13538 matches found
Microsoft Windows Kernel Information Disclosure (CVE-2019-0844)
An information disclosure vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability would allow a remote attacker to obtain sensitive information...
WordPress portable-phpMyAdmin Plugin Authentication Bypass (CVE-2012-5469)
An authentication bypass vulnerability exists in WordPress portable-phpMyAdmin Plugin. Successful exploitation of this vulnerability would allow remote attackers to obtain sensitive information and gain unauthorized access into the affected system...
Google Chrome Type Confusion Multiple Vulnerabilities
A Type Confusion vulnerabilities exist in Google Chrome browser. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
WordPress Anti-Malware Security and Brute-Force Firewall Plugin Local File Inclusion
A file inclusion vulnerability exists in WordPress Anti-Malware Security and Brute-Force Firewall. Successful exploitation of this vulnerability could allow a remote attacker to retrieve contents of secret files on the affected system...
Google Search Closure JavaScript Library Cross-Site Scripting
A cross-site scripting vulnerability exists in Closure JavaScript library in Google search. Successful exploitation of this vulnerability could allow remote attackers to inject arbitrary web script into the affected system...
TP-Link TL-R600VPN remote code execution
A remote code execution exists in TL-R600VPN web server. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Mozilla Firefox IonMonkey JIT Compiler Buffer Overflow (CVE-2019-9810)
A buffer overflow vulnerability exists in Mozilla Firefox IonMonkey JIT Compiler. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system or cause application crashes...
Apache Solr Config API Insecure Deserialization Remote Code Execution (CVE-2019-0192)
An insecure deserialization vulnerability has been reported in Apache Solr. This vulnerability is due to the insufficient validation of requests to the Config API. A remote, unauthenticated attacker can exploit this vulnerability by sending a crafted HTTP request to the Config API...
Microsoft Edge and Internet Explorer Same Origin Policy Bypass
A vulnerability exists in Microsoft Edge and Internet Explorer web browsers that could allow security feature bypass. The vulnerability could allow an attacker to bypass the Same Origin Policy. Successful exploitation of this vulnerability could allow the disclosure of sensitive information...
Apple WebKit Denial of Service (CVE-2017-7092)
A denial of service vulnerability exists in Apple WebKit component. A remote attacker can exploit this vulnerability by executing arbitrary code via a crafted web site...
LAquis SCADA Web Server PAGINA Command Injection (CVE-2018-18992)
A command injection vulnerability exists in SCADA. The vulnerability is due to improper handling of specific PAGINA parameter submitted in requests. Successful exploitation results in the execution of arbitrary commands with the privileges of the web server process...
Drupal Core stream wrapper Insecure Deserialization (CVE-2019-6339)
An insecure deserialization vulnerability exists in Drupal Core. The vulnerability is in a stream wrapper when performing file operations. Successful exploitation of this vulnerability could result in arbitrary code execution under the security context of the web server...
Rockwell Automation PowerFlex 525 AC Drive Denial of Service (CVE-2018-19282)
A denial of service vulnerability exists in Rockwell Automation Rockwell Automation PowerFlex 525 AC Drives. The vulnerability is due to incorrect handling of malformed EtherNet/IP packets. A successful exploitation of the vulnerability could lead to a system crash...
D-Link DIR-645/815 Diagnostic Remote Code Execution
A remote code execution vulnerability exists in D-Link DIR645 and DIR815 diagnostics. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...
XAMPP cds-fpdf.php Multiple Vulnerabilities (CVE-2019-8923; CVE-2019-8924)
SQL injection and Cross-site scripting vulnerabilities exist in XAMPP. Successful exploitation of these vulnerabilities would allow remote attackers to inject SQL commands or arbitrary web script into the affected system...
PHPCMS 2008 type.php Code Injection (CVE-2018-19127)
A code injection vulnerability exists in PHPCMS 2008. An attacker could write arbitrary content to a website cache file with a controllable filename. Successful exploitation of this vulnerability could lead to arbitrary code execution...
Moodle Remote Code Execution (CVE-2018-1133)
A remote code execution vulnerability exists in Moodle server. The vulnerability is due to improper validation of request parameters. A remote attacker can exploit this vulnerability to execute arbitrary code on the vulnerable Moodle server...
LG SuperSign EZ CMS 2.5 Remote Code Execution (CVE-2018-17173)
A remote code execution vulnerability is exist in LG SuperSign EZ CMS. Successful exploitation could result in arbitrary code execution on the target system...
NETGEAR WNR2000v5 Remote Code Execution (CVE-2016-10174)
A remote code execution vulnerability exists in NETGEAR WNR2000v5 routers. Successful exploitation could lead to arbitrary code execution on the vulnerable device...
PHP Thumb Fltr Parameter Command Injection
A command injection vulnerability exists in a PHPThumb phpThumb fltr parameter. A remote, authenticated attacker can exploit this vulnerability by sending crafted requests to phpThumb web page. Successful exploitation will result in arbitrary command execution...
WebKitGTK Denial of Service (CVE-2019-8375)
A denial of service vulnerability exists in WebKitGTK. Successful attack can result in a denial of service condition...
WordPress Easy WP SMTP Plugin Arbitrary Option Update
An arbitrary file option update exists in WordPress Easy WP SMTP Plugin. Successful exploitation can lead to modification of any options of an affected site...
