|
211041
|
5.5 |
MEDIUM
Local
|
symantec
|
antivirus_engine
|
Symantec AV Engine, prior to 13.0.9r17, may be susceptible to an arbitrary file deletion issue, which is a type of vulnerability that could allow an attacker to delete files on the resident system wi…
|
NVD-CWE-noinfo
|
CVE-2019-9698
|
2024-11-21 13:52 |
2019-05-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211042
|
4.9 |
MEDIUM
Network
|
mahara
|
mahara
|
An issue was discovered in Mahara 17.10 before 17.10.8, 18.04 before 18.04.4, and 18.10 before 18.10.1. A site administrator can suspend the system user (root), causing all users to be locked out fro…
|
NVD-CWE-noinfo
|
CVE-2019-9708
|
2024-11-21 13:52 |
2019-05-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211043
|
5.4 |
MEDIUM
Network
|
mahara
|
mahara
|
An issue was discovered in Mahara 17.10 before 17.10.8, 18.04 before 18.04.4, and 18.10 before 18.10.1. The collection title is vulnerable to Cross Site Scripting (XSS) due to not escaping it when vi…
|
CWE-79
Cross-site Scripting
|
CVE-2019-9709
|
2024-11-21 13:52 |
2019-05-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211044
|
7.5 |
HIGH
Network
|
phpbb
|
phpbb
|
The fulltext search component in phpBB before 3.2.6 allows Denial of Service.
|
CWE-20
Improper Input Validation
|
CVE-2019-9826
|
2024-11-21 13:52 |
2019-05-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211045
|
8.8 |
HIGH
Network
|
mozilla
|
thunderbird
firefox
firefox_esr
|
Incorrect handling of __proto__ mutations may lead to type confusion in IonMonkey JIT code and can be leveraged for arbitrary memory read and write. This vulnerability affects Firefox < 66.0.1, Firef…
|
CWE-843
Type Confusion
|
CVE-2019-9813
|
2024-11-21 13:52 |
2019-04-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211046
|
8.8 |
HIGH
Network
|
mozilla
redhat
|
thunderbird
firefox
firefox_esr
enterprise_linux
enterprise_linux_eus
enterprise_linux_server_tus
enterprise_linux_server_aus
|
Incorrect alias information in IonMonkey JIT compiler for Array.prototype.slice method may lead to missing bounds check and a buffer overflow. This vulnerability affects Firefox < 66.0.1, Firefox ESR…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2019-9810
|
2024-11-21 13:52 |
2019-04-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211047
|
7.5 |
HIGH
Network
|
mozilla
|
firefox
|
If the source for resources on a page is through an FTP connection, it is possible to trigger a series of modal alert messages for these resources through invalid credentials or locations. These mess…
|
CWE-399
Resource Management Errors
|
CVE-2019-9809
|
2024-11-21 13:52 |
2019-04-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211048
|
5.3 |
MEDIUM
Network
|
mozilla
|
firefox
|
If WebRTC permission is requested from documents with data: or blob: URLs, the permission notifications do not properly display the originating domain. The notification states "Unknown origin" as the…
|
CWE-346
Origin Validation Error
|
CVE-2019-9808
|
2024-11-21 13:52 |
2019-04-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211049
|
4.3 |
MEDIUM
Network
|
mozilla
|
firefox
|
When arbitrary text is sent over an FTP connection and a page reload is initiated, it is possible to create a modal alert message with this text as the content. This could potentially be used for soc…
|
CWE-20
Improper Input Validation
|
CVE-2019-9807
|
2024-11-21 13:52 |
2019-04-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
211050
|
7.5 |
HIGH
Network
|
mozilla
|
firefox
|
A vulnerability exists during authorization prompting for FTP transaction where successive modal prompts are displayed and cannot be immediately dismissed. This allows for a denial of service (DOS) a…
|
CWE-399
Resource Management Errors
|
CVE-2019-9806
|
2024-11-21 13:52 |
2019-04-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
