Newest CVEs

Page 1 of 2544 127163 total

IDDescriptionSeverity
CVE-2019-15150In the OAuth2 Client extension before 0.4 for MediaWiki, a CSRF vulnerability exists due to the OAuth2 state parameter not being checked in the callback function.No Score
CVE-2018-20976An issue was discovered in fs/xfs/xfs_super.c in the Linux kernel before 4.18. A use after free exists, related to xfs_fs_fill_super failure.No Score
CVE-2017-18552An issue was discovered in net/rds/af_rds.c in the Linux kernel before 4.11. There is an out of bounds write and read in the function rds_recv_track_latency.No Score
CVE-2017-18551An issue was discovered in drivers/i2c/i2c-core-smbus.c in the Linux kernel before 4.14.15. There is an out of bounds write in the function i2c_smbus_xfer_emulated.No Score
CVE-2017-18550An issue was discovered in drivers/scsi/aacraid/commctrl.c in the Linux kernel before 4.13. There is potential exposure of kernel stack memory because aac_get_hba_info does not initialize the hbainfo structure.No Score
CVE-2017-18549An issue was discovered in drivers/scsi/aacraid/commctrl.c in the Linux kernel before 4.13. There is potential exposure of kernel stack memory because aac_send_raw_srb does not initialize the reply structure.No Score
CVE-2016-10907An issue was discovered in drivers/iio/dac/ad5755.c in the Linux kernel before 4.8.6. There is an out of bounds write in the function ad5755_parse_dt.No Score
CVE-2016-10906An issue was discovered in drivers/net/ethernet/arc/emac_main.c in the Linux kernel before 4.5. A use-after-free is caused by a race condition between the functions arc_emac_tx and arc_emac_tx_clean.No Score
CVE-2016-10905An issue was discovered in fs/gfs2/rgrp.c in the Linux kernel before 4.8. A use-after-free is caused by the functions gfs2_clear_rgrpd and read_rindex_entry.No Score
CVE-2019-15151AdPlug 2.3.1 has a double free in the Cu6mPlayer class in u6m.h.No Score
CVE-2019-15149core.py in Mitogen before 0.2.8 has a typo that drops the unidirectional-routing protection mechanism in the case of a child that is initiated by another child. The Ansible extension is unaffected.No Score
CVE-2019-15148GoPro GPMF-parser 1.2.2 has an out-of-bounds write in OpenMP4Source in demo/GPMF_mp4reader.c.No Score
CVE-2019-15147GoPro GPMF-parser 1.2.2 has an out-of-bounds read and SEGV in GPMF_Next in GPMF_parser.c.No Score
CVE-2019-15146GoPro GPMF-parser 1.2.2 has a heap-based buffer over-read (4 bytes) in GPMF_Next in GPMF_parser.c.No Score
CVE-2019-15145DjVuLibre 3.5.27 allows attackers to cause a denial-of-service attack (application crash via an out-of-bounds read) by crafting a corrupted JB2 image file that is mishandled in JB2Dict::JB2Codec::get_direct_context in libdjvu/JB2Image.h because of a missing zero-bytes check in libdjvu/GBitmap.h.No Score
CVE-2019-15144In DjVuLibre 3.5.27, the sorting functionality (aka GArrayTemplate<TYPE>::sort) allows attackers to cause a denial-of-service (application crash due to an Uncontrolled Recursion) by crafting a PBM image file that is mishandled in libdjvu/GContainer.h.No Score
CVE-2019-15143In DjVuLibre 3.5.27, the bitmap reader component allows attackers to cause a denial-of-service error (resource exhaustion caused by a GBitmap::read_rle_raw infinite loop) by crafting a corrupted image file, related to libdjvu/DjVmDir.cpp and libdjvu/GBitmap.cpp.No Score
CVE-2019-15142In DjVuLibre 3.5.27, DjVmDir.cpp in the DJVU reader component allows attackers to cause a denial-of-service (application crash in GStringRep::strdup in libdjvu/GString.cpp caused by a heap-based buffer over-read) by crafting a DJVU file.No Score
CVE-2019-15141WriteTIFFImage in coders/tiff.c in ImageMagick 7.0.8-43 Q16 allows attackers to cause a denial-of-service (application crash resulting from a heap-based buffer over-read) via a crafted TIFF image file, related to TIFFRewriteDirectory, TIFFWriteDirectory, TIFFWriteDirectorySec, and TIFFWriteDirectoryTagColormap in tif_dirwrite.c of LibTIFF. NOTE: this occurs because of an incomplete fix for CVE-2019-11597.No Score
CVE-2019-15140coders/mat.c in ImageMagick 7.0.8-43 Q16 allows remote attackers to cause a denial of service (use-after-free and application crash) or possibly have unspecified other impact by crafting a Matlab image file that is mishandled in ReadImage in MagickCore/constitute.c.No Score
CVE-2019-15139The XWD image (X Window System window dumping file) parsing component in ImageMagick 7.0.8-41 Q16 allows attackers to cause a denial-of-service (application crash resulting from an out-of-bounds Read) in ReadXWDImage in coders/xwd.c by crafting a corrupted XWD image file, a different vulnerability than CVE-2019-11472.No Score
CVE-2019-15130The Recruitment module in Humanica Humatrix 7 1.0.0.203 and 1.0.0.681 allows an unauthenticated attacker to upload any file type to a candidate's profile picture folder via a crafted recruitment_online/personalData/act_personaltab.cfm multiple-part POST request with a predictable WRC01_USERID parameter. Moreover, the attacker can upload executable content (e.g., asp or aspx) for executing OS commands on the server.No Score
