CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Security Vulnerabilities (CVSS score between 3 and 3.99)

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
51 CVE-2019-16178 79 XSS 2019-09-09 2019-09-10
3.5
None Remote Medium Single system None Partial None
A stored cross-site scripting (XSS) vulnerability was found in Limesurvey before 3.17.14 that allows authenticated users with correct permissions to inject arbitrary web script or HTML via titles of admin box buttons on the home page.
52 CVE-2019-16173 79 XSS 2019-09-09 2019-09-12
3.5
None Remote Medium Single system None Partial None
LimeSurvey before v3.17.14 allows reflected XSS for escalating privileges from a low-privileged account to, for example, SuperAdmin. This occurs in application/core/Survey_Common_Action.php,
53 CVE-2019-16172 79 XSS 2019-09-09 2019-09-12
3.5
None Remote Medium Single system None Partial None
LimeSurvey before v3.17.14 allows stored XSS for escalating privileges from a low-privileged account to, for example, SuperAdmin. The attack uses a survey group in which the title contains JavaScript that is mishandled upon group deletion.
54 CVE-2019-16146 79 XSS 2019-09-09 2019-09-10
3.5
None Remote Medium Single system None Partial None
Gophish through 0.8.0 allows XSS via a username.
55 CVE-2019-16116 532 +Info 2019-10-02 2019-10-10
3.5
None Remote Medium Single system Partial None None
EnterpriseDT CompleteFTP Server prior to version 12.1.3 is vulnerable to information exposure in the Bootstrap.log file. This allows an attacker to obtain the administrator password hash.
56 CVE-2019-15870 79 XSS 2019-09-03 2019-09-03
3.5
None Remote Medium Single system None Partial None
The CarSpot theme before 2.1.7 for WordPress has stored XSS via the Phone Number field.
57 CVE-2019-15869 79 XSS 2019-09-03 2019-09-03
3.5
None Remote Medium Single system None Partial None
The JobCareer theme before 2.5.1 for WordPress has stored XSS.
58 CVE-2019-15837 79 XSS 2019-08-30 2019-09-03
3.5
None Remote Medium Single system None Partial None
The webp-express plugin before 0.14.8 for WordPress has stored XSS.
59 CVE-2019-15836 79 XSS 2019-08-30 2019-09-04
3.5
None Remote Medium Single system None Partial None
The wp-ultimate-recipe plugin before 3.12.7 for WordPress has stored XSS.
60 CVE-2019-15830 79 XSS 2019-08-30 2019-09-03
3.5
None Remote Medium Single system None Partial None
The icegram plugin before 1.10.29 for WordPress has ig_cat_list XSS.
61 CVE-2019-15829 79 XSS 2019-08-30 2019-09-03
3.5
None Remote Medium Single system None Partial None
The photoblocks-grid-gallery plugin before 1.1.33 for WordPress has wp-admin/admin.php?page=photoblocks-edit&id= XSS.
62 CVE-2019-15827 79 XSS 2019-08-30 2019-09-03
3.5
None Remote Medium Single system None Partial None
The onesignal-free-web-push-notifications plugin before 1.17.8 for WordPress has XSS via the subdomain parameter.
63 CVE-2019-15814 79 XSS 2019-09-04 2019-09-04
3.5
None Remote Medium Single system None Partial None
Multiple stored XSS vulnerabilities in Sentrifugo 3.2 could allow authenticated users to inject arbitrary web script or HTML.
64 CVE-2019-15778 79 XSS 2019-08-29 2019-09-03
3.5
None Remote Medium Single system None Partial None
The woo-variation-gallery plugin before 1.1.29 for WordPress has XSS.
65 CVE-2019-15777 79 XSS 2019-08-29 2019-09-03
3.5
None Remote Medium Single system None Partial None
The shapepress-dsgvo plugin before 2.2.19 for WordPress has wp-admin/admin-ajax.php?action=admin-common-settings&admin_email= XSS.
66 CVE-2019-15745 798 2019-08-29 2019-09-05
3.3
None Local Network Low Not required Partial None None
The Eques elf smart plug and the mobile app use a hardcoded AES 256 bit key to encrypt the commands and responses between the device and the app. The communication happens over UDP port 27431. An attacker on the local network can use the same key to encrypt and send commands to discover all smart plugs in a network, take over control of a device, and perform actions such as turning it on and off.
67 CVE-2019-15508 532 2019-08-23 2019-08-27
3.5
None Remote Medium Single system Partial None None
In Octopus Tentacle versions 3.0.8 to 5.0.0, when a web request proxy is configured, an authenticated user (in certain limited OctopusPrintVariables circumstances) could trigger a deployment that writes the web request proxy password to the deployment log in cleartext. This is fixed in 5.0.1. The fix was back-ported to 4.0.7.
68 CVE-2019-15507 532 2019-08-23 2019-08-27
3.5
None Remote Medium Single system Partial None None
In Octopus Deploy versions 2018.8.4 to 2019.7.6, when a web request proxy is configured, an authenticated user (in certain limited special-characters circumstances) could trigger a deployment that writes the web request proxy password to the deployment log in cleartext. This is fixed in 2019.7.7. The fix was back-ported to LTS 2019.6.7 as well as LTS 2019.3.8.
