CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Security Vulnerabilities (CVSS score between 6 and 6.99)

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
151 CVE-2019-15834 352 CSRF 2019-08-30 2019-09-04
6.8
None Remote Medium Not required Partial Partial Partial
The webp-converter-for-media plugin before 1.0.3 for WordPress has CSRF.
152 CVE-2019-15832 352 CSRF 2019-08-30 2019-09-03
6.8
None Remote Medium Not required Partial Partial Partial
The visitors-traffic-real-time-statistics plugin before 1.13 for WordPress has CSRF.
153 CVE-2019-15831 352 CSRF 2019-08-30 2019-09-03
6.8
None Remote Medium Not required Partial Partial Partial
The visitors-traffic-real-time-statistics plugin before 1.12 for WordPress has CSRF in the settings page.
154 CVE-2019-15828 352 CSRF 2019-08-30 2019-09-05
6.8
None Remote Medium Not required Partial Partial Partial
The one-click-ssl plugin before 1.4.7 for WordPress has CSRF.
155 CVE-2019-15813 94 Exec Code Bypass 2019-09-04 2019-09-04
6.5
None Remote Low Single system Partial Partial Partial
Multiple file upload restriction bypass vulnerabilities in Sentrifugo 3.2 could allow authenticated users to execute arbitrary code via a webshell.
156 CVE-2019-15781 352 CSRF 2019-08-29 2019-08-30
6.8
None Remote Medium Not required Partial Partial Partial
The facebook-by-weblizar plugin before 2.8.5 for WordPress has CSRF.
157 CVE-2019-15779 352 2019-08-29 2019-09-03
6.8
None Remote Medium Not required Partial Partial Partial
The insta-gallery plugin before 2.4.8 for WordPress has no nonce validation for qligg_dismiss_notice or qligg_form_item_delete.
158 CVE-2019-15770 352 2019-08-29 2019-09-04
6.8
None Remote Medium Not required Partial Partial Partial
The woo-address-book plugin before 1.6.0 for WordPress has save calls without nonce verification checks.
159 CVE-2019-15769 352 CSRF 2019-08-29 2019-09-05
6.8
None Remote Medium Not required Partial Partial Partial
The handl-utm-grabber plugin before 2.6.5 for WordPress has CSRF via add_option and update_option.
160 CVE-2019-15767 119 Overflow 2019-08-28 2019-09-03
6.8
None Remote Medium Not required Partial Partial Partial
In GNU Chess 6.2.5, there is a stack-based buffer overflow in the cmd_load function in frontend/cmd.cc via a crafted chess position in an EPD file.
161 CVE-2019-15766 94 Exec Code 2019-10-03 2019-10-09
6.5
None Remote Low Single system Partial Partial Partial
The KSLABS KSWEB (aka ru.kslabs.ksweb) application 3.93 for Android allows authenticated remote code execution via a POST request to the AJAX handler with the configFile parameter set to the arbitrary file to be written to (and the config_text parameter set to the content of the file to be created). This can be a PHP file that is written to in the public web directory and subsequently executed. The attacker must have network connectivity to the PHP server that is running on the Android device.
162 CVE-2019-15753 399 2019-08-28 2019-09-04
6.4
None Remote Low Not required Partial None Partial
In OpenStack os-vif 1.15.x before 1.15.2, and 1.16.0, a hard-coded MAC aging time of 0 disables MAC learning in linuxbridge, forcing obligatory Ethernet flooding of non-local destinations, which both impedes network performance and allows users to possibly view the content of packets for instances belonging to other tenants sharing the same network. Only deployments using the linuxbridge backend are affected. This occurs in PyRoute2.add() in internal/command/ip/linux/impl_pyroute2.py.
163 CVE-2019-15747 269 2019-10-07 2019-10-08
6.5
None Remote Low Single system Partial Partial Partial
SITOS six Build v6.2.1 allows a user with the user role of Seminar Coordinator to escalate their permission to the Systemadministrator role due to insufficient checks on the server side.
