|
218871
|
7.5 |
HIGH
Network
|
anglers-net
|
cgi_an-anlyzer
|
Access analysis CGI An-Analyzer released in 2019 June 24 and earlier allow remote attackers to obtain a login password via HTTP referer.
|
CWE-522
Insufficiently Protected Credentials
|
CVE-2019-5990
|
2024-11-21 13:45 |
2020-01-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
218872
|
6.1 |
MEDIUM
Network
|
anglers-net
|
cgi_an-anlyzer
|
DOM-based cross-site scripting vulnerability in Access analysis CGI An-Analyzer released in 2019 June 24 and earlier allows remote attackers to inject arbitrary web script or HTML via the Analysis Ob…
|
CWE-79
Cross-site Scripting
|
CVE-2019-5989
|
2024-11-21 13:45 |
2020-01-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
218873
|
6.1 |
MEDIUM
Network
|
anglers-net
|
cgi_an-anlyzer
|
Stored cross-site scripting vulnerability in Access analysis CGI An-Analyzer released in 2019 June 24 and earlier allows remote attackers to inject arbitrary web script or HTML via the Management Pag…
|
CWE-79
Cross-site Scripting
|
CVE-2019-5988
|
2024-11-21 13:45 |
2020-01-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
218874
|
8.8 |
HIGH
Network
|
anglers-net
|
cgi_an-anlyzer
|
Access analysis CGI An-Analyzer released in 2019 June 24 and earlier allows remote authenticated attackers to execute arbitrary OS commands via the Management Page.
|
CWE-78
OS Command
|
CVE-2019-5987
|
2024-11-21 13:45 |
2020-01-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
218875
|
6.5 |
MEDIUM
Network
|
google
opensuse
|
chrome
leap
backports_sle
|
Out of bounds access in SwiftShader in Google Chrome prior to 73.0.3683.75 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
|
CWE-787
Out-of-bounds Write
|
CVE-2019-5846
|
2024-11-21 13:45 |
2020-01-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
218876
|
6.5 |
MEDIUM
Network
|
google
opensuse
|
chrome
leap
backports_sle
|
Out of bounds access in SwiftShader in Google Chrome prior to 73.0.3683.75 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
|
CWE-787
Out-of-bounds Write
|
CVE-2019-5845
|
2024-11-21 13:45 |
2020-01-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
218877
|
6.5 |
MEDIUM
Network
|
google
opensuse
|
chrome
leap
backports_sle
|
Out of bounds access in SwiftShader in Google Chrome prior to 73.0.3683.75 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
|
CWE-787
Out-of-bounds Write
|
CVE-2019-5844
|
2024-11-21 13:45 |
2020-01-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
218878
|
6.1 |
MEDIUM
Network
|
yahoo
|
athenz
|
Open redirect vulnerability in Athenz v1.8.24 and earlier allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a specially crafted page.
|
CWE-601
Open Redirect
|
CVE-2019-6035
|
2024-11-21 13:45 |
2019-12-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
218879
|
6.1 |
MEDIUM
Network
|
appleple
|
a-blog_cms
|
a-blog cms versions prior to Ver.2.10.23 (Ver.2.10.x), Ver.2.9.26 (Ver.2.9.x), and Ver.2.8.64 (Ver.2.8.x) allows arbitrary scripts to be executed in the context of the application due to unspecified …
|
CWE-74
Injection
|
CVE-2019-6034
|
2024-11-21 13:45 |
2019-12-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
218880
|
6.1 |
MEDIUM
Network
|
appleple
|
a-blog_cms
|
Cross-site scripting vulnerability in a-blog cms versions prior to Ver.2.10.23 (Ver.2.10.x), Ver.2.9.26 (Ver.2.9.x), and Ver.2.8.64 (Ver.2.8.x) allows remote attackers to inject arbitrary web script …
|
CWE-79
Cross-site Scripting
|
CVE-2019-6033
|
2024-11-21 13:45 |
2019-12-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