WordPress Fastest Cache Plugin Arbitrary File Deletion (CVE-2019-6726)
An arbitrary file deletion vulnerability exists in WordPress Fastest Cache Plugin. A remote, unauthenticated attacker can exploit this vulnerability by sending a crafted request to the target system...
Rockwell Automation MicroLogix 1100 Denial of Service (CVE-2017-7924)
A denial of service vulnerability exists in Rockwell MicroLogix 1100 controllers. An unauthenticated, remote attacker could exploit this vulnerability by sending a specially crafted CIP packet to an affected device, causing a system crash...
Google Chrome FileReader API Use After Free (CVE-2019-5786)
A use after free vulnerability exists in Google Chrome FileReader API. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Microsoft SharePoint Remote Code Execution (CVE-2019-0604)
A remote code execution vulnerability exists in Microsoft SharePoint. A remote attacker can exploit this vulnerability to execute arbitrary code via a specially crafted package on the vulnerable server...
Python Project urllib CRLF Injection (CVE-2019-9740)
A CRLF injection vulnerability exists in Python Project urllib library. Successful exploitation could allow attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks...
Microsoft Windows DHCP Server Code Execution (CVE-2019-0626)
A code execution vulnerability exists in Microsoft DHCP Server. The vulnerability is due to improper processing of DHCP messages, causing memory corruption. Successful exploitation of this vulnerability could allow the attacker to execute arbitrary code with the privileges of network service...
Apache UNO Remote Code Execution
A remote code execution vulnerability exists in Apache UNO server. Successful exploitation of this vulnerability could lead to arbitrary code execution on the target machine...
Apache Flex AMF BlazeDS Java Object Deserialization Remote Code Execution (CVE-2017-5641)
A remote code execution vulnerability exists in Apache Flex BlazeDS. This vulnerability is due to deserialization of untrusted data. A remote unauthenticated attacker may exploit this vulnerability by sending a crafted file to the target system...
StackStorm Web UI Remote Code Execution (CVE-2019-9580)
A remote code execution vulnerability exists in StackStorm Web UI. Successful exploitation could lead to arbitrary code execution...
Telerik Web UI Information Disclosure (CVE-2017-9248)
A security bypass vulnerability exists in Telerik Web UI. Successful exploitation of this vulnerability can lead to cross-site scripting, arbitrary file uploads and downloads, leak of MachineKey and compromise of the ASP.NET ViewState on the affected system...
PHP DIESCAN information disclosure
An information disclosure vulnerability has been reported in the PHP pages. Successful exploitation could lead to the disclosure of sensitive information from the server...
Apache CouchDB Cross-Site Scripting
An XSS vulnerability exists in Apache CouchDB server. Successful exploitation of this vulnerability would allow remote attackers to inject arbitrary web script into the affected system...
Microsoft Edge Scripting Engine Memory Corruption (CVE-2019-0771)
A memory corruption vulnerability exists in Microsoft Edge. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Microsoft Browser Scripting Engine Memory Corruption (CVE-2019-0609)
A memory corruption vulnerability exists in Microsoft Browser. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Microsoft Internet Explorer Scripting Engine Memory Corruption (CVE-2019-0680)
A memory corruption vulnerability exists in Microsoft Internet Explorer. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Microsoft Edge Scripting Engine Memory Corruption (CVE-2019-0773)
A memory corruption vulnerability exists in Microsoft Edge. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Microsoft Internet Explorer Security Feature Bypass (CVE-2019-0768)
A security bypass vulnerability exists in Microsoft Internet Explorer. Successful exploitation of this vulnerability would allow remote attackers to bypass security tests and protocols on the affected system...
Webmin cgi Upload Remote Code Execution (CVE-2019-9624)
A remote code execution vulnerability exists in Webmin. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Microsoft Windows Kernel Information Disclosure (CVE-2019-0767)
An information disclosure vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability would allow a remote attacker to obtain sensitive information...
Microsoft Edge Chakra Scripting Engine Memory Corruption (CVE-2019-0592)
A memory corruption vulnerability exists in Microsoft Edge. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Microsoft Edge Scripting Engine Memory Corruption (CVE-2019-0639)
A memory corruption vulnerability exists in Microsoft Edge. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Microsoft Internet Explorer Scripting Engine Memory Corruption (CVE-2019-0665)
A memory corruption vulnerability exists in Microsoft Internet Explorer. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Microsoft Win32k Elevation of Privilege (CVE-2019-0797)
An elevation of privilege vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Microsoft Edge Security Feature Bypass (CVE-2019-0612)
A security bypass vulnerability exists in Microsoft Edge. Successful exploitation of this vulnerability would allow remote attackers to bypass security tests and protocols on the affected system...
Microsoft Windows Kernel Information Disclosure (CVE-2019-0755)
An information disclosure vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability would allow a remote attacker to obtain sensitive information...
Microsoft Win32k Elevation of Privilege (CVE-2019-0808)
An elevation of privilege vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Microsoft Windows Kernel Information Disclosure (CVE-2019-0775)
An information disclosure vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability would allow a remote attacker to obtain sensitive information...
Microsoft Internet Explorer Scripting Engine Memory Corruption (CVE-2019-0667)
A memory corruption vulnerability exists in Microsoft Internet Explorer. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...