CVE List - 2020 / March
Showing 901 - 1000 of 1754 CVEs for March 2020 (Page 10 of 18)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2020-7602 | 2020-03-15 | node-prompt-here through 1.0.1 allows execution of arbitrary commands. The "runCommand()"... |
| CVE-2020-7604 | 2020-03-15 | pulverizr through 0.7.0 allows execution of arbitrary commands. Within "lib/job.js",... |
| CVE-2020-7606 | 2020-03-15 | docker-compose-remote-api through 0.1.4 allows execution of arbitrary commands. Within 'index.js'... |
| CVE-2020-7605 | 2020-03-15 | gulp-tape through 1.0.0 allows execution of arbitrary commands. It is... |
| CVE-2020-7607 | 2020-03-15 | gulp-styledocco through 0.0.3 allows execution of arbitrary commands. The argument... |
| CVE-2020-7603 | 2020-03-15 | closure-compiler-stream through 0.1.15 allows execution of arbitrary commands. The argument... |
| CVE-2020-9290 | 2020-03-15 | An Unsafe Search Path vulnerability in FortiClient for Windows online... |
| CVE-2020-9287 | 2020-03-15 | An Unsafe Search Path vulnerability in FortiClient EMS online installer... |
| CVE-2019-6696 | 2020-03-15 | An improper input validation vulnerability in FortiOS 6.2.1, 6.2.0, 6.0.8... |
| CVE-2019-17654 | 2020-03-15 | An Insufficient Verification of Data Authenticity vulnerability in FortiManager 6.2.1,... |
| CVE-2019-15708 | 2020-03-15 | A system command injection vulnerability in the FortiAP-S/W2 6.2.1, 6.2.0,... |
| CVE-2020-5542 | 2020-03-16 | Buffer error vulnerability in TCP function included in the firmware... |
| CVE-2020-5543 | 2020-03-16 | TCP function included in the firmware of Mitsubishi Electric MELQIC... |
| CVE-2020-5544 | 2020-03-16 | Null Pointer Dereference vulnerability in TCP function included in the... |
| CVE-2020-5545 | 2020-03-16 | TCP function included in the firmware of Mitsubishi Electric MELQIC... |
| CVE-2020-5546 | 2020-03-16 | Improper Neutralization of Argument Delimiters in a Command ('Argument Injection')... |
| CVE-2020-5547 | 2020-03-16 | Resource Management Errors vulnerability in TCP function included in the... |
| CVE-2020-9519 | 2020-03-16 | HTTP methods reveled in Web services vulnerability in Micro Focus... |
| CVE-2020-9518 | 2020-03-16 | Login filter can access configuration files vulnerability in Micro Focus... |
| CVE-2019-10091 | 2020-03-16 | When TLS is enabled with ssl-endpoint-identification-enabled set to true, Apache... |
| CVE-2020-10557 | 2020-03-16 | An issue was discovered in AContent through 1.4. It allows... |
| CVE-2018-13060 | 2020-03-16 | Easy!Appointments 1.3.0 has a Guessable CAPTCHA issue. |
| CVE-2018-13063 | 2020-03-16 | Easy!Appointments 1.3.0 has a Missing Authorization issue allowing retrieval of... |
| CVE-2020-1753 | 2020-03-16 | A security flaw was found in Ansible Engine, all Ansible... |
| CVE-2018-10125 | 2020-03-16 | Contao before 4.5.7 has XSS in the system log. |
| CVE-2019-14512 | 2020-03-16 | LimeSurvey 3.17.7+190627 has XSS via Boxes in application/extensions/PanelBoxWidget/views/box.php or a... |
| CVE-2019-19208 | 2020-03-16 | Codiad Web IDE through 2.8.4 allows PHP Code injection. |
| CVE-2019-19209 | 2020-03-16 | Dolibarr ERP/CRM before 10.0.3 allows SQL Injection. |
| CVE-2019-14887 | 2020-03-16 | A flaw was found when an OpenSSL security provider is... |
| CVE-2019-19210 | 2020-03-16 | Dolibarr ERP/CRM before 10.0.3 allows XSS because uploaded HTML documents... |
| CVE-2019-19211 | 2020-03-16 | Dolibarr ERP/CRM before 10.0.3 has an Insufficient Filtering issue that... |
