CVE List - 2019 / August
Showing 701 - 800 of 2001 CVEs for August 2019 (Page 8 of 21)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2019-12618 | 2019-08-12 | HashiCorp Nomad 0.9.0 through 0.9.1 has Incorrect Access Control via... |
| CVE-2019-14967 | 2019-08-12 | An issue was discovered in Frappe Framework 10, 11 before... |
| CVE-2019-14966 | 2019-08-12 | An issue was discovered in Frappe Framework 10 through 12... |
| CVE-2019-14965 | 2019-08-12 | An issue was discovered in Frappe Framework 10 through 12... |
| CVE-2019-14968 | 2019-08-12 | An issue was discovered in imcat 4.9. There is SQL... |
| CVE-2019-14969 | 2019-08-12 | Netwrix Auditor before 9.8 has insecure permissions on %PROGRAMDATA%\Netwrix Auditor\Logs\ActiveDirectory\... |
| CVE-2019-13417 | 2019-08-12 | Search Guard versions before 24.0 had an issue that field... |
| CVE-2019-14976 | 2019-08-12 | iCMS 7.0.15 allows admincp.php?app=apps XSS via the keywords parameter. |
| CVE-2019-13418 | 2019-08-12 | Search Guard versions before 24.0 had an issue that values... |
| CVE-2019-14980 | 2019-08-12 | In ImageMagick 7.x before 7.0.8-42 and 6.x before 6.9.10-42, there... |
| CVE-2019-14981 | 2019-08-12 | In ImageMagick 7.x before 7.0.8-41 and 6.x before 6.9.10-41, there... |
| CVE-2019-14982 | 2019-08-12 | In Exiv2 before v0.27.2, there is an integer overflow vulnerability... |
| CVE-2019-14359 | 2019-08-12 | On BC Vault devices, a side channel for the row-based... |
| CVE-2019-9514 | 2019-08-13 | Some HTTP/2 implementations are vulnerable to a reset flood, potentially leading to a denial of service |
| CVE-2019-14987 | 2019-08-13 | Adive Framework through 2.0.7 is affected by XSS in the... |
| CVE-2017-18509 | 2019-08-13 | An issue was discovered in net/ipv6/ip6mr.c in the Linux kernel... |
| CVE-2019-14530 | 2019-08-13 | An issue was discovered in custom/ajax_download.php in OpenEMR before 5.0.2... |
| CVE-2019-14516 | 2019-08-13 | The mAadhaar application 1.2.7 for Android lacks SSL Certificate Validation,... |
| CVE-2019-13420 | 2019-08-13 | Search Guard versions before 21.0 had an timing side channel... |
| CVE-2019-13419 | 2019-08-13 | Search Guard versions before 23.1 had an issue that for... |
| CVE-2019-8448 | 2019-08-13 | The login.jsp resource in Jira before version 7.13.4, and from... |
| CVE-2017-18507 | 2019-08-13 | The wp-live-chat-support plugin before 7.1.05 for WordPress has XSS. |
| CVE-2017-18498 | 2019-08-13 | The simple-job-board plugin before 2.4.4 for WordPress has reflected XSS... |
| CVE-2015-9302 | 2019-08-13 | The simple-fields plugin before 1.4.11 for WordPress has XSS. |
| CVE-2016-10871 | 2019-08-13 | The mailchimp-for-wp plugin before 4.0.11 for WordPress has XSS on... |
| CVE-2015-9301 | 2019-08-13 | The liveforms plugin before 3.2.0 for WordPress has SQL injection. |
| CVE-2017-18497 | 2019-08-13 | The liveforms plugin before 3.4.0 for WordPress has XSS. |
| CVE-2012-6713 | 2019-08-13 | The job-manager plugin before 0.7.19 for WordPress has multiple XSS... |
| CVE-2017-18496 | 2019-08-13 | The htaccess plugin before 1.7.6 for WordPress has multiple XSS... |
| CVE-2017-18495 | 2019-08-13 | The gravity-forms-sms-notifications plugin before 2.4.0 for WordPress has XSS. |
| CVE-2016-10870 | 2019-08-13 | The google-language-translator plugin before 5.0.06 for WordPress has XSS. |
| CVE-2015-9300 | 2019-08-13 | The events-manager plugin before 5.5.7 for WordPress has multiple XSS... |
| CVE-2015-9299 | 2019-08-13 | The events-manager plugin before 5.5.7.1 for WordPress has DOM XSS. |
| CVE-2015-9298 | 2019-08-13 | The events-manager plugin before 5.6 for WordPress has code injection. |
