|
223301
|
7.5 |
HIGH
Network
|
cisco
|
ios
|
A vulnerability in the ingress packet processing function of Cisco IOS Software for Cisco Catalyst 4000 Series Switches could allow an unauthenticated, remote attacker to cause a denial of service (D…
|
NVD-CWE-Other
|
CVE-2019-12652
|
2024-11-21 13:23 |
2019-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223302
|
6.7 |
MEDIUM
Local
|
cisco
|
ios_xe
ios
|
A vulnerability in the Image Verification feature of Cisco IOS XE Software could allow an authenticated, local attacker to install and boot a malicious software image or execute unsigned binaries on …
|
CWE-347
Improper Verification of Cryptographic Signature
|
CVE-2019-12649
|
2024-11-21 13:23 |
2019-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223303
|
8.8 |
HIGH
Network
|
cisco
|
ios
|
A vulnerability in the IOx application environment for Cisco IOS Software could allow an authenticated, remote attacker to gain unauthorized access to the Guest Operating System (Guest OS) running on…
|
CWE-863
Incorrect Authorization
|
CVE-2019-12648
|
2024-11-21 13:23 |
2019-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223304
|
7.5 |
HIGH
Network
|
cisco
|
ios_xe
|
A vulnerability in the Ident protocol handler of Cisco IOS and IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload. The vulnerability exists because …
|
CWE-476
NULL Pointer Dereference
|
CVE-2019-12647
|
2024-11-21 13:23 |
2019-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223305
|
7.5 |
HIGH
Network
|
cisco
|
ios_xe
|
A vulnerability in the Network Address Translation (NAT) Session Initiation Protocol (SIP) Application Layer Gateway (ALG) of Cisco IOS XE Software could allow an unauthenticated, remote attacker to …
|
CWE-665
Improper Initialization
|
CVE-2019-12646
|
2024-11-21 13:23 |
2019-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223306
|
5.3 |
MEDIUM
Network
|
cisco
|
hyperflex_hx220c_m5_firmware
hyperflex_hx240c_m5_firmware
hyperflex_hx220c_af_m5_firmware
hyperflex_hx240c_af_m5_firmware
hyperflex_hx220c_edge_m5_firmware
|
A vulnerability in the statistics collection service of Cisco HyperFlex Software could allow an unauthenticated, remote attacker to inject arbitrary values on an affected device. The vulnerability is…
|
CWE-345
Insufficient Verification of Data Authenticity
|
CVE-2019-12620
|
2024-11-21 13:23 |
2019-09-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223307
|
5.5 |
MEDIUM
Local
|
symantec
|
norton_password_manager
|
Norton Password Manager, prior to 6.5.0.2104, may be susceptible to an information disclosure issue, which is a type of vulnerability whereby there is an unintentional disclosure of information to an…
|
NVD-CWE-noinfo
|
CVE-2019-12755
|
2024-11-21 13:23 |
2019-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223308
|
6.5 |
MEDIUM
Network
|
phpmyadmin
fedoraproject
|
phpmyadmin
fedora
|
A CSRF issue in phpMyAdmin 4.9.0.1 allows deletion of any server in the Setup page.
|
CWE-352
Origin Validation Error
|
CVE-2019-12922
|
2024-11-21 13:23 |
2019-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223309
|
8.8 |
HIGH
Network
|
slickquiz_project
|
slickquiz
|
The slickquiz plugin through 1.3.7.1 for WordPress allows SQL Injection by Subscriber users, as demonstrated by a /wp-admin/admin.php?page=slickquiz-scores&id= or /wp-admin/admin.php?page=slickquiz-e…
|
CWE-89
SQL Injection
|
CVE-2019-12516
|
2024-11-21 13:23 |
2019-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223310
|
6.1 |
MEDIUM
Network
|
slickquiz_project
|
slickquiz
|
An XSS issue was discovered in the slickquiz plugin through 1.3.7.1 for WordPress. The save_quiz_score functionality available via the /wp-admin/admin-ajax.php endpoint allows unauthenticated users t…
|
CWE-79
Cross-site Scripting
|
CVE-2019-12517
|
2024-11-21 13:23 |
2019-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
