CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Security Vulnerabilities (CVSS score between 6 and 6.99)

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
801 CVE-2019-14541 119 Overflow 2019-08-02 2019-08-05
6.8
None Remote Medium Not required Partial Partial Partial
GnuCOBOL 2.2 has a stack-based buffer overflow in cb_encode_program_id in cobc/typeck.c via crafted COBOL source code.
802 CVE-2019-14535 369 2019-08-29 2019-09-06
6.8
None Remote Medium Not required Partial Partial Partial
A divide-by-zero error exists in the SeekIndex function of demux/asf/asf.c in VideoLAN VLC media player 3.0.7.1. As a result, an FPE can be triggered via a crafted WMV file.
803 CVE-2019-14533 416 2019-08-29 2019-09-06
6.8
None Remote Medium Not required Partial Partial Partial
The Control function of demux/asf/asf.c in VideoLAN VLC media player 3.0.7.1 has a use-after-free.
804 CVE-2019-14528 119 Overflow 2019-08-02 2019-08-13
6.8
None Remote Medium Not required Partial Partial Partial
GnuCOBOL 2.2 has a heap-based buffer overflow in read_literal in cobc/scanner.l via crafted COBOL source code.
805 CVE-2019-14524 119 Overflow 2019-08-02 2019-08-23
6.8
None Remote Medium Not required Partial Partial Partial
An issue was discovered in Schism Tracker through 20190722. There is a heap-based buffer overflow via a large number of song patterns in fmt_mtm_load_song in fmt/mtm.c, a different vulnerability than CVE-2019-14465.
806 CVE-2019-14523 191 2019-08-02 2019-08-23
6.8
None Remote Medium Not required Partial Partial Partial
An issue was discovered in Schism Tracker through 20190722. There is an integer underflow via a large plen in fmt_okt_load_song in the Amiga Oktalyzer parser in fmt/okt.c.
807 CVE-2019-14498 369 2019-08-29 2019-09-06
6.8
None Remote Medium Not required Partial Partial Partial
A divide-by-zero error exists in the Control function of demux/caf.c in VideoLAN VLC media player 3.0.7.1. As a result, an FPE can be triggered via a crafted CAF file.
808 CVE-2019-14497 119 Overflow 2019-08-01 2019-08-08
6.8
None Remote Medium Not required Partial Partial Partial
ModuleEditor::convertInstrument in tracker/ModuleEditor.cpp in MilkyTracker 1.02.00 has a heap-based buffer overflow.
809 CVE-2019-14496 119 Overflow 2019-08-01 2019-08-08
6.8
None Remote Medium Not required Partial Partial Partial
LoaderXM::load in LoaderXM.cpp in milkyplay in MilkyTracker 1.02.00 has a stack-based buffer overflow.
810 CVE-2019-14492 125 DoS 2019-08-01 2019-08-09
6.4
None Remote Low Not required Partial None Partial
An issue was discovered in OpenCV before 3.4.7 and 4.x before 4.1.1. There is an out of bounds read/write in the function HaarEvaluator::OptFeature::calc in modules/objdetect/src/cascadedetect.hpp, which leads to denial of service.
811 CVE-2019-14491 125 DoS 2019-08-01 2019-08-09
6.4
None Remote Low Not required Partial None Partial
An issue was discovered in OpenCV before 3.4.7 and 4.x before 4.1.1. There is an out of bounds read in the function cv::predictOrdered<cv::HaarEvaluator> in modules/objdetect/src/cascadedetect.hpp, which leads to denial of service.
812 CVE-2019-14486 119 Overflow 2019-08-01 2019-08-13
6.8
None Remote Medium Not required Partial Partial Partial
GnuCOBOL 2.2 has a buffer overflow in cb_evaluate_expr in cobc/field.c via crafted COBOL source code.
813 CVE-2019-14473 285 2019-08-06 2019-08-14
6.5
None Remote Low Single system Partial Partial Partial
eQ-3 Homematic CCU2 and CCU3 use session IDs for authentication but lack authorization checks. Consequently, a valid guest level or user level account can create a new admin level account, read the service messages, clear the system protocol or modify/delete internal programs, etc. pp.
