CVE List - 2020 / February
Showing 301 - 400 of 1397 CVEs for February 2020 (Page 4 of 14)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2020-6769 | 2020-02-07 | Missing Authentication for Critical Function in Bosch Video Streaming Gateway |
| CVE-2020-8796 | 2020-02-07 | Biscom Secure File Transfer (SFT) before 5.1.1071 and 6.0.1xxx before... |
| CVE-2020-6768 | 2020-02-07 | Path Traversal in Bosch Video Management System (BVMS) |
| CVE-2020-6770 | 2020-02-07 | Deserialization of Untrusted Data in Bosch BVMS Mobile Video Service |
| CVE-2020-1708 | 2020-02-07 | It has been found in openshift-enterprise version 3.11 and all... |
| CVE-2011-1084 | 2020-02-07 | A cross-site scripting (XSS) vulnerability in Smoothwall Express 3. |
| CVE-2011-1085 | 2020-02-07 | CSRF vulnerability in Smoothwall Express 3. |
| CVE-2011-1086 | 2020-02-07 | Cross-site scripting (XSS) vulnerability in admin/system.html in Openfiler 2.3 allows... |
| CVE-2020-8808 | 2020-02-07 | The CorsairLLAccess64.sys and CorsairLLAccess32.sys drivers in CORSAIR iCUE before 3.25.60... |
| CVE-2019-13163 | 2020-02-07 | The Fujitsu TLS library allows a man-in-the-middle attack. This affects... |
| CVE-2019-19356 | 2020-02-07 | Netis WF2419 is vulnerable to authenticated Remote Code Execution (RCE)... |
| CVE-2020-8812 | 2020-02-07 | Bludit 3.10.0 allows Editor or Author roles to insert malicious... |
| CVE-2020-8811 | 2020-02-07 | ajax/profile-picture-upload.php in Bludit 3.10.0 allows authenticated users to change other... |
| CVE-2019-13333 | 2020-02-07 | This vulnerability allows remote attackers to execute arbitrary code on... |
| CVE-2019-13334 | 2020-02-07 | This vulnerability allows remote attackers to execute arbitrary code on... |
| CVE-2019-17135 | 2020-02-07 | This vulnerability allows remote attackers to execute arbitrary code on... |
| CVE-2019-17136 | 2020-02-07 | This vulnerability allows remote attackers to execute arbitrary code on... |
| CVE-2019-11481 | 2020-02-08 | Apport reads arbitrary files if ~/.config/apport/settings is a symlink |
| CVE-2019-11482 | 2020-02-08 | Race condition between reading current working directory and writing a core dump |
| CVE-2019-11483 | 2020-02-08 | Sander Bos discovered Apport mishandled crash dumps originating from containers.... |
| CVE-2019-11484 | 2020-02-08 | Integer overflow in bson_ensure_space |
| CVE-2019-11485 | 2020-02-08 | apport created lock file in wrong directory |
| CVE-2011-3642 | 2020-02-08 | Cross-site scripting (XSS) vulnerability in Flowplayer Flash 3.2.7 through 3.2.16,... |
| CVE-2014-2225 | 2020-02-08 | Multiple cross-site request forgery (CSRF) vulnerabilities in Ubiquiti Networks UniFi... |
| CVE-2014-9470 | 2020-02-08 | Cross-site scripting (XSS) vulnerability in the loadForm function in Frontend/Modules/Search/Actions/Index.php... |
| CVE-2014-9126 | 2020-02-08 | Multiple cross-site scripting (XSS) vulnerabilities in Open-School Community Edition 2.2... |
| CVE-2014-9127 | 2020-02-08 | Open-School Community Edition 2.2 does not properly restrict access to... |
| CVE-2015-1394 | 2020-02-08 | Multiple cross-site scripting (XSS) vulnerabilities in the Photo Gallery plugin... |
| CVE-2014-7863 | 2020-02-08 | The FailOverHelperServlet (aka FailServlet) servlet in ZOHO ManageEngine Applications Manager... |
| CVE-2015-2062 | 2020-02-08 | Multiple SQL injection vulnerabilities in the Huge-IT Slider (slider-image) plugin... |
| CVE-2014-8739 | 2020-02-08 | Unrestricted file upload vulnerability in server/php/UploadHandler.php in the jQuery File... |