| CVE-2015-9297 | 2019-08-13 | The events-manager plugin before 5.6 for WordPress has XSS. |
| CVE-2015-9296 | 2019-08-13 | The download-monitor plugin before 1.7.1 for WordPress has XSS related... |
| CVE-2017-18494 | 2019-08-13 | The custom-search-plugin plugin before 1.36 for WordPress has multiple XSS... |
| CVE-2017-18493 | 2019-08-13 | The custom-admin-page plugin before 0.1.2 for WordPress has multiple XSS... |
| CVE-2018-20964 | 2019-08-13 | The contact-form-to-email plugin before 1.2.66 for WordPress has CSRF. |
| CVE-2018-20963 | 2019-08-13 | The contact-form-to-email plugin before 1.2.66 for WordPress has XSS. |
| CVE-2017-18492 | 2019-08-13 | The contact-form-to-db plugin before 1.5.7 for WordPress has multiple XSS... |
| CVE-2013-7475 | 2019-08-13 | The contact-form-plugin plugin before 3.52 for WordPress has XSS. |
| CVE-2015-9295 | 2019-08-13 | The contact-form-plugin plugin before 3.96 for WordPress has XSS. |
| CVE-2016-10869 | 2019-08-13 | The contact-form-plugin plugin before 4.0.2 for WordPress has XSS. |
| CVE-2017-18491 | 2019-08-13 | The contact-form-plugin plugin before 4.0.6 for WordPress has multiple XSS... |
| CVE-2017-18490 | 2019-08-13 | The contact-form-multi plugin before 1.2.1 for WordPress has multiple XSS... |
| CVE-2017-18489 | 2019-08-13 | The contact-form-7-sms-addon plugin before 2.4.0 for WordPress has XSS. |
| CVE-2015-9294 | 2019-08-13 | The all-in-one-wp-security-and-firewall plugin before 3.9.5 for WordPress has XSS in... |
| CVE-2015-9293 | 2019-08-13 | The all-in-one-wp-security-and-firewall plugin before 3.9.8 for WordPress has XSS in... |
| CVE-2016-10868 | 2019-08-13 | The all-in-one-wp-security-and-firewall plugin before 4.0.5 for WordPress has XSS in... |
| CVE-2019-14993 | 2019-08-13 | Istio before 1.1.13 and 1.2.x before 1.2.4 mishandles regular expressions... |
| CVE-2016-10867 | 2019-08-13 | The all-in-one-wp-security-and-firewall plugin before 4.0.6 for WordPress has XSS in... |
| CVE-2016-10866 | 2019-08-13 | The all-in-one-wp-security-and-firewall plugin before 4.2.0 for WordPress has multiple XSS... |
| CVE-2017-18488 | 2019-08-13 | The Backup Guard plugin before 1.1.47 for WordPress has multiple... |
| CVE-2017-18487 | 2019-08-13 | The adsense-plugin (aka Google AdSense) plugin before 1.44 for WordPress... |
| CVE-2019-10927 | 2019-08-13 | A vulnerability has been identified in SCALANCE SC-600 (V2.0), SCALANCE... |
| CVE-2019-10928 | 2019-08-13 | A vulnerability has been identified in SCALANCE SC-600 (V2.0). An... |
| CVE-2019-10929 | 2019-08-13 | A vulnerability has been identified in SIMATIC CP 1626 (All... |
| CVE-2019-10942 | 2019-08-13 | A vulnerability has been identified in SCALANCE X-200 switch family... |
| CVE-2019-10943 | 2019-08-13 | A vulnerability has been identified in SIMATIC Drive Controller family... |
| CVE-2019-13416 | 2019-08-13 | Search Guard versions before 24.3 had an issue when Cross... |
| CVE-2019-13415 | 2019-08-13 | Search Guard versions before 24.3 had an issue when Cross... |
| CVE-2019-12806 | 2019-08-13 | UniSign 2.0.4.0 and earlier version contains a stack-based buffer overflow... |
| CVE-2019-14984 | 2019-08-13 | eQ-3 Homematic CCU2 and CCU3 with the XML-API through 1.2.0... |
| CVE-2019-14985 | 2019-08-13 | eQ-3 Homematic CCU2 and CCU3 with the CUxD AddOn installed... |
| CVE-2019-14986 | 2019-08-13 | eQ-3 Homematic CCU2 and CCU3 with the CUxD AddOn before... |
| CVE-2019-12807 | 2019-08-13 | Alzip 10.83 and earlier version contains a stack-based buffer overflow... |
| CVE-2019-12808 | 2019-08-13 | ALTOOLS update service 18.1 and earlier versions contains a local... |
| CVE-2019-5223 | 2019-08-13 | PCManager 9.1.3.1 has an improper authentication vulnerability. The certain driver... |
