# |
CVE ID
|
CWE ID
|
# of Exploits
|
Vulnerability Type(s)
|
Publish Date
|
Update Date
|
Score
|
Gained Access Level
|
Access
|
Complexity
|
Authentication
|
Conf.
|
Integ.
|
Avail.
|
601 |
CVE-2019-16058 |
119 |
|
Overflow |
2019-09-06 |
2019-09-12 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
An issue was discovered in the pam_p11 component 0.2.0 and 0.3.0 for OpenSC. If a smart card creates a signature with a length longer than 256 bytes, this triggers a buffer overflow. This may be the case for RSA keys with 4096 bits depending on the signature scheme. |
602 |
CVE-2019-16056 |
20 |
|
|
2019-09-06 |
2019-09-11 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
An issue was discovered in Python through 2.7.16, 3.x through 3.5.7, 3.6.x through 3.6.9, and 3.7.x through 3.7.4. The email module wrongly parses email addresses that contain multiple @ characters. An application that uses the email module and implements some kind of checks on the From/To headers of a message could be tricked into accepting an email address that should be denied. An attack may be the same as in CVE-2019-11340; however, this CVE applies to Python more generally. |
603 |
CVE-2019-15955 |
407 |
|
|
2019-09-05 |
2019-09-06 |
4.0 |
None |
Remote |
Low |
Single system |
Partial |
None |
None |
An issue was discovered in Total.js CMS 12.0.0. A low privilege user can perform a simple transformation of a cookie to obtain the random values inside it. If an attacker can discover a session cookie owned by an admin, then it is possible to brute force it with O(n)=2n instead of O(n)=n^x complexity, and steal the admin password. |
604 |
CVE-2019-15953 |
264 |
|
|
2019-09-05 |
2019-09-06 |
6.5 |
None |
Remote |
Low |
Single system |
Partial |
Partial |
Partial |
An issue was discovered in Total.js CMS 12.0.0. An authenticated user with limited privileges can get access to a resource that they do not own by calling the associated API. The product correctly manages privileges only for the front-end resource path, not for API requests. This leads to vertical and horizontal privilege escalation. |
605 |
CVE-2019-15952 |
22 |
|
Exec Code +Priv Dir. Trav. |
2019-09-05 |
2019-09-06 |
6.5 |
None |
Remote |
Low |
Single system |
Partial |
Partial |
Partial |
An issue was discovered in Total.js CMS 12.0.0. An authenticated user with the Pages privilege can conduct a path traversal attack (../) to include .html files that are outside the permitted directory. Also, if a page contains a template directive, then the directive will be server side processed. Thus, if a user can control the content of a .html file, then they can inject a payload with a malicious template directive to gain Remote Command Execution. The exploit will work only with the .html extension. |
606 |
CVE-2019-15950 |
79 |
|
XSS |
2019-09-16 |
2019-09-17 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
The CRM Plugin before 4.2.4 for Redmine allows XSS via crafted vCard data. |
607 |
CVE-2019-15947 |
326 |
|
|
2019-09-05 |
2019-09-09 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
In Bitcoin Core 0.18.0, bitcoin-qt stores wallet.dat data unencrypted in memory. Upon a crash, it may dump a core file. If a user were to mishandle a core file, an attacker can reconstruct the user's wallet.dat file, including their private keys, via a grep "6231 0500" command. |
608 |
CVE-2019-15944 |
116 |
|
|
2019-09-05 |
2019-09-09 |
5.0 |
None |
Remote |
Low |
Not required |
None |
Partial |
None |
In Counter-Strike: Global Offensive before 8/29/2019, community game servers can display unsafe HTML in a disconnection message. |
609 |
CVE-2019-15943 |
20 |
|
DoS Exec Code |
2019-09-19 |
2019-10-02 |
6.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
Partial |
