CVE List - 2019 / August
Showing 1001 - 1100 of 2001 CVEs for August 2019 (Page 11 of 21)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2019-3974 | 2019-08-15 | Nessus 8.5.2 and earlier on Windows platforms were found to... |
| CVE-2019-12791 | 2019-08-15 | A directory traversal vulnerability in the v-list-user script in Vesta... |
| CVE-2019-12792 | 2019-08-15 | A command injection vulnerability in UploadHandler.php in Vesta Control Panel... |
| CVE-2018-14062 | 2019-08-15 | The COSPAS-SARSAT protocol allows remote attackers to forge messages, replay... |
| CVE-2019-10081 | 2019-08-15 | HTTP/2 (2.4.20 through 2.4.39) very early pushes, for example configured... |
| CVE-2019-9850 | 2019-08-15 | Insufficient url validation allowing LibreLogo script execution |
| CVE-2019-9851 | 2019-08-15 | LibreLogo global-event script execution |
| CVE-2019-9852 | 2019-08-15 | Insufficient URL encoding flaw in allowed script location check |
| CVE-2019-15084 | 2019-08-15 | Realtek Waves MaxxAudio driver 1.6.2.0, as used on Dell laptops,... |
| CVE-2019-15090 | 2019-08-15 | An issue was discovered in drivers/scsi/qedi/qedi_dbg.c in the Linux kernel... |
| CVE-2019-5477 | 2019-08-16 | A command injection vulnerability in Nokogiri v1.10.3 and earlier allows... |
| CVE-2019-15095 | 2019-08-16 | DWSurvey through 2019-07-22 has reflected XSS via the design/qu-multi-fillblank!answers.action surveyId... |
| CVE-2019-15099 | 2019-08-16 | drivers/net/wireless/ath/ath10k/usb.c in the Linux kernel through 5.2.8 has a NULL... |
| CVE-2019-15098 | 2019-08-16 | drivers/net/wireless/ath/ath6kl/usb.c in the Linux kernel through 5.2.9 has a NULL... |
| CVE-2019-15107 | 2019-08-16 | An issue was discovered in Webmin <=1.920. The parameter old... |
| CVE-2019-15106 | 2019-08-16 | An issue was discovered in Zoho ManageEngine OpManager in builds... |
| CVE-2019-15105 | 2019-08-16 | An issue was discovered in Zoho ManageEngine Application Manager through... |
| CVE-2019-15104 | 2019-08-16 | An issue was discovered in Zoho ManageEngine OpManager through 12.4x.... |
| CVE-2016-10894 | 2019-08-16 | xtrlock through 2.10 does not block multitouch events. Consequently, an... |
| CVE-2019-15108 | 2019-08-16 | An issue was discovered in WSO2 API Manager 2.6.0 before... |
| CVE-2018-20969 | 2019-08-16 | do_ed_script in pch.c in GNU patch through 2.7.6 does not... |
| CVE-2019-15091 | 2019-08-16 | filemgr.php in Artica Integria IMS 5.0.86 allows index.php?sec=wiki&sec2=operation/wiki/wiki&action=upload arbitrary file... |
| CVE-2019-14923 | 2019-08-16 | EyesOfNetwork 5.1 allows Remote Command Execution via shell metacharacters in... |
| CVE-2015-9326 | 2019-08-16 | The wp-business-intelligence-lite plugin before 1.6.3 for WordPress has SQL injection. |
| CVE-2015-9325 | 2019-08-16 | The visitors-online plugin before 0.4 for WordPress has SQL injection. |
| CVE-2016-10904 | 2019-08-16 | The olimometer plugin before 2.57 for WordPress has SQL injection. |
| CVE-2017-18548 | 2019-08-16 | The note-press plugin before 0.1.2 for WordPress has SQL injection. |
| CVE-2019-15118 | 2019-08-16 | check_input_term in sound/usb/mixer.c in the Linux kernel through 5.2.9 mishandles... |
| CVE-2019-15117 | 2019-08-16 | parse_audio_mixer_unit in sound/usb/mixer.c in the Linux kernel through 5.2.9 mishandles... |
| CVE-2019-15119 | 2019-08-16 | lib/install/install.go in cnlh nps through 0.23.2 uses 0777 permissions for... |
| CVE-2019-15120 | 2019-08-16 | The Kunena extension before 5.1.14 for Joomla! allows XSS via... |
| CVE-2019-7964 | 2019-08-16 | Adobe Experience Manager versions 6.5, and 6.4 have an authentication... |