| CVE-2015-3423 | 2020-02-08 | Multiple SQL injection vulnerabilities in NetCracker Resource Management System before... |
| CVE-2015-2207 | 2020-02-08 | Multiple cross-site scripting (XSS) vulnerabilities in NetCracker Resource Management System... |
| CVE-2012-4029 | 2020-02-08 | Cross-site scripting (XSS) vulnerability in main/dropbox/index.php in Chamilo LMS before... |
| CVE-2012-4381 | 2020-02-08 | MediaWiki before 1.18.5, and 1.19.x before 1.19.2 saves passwords in... |
| CVE-2015-5741 | 2020-02-08 | The net/http library in net/http/transfer.go in Go before 1.4.3 does... |
| CVE-2012-4512 | 2020-02-08 | The CSS parser (khtml/css/cssparser.cpp) in Konqueror in KDE 4.7.3 allows... |
| CVE-2012-5570 | 2020-02-08 | The Basic webmail module 6.x-1.x before 6.x-1.2 for Drupal allows... |
| CVE-2017-18641 | 2020-02-10 | In LXC 2.0, many template scripts download code over cleartext... |
| CVE-2020-8822 | 2020-02-10 | Digi TransPort WR21 5.2.2.3, WR44 5.1.6.4, and WR44v2 5.1.6.9 devices... |
| CVE-2020-8823 | 2020-02-10 | htmlfile in lib/transport/htmlfile.js in SockJS before 0.3.0 is vulnerable to... |
| CVE-2020-7059 | 2020-02-10 | OOB read in php_strip_tags_ex |
| CVE-2020-7060 | 2020-02-10 | global buffer-overflow in mbfl_filt_conv_big5_wchar |
| CVE-2020-8825 | 2020-02-10 | index.php?p=/dashboard/settings/branding in Vanilla 2.6.3 allows stored XSS. |
| CVE-2019-20059 | 2020-02-10 | payment_manage.ajax.php and various *_manage.ajax.php in MFScripts YetiShare 3.5.2 through 4.5.4... |
| CVE-2019-20062 | 2020-02-10 | MFScripts YetiShare v3.5.2 through v4.5.4 might allow an attacker to... |
| CVE-2019-20061 | 2020-02-10 | The user-introduction email in MFScripts YetiShare v3.5.2 through v4.5.4 may... |
| CVE-2019-20060 | 2020-02-10 | MFScripts YetiShare v3.5.2 through v4.5.4 places sensitive information in the... |
| CVE-2012-6666 | 2020-02-10 | vBSeo before 3.6.0PL2 allows XSS via the member.php u parameter. |
| CVE-2013-1353 | 2020-02-10 | Orange HRM 2.7.1 allows XSS via the vacancy name. |
| CVE-2014-5086 | 2020-02-10 | A Command Execution vulnerability exists in Sphider Pro, and Sphider... |
| CVE-2020-1697 | 2020-02-10 | It was found in all keycloak versions before 9.0.0 that... |
| CVE-2014-5085 | 2020-02-10 | A Command Execution vulnerability exists in Sphider Plus 3.2 due... |
| CVE-2014-5084 | 2020-02-10 | A Command Execution vulnerability exists in Sphider Pro 3.2 due... |
| CVE-2019-20451 | 2020-02-10 | The HTTP API in Prismview System 9 11.10.17.00 and Prismview... |
| CVE-2012-6611 | 2020-02-10 | An issue was discovered in Polycom Web Management Interface G3/HDX... |
| CVE-2014-5083 | 2020-02-10 | A Command Execution vulnerability exists in Sphider before 1.3.6 due... |
| CVE-2012-6449 | 2020-02-10 | The clientconf.html and detailbw.html pages in x3 in cPanel &... |
| CVE-2020-8089 | 2020-02-10 | Piwigo 2.10.1 is affected by stored XSS via the Group... |
| CVE-2012-1994 | 2020-02-10 | HP Systems Insight Manager before 7.0 allows a remote user... |
| CVE-2012-2204 | 2020-02-10 | InfoSphere Guardium aix_ktap module: DoS |
| CVE-2019-19660 | 2020-02-10 | A CSRF vulnerability exists in the Web File Manager's Network... |
| CVE-2012-5828 | 2020-02-10 | BlackBerry PlayBook before 2.1 has an Information Disclosure Vulnerability via... |
| CVE-2019-19659 | 2020-02-10 | A CSRF vulnerability exists in the Web File Manager's Edit... |
| CVE-2019-19663 | 2020-02-10 | A CSRF vulnerability exists in the Folder Sets Settings of... |
| CVE-2019-19665 | 2020-02-10 | A CSRF vulnerability exists in the FTP Settings of Web... |