814 CVE-2019-14468 119 Overflow 2019-08-01 2019-08-07
6.8
None Remote Medium Not required Partial Partial Partial
GnuCOBOL 2.2 has a buffer overflow in cb_push_op in cobc/field.c via crafted COBOL source code.
815 CVE-2019-14465 119 Overflow 2019-07-31 2019-08-07
6.8
None Remote Medium Not required Partial Partial Partial
fmt_mtm_load_song in fmt/mtm.c in Schism Tracker 20190722 has a heap-based buffer overflow.
816 CVE-2019-14438 125 2019-08-29 2019-09-06
6.8
None Remote Medium Not required Partial Partial Partial
A heap-based buffer over-read in xiph_PackHeaders() in modules/demux/xiph.h in VideoLAN VLC media player 3.0.7.1 allows remote attackers to trigger a heap-based buffer over-read via a crafted .ogg file.
817 CVE-2019-14437 416 2019-08-29 2019-09-06
6.8
None Remote Medium Not required Partial Partial Partial
The xiph_SplitHeaders function in modules/demux/xiph.h in VideoLAN VLC media player 3.0.7.1 does not check array bounds properly. As a result, a heap-based buffer over-read can be triggered via a crafted .ogg file.
818 CVE-2019-14432 287 Exec Code 2019-08-07 2019-08-19
6.8
None Remote Medium Not required Partial Partial Partial
Incorrect authentication of application WebSocket connections in Loom Desktop for Mac up to 0.16.0 allows remote code execution from either malicious JavaScript in a browser or hosts on the same network, during periods in which a user is recording a video with the application. The same attack vector can be used to crash the application at any time.
819 CVE-2019-14422 254 Exec Code 2019-08-15 2019-08-28
6.8
None Remote Medium Not required Partial Partial Partial
An issue was discovered in in TortoiseSVN 1.12.1. The Tsvncmd: URI handler allows a customised diff operation on Excel workbooks, which could be used to open remote workbooks without protection from macro security settings to execute arbitrary code. A tsvncmd:command:diff?path:[file1]?path2:[file2] URI will execute a customised diff on [file1] and [file2] based on the file extension. For xls files, it will execute the script diff-xls.js using wscript, which will open the two files for analysis without any macro security warning. An attacker can exploit this by putting a macro virus in a network drive, and force the victim to open the workbooks and execute the macro inside.
820 CVE-2019-14418 22 Dir. Trav. 2019-07-29 2019-10-09
6.5
None Remote Low Single system Partial Partial Partial
An issue was discovered in Veritas Resiliency Platform (VRP) before 3.4 HF1. When uploading an application bundle, a directory traversal vulnerability allows a VRP user with sufficient privileges to overwrite any file in the VRP virtual machine. A malicious VRP user could use this to replace existing files to take control of the VRP virtual machine.
821 CVE-2019-14405 20 Exec Code 2019-07-30 2019-07-30
6.5
None Remote Low Single system Partial Partial Partial
cPanel before 78.0.18 allows demo accounts to execute code via securitypolicy.cg (SEC-487).
822 CVE-2019-14401 20 Exec Code 2019-07-30 2019-07-30
6.5
None Remote Low Single system Partial Partial Partial
cPanel before 78.0.18 allows code execution via an addforward API1 call (SEC-480).
823 CVE-2019-14399 200 +Info 2019-07-30 2019-07-31
6.1
None Local Low Not required Complete Partial Partial
The SSL certificate-storage feature in cPanel before 78.0.18 allows unsafe file operations in the context of the root account (SEC-477).
824 CVE-2019-14398 20 Exec Code 2019-07-30 2019-07-31
6.5
None Remote Low Single system Partial Partial Partial
cPanel before 80.0.5 allows demo accounts to execute arbitrary code via ajax_maketext_syntax_util.pl (SEC-498).
