All CVEs — 2020 (Page 120/122)

Browse all CVEs by publication year. Use filters to refine.

CVSS ≥ 0.0

2020-01-08

High

CVE-2019-17011

Under certain conditions, when retrieving a document from a DocShell in the antitracking code, a race condition could cause a use-after-free condition and a potentially exploitable crash. This vulner…

CVSS: 7.5 CWE: CWE-362

High

CVE-2019-17010

Under certain conditions, when checking the Resist Fingerprinting preference during device orientation checks, a race condition could have caused a use-after-free and a potentially exploitable crash.…

CVSS: 7.5 CWE: CWE-362

High

CVE-2019-17008

When using nested workers, a use-after-free could occur during worker destruction. This resulted in a potentially exploitable crash. This vulnerability affects Thunderbird < 68.3, Firefox ESR < 68.3,…

CVSS: 8.8 CWE: CWE-416

High

CVE-2019-17005

The plain text serializer used a fixed-size array for the number of <ol> elements it could process; however it was possible to overflow the static-sized array leading to memory corruption and a poten…

CVSS: 8.8 CWE: CWE-787

Medium

CVE-2019-17001

A Content-Security-Policy that blocks in-line scripts could be bypassed using an object tag to execute JavaScript in the protected document (cross-site scripting). This is a separate bypass from CVE-…

CVSS: 6.1 CWE: CWE-79

Medium

CVE-2020-6615

GNU LibreDWG 0.9.3.2564 has an invalid pointer dereference in dwg_dynapi_entity_value in dynapi.c (dynapi.c is generated by gen-dynapi.pl).

CVSS: 6.5 CWE: CWE-476

High

CVE-2020-6614

GNU LibreDWG 0.9.3.2564 has a heap-based buffer over-read in bfr_read in decode.c.

CVSS: 8.1 CWE: CWE-125

High

CVE-2020-6613

GNU LibreDWG 0.9.3.2564 has a heap-based buffer over-read in bit_search_sentinel in bits.c.

CVSS: 8.1 CWE: CWE-125

High

CVE-2020-6612

GNU LibreDWG 0.9.3.2564 has a heap-based buffer over-read in copy_compressed_bytes in decode_r2007.c.

CVSS: 8.1 CWE: CWE-125

Medium

CVE-2020-6611

GNU LibreDWG 0.9.3.2564 has a NULL pointer dereference in get_next_owned_entity in dwg.c.

CVSS: 6.5 CWE: CWE-476

Medium

CVE-2020-6610

GNU LibreDWG 0.9.3.2564 has an attempted excessive memory allocation in read_sections_map in decode_r2007.c.

CVSS: 6.5 CWE: CWE-770

High

CVE-2020-6609

GNU LibreDWG 0.9.3.2564 has a heap-based buffer over-read in read_pages_map in decode_r2007.c.

CVSS: 8.8 CWE: CWE-125

Medium

CVE-2019-17000

An object tag with a data URI did not correctly inherit the document's Content Security Policy. This allowed a CSP bypass in a cross-origin frame if the document's policy explicitly allowed data: URI…

CVSS: 6.1 CWE: CWE-79

Medium

CVE-2019-11765

A compromised content process could send a message to the parent process that would cause the 'Click to Play' permission prompt to be shown. However, due to lack of validation from the parent process…

CVSS: 6.5 CWE: CWE-276

High

CVE-2019-11764

Mozilla developers and community members reported memory safety bugs present in Firefox 69 and Firefox ESR 68.1. Some of these bugs showed evidence of memory corruption and we presume that with enoug…

CVSS: 8.8 CWE: CWE-787

Medium

CVE-2020-6583

BigProf Online Invoicing System (OIS) through 2.6 has XSS that can be leveraged for session hijacking. An attacker can exploit the XSS vulnerability, retrieve the session cookie from the administrato…

CVSS: 6.1 CWE: CWE-79

Medium

CVE-2019-11763

Failure to correctly handle null bytes when processing HTML entities resulted in Firefox incorrectly parsing these entities. This could have led to HTML comment text being treated as HTML which could…

