6.A6.25 V11.01.05.25_08-21-2015... |
| CVE-2018-20121 | 2019-03-17 | Podcast Generator 2.7 has stored cross-site scripting (XSS) via the... |
| CVE-2018-18849 | 2019-03-17 | In Qemu 3.0.0, lsi_do_msgin in hw/scsi/lsi53c895a.c allows out-of-bounds access by... |
| CVE-2019-7420 | 2019-03-17 | XSS exists in SAMSUNG X7400GX SyncThru Web Service V6.A6.25 V11.01.05.25_08-21-2015... |
| CVE-2019-7421 | 2019-03-17 | XSS exists in SAMSUNG X7400GX SyncThru Web Service V6.A6.25 V11.01.05.25_08-21-2015... |
| CVE-2018-20140 | 2019-03-17 | Zenphoto 1.4.14 has multiple cross-site scripting (XSS) vulnerabilities via different... |
| CVE-2019-7422 | 2019-03-17 | XSS exists in Zoho ManageEngine Netflow Analyzer Professional v7.0.0.2 in... |
| CVE-2019-7423 | 2019-03-17 | XSS exists in Zoho ManageEngine Netflow Analyzer Professional v7.0.0.2 in... |
| CVE-2018-20141 | 2019-03-17 | AbanteCart 1.2.12 has reflected cross-site scripting (XSS) via the sort... |
| CVE-2019-7424 | 2019-03-17 | XSS exists in Zoho ManageEngine Netflow Analyzer Professional v7.0.0.2 in... |
| CVE-2018-20340 | 2019-03-17 | Yubico libu2f-host 1.1.6 contains unchecked buffers in devs.c, which could... |
| CVE-2019-7425 | 2019-03-17 | XSS exists in Zoho ManageEngine Netflow Analyzer Professional v7.0.0.2 in... |
| CVE-2018-20162 | 2019-03-17 | Digi TransPort LR54 4.4.0.26 and possible earlier devices have Improper... |
| CVE-2018-18862 | 2019-03-17 | BMC Remedy Mid-Tier 7.1.00 and 9.1.02.003 for BMC Remedy AR... |
| CVE-2018-20212 | 2019-03-17 | bin/statistics in TWiki 6.0.2 allows cross-site scripting (XSS) via the... |
| CVE-2018-20218 | 2019-03-17 | An issue was discovered on Teracue ENC-400 devices with firmware... |
| CVE-2018-20219 | 2019-03-17 | An issue was discovered on Teracue ENC-400 devices with firmware... |
| CVE-2018-20220 | 2019-03-17 | An issue was discovered on Teracue ENC-400 devices with firmware... |
| CVE-2018-20221 | 2019-03-17 | Secure/SAService.rem in Deltek Ajera Timesheets 9.10.16 and prior are vulnerable... |
| CVE-2018-18881 | 2019-03-17 | A Denial of Service (DOS) issue was discovered in ControlByWeb... |
| CVE-2018-18882 | 2019-03-17 | A stored cross-site scripting (XSS) issue was discovered in ControlByWeb... |
| CVE-2018-14486 | 2019-03-17 | DNN (formerly DotNetNuke) 9.1.1 allows cross-site scripting (XSS) via XML. |
| CVE-2018-18898 | 2019-03-17 | The email-ingestion feature in Best Practical Request Tracker 4.1.13 through... |
| CVE-2018-14575 | 2019-03-17 | Trash Bin plugin 1.1.3 for MyBB has cross-site scripting (XSS)... |
| CVE-2018-19158 | 2019-03-17 | ColossusCoinXT through 1.0.5 (a chain-based proof-of-stake cryptocurrency) allows a remote... |
| CVE-2018-15532 | 2019-03-17 | SynTP.sys in Synaptics Touchpad drivers before 2018-06-06 allows local users... |
| CVE-2018-19191 | 2019-03-17 | Webmin 1.890 has XSS via /config.cgi?webmin, the /shell/index.cgi history parameter,... |
| CVE-2018-19276 | 2019-03-17 | OpenMRS before 2.24.0 is affected by an Insecure Object Deserialization... |
| CVE-2018-15818 | 2019-03-17 | An issue was discovered in Repute ARForms 3.5.1 and prior.... |
| CVE-2018-15906 | 2019-03-17 | SolarWinds Serv-U FTP Server 15.1.6 allows remote authenticated users to... |
| CVE-2018-19487 | 2019-03-17 | The WP-jobhunt plugin before version 2.4 for WordPress does not... |
| CVE-2018-19488 | 2019-03-17 | The WP-jobhunt plugin before version 2.4 for WordPress does not... |
| CVE-2018-20323 | 2019-03-17 | www/soap/application/MCSoap/Logs.php in MailCleaner Community Edition 2018.08 allows remote attackers to... |
| CVE-2018-16519 | 2019-03-17 | COYO 9.0.8, 10.0.11 and 12.0.4 has cross-site scripting (XSS) via... |