69 CVE-2019-15480 79 XSS 2019-08-23 2019-08-26
3.5
None Remote Medium Single system None Partial None
Domoticz 4.10717 has XSS via item.Name.
70 CVE-2019-15317 79 XSS 2019-08-22 2019-08-26
3.5
None Remote Medium Single system None Partial None
The give plugin before 2.4.7 for WordPress has XSS via a donor name.
71 CVE-2019-15314 79 Exec Code XSS 2019-08-22 2019-08-28
3.5
None Remote Medium Single system None Partial None
tiki/tiki-upload_file.php in Tiki 18.4 allows remote attackers to upload JavaScript code that is executed upon visiting a tiki/tiki-download_file.php?display&fileId= URI.
72 CVE-2019-15230 79 XSS 2019-08-28 2019-08-30
3.5
None Remote Medium Single system None Partial None
LibreNMS v1.54 has XSS in the Create User, Inventory, Add Device, Notifications, Alert Rule, Create Maintenance, and Alert Template sections of the admin console. This could lead to cookie stealing and other malicious actions. This vulnerability can be exploited with an authenticated account.
73 CVE-2019-15228 79 XSS 2019-08-19 2019-08-26
3.5
None Remote Medium Single system None Partial None
FUEL CMS 1.4.4 has XSS in the Create Blocks section of the Admin console. This could lead to cookie stealing and other malicious actions. This vulnerability can be exploited with an authenticated account but can also impact unauthenticated visitors.
74 CVE-2019-15127 79 XSS 2019-08-21 2019-08-23
3.5
None Remote Medium Single system None Partial None
REDCap before 9.3.0 allows XSS attacks against non-administrator accounts on the Data Import Tool page via a CSV data import file.
75 CVE-2019-15108 79 XSS 2019-08-16 2019-10-09
3.5
None Remote Medium Single system None Partial None
An issue was discovered in WSO2 API Manager 2.6.0 before WSO2-CARBON-PATCH-4.4.0-4457. There is XSS via a crafted filename to the file-upload feature of the event simulator component.
76 CVE-2019-15081 79 XSS 2019-08-15 2019-09-02
3.5
None Remote Medium Single system None Partial None
OpenCart 3.x, when the attacker has login access to the admin panel, allows stored XSS within the Source/HTML editing feature of the Categories, Product, and Information pages.
77 CVE-2019-15031 200 +Info 2019-09-13 2019-09-18
3.6
None Local Low Not required Partial None Partial
In the Linux kernel through 5.2.14 on the powerpc platform, a local user can read vector registers of other users' processes via an interrupt. To exploit the venerability, a local user starts a transaction (via the hardware transactional memory instruction tbegin) and then accesses vector registers. At some point, the vector registers will be corrupted with the values from a different local Linux process, because MSR_TM_ACTIVE is misused in arch/powerpc/kernel/process.c.
78 CVE-2019-15030 20 2019-09-13 2019-09-18
3.6
None Local Low Not required Partial None Partial
In the Linux kernel through 5.2.14 on the powerpc platform, a local user can read vector registers of other users' processes via a Facility Unavailable exception. To exploit the venerability, a local user starts a transaction (via the hardware transactional memory instruction tbegin) and then accesses vector registers. At some point, the vector registers will be corrupted with the values from a different local Linux process because of a missing arch/powerpc/kernel/process.c check.
79 CVE-2019-14987 79 XSS 2019-08-13 2019-08-15
3.5
None Remote Medium Single system None Partial None
Adive Framework through 2.0.7 is affected by XSS in the Create New Table and Create New Navigation Link functions.
80 CVE-2019-14948 79 XSS 2019-08-12 2019-08-21
3.5
None Remote Medium Single system None Partial None
The woocommerce-product-addon plugin before 18.4 for WordPress has XSS via an import of a new meta data structure.
81 CVE-2019-14947 79 XSS 2019-08-12 2019-08-14
3.5
None Remote Medium Single system None Partial None
The ultimate-member plugin before 2.0.52 for WordPress has XSS during an account upgrade.
82 CVE-2019-14946 79 XSS 2019-08-12 2019-08-14
3.5
None Remote Medium Single system None Partial None
The ultimate-member plugin before 2.0.52 for WordPress has XSS related to UM Roles create and edit operations.
83 CVE-2019-14945 79 XSS 2019-08-12 2019-08-14
3.5
None Remote Medium Single system None Partial None
The ultimate-member plugin before 2.0.54 for WordPress has XSS.
84 CVE-2019-14913 79 XSS 2019-09-20 2019-09-23
3.5
None Remote Medium Single system None Partial None
An issue was discovered in PRiSE adAS 1.7.0. Log data are not properly escaped, leading to persistent XSS in the administration panel.
85 CVE-2019-14805 79 XSS 2019-08-09 2019-08-14
3.5
None Remote Medium Single system None Partial None
studio/builder_menu.php?page=sets in UNA 10.0.0-RC1 allows XSS via the System Name field under Sets during set editing.