CVSS: 6.1 CWE: CWE-79

Medium

CVE-2019-11762

If two same-origin documents set document.domain differently to become cross-origin, it was possible for them to call arbitrary DOM methods/getters/setters on the now-cross-origin window. This vulner…

CVSS: 6.1 CWE: CWE-346

Medium

CVE-2019-11761

By using a form with a data URI it was possible to gain access to the privileged JSONView object that had been cloned into content. Impact from exposing this object appears to be minimal, however it…

CVSS: 5.4 CWE: CWE-362

High

CVE-2019-11760

A fixed-size stack buffer could overflow in nrappkit when doing WebRTC signaling. This resulted in a potentially exploitable crash in some instances. This vulnerability affects Firefox < 70, Thunderb…

CVSS: 8.8 CWE: CWE-787

High

CVE-2019-11759

An attacker could have caused 4 bytes of HMAC output to be written past the end of a buffer stored on the stack. This could be used by an attacker to execute arbitrary code or more likely lead to a c…

CVSS: 8.8 CWE: CWE-120

High

CVE-2019-11758

Mozilla community member Philipp reported a memory safety bug present in Firefox 68 when 360 Total Security was installed. This bug showed evidence of memory corruption in the accessibility engine an…

CVSS: 8.8 CWE: CWE-787

High

CVE-2019-11757

When following the value's prototype chain, it was possible to retain a reference to a locale, delete it, and subsequently reference it. This resulted in a use-after-free and a potentially exploitabl…

CVSS: 8.8 CWE: CWE-416

High

CVE-2019-11756

Improper refcounting of soft token session objects could cause a use-after-free and crash (likely limited to a denial of service). This vulnerability affects Firefox < 71.

CVSS: 8.8 CWE: CWE-416

High

CVE-2019-11745

When encrypting with a block cipher, if a call to NSC_EncryptUpdate was made with data smaller than the block size, a small out of bounds write could occur. This could have caused heap corruption and…

CVSS: 8.8 CWE: CWE-787

Medium

CVE-2020-0008

In LowEnergyClient::MtuChangedCallback of low_energy_client.cc, there is a possible out of bounds read due to a race condition. This could lead to local information disclosure with no additional exec…

CVSS: 4.7 CWE: CWE-125

Medium

CVE-2020-0007

In flattenString8 of Sensor.cpp, there is a possible information disclosure of heap memory due to uninitialized data. This could lead to local information disclosure with no additional execution priv…

CVSS: 5.5 CWE: CWE-908

Medium

CVE-2020-0006

In rw_i93_send_cmd_write_single_block of rw_i93.cc, there is a possible information disclosure of heap memory due to uninitialized data. This could lead to remote information disclosure in the NFC se…

CVSS: 6.5 CWE: CWE-908

Medium

CVE-2020-0004

In generateCrop of WallpaperManagerService.java, there is a possible sysui crash due to image exceeding maximum texture size. This could lead to local denial of service with no additional execution p…

CVSS: 5.5 CWE: CWE-755

Medium

CVE-2020-0003

In onCreate of InstallStart.java, there is a possible package validation bypass due to a time-of-check time-of-use vulnerability. This could lead to local escalation of privilege with no additional e…

CVSS: 6.7 CWE: CWE-367

High

CVE-2020-0002

In ih264d_init_decoder of ih264d_api.c, there is a possible out of bounds write due to a use after free. This could lead to remote code execution with no additional execution privileges needed. User…

CVSS: 8.8 CWE: CWE-416

Medium

CVE-2016-6585

A Denial of Service vulnerability exists in Symantec Norton Mobile Security for Android prior to 3.16, which could let a remote malicious user conduct a man-in-the-middle attack via specially crafted…

CVSS: 5.3 CWE: CWE-20

Medium

CVE-2016-5346

An Information Disclosure vulnerability exists in the Google Pixel/Pixel SL Qualcomm Avtimer Driver due to a NULL pointer dereference when processing an accept system call by the user process on AF_M…

CVSS: 5.5 CWE: CWE-200

High

CVE-2020-5511

PHPGurukul Small CRM v2.0 was found vulnerable to authentication bypass via SQL injection when logging into the administrator login page.

