|
219481
|
7.8 |
HIGH
Local
|
shadowsocks
opensuse
|
shadowsocks-libev
leap
backports_sle
|
An exploitable code execution vulnerability exists in the ss-manager binary of Shadowsocks-libev 3.3.2. Specially crafted network packets sent to ss-manager can cause an arbitrary binary to run, resu…
|
CWE-306
Missing Authentication for Critical Function
|
CVE-2019-5164
|
2024-11-21 13:44 |
2019-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
219482
|
7.5 |
HIGH
Network
|
shadowsocks
opensuse
|
shadowsocks-libev
leap
backports
|
An exploitable denial-of-service vulnerability exists in the UDPRelay functionality of Shadowsocks-libev 3.3.2. When utilizing a Stream Cipher and a local_address, arbitrary UDP packets can cause a F…
|
CWE-306
Missing Authentication for Critical Function
|
CVE-2019-5163
|
2024-11-21 13:44 |
2019-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
219483
|
8.8 |
HIGH
Network
|
accusoft
|
imagegear
|
An exploitable out-of-bounds write vulnerability exists in the igcore19d.dll BMP parser of the ImageGear 19.3.0 library. A specially crafted BMP file can cause an out-of-bounds write, resulting in a …
|
CWE-787
Out-of-bounds Write
|
CVE-2019-5133
|
2024-11-21 13:44 |
2019-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
219484
|
8.8 |
HIGH
Network
|
accusoft
|
imagegear
|
An exploitable out-of-bounds write vulnerability exists in the igcore19d.dll GEM Raster parser of the Accusoft ImageGear 19.3.0 library. A specially crafted GEM file can cause an out-of-bounds write,…
|
CWE-787
Out-of-bounds Write
|
CVE-2019-5132
|
2024-11-21 13:44 |
2019-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
219485
|
8.8 |
HIGH
Network
|
formalms
|
formalms
|
Exploitable SQL injection vulnerability exists in the authenticated portion of Forma LMS 2.2.1. The /appLms/ajax.server.php URL and parameter filter_status was confirmed to suffer from SQL injections…
|
CWE-89
SQL Injection
|
CVE-2019-5112
|
2024-11-21 13:44 |
2019-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
219486
|
8.8 |
HIGH
Network
|
formalms
|
formalms
|
Exploitable SQL injection vulnerability exists in the authenticated portion of Forma LMS 2.2.1. The /appLms/ajax.server.php URL and parameter filter_cat was confirmed to suffer from SQL injections an…
|
CWE-89
SQL Injection
|
CVE-2019-5111
|
2024-11-21 13:44 |
2019-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
219487
|
8.8 |
HIGH
Network
|
formalms
|
formalms
|
Exploitable SQL injection vulnerabilities exist in the authenticated portion of Forma LMS 2.2.1. Specially crafted web requests can cause SQL injections. An attacker can send a web request with param…
|
CWE-89
SQL Injection
|
CVE-2019-5110
|
2024-11-21 13:44 |
2019-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
219488
|
8.8 |
HIGH
Network
|
formalms
|
formalms
|
Exploitable SQL injection vulnerabilities exists in the authenticated portion of Forma LMS 2.2.1. Specially crafted web requests can cause SQL injections. An attacker can send a web request with para…
|
CWE-89
SQL Injection
|
CVE-2019-5109
|
2024-11-21 13:44 |
2019-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
219489
|
7.5 |
HIGH
Network
|
embedthis
|
goahead
|
A denial-of-service vulnerability exists in the processing of multi-part/form-data requests in the base GoAhead web server application in versions v5.0.1, v.4.1.1 and v3.6.5. A specially crafted HTTP…
|
CWE-835
Loop with Unreachable Exit Condition ('Infinite Loop')
|
CVE-2019-5097
|
2024-11-21 13:44 |
2019-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
219490
|
8.8 |
HIGH
Network
|
accusoft
|
imagegear
|
An exploitable out-of-bounds write vulnerability exists in the igcore19d.dll TIFdecodethunderscan function of Accusoft ImageGear 19.3.0 library. A specially crafted TIFF file can cause an out of boun…
|
CWE-787
Out-of-bounds Write
|
CVE-2019-5083
|
2024-11-21 13:44 |
2019-12-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
