|
222801
|
7.5 |
HIGH
Network
|
foxitsoftware
|
phantompdf
|
An issue was discovered in Foxit PhantomPDF before 8.3.10. The application could be exposed to Memory Corruption due to the use of an invalid pointer copy, resulting from a destructed string object.
|
CWE-787
Out-of-bounds Write
|
CVE-2019-14210
|
2024-11-21 13:26 |
2019-07-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222802
|
9.8 |
CRITICAL
Network
|
foxitsoftware
|
phantompdf
|
An issue was discovered in Foxit PhantomPDF before 8.3.10. The application could be exposed to Heap Corruption due to data desynchrony when adding AcroForm.
|
CWE-787
Out-of-bounds Write
|
CVE-2019-14209
|
2024-11-21 13:26 |
2019-07-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222803
|
7.5 |
HIGH
Network
|
foxitsoftware
|
phantompdf
|
An issue was discovered in Foxit PhantomPDF before 8.3.10. The application could be exposed to a NULL pointer dereference and crash when getting a PDF object from a document, or parsing a certain por…
|
CWE-476
NULL Pointer Dereference
|
CVE-2019-14208
|
2024-11-21 13:26 |
2019-07-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222804
|
7.5 |
HIGH
Network
|
foxitsoftware
|
phantompdf
|
An issue was discovered in Foxit PhantomPDF before 8.3.11. The application could crash when calling the clone function due to an endless loop resulting from confusing relationships between a child an…
|
CWE-835
Loop with Unreachable Exit Condition ('Infinite Loop')
|
CVE-2019-14207
|
2024-11-21 13:26 |
2019-07-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222805
|
7.5 |
HIGH
Network
|
nevma
|
adaptive_images
|
An Arbitrary File Deletion vulnerability in the Nevma Adaptive Images plugin before 0.6.67 for WordPress allows remote attackers to delete arbitrary files via the $REQUEST['adaptive-images-settings']…
|
CWE-22
Path Traversal
|
CVE-2019-14206
|
2024-11-21 13:26 |
2019-07-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222806
|
7.5 |
HIGH
Network
|
nevma
|
adaptive_images
|
A Local File Inclusion vulnerability in the Nevma Adaptive Images plugin before 0.6.67 for WordPress allows remote attackers to retrieve arbitrary files via the $REQUEST['adaptive-images-settings']['…
|
CWE-22
Path Traversal
|
CVE-2019-14205
|
2024-11-21 13:26 |
2019-07-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222807
|
9.6 |
CRITICAL
Network
|
google
|
chrome
|
Inappropriate implementation in OS in Google Chrome on ChromeOS prior to 75.0.3770.80 allowed a remote attacker to perform OS-level privilege escalation via a malicious file. (Chromium security sever…
|
CWE-269
Improper Privilege Management
|
CVE-2019-13690
|
2024-11-21 13:25 |
2023-08-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222808
|
7.8 |
HIGH
Local
|
google
|
chrome
|
Inappropriate implementation in OS in Google Chrome on ChromeOS prior to 75.0.3770.80 allowed a remote attacker to perform arbitrary read/write via a malicious file. (Chromium security severity: Crit…
|
CWE-59
Link Following
|
CVE-2019-13689
|
2024-11-21 13:25 |
2023-08-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222809
|
7.4 |
HIGH
Network
|
google
|
chrome
|
Use after free in FileAPI in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chrome security severity: High)
|
CWE-416
Use After Free
|
CVE-2019-13768
|
2024-11-21 13:25 |
2023-01-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222810
|
6.5 |
MEDIUM
Adjacent
|
sierrawireless
|
mgos
|
Sierra Wireless MGOS before 3.15.2 and 4.x before 4.3 allows attackers to read log files via a Direct Request (aka Forced Browsing).
|
NVD-CWE-noinfo
|
CVE-2019-13988
|
2024-11-21 13:25 |
2022-12-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