164 CVE-2019-15737 287 2019-09-16 2019-09-17
6.4
None Remote Low Not required Partial Partial None
An issue was discovered in GitLab Community and Enterprise Edition through 12.2.1. Certain account actions needed improved authentication and session management.
165 CVE-2019-15701 78 Exec Code 2019-08-27 2019-08-30
6.8
None Remote Medium Not required Partial Partial Partial
components/Modals/HelpModal.jsx in BloodHound 2.2.0 allows remote attackers to execute arbitrary OS commands (by spawning a child process as the current user on the victim's machine) when the search function's autocomplete feature is used. The victim must import data from an Active Directory with a GPO containing JavaScript in its name.
166 CVE-2019-15699 125 2019-09-24 2019-09-25
6.4
None Remote Low Not required Partial None Partial
An issue was discovered in app-layer-ssl.c in Suricata 4.1.4. Upon receiving a corrupted SSLv3 (TLS 1.2) packet, the parser function TLSDecodeHSHelloExtensions tries to access a memory region that is not allocated, because the expected length of HSHelloExtensions does not match the real length of the HSHelloExtensions part of the packet.
167 CVE-2019-15660 352 CSRF 2019-08-27 2019-08-28
6.8
None Remote Medium Not required Partial Partial Partial
The wp-members plugin before 3.2.8 for WordPress has CSRF.
168 CVE-2019-15649 434 2019-08-27 2019-08-30
6.5
None Remote Low Single system Partial Partial Partial
The insert-or-embed-articulate-content-into-wordpress plugin before 4.2999 for WordPress has insufficient restrictions on file upload.
169 CVE-2019-15647 94 Exec Code 2019-08-27 2019-08-29
6.5
None Remote Low Single system Partial Partial Partial
The groundhogg plugin before 1.3.5 for WordPress has wp-admin/admin-ajax.php?action=bulk_action_listener remote code execution.
170 CVE-2019-15645 352 CSRF 2019-08-27 2019-08-28
6.8
None Remote Medium Not required Partial Partial Partial
The zoho-salesiq plugin before 1.0.9 for WordPress has CSRF.
171 CVE-2019-15642 94 Exec Code 2019-08-26 2019-09-04
6.5
None Remote Low Single system Partial Partial Partial
rpc.cgi in Webmin through 1.920 allows authenticated Remote Code Execution via a crafted object name because unserialise_variable makes an eval call. NOTE: the Webmin_Servers_Index documentation states "RPC can be used to run any command or modify any file on a server, which is why access to it must not be granted to un-trusted Webmin users."
172 CVE-2019-15641 611 2019-08-26 2019-08-30
6.8
None Remote Low Single system Complete None None
xmlrpc.cgi in Webmin through 1.930 allows authenticated XXE attacks. By default, only root, admin, and sysadm can access xmlrpc.cgi.
173 CVE-2019-15547 134 2019-08-26 2019-08-29
6.4
None Remote Low Not required None Partial Partial
An issue was discovered in the ncurses crate through 5.99.0 for Rust. There are format string issues in printw functions because C format arguments are mishandled.
174 CVE-2019-15546 134 2019-08-26 2019-08-29
6.4
None Remote Low Not required None Partial Partial
An issue was discovered in the pancurses crate through 0.16.1 for Rust. printw and mvprintw have format string vulnerabilities.
175 CVE-2019-15525 295 2019-08-23 2019-08-30
6.8
None Remote Medium Not required Partial Partial Partial
There is Missing SSL Certificate Validation in the pw3270 terminal emulator before version 5.1.
176 CVE-2019-15496 352 CSRF 2019-08-28 2019-08-30
6.8
None Remote Medium Not required Partial Partial Partial
MyT Project Management 1.5.1 lacks CSRF protection and, for example, allows a user/create CSRF attack. This could lead to an attacker tricking the administrator into executing arbitrary code via a specially crafted HTML page.
177 CVE-2019-15493 284 2019-08-23 2019-08-26
6.4
None Remote Low Not required None Partial Partial
openITCOCKPIT before 3.7.1 allows deletion of files, aka RVID 4-445b21.
