|
213161
|
7.5 |
HIGH
Network
|
uvnc
siemens
|
ultravnc
sinumerik_pcu_base_win7_software\/ipc
sinumerik_pcu_base_win10_software\/ipc
sinumerik_access_mymachine\/p2p
|
UltraVNC revision 1206 has stack-based Buffer overflow vulnerability in VNC client code inside FileTransfer module, which leads to a denial of service (DoS) condition. This attack appear to be exploi…
|
CWE-787
Out-of-bounds Write
|
CVE-2019-8269
|
2024-11-21 13:49 |
2019-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
213162
|
9.8 |
CRITICAL
Network
|
uvnc
siemens
|
ultravnc
sinumerik_pcu_base_win7_software\/ipc
sinumerik_pcu_base_win10_software\/ipc
sinumerik_access_mymachine\/p2p
|
UltraVNC revision 1206 has multiple off-by-one vulnerabilities in VNC client code connected with improper usage of ClientConnection::ReadString function, which can potentially result code execution. …
|
CWE-193
Off-by-one Error
|
CVE-2019-8268
|
2024-11-21 13:49 |
2019-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
213163
|
7.5 |
HIGH
Network
|
uvnc
|
ultravnc
|
UltraVNC revision 1207 has out-of-bounds read vulnerability in VNC client code inside TextChat module, which results in a denial of service (DoS) condition. This attack appears to be exploitable via …
|
CWE-125
Out-of-bounds Read
|
CVE-2019-8267
|
2024-11-21 13:49 |
2019-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
213164
|
9.8 |
CRITICAL
Network
|
uvnc
|
ultravnc
|
UltraVNC revision 1207 has multiple out-of-bounds access vulnerabilities connected with improper usage of ClientConnection::Copybuffer function in VNC client code, which can potentially result in cod…
|
CWE-125
CWE-787
Out-of-bounds Read
Out-of-bounds Write
|
CVE-2019-8266
|
2024-11-21 13:49 |
2019-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
213165
|
9.8 |
CRITICAL
Network
|
uvnc
|
ultravnc
|
UltraVNC revision 1207 has multiple out-of-bounds access vulnerabilities connected with improper usage of SETPIXELS macro in VNC client code, which can potentially result in code execution. This atta…
|
CWE-125
CWE-787
Out-of-bounds Read
Out-of-bounds Write
|
CVE-2019-8265
|
2024-11-21 13:49 |
2019-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
213166
|
9.8 |
CRITICAL
Network
|
uvnc
|
ultravnc
|
UltraVNC revision 1203 has out-of-bounds access vulnerability in VNC client inside Ultra2 decoder, which can potentially result in code execution. This attack appears to be exploitable via network co…
|
CWE-125
CWE-787
Out-of-bounds Read
Out-of-bounds Write
|
CVE-2019-8264
|
2024-11-21 13:49 |
2019-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
213167
|
4.8 |
MEDIUM
Network
|
dilicms
|
dilicms
|
An issue was discovered in DiliCMS 2.4.0. There is a Stored XSS Vulnerability in the third textbox (aka site logo) of "System setting->site setting" of admin/index.php, aka site_logo.
|
CWE-79
Cross-site Scripting
|
CVE-2019-8440
|
2024-11-21 13:49 |
2019-03-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
213168
|
5.4 |
MEDIUM
Network
|
dilicms
|
dilicms
|
An issue was discovered in DiliCMS 2.4.0. There is a Stored XSS Vulnerability in the second textbox of "System setting->site setting" of admin/index.php, aka site_domain.
|
CWE-79
Cross-site Scripting
|
CVE-2019-8439
|
2024-11-21 13:49 |
2019-03-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
213169
|
4.8 |
MEDIUM
Network
|
dilicms
|
dilicms
|
An issue was discovered in DiliCMS 2.4.0. There is a Stored XSS Vulnerability in the first textbox of "System setting->site setting" of admin/index.php, aka site_name.
|
CWE-79
Cross-site Scripting
|
CVE-2019-8438
|
2024-11-21 13:49 |
2019-03-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
213170
|
8.8 |
HIGH
Network
|
njiandan-cms_project
|
njiandan-cms
|
njiandan-cms through 2013-05-23 has index.php/admin/user_new CSRF to add an administrator.
|
CWE-352
Origin Validation Error
|
CVE-2019-8437
|
2024-11-21 13:49 |
2019-03-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