| CVE-2020-1736 | 2020-03-16 | A flaw was found in Ansible Engine when a file... |
| CVE-2020-1735 | 2020-03-16 | A flaw was found in the Ansible Engine when the... |
| CVE-2020-1740 | 2020-03-16 | A flaw was found in Ansible Engine when using Ansible... |
| CVE-2019-19851 | 2020-03-16 | An XSS Injection vulnerability exists in Sangoma FreePBX and PBXact... |
| CVE-2020-1738 | 2020-03-16 | A flaw was found in Ansible Engine when the module... |
| CVE-2019-19940 | 2020-03-16 | Incorrect input sanitation in text-oriented user interfaces (telnet, ssh) in... |
| CVE-2019-19941 | 2020-03-16 | Missing hostname validation in Swisscom Centro Grande before 6.16.12 allows... |
| CVE-2019-19942 | 2020-03-16 | Missing output sanitation in Swisscom Centro Grande Centro Grande before... |
| CVE-2019-4617 | 2020-03-16 | IBM Cloud Automation Manager 3.2.1.0 does not renew a session... |
| CVE-2019-4619 | 2020-03-16 | IBM MQ and IBM MQ Appliance 7.1, 7.5, 8.0, 9.0... |
| CVE-2019-4656 | 2020-03-16 | IBM MQ and IBM MQ Appliance 7.1, 7.5, 8.0, 9.0... |
| CVE-2019-4719 | 2020-03-16 | IBM MQ and IBM MQ Appliance 7.1, 7.5, 8.0, 9.0... |
| CVE-2020-6586 | 2020-03-16 | Nagios Log Server 2.1.3 allows XSS by visiting /profile and... |
| CVE-2020-6585 | 2020-03-16 | Nagios Log Server 2.1.3 has CSRF. |
| CVE-2020-6584 | 2020-03-16 | Nagios Log Server 2.1.3 has Incorrect Access Control. |
| CVE-2020-10230 | 2020-03-16 | CentOS-WebPanel.com (aka CWP) CentOS Web Panel (for CentOS 6 and... |
| CVE-2020-6980 | 2020-03-16 | Rockwell Automation MicroLogix 1400 Controllers Series B v21.001 and prior,... |
| CVE-2020-6988 | 2020-03-16 | Rockwell Automation MicroLogix 1400 Controllers Series B v21.001 and prior,... |
| CVE-2020-6990 | 2020-03-16 | Rockwell Automation MicroLogix 1400 Controllers Series B v21.001 and prior,... |
| CVE-2020-6984 | 2020-03-16 | Rockwell Automation MicroLogix 1400 Controllers Series B v21.001 and prior,... |
| CVE-2020-10238 | 2020-03-16 | An issue was discovered in Joomla! before 3.9.16. Various actions... |
| CVE-2020-10239 | 2020-03-16 | An issue was discovered in Joomla! before 3.9.16. Incorrect Access... |
| CVE-2020-10240 | 2020-03-16 | An issue was discovered in Joomla! before 3.9.16. Missing length... |
| CVE-2019-19135 | 2020-03-16 | In OPC Foundation OPC UA .NET Standard codebase 1.4.357.28, servers... |
| CVE-2020-10241 | 2020-03-16 | An issue was discovered in Joomla! before 3.9.16. Missing token... |
| CVE-2020-10242 | 2020-03-16 | An issue was discovered in Joomla! before 3.9.16. Inadequate handling... |
| CVE-2020-10243 | 2020-03-16 | An issue was discovered in Joomla! before 3.9.16. The lack... |
| CVE-2020-7916 | 2020-03-16 | be_teacher in class-lp-admin-ajax.php in the LearnPress plugin 3.2.6.5 and earlier... |
| CVE-2020-6581 | 2020-03-16 | Nagios NRPE 3.2.1 has Insufficient Filtering because, for example, nasty_metachars... |
| CVE-2020-6582 | 2020-03-16 | Nagios NRPE 3.2.1 has a Heap-Based Buffer Overflow, as demonstrated... |
| CVE-2019-19821 | 2020-03-16 | A post-authentication privilege escalation in the web application of Combodo... |
| CVE-2019-19945 | 2020-03-16 | uhttpd in OpenWrt through 18.06.5 and 19.x through 19.07.0-rc2 has... |
| CVE-2020-3948 | 2020-03-16 | Linux Guest VMs running on VMware Workstation (15.x before 15.5.2)... |
| CVE-2020-3947 | 2020-03-16 | VMware Workstation (15.x before 15.5.2) and Fusion (11.x before 11.5.2)... |
| CVE-2020-5844 | 2020-03-16 | index.php?sec=godmode/extensions&sec2=extensions/files_repo in Pandora FMS v7.0 NG allows authenticated administrators to... |