CVE-2019-15129The Recruitment module in Humanica Humatrix 7 1.0.0.203 and 1.0.0.681 allows an unauthenticated attacker to access all candidates' files in the photo folder on the website by specifying a "user id" parameter and file name, such as in a recruitment_online/upload/user/[user_id]/photo/[file_name] URI.No Score
CVE-2019-15137The Access Control plugin in eProsima Fast RTPS through 1.9.0 allows fnmatch pattern matches with topic name strings (instead of the permission expressions themselves), which can lead to unintended connections between participants in a Data Distribution Service (DDS) network.No Score
CVE-2019-15136The Access Control plugin in eProsima Fast RTPS through 1.9.0 does not check partition permissions from remote participant connections, which can lead to policy bypass for a secure Data Distribution Service (DDS) partition.No Score
CVE-2019-15135The handshake protocol in Object Management Group (OMG) DDS Security 1.1 sends cleartext information about all of the capabilities of a participant (including capabilities inapplicable to the current session), which makes it easier for attackers to discover potentially sensitive reachability information on a Data Distribution Service (DDS) network.No Score
CVE-2019-15134RIOT through 2019.07 contains a memory leak in the TCP implementation (gnrc_tcp), allowing an attacker to consume all memory available for network packets and thus effectively stopping all network threads from working. This is related to _receive in sys/net/gnrc/transport_layer/tcp/gnrc_tcp_eventloop.c upon receiving an ACK before a SYN.No Score
CVE-2019-15133In GIFLIB before 2019-02-16, a malformed GIF file triggers a divide-by-zero exception in the decoder function DGifSlurp in dgif_lib.c if the height field of the ImageSize data structure is equal to zero.No Score
CVE-2019-15132Zabbix through 4.4.0alpha1 allows User Enumeration. With login requests, it is possible to enumerate application usernames based on the variability of server responses (e.g., the "Login name or password is incorrect" and "No permissions for system access" messages, or just blocking for a number of seconds). This affects both api_jsonrpc.php and index.php.No Score
CVE-2019-14937REDCap before 9.3.0 allows time-based SQL injection in the edit calendar event via the cal_id parameter, such as cal_id=55 and sleep(3) to Calendar/calendar_popup_ajax.php. The attacker can obtain a user's login sessionid from the database, and then re-login into REDCap to compromise all data.No Score
CVE-2019-13069extenua SilverSHielD 6.x fails to secure its ProgramData folder, leading to a Local Privilege Escalation to SYSTEM. The attacker must replace SilverShield.config.sqlite with a version containing an additional user account, and then use SSH and port forwarding to reach a 127.0.0.1 service.No Score
CVE-2019-15116The easy-digital-downloads plugin before 2.9.16 for WordPress has XSS related to IP address logging.No Score
CVE-2019-15115The peters-login-redirect plugin before 2.9.2 for WordPress has CSRF.No Score
CVE-2019-15114The formcraft-form-builder plugin before 1.2.2 for WordPress has CSRF.No Score
CVE-2019-15113The companion-sitemap-generator plugin before 3.7.0 for WordPress has CSRF.No Score
CVE-2018-20974The js-jobs plugin before 1.0.7 for WordPress has CSRF.No Score
CVE-2018-20973The companion-auto-update plugin before 3.2.1 for WordPress has local file inclusion.No Score
CVE-2018-20972The companion-auto-update plugin before 3.2.1 for WordPress has CSRF.No Score
CVE-2018-20971The church-admin plugin before 1.2550 for WordPress has CSRF affecting the upload of a bible reading plan.No Score
CVE-2017-18547The nelio-ab-testing plugin before 4.6.4 for WordPress has CSRF in experiment forms.No Score
CVE-2017-18546The jayj-quicktag plugin before 1.3.2 for WordPress has CSRF.No Score
CVE-2017-18545The invite-anyone plugin before 1.3.16 for WordPress has incorrect escaping of untrusted Dashboard and front-end input.No Score
CVE-2017-18544The invite-anyone plugin before 1.3.16 for WordPress has admin-panel CSRF.No Score
CVE-2017-18543The invite-anyone plugin before 1.3.16 for WordPress has incorrect access control for email-based invitations.No Score
CVE-2017-18542The zendesk-help-center plugin before 1.0.5 for WordPress has multiple XSS issues.No Score
CVE-2017-18541The xo-security plugin before 1.5.3 for WordPress has XSS.No Score
CVE-2015-9324The easy-digital-downloads plugin before 2.3.3 for WordPress has SQL injection.No Score
CVE-2015-9323The 404-to-301 plugin before 2.0.3 for WordPress has SQL injection.No Score
CVE-2015-9322The erident-custom-login-and-dashboard plugin before 3.5 for WordPress has CSRF.No Score
CVE-2014-10376The i-recommend-this plugin before 3.7.3 for WordPress has SQL injection.No Score

Page 1 of 2544 127163 total