825 CVE-2019-14392 20 Exec Code 2019-07-30 2019-07-30
6.5
None Remote Low Single system Partial Partial Partial
cPanel before 80.0.22 allows remote code execution by a demo account because of incorrect URI dispatching (SEC-501).
826 CVE-2019-14378 119 Overflow 2019-07-29 2019-08-10
6.5
None Remote Low Single system Partial Partial Partial
ip_reass in ip_input.c in libslirp 4.0.0 has a heap-based buffer overflow via a large packet because it mishandles a case involving the first fragment.
827 CVE-2019-14373 125 2019-07-28 2019-08-01
6.8
None Remote Medium Not required Partial Partial Partial
An issue was discovered in image_save_png in image/image-png.cpp in Free Lossless Image Format (FLIF) 0.3. Attackers can trigger a heap-based buffer over-read in libpng via a crafted flif file.
828 CVE-2019-14368 125 2019-07-28 2019-08-01
6.8
None Remote Medium Not required Partial Partial Partial
Exiv2 0.27.99.0 has a heap-based buffer over-read in Exiv2::RafImage::readMetadata() in rafimage.cpp.
829 CVE-2019-14352 20 2019-07-28 2019-08-05
6.8
None Remote Medium Not required Partial Partial Partial
** DISPUTED ** In Joget Workflow 6.0.20, CSV Injection, also known as Formula Injection, exists, as demonstrated by jw/web/userview/crm_community/crm_userview_sales/_/account_new with the Account ID or Account Name field. NOTE: the vendor disputes the relevance of this finding because CSV is not the intended export format for spreadsheet applications.
830 CVE-2019-14347 264 2019-08-06 2019-08-14
6.5
None Remote Low Single system Partial Partial Partial
Internal/Views/addUsers.php in Schben Adive 2.0.7 allows remote unprivileged users (editor or developer) to create an administrator account via admin/user/add, as demonstrated by a Python PoC script.
831 CVE-2019-14328 352 CSRF 2019-07-28 2019-08-05
6.8
None Remote Medium Not required Partial Partial Partial
The Simple Membership plugin before 3.8.5 for WordPress has CSRF affecting the Bulk Operation section.
832 CVE-2019-14296 119 DoS Overflow 2019-07-27 2019-08-10
6.8
None Remote Medium Not required Partial Partial Partial
canUnpack in p_vmlinx.cpp in UPX 3.95 allows remote attackers to cause a denial of service (SEGV or buffer overflow, and application crash) or possibly have unspecified other impact via a crafted UPX packed file.
833 CVE-2019-14267 119 Overflow 2019-07-29 2019-09-06
6.8
None Remote Medium Not required Partial Partial Partial
PDFResurrect 0.15 has a buffer overflow via a crafted PDF file because data associated with startxref and %%EOF is mishandled.
834 CVE-2019-14266 89 Sql 2019-07-25 2019-07-29
6.5
None Remote Low Single system Partial Partial Partial
OpenSNS v6.1.0 allows SQL Injection via the index.php?s=/ucenter/Config/ uid parameter because of the getNeedQueryData function in Application/Common/Model/UserModel.class.php.
835 CVE-2019-14253 863 Bypass 2019-09-18 2019-09-18
6.4
None Remote Low Not required Partial Partial None
An issue was discovered in servletcontroller in the secure portal in Publisure 2.1.2. One can bypass authentication and perform a query on PHP forms within the /AdminDir folder that should be restricted.
836 CVE-2019-14252 434 2019-09-18 2019-09-18
6.5
None Remote Low Single system Partial Partial Partial
An issue was discovered in the secure portal in Publisure 2.1.2. Once successfully authenticated as an administrator, one is able to inject arbitrary PHP code by using the adminCons.php form. The code is then stored in the E:\PUBLISURE\webservice\webpages\AdminDir\Templates\ folder even if removed from the adminCons.php view (i.e., the rogue PHP file can be hidden).
