CVE List - 2019 / August
Showing 501 - 600 of 2001 CVEs for August 2019 (Page 6 of 21)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2019-10370 | 2019-08-07 | Jenkins Mask Passwords Plugin 2.12.0 and earlier transmits globally configured... |
| CVE-2019-10371 | 2019-08-07 | A session fixation vulnerability in Jenkins Gitlab Authentication Plugin 1.4... |
| CVE-2019-10372 | 2019-08-07 | An open redirect vulnerability in Jenkins Gitlab Authentication Plugin 1.4... |
| CVE-2019-10373 | 2019-08-07 | A stored cross-site scripting vulnerability in Jenkins Build Pipeline Plugin... |
| CVE-2019-10374 | 2019-08-07 | A stored cross-site scripting vulnerability in Jenkins PegDown Formatter Plugin... |
| CVE-2019-10375 | 2019-08-07 | An arbitrary file read vulnerability in Jenkins File System SCM... |
| CVE-2019-10376 | 2019-08-07 | A reflected cross-site scripting vulnerability in Jenkins Wall Display Plugin... |
| CVE-2019-10377 | 2019-08-07 | A missing permission check in Jenkins Avatar Plugin 1.2 and... |
| CVE-2019-10378 | 2019-08-07 | Jenkins TestLink Plugin 3.16 and earlier stores credentials unencrypted in... |
| CVE-2019-10379 | 2019-08-07 | Jenkins Google Cloud Messaging Notification Plugin 1.0 and earlier stores... |
| CVE-2019-10380 | 2019-08-07 | Jenkins Simple Travis Pipeline Runner Plugin 1.0 and earlier specifies... |
| CVE-2019-10381 | 2019-08-07 | Jenkins Codefresh Integration Plugin 1.8 and earlier disables SSL/TLS and... |
| CVE-2019-10382 | 2019-08-07 | Jenkins VMware Lab Manager Slaves Plugin 0.2.8 and earlier disables... |
| CVE-2019-10385 | 2019-08-07 | Jenkins eggPlant Plugin 2.2 and earlier stores credentials unencrypted in... |
| CVE-2019-10386 | 2019-08-07 | A cross-site request forgery vulnerability in Jenkins XL TestView Plugin... |
| CVE-2019-10387 | 2019-08-07 | A missing permission check in Jenkins XL TestView Plugin 1.2.0... |
| CVE-2019-10388 | 2019-08-07 | A cross-site request forgery vulnerability in Jenkins Relution Enterprise Appstore... |
| CVE-2019-10389 | 2019-08-07 | A missing permission check in Jenkins Relution Enterprise Appstore Publisher... |
| CVE-2019-14744 | 2019-08-07 | In KDE Frameworks KConfig before 5.61.0, malicious desktop files and... |
| CVE-2018-20961 | 2019-08-07 | In the Linux kernel before 4.16.4, a double free vulnerability... |
| CVE-2019-14432 | 2019-08-07 | Incorrect authentication of application WebSocket connections in Loom Desktop for... |
| CVE-2019-14745 | 2019-08-07 | In radare2 before 3.7.0, a command injection vulnerability exists in... |
| CVE-2019-14746 | 2019-08-07 | A issue was discovered in KuaiFanCMS 5.0. It allows eval... |
| CVE-2019-14747 | 2019-08-07 | DWSurvey through 2019-07-22 has stored XSS via the design/my-survey-design!copySurvey.action surveyName... |
| CVE-2016-5431 | 2019-08-07 | The PHP JOSE Library by Gree Inc. before version 2.2.1... |
| CVE-2019-10099 | 2019-08-07 | Prior to Spark 2.3.3, in certain situations Spark would write... |
| CVE-2019-5476 | 2019-08-07 | An SQL Injection in the Nextcloud Lookup-Server < v0.3.0 (running... |
| CVE-2019-11653 | 2019-08-07 | Remote Access Control Bypass in Micro Focus Content Manager. versions... |
| CVE-2019-14750 | 2019-08-07 | An issue was discovered in osTicket before 1.10.7 and 1.12.x... |
| CVE-2019-14749 | 2019-08-07 | An issue was discovered in osTicket before 1.10.7 and 1.12.x... |
| CVE-2019-14748 | 2019-08-07 | An issue was discovered in osTicket before 1.10.7 and 1.12.x... |
| CVE-2019-14537 | 2019-08-07 | YOURLS through 1.7.3 is affected by a type juggling vulnerability... |
| CVE-2019-14474 | 2019-08-07 | eQ-3 Homematic CCU3 3.47.15 and prior has Improper Input Validation... |