vphysics.dll in Counter-Strike: Global Offensive before 1.37.1.1 allows remote attackers to achieve code execution or denial of service by creating a gaming server and inviting a victim to this server, because a crafted map is mishandled during a memset call. |
610 |
CVE-2019-15942 |
119 |
|
Overflow |
2019-09-05 |
2019-09-06 |
6.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
Partial |
FFmpeg through 4.2 has a "Conditional jump or move depends on uninitialised value" issue in h2645_parse because alloc_rbsp_buffer in libavcodec/h2645_parse.c mishandles rbsp_buffer. |
611 |
CVE-2019-15939 |
369 |
|
|
2019-09-05 |
2019-09-06 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
An issue was discovered in OpenCV 4.1.0. There is a divide-by-zero error in cv::HOGDescriptor::getDescriptorSize in modules/objdetect/src/hog.cpp. |
612 |
CVE-2019-15924 |
476 |
|
|
2019-09-04 |
2019-09-14 |
4.9 |
None |
Local |
Low |
Not required |
None |
None |
Complete |
An issue was discovered in the Linux kernel before 5.0.11. fm10k_init_module in drivers/net/ethernet/intel/fm10k/fm10k_main.c has a NULL pointer dereference because there is no -ENOMEM upon an alloc_workqueue failure. |
613 |
CVE-2019-15923 |
476 |
|
|
2019-09-04 |
2019-10-04 |
4.9 |
None |
Local |
Low |
Not required |
None |
None |
Complete |
An issue was discovered in the Linux kernel before 5.0.9. There is a NULL pointer dereference for a cd data structure if alloc_disk fails in drivers/block/paride/pf.c. |
614 |
CVE-2019-15922 |
476 |
|
|
2019-09-04 |
2019-10-04 |
4.9 |
None |
Local |
Low |
Not required |
None |
None |
Complete |
An issue was discovered in the Linux kernel before 5.0.9. There is a NULL pointer dereference for a pf data structure if alloc_disk fails in drivers/block/paride/pf.c. |
615 |
CVE-2019-15921 |
399 |
|
|
2019-09-04 |
2019-09-24 |
4.6 |
None |
Local |
Low |
Not required |
Partial |
Partial |
Partial |
An issue was discovered in the Linux kernel before 5.0.6. There is a memory leak issue when idr_alloc() fails in genl_register_family() in net/netlink/genetlink.c. |
616 |
CVE-2019-15903 |
611 |
|
|
2019-09-04 |
2019-09-12 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
In libexpat before 2.2.8, crafted XML input could fool the parser into changing from DTD parsing to document parsing too early; a consecutive call to XML_GetCurrentLineNumber (or XML_GetCurrentColumnNumber) then resulted in a heap-based buffer over-read. |
617 |
CVE-2019-15902 |
200 |
|
+Info |
2019-09-04 |
2019-10-10 |
4.7 |
None |
Local |
Medium |
Not required |
Complete |
None |
None |
A backporting error was discovered in the Linux stable/longterm kernel 4.4.x through 4.4.190, 4.9.x through 4.9.190, 4.14.x through 4.14.141, 4.19.x through 4.19.69, and 5.2.x through 5.2.11. Misuse of the upstream "x86/ptrace: Fix possible spectre-v1 in ptrace_get_debugreg()" commit reintroduced the Spectre vulnerability that it aimed to eliminate. This occurred because the backport process depends on cherry picking specific commits, and because two (correctly ordered) code lines were swapped. |
618 |
CVE-2019-15898 |
79 |
|
XSS |
2019-09-03 |
2019-09-04 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
Nagios Log Server before 2.0.8 allows Reflected XSS via the username on the Login page. |
619 |
CVE-2019-15895 |
284 |
|
|
2019-09-09 |
2019-09-09 |
5.0 |
None |
Remote |
Low |
Not required |
None |
Partial |
None |
search-exclude.php in the "Search Exclude" plugin before 1.2.4 for WordPress allows unauthenticated options changes. |
620 |
CVE-2019-15891 |
200 |
|
+Info |
2019-09-26 |
2019-10-01 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
An issue was discovered in CKFinder through 2.6.2.1 and 3.x through 3.5.0. The documentation has misleading information that could lead to a conclusion that the application has a built-in bulletproof content sniffing protection. |
621 |
CVE-2019-15890 |
416 |
|
|
2019-09-06 |
