|
222931
|
4.8 |
MEDIUM
Network
|
ougc_awards_project
|
ougc_awards
|
The OUGC Awards plugin before 1.8.19 for MyBB allows XSS via a crafted award reason that is mishandled on the awards page or in a user profile.
|
CWE-79
Cross-site Scripting
|
CVE-2019-3501
|
2024-11-21 13:42 |
2019-01-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222932
|
7.8 |
HIGH
Local
|
aria2_project
debian
fedoraproject
canonical
|
aria2
debian_linux
fedora
ubuntu_linux
|
aria2c in aria2 1.33.1, when --log is used, can store an HTTP Basic Authentication username and password in a file, which might allow local users to obtain sensitive information by reading this file.
|
CWE-532
Inclusion of Sensitive Information in Log Files
|
CVE-2019-3500
|
2024-11-21 13:42 |
2019-01-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222933
|
7.5 |
HIGH
Network
|
simply-blog_project
|
simply-blog
|
Simply-Blog through 2019-01-01 has SQL Injection via the admin/deleteCategories.php delete parameter.
|
CWE-89
SQL Injection
|
CVE-2019-3494
|
2024-11-21 13:42 |
2019-01-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222934
|
8.8 |
HIGH
Network
|
oracle
|
retail_store_inventory_management
|
Vulnerability in the Oracle Retail Store Inventory Management product of Oracle Retail Applications (component: Security). The supported version that is affected is 16.0. Easily exploitable vulnerabi…
|
NVD-CWE-noinfo
|
CVE-2019-2880
|
2024-11-21 13:41 |
2020-04-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222935
|
4.7 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In a Linux KVM guest that has PV TLB enabled, a process in the guest kernel may be able to read memory locations from another process in the same guest. This problem is limit to the host running linu…
|
CWE-362
Race Condition
|
CVE-2019-3016
|
2024-11-21 13:41 |
2020-02-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222936
|
8.2 |
HIGH
Local
|
oracle
|
vm_virtualbox
|
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are Prior to 5.2.34 and prior to 6.0.14. Easily exploitable vulnerab…
|
NVD-CWE-noinfo
|
CVE-2019-3017
|
2024-11-21 13:41 |
2019-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222937
|
4.3 |
MEDIUM
Network
|
oracle
|
peoplesoft_enterprise_peopletools
|
Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft (component: Integration Broker). Supported versions that are affected are 8.56 and 8.57. Easily exploitable vulnera…
|
NVD-CWE-noinfo
|
CVE-2019-3015
|
2024-11-21 13:41 |
2019-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222938
|
6.1 |
MEDIUM
Network
|
oracle
|
peoplesoft_enterprise_peopletools
|
Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft (component: Performance Monitor). Supported versions that are affected are 8.56 and 8.57. Easily exploitable vulner…
|
NVD-CWE-noinfo
|
CVE-2019-3014
|
2024-11-21 13:41 |
2019-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222939
|
5.3 |
MEDIUM
Network
|
oracle
|
business_intelligence
|
Vulnerability in the Oracle Business Intelligence Enterprise Edition product of Oracle Fusion Middleware (component: BI Platform Security). Supported versions that are affected are 11.1.1.9.0, 12.2.1…
|
NVD-CWE-noinfo
|
CVE-2019-3012
|
2024-11-21 13:41 |
2019-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222940
|
6.5 |
MEDIUM
Network
|
oracle
canonical
fedoraproject
netapp
|
mysql
ubuntu_linux
fedora
snapcenter
oncommand_workflow_automation
oncommand_insight
active_iq_unified_manager
|
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: C API). Supported versions that are affected are 8.0.17 and prior. Easily exploitable vulnerability allows low privileged…
|
NVD-CWE-noinfo
|
CVE-2019-3011
|
2024-11-21 13:41 |
2019-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
