|
219541
|
7.5 |
HIGH
Network
|
python
opensuse
debian
redhat
|
python
leap
debian_linux
enterprise_linux
enterprise_linux_eus
enterprise_linux_server_tus
enterprise_linux_server_aus
|
An exploitable denial-of-service vulnerability exists in the X509 certificate parser of Python.org Python 2.7.11 / 3.6.6. A specially crafted X509 certificate can cause a NULL pointer dereference, re…
|
CWE-476
NULL Pointer Dereference
|
CVE-2019-5010
|
2024-11-21 13:44 |
2019-11-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
219542
|
9.8 |
CRITICAL
Network
|
youphptube
|
youphptube
|
An exploitable SQL injection vulnerability exist in YouPHPTube 7.7. A specially crafted unauthenticated HTTP request can cause a SQL injection, possibly leading to denial of service, exfiltration of …
|
CWE-89
SQL Injection
|
CVE-2019-5151
|
2024-11-21 13:44 |
2019-11-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
219543
|
8.1 |
HIGH
Network
|
youphptube
|
youphptube
|
An exploitable SQL injection vulnerability exist in YouPHPTube 7.7. When the "VideoTags" plugin is enabled, a specially crafted unauthenticated HTTP request can cause a SQL injection, possibly leadin…
|
CWE-89
SQL Injection
|
CVE-2019-5150
|
2024-11-21 13:44 |
2019-11-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
219544
|
4.3 |
MEDIUM
Network
|
tempo
|
tempo
|
An issue summary information disclosure vulnerability exists in Atlassian Jira Tempo plugin, version 4.10.0. Authenticated users can obtain the summary for issues they do not have permission to view …
|
CWE-862
Missing Authorization
|
CVE-2019-5095
|
2024-11-21 13:44 |
2019-11-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
219545
|
10.0 |
CRITICAL
Network
|
amd
|
radeon_rx_550_firmware
radeon_550_firmware
radeon_rx_550x_firmware
|
An exploitable memory corruption vulnerability exists in AMD ATIDXX64.DLL driver, versions 25.20.15031.5004 and 25.20.15031.9002. A specially crafted pixel shader can cause an out-of-bounds memory wr…
|
CWE-787
Out-of-bounds Write
|
CVE-2019-5049
|
2024-11-21 13:44 |
2019-11-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
219546
|
9.8 |
CRITICAL
Network
|
youphptube
|
youphptube_encoder
|
A command injection have been found in YouPHPTube Encoder. A successful attack could allow an attacker to compromise the server. Exploitable unauthenticated command injections exist in YouPHPTube Enc…
|
CWE-78
OS Command
|
CVE-2019-5129
|
2024-11-21 13:44 |
2019-10-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
219547
|
9.8 |
CRITICAL
Network
|
youphptube
|
youphptube_encoder
|
A command injection have been found in YouPHPTube Encoder. A successful attack could allow an attacker to compromise the server. Exploitable unauthenticated command injections exist in YouPHPTube Enc…
|
CWE-78
OS Command
|
CVE-2019-5128
|
2024-11-21 13:44 |
2019-10-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
219548
|
9.8 |
CRITICAL
Network
|
youphptube
|
youphptube_encoder
|
A command injection have been found in YouPHPTube Encoder. A successful attack could allow an attacker to compromise the server. Exploitable unauthenticated command injections exist in YouPHPTube Enc…
|
CWE-78
OS Command
|
CVE-2019-5127
|
2024-11-21 13:44 |
2019-10-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
219549
|
8.8 |
HIGH
Network
|
youphptube
|
youphptube
|
Specially crafted web requests can cause SQL injections in YouPHPTube 7.6. An attacker can send a web request with Parameter dir in /objects/pluginSwitch.json.php.
|
CWE-89
SQL Injection
|
CVE-2019-5123
|
2024-11-21 13:44 |
2019-10-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
219550
|
8.8 |
HIGH
Network
|
youphptube
|
youphptube
|
SQL injection vulnerabilities exists in the authenticated part of YouPHPTube 7.6. Specially crafted web requests can cause SQL injections. An attacker can send a web request with Parameter name in /o…
|
CWE-89
SQL Injection
|
CVE-2019-5122
|
2024-11-21 13:44 |
2019-10-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
