|
212371
|
4.3 |
MEDIUM
Network
|
adobe
|
acrobat_dc
acrobat_reader_dc
|
Adobe Acrobat and Reader versions , 2019.012.20040 and earlier, 2017.011.30148 and earlier, 2017.011.30148 and earlier, 2015.006.30503 and earlier, and 2015.006.30503 and earlier have an out-of-bound…
|
CWE-125
Out-of-bounds Read
|
CVE-2019-8064
|
2024-11-21 13:49 |
2019-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212372
|
9.8 |
CRITICAL
Network
|
adobe
|
download_manager
|
Adobe Download Manager versions 2.0.0.363 have an insecure file permissions vulnerability. Successful exploitation could lead to privilege escalation.
|
CWE-732
Incorrect Permission Assignment for Critical Resource
|
CVE-2019-8071
|
2024-11-21 13:49 |
2019-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212373
|
7.5 |
HIGH
Network
|
checkpoint
|
security_gateway
|
In a rare scenario, Check Point R80.30 Security Gateway before JHF Take 50 managed by Check Point R80.30 Management crashes with a unique configuration of enhanced logging.
|
CWE-755
Improper Handling of Exceptional Conditions
|
CVE-2019-8462
|
2024-11-21 13:49 |
2019-10-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212374
|
5.3 |
MEDIUM
Network
|
online_store_system_project
|
online_store_system
|
Online Store System v1.0 delete_product.php doesn't check to see if a user authtenticated or has administrative rights allowing arbitrary product deletion.
|
CWE-306
Missing Authentication for Critical Function
|
CVE-2019-8292
|
2024-11-21 13:49 |
2019-10-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212375
|
7.5 |
HIGH
Network
|
online_store_system_project
|
online_store_system
|
Online Store System v1.0 delete_file.php doesn't check to see if a user has administrative rights nor does it check for path traversal.
|
CWE-22
Path Traversal
|
CVE-2019-8291
|
2024-11-21 13:49 |
2019-10-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212376
|
6.1 |
MEDIUM
Network
|
online_store_system_project
|
online_store_system
|
Vulnerability in Online Store v1.0, The registration form requirements for the member email format can be bypassed by posting directly to sent_register.php allowing special characters to be included …
|
CWE-79
Cross-site Scripting
|
CVE-2019-8290
|
2024-11-21 13:49 |
2019-10-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212377
|
5.4 |
MEDIUM
Network
|
online_store_system_project
|
online_store_system
|
Vulnerability in Online Store v1.0, stored XSS in admin/user_view.php adidas_member_email variable
|
CWE-79
Cross-site Scripting
|
CVE-2019-8289
|
2024-11-21 13:49 |
2019-10-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212378
|
5.4 |
MEDIUM
Network
|
online_store_system_project
|
online_store_system
|
Vulnerability in Online Store v1.0, Stored XSS in user_view.php where adidas_member_user variable is not sanitized.
|
CWE-79
Cross-site Scripting
|
CVE-2019-8288
|
2024-11-21 13:49 |
2019-10-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212379
|
7.5 |
HIGH
Network
|
adobe
google
debian
fedoraproject
|
flash_player_desktop_runtime
flash_player
chrome
debian_linux
fedora
|
Adobe Flash Player version 32.0.0.192 and earlier versions have a Same Origin Policy Bypass vulnerability. Successful exploitation could lead to Information Disclosure in the context of the current u…
|
NVD-CWE-noinfo
|
CVE-2019-8075
|
2024-11-21 13:49 |
2019-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212380
|
9.8 |
CRITICAL
Network
|
adobe
|
coldfusion
|
ColdFusion 2018- update 4 and earlier and ColdFusion 2016- update 11 and earlier have a Path Traversal vulnerability. Successful exploitation could lead to Access Control Bypass in the context of the…
|
CWE-22
Path Traversal
|
CVE-2019-8074
|
2024-11-21 13:49 |
2019-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