| CVE-2020-5847 | 2020-03-16 | Unraid through 6.8.0 allows Remote Code Execution. |
| CVE-2020-5849 | 2020-03-16 | Unraid 6.8.0 allows authentication bypass. |
| CVE-2019-5543 | 2020-03-16 | For VMware Horizon Client for Windows (5.x and prior before... |
| CVE-2019-19946 | 2020-03-16 | The API in Dradis Pro 3.4.1 allows any user to... |
| CVE-2020-9321 | 2020-03-16 | configurationwatcher.go in Traefik 2.x before 2.1.4 and TraefikEE 2.0.0 mishandles... |
| CVE-2019-11073 | 2020-03-16 | A Remote Code Execution vulnerability exists in PRTG Network Monitor... |
| CVE-2017-12842 | 2020-03-16 | Bitcoin Core before 0.14 allows an attacker to create an... |
| CVE-2020-9471 | 2020-03-16 | Umbraco Cloud 8.5.3 allows an authenticated file upload (and consequently... |
| CVE-2019-19937 | 2020-03-16 | In JFrog Artifactory before 6.18, it is not possible to... |
| CVE-2020-9472 | 2020-03-16 | Umbraco CMS 8.5.3 allows an authenticated file upload (and consequently... |
| CVE-2019-19212 | 2020-03-16 | Dolibarr ERP/CRM 3.0 through 10.0.3 allows XSS via the qty... |
| CVE-2020-7608 | 2020-03-16 | yargs-parser could be tricked into adding or modifying properties of... |
| CVE-2019-18917 | 2020-03-16 | A potential security vulnerability has been identified for certain HP... |
| CVE-2019-19461 | 2020-03-16 | Post-authentication Stored XSS in Team Password Manager through 7.93.204 allows... |
| CVE-2019-19538 | 2020-03-16 | In Sangoma FreePBX 13 through 15 and sysadmin (aka System... |
| CVE-2019-20491 | 2020-03-16 | cPanel before 82.0.18 allows attackers to leverage virtual mail accounts... |
| CVE-2019-19610 | 2020-03-16 | An issue was discovered in Halvotec RaQuest 10.23.10801.0. It allows... |
| CVE-2019-19612 | 2020-03-16 | An issue was discovered in Halvotec RaQuest 10.23.10801.0. Several features... |
| CVE-2019-19613 | 2020-03-16 | An issue was discovered in Halvotec RaQuest 10.23.10801.0. The login... |
| CVE-2019-19615 | 2020-03-16 | Multiple XSS vulnerabilities exist in the Backup & Restore module... |
| CVE-2019-19852 | 2020-03-16 | An XSS Injection vulnerability exists in Sangoma FreePBX and PBXact... |
| CVE-2020-6175 | 2020-03-16 | Citrix SD-WAN 10.2.x before 10.2.6 and 11.0.x before 11.0.3 has... |
| CVE-2020-7248 | 2020-03-16 | libubox in OpenWrt before 18.06.7 and 19.x before 19.07.1 has... |
| CVE-2020-7919 | 2020-03-16 | Go before 1.12.16 and 1.13.x before 1.13.7 (and the crypto/cryptobyte... |
| CVE-2020-7982 | 2020-03-16 | An issue was discovered in OpenWrt 18.06.0 to 18.06.6 and... |
| CVE-2020-8783 | 2020-03-16 | SuiteCRM 7.10.x versions prior to 7.10.23 and 7.11.x versions prior... |
| CVE-2019-20326 | 2020-03-16 | A heap-based buffer overflow in _cairo_image_surface_create_from_jpeg() in extensions/cairo_io/cairo-image-surface-jpeg.c in GNOME... |
| CVE-2020-8787 | 2020-03-16 | SuiteCRM 7.10.x versions prior to 7.10.23 and 7.11.x versions prior... |
| CVE-2020-8786 | 2020-03-16 | SuiteCRM 7.10.x versions prior to 7.10.23 and 7.11.x versions prior... |
| CVE-2020-8785 | 2020-03-16 | SuiteCRM 7.10.x versions prior to 7.10.23 and 7.11.x versions prior... |
| CVE-2020-8784 | 2020-03-16 | SuiteCRM 7.10.x versions prior to 7.10.23 and 7.11.x versions prior... |
| CVE-2019-20191 | 2020-03-16 | Oxygen XML Editor 21.1.1 allows XXE to read any file. |
| CVE-2020-9346 | 2020-03-16 | Zoho ManageEngine Password Manager Pro 10.4 and prior has no... |
| CVE-2020-9347 | 2020-03-16 | Zoho ManageEngine Password Manager Pro through 10.x has a CSV... |