CVSS: 8.8 CWE: CWE-89

Critical

CVE-2020-5510

PHPGurukul Hostel Management System v2.0 allows SQL injection via the id parameter in the full-profile.php file.

CVSS: 9.8 CWE: CWE-89

High

CVE-2020-5183

FTPGetter Professional 5.97.0.223 is vulnerable to a memory corruption bug when a user sends a specially crafted string to the application. This memory corruption bug can possibly be classified as a…

CVSS: 7.5 CWE: CWE-476

Critical

CVE-2019-19495

The web interface on the Technicolor TC7230 STEB 01.25 is vulnerable to DNS rebinding, which allows a remote attacker to configure the cable modem via JavaScript in a victim's browser. The attacker c…

CVSS: 9.8 CWE: CWE-20

Medium

CVE-2016-6587

An Information Disclosure vulnerability exists in the mid.dat file stored on the SD card in Symantec Norton Mobile Security for Android before 3.16, which could let a local malicious user obtain sens…

CVSS: 5.5 CWE: CWE-200

Critical

CVE-2019-5082

An exploitable heap buffer overflow vulnerability exists in the iocheckd service I/O-Check functionality of WAGO PFC200 Firmware version 03.01.07(13), WAGO PFC200 Firmware version 03.00.39(12), and W…

CVSS: 9.8 CWE: CWE-787

Critical

CVE-2019-20367

nlist.c in libbsd before 0.10.0 has an out-of-bounds read during a comparison for a symbol name from the string table (strtab).

CVSS: 9.1 CWE: CWE-125

Medium

CVE-2019-20366

An XSS issue was discovered in Ignite Realtime Openfire 4.4.4 via isTrustStore to Manage Store Contents.

CVSS: 6.1 CWE: CWE-79

Medium

CVE-2019-20365

An XSS issue was discovered in Ignite Realtime Openfire 4.4.4 via search to the Users/Group search page.

CVSS: 6.1 CWE: CWE-79

Medium

CVE-2019-20364

An XSS issue was discovered in Ignite Realtime Openfire 4.4.4 via cacheName to SystemCacheDetails.jsp.

CVSS: 6.1 CWE: CWE-79

Medium

CVE-2019-20363

An XSS issue was discovered in Ignite Realtime Openfire 4.4.4 via alias to Manage Store Contents.

CVSS: 6.1 CWE: CWE-79

High

CVE-2019-19544

CA Automic Dollar Universe 5.3.3 contains a vulnerability, related to the uxdqmsrv binary being setuid root, that allows local attackers to elevate privileges. This vulnerability was reported to CA s…

CVSS: 7.8 CWE: CWE-269

Critical

CVE-2019-10777

In aws-lambda versions prior to version 1.0.5, the "config.FunctioName" is used to construct the argument used within the "exec" function without any sanitization. It is possible for a user to inject…

CVSS: 9.8 CWE: CWE-78

Medium

CVE-2016-6588

A Cross-Site Scripting (XSS) vulnerability exists in the ITMS workflow process manager console in Symantec IT Management Suite 8.0.

CVSS: 5.4 CWE: CWE-79

Low

CVE-2016-6586

A security bypass vulnerability exists in Symantec Norton Mobile Security for Android before 3.16, which could let a malicious user conduct a man-in-the-middle via specially crafted JavaScript to add…

CVSS: 3.7 CWE: CWE-20

High

CVE-2014-5287

A Bash script injection vulnerability exists in Kemp Load Master 7.1-16 and earlier due to a failure to sanitize input in the Web User Interface (WUI).

CVSS: 8.8 CWE: CWE-74

Medium

CVE-2020-0009

In calc_vm_may_flags of ashmem.c, there is a possible arbitrary write to shared memory due to a permissions bypass. This could lead to local escalation of privilege by corrupting memory shared betwee…

CVSS: 5.5 CWE: CWE-276

High

CVE-2019-5188

A code execution vulnerability exists in the directory rehashing functionality of E2fsprogs e2fsck 1.45.4. A specially crafted ext4 directory can cause an out-of-bounds write on the stack, resulting…

CVSS: 7.5 CWE: CWE-787

Critical

CVE-2019-19518

CA Automic Sysload 5.6.0 through 6.1.2 contains a vulnerability, related to a lack of authentication on the File Server port, that potentially allows remote attackers to execute arbitrary commands.

