|
221571
|
4.7 |
MEDIUM
Network
|
oracle
|
e-business_suite
|
Vulnerability in the Oracle CRM Technical Foundation component of Oracle E-Business Suite (subcomponent: Messages). Supported versions that are affected are 12.1.3, 12.2.3, 12.2.4, 12.2.5, 12.2.6, 12…
|
NVD-CWE-noinfo
|
CVE-2019-2396
|
2024-11-21 13:40 |
2019-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221572
|
5.4 |
MEDIUM
Network
|
oracle
|
weblogic_server
|
Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: WLS - Web Services). The supported version that is affected is 10.3.6.0. Easily exploitable vulnerabil…
|
NVD-CWE-noinfo
|
CVE-2019-2395
|
2024-11-21 13:40 |
2019-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221573
|
7.5 |
HIGH
Network
|
sage
|
sage_frp_1000
|
A path traversal vulnerability exists in Sage FRP 1000 before November 2019. This allows remote unauthenticated attackers to access files outside of the web tree via a crafted URL.
|
CWE-22
Path Traversal
|
CVE-2019-25053
|
2024-11-21 13:39 |
2023-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221574
|
5.3 |
MEDIUM
Network
|
afkmods
|
qsf-portal
|
A vulnerability classified as critical was found in Arthmoor QSF-Portal. This vulnerability affects unknown code of the file index.php. The manipulation of the argument a leads to path traversal. The…
|
CWE-22
Path Traversal
|
CVE-2019-25099
|
2024-11-21 13:39 |
2023-01-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221575
|
7.5 |
HIGH
Network
|
goa.design
|
goa
|
Improper path sanitization in github.com/goadesign/goa before v3.0.9, v2.0.10, or v1.4.3 allow remote attackers to read files outside of the intended directory.
|
CWE-22
Path Traversal
|
CVE-2019-25073
|
2024-11-21 13:39 |
2022-12-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221576
|
5.4 |
MEDIUM
Network
|
oxidized_web_project
|
oxidized_web
|
A vulnerability was found in ytti Oxidized Web. It has been classified as problematic. Affected is an unknown function of the file lib/oxidized/web/views/conf_search.haml. The manipulation of the arg…
|
-
|
CVE-2019-25088
|
2024-11-21 13:39 |
2022-12-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221577
|
4.3 |
MEDIUM
Network
|
ethex
|
ethex_contracts
|
A vulnerability was found in Ethex Contracts. It has been classified as critical. This affects an unknown part of the file EthexJackpot.sol of the component Monthly Jackpot Handler. The manipulation …
|
-
|
CVE-2019-25157
|
2024-11-21 13:39 |
2023-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221578
|
6.1 |
MEDIUM
Network
|
dstar2018
|
agency
|
A vulnerability classified as problematic was found in dstar2018 Agency up to 61. Affected by this vulnerability is an unknown functionality of the file search.php. The manipulation of the argument Q…
|
-
|
CVE-2019-25156
|
2024-11-21 13:39 |
2023-11-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221579
|
6.1 |
MEDIUM
Network
|
cure53
|
dompurify
|
DOMPurify before 1.0.11 allows reverse tabnabbing in demos/hooks-target-blank-demo.html because links lack a 'rel="noopener noreferrer"' attribute.
|
CWE-601
Open Redirect
|
CVE-2019-25155
|
2024-11-21 13:39 |
2023-11-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221580
|
10.0 |
CRITICAL
Network
|
mozilla
|
firefox
|
A compromised child process could have injected XBL Bindings into privileged CSS rules, resulting in arbitrary code execution and a sandbox escape. This vulnerability affects Firefox < 70.
|
NVD-CWE-noinfo
|
CVE-2019-25136
|
2024-11-21 13:39 |
2023-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