2019-09-20 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
libslirp 4.0.0, as used in QEMU 4.1.0, has a use-after-free in ip_reass in ip_input.c. |
622 |
CVE-2019-15889 |
79 |
|
XSS |
2019-09-03 |
2019-09-04 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
The download-manager plugin before 2.9.94 for WordPress has XSS via the category shortcode feature, as demonstrated by the orderby or search[publish_date] parameter. |
623 |
CVE-2019-15873 |
94 |
|
Exec Code |
2019-09-03 |
2019-09-05 |
6.5 |
None |
Remote |
Low |
Single system |
Partial |
Partial |
Partial |
The profilegrid-user-profiles-groups-and-communities plugin before 2.8.6 for WordPress has remote code execution via an wp-admin/admin-ajax.php request with the action=pm_template_preview&html=<?php substring followed by PHP code. |
624 |
CVE-2019-15871 |
275 |
|
|
2019-09-03 |
2019-09-04 |
4.0 |
None |
Remote |
Low |
Single system |
None |
Partial |
None |
The LoginPress plugin before 1.1.4 for WordPress has no capability check for updates to settings. |
625 |
CVE-2019-15870 |
79 |
|
XSS |
2019-09-03 |
2019-09-03 |
3.5 |
None |
Remote |
Medium |
Single system |
None |
Partial |
None |
The CarSpot theme before 2.1.7 for WordPress has stored XSS via the Phone Number field. |
626 |
CVE-2019-15869 |
79 |
|
XSS |
2019-09-03 |
2019-09-03 |
3.5 |
None |
Remote |
Medium |
Single system |
None |
Partial |
None |
The JobCareer theme before 2.5.1 for WordPress has stored XSS. |
627 |
CVE-2019-15868 |
352 |
|
CSRF |
2019-09-03 |
2019-09-03 |
6.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
Partial |
The affiliates-manager plugin before 2.6.6 for WordPress has CSRF. |
628 |
CVE-2019-15867 |
798 |
|
|
2019-09-03 |
2019-09-06 |
6.5 |
None |
Remote |
Low |
Single system |
Partial |
Partial |
Partial |
The slick-popup plugin before 1.7.2 for WordPress has a hardcoded OmakPass13# password for the slickpopupteam account, after a Subscriber calls a certain AJAX action. |
629 |
CVE-2019-15866 |
434 |
|
|
2019-09-03 |
2019-09-05 |
6.5 |
None |
Remote |
Low |
Single system |
Partial |
Partial |
Partial |
The crelly-slider plugin before 1.3.5 for WordPress has arbitrary file upload via a PHP file inside a ZIP archive to wp_ajax_crellyslider_importSlider. |
630 |
CVE-2019-15865 |
352 |
|
CSRF |
2019-09-03 |
2019-09-03 |
6.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
Partial |
The breadcrumbs-by-menu plugin before 1.0.3 for WordPress has CSRF. |
631 |
CVE-2019-15864 |
79 |
|
XSS |
2019-09-03 |
2019-09-03 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
The breadcrumbs-by-menu plugin before 1.0.3 for WordPress has XSS. |
632 |
CVE-2019-15863 |
20 |
|
|
2019-09-03 |
2019-09-04 |
5.0 |
None |
Remote |
Low |
Not required |
None |
Partial |
None |
The ConvertPlus plugin before 3.4.5 for WordPress has an unintended account creation (with the none role) via a request for variants. |
633 |
CVE-2019-15862 |
434 |
|
|
2019-09-26 |
2019-10-02 |
5.0 |
None |
Remote |
Low |
Not required |
None |
Partial |
None |
An issue was discovered in CKFinder through 2.6.2.1. Improper checks of file names allows remote attackers to upload files without any extension (even if the application was configured to accept files only with a defined set of extensions). This affects CKFinder for ASP, CKFinder for ASP.NET, CKFinder for ColdFusion, and CKFinder for PHP. |
634 |
CVE-2019-15860 |
20 |
|
|
2019-09-03 |
2019-09-04 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
None |
Partial |
Xpdf 2.00 allows a SIGSEGV in XRef::constructXRef in XRef.cc. NOTE: 2.00 is a version from November 2002. |
635 |
CVE-2019-15858 |
20 |
|
Exec Code XSS |
2019-09-03 |
2019-09-19 |
6.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
Partial |
admin/includes/class.import.snippet.php in the "Woody ad snippets" plugin before 2.2.5 for WordPress allows unauthenticated options import, as demonstrated by storing an XSS payload for remote code execution. |