CVSS: 9.8 CWE: CWE-287

Critical

CVE-2019-17076

An issue was discovered in Jamf Pro 9.x and 10.x before 10.15.1. Deserialization of untrusted data when parsing JSON in several APIs may cause Denial of Service (DoS), remote code execution (RCE), an…

CVSS: 9.8 CWE: CWE-502

Critical

CVE-2019-10778

devcert-sanscache before 0.4.7 allows remote attackers to execute arbitrary code or cause a Command Injection via the exec function. The variable `commonName` controlled by user input is used as part…

CVSS: 9.8 CWE: CWE-78

High

CVE-2016-6593

A code-execution vulnerability exists during startup in jhi.dll and otpiha.dll in Symantec VIP Access Desktop before 2.2.2, which could let local malicious users execute arbitrary code.

CVSS: 7.8 CWE: CWE-426

High

CVE-2016-6591

A security bypass vulnerability exists in Symantec Norton App Lock 1.0.3.186 and earlier if application pinning is enabled, which could let a local malicious user bypass security restrictions.

CVSS: 7.1 CWE: CWE-863

High

CVE-2016-6590

A privilege escalation vulnerability exists when loading DLLs during boot up and reboot in Symantec IT Management Suite 8.0 prior to 8.0 HF4 and Suite 7.6 prior to 7.6 HF7, Symantec Ghost Solution Su…

CVSS: 7.8 CWE: CWE-269

Medium

CVE-2016-6589

A Denial of Service vulnerability exists in the ITMS workflow process manager login window in Symantec IT Management Suite 8.0.

CVSS: 6.5 CWE: CWE-20

Critical

CVE-2014-2072

Dassault Systemes Catia V5-6R2013: Stack Buffer Overflow due to inadequate boundary checks

CVSS: 9.8 CWE: CWE-787

Critical

CVE-2014-1860

Contao CMS through 3.2.4 has PHP Object Injection Vulnerabilities

CVSS: 9.8 CWE: CWE-502

Critical

CVE-2014-1409

MobileIron VSP versions prior to 5.9.1 and Sentry versions prior to 5.0 have an authentication bypass vulnerability due to an XML file with obfuscated passwords

CVSS: 9.1 CWE: CWE-91

High

CVE-2019-20362

In Teradici PCoIP Agent before 19.08.1 and PCoIP Client before 19.08.3, an unquoted service path can cause execution of %PROGRAMFILES(X86)%\Teradici\PCoIP.exe instead of the intended pcoip_vchan_prin…

CVSS: 7.8 CWE: CWE-428

Medium

CVE-2019-14820

It was found that keycloak before version 8.0.0 exposes internal adapter endpoints in org.keycloak.constants.AdapterConstants, which can be invoked via a specially-crafted URL. This vulnerability cou…

CVSS: 4.3 CWE: CWE-200

Critical

CVE-2014-1598

centurystar 7.12 ActiveX Control has a Stack Buffer Overflow

CVSS: 9.8 CWE: CWE-787

Medium

CVE-2014-1454

Pearson eSIS (Enterprise Student Information System) message board has stored XSS due to improper validation of user input

CVSS: 4.8 CWE: CWE-79

Critical

CVE-2020-6170

An authentication bypass vulnerability on Genexis Platinum-4410 v2.1 P4410-V2 1.28 devices allows attackers to obtain cleartext credentials from the HTML source code of the cgi-bin/index2.asp URI.

