|
218821
|
6.1 |
MEDIUM
Network
|
citysearch_\/_hotfrog_\/_gelbeseiten_clone_script_project
|
citysearch_\/_hotfrog_\/_gelbeseiten_clone_script
|
PHP Scripts Mall Citysearch / Hotfrog / Gelbeseiten Clone Script 2.0.1 has Reflected XSS via the srch parameter, as demonstrated by restaurants-details.php.
|
CWE-79
Cross-site Scripting
|
CVE-2019-6248
|
2024-11-21 13:46 |
2019-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
218822
|
8.8 |
HIGH
Network
|
svgpp
antigrain
|
svgpp
agg
|
An issue was discovered in Anti-Grain Geometry (AGG) 2.4 as used in SVG++ (aka svgpp) 1.2.3. A heap-based buffer overflow bug in svgpp_agg_render may lead to code execution. In the render_scanlines_a…
|
CWE-787
Out-of-bounds Write
|
CVE-2019-6247
|
2024-11-21 13:46 |
2019-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
218823
|
9.8 |
CRITICAL
Network
|
svgpp
|
svgpp
|
An issue was discovered in SVG++ (aka svgpp) 1.2.3. After calling the gil::get_color function in Generic Image Library in Boost, the return code is used as an address, leading to an Access Violation …
|
CWE-125
Out-of-bounds Read
|
CVE-2019-6246
|
2024-11-21 13:46 |
2019-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
218824
|
8.8 |
HIGH
Network
|
svgpp
antigrain
debian
|
svgpp
agg
debian_linux
|
An issue was discovered in Anti-Grain Geometry (AGG) 2.4 as used in SVG++ (aka svgpp) 1.2.3. In the function agg::cell_aa::not_equal, dx is assigned to (x2 - x1). If dx >= dx_limit, which is (16384 <…
|
CWE-787
Out-of-bounds Write
|
CVE-2019-6245
|
2024-11-21 13:46 |
2019-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
218825
|
8.8 |
HIGH
Network
|
usualtool
|
usualtoolcms
|
An issue was discovered in UsualToolCMS 8.0. cmsadmin/a_sqlbackx.php?t=sql allows CSRF attacks that can execute SQL statements, and consequently execute arbitrary PHP code by writing that code into a…
|
CWE-352
Origin Validation Error
|
CVE-2019-6244
|
2024-11-21 13:46 |
2019-01-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
218826
|
6.1 |
MEDIUM
Network
|
frog_cms_project
|
frog_cms
|
Frog CMS 0.9.5 allows XSS via the forgot password page (aka the /admin/?/login/forgot URI).
|
CWE-79
Cross-site Scripting
|
CVE-2019-6243
|
2024-11-21 13:46 |
2019-01-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
218827
|
7.5 |
HIGH
Network
|
mz-automation
|
libiec61850
|
An issue has been found in libIEC61850 v1.3.1. Memory_malloc and Memory_calloc in hal/memory/lib_memory.c have memory leaks when called from mms/iso_mms/common/mms_value.c, server/mms_mapping/mms_map…
|
CWE-401
Missing Release of Memory after Effective Lifetime
|
CVE-2019-6138
|
2024-11-21 13:46 |
2019-01-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
218828
|
7.5 |
HIGH
Network
|
mz-automation
|
lib60870
|
An issue was discovered in lib60870 2.1.1. LinkLayer_setAddress in link_layer/link_layer.c has a NULL pointer dereference.
|
CWE-476
NULL Pointer Dereference
|
CVE-2019-6137
|
2024-11-21 13:46 |
2019-01-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
218829
|
7.5 |
HIGH
Network
|
mz-automation
|
libiec61850
|
An issue has been found in libIEC61850 v1.3.1. Ethernet_setProtocolFilter in hal/ethernet/linux/ethernet_linux.c has a SEGV, as demonstrated by sv_subscriber_example.c and sv_subscriber.c.
|
NVD-CWE-noinfo
|
CVE-2019-6136
|
2024-11-21 13:46 |
2019-01-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
218830
|
7.5 |
HIGH
Network
|
mz-automation
|
libiec61850
|
An issue has been found in libIEC61850 v1.3.1. Memory_malloc in hal/memory/lib_memory.c has a memory leak when called from Asn1PrimitiveValue_create in mms/asn1/asn1_ber_primitive_value.c, as demonst…
|
CWE-401
Missing Release of Memory after Effective Lifetime
|
CVE-2019-6135
|
2024-11-21 13:46 |
2019-01-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
