|
223241
|
8.8 |
HIGH
Network
|
maarch
|
maarch_rm
|
An issue was discovered in Maarch RM before 2.5. A privilege escalation vulnerability allows an authenticated user with lowest privileges to give herself highest administration privileges via a craft…
|
NVD-CWE-noinfo
|
CVE-2019-15854
|
2024-11-21 13:29 |
2020-01-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223242
|
7.8 |
HIGH
Local
|
plantronics
|
plantronics_hub
|
A local privilege-escalation vulnerability exists in the Poly Plantronics Hub before 3.14 for Windows client application. A local attacker can exploit this issue to gain elevated privileges.
|
NVD-CWE-noinfo
|
CVE-2019-15742
|
2024-11-21 13:29 |
2020-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223243
|
6.5 |
MEDIUM
Network
|
clamav
cisco
debian
canonical
|
clamav
email_security_appliance_firmware
debian_linux
ubuntu_linux
|
A vulnerability in the email parsing module Clam AntiVirus (ClamAV) Software versions 0.102.0, 0.101.4 and prior could allow an unauthenticated, remote attacker to cause a denial of service condition…
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2019-15961
|
2024-11-21 13:29 |
2020-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223244
|
6.1 |
MEDIUM
Network
|
seeftl_project
|
seeftl
|
The seefl package v0.1.1 is vulnerable to a stored Cross-Site Scripting (XSS) vulnerability via a malicious filename rendered in a directory listing.
|
CWE-79
Cross-site Scripting
|
CVE-2019-15603
|
2024-11-21 13:29 |
2020-01-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223245
|
6.1 |
MEDIUM
Network
|
itwork
|
fileview
|
The fileview package v0.1.6 has inadequate output encoding and escaping, which leads to a stored Cross-Site Scripting (XSS) vulnerability in files it serves.
|
CWE-79
Cross-site Scripting
|
CVE-2019-15602
|
2024-11-21 13:29 |
2020-01-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223246
|
6.3 |
MEDIUM
Network
|
cisco
|
data_center_network_manager
|
A vulnerability in the application environment of Cisco Data Center Network Manager (DCNM) could allow an authenticated, remote attacker to gain unauthorized access to the JBoss Enterprise Applicatio…
|
NVD-CWE-Other
|
CVE-2019-15999
|
2024-11-21 13:29 |
2020-01-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223247
|
7.2 |
HIGH
Network
|
cisco
|
data_center_network_manager
|
Multiple vulnerabilities in the REST and SOAP API endpoints of Cisco Data Center Network Manager (DCNM) could allow an authenticated, remote attacker to execute arbitrary SQL commands on an affected …
|
CWE-89
SQL Injection
|
CVE-2019-15985
|
2024-11-21 13:29 |
2020-01-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223248
|
7.2 |
HIGH
Network
|
cisco
|
data_center_network_manager
|
Multiple vulnerabilities in the REST and SOAP API endpoints of Cisco Data Center Network Manager (DCNM) could allow an authenticated, remote attacker to execute arbitrary SQL commands on an affected …
|
CWE-89
SQL Injection
|
CVE-2019-15984
|
2024-11-21 13:29 |
2020-01-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223249
|
4.9 |
MEDIUM
Network
|
cisco
|
data_center_network_manager
|
A vulnerability in the SOAP API of Cisco Data Center Network Manager (DCNM) could allow an authenticated, remote attacker to gain read access to information that is stored on an affected system. To e…
|
CWE-611
XXE
|
CVE-2019-15983
|
2024-11-21 13:29 |
2020-01-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223250
|
7.2 |
HIGH
Network
|
cisco
|
data_center_network_manager
|
Multiple vulnerabilities in the REST and SOAP API endpoints and the Application Framework feature of Cisco Data Center Network Manager (DCNM) could allow an authenticated, remote attacker to conduct …
|
CWE-22
Path Traversal
|
CVE-2019-15982
|
2024-11-21 13:29 |
2020-01-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