| CVE-2013-2108 | 2020-02-10 | WordPress WP Cleanfix Plugin 2.4.4 has CSRF |
| CVE-2013-2109 | 2020-02-10 | WordPress plugin wp-cleanfix has Remote Code Execution |
| CVE-2019-19664 | 2020-02-10 | A CSRF vulnerability exists in the Web Settings of Web... |
| CVE-2019-19662 | 2020-02-10 | A CSRF vulnerability exists in the Web File Manager's Create/Delete... |
| CVE-2019-19661 | 2020-02-10 | A Cookie based reflected XSS exists in the Web File... |
| CVE-2019-19666 | 2020-02-10 | A CSRF vulnerability exists in the Event Notices Settings of... |
| CVE-2019-19667 | 2020-02-10 | A CSRF vulnerability exists in the Block Clients component of... |
| CVE-2019-19670 | 2020-02-10 | A HTTP Response Splitting vulnerability was identified in the Web... |
| CVE-2019-19669 | 2020-02-10 | A CSRF vulnerability exists in the Upload Center Forms Component... |
| CVE-2019-19668 | 2020-02-10 | A CSRF vulnerability exists in the File Types component of... |
| CVE-2019-13321 | 2020-02-10 | This vulnerability allows network adjacent attackers to execute arbitrary code... |
| CVE-2019-13322 | 2020-02-10 | This vulnerability allows remote attackers to execute arbitrary code on... |
| CVE-2019-17137 | 2020-02-10 | This vulnerability allows network-adjacent attackers to bypass authentication on affected... |
| CVE-2019-6744 | 2020-02-10 | This vulnerability allows local attackers to disclose sensitive information on... |
| CVE-2020-8840 | 2020-02-10 | FasterXML jackson-databind 2.0.0 through 2.9.10.2 lacks certain xbean-reflect/JNDI blocking, as... |
| CVE-2019-17060 | 2020-02-10 | The Bluetooth Low Energy (BLE) stack implementation on the NXP... |
| CVE-2019-17061 | 2020-02-10 | The Bluetooth Low Energy (BLE) stack implementation on Cypress PSoC... |
| CVE-2019-17517 | 2020-02-10 | The Bluetooth Low Energy implementation on Dialog Semiconductor SDK through... |
| CVE-2019-17518 | 2020-02-10 | The Bluetooth Low Energy implementation on Dialog Semiconductor SDK through... |
| CVE-2020-8841 | 2020-02-10 | An issue was discovered in TestLink 1.9.19. The relation_type parameter... |
| CVE-2019-17520 | 2020-02-10 | The Bluetooth Low Energy implementation on Texas Instruments SDK through... |
| CVE-2019-19193 | 2020-02-10 | The Bluetooth Low Energy peripheral implementation on Texas Instruments SIMPLELINK-CC2640R2-SDK... |
| CVE-2019-19195 | 2020-02-10 | The Bluetooth Low Energy implementation on Microchip Technology BluSDK Smart... |
| CVE-2017-18642 | 2020-02-10 | Syska Smart Bulb devices through 2017-08-06 receive RGB parameters over... |
| CVE-2020-7217 | 2020-02-10 | An ni_dhcp4_fsm_process_dhcp4_packet memory leak in openSUSE wicked 0.6.55 and earlier... |
| CVE-2020-8596 | 2020-02-10 | participants-database.php in the Participants Database plugin 1.9.5.5 and previous versions... |
| CVE-2019-14514 | 2020-02-10 | An issue was discovered in Microvirt MEmu all versions prior... |
| CVE-2016-5710 | 2020-02-10 | NetApp Snap Creator Framework before 4.3P1 allows remote authenticated users... |
| CVE-2018-14553 | 2020-02-11 | gdImageClone in gd.c in libgd 2.1.0-rc2 through 2.2.5 has a... |
| CVE-2019-13924 | 2020-02-11 | A vulnerability has been identified in SCALANCE S602 (All versions... |
| CVE-2020-8893 | 2020-02-11 | An issue was discovered in MISP before 2.4.121. The Galaxy... |
| CVE-2020-8894 | 2020-02-11 | An issue was discovered in MISP before 2.4.121. ACLs for... |
| CVE-2013-5945 | 2020-02-11 | Multiple SQL injection vulnerabilities in D-Link DSR-150 with firmware before... |
| CVE-2014-0144 | 2020-02-11 | QEMU before 2.0.0 block drivers for CLOOP, QCOW2 version 2... |