Export limit exceeded: 362462 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Export limit exceeded: 362462 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (362462 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2019-16716 | 1 Open-xchange | 1 Open-xchange Appsuite | 2024-11-21 | 6.6 Medium |
| OX App Suite through 7.10.2 has Incorrect Access Control. | ||||
| CVE-2019-16714 | 3 Canonical, F5, Linux | 3 Ubuntu Linux, Traffix Signaling Delivery Controller, Linux Kernel | 2024-11-21 | 7.5 High |
| In the Linux kernel before 5.2.14, rds6_inc_info_copy in net/rds/recv.c allows attackers to obtain sensitive information from kernel stack memory because tos and flags fields are not initialized. | ||||
| CVE-2019-16713 | 5 Canonical, Debian, Imagemagick and 2 more | 5 Ubuntu Linux, Debian Linux, Imagemagick and 2 more | 2024-11-21 | 6.5 Medium |
| ImageMagick 7.0.8-43 has a memory leak in coders/dot.c, as demonstrated by PingImage in MagickCore/constitute.c. | ||||
| CVE-2019-16712 | 3 Imagemagick, Opensuse, Redhat | 3 Imagemagick, Leap, Enterprise Linux | 2024-11-21 | 6.5 Medium |
| ImageMagick 7.0.8-43 has a memory leak in Huffman2DEncodeImage in coders/ps3.c, as demonstrated by WritePS3Image. | ||||
| CVE-2019-16711 | 5 Canonical, Debian, Imagemagick and 2 more | 5 Ubuntu Linux, Debian Linux, Imagemagick and 2 more | 2024-11-21 | 6.5 Medium |
| ImageMagick 7.0.8-40 has a memory leak in Huffman2DEncodeImage in coders/ps2.c. | ||||
| CVE-2019-16710 | 5 Canonical, Debian, Imagemagick and 2 more | 5 Ubuntu Linux, Debian Linux, Imagemagick and 2 more | 2024-11-21 | 6.5 Medium |
| ImageMagick 7.0.8-35 has a memory leak in coders/dot.c, as demonstrated by AcquireMagickMemory in MagickCore/memory.c. | ||||
| CVE-2019-16709 | 4 Canonical, Imagemagick, Opensuse and 1 more | 5 Ubuntu Linux, Imagemagick, Backports and 2 more | 2024-11-21 | 6.5 Medium |
| ImageMagick 7.0.8-35 has a memory leak in coders/dps.c, as demonstrated by XCreateImage. | ||||
| CVE-2019-16708 | 5 Canonical, Debian, Imagemagick and 2 more | 5 Ubuntu Linux, Debian Linux, Imagemagick and 2 more | 2024-11-21 | 6.5 Medium |
| ImageMagick 7.0.8-35 has a memory leak in magick/xwindow.c, related to XCreateImage. | ||||
| CVE-2019-16707 | 3 Fedoraproject, Hunspell Project, Redhat | 3 Fedora, Hunspell, Enterprise Linux | 2024-11-21 | 6.5 Medium |
| Hunspell 1.7.0 has an invalid read operation in SuggestMgr::leftcommonsubstring in suggestmgr.cxx. | ||||
| CVE-2019-16706 | 1 Kkcms Project | 1 Kkcms | 2024-11-21 | 8.8 High |
| kkcms v1.3 has a CSRF vulnerablity that can add an user account via admin/cms_user_add.php. | ||||
| CVE-2019-16705 | 1 Libming | 1 Libming | 2024-11-21 | 9.1 Critical |
| Ming (aka libming) 0.4.8 has an out of bounds read vulnerability in the function OpCode() in the decompile.c file in libutil.a. | ||||
| CVE-2019-16704 | 1 Phpmywind | 1 Phpmywind | 2024-11-21 | 4.8 Medium |
| admin/infoclass_update.php in PHPMyWind 5.6 has stored XSS. | ||||
| CVE-2019-16703 | 1 Phpmywind | 1 Phpmywind | 2024-11-21 | 6.1 Medium |
| admin/infolist_add.php in PHPMyWind 5.6 has stored XSS. | ||||
| CVE-2019-16702 | 1 Integard Pro Project | 1 Integard Pro | 2024-11-21 | 9.8 Critical |
| Integard Pro 2.2.0.9026 allows remote attackers to execute arbitrary code via a buffer overflow involving a long NoJs parameter to the /LoginAdmin URI. | ||||
| CVE-2019-16701 | 1 Netgate | 1 Pfsense | 2024-11-21 | 8.8 High |
| pfSense through 2.3.4 through 2.4.4-p3 allows Remote Code Injection via a methodCall XML document with a pfsense.exec_php call containing shell metacharacters in a parameter value. | ||||
| CVE-2019-16700 | 1 Slub-dresden | 1 Slub Events | 2024-11-21 | 9.8 Critical |
| The slub_events (aka SLUB: Event Registration) extension through 3.0.2 for TYPO3 allows uploading of arbitrary files to the webserver. For versions 1.2.2 and below, this results in Remote Code Execution. In versions later than 1.2.2, this can result in Denial of Service, since the web space can be filled up with arbitrary files. | ||||
| CVE-2019-16699 | 1 Sr Freecap Project | 1 Sr Freecap | 2024-11-21 | 9.8 Critical |
| The sr_freecap (aka freeCap CAPTCHA) extension 2.4.5 and below and 2.5.2 and below for TYPO3 fails to sanitize user input, which allows execution of arbitrary Extbase actions, resulting in Remote Code Execution. | ||||
| CVE-2019-16698 | 1 Dkd | 1 Direct Mail | 2024-11-21 | 4.3 Medium |
| The direct_mail (aka Direct Mail) extension through 5.2.2 for TYPO3 has a missing access check in the backend module, allowing a user (with restricted permissions to the fe_users table) to view and export data of frontend users who are subscribed to a newsletter. | ||||
| CVE-2019-16696 | 1 Phpipam | 1 Phpipam | 2024-11-21 | 9.8 Critical |
| phpIPAM 1.4 allows SQL injection via the app/admin/custom-fields/edit.php table parameter when action=add is used. | ||||
| CVE-2019-16695 | 1 Phpipam | 1 Phpipam | 2024-11-21 | 9.8 Critical |
| phpIPAM 1.4 allows SQL injection via the app/admin/custom-fields/filter.php table parameter when action=add is used. | ||||