|
218831
|
8.1 |
HIGH
Network
|
gnome
wpewebkit
webkitgtk
fedoraproject
canonical
opensuse
|
epiphany
wpe_webkit
webkitgtk
fedora
ubuntu_linux
leap
|
WebKitGTK and WPE WebKit prior to version 2.24.1 are vulnerable to address bar spoofing upon certain JavaScript redirections. An attacker could cause malicious web content to be displayed as if for a…
|
NVD-CWE-noinfo
|
CVE-2019-6251
|
2024-11-21 13:46 |
2019-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
218832
|
8.8 |
HIGH
Network
|
hucart
|
hucart
|
An issue was discovered in HuCart v5.7.4. There is a CSRF vulnerability that can add an admin account via /adminsys/index.php?load=admins&act=edit_info&act_type=add.
|
CWE-352
Origin Validation Error
|
CVE-2019-6249
|
2024-11-21 13:46 |
2019-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
218833
|
6.1 |
MEDIUM
Network
|
citysearch_\/_hotfrog_\/_gelbeseiten_clone_script_project
|
citysearch_\/_hotfrog_\/_gelbeseiten_clone_script
|
PHP Scripts Mall Citysearch / Hotfrog / Gelbeseiten Clone Script 2.0.1 has Reflected XSS via the srch parameter, as demonstrated by restaurants-details.php.
|
CWE-79
Cross-site Scripting
|
CVE-2019-6248
|
2024-11-21 13:46 |
2019-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
218834
|
8.8 |
HIGH
Network
|
svgpp
antigrain
|
svgpp
agg
|
An issue was discovered in Anti-Grain Geometry (AGG) 2.4 as used in SVG++ (aka svgpp) 1.2.3. A heap-based buffer overflow bug in svgpp_agg_render may lead to code execution. In the render_scanlines_a…
|
CWE-787
Out-of-bounds Write
|
CVE-2019-6247
|
2024-11-21 13:46 |
2019-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
218835
|
9.8 |
CRITICAL
Network
|
svgpp
|
svgpp
|
An issue was discovered in SVG++ (aka svgpp) 1.2.3. After calling the gil::get_color function in Generic Image Library in Boost, the return code is used as an address, leading to an Access Violation …
|
CWE-125
Out-of-bounds Read
|
CVE-2019-6246
|
2024-11-21 13:46 |
2019-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
218836
|
8.8 |
HIGH
Network
|
svgpp
antigrain
debian
|
svgpp
agg
debian_linux
|
An issue was discovered in Anti-Grain Geometry (AGG) 2.4 as used in SVG++ (aka svgpp) 1.2.3. In the function agg::cell_aa::not_equal, dx is assigned to (x2 - x1). If dx >= dx_limit, which is (16384 <…
|
CWE-787
Out-of-bounds Write
|
CVE-2019-6245
|
2024-11-21 13:46 |
2019-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
218837
|
8.8 |
HIGH
Network
|
usualtool
|
usualtoolcms
|
An issue was discovered in UsualToolCMS 8.0. cmsadmin/a_sqlbackx.php?t=sql allows CSRF attacks that can execute SQL statements, and consequently execute arbitrary PHP code by writing that code into a…
|
CWE-352
Origin Validation Error
|
CVE-2019-6244
|
2024-11-21 13:46 |
2019-01-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
218838
|
6.1 |
MEDIUM
Network
|
frog_cms_project
|
frog_cms
|
Frog CMS 0.9.5 allows XSS via the forgot password page (aka the /admin/?/login/forgot URI).
|
CWE-79
Cross-site Scripting
|
CVE-2019-6243
|
2024-11-21 13:46 |
2019-01-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
218839
|
7.5 |
HIGH
Network
|
mz-automation
|
libiec61850
|
An issue has been found in libIEC61850 v1.3.1. Memory_malloc and Memory_calloc in hal/memory/lib_memory.c have memory leaks when called from mms/iso_mms/common/mms_value.c, server/mms_mapping/mms_map…
|
CWE-401
Missing Release of Memory after Effective Lifetime
|
CVE-2019-6138
|
2024-11-21 13:46 |
2019-01-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
218840
|
7.5 |
HIGH
Network
|
mz-automation
|
lib60870
|
An issue was discovered in lib60870 2.1.1. LinkLayer_setAddress in link_layer/link_layer.c has a NULL pointer dereference.
|
CWE-476
NULL Pointer Dereference
|
CVE-2019-6137
|
2024-11-21 13:46 |
2019-01-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
