|
223601
|
7.5 |
HIGH
Network
|
huawei
|
ar120-s_firmware
ar1200_firmware
ar1200-s_firmware
ar150_firmware
ar150-s_firmware
ar160_firmware
ar200_firmware
ar200-s_firmware
ar2200_firmware
ar2200-s_firmware
ar320…
|
The SIP module of some Huawei products have a denial of service (DoS) vulnerability. A remote attacker could exploit these three vulnerabilities by sending the specially crafted messages to the affec…
|
CWE-119
CWE-20
Incorrect Access of Indexable Resource ('Range Error')
Improper Input Validation
|
CVE-2019-19415
|
2024-11-21 13:34 |
2020-07-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223602
|
8.8 |
HIGH
Adjacent
|
commax
|
cdp-1020mb_firmware
|
A Vulnerability in the firmware of COMMAX WallPad(CDP-1020MB) allow an unauthenticated adjacent attacker to execute arbitrary code, because of a using the old version of MySQL.
|
NVD-CWE-noinfo
|
CVE-2019-19163
|
2024-11-21 13:34 |
2020-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223603
|
7.2 |
HIGH
Network
|
cymiinstaller322_activex_project
|
cymiinstaller322_activex
|
CyMiInstaller322 ActiveX which runs MIPLATFORM downloads files required to run applications. A vulnerability in downloading files by CyMiInstaller322 ActiveX caused by an attacker to download randoml…
|
CWE-426
Untrusted Search Path
|
CVE-2019-19161
|
2024-11-21 13:34 |
2020-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223604
|
8.8 |
HIGH
Network
|
cabsoftware
|
reportexpress_proplus
|
Reportexpress ProPlus contains a vulnerability that could allow an arbitrary code execution by inserted VBscript into the configure file(rxp).
|
CWE-345
Insufficient Verification of Data Authenticity
|
CVE-2019-19160
|
2024-11-21 13:34 |
2020-06-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223605
|
7.5 |
HIGH
Network
|
tendacn
|
pa6_firmware
|
Tenda PA6 Wi-Fi Powerline extender 1.0.1.21 is vulnerable to a denial of service, caused by an error in the "homeplugd" process. By sending a specially crafted UDP packet, an attacker could exploit t…
|
CWE-835
Loop with Unreachable Exit Condition ('Infinite Loop')
|
CVE-2019-19506
|
2024-11-21 13:34 |
2020-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223606
|
8.8 |
HIGH
Network
|
tendacn
|
pa6_firmware
|
Tenda PA6 Wi-Fi Powerline extender 1.0.1.21 is vulnerable to a stack-based buffer overflow, caused by improper bounds checking by the "Wireless" section in the web-UI. By sending a specially crafted …
|
CWE-787
Out-of-bounds Write
|
CVE-2019-19505
|
2024-11-21 13:34 |
2020-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223607
|
6.1 |
MEDIUM
Network
|
gvectors
|
wpforo
|
The wpForo plugin 1.6.5 for WordPress allows XSS involving the wpf-dw-td-value class of dashboard.php.
|
CWE-79
Cross-site Scripting
|
CVE-2019-19112
|
2024-11-21 13:34 |
2020-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223608
|
6.1 |
MEDIUM
Network
|
gvectors
|
wpforo
|
The wpForo plugin 1.6.5 for WordPress allows XSS via the wp-admin/admin.php?page=wpforo-phrases langid parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2019-19111
|
2024-11-21 13:34 |
2020-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223609
|
4.8 |
MEDIUM
Network
|
gvectors
|
wpforo
|
The wpForo plugin 1.6.5 for WordPress allows XSS via the wp-admin/admin.php?page=wpforo-phrases s parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2019-19110
|
2024-11-21 13:34 |
2020-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
223610
|
8.8 |
HIGH
Network
|
gvectors
|
wpforo
|
The wpForo plugin 1.6.5 for WordPress allows wp-admin/admin.php?page=wpforo-usergroups CSRF.
|
CWE-352
Origin Validation Error
|
CVE-2019-19109
|
2024-11-21 13:34 |
2020-06-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
