|
221281
|
4.3 |
MEDIUM
Network
|
ethex
|
ethex_contracts
|
A vulnerability was found in Ethex Contracts. It has been classified as critical. This affects an unknown part of the file EthexJackpot.sol of the component Monthly Jackpot Handler. The manipulation …
|
-
|
CVE-2019-25157
|
2024-11-21 13:39 |
2023-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221282
|
6.1 |
MEDIUM
Network
|
dstar2018
|
agency
|
A vulnerability classified as problematic was found in dstar2018 Agency up to 61. Affected by this vulnerability is an unknown functionality of the file search.php. The manipulation of the argument Q…
|
-
|
CVE-2019-25156
|
2024-11-21 13:39 |
2023-11-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221283
|
6.1 |
MEDIUM
Network
|
cure53
|
dompurify
|
DOMPurify before 1.0.11 allows reverse tabnabbing in demos/hooks-target-blank-demo.html because links lack a 'rel="noopener noreferrer"' attribute.
|
CWE-601
Open Redirect
|
CVE-2019-25155
|
2024-11-21 13:39 |
2023-11-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221284
|
10.0 |
CRITICAL
Network
|
mozilla
|
firefox
|
A compromised child process could have injected XBL Bindings into privileged CSS rules, resulting in arbitrary code execution and a sandbox escape. This vulnerability affects Firefox < 70.
|
NVD-CWE-noinfo
|
CVE-2019-25136
|
2024-11-21 13:39 |
2023-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221285
|
7.2 |
HIGH
Network
|
umbraco
|
umbraco_cms
|
Umbraco CMS 4.11.8 through 7.15.10, and 7.12.4, allows Remote Code Execution by authenticated administrators via msxsl:script in an xsltSelection to developer/Xslt/xsltVisualize.aspx.
|
CWE-91
Blind XPath Injection
|
CVE-2019-25137
|
2024-11-21 13:39 |
2023-05-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221286
|
6.1 |
MEDIUM
Network
|
dro.pm_project
|
dro.pm
|
A vulnerability, which was classified as problematic, was found in dro.pm. This affects an unknown part of the file web/fileman.php. The manipulation of the argument secret/key leads to cross site sc…
|
CWE-79
Cross-site Scripting
|
CVE-2019-25105
|
2024-11-21 13:39 |
2023-02-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221287
|
7.5 |
HIGH
Network
|
rtcwcoop
|
rtcwcoop
|
A vulnerability has been found in rtcwcoop 1.0.2 and classified as problematic. Affected by this vulnerability is the function AICast_ScriptLoad of the file code/game/ai_cast_script.c of the componen…
|
CWE-404
Improper Resource Shutdown or Release
|
CVE-2019-25104
|
2024-11-21 13:39 |
2023-02-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221288
|
7.5 |
HIGH
Network
|
khanacademy
|
simple-markdown
|
A vulnerability has been found in simple-markdown 0.5.1 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file simple-markdown.js. The manipulation lead…
|
CWE-1333
Inefficient Regular Expression Complexity
|
CVE-2019-25103
|
2024-11-21 13:39 |
2023-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221289
|
7.5 |
HIGH
Network
|
khanacademy
|
simple-markdown
|
A vulnerability, which was classified as problematic, was found in simple-markdown 0.6.0. Affected is an unknown function of the file simple-markdown.js. The manipulation with the input <<<<<<<<<<:/:…
|
CWE-1333
Inefficient Regular Expression Complexity
|
CVE-2019-25102
|
2024-11-21 13:39 |
2023-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221290
|
9.8 |
CRITICAL
Network
|
turbogears_project
|
turbogears
|
A vulnerability classified as critical has been found in OnShift TurboGears 1.0.11.10. This affects an unknown part of the file turbogears/controllers.py of the component HTTP Header Handler. The man…
|
CWE-436
Interpretation Conflict
|
CVE-2019-25101
|
2024-11-21 13:39 |
2023-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
