|
221891
|
6.1 |
MEDIUM
Network
|
anglers-net
|
cgi_an-anlyzer
|
DOM-based cross-site scripting vulnerability in Access analysis CGI An-Analyzer released in 2019 June 24 and earlier allows remote attackers to inject arbitrary web script or HTML via the Analysis Ob…
|
CWE-79
Cross-site Scripting
|
CVE-2019-5989
|
2024-11-21 13:45 |
2020-01-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221892
|
6.1 |
MEDIUM
Network
|
anglers-net
|
cgi_an-anlyzer
|
Stored cross-site scripting vulnerability in Access analysis CGI An-Analyzer released in 2019 June 24 and earlier allows remote attackers to inject arbitrary web script or HTML via the Management Pag…
|
CWE-79
Cross-site Scripting
|
CVE-2019-5988
|
2024-11-21 13:45 |
2020-01-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221893
|
8.8 |
HIGH
Network
|
anglers-net
|
cgi_an-anlyzer
|
Access analysis CGI An-Analyzer released in 2019 June 24 and earlier allows remote authenticated attackers to execute arbitrary OS commands via the Management Page.
|
CWE-78
OS Command
|
CVE-2019-5987
|
2024-11-21 13:45 |
2020-01-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221894
|
6.5 |
MEDIUM
Network
|
google
opensuse
|
chrome
leap
backports_sle
|
Out of bounds access in SwiftShader in Google Chrome prior to 73.0.3683.75 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
|
CWE-787
Out-of-bounds Write
|
CVE-2019-5846
|
2024-11-21 13:45 |
2020-01-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221895
|
6.5 |
MEDIUM
Network
|
google
opensuse
|
chrome
leap
backports_sle
|
Out of bounds access in SwiftShader in Google Chrome prior to 73.0.3683.75 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
|
CWE-787
Out-of-bounds Write
|
CVE-2019-5845
|
2024-11-21 13:45 |
2020-01-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221896
|
6.5 |
MEDIUM
Network
|
google
opensuse
|
chrome
leap
backports_sle
|
Out of bounds access in SwiftShader in Google Chrome prior to 73.0.3683.75 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
|
CWE-787
Out-of-bounds Write
|
CVE-2019-5844
|
2024-11-21 13:45 |
2020-01-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221897
|
6.1 |
MEDIUM
Network
|
yahoo
|
athenz
|
Open redirect vulnerability in Athenz v1.8.24 and earlier allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a specially crafted page.
|
CWE-601
Open Redirect
|
CVE-2019-6035
|
2024-11-21 13:45 |
2019-12-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221898
|
6.1 |
MEDIUM
Network
|
appleple
|
a-blog_cms
|
a-blog cms versions prior to Ver.2.10.23 (Ver.2.10.x), Ver.2.9.26 (Ver.2.9.x), and Ver.2.8.64 (Ver.2.8.x) allows arbitrary scripts to be executed in the context of the application due to unspecified …
|
CWE-74
Injection
|
CVE-2019-6034
|
2024-11-21 13:45 |
2019-12-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221899
|
6.1 |
MEDIUM
Network
|
appleple
|
a-blog_cms
|
Cross-site scripting vulnerability in a-blog cms versions prior to Ver.2.10.23 (Ver.2.10.x), Ver.2.9.26 (Ver.2.9.x), and Ver.2.8.64 (Ver.2.8.x) allows remote attackers to inject arbitrary web script …
|
CWE-79
Cross-site Scripting
|
CVE-2019-6033
|
2024-11-21 13:45 |
2019-12-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221900
|
7.4 |
HIGH
Network
|
ntv
|
news_24
|
The NTV News24 prior to Ver.3.0.0 does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certifi…
|
CWE-295
Improper Certificate Validation
|
CVE-2019-6032
|
2024-11-21 13:45 |
2019-12-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
