CVE-2019-19515

Ayision Ays-WR01 v28K.RPT.20161224 devices allow stored XSS in wireless settings...

CVE-2018-19515

In Webgalamb through 7.0, system/ajax.php functionality is supposed to be available only to the administrator. However, by using one of the bgsend, atmentsddd1xGz, or xlsbgimport query parameters, most of these methods become available to unauthenticated users...

Denial of Service Vulnerability in Multiple Apple Products (CNVD-2025-19515)

Apple macOS Sequoia is an operating system from Apple Inc.Apple iOS is an operating system developed for mobile devices.Apple iPadOS is an operating system for the iPad tablet computer from Apple Inc. A denial of service vulnerability exists in several Apple products, which can be exploited by...

CVE-2020-19515

creationtimestamp| type| source ---|---|--- 2021-09-09 18:29:38+00:00| seen| https://t.me/cibsecurity/28595...

CVE-2020-19515

qdPM 9.1 is vulnerable to Cross-Site Scripting via qdPM\install\modules\database_config.php. The root cause is insufficient validation of user-supplied data in that configuration file, enabling injection of malicious scripts into pages viewed by users. Impact could include data theft, session hij...

CVE-2019-19515

creationtimestamp| type| source ---|---|--- 2020-05-05 20:59:12+00:00| seen| https://t.me/cibsecurity/11842...

CVE-2019-19515

CVE-2019-19515 concerns Ayision Ays-WR01 devices with the v28K.RPT.20161224 release, where a stored cross-site scripting (XSS) vulnerability exists in wireless settings. Connected sources describe the underlying issue as operations on memory without proper data validation, leading to improper rea...