|
221911
|
6.1 |
MEDIUM
Network
|
alfasado
|
powercms
|
Open redirect vulnerability in PowerCMS 5.12 and earlier (PowerCMS 5.x), 4.42 and earlier (PowerCMS 4.x), and 3.293 and earlier (PowerCMS 3.x) allows remote attackers to redirect users to arbitrary w…
|
CWE-601
Open Redirect
|
CVE-2019-6020
|
2024-11-21 13:45 |
2019-12-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221912
|
7.8 |
HIGH
Local
|
ipa
|
stamp_workbench
|
Untrusted search path vulnerability in STAMP Workbench installer all versions allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.
|
CWE-426
Untrusted Search Path
|
CVE-2019-6019
|
2024-11-21 13:45 |
2019-12-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221913
|
6.1 |
MEDIUM
Network
|
netcommons
|
netcommons
|
Cross-site scripting vulnerability in NetCommons 3.2.2 and earlier (NetCommons3.x) allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2019-6018
|
2024-11-21 13:45 |
2019-12-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221914
|
5.3 |
MEDIUM
Network
|
remise
|
payment_module
|
REMISE Payment Module (2.11, 2.12 and 2.13) version 3.0.12 and earlier allow remote attackers to [Disclosed_Information_type] via unspecified vectors.
|
NVD-CWE-noinfo
|
CVE-2019-6017
|
2024-11-21 13:45 |
2019-12-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221915
|
6.1 |
MEDIUM
Network
|
remise
|
payment_module
|
Cross-site scripting vulnerability in REMISE Payment Module (2.11, 2.12 and 2.13) version 3.0.12 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2019-6016
|
2024-11-21 13:45 |
2019-12-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221916
|
8.8 |
HIGH
Adjacent
|
dlink
|
dba-1510p_firmware
|
DBA-1510P firmware 1.70b009 and earlier allows an attacker to execute arbitrary OS commands via Web User Interface.
|
CWE-78
OS Command
|
CVE-2019-6014
|
2024-11-21 13:45 |
2019-12-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221917
|
6.6 |
MEDIUM
Physics
|
dlink
|
dba-1510p_firmware
|
DBA-1510P firmware 1.70b009 and earlier allows authenticated attackers to execute arbitrary OS commands via Command Line Interface (CLI).
|
CWE-78
OS Command
|
CVE-2019-6013
|
2024-11-21 13:45 |
2019-12-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221918
|
7.2 |
HIGH
Network
|
tms-outsource
|
wpdatatables_lite
|
SQL injection vulnerability in the wpDataTables Lite Version 2.0.11 and earlier allows remote authenticated attackers to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2019-6012
|
2024-11-21 13:45 |
2019-12-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221919
|
6.1 |
MEDIUM
Network
|
tms-outsource
|
wpdatatables_lite
|
Cross-site scripting vulnerability in wpDataTables Lite Version 2.0.11 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2019-6011
|
2024-11-21 13:45 |
2019-12-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
221920
|
7.8 |
HIGH
Local
|
yokogawa
|
exarqe
exasmoc
insightsuiteae
ga10
exaquantum\/batch
exaquantum
exaplog
exaopc
|
An unquoted search path vulnerability in Multiple Yokogawa products for Windows (Exaopc (R1.01.00 ? R3.77.00), Exaplog (R1.10.00 ? R3.40.00), Exaquantum (R1.10.00 ? R3.02.00 and R3.15.00), Exaquantum…
|
CWE-428
Unquoted Search Path or Element
|
CVE-2019-6008
|
2024-11-21 13:45 |
2019-12-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
