CVE List - 2019 / August
Showing 1501 - 1600 of 2001 CVEs for August 2019 (Page 16 of 21)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2019-14751 | 2019-08-22 | NLTK Downloader before 3.4.5 is vulnerable to a directory traversal, allowing attackers to write arbitrary files via a ../ (dot dot slash) in an NLTK package (ZIP archive) that is... |
| CVE-2019-7617 | 2019-08-22 | When the Elastic APM agent for Python versions before 5.1.0 is run as a CGI script, there is a variable name clash flaw if a remote attacker can control the... |
| CVE-2019-14469 | 2019-08-22 | In Nexus Repository Manager before 3.18.0, users with elevated privileges can create stored XSS. |
| CVE-2019-12385 | 2019-08-22 | An issue was discovered in Ampache through 3.9.1. The search engine is affected by a SQL Injection, so any user able to perform lib/class/search.class.php searches (even guest users) can dump... |
| CVE-2019-12386 | 2019-08-22 | An issue was discovered in Ampache through 3.9.1. A stored XSS exists in the localplay.php LocalPlay "add instance" functionality. The injected code is reflected in the instances menu. This vulnerability... |
| CVE-2014-10394 | 2019-08-22 | The rich-counter plugin before 1.2.0 for WordPress has JavaScript injection via a User-Agent header. |
| CVE-2017-18586 | 2019-08-22 | The insert-pages plugin before 3.2.4 for WordPress has directory traversal via custom template paths. |
| CVE-2014-10392 | 2019-08-22 | The cforms2 plugin before 10.2 for WordPress has XSS. |
| CVE-2018-20988 | 2019-08-22 | The wpgform plugin before 0.94 for WordPress has eval injection in the CAPTCHA calculation. |
| CVE-2014-10391 | 2019-08-22 | The wp-support-plus-responsive-ticket-system plugin before 4.1 for WordPress has JavaScript injection. |
| CVE-2014-10390 | 2019-08-22 | The wp-support-plus-responsive-ticket-system plugin before 4.2 for WordPress has directory traversal. |
| CVE-2014-10389 | 2019-08-22 | The wp-support-plus-responsive-ticket-system plugin before 4.2 for WordPress has incorrect authentication. |
| CVE-2014-10388 | 2019-08-22 | The wp-support-plus-responsive-ticket-system plugin before 4.2 for WordPress has full path disclosure. |
| CVE-2014-10387 | 2019-08-22 | The wp-support-plus-responsive-ticket-system plugin before 4.2 for WordPress has SQL injection. |
| CVE-2019-15060 | 2019-08-22 | The traceroute function on the TP-Link TL-WR840N v4 router with firmware through 0.9.1 3.16 is vulnerable to remote code execution via a crafted payload in an IP address input field. |
| CVE-2016-10930 | 2019-08-22 | The wp-support-plus-responsive-ticket-system plugin before 7.1.0 for WordPress has insecure direct object reference via a ticket number. |
| CVE-2019-15331 | 2019-08-22 | The wp-support-plus-responsive-ticket-system plugin before 9.1.2 for WordPress has HTML injection. |
| CVE-2019-15330 | 2019-08-22 | The webp-express plugin before 0.14.11 for WordPress has insufficient protection against arbitrary file reading. |
| CVE-2015-9341 | 2019-08-22 | The wp-file-upload plugin before 3.4.1 for WordPress has insufficient restrictions on upload of .php.js files. |
| CVE-2015-9340 | 2019-08-22 | The wp-file-upload plugin before 3.0.0 for WordPress has insufficient restrictions on upload of php, js, pht, php3, php4, php5, phtml, htm, html, and htaccess files. |
| CVE-2015-9339 | 2019-08-22 | The wp-file-upload plugin before 2.7.1 for WordPress has insufficient restrictions on upload of .js files. |
| CVE-2015-9338 | 2019-08-22 | The wp-file-upload plugin before 2.5.0 for WordPress has insufficient restrictions on upload of .php files. |
| CVE-2018-20987 | 2019-08-22 | The newsletters-lite plugin before 4.6.8.6 for WordPress has PHP object injection. |
| CVE-2014-10386 | 2019-08-22 | The wp-live-chat-support plugin before 4.1.0 for WordPress has JavaScript injections. |
| CVE-2019-15329 | 2019-08-22 | The import-users-from-csv-with-meta plugin before 1.14.0.3 for WordPress has CSRF. |
| CVE-2019-15328 | 2019-08-22 | The import-users-from-csv-with-meta plugin before 1.14.0.3 for WordPress has XSS. |
| CVE-2019-15327 | 2019-08-22 | The import-users-from-csv-with-meta plugin before 1.14.1.3 for WordPress has XSS via imported data. |
| CVE-2019-15326 | 2019-08-22 | The import-users-from-csv-with-meta plugin before 1.14.2.1 for WordPress has directory traversal. |
