|
222441
|
8.8 |
HIGH
Network
|
redhat
|
3scale
|
A vulnerability was found that the 3scale dev portal does not employ mechanisms for protection against login CSRF. An attacker could use this flaw to access unauthorized information or conduct furthe…
|
CWE-352
Origin Validation Error
|
CVE-2019-14836
|
2024-11-21 13:27 |
2021-05-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222442
|
6.1 |
MEDIUM
Network
|
moodle
|
moodle
|
A vulnerability was found in Moodle where javaScript injection was possible in some Mustache templates via recursive rendering from contexts. Mustache helper tags that were included in template conte…
|
-
|
CVE-2019-14827
|
2024-11-21 13:27 |
2021-05-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222443
|
7.5 |
HIGH
Network
|
lispbx_project
|
lispbx
|
In Liberty lisPBX 2.0-4, configuration backup files can be retrieved remotely from /backup/lispbx-CONF-YYYY-MM-DD.tar or /backup/lispbx-CDR-YYYY-MM-DD.tar without authentication or authorization. The…
|
CWE-863
Incorrect Authorization
|
CVE-2019-15059
|
2024-11-21 13:27 |
2021-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222444
|
6.1 |
MEDIUM
Network
|
moodle
|
moodle
|
A vulnerability was found in Moodle 3.7 to 3.7.1, 3.6 to 3.6.5, 3.5 to 3.5.7 and earlier unsupported versions, where forum subscribe link contained an open redirect if forced subscription mode was en…
|
-
|
CVE-2019-14831
|
2024-11-21 13:27 |
2021-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222445
|
6.1 |
MEDIUM
Network
|
moodle
|
moodle
|
A vulnerability was found in Moodle 3.7 to 3.7.1, 3.6 to 3.6.5, 3.5 to 3.5.7 and earlier unsupported versions, where the mobile launch endpoint contained an open redirect in some circumstances, which…
|
-
|
CVE-2019-14830
|
2024-11-21 13:27 |
2021-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222446
|
4.3 |
MEDIUM
Network
|
moodle
|
moodle
|
A vulnerability was found in Moodle affection 3.7 to 3.7.1, 3.6 to 3.6.5, 3.5 to 3.5.7 and earlier unsupported versions where activity creation capabilities were not correctly respected when selectin…
|
-
|
CVE-2019-14829
|
2024-11-21 13:27 |
2021-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222447
|
4.3 |
MEDIUM
Network
|
moodle
|
moodle
|
A vulnerability was found in Moodle affecting 3.7 to 3.7.1, 3.6 to 3.6.5, 3.5 to 3.5.7 and earlier unsupported versions, where users with the capability to create courses were assigned as a teacher i…
|
-
|
CVE-2019-14828
|
2024-11-21 13:27 |
2021-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222448
|
7.5 |
HIGH
Network
|
redhat
|
3scale_api_management
|
A flaw was found in 3scale’s APIcast gateway that enabled the TLS 1.0 protocol. An attacker could target traffic using this weaker protocol and break its encryption, gaining access to unauthorized in…
|
CWE-327
Use of a Broken or Risky Cryptographic Algorithm
|
CVE-2019-14852
|
2024-11-21 13:27 |
2021-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222449
|
6.5 |
MEDIUM
Network
|
nbdkit_project
|
nbdkit
|
A denial of service vulnerability was discovered in nbdkit. A client issuing a certain sequence of commands could possibly trigger an assertion failure, causing nbdkit to exit. This issue only affect…
|
-
|
CVE-2019-14851
|
2024-11-21 13:27 |
2021-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222450
|
3.7 |
LOW
Network
|
nbdkit_project
redhat
|
nbdkit
enterprise_linux_server
virtualization
enterprise_linux
|
A denial of service vulnerability was discovered in nbdkit 1.12.7, 1.14.1 and 1.15.1. An attacker could connect to the nbdkit service and cause it to perform a large amount of work in initializing ba…
|
-
|
CVE-2019-14850
|
2024-11-21 13:27 |
2021-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