837 CVE-2019-14216 352 CSRF 2019-08-14 2019-08-23
6.8
None Remote Medium Not required Partial Partial Partial
An issue was discovered in the svg-vector-icon-plugin (aka WP SVG Icons) plugin through 3.2.1 for WordPress. wp-admin/admin.php?page=wp-svg-icons-custom-set mishandles Custom Icon uploads. CSRF leads to upload of a ZIP archive containing a .php file.
838 CVE-2019-14206 20 2019-07-21 2019-07-31
6.4
None Remote Low Not required None Partial Partial
An Arbitrary File Deletion vulnerability in the Nevma Adaptive Images plugin before 0.6.67 for WordPress allows remote attackers to delete arbitrary files via the $REQUEST['adaptive-images-settings'] parameter in adaptive-images-script.php.
839 CVE-2019-14197 125 2019-07-31 2019-08-02
6.4
None Remote Low Not required Partial None Partial
An issue was discovered in Das U-Boot through 2019.07. There is a read of out-of-bounds data at nfs_read_reply.
840 CVE-2019-13989 119 Overflow 2019-07-19 2019-07-24
6.8
None Remote Medium Not required Partial Partial Partial
dpic 2019.06.20 has a Stack-based Buffer Overflow in the wfloat() function in main.c.
841 CVE-2019-13984 434 2019-07-19 2019-07-22
6.8
None Remote Medium Not required Partial Partial Partial
Directus 7 API before 2.3.0 does not validate uploaded files. Regardless of the file extension or MIME type, there is a direct link to each uploaded file, accessible by unauthenticated users, as demonstrated by the EICAR Anti-Virus Test File.
842 CVE-2019-13980 434 Exec Code 2019-07-19 2019-07-22
6.8
None Remote Medium Not required Partial Partial Partial
In Directus 7 API through 2.3.0, uploading of PHP files is blocked only when the Apache HTTP Server is used, leading to uploads/_/originals remote code execution with nginx.
843 CVE-2019-13979 434 Exec Code 2019-07-19 2019-07-22
6.8
None Remote Medium Not required Partial Partial Partial
In Directus 7 API before 2.2.1, uploading of PHP files is not blocked, leading to uploads/_/originals remote code execution.
844 CVE-2019-13978 89 Sql 2019-07-19 2019-07-27
6.5
None Remote Low Single system Partial Partial Partial
Ovidentia 8.4.3 has SQL Injection via the id parameter in an index.php?tg=delegat&idx=mem request.
845 CVE-2019-13974 352 CSRF 2019-07-19 2019-07-19
6.8
None Remote Medium Not required Partial Partial Partial
LayerBB 1.1.3 allows conversations.php/cmd/new CSRF.
846 CVE-2019-13969 89 Sql 2019-07-19 2019-07-19
6.5
None Remote Low Single system Partial Partial Partial
Metinfo 6.x allows SQL Injection via the id parameter in an admin/index.php?n=ui_set&m=admin&c=index&a=doget_text_content&table=lang&field=1 request.
847 CVE-2019-13961 352 CSRF 2019-07-18 2019-07-19
6.8
None Remote Medium Not required Partial Partial Partial
A CSRF vulnerability was found in flatCore before 1.5, leading to the upload of arbitrary .php files via acp/core/files.upload-script.php.
848 CVE-2019-13954 400 2019-07-26 2019-08-07
6.8
None Remote Low Single system None None Complete
Mikrotik RouterOS before 6.44.5 (long-term release tree) is vulnerable to memory exhaustion. By sending a crafted HTTP request, an authenticated remote attacker can crash the HTTP server and in some circumstances reboot the system. Malicious code cannot be injected.
849 CVE-2019-13949 352 CSRF 2019-07-18 2019-07-18
6.8
None Remote Medium Not required Partial Partial Partial
SyGuestBook A5 Version 1.2 has no CSRF protection mechanism, as demonstrated by CSRF for an index.php?c=Administrator&a=update admin password change.
850 CVE-2019-13635 22 Dir. Trav. 2019-07-30 2019-08-13
6.4
None Remote Low Not required Partial Partial None
The WP Fastest Cache plugin through 0.8.9.5 for WordPress allows wpFastestCache.php and inc/cache.php Directory Traversal.
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.