| CVE-2019-15325 | 2019-08-22 | In GalliumOS 3.0, CONFIG_SECURITY_YAMA is disabled but /etc/sysctl.d/10-ptrace.conf tries to set /proc/sys/kernel/yama/ptrace_scope to 1, which might increase risk because of the appearance that a protection mechanism is present when actually... |
| CVE-2013-7483 | 2019-08-22 | The slidedeck2 plugin before 2.3.5 for WordPress has file inclusion. |
| CVE-2017-18585 | 2019-08-22 | The posts-in-page plugin before 1.3.0 for WordPress has ic_add_posts template='../ directory traversal. |
| CVE-2018-20986 | 2019-08-22 | The advanced-custom-fields (aka Elliot Condon Advanced Custom Fields) plugin before 5.7.8 for WordPress has XSS by authors. |
| CVE-2016-10929 | 2019-08-22 | The advanced-ajax-page-loader plugin before 2.7.7 for WordPress has no protection against the reading of uploaded files when not logged in. |
| CVE-2016-10928 | 2019-08-22 | The onelogin-saml-sso plugin before 2.2.0 for WordPress has a hardcoded @@@nopass@@@ password for just-in-time provisioned users. |
| CVE-2014-10382 | 2019-08-22 | The feature-comments plugin before 1.2.5 for WordPress has CSRF for featuring or burying a comment. |
| CVE-2017-18579 | 2019-08-22 | The corner-ad plugin before 1.0.8 for WordPress has XSS. |
| CVE-2017-18578 | 2019-08-22 | The crafty-social-buttons plugin before 1.5.8 for WordPress has XSS. |
| CVE-2015-9334 | 2019-08-22 | The email-newsletter plugin through 20.15 for WordPress has SQL injection. |
| CVE-2019-13139 | 2019-08-22 | In Docker before 18.09.4, an attacker who is capable of supplying or manipulating the build path for the "docker build" command would be able to gain command execution. An issue... |
| CVE-2014-10393 | 2019-08-22 | The cforms2 plugin before 10.5 for WordPress has XSS. |
| CVE-2019-15498 | 2019-08-23 | cgi-bin/cmh/webcam.sh in Vera Edge Home Controller 1.7.4452 allows remote unauthenticated users to execute arbitrary OS commands via --output argument injection in the username parameter to /cgi-bin/cmh/webcam.sh. |
| CVE-2019-15499 | 2019-08-23 | CodiMD 1.3.1, when Safari is used, allows XSS via an IFRAME element with allow-top-navigation in the sandbox attribute, in conjunction with a data: URL. |
| CVE-2019-15504 | 2019-08-23 | drivers/net/wireless/rsi/rsi_91x_usb.c in the Linux kernel through 5.2.9 has a Double Free via crafted USB device traffic (which may be remote via usbip or usbredir). |
| CVE-2019-15505 | 2019-08-23 | drivers/media/usb/dvb-usb/technisat-usb2.c in the Linux kernel through 5.2.9 has an out-of-bounds read via crafted USB device traffic (which may be remote via usbip or usbredir). |
| CVE-2019-15508 | 2019-08-23 | In Octopus Tentacle versions 3.0.8 to 5.0.0, when a web request proxy is configured, an authenticated user (in certain limited OctopusPrintVariables circumstances) could trigger a deployment that writes the web... |
| CVE-2019-15507 | 2019-08-23 | In Octopus Deploy versions 2018.8.4 to 2019.7.6, when a web request proxy is configured, an authenticated user (in certain limited special-characters circumstances) could trigger a deployment that writes the web... |
| CVE-2019-15513 | 2019-08-23 | An issue was discovered in OpenWrt libuci (aka Library for the Unified Configuration Interface) before 15.05.1 as used on Motorola CX2L MWR04L 1.01 and C1 MWR03 1.01 devices. /tmp/.uci/network locking... |
| CVE-2019-15514 | 2019-08-23 | The Privacy > Phone Number feature in the Telegram app 5.10 for Android and iOS provides an incorrect indication that the access level is Nobody, because attackers can find these... |
| CVE-2019-15476 | 2019-08-23 | Former before 4.2.1 has XSS via a checkbox value. |
| CVE-2019-15477 | 2019-08-23 | Jooby before 1.6.4 has XSS via the default error handler. |
| CVE-2019-15480 | 2019-08-23 | Domoticz 4.10717 has XSS via item.Name. |
| CVE-2019-15481 | 2019-08-23 | Kimai v2 before 1.1 has XSS via a timesheet description. |
| CVE-2019-15483 | 2019-08-23 | Bolt before 3.6.10 has XSS via a title that is mishandled in the system log. |
| CVE-2019-15484 | 2019-08-23 | Bolt before 3.6.10 has XSS via an image's alt or title field. |
| CVE-2019-15485 | 2019-08-23 | Bolt before 3.6.10 has XSS via createFolder or createFile in Controller/Async/FilesystemManager.php. |