636 |
CVE-2019-15848 |
79 |
|
XSS |
2019-09-05 |
2019-09-18 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
JetBrains TeamCity 2019.1 and 2019.1.1 allows cross-site scripting (XSS), potentially making it possible to send an arbitrary HTTP request to a TeamCity server under the name of the currently logged-in user. |
637 |
CVE-2019-15847 |
331 |
|
|
2019-09-02 |
2019-09-05 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
The POWER9 backend in GNU Compiler Collection (GCC) before version 10 could optimize multiple calls of the __builtin_darn intrinsic into a single call, thus reducing the entropy of the random number generator. This occurred because a volatile operation was not specified. For example, within a single execution of a program, the output of every __builtin_darn() call may be the same. |
638 |
CVE-2019-15843 |
434 |
|
|
2019-09-18 |
2019-09-20 |
5.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
None |
A malicious file upload vulnerability was discovered in Xiaomi Millet mobile phones 1-6.3.9.3. A particular condition involving a man-in-the-middle attack may lead to partial data leakage or malicious file writing. |
639 |
CVE-2019-15842 |
79 |
|
XSS |
2019-08-30 |
2019-09-03 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
The easy-pdf-restaurant-menu-upload plugin before 1.1.2 for WordPress has XSS. |
640 |
CVE-2019-15841 |
352 |
|
CSRF |
2019-08-30 |
2019-09-03 |
6.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
Partial |
The facebook-for-woocommerce plugin before 1.9.15 for WordPress has CSRF via ajax_woo_infobanner_post_click, ajax_woo_infobanner_post_xout, or ajax_fb_toggle_visibility. |
641 |
CVE-2019-15840 |
352 |
|
CSRF |
2019-08-30 |
2019-09-03 |
6.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
Partial |
The facebook-for-woocommerce plugin before 1.9.14 for WordPress has CSRF. |
642 |
CVE-2019-15839 |
74 |
|
File Inclusion |
2019-08-30 |
2019-09-05 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
The sina-extension-for-elementor plugin before 2.2.1 for WordPress has local file inclusion. |
643 |
CVE-2019-15838 |
79 |
|
XSS |
2019-08-30 |
2019-09-03 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
The custom-404-pro plugin before 3.2.8 for WordPress has reflected XSS, a different vulnerability than CVE-2019-14789. |
644 |
CVE-2019-15837 |
79 |
|
XSS |
2019-08-30 |
2019-09-03 |
3.5 |
None |
Remote |
Medium |
Single system |
None |
Partial |
None |
The webp-express plugin before 0.14.8 for WordPress has stored XSS. |
645 |
CVE-2019-15836 |
79 |
|
XSS |
2019-08-30 |
2019-09-04 |
3.5 |
None |
Remote |
Medium |
Single system |
None |
Partial |
None |
The wp-ultimate-recipe plugin before 3.12.7 for WordPress has stored XSS. |
646 |
CVE-2019-15835 |
352 |
|
CSRF |
2019-08-30 |
2019-09-04 |
6.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
Partial |
The wp-better-permalinks plugin before 3.0.5 for WordPress has CSRF. |
647 |
CVE-2019-15834 |
352 |
|
CSRF |
2019-08-30 |
2019-09-04 |
6.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
Partial |
The webp-converter-for-media plugin before 1.0.3 for WordPress has CSRF. |
648 |
CVE-2019-15833 |
79 |
|
XSS |
2019-08-30 |
2019-09-09 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
The simple-mail-address-encoder plugin before 1.7 for WordPress has reflected XSS. |
649 |
CVE-2019-15832 |
352 |
|
CSRF |
2019-08-30 |
2019-09-03 |
6.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
Partial |
The visitors-traffic-real-time-statistics plugin before 1.13 for WordPress has CSRF. |
650 |
CVE-2019-15831 |
352 |
|
CSRF |
2019-08-30 |
2019-09-03 |
6.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
Partial |
The visitors-traffic-real-time-statistics plugin before 1.12 for WordPress has CSRF in the settings page. |