| CVE-2019-8063 | 2019-08-16 | Creative Cloud Desktop Application 4.6.1 and earlier versions have an... |
| CVE-2019-7957 | 2019-08-16 | Creative Cloud Desktop Application versions 4.6.1 and earlier have a... |
| CVE-2019-7958 | 2019-08-16 | Creative Cloud Desktop Application versions 4.6.1 and earlier have an... |
| CVE-2019-7959 | 2019-08-16 | Creative Cloud Desktop Application versions 4.6.1 and earlier have a... |
| CVE-2014-10376 | 2019-08-16 | The i-recommend-this plugin before 3.7.3 for WordPress has SQL injection. |
| CVE-2015-9324 | 2019-08-16 | The easy-digital-downloads plugin before 2.3.3 for WordPress has SQL injection. |
| CVE-2019-15116 | 2019-08-16 | The easy-digital-downloads plugin before 2.9.16 for WordPress has XSS related... |
| CVE-2015-9323 | 2019-08-16 | The 404-to-301 plugin before 2.0.3 for WordPress has SQL injection. |
| CVE-2019-15115 | 2019-08-16 | The peters-login-redirect plugin before 2.9.2 for WordPress has CSRF. |
| CVE-2017-18547 | 2019-08-16 | The nelio-ab-testing plugin before 4.6.4 for WordPress has CSRF in... |
| CVE-2018-20974 | 2019-08-16 | The js-jobs plugin before 1.0.7 for WordPress has CSRF. |
| CVE-2017-18546 | 2019-08-16 | The jayj-quicktag plugin before 1.3.2 for WordPress has CSRF. |
| CVE-2017-18545 | 2019-08-16 | The invite-anyone plugin before 1.3.16 for WordPress has incorrect escaping... |
| CVE-2017-18544 | 2019-08-16 | The invite-anyone plugin before 1.3.16 for WordPress has admin-panel CSRF. |
| CVE-2017-18543 | 2019-08-16 | The invite-anyone plugin before 1.3.16 for WordPress has incorrect access... |
| CVE-2019-15114 | 2019-08-16 | The formcraft-form-builder plugin before 1.2.2 for WordPress has CSRF. |
| CVE-2015-9322 | 2019-08-16 | The erident-custom-login-and-dashboard plugin before 3.5 for WordPress has CSRF. |
| CVE-2019-15113 | 2019-08-16 | The companion-sitemap-generator plugin before 3.7.0 for WordPress has CSRF. |
| CVE-2018-20973 | 2019-08-16 | The companion-auto-update plugin before 3.2.1 for WordPress has local file... |
| CVE-2018-20972 | 2019-08-16 | The companion-auto-update plugin before 3.2.1 for WordPress has CSRF. |
| CVE-2018-20971 | 2019-08-16 | The church-admin plugin before 1.2550 for WordPress has CSRF affecting... |
| CVE-2017-18542 | 2019-08-16 | The zendesk-help-center plugin before 1.0.5 for WordPress has multiple XSS... |
| CVE-2017-18541 | 2019-08-16 | The xo-security plugin before 1.5.3 for WordPress has XSS. |
| CVE-2019-15132 | 2019-08-17 | Zabbix through 4.4.0alpha1 allows User Enumeration. With login requests, it... |
| CVE-2019-15133 | 2019-08-17 | In GIFLIB before 2019-02-16, a malformed GIF file triggers a... |
| CVE-2019-14937 | 2019-08-17 | REDCap before 9.3.0 allows time-based SQL injection in the edit... |
| CVE-2019-13069 | 2019-08-17 | extenua SilverSHielD 6.x fails to secure its ProgramData folder, leading... |
| CVE-2019-15134 | 2019-08-17 | RIOT through 2019.07 contains a memory leak in the TCP... |
| CVE-2019-15135 | 2019-08-18 | The handshake protocol in Object Management Group (OMG) DDS Security... |
| CVE-2019-15136 | 2019-08-18 | The Access Control plugin in eProsima Fast RTPS through 1.9.0... |
| CVE-2019-15137 | 2019-08-18 | The Access Control plugin in eProsima Fast RTPS through 1.9.0... |
| CVE-2019-15129 | 2019-08-18 | The Recruitment module in Humanica Humatrix 7 1.0.0.203 and 1.0.0.681... |
| CVE-2019-15130 | 2019-08-18 | The Recruitment module in Humanica Humatrix 7 1.0.0.203 and 1.0.0.681... |
| CVE-2019-15148 | 2019-08-18 | GoPro GPMF-parser 1.2.2 has an out-of-bounds write in OpenMP4Source in... |