CVSS: 9.8 CWE: CWE-200

Critical

CVE-2019-20361

There was a flaw in the WordPress plugin, Email Subscribers & Newsletters before 4.3.1, that allowed SQL statements to be passed to the database in the hash parameter (a blind SQL injection vulnerabi…

CVSS: 9.8 CWE: CWE-89

High

CVE-2019-20360

A flaw in Give before 2.5.5, a WordPress plugin, allowed unauthenticated users to bypass API authentication methods and access personally identifiable user information (PII) including names, addresse…

CVSS: 7.5 CWE: CWE-287

Medium

CVE-2020-6163

The WikibaseMediaInfo extension 1.35 for MediaWiki allows XSS because of improper template syntax within the PropertySuggestionsWidget template (in the templates/search/PropertySuggestionsWidget.must…

CVSS: 6.1 CWE: CWE-79

Medium

CVE-2014-5209

An Information Disclosure vulnerability exists in NTP 4.2.7p25 private (mode 6/7) messages via a GET_RESTRICT control message, which could let a malicious user obtain sensitive information.

CVSS: 5.3 CWE: CWE-200

2020-01-07

Medium

CVE-2019-17151

This vulnerability allows remote attackers redirect users to an external resource on affected installations of Tencent WeChat Prior to 7.0.9. User interaction is required to exploit this vulnerabilit…

CVSS: 5.4 CWE: CWE-356

High

CVE-2019-17148

This vulnerability allows local attackers to escalate privileges on affected installations of Parallels Desktop Parallels Desktop version 14.1.3 (45485). An attacker must first obtain the ability to…

CVSS: 7.8 CWE: CWE-77

High

CVE-2019-17147

This vulnerability allows remote attackers to execute arbitrary code on affected installations of TP-LINK TL-WR841N routers. Authentication is not required to exploit this vulnerability. The specific…

CVSS: 8.8 CWE: CWE-120

Critical

CVE-2019-17146

This vulnerability allows remote attackers to execute arbitrary code on affected installations of D-Link DCS-960L v1.07.102. Authentication is not required to exploit this vulnerability. The specific…

CVSS: 9.8 CWE: CWE-121

Medium

CVE-2019-18652

A DOM based XSS vulnerability has been identified on the WatchGuard XMT515 through 12.1.3, allowing a remote attacker to execute JavaScript in the victim's browser by tricking the victim into clickin…

CVSS: 6.1 CWE: CWE-79

Critical

CVE-2020-5841

An issue was discovered in OpServices OpMon 9.3.1-1. Using password change parameters, an attacker could perform SQL injection without authentication.

CVSS: 9.8 CWE: CWE-89

Medium

CVE-2019-6529

An attacker could specially craft an FTP request that could crash the PR100088 Modbus gateway versions prior to release R02 (or Software Version 1.1.13166).

CVSS: 4.9 CWE: CWE-20

Critical

CVE-2019-14906

A flaw was found with the RHSA-2019:3950 erratum, where it did not fix the CVE-2019-13616 SDL vulnerability. This issue only affects Red Hat SDL packages, SDL versions through 1.2.15 and 2.x through…

CVSS: 9.8 CWE: CWE-125

Medium

CVE-2020-5842

Codoforum 4.8.3 allows XSS in the user registration page: via the username field to the index.php?u=/user/register URI. The payload is, for example, executed on the admin/index.php?page=users/manage…

CVSS: 6.1 CWE: CWE-79

Critical

CVE-2020-5307

PHPGurukul Dairy Farm Shop Management System 1.0 is vulnerable to SQL injection, as demonstrated by the username parameter in index.php, the category and CategoryCode parameters in add-category.php,…

CVSS: 9.8 CWE: CWE-89

Medium

CVE-2019-6700

An information exposure vulnerability in the external authentication profile form of FortiSIEM 5.2.2 and earlier may allow an authenticated attacker to retrieve the external authentication password v…

CVSS: 6.5 CWE: CWE-200

Medium

CVE-2019-16154

An improper neutralization of input during web page generation in FortiAuthenticator WEB UI 6.0.0 may allow an unauthenticated user to perform a cross-site scripting attack (XSS) via a parameter of t…

CVSS: 6.1 CWE: CWE-79

Critical

CVE-2019-10776

In "index.js" file line 240, the run command executes the git command with a user controlled variable called remoteUrl. This affects git-diff-apply all versions prior to 0.22.2.