| CVE-2018-19498 | 2019-03-17 | The Simplenia Pages plugin 2.6.0 for Atlassian Bitbucket Server has... |
| CVE-2018-19509 | 2019-03-17 | wg7.php in Webgalamb 7.0 makes opportunistic calls to htmlspecialchars() instead... |
| CVE-2018-19510 | 2019-03-17 | subscriber.php in Webgalamb through 7.0 is vulnerable to SQL injection... |
| CVE-2018-19511 | 2019-03-17 | wg7.php in Webgalamb 7.0 lacks security measures to prevent CSRF... |
| CVE-2018-19512 | 2019-03-17 | In Webgalamb through 7.0, a system/ajax.php "wgmfile restore" directory traversal... |
| CVE-2018-19513 | 2019-03-17 | In Webgalamb through 7.0, log files are exposed to the... |
| CVE-2018-19514 | 2019-03-17 | In Webgalamb through 7.0, an arbitrary code execution vulnerability could... |
| CVE-2018-11767 | 2019-03-18 | In Apache Hadoop 2.9.0 to 2.9.1, 2.8.3 to 2.8.4, 2.7.5... |
| CVE-2018-11789 | 2019-03-18 | When accessing the heron-ui webpage, people can modify the file... |
| CVE-2016-9166 | 2019-03-18 | NetIQ eDirectory versions prior to 9.0.2, under some circumstances, could... |
| CVE-2019-9857 | 2019-03-18 | In the Linux kernel through 5.0.2, the function inotify_update_existing_watch() in... |
| CVE-2018-20525 | 2019-03-18 | Roxy Fileman 1.4.5 allows Directory Traversal in copydir.php, copyfile.php, and... |
| CVE-2018-20526 | 2019-03-18 | Roxy Fileman 1.4.5 allows unrestricted file upload in upload.php. |
| CVE-2018-20555 | 2019-03-18 | The Design Chemical Social Network Tabs plugin 1.7.1 for WordPress... |
| CVE-2018-20556 | 2019-03-18 | SQL injection vulnerability in Booking Calendar plugin 8.4.3 for WordPress... |
| CVE-2018-20615 | 2019-03-18 | An out-of-bounds read issue was discovered in the HTTP/2 protocol... |
| CVE-2018-20669 | 2019-03-18 | An issue where a provided address with access_ok() is not... |
| CVE-2019-3495 | 2019-03-18 | An issue was discovered on Wifi-soft UniBox controller 0.x through... |
| CVE-2019-3496 | 2019-03-18 | An issue was discovered on Wifi-soft UniBox controller 3.x devices.... |
| CVE-2019-3497 | 2019-03-18 | An issue was discovered on Wifi-soft UniBox controller 0.x through... |
| CVE-2019-6724 | 2019-03-18 | The barracudavpn component of the Barracuda VPN Client prior to... |
| CVE-2018-14724 | 2019-03-18 | In the Ban List plugin 1.0 for MyBB, any forum... |
| CVE-2019-7299 | 2019-03-18 | A stored cross-site scripting (XSS) vulnerability in the submit_ticket.php module... |
| CVE-2018-19365 | 2019-03-18 | The REST API in Wowza Streaming Engine 4.7.4.01 allows traversal... |
| CVE-2018-18466 | 2019-03-18 | An issue was discovered in SecurEnvoy SecurAccess 9.3.502. When put... |
| CVE-2018-20737 | 2019-03-18 | An issue was discovered in WSO2 API Manager 2.1.0 and... |
| CVE-2018-20736 | 2019-03-18 | An issue was discovered in WSO2 API Manager 2.1.0 and... |
| CVE-2019-6970 | 2019-03-18 | Moodle 3.5.x before 3.5.4 allows SSRF. |
| CVE-2019-7161 | 2019-03-18 | An issue was discovered in Zoho ManageEngine ADSelfService Plus 5.x... |
| CVE-2019-6492 | 2019-03-18 | SmartDefragDriver.sys (2.0) in IObit Smart Defrag 6 never frees an... |
| CVE-2019-9093 | 2019-03-18 | A Reflected Cross Site Scripting (XSS) Vulnerability was discovered in... |
| CVE-2019-9094 | 2019-03-18 | A Reflected Cross Site Scripting (XSS) Vulnerability was discovered in... |
| CVE-2018-1836 | 2019-03-19 | IBM WebSphere MQ 9.0.2, 9.0.3, 9.0.4, 9.0.5, 9.1.0.0, and 9.1.0.1... |
| CVE-2019-4094 | 2019-03-19 | IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect... |
| CVE-2019-9867 | 2019-03-19 | An issue was discovered in the Web Console in Veritas... |