| CVE-2019-5299 | 2019-08-13 | Huawei mobile phones Hima-AL00Bhave with Versions earlier than HMA-AL00C00B175 have... |
| CVE-2019-5280 | 2019-08-13 | The SIP TLS module of Huawei CloudLink Phone 7900 with... |
| CVE-2019-12479 | 2019-08-13 | An issue was discovered in 20|20 Storage 2.11.0. A Path... |
| CVE-2019-9511 | 2019-08-13 | Some HTTP/2 implementations are vulnerable to window size manipulation and stream prioritization manipulation, potentially leading to a denial of service |
| CVE-2019-9512 | 2019-08-13 | Some HTTP/2 implementations are vulnerable to ping floods, potentially leading to a denial of service |
| CVE-2019-9513 | 2019-08-13 | Some HTTP/2 implementations are vulnerable to resource loops, potentially leading to a denial of service |
| CVE-2019-9515 | 2019-08-13 | Some HTTP/2 implementations are vulnerable to a settings flood, potentially leading to a denial of service |
| CVE-2019-9516 | 2019-08-13 | Some HTTP/2 implementations are vulnerable to a header leak, potentially leading to a denial of service |
| CVE-2019-9517 | 2019-08-13 | Some HTTP/2 implementations are vulnerable to unconstrained interal data buffering, potentially leading to a denial of service |
| CVE-2019-9518 | 2019-08-13 | Some HTTP/2 implementations are vulnerable to a flood of empty frames, potentially leading to a denial of service |
| CVE-2019-14809 | 2019-08-13 | net/url in Go before 1.11.13 and 1.12.x before 1.12.8 mishandles... |
| CVE-2019-11207 | 2019-08-13 | TIBCO LogLogic Log Management Intelligence Multiple Cross-Site Scripting (XSS) and Cross-Site Request Forgery (CSRF) Vulnerabilities |
| CVE-2019-15028 | 2019-08-14 | In Joomla! before 3.9.11, inadequate checks in com_contact could allow... |
| CVE-2014-10375 | 2019-08-14 | handle_messages in eXtl_tls.c in eXosip before 5.0.0 mishandles a negative... |
| CVE-2019-14973 | 2019-08-14 | _TIFFCheckMalloc and _TIFFCheckRealloc in tif_aux.c in LibTIFF through 4.0.10 mishandle... |
| CVE-2019-15027 | 2019-08-14 | The MediaTek Embedded Multimedia Card (eMMC) subsystem for Android on... |
| CVE-2019-14975 | 2019-08-14 | Artifex MuPDF before 1.16.0 has a heap-based buffer over-read in... |
| CVE-2017-18515 | 2019-08-14 | The wp-statistics plugin before 12.0.8 for WordPress has SQL injection. |
| CVE-2019-0331 | 2019-08-14 | Under certain conditions, SAP BusinessObjects Business Intelligence Platform (BI Workspace),... |
| CVE-2019-0332 | 2019-08-14 | SAP BusinessObjects Business Intelligence Platform (Info View), versions 4.1, 4.2,... |
| CVE-2019-0335 | 2019-08-14 | Under certain conditions SAP BusinessObjects Business Intelligence Platform (Central Management... |
| CVE-2019-0337 | 2019-08-14 | Java Proxy Runtime of SAP NetWeaver Process Integration, versions 7.10,... |
| CVE-2019-0333 | 2019-08-14 | In some situations, when a client cancels a query in... |
| CVE-2019-0334 | 2019-08-14 | When creating a module in SAP BusinessObjects Business Intelligence Platform... |
| CVE-2019-0338 | 2019-08-14 | During an OData V2/V4 request in SAP Gateway, versions 750,... |
| CVE-2019-0341 | 2019-08-14 | The session cookie used by SAP Enable Now, version 1902,... |
| CVE-2019-0340 | 2019-08-14 | The XML parser, which is being used by SAP Enable... |
| CVE-2019-0343 | 2019-08-14 | SAP Commerce Cloud (Mediaconversion Extension), versions 6.4, 6.5, 6.6, 6.7,... |
| CVE-2019-0344 | 2019-08-14 | Due to unsafe deserialization used in SAP Commerce Cloud (virtualjdbc... |
| CVE-2019-0345 | 2019-08-14 | A remote unauthenticated attacker can abuse a web service in... |
| CVE-2019-0346 | 2019-08-14 | Unencrypted communication error in SAP Business Objects Business Intelligence Platform... |