| CVE-2019-15486 | 2019-08-23 | django-js-reverse (aka Django JS Reverse) before 0.9.1 has XSS via js_reverse_inline. |
| CVE-2019-15487 | 2019-08-23 | DfE School Experience before v16333-GA has XSS via a teacher training URL. |
| CVE-2019-15488 | 2019-08-23 | Ignite Realtime Openfire before 4.4.1 has reflected XSS via an LDAP setup test. |
| CVE-2019-15490 | 2019-08-23 | openITCOCKPIT before 3.7.1 allows code injection, aka RVID 1-445b21. |
| CVE-2019-15491 | 2019-08-23 | openITCOCKPIT before 3.7.1 has CSRF, aka RVID 2-445b21. |
| CVE-2019-15492 | 2019-08-23 | openITCOCKPIT before 3.7.1 has reflected XSS, aka RVID 3-445b21. |
| CVE-2019-15493 | 2019-08-23 | openITCOCKPIT before 3.7.1 allows deletion of files, aka RVID 4-445b21. |
| CVE-2019-15494 | 2019-08-23 | openITCOCKPIT before 3.7.1 allows SSRF, aka RVID 5-445b21. |
| CVE-2019-15482 | 2019-08-23 | selectize-plugin-a11y before 1.1.0 has XSS via the msg field. |
| CVE-2019-13421 | 2019-08-23 | Search Guard versions before 23.1 had an issue that an administrative user is able to retrieve bcrypt password hashes of other users configured in the internal user database. |
| CVE-2019-13423 | 2019-08-23 | Search Guard Kibana Plugin versions before 5.6.8-7 and before 6.x.y-12 had an issue that an authenticated Kibana user could impersonate as kibanaserver user when providing wrong credentials when all of... |
| CVE-2019-13422 | 2019-08-23 | Search Guard Kibana Plugin versions before 5.6.8-7 and before 6.x.y-12 had an issue that an attacker can redirect the user to a potentially malicious site upon Kibana login. |
| CVE-2019-11584 | 2019-08-23 | The MigratePriorityScheme resource in Jira before version 8.3.2 allows remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting (XSS) vulnerability in the priority icon url of... |
| CVE-2019-11585 | 2019-08-23 | The startup.jsp resource in Jira before version 7.13.6, from version 8.0.0 before version 8.2.3, and from version 8.3.0 before version 8.3.2 allows remote attackers to redirect users to a different... |
| CVE-2019-11586 | 2019-08-23 | The AddResolution.jspa resource in Jira before version 7.13.6, from version 8.0.0 before version 8.2.3, and from version 8.3.0 before version 8.3.2 allows remote attackers to create new resolutions via a... |
| CVE-2019-11587 | 2019-08-23 | Various exposed resources of the ViewLogging class in Jira before version 7.13.6, from version 8.0.0 before version 8.2.3, and from version 8.3.0 before version 8.3.2 allow remote attackers to modify... |
| CVE-2019-11588 | 2019-08-23 | The ViewSystemInfo class doGarbageCollection method in Jira before version 7.13.6, from version 8.0.0 before version 8.2.3, and from version 8.3.0 before version 8.3.2 allows remote attackers to trigger garbage collection... |
| CVE-2019-11589 | 2019-08-23 | The ChangeSharedFilterOwner resource in Jira before version 7.13.6, from version 8.0.0 before version 8.2.3, and from version 8.3.0 before version 8.3.2 allows remote attackers to attack users, in some cases... |
| CVE-2019-14999 | 2019-08-23 | The Uninstall REST endpoint in Atlassian Universal Plugin Manager before version 2.22.19, from version 3.0.0 before version 3.0.3 and from version 4.0.0 before version 4.0.3 allows remote attackers to uninstall... |
| CVE-2019-8444 | 2019-08-23 | The wikirenderer component in Jira before version 7.13.6, and from version 8.0.0 before version 8.3.2 allows remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting (XSS)... |
| CVE-2019-8445 | 2019-08-23 | Several worklog rest resources in Jira before version 7.13.7, and from version 8.0.0 before version 8.3.2 allow remote attackers to view worklog time information via a missing permissions check. |
| CVE-2019-8446 | 2019-08-23 | The /rest/issueNav/1/issueTable resource in Jira before version 8.3.2 allows remote attackers to enumerate usernames via an incorrect authorisation check. |
| CVE-2019-8447 | 2019-08-23 | The ServiceExecutor resource in Jira before version 8.3.2 allows remote attackers to trigger the creation of export files via a Cross-site request forgery (CSRF) vulnerability. |
| CVE-2019-15516 | 2019-08-23 | Cuberite before 2019-06-11 allows webadmin directory traversal via ....// because the protection mechanism simply removes one ../ substring. |
