|
220891
|
7.5 |
HIGH
Network
|
adobe
|
campaign
|
Adobe Campaign Classic version 18.10.5-8984 and earlier versions have an Improper error handling vulnerability. Successful exploitation could lead to Information Disclosure in the context of the curr…
|
CWE-755
Improper Handling of Exceptional Conditions
|
CVE-2019-7846
|
2024-11-21 13:48 |
2019-07-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
220892
|
7.5 |
HIGH
Network
|
adobe
|
campaign
|
Adobe Campaign Classic version 18.10.5-8984 and earlier versions have an Insufficient input validation vulnerability. Successful exploitation could lead to Information Disclosure in the context of th…
|
CWE-20
Improper Input Validation
|
CVE-2019-7843
|
2024-11-21 13:48 |
2019-07-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
220893
|
7.2 |
HIGH
Network
|
primasystems
|
flexair
|
Prima Systems FlexAir, Versions 2.3.38 and prior. The application incorrectly neutralizes special elements that could modify the intended OS command when it is sent to a downstream component, which c…
|
CWE-78
OS Command
|
CVE-2019-7670
|
2024-11-21 13:48 |
2019-07-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
220894
|
8.8 |
HIGH
Network
|
primasystems
|
flexair
|
Prima Systems FlexAir, Versions 2.3.38 and prior. Improper validation of file extensions when uploading files could allow a remote authenticated attacker to upload and execute malicious applications …
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2019-7669
|
2024-11-21 13:48 |
2019-07-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
220895
|
9.8 |
CRITICAL
Network
|
primasystems
|
flexair
|
Prima Systems FlexAir devices have Default Credentials.
|
CWE-1188
Insecure Default Initialization of Resource
|
CVE-2019-7668
|
2024-11-21 13:48 |
2019-07-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
220896
|
9.8 |
CRITICAL
Network
|
primasystems
|
flexair
|
Prima Systems FlexAir, Versions 2.3.38 and prior. The application generates database backup files with a predictable name, and an attacker can use brute force to identify the database backup file nam…
|
CWE-330
Use of Insufficiently Random Values
|
CVE-2019-7667
|
2024-11-21 13:48 |
2019-07-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
220897
|
8.8 |
HIGH
Network
|
primasystems
|
flexair
|
Prima Systems FlexAir, Versions 2.3.38 and prior. The application allows improper authentication using the MD5 hash value of the password, which may allow an attacker with access to the database to l…
|
CWE-287
Improper Authentication
|
CVE-2019-7666
|
2024-11-21 13:48 |
2019-07-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
220898
|
7.0 |
HIGH
Local
|
exacq
|
enterprise_system_manager
|
A vulnerability in the exacqVision Enterprise System Manager (ESM) v5.12.2 application whereby unauthorized privilege escalation can potentially be achieved. This vulnerability impacts exacqVision ES…
|
CWE-276
Incorrect Default Permissions
|
CVE-2019-7588
|
2024-11-21 13:48 |
2019-06-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
220899
|
7.5 |
HIGH
Network
|
linksys
|
wrt1900acs_firmware
|
An issue was discovered on Linksys WRT1900ACS 1.0.3.187766 devices. An ability exists for an unauthenticated user to browse a confidential ui/1.0.99.187766/dynamic/js/setup.js.localized file on the r…
|
CWE-287
Improper Authentication
|
CVE-2019-7579
|
2024-11-21 13:48 |
2019-06-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
220900
|
9.8 |
CRITICAL
Network
|
artifex
|
mupdf
|
Usage of an uninitialized variable in the function fz_load_jpeg in Artifex MuPDF 1.14 can result in a heap overflow vulnerability that allows an attacker to execute arbitrary code.
|
CWE-787
CWE-908
Out-of-bounds Write
Use of Uninitialized Resource
|
CVE-2019-7321
|
2024-11-21 13:48 |
2019-06-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
