|
224521
|
4.6 |
MEDIUM
Physics
|
espressif
|
esp32-d0wd_firmware
esp32-d2wd_firmware
esp32-s0wd_firmware
esp32-pico-d4_firmware
|
An issue was discovered in the Espressif ESP32 mask ROM code 2016-06-08 0 through 2. Lack of anti-glitch mitigations in the first stage bootloader of the ESP32 chip allows an attacker (with physical …
|
CWE-755
Improper Handling of Exceptional Conditions
|
CVE-2019-17391
|
2024-11-21 13:32 |
2019-11-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
224522
|
9.8 |
CRITICAL
Network
|
fujielectric
|
v-server
|
In Fuji Electric V-Server 4.0.6 and prior, several heap-based buffer overflows have been identified, which may allow an attacker to remotely execute arbitrary code.
|
CWE-787
Out-of-bounds Write
|
CVE-2019-18240
|
2024-11-21 13:32 |
2019-11-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
224523
|
6.1 |
MEDIUM
Network
|
adenion
|
blog2social
|
The Blog2Social plugin before 5.9.0 for WordPress is affected by: Cross Site Scripting (XSS). The impact is: Allows an attacker to execute arbitrary HTML and JavaScript code via the b2s_id parameter.…
|
CWE-79
Cross-site Scripting
|
CVE-2019-17550
|
2024-11-21 13:32 |
2019-11-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
224524
|
6.1 |
MEDIUM
Network
|
cleantalk
|
spam_protection\
_antispam\
_firewall
|
The CleanTalk cleantalk-spam-protect plugin before 5.127.4 for WordPress is affected by: Cross Site Scripting (XSS). The impact is: Allows an attacker to execute arbitrary HTML and JavaScript code vi…
|
CWE-79
Cross-site Scripting
|
CVE-2019-17515
|
2024-11-21 13:32 |
2019-11-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
224525
|
8.8 |
HIGH
Network
|
phoenix
|
securecore_technology
|
In Phoenix SCT WinFlash 1.1.12.0 through 1.5.74.0, the included drivers could be used by a malicious Windows application to gain elevated privileges. Adverse impacts are limited to the Windows enviro…
|
NVD-CWE-noinfo
|
CVE-2019-18279
|
2024-11-21 13:32 |
2019-11-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
224526
|
5.4 |
MEDIUM
Network
|
technicolor
|
tc7300.b0_firmware
|
An XSS vulnerability on Technicolor TC7300 STFA.51.20 devices allows remote attackers to inject arbitrary web script via the "Connected Clients" field to /wlanAccess.asp. An intranet host can use a c…
|
CWE-79
Cross-site Scripting
|
CVE-2019-17524
|
2024-11-21 13:32 |
2019-11-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
224527
|
5.4 |
MEDIUM
Network
|
technicolor
|
tc7300.b0_firmware
|
An XSS vulnerability on Technicolor TC7300 STFA.51.20 devices allows remote attackers to inject arbitrary web script via the FileName parameter to /FTPDiag.asp.
|
CWE-79
Cross-site Scripting
|
CVE-2019-17523
|
2024-11-21 13:32 |
2019-11-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
224528
|
5.4 |
MEDIUM
Network
|
tibco
|
ebx_add-ons
|
The Digital Asset Manager Web Interface component of TIBCO Software Inc.'s TIBCO EBX Add-ons contains a vulnerability that theoretically allows authenticated users to perform stored cross-site script…
|
CWE-79
Cross-site Scripting
|
CVE-2019-17332
|
2024-11-21 13:32 |
2019-11-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
224529
|
5.4 |
MEDIUM
Network
|
tibco
|
ebx_add-ons
|
The Data Exchange Web Interface component of TIBCO Software Inc.'s TIBCO EBX Add-ons contains a vulnerability that theoretically allows authenticated users to perform stored cross-site scripting (XSS…
|
CWE-79
Cross-site Scripting
|
CVE-2019-17331
|
2024-11-21 13:32 |
2019-11-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
224530
|
9.6 |
CRITICAL
Network
|
tibco
|
ebx
|
The Web server component of TIBCO Software Inc.'s TIBCO EBX contains multiple vulnerabilities that theoretically allow authenticated users to perform stored cross-site scripting (XSS) attacks, and un…
|
CWE-79
Cross-site Scripting
|
CVE-2019-17330
|
2024-11-21 13:32 |
2019-11-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