| CVE-2019-1895 | 2019-08-07 | Cisco Enterprise NFV Infrastructure Software VNC Authentication Bypass Vulnerability |
| CVE-2019-1910 | 2019-08-07 | Cisco IOS XR Software Intermediate System to Intermediate System Denial of Service Vulnerability |
| CVE-2019-1925 | 2019-08-07 | Cisco Webex Network Recording Player and Cisco Webex Player Arbitrary Code Execution Vulnerabilities |
| CVE-2019-1924 | 2019-08-07 | Cisco Webex Network Recording Player and Cisco Webex Player Arbitrary Code Execution Vulnerabilities |
| CVE-2019-1918 | 2019-08-07 | Cisco IOS XR Software Intermediate System–to–Intermediate System Denial of Service Vulnerability |
| CVE-2019-1927 | 2019-08-07 | Cisco Webex Network Recording Player and Cisco Webex Player Arbitrary Code Execution Vulnerabilities |
| CVE-2019-1926 | 2019-08-07 | Cisco Webex Network Recording Player and Cisco Webex Player Arbitrary Code Execution Vulnerabilities |
| CVE-2019-1944 | 2019-08-07 | Cisco Adaptive Security Appliance Smart Tunnel Vulnerabilities |
| CVE-2019-1934 | 2019-08-07 | Cisco Adaptive Security Appliance Software Web-Based Management Interface Privilege Escalation Vulnerability |
| CVE-2019-1929 | 2019-08-07 | Cisco Webex Network Recording Player and Cisco Webex Player Arbitrary Code Execution Vulnerabilities |
| CVE-2019-1928 | 2019-08-07 | Cisco Webex Network Recording Player and Cisco Webex Player Arbitrary Code Execution Vulnerabilities |
| CVE-2019-1945 | 2019-08-07 | Cisco Adaptive Security Appliance Smart Tunnel Vulnerabilities |
| CVE-2019-14763 | 2019-08-07 | In the Linux kernel before 4.16.4, a double-locking error in... |
| CVE-2019-14771 | 2019-08-08 | Backdrop CMS 1.12.x before 1.12.8 and 1.13.x before 1.13.3 allows... |
| CVE-2019-14770 | 2019-08-08 | In Backdrop CMS 1.12.x before 1.12.8 and 1.13.x before 1.13.3,... |
| CVE-2019-14769 | 2019-08-08 | Backdrop CMS 1.12.x before 1.12.8 and 1.13.x before 1.13.3 doesn't... |
| CVE-2019-1946 | 2019-08-08 | Cisco Enterprise NFV Infrastructure Software Web-Based Management Interface Authentication Bypass Vulnerability |
| CVE-2019-1952 | 2019-08-08 | Cisco Enterprise NFV Infrastructure Software Path Traversal Vulnerability |
| CVE-2019-1951 | 2019-08-08 | Cisco SD-WAN Solution Packet Filtering Bypass Vulnerability |
| CVE-2019-1949 | 2019-08-08 | Cisco Firepower Management Center Persistent Cross-Site Scripting Vulnerability |
| CVE-2019-1958 | 2019-08-08 | Cisco HyperFlex Software Cross-Site Request Forgery Vulnerability |
| CVE-2019-1957 | 2019-08-08 | Cisco IoT Field Network Director TLS Renegotiation Denial of Service Vulnerability |
| CVE-2019-1956 | 2019-08-08 | Cisco SPA112 2-Port Phone Adapter Stored Cross-Site Scripting Vulnerability |
| CVE-2019-1955 | 2019-08-08 | Cisco Email Security Appliance Header Injection Vulnerability |
| CVE-2019-1954 | 2019-08-08 | Cisco Webex Meetings Server Open Redirection Vulnerability |
| CVE-2019-1953 | 2019-08-08 | Cisco Enterprise NFV Infrastructure Software Password Recovery Vulnerability |
| CVE-2019-1972 | 2019-08-08 | Cisco Enterprise NFV Infrastructure Software Privilege Escalation Vulnerability |
| CVE-2019-1971 | 2019-08-08 | Cisco Enterprise NFV Infrastructure Software Command Injection Vulnerability |
| CVE-2019-1970 | 2019-08-08 | Cisco Firepower Threat Defense Software File Policy Bypass Vulnerability |
| CVE-2019-1961 | 2019-08-08 | Cisco Enterprise NFV Infrastructure Software Web Portal Arbitrary File Read Vulnerability |
| CVE-2019-1960 | 2019-08-08 | Cisco Enterprise NFV Infrastructure Software Arbitrary File Read Vulnerabilities |
| CVE-2019-1959 | 2019-08-08 | Cisco Enterprise NFV Infrastructure Software Arbitrary File Read Vulnerabilities |