CVSS: 9.8 CWE: CWE-78

High

CVE-2019-14819

A flaw was found during the upgrade of an existing OpenShift Container Platform 3.x cluster. Using CRI-O, the dockergc service account is assigned to the current namespace of the user performing the…

CVSS: 8.8 CWE: CWE-266

Critical

CVE-2014-8673

Multiple SQL vulnerabilities exist in planning.php, user_list.php, projets.php, user_groupes.php, and groupe_list.php in Simple Online Planning (SOPPlanning)before 1.33.

CVSS: 9.8 CWE: CWE-89

High

CVE-2019-14866

In all versions of cpio before 2.13 does not properly validate input files when generating TAR archives. When cpio is used to create TAR archives from paths an attacker can write to, the resulting ar…

CVSS: 7.3 CWE: CWE-20

Medium

CVE-2019-14854

OpenShift Container Platform 4 does not sanitize secret data written to static pod logs when the log level in a given operator is set to Debug or higher. A low privileged user could read pod logs to…

CVSS: 6.5 CWE: CWE-117

Critical

CVE-2019-14837

A flaw was found in keycloack before version 8.0.0. The owner of 'placeholder.org' domain can setup mail server on this domain and knowing only name of a client can reset password and then log in. Fo…

CVSS: 9.1 CWE: CWE-547

Low

CVE-2019-14834

A vulnerability was found in dnsmasq before version 2.81, where the memory leak allows remote attackers to cause a denial of service (memory consumption) via vectors involving DHCP response creation.

CVSS: 3.7 CWE: CWE-770

Medium

CVE-2013-5658

AultWare pwStore 2010.8.30.0 has XSS

CVSS: 6.1 CWE: CWE-79

High

CVE-2013-5656

FuzeZip 1.0.0.131625 has a Local Buffer Overflow vulnerability

CVSS: 7.8 CWE: CWE-787

Medium

CVE-2013-5638

Transcend WiFiSD 1.8 has persistent XSS

CVSS: 5.4 CWE: CWE-79

Medium

CVE-2013-5637

PQI AirCard has persistent XSS

CVSS: 5.4 CWE: CWE-79

Medium

CVE-2020-5393

In Appspace On-Prem through 7.1.3, an adversary can steal a session token via XSS.

CVSS: 6.1 CWE: CWE-79

Medium

CVE-2013-5571

HMailServer 5.3.x and prior: Memory Corruption which could cause DOS

CVSS: 5.9 CWE: CWE-119

Critical

CVE-2013-5122

Cisco Linksys Routers EA2700, EA3500, E4200, EA4500: A bug can cause an unsafe TCP port to open which leads to unauthenticated access

CVSS: 9.8 CWE: CWE-287

Medium

CVE-2020-5843

Codoforum 4.8.3 allows XSS in the admin dashboard via a category to the Manage Users screen.

CVSS: 4.8 CWE: CWE-79

2020-01-06

High

CVE-2019-6857

A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in Modicon M580, Modicon M340, Modicon Quantum, Modicon Premium (see security notification for specific versions)…

CVSS: 7.5 CWE: CWE-754

High

CVE-2019-6856

CVSS: 7.5 CWE: CWE-754

High

CVE-2019-6855

Incorrect Authorization vulnerability exists in EcoStruxure Control Expert (all versions prior to 14.1 Hot Fix), Unity Pro (all versions), Modicon M340 (all versions prior to V3.20) , and Modicon M58…

CVSS: 7.3 CWE: CWE-863

High

CVE-2019-6854

A CWE-287: Improper Authentication vulnerability exists in a folder within EcoStruxure Geo SCADA Expert (ClearSCADA) -with initial releases before 1 January 2019- which could cause a low privilege us…

CVSS: 7.8 CWE: CWE-287

High

CVE-2018-7794

CVSS: 7.5 CWE: CWE-754

Medium

CVE-2014-9405

A Cross-Site Scripting (XSS) vulnerability exists in the description field of an Download RSS item or Contacts in Freebox OS Web interface 3.0.2, which allows malicious users to execute arbitrary cod…