| CVE-2019-15519 | 2019-08-23 | Power-Response before 2019-02-02 allows directory traversal (up to the application's main directory) via a plugin. |
| CVE-2019-15518 | 2019-08-23 | Swoole before 4.2.13 allows directory traversal in swPort_http_static_handler. |
| CVE-2019-15517 | 2019-08-23 | jc21 Nginx Proxy Manager before 2.0.13 allows %2e%2e%2f directory traversal. |
| CVE-2019-15520 | 2019-08-23 | comelz Quark before 2019-03-26 allows directory traversal to locations outside of the project directory. |
| CVE-2019-15525 | 2019-08-23 | There is Missing SSL Certificate Validation in the pw3270 terminal emulator before version 5.1. |
| CVE-2019-15531 | 2019-08-23 | GNU Libextractor through 1.9 has a heap-based buffer over-read in the function EXTRACTOR_dvi_extract_method in plugins/dvi_extractor.c. |
| CVE-2019-15530 | 2019-08-23 | An issue was discovered on D-Link DIR-823G devices with firmware V1.0.2B05. There is a command injection in HNAP1 (exploitable with Authentication) via shell metacharacters in the LoginPassword field to Login. |
| CVE-2019-15529 | 2019-08-23 | An issue was discovered on D-Link DIR-823G devices with firmware V1.0.2B05. There is a command injection in HNAP1 (exploitable with Authentication) via shell metacharacters in the Username field to Login. |
| CVE-2019-15528 | 2019-08-23 | An issue was discovered on D-Link DIR-823G devices with firmware V1.0.2B05. There is a command injection in HNAP1 (exploitable with Authentication) via shell metacharacters in the Interface field to SetStaticRouteSettings. |
| CVE-2019-15527 | 2019-08-23 | An issue was discovered on D-Link DIR-823G devices with firmware V1.0.2B05. There is a command injection in HNAP1 (exploitable with Authentication) via shell metacharacters in the MaxIdTime field to SetWanSettings. |
| CVE-2019-15526 | 2019-08-23 | An issue was discovered on D-Link DIR-823G devices with firmware V1.0.2B05. There is a command injection in HNAP1 (exploitable with Authentication) via shell metacharacters in the Type field to SetWanSettings,... |
| CVE-2019-10751 | 2019-08-23 | All versions of the HTTPie package prior to version 1.0.3 are vulnerable to Open Redirect that allows an attacker to write an arbitrary file with supplied filename and content to... |
| CVE-2019-10746 | 2019-08-23 | mixin-deep is vulnerable to Prototype Pollution in versions before 1.3.2 and version 2.0.0. The function mixin-deep could be tricked into adding or modifying properties of Object.prototype using a constructor payload. |
| CVE-2019-10747 | 2019-08-23 | set-value is vulnerable to Prototype Pollution in versions lower than 3.0.1. The function mixin-deep could be tricked into adding or modifying properties of Object.prototype using any of the constructor, prototype... |
| CVE-2019-10750 | 2019-08-23 | deeply is vulnerable to Prototype Pollution in versions before 3.1.0. The function assign-deep could be tricked into adding or modifying properties of Object.prototype using using a _proto_ payload. |
| CVE-2019-13014 | 2019-08-23 | Little Snitch versions 4.4.0 fixes a vulnerability in a privileged helper tool. However, the operating system may have made a copy of the privileged helper which is not removed or... |
| CVE-2019-13013 | 2019-08-23 | Little Snitch versions 4.3.0 to 4.3.2 have a local privilege escalation vulnerability in their privileged helper tool. The privileged helper tool implements an XPC interface which is available to any... |
| CVE-2019-1580 | 2019-08-23 | Memory corruption in PAN-OS 7.1.24 and earlier, PAN-OS 8.0.19 and earlier, PAN-OS 8.1.9 and earlier, and PAN-OS 9.0.3 and earlier will allow a remote, unauthenticated user to craft a message... |
| CVE-2019-1581 | 2019-08-23 | PAN-OS: Remote code execution vulnerability in the PAN-OS SSH device management interface |
| CVE-2019-1582 | 2019-08-23 | Memory corruption in PAN-OS 8.1.9 and earlier, and PAN-OS 9.0.3 and earlier will allow an administrative user to cause arbitrary memory corruption by rekeying the current client interactive session. |
| CVE-2019-1583 | 2019-08-23 | Escalation of privilege vulnerability in the Palo Alto Networks Twistlock console 19.07.358 and earlier allows a Twistlock user with Operator capabilities to escalate privileges to that of another user. Active... |