178 CVE-2019-15491 352 CSRF 2019-08-23 2019-08-26
6.8
None Remote Medium Not required Partial Partial Partial
openITCOCKPIT before 3.7.1 has CSRF, aka RVID 2-445b21.
179 CVE-2019-15329 352 CSRF 2019-08-22 2019-08-23
6.8
None Remote Medium Not required Partial Partial Partial
The import-users-from-csv-with-meta plugin before 1.14.0.3 for WordPress has CSRF.
180 CVE-2019-15324 20 Exec Code 2019-08-22 2019-08-26
6.5
None Remote Low Single system Partial Partial Partial
The ad-inserter plugin before 2.4.22 for WordPress has remote code execution.
181 CVE-2019-15316 264 2019-08-21 2019-08-30
6.9
None Local Medium Not required Complete Complete Complete
Valve Steam Client for Windows through 2019-08-20 has weak folder permissions, leading to privilege escalation (to NT AUTHORITY\SYSTEM) via crafted use of CreateMountPoint.exe and SetOpLock.exe to leverage a TOCTOU race condition.
182 CVE-2019-15304 255 DoS 2019-08-26 2019-09-03
6.4
None Remote Low Not required Partial None Partial
Lierda Grill Temperature Monitor V1.00_50006 has a default password of admin for the admin account, which allows an attacker to cause a Denial of Service or Information Disclosure via the undocumented access-point configuration page located on the device. NOTE: this device also ships with ProGrade branding.
183 CVE-2019-15296 119 Overflow 2019-08-21 2019-09-16
6.8
None Remote Medium Not required Partial Partial Partial
An issue was discovered in Freeware Advanced Audio Decoder 2 (FAAD2) 2.8.8. The faad_resetbits function in libfaad/bits.c is affected by a buffer overflow vulnerability. The number of bits to be read is determined by ld->buffer_size - words*4, cast to uint32. If ld->buffer_size - words*4 is negative, a buffer overflow is later performed via getdword_n(&ld->start[words], ld->bytes_left).
184 CVE-2019-15272 444 Bypass 2019-10-02 2019-10-09
6.4
None Remote Low Not required Partial Partial None
A vulnerability in the web-based interface of Cisco Unified Communications Manager and Cisco Unified Communications Manager Session Management Edition (SME) could allow an unauthenticated, remote attacker to bypass security restrictions. The vulnerability is due to improper handling of malformed HTTP methods. An attacker could exploit this vulnerability by sending a crafted HTTP request to the affected system. A successful exploit could allow the attacker to gain unauthorized access to the system.
185 CVE-2019-15238 352 CSRF 2019-08-20 2019-08-22
6.8
None Remote Medium Not required Partial Partial Partial
The cforms2 plugin before 15.0.2 for WordPress has CSRF related to the IP address field.
186 CVE-2019-15229 352 CSRF 2019-08-19 2019-08-26
6.8
None Remote Medium Not required Partial Partial Partial
FUEL CMS 1.4.4 has CSRF in the blocks/create/ Create Blocks section of the Admin console. This could lead to an attacker tricking the administrator into executing arbitrary code via a specially crafted HTML page.
187 CVE-2019-15150 352 CSRF 2019-08-19 2019-08-26
6.8
None Remote Medium Not required Partial Partial Partial
In the OAuth2 Client extension before 0.4 for MediaWiki, a CSRF vulnerability exists due to the OAuth2 state parameter not being checked in the callback function.
188 CVE-2019-15149 254 2019-08-18 2019-08-30
6.8
None Remote Medium Not required Partial Partial Partial
** DISPUTED ** core.py in Mitogen before 0.2.8 has a typo that drops the unidirectional-routing protection mechanism in the case of a child that is initiated by another child. The Ansible extension is unaffected. NOTE: the vendor disputes this issue because it is exploitable only in conjunction with hypothetical other factors, i.e., an affected use case within a library caller, and a bug in the message receiver policy code that led to reliance on this extra protection mechanism.