CVSS: 5.4 CWE: CWE-79

Medium

CVE-2014-8674

Multiple Cross-Site Scripting (XSS) vulnerabilities exist in Simple Online Planning (SOPlanning) before 1.33 via the document.cookie in nb_mois and mb_ligness and the debug GET parameter to export.ph…

CVSS: 5.4 CWE: CWE-79

High

CVE-2020-5846

An insecure file upload and code execution issue was discovered in Ahsay Cloud Backup Suite 8.3.0.30 via a "PUT /obs/obm7/file/upload" request with the base64-encoded pathname in the X-RSW-custom-enc…

CVSS: 8.8 CWE: CWE-434

Medium

CVE-2019-20348

OKER G232V1 v1.03.02.20161129 devices provide a root terminal on a UART serial interface without proper access control. This allows attackers with physical access to interrupt the boot sequence in or…

CVSS: 6.8 CWE: CWE-78

Medium

CVE-2019-18842

A cross-site scripting (XSS) vulnerability in the configuration web interface of the Jinan USR IOT USR-WIFI232-S/T/G2/H Low Power WiFi Module with web version 1.2.2 allows attackers to leak credentia…

CVSS: 6.1 CWE: CWE-79

Medium

CVE-2019-16271

DTEN D5 and D7 before 1.3.2 devices allows remote attackers to read saved whiteboard image PDF documents via storage/emulated/0/Notes/PDF on TCP port 8080 without authentication.

CVSS: 5.3 CWE: CWE-306

Critical

CVE-2015-5951

A file upload issue exists in the specid parameter in Thomson Reuters FATCH before 5.2, which allows malicious users to upload arbitrary PHP files to the web root and execute system commands.

CVSS: 9.9 CWE: CWE-434

High

CVE-2015-4553

A file upload issue exists in DeDeCMS before 5.7-sp1, which allows malicious users getshell.

CVSS: 8.8 CWE: CWE-434

Medium

CVE-2020-5513

Gila CMS 1.11.8 allows /cm/delete?t=../ Directory Traversal.

CVSS: 6.8 CWE: CWE-22

Medium

CVE-2020-5512

Gila CMS 1.11.8 allows /admin/media?path=../ Path Traversal.

CVSS: 6.8 CWE: CWE-22

Medium

CVE-2020-5204

In uftpd before 2.11, there is a buffer overflow vulnerability in handle_PORT in ftpcmd.c that is caused by a buffer that is 16 bytes large being filled via sprintf() with user input based on the for…

CVSS: 6.5 CWE: CWE-121

High

CVE-2019-19585

An issue was discovered in rConfig 3.9.3. The install script updates the /etc/sudoers file for rconfig specific tasks. After an "rConfig specific Apache configuration" update, apache has high privile…

CVSS: 7.8 CWE: CWE-269

High

CVE-2019-19509

An issue was discovered in rConfig 3.9.3. A remote authenticated user can directly execute system commands by sending a GET request to ajaxArchiveFiles.php because the path parameter is passed to the…

CVSS: 8.8 CWE: CWE-78

Medium

CVE-2019-16717

OX App Suite through 7.10.2 has XSS.

CVSS: 6.1 CWE: CWE-79

Medium

CVE-2019-16716

OX App Suite through 7.10.2 has Incorrect Access Control.

CVSS: 6.6 CWE: CWE-276

High

CVE-2019-16274

DTEN D5 before 1.3 and D7 before 1.3 devices transfer customer data files via unencrypted HTTP.

CVSS: 7.5 CWE: CWE-319

Critical

CVE-2019-16272

On DTEN D5 and D7 before 1.3.4 devices, factory settings allows for firmware reflash and Android Debug Bridge (adb) enablement.

CVSS: 9.8 CWE: CWE-1188

Medium

CVE-2014-3743

Multiple cross-site scripting (XSS) vulnerabilities in the Marked module before 0.3.1 for Node.js allow remote attackers to inject arbitrary web script or HTML via vectors related to (1) gfm codebloc…

CVSS: 6.1 CWE: CWE-79