|
223981
|
9.8 |
CRITICAL
Network
|
mulesoft
|
mule_runtime
|
The MuleSoft Mule Community Edition runtime engine before 3.8 allows remote attackers to execute arbitrary code because of Java Deserialization, related to Apache Commons Collections
|
CWE-502
Deserialization of Untrusted Data
|
CVE-2019-13116
|
2024-11-21 13:24 |
2019-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223982
|
6.1 |
MEDIUM
Network
|
mindpalette
|
natemail
|
A reflected Cross-Site Scripting (XSS) vulnerability in MindPalette NateMail 3.0.15 allows an attacker to execute remote JavaScript in a victim's browser via a specially crafted POST request. The app…
|
CWE-79
Cross-site Scripting
|
CVE-2019-13392
|
2024-11-21 13:24 |
2019-10-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223983
|
8.8 |
HIGH
Network
|
pi-hole
|
pi-hole
|
Pi-Hole 4.3 allows Command Injection.
|
CWE-78
OS Command
|
CVE-2019-13051
|
2024-11-21 13:24 |
2019-10-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223984
|
9.8 |
CRITICAL
Network
|
dbell
|
db01-s_firmware
|
The dbell Wi-Fi Smart Video Doorbell DB01-S Gen 1 allows remote attackers to launch commands with no authentication verification via TCP port 81, because the loginuse and loginpass parameters to open…
|
CWE-287
Improper Authentication
|
CVE-2019-13336
|
2024-11-21 13:24 |
2019-10-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223985
|
7.5 |
HIGH
Network
|
amazon
|
amazon_web_services_freertos
|
Amazon FreeRTOS up to and including v1.4.8 lacks length checking in prvProcessReceivedPublish, resulting in untargetable leakage of arbitrary memory contents on a device to an attacker. If an attacke…
|
CWE-125
Out-of-bounds Read
|
CVE-2019-13120
|
2024-11-21 13:24 |
2019-10-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223986
|
7.8 |
HIGH
Local
|
foxitsoftware
|
reader
phantompdf
|
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader 9.5.0.20723. User interaction is required to exploit this vulnerability in that the targ…
|
CWE-416
Use After Free
|
CVE-2019-13320
|
2024-11-21 13:24 |
2019-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223987
|
7.8 |
HIGH
Local
|
foxitsoftware
|
reader
phantompdf
|
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader 9.5.0.20723. User interaction is required to exploit this vulnerability in that the targ…
|
CWE-416
Use After Free
|
CVE-2019-13319
|
2024-11-21 13:24 |
2019-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223988
|
5.5 |
MEDIUM
Local
|
foxitsoftware
|
reader
phantompdf
|
This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit Reader 9.5.0.20723. User interaction is required to exploit this vulnerability in that …
|
CWE-134
Use of Externally-Controlled Format String
|
CVE-2019-13318
|
2024-11-21 13:24 |
2019-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223989
|
7.8 |
HIGH
Local
|
foxitsoftware
|
reader
phantompdf
|
This vulnerability allows remote atackers to execute arbitrary code on affected installations of Foxit PhantomPDF 9.5.0.20723. User interaction is required to exploit this vulnerability in that the t…
|
CWE-416
Use After Free
|
CVE-2019-13317
|
2024-11-21 13:24 |
2019-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223990
|
7.8 |
HIGH
Local
|
foxitsoftware
|
phantompdf
reader
|
This vulnerability allows remote atackers to execute arbitrary code on affected installations of Foxit PhantomPDF 9.5.0.20723. User interaction is required to exploit this vulnerability in that the t…
|
CWE-416
Use After Free
|
CVE-2019-13316
|
2024-11-21 13:24 |
2019-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