189 CVE-2019-15140 416 DoS 2019-08-18 2019-08-28
6.8
None Remote Medium Not required Partial Partial Partial
coders/mat.c in ImageMagick 7.0.8-43 Q16 allows remote attackers to cause a denial of service (use-after-free and application crash) or possibly have unspecified other impact by crafting a Matlab image file that is mishandled in ReadImage in MagickCore/constitute.c.
190 CVE-2019-15115 352 CSRF 2019-08-16 2019-08-22
6.8
None Remote Medium Not required Partial Partial Partial
The peters-login-redirect plugin before 2.9.2 for WordPress has CSRF.
191 CVE-2019-15114 352 CSRF 2019-08-16 2019-08-21
6.8
None Remote Medium Not required Partial Partial Partial
The formcraft-form-builder plugin before 1.2.2 for WordPress has CSRF.
192 CVE-2019-15113 352 CSRF 2019-08-16 2019-08-21
6.8
None Remote Medium Not required Partial Partial Partial
The companion-sitemap-generator plugin before 3.7.0 for WordPress has CSRF.
193 CVE-2019-15092 74 2019-08-23 2019-08-29
6.0
None Remote Medium Single system Partial Partial Partial
The webtoffee "WordPress Users & WooCommerce Customers Import Export" plugin 1.3.0 for WordPress allows CSV injection in the user_url, display_name, first_name, and last_name columns in an exported CSV file created by the WF_CustomerImpExpCsv_Exporter class.
194 CVE-2019-15089 352 CSRF 2019-09-20 2019-09-20
6.8
None Remote Medium Not required Partial Partial Partial
An issue was discovered in PRiSE adAS 1.7.0. Forms have no CSRF protection, letting an attacker execute actions as the administrator.
195 CVE-2019-15087 862 Exec Code 2019-09-20 2019-09-20
6.5
None Remote Low Single system Partial Partial Partial
An issue was discovered in PRiSE adAS 1.7.0. An authenticated user can change the function used to hash passwords to any function, leading to remote code execution.
196 CVE-2019-15074 79 Exec Code XSS 2019-08-21 2019-09-04
6.8
None Remote Medium Not required Partial Partial Partial
The Timeline feature in my_view_page.php in MantisBT through 2.21.1 has a stored cross-site scripting (XSS) vulnerability, allowing execution of arbitrary code (if CSP settings permit it) after uploading an attachment with a crafted filename. The code is executed for any user having visibility to the issue, whenever My View Page is displayed.
197 CVE-2019-15062 352 Bypass CSRF 2019-08-14 2019-08-28
6.0
None Remote Medium Single system Partial Partial Partial
An issue was discovered in Dolibarr 11.0.0-alpha. A user can store an IFRAME element (containing a user/card.php CSRF request) in his Linked Files settings page. When visited by the admin, this could completely take over the admin account. (The protection mechanism for CSRF is to check the Referer header; however, because the attack is from one of the application's own settings pages, this mechanism is bypassed.)
198 CVE-2019-15060 20 Exec Code 2019-08-22 2019-08-26
6.5
None Remote Low Single system Partial Partial Partial
The traceroute function on the TP-Link TL-WR840N v4 router with firmware through 0.9.1 3.16 is vulnerable to remote code execution via a crafted payload in an IP address input field.
199 CVE-2019-15058 119 DoS Overflow 2019-08-14 2019-09-06
6.4
None Remote Low Not required Partial None Partial
stb_image.h (aka the stb image loader) 2.23 has a heap-based buffer over-read in stbi__tga_load, leading to Information Disclosure or Denial of Service.
200 CVE-2019-15053 79 XSS Bypass 2019-08-14 2019-08-21
6.0
None Remote Medium Single system Partial Partial Partial
The "HTML Include and replace macro" plugin before 1.5.0 for Confluence Server allows a bypass of the includeScripts=false XSS protection mechanism via vectors involving an IFRAME element.
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.