86 CVE-2019-14804 79 XSS 2019-08-09 2019-08-14
3.5
None Remote Medium Single system None Partial None
studio/polyglot.php?page=etemplates in UNA 10.0.0-RC1 allows XSS via the System Name field under Emails during template editing.
87 CVE-2019-14797 79 XSS 2019-08-09 2019-08-14
3.5
None Remote Medium Single system None Partial None
The 10Web Photo Gallery plugin before 1.5.23 for WordPress has authenticated stored XSS.
88 CVE-2019-14796 79 XSS 2019-08-09 2019-08-20
3.5
None Remote Medium Single system None Partial None
The mq-woocommerce-products-price-bulk-edit (aka Woocommerce Products Price Bulk Edit) plugin 2.0 for WordPress allows XSS via the wp-admin/admin-ajax.php?action=update_options show_products_page_limit parameter.
89 CVE-2019-14795 79 XSS 2019-08-15 2019-08-21
3.5
None Remote Medium Single system None Partial None
The toggle-the-title (aka Toggle The Title) plugin 1.4 for WordPress has XSS via the wp-admin/admin-ajax.php?action=update_title_options isAutoSaveValveChecked or isDisableAllPagesValveChecked parameter.
90 CVE-2019-14792 79 XSS 2019-08-09 2019-08-14
3.5
None Remote Medium Single system None Partial None
The WP Google Maps plugin before 7.11.35 for WordPress allows XSS via the wp-admin/ rectangle_name or rectangle_opacity parameter.
91 CVE-2019-14787 79 XSS 2019-08-09 2019-08-22
3.5
None Remote Medium Single system None Partial None
The Tribulant Newsletters plugin before 4.6.19 for WordPress allows XSS via the wp-admin/admin-ajax.php?action=newsletters_load_new_editor contentarea parameter.
92 CVE-2019-14785 79 XSS 2019-08-09 2019-08-15
3.5
None Remote Medium Single system None Partial None
The "CP Contact Form with PayPal" plugin before 1.2.99 for WordPress has XSS in the publishing wizard via the wp-admin/admin.php?page=cp_contact_form_paypal.php&pwizard=1 cp_contactformpp_id parameter.
93 CVE-2019-14748 434 XSS 2019-08-07 2019-08-14
3.5
None Remote Medium Single system None Partial None
An issue was discovered in osTicket before 1.10.7 and 1.12.x before 1.12.1. The Ticket creation form allows users to upload files along with queries. It was found that the file-upload functionality has fewer (or no) mitigations implemented for file content checks; also, the output is not handled properly, causing persistent XSS that leads to cookie stealing or malicious actions. For example, a non-agent user can upload a .html file, and Content-Disposition will be set to inline instead of attachment.
94 CVE-2019-14731 79 XSS 2019-08-06 2019-08-15
3.5
None Remote Medium Single system None Partial None
An issue was discovered in ZenTao 11.5.1. There is an XSS (stored) vulnerability that leads to the capture of other people's cookies via the Rich Text Box.
95 CVE-2019-14680 352 CSRF 2019-08-08 2019-08-21
3.5
None Remote Medium Single system None Partial None
The admin-renamer-extended (aka Admin renamer extended) plugin 3.2.1 for WordPress allows wp-admin/plugins.php?page=admin-renamer-extended/admin.php CSRF.
96 CVE-2019-14672 79 Exec Code XSS 2019-08-05 2019-08-09
3.5
None Remote Medium Single system None Partial None
Firefly III 4.7.17.5 is vulnerable to stored XSS due to the lack of filtration of user-supplied data in the liability name field. The JavaScript code is executed upon an error condition during a visit to the account show page.
97 CVE-2019-14670 79 Exec Code XSS 2019-08-05 2019-08-09
3.5
None Remote Medium Single system None Partial None
Firefly III 4.7.17.3 is vulnerable to stored XSS due to the lack of filtration of user-supplied data in the bill name field. The JavaScript code is executed during rule-from-bill creation.
98 CVE-2019-14669 79 Exec Code XSS 2019-08-05 2019-08-09
3.5
None Remote Medium Single system None Partial None
Firefly III 4.7.17.3 is vulnerable to stored XSS due to the lack of filtration of user-supplied data in the asset account name. The JavaScript code is executed during a visit to the audit account statistics page.
99 CVE-2019-14668 79 Exec Code XSS 2019-08-05 2019-08-09
3.5
None Remote Medium Single system None Partial None
Firefly III 4.7.17.3 is vulnerable to stored XSS due to the lack of filtration of user-supplied data in the transaction description field. The JavaScript code is executed during deletion of a transaction link.
100 CVE-2019-14550 79 XSS 2019-08-05 2019-08-09
3.5
None Remote Medium Single system None Partial None
An issue was discovered in EspoCRM before 5.6.9. Stored XSS was executed when a victim clicks on the Edit Dashboard feature present on the Homepage. An attacker can load malicious JavaScript inside the add tab list feature, which would fire when a user clicks on the Edit Dashboard button, thus helping him steal victims' cookies (hence compromising their accounts).
Total number of vulnerabilities : 4556   Page : 1 2 (This Page)3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.