| CVE-2019-15147 | 2019-08-18 | GoPro GPMF-parser 1.2.2 has an out-of-bounds read and SEGV in... |
| CVE-2019-15146 | 2019-08-18 | GoPro GPMF-parser 1.2.2 has a heap-based buffer over-read (4 bytes)... |
| CVE-2019-15145 | 2019-08-18 | DjVuLibre 3.5.27 allows attackers to cause a denial-of-service attack (application... |
| CVE-2019-15144 | 2019-08-18 | In DjVuLibre 3.5.27, the sorting functionality (aka GArrayTemplate<TYPE>::sort) allows attackers... |
| CVE-2019-15143 | 2019-08-18 | In DjVuLibre 3.5.27, the bitmap reader component allows attackers to... |
| CVE-2019-15142 | 2019-08-18 | In DjVuLibre 3.5.27, DjVmDir.cpp in the DJVU reader component allows... |
| CVE-2019-15141 | 2019-08-18 | WriteTIFFImage in coders/tiff.c in ImageMagick 7.0.8-43 Q16 allows attackers to... |
| CVE-2019-15140 | 2019-08-18 | coders/mat.c in ImageMagick 7.0.8-43 Q16 allows remote attackers to cause... |
| CVE-2019-15139 | 2019-08-18 | The XWD image (X Window System window dumping file) parsing... |
| CVE-2019-15149 | 2019-08-18 | core.py in Mitogen before 0.2.8 has a typo that drops... |
| CVE-2019-15151 | 2019-08-18 | AdPlug 2.3.1 has a double free in the Cu6mPlayer class... |
| CVE-2017-18552 | 2019-08-19 | An issue was discovered in net/rds/af_rds.c in the Linux kernel... |
| CVE-2017-18551 | 2019-08-19 | An issue was discovered in drivers/i2c/i2c-core-smbus.c in the Linux kernel... |
| CVE-2016-10907 | 2019-08-19 | An issue was discovered in drivers/iio/dac/ad5755.c in the Linux kernel... |
| CVE-2017-18550 | 2019-08-19 | An issue was discovered in drivers/scsi/aacraid/commctrl.c in the Linux kernel... |
| CVE-2017-18549 | 2019-08-19 | An issue was discovered in drivers/scsi/aacraid/commctrl.c in the Linux kernel... |
| CVE-2016-10906 | 2019-08-19 | An issue was discovered in drivers/net/ethernet/arc/emac_main.c in the Linux kernel... |
| CVE-2016-10905 | 2019-08-19 | An issue was discovered in fs/gfs2/rgrp.c in the Linux kernel... |
| CVE-2018-20976 | 2019-08-19 | An issue was discovered in fs/xfs/xfs_super.c in the Linux kernel... |
| CVE-2019-15150 | 2019-08-19 | In the OAuth2 Client extension before 0.4 for MediaWiki, a... |
| CVE-2019-15160 | 2019-08-19 | The SweetXml (aka sweet_xml) package through 0.6.6 for Erlang and... |
| CVE-2019-5631 | 2019-08-19 | Rapid7 InsightAppSec Local Privilege Escalation |
| CVE-2019-11276 | 2019-08-19 | Apps Manager sends tokens to Spring apps via HTTP |
| CVE-2019-6159 | 2019-08-19 | A stored cross-site scripting (XSS) vulnerability exists in various firmware... |
| CVE-2019-6165 | 2019-08-19 | A DLL search path vulnerability was reported in PaperDisplay Hotkey... |
| CVE-2019-6171 | 2019-08-19 | A vulnerability was reported in various BIOS versions of older... |
| CVE-2019-6178 | 2019-08-19 | An information leakage vulnerability in Iomega and LenovoEMC NAS products... |
| CVE-2019-11162 | 2019-08-19 | Insufficient access control in hardware abstraction in SEMA driver for... |
| CVE-2019-11163 | 2019-08-19 | Insufficient access control in a hardware abstraction driver for Intel(R)... |
| CVE-2019-11148 | 2019-08-19 | Improper permissions in the installer for Intel(R) Remote Displays SDK... |
| CVE-2019-11145 | 2019-08-19 | Improper file verification in Intel® Driver & Support Assistant before... |
| CVE-2019-11146 | 2019-08-19 | Improper file verification in Intel® Driver & Support Assistant before... |
| CVE-2019-11143 | 2019-08-19 | Improper permissions in the software installer for Intel(R) Authenticate before... |
| CVE-2019-11140 | 2019-08-19 | Insufficient session validation in system firmware for Intel(R) NUC may... |