|
222361
|
6.1 |
MEDIUM
Network
|
wp-slimstat
|
slimstat_analytics
|
The wp-slimstat plugin before 4.8.1 for WordPress has XSS.
|
CWE-79
Cross-site Scripting
|
CVE-2019-15112
|
2024-11-21 13:28 |
2019-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222362
|
9.8 |
CRITICAL
Network
|
wp_front_end_profile_project
|
wp_front_end_profile
|
The wp-front-end-profile plugin before 0.2.2 for WordPress has a privilege escalation issue.
|
NVD-CWE-noinfo
|
CVE-2019-15111
|
2024-11-21 13:28 |
2019-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222363
|
6.1 |
MEDIUM
Network
|
wp_front_end_profile_project
|
wp_front_end_profile
|
The wp-front-end-profile plugin before 0.2.2 for WordPress has XSS.
|
CWE-79
Cross-site Scripting
|
CVE-2019-15110
|
2024-11-21 13:28 |
2019-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222364
|
6.1 |
MEDIUM
Network
|
stellarwp
|
the_events_calendar
|
The the-events-calendar plugin before 4.8.2 for WordPress has XSS via the tribe_paged URL parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2019-15109
|
2024-11-21 13:28 |
2019-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222365
|
7.8 |
HIGH
Local
|
audiocoding
debian
|
freeware_advanced_audio_decoder_2
debian_linux
|
An issue was discovered in Freeware Advanced Audio Decoder 2 (FAAD2) 2.8.8. The faad_resetbits function in libfaad/bits.c is affected by a buffer overflow vulnerability. The number of bits to be read…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2019-15296
|
2024-11-21 13:28 |
2019-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222366
|
7.8 |
HIGH
Local
|
acdsee
|
photo_studio
|
An issue was discovered in ACDSee Photo Studio Standard 22.1 Build 1159. There is a User Mode Write AV starting at IDE_ACDStd!IEP_ShowPlugInDialog+0x000000000023d060.
|
NVD-CWE-noinfo
|
CVE-2019-15293
|
2024-11-21 13:28 |
2019-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222367
|
4.7 |
MEDIUM
Local
|
linux
debian
canonical
|
linux_kernel
debian_linux
ubuntu_linux
|
An issue was discovered in the Linux kernel before 5.0.9. There is a use-after-free in atalk_proc_exit, related to net/appletalk/atalk_proc.c, net/appletalk/ddp.c, and net/appletalk/sysctl_net_atalk.…
|
CWE-416
Use After Free
|
CVE-2019-15292
|
2024-11-21 13:28 |
2019-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222368
|
8.8 |
HIGH
Network
|
cformsii_project
|
cformsii
|
The cforms2 plugin before 15.0.2 for WordPress has CSRF related to the IP address field.
|
CWE-352
Origin Validation Error
|
CVE-2019-15238
|
2024-11-21 13:28 |
2019-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222369
|
4.6 |
MEDIUM
Physics
|
linux
|
linux_kernel
|
An issue was discovered in the Linux kernel through 5.2.9. There is a NULL pointer dereference caused by a malicious USB device in the flexcop_usb_probe function in the drivers/media/usb/b2c2/flexcop…
|
CWE-476
NULL Pointer Dereference
|
CVE-2019-15291
|
2024-11-21 13:28 |
2019-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222370
|
6.1 |
MEDIUM
Network
|
oldstreetsolutions
|
live_input_macros
|
The Live:Text Box macro in the Old Street Live Input Macros app before 2.11 for Confluence has XSS, leading to theft of the Administrator Session Cookie.
|
CWE-79
Cross-site Scripting
|
CVE-2019-15233
|
2024-11-21 13:28 |
2019-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
