Export limit exceeded: 364251 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (364251 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2019-20534 | 1 Google | 1 Android | 2024-11-21 | 2.4 Low |
| An issue was discovered on Samsung mobile devices with P(9.0) software. Attackers can view home-screen wallpaper by adjusting the brightness of a locked screen. The Samsung ID is SVE-2019-15540 (December 2019). | ||||
| CVE-2019-20533 | 1 Google | 1 Android | 2024-11-21 | 3.3 Low |
| An issue was discovered on Samsung mobile devices with N(7.x), O(8.x), and P(9.0) (released in China or India) software. The S Secure app can launch masked apps without a password. The Samsung ID is SVE-2019-13996 (December 2019). | ||||
| CVE-2019-20532 | 1 Google | 1 Android | 2024-11-21 | 5.3 Medium |
| An issue was discovered on Samsung mobile devices with O(8.x), P(9.0), and Q(10.0) software. Attackers can access the Developer options without authentication. The Samsung ID is SVE-2019-15800 (December 2019). | ||||
| CVE-2019-20531 | 1 Google | 1 Android | 2024-11-21 | 7.1 High |
| An issue was discovered on Samsung mobile devices with P(9.0) (Exynos chipsets) software. The Wi-Fi kernel drivers have an out-of-bounds Read. The Samsung IDs are SVE-2019-15692, SVE-2019-15693 (December 2019). | ||||
| CVE-2019-20530 | 1 Google | 1 Android | 2024-11-21 | 9.8 Critical |
| An issue was discovered on Samsung mobile devices with N(7.1), O(8.x), P(9.0), and Q(10.0) software. Arbitrary code execution is possible on the lock screen. The Samsung ID is SVE-2019-15266 (December 2019). | ||||
| CVE-2019-20529 | 1 Frappe | 1 Frappe | 2024-11-21 | 7.5 High |
| In core/doctype/prepared_report/prepared_report.py in Frappe 11 and 12, data files generated with Prepared Report were being stored as public files (no authentication is required to access; having a link is sufficient) instead of private files. | ||||
| CVE-2019-20528 | 1 Igniterealtime | 1 Openfire | 2024-11-21 | 6.1 Medium |
| Ignite Realtime Openfire 4.4.1 allows XSS via the setup/setup-datasource-standard.jsp username parameter. | ||||
| CVE-2019-20527 | 1 Igniterealtime | 1 Openfire | 2024-11-21 | 6.1 Medium |
| Ignite Realtime Openfire 4.4.1 allows XSS via the setup/setup-datasource-standard.jsp serverURL parameter. | ||||
| CVE-2019-20526 | 1 Igniterealtime | 1 Openfire | 2024-11-21 | 6.1 Medium |
| Ignite Realtime Openfire 4.4.1 allows XSS via the setup/setup-datasource-standard.jsp password parameter. | ||||
| CVE-2019-20525 | 1 Igniterealtime | 1 Openfire | 2024-11-21 | 6.1 Medium |
| Ignite Realtime Openfire 4.4.1 allows XSS via the setup/setup-datasource-standard.jsp driver parameter. | ||||
| CVE-2019-20524 | 1 Ilch | 1 Ilch Cms | 2024-11-21 | 6.1 Medium |
| ilchCMS 2.1.23 allows XSS via the index.php/partner/index Banner parameter. | ||||
| CVE-2019-20523 | 1 Ilch | 1 Ilch Cms | 2024-11-21 | 6.1 Medium |
| ilchCMS 2.1.23 allows XSS via the index.php/partner/index Name parameter. | ||||
| CVE-2019-20522 | 1 Ilch | 1 Ilch Cms | 2024-11-21 | 6.1 Medium |
| ilchCMS 2.1.23 allows XSS via the index.php/partner/index Link parameter. | ||||
| CVE-2019-20521 | 1 Frappe | 1 Erpnext | 2024-11-21 | 6.1 Medium |
| ERPNext 11.1.47 allows reflected XSS via the PATH_INFO to the api/ URI. | ||||
| CVE-2019-20520 | 1 Frappe | 1 Erpnext | 2024-11-21 | 6.1 Medium |
| ERPNext 11.1.47 allows reflected XSS via the PATH_INFO to the api/method/ URI. | ||||
| CVE-2019-20519 | 1 Frappe | 1 Erpnext | 2024-11-21 | 6.1 Medium |
| ERPNext 11.1.47 allows reflected XSS via the PATH_INFO to the user/ URI, as demonstrated by a crafted e-mail address. | ||||
| CVE-2019-20518 | 1 Frappe | 1 Erpnext | 2024-11-21 | 6.1 Medium |
| ERPNext 11.1.47 allows reflected XSS via the PATH_INFO to the project/ URI. | ||||
| CVE-2019-20517 | 1 Frappe | 1 Erpnext | 2024-11-21 | 6.1 Medium |
| ERPNext 11.1.47 allows reflected XSS via the PATH_INFO to the contact/ URI. | ||||
| CVE-2019-20516 | 1 Frappe | 1 Erpnext | 2024-11-21 | 6.1 Medium |
| ERPNext 11.1.47 allows reflected XSS via the PATH_INFO to the blog/ URI. | ||||
| CVE-2019-20515 | 1 Frappe | 1 Erpnext | 2024-11-21 | 6.1 Medium |
| ERPNext 11.1.47 allows reflected XSS via the PATH_INFO to the addresses/ URI. | ||||