|
220961
|
9.8 |
CRITICAL
Network
|
svgpp
|
svgpp
|
An issue was discovered in SVG++ (aka svgpp) 1.2.3. After calling the gil::get_color function in Generic Image Library in Boost, the return code is used as an address, leading to an Access Violation …
|
CWE-125
Out-of-bounds Read
|
CVE-2019-6246
|
2024-11-21 13:46 |
2019-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
220962
|
8.8 |
HIGH
Network
|
svgpp
antigrain
debian
|
svgpp
agg
debian_linux
|
An issue was discovered in Anti-Grain Geometry (AGG) 2.4 as used in SVG++ (aka svgpp) 1.2.3. In the function agg::cell_aa::not_equal, dx is assigned to (x2 - x1). If dx >= dx_limit, which is (16384 <…
|
CWE-787
Out-of-bounds Write
|
CVE-2019-6245
|
2024-11-21 13:46 |
2019-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
220963
|
8.8 |
HIGH
Network
|
usualtool
|
usualtoolcms
|
An issue was discovered in UsualToolCMS 8.0. cmsadmin/a_sqlbackx.php?t=sql allows CSRF attacks that can execute SQL statements, and consequently execute arbitrary PHP code by writing that code into a…
|
CWE-352
Origin Validation Error
|
CVE-2019-6244
|
2024-11-21 13:46 |
2019-01-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
220964
|
6.1 |
MEDIUM
Network
|
frog_cms_project
|
frog_cms
|
Frog CMS 0.9.5 allows XSS via the forgot password page (aka the /admin/?/login/forgot URI).
|
CWE-79
Cross-site Scripting
|
CVE-2019-6243
|
2024-11-21 13:46 |
2019-01-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
220965
|
7.5 |
HIGH
Network
|
mz-automation
|
libiec61850
|
An issue has been found in libIEC61850 v1.3.1. Memory_malloc and Memory_calloc in hal/memory/lib_memory.c have memory leaks when called from mms/iso_mms/common/mms_value.c, server/mms_mapping/mms_map…
|
CWE-401
Missing Release of Memory after Effective Lifetime
|
CVE-2019-6138
|
2024-11-21 13:46 |
2019-01-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
220966
|
7.5 |
HIGH
Network
|
mz-automation
|
lib60870
|
An issue was discovered in lib60870 2.1.1. LinkLayer_setAddress in link_layer/link_layer.c has a NULL pointer dereference.
|
CWE-476
NULL Pointer Dereference
|
CVE-2019-6137
|
2024-11-21 13:46 |
2019-01-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
220967
|
7.5 |
HIGH
Network
|
mz-automation
|
libiec61850
|
An issue has been found in libIEC61850 v1.3.1. Ethernet_setProtocolFilter in hal/ethernet/linux/ethernet_linux.c has a SEGV, as demonstrated by sv_subscriber_example.c and sv_subscriber.c.
|
NVD-CWE-noinfo
|
CVE-2019-6136
|
2024-11-21 13:46 |
2019-01-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
220968
|
7.5 |
HIGH
Network
|
mz-automation
|
libiec61850
|
An issue has been found in libIEC61850 v1.3.1. Memory_malloc in hal/memory/lib_memory.c has a memory leak when called from Asn1PrimitiveValue_create in mms/asn1/asn1_ber_primitive_value.c, as demonst…
|
CWE-401
Missing Release of Memory after Effective Lifetime
|
CVE-2019-6135
|
2024-11-21 13:46 |
2019-01-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
220969
|
7.5 |
HIGH
Network
|
axiosys
|
bento4
|
An issue was discovered in Bento4 v1.5.1-627. There is a memory leak in AP4_DescriptorFactory::CreateDescriptorFromStream in Core/Ap4DescriptorFactory.cpp when called from the AP4_EsdsAtom class in C…
|
CWE-401
Missing Release of Memory after Effective Lifetime
|
CVE-2019-6132
|
2024-11-21 13:46 |
2019-01-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
220970
|
5.5 |
MEDIUM
Local
|
artifex
|
mupdf
|
svg-run.c in Artifex MuPDF 1.14.0 has infinite recursion with stack consumption in svg_run_use_symbol, svg_run_element, and svg_run_use, as demonstrated by mutool.
|
CWE-674
Uncontrolled Recursion
|
CVE-2019-6131
|
2024-11-21 13:46 |
2019-01-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