| CVE-2019-1973 | 2019-08-08 | Cisco Enterprise NFV Infrastructure Software Cross-site Scripting Vulnerability |
| CVE-2019-13101 | 2019-08-08 | An issue was discovered on D-Link DIR-600M 3.02, 3.03, 3.04,... |
| CVE-2019-14754 | 2019-08-08 | Open-School 3.0, and Community Edition 2.3, allows SQL Injection via... |
| CVE-2019-14221 | 2019-08-08 | 1CRM On-Premise Software 8.5.7 allows XSS via a payload that... |
| CVE-2019-14255 | 2019-08-08 | A Server Side Request Forgery (SSRF) vulnerability in go-camo up... |
| CVE-2016-10864 | 2019-08-08 | NETGEAR EX7000 V1.0.0.42_1.0.94 devices allow XSS via the SSID. |
| CVE-2018-19855 | 2019-08-08 | UiPath Orchestrator before 2018.3.4 allows CSV Injection, related to the... |
| CVE-2019-14772 | 2019-08-08 | verdaccio before 3.12.0 allows XSS. |
| CVE-2019-14335 | 2019-08-08 | An issue was discovered on D-Link 6600-AP and DWL-3600AP Ax... |
| CVE-2019-13176 | 2019-08-08 | An issue was discovered in the 3CX Phone system (web)... |
| CVE-2019-11208 | 2019-08-08 | TIBCO API Exchange Processes OAuth Incorrectly |
| CVE-2019-5236 | 2019-08-08 | Huawei smart phones Emily-L29C with versions of 8.1.0.132a(C432), 8.1.0.135(C782), 8.1.0.154(C10),... |
| CVE-2019-5301 | 2019-08-08 | Huawei smart phones Honor V20 with the versions before 9.0.1.161(C00E161R2P2)... |
| CVE-2019-5237 | 2019-08-08 | Huawei PCManager with the versions before 9.0.1.66 (Oversea) and versions... |
| CVE-2019-5238 | 2019-08-08 | Huawei PCManager with the versions before 9.0.1.66 (Oversea) and versions... |
| CVE-2019-5239 | 2019-08-08 | Huawei PCManager with the versions before 9.0.1.66 (Oversea) and versions... |
| CVE-2019-12397 | 2019-08-08 | Policy import functionality in Apache Ranger 0.7.0 to 1.2.0 is... |
| CVE-2019-14693 | 2019-08-08 | Zoho ManageEngine AssetExplorer 6.2.0 is vulnerable to an XML External... |
| CVE-2019-12994 | 2019-08-08 | Server Side Request Forgery (SSRF) exists in Zoho ManageEngine AssetExplorer... |
| CVE-2019-12959 | 2019-08-08 | Server Side Request Forgery (SSRF) exists in Zoho ManageEngine AssetExplorer... |
| CVE-2019-14353 | 2019-08-08 | On Trezor One devices before 1.8.2, a side channel for... |
| CVE-2019-14774 | 2019-08-08 | The woo-variation-swatches (aka Variation Swatches for WooCommerce) plugin 1.0.61 for... |
| CVE-2019-14773 | 2019-08-08 | admin/includes/class.actions.snippet.php in the "Woody ad snippets" plugin through 2.2.5 for... |
| CVE-2018-20962 | 2019-08-08 | The Backpack\CRUD Backpack component before 3.4.9 for Laravel allows XSS... |
| CVE-2019-14683 | 2019-08-08 | The codection "Import users from CSV with meta" plugin before... |
| CVE-2019-14682 | 2019-08-08 | The acf-better-search (aka ACF: Better Search) plugin before 3.3.1 for... |
| CVE-2019-14681 | 2019-08-08 | The Deny All Firewall plugin before 1.1.7 for WordPress allows... |
| CVE-2019-14680 | 2019-08-08 | The admin-renamer-extended (aka Admin renamer extended) plugin 3.2.1 for WordPress... |
| CVE-2019-14679 | 2019-08-08 | core/views/arprice_import_export.php in the ARPrice Lite plugin 2.2 for WordPress allows... |
| CVE-2015-9292 | 2019-08-08 | 6kbbs 7.1 and 8.0 allows CSRF via portalchannel_ajax.php (id or... |
| CVE-2016-10863 | 2019-08-08 | Edimax Wi-Fi Extender devices allow goform/formwlencryptvxd CSRF with resultant PSK... |
| CVE-2017-18485 | 2019-08-08 | Cognitoys Dino devices allow profiles_add.html CSRF. |
| CVE-2017-18484 | 2019-08-08 | Cognitoys Dino devices allow XSS via the SSID. |
| CVE-2018-20960 | 2019-08-08 | Nespresso Prodigio devices lack Bluetooth connection security. |
| CVE-2018-20957 | 2019-08-08 | The Bluetooth Low Energy (BLE) subsystem on Tapplock devices before... |