Export limit exceeded: 366888 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (366888 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2019-9936 | 1 Sqlite | 1 Sqlite | 2024-11-21 | N/A |
| In SQLite 3.27.2, running fts5 prefix queries inside a transaction could trigger a heap-based buffer over-read in fts5HashEntrySort in sqlite3.c, which may lead to an information leak. This is related to ext/fts5/fts5_hash.c. | ||||
| CVE-2019-9935 | 1 Lexmark | 50 Cs31x, Cs31x Firmware, Cs41x and 47 more | 2024-11-21 | N/A |
| Various Lexmark products have Incorrect Access Control (issue 2 of 2). | ||||
| CVE-2019-9934 | 1 Lexmark | 50 Cs31x, Cs31x Firmware, Cs41x and 47 more | 2024-11-21 | N/A |
| Various Lexmark products have Incorrect Access Control (issue 1 of 2). | ||||
| CVE-2019-9933 | 1 Lexmark | 142 6500e, 6500e Firmware, C734 and 139 more | 2024-11-21 | N/A |
| Various Lexmark products have a Buffer Overflow (issue 3 of 3). | ||||
| CVE-2019-9932 | 1 Lexmark | 142 6500e, 6500e Firmware, C734 and 139 more | 2024-11-21 | N/A |
| Various Lexmark products have a Buffer Overflow (issue 2 of 3). | ||||
| CVE-2019-9931 | 1 Lexmark | 142 6500e, 6500e Firmware, C734 and 139 more | 2024-11-21 | N/A |
| Various Lexmark printers contain a denial of service vulnerability in the SNMP service that can be exploited to crash the device. | ||||
| CVE-2019-9930 | 1 Lexmark | 142 6500e, 6500e Firmware, C734 and 139 more | 2024-11-21 | N/A |
| Various Lexmark products have an Integer Overflow. | ||||
| CVE-2019-9929 | 1 Northern | 1 Cfengine | 2024-11-21 | N/A |
| Northern.tech CFEngine Enterprise 3.12.1 has Insecure Permissions. | ||||
| CVE-2019-9927 | 1 Caret | 1 Caret | 2024-11-21 | N/A |
| Caret before 2019-02-22 allows Remote Code Execution. | ||||
| CVE-2019-9926 | 1 Labkey | 1 Labkey Server | 2024-11-21 | 8.8 High |
| An issue was discovered in LabKey Server 19.1.0. It is possible to force a logged-in administrator to execute code through a /reports-viewScriptReport.view CSRF vulnerability. | ||||
| CVE-2019-9925 | 1 S-cms | 1 S-cms | 2024-11-21 | N/A |
| S-CMS PHP v1.0 has XSS in 4.edu.php via the S_id parameter. | ||||
| CVE-2019-9924 | 6 Canonical, Debian, Gnu and 3 more | 12 Ubuntu Linux, Debian Linux, Bash and 9 more | 2024-11-21 | 7.8 High |
| rbash in Bash before 4.4-beta2 did not prevent the shell user from modifying BASH_CMDS, thus allowing the user to execute any command with the permissions of the shell. | ||||
| CVE-2019-9922 | 1 Harmistechnology | 1 Je Messenger | 2024-11-21 | 7.5 High |
| An issue was discovered in the Harmis JE Messenger component 1.2.2 for Joomla!. Directory Traversal allows read access to arbitrary files. | ||||
| CVE-2019-9921 | 1 Harmistechnology | 1 Je Messenger | 2024-11-21 | 6.5 Medium |
| An issue was discovered in the Harmis JE Messenger component 1.2.2 for Joomla!. It is possible to read information that should only be accessible by a different user. | ||||
| CVE-2019-9920 | 1 Harmistechnology | 1 Je Messenger | 2024-11-21 | 8.8 High |
| An issue was discovered in the Harmis JE Messenger component 1.2.2 for Joomla!. It is possible to perform an action within the context of the account of another user. | ||||
| CVE-2019-9919 | 1 Harmistechnology | 1 Je Messenger | 2024-11-21 | 5.4 Medium |
| An issue was discovered in the Harmis JE Messenger component 1.2.2 for Joomla!. It is possible to craft messages in a way that JavaScript gets executed on the side of the receiving user when the message is opened, aka XSS. | ||||
| CVE-2019-9918 | 1 Harmistechnology | 1 Je Messenger | 2024-11-21 | 9.1 Critical |
| An issue was discovered in the Harmis JE Messenger component 1.2.2 for Joomla!. Input does not get validated and queries are not written in a way to prevent SQL injection. Therefore arbitrary SQL-Statements can be executed in the database. | ||||
| CVE-2019-9917 | 3 Canonical, Fedoraproject, Znc | 3 Ubuntu Linux, Fedora, Znc | 2024-11-21 | N/A |
| ZNC before 1.7.3-rc1 allows an existing remote user to cause a Denial of Service (crash) via invalid encoding. | ||||
| CVE-2019-9915 | 1 Get-simple. | 1 Getsimplecms | 2024-11-21 | N/A |
| GetSimpleCMS 3.3.13 has an Open Redirect via the admin/index.php redirect parameter. | ||||
| CVE-2019-9914 | 1 Yop-poll | 1 Yop-poll | 2024-11-21 | N/A |
| The yop-poll plugin before 6.0.3 for WordPress has wp-admin/admin.php?page=yop-polls&action=view-votes poll_id XSS. | ||||