Vulnerabilities (CVE)

CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2017-18484 1 Elementalpath 2 Cognitoys Dino, Cognitoys Dino Firmware 2019-08-15 4.3 MEDIUM 6.1 MEDIUM
Cognitoys Dino devices allow XSS via the SSID.
CVE-2019-14769 1 Backdropcms 1 Backdrop 2019-08-15 4.3 MEDIUM 6.1 MEDIUM
Backdrop CMS 1.12.x before 1.12.8 and 1.13.x before 1.13.3 doesn't sufficiently filter output when displaying certain block labels created by administrators. An attacker could potentially craft a specialized label, then have an administrator execute scripting when administering a layout. (This issue is mitigated by the attacker needing permission to create custom blocks on the site, which is typically an administrative permission.)
CVE-2019-14731 1 Cnezsoft 1 Zentao 2019-08-15 3.5 LOW 5.4 MEDIUM
An issue was discovered in ZenTao 11.5.1. There is an XSS (stored) vulnerability that leads to the capture of other people's cookies via the Rich Text Box.
CVE-2016-10865 1 23systems 1 Lightbox Plus Colorbox 2019-08-15 4.3 MEDIUM 6.1 MEDIUM
The Lightbox Plus Colorbox plugin through 2.7.2 for WordPress has cross-site request forgery (CSRF) via wp-admin/admin.php?page=lightboxplus, as demonstrated by resultant width XSS.
CVE-2019-14785 1 Codepeople 1 Cp Contact Form With Paypal 2019-08-15 3.5 LOW 5.4 MEDIUM
The "CP Contact Form with PayPal" plugin before 1.2.99 for WordPress has XSS in the publishing wizard via the wp-admin/admin.php?page=cp_contact_form_paypal.php&pwizard=1 cp_contactformpp_id parameter.
CVE-2019-14792 1 Codecabin 1 Wp Google Maps 2019-08-14 3.5 LOW 5.4 MEDIUM
The WP Google Maps plugin before 7.11.35 for WordPress allows XSS via the wp-admin/ rectangle_name or rectangle_opacity parameter.
CVE-2019-14946 1 Ultimatemember 1 Ultimate Member 2019-08-14 3.5 LOW 5.4 MEDIUM
The ultimate-member plugin before 2.0.52 for WordPress has XSS related to UM Roles create and edit operations.
CVE-2019-14945 1 Ultimatemember 1 Ultimate Member 2019-08-14 3.5 LOW 5.4 MEDIUM
The ultimate-member plugin before 2.0.54 for WordPress has XSS.
CVE-2019-14947 1 Ultimatemember 1 Ultimate Member 2019-08-14 3.5 LOW 5.4 MEDIUM
The ultimate-member plugin before 2.0.52 for WordPress has XSS during an account upgrade.
CVE-2019-14791 1 Codepeople 1 Appointment Booking Calendar 2019-08-14 4.3 MEDIUM 6.1 MEDIUM
The Appointment Booking Calendar plugin 1.3.18 for WordPress allows XSS via the wp-admin/admin-post.php editionarea parameter.
CVE-2017-18452 1 Cpanel 1 Cpanel 2019-08-14 4.6 MEDIUM 6.7 MEDIUM
cPanel before 64.0.21 allows code execution via Rails configuration files (SEC-259).
CVE-2017-18483 1 Annke 2 Sp1, Sp1 Firmware 2019-08-14 4.3 MEDIUM 6.1 MEDIUM
ANNKE SP1 HD wireless camera 3.4.1.1604071109 devices allow XSS via a crafted SSID.
CVE-2019-14748 1 Osticket 1 Osticket 2019-08-14 3.5 LOW 5.4 MEDIUM
An issue was discovered in osTicket before 1.10.7 and 1.12.x before 1.12.1. The Ticket creation form allows users to upload files along with queries. It was found that the file-upload functionality has fewer (or no) mitigations implemented for file content checks; also, the output is not handled properly, causing persistent XSS that leads to cookie stealing or malicious actions. For example, a non-agent user can upload a .html file, and Content-Disposition will be set to inline instead of attachment.
CVE-2017-18446 1 Cpanel 1 Cpanel 2019-08-14 6.5 MEDIUM 6.3 MEDIUM
cPanel before 64.0.21 allows file-read and file-write operations for demo accounts via the SourceIPCheck API (SEC-250).
CVE-2019-14750 1 Osticket 1 Osticket 2019-08-14 4.3 MEDIUM 6.1 MEDIUM
An issue was discovered in osTicket before 1.10.7 and 1.12.x before 1.12.1. Stored XSS exists in setup/install.php. It was observed that no input sanitization was provided in the firstname and lastname fields of the application. The insertion of malicious queries in those fields leads to the execution of those queries. This can further lead to cookie stealing or other malicious actions.
CVE-2019-14805 1 Una 1 Una 2019-08-14 3.5 LOW 4.8 MEDIUM
studio/builder_menu.php?page=sets in UNA 10.0.0-RC1 allows XSS via the System Name field under Sets during set editing.
CVE-2019-14804 1 Una 1 Una 2019-08-14 3.5 LOW 4.8 MEDIUM
studio/polyglot.php?page=etemplates in UNA 10.0.0-RC1 allows XSS via the System Name field under Emails during template editing.
CVE-2019-12950 1 Teampass 1 Teampass 2019-08-14 3.5 LOW 5.4 MEDIUM
An issue was discovered in TeamPass 2.1.27.35. From the sources/items.queries.php "Import items" feature, it is possible to load a crafted CSV file with an XSS payload.
CVE-2019-14798 1 10web 1 Photo Gallery 2019-08-14 4.0 MEDIUM 4.9 MEDIUM
The 10Web Photo Gallery plugin before 1.5.25 for WordPress has Authenticated Local File Inclusion via directory traversal in the wp-admin/admin-ajax.php?action=shortcode_bwg tagtext parameter.
CVE-2019-14797 1 10web 1 Photo Gallery 2019-08-14 3.5 LOW 5.4 MEDIUM
The 10Web Photo Gallery plugin before 1.5.23 for WordPress has authenticated stored XSS.
CVE-2019-14546 1 Espocrm 1 Espocrm 2019-08-14 3.5 LOW 5.4 MEDIUM
An issue was discovered in EspoCRM before 5.6.9. Stored XSS was executed on the Preference page as well as while sending an email when a malicious payload was inserted inside the Email Signature in the Preference page. The attacker could insert malicious JavaScript inside his email signature, which fires when the victim replies or forwards the mail, thus helping him steal victims' cookies (hence compromising their accounts).
CVE-2019-12143 1 Progress 1 Ipswitch Ws Ftp Server 2019-08-14 5.0 MEDIUM 5.3 MEDIUM
A Directory Traversal issue was discovered in SSHServerAPI.dll in Progress ipswitch WS_FTP Server 2018 before 8.6.1. An attacker can supply a string using special patterns via the SCP protocol to disclose WS_FTP usernames as well as filenames.
CVE-2019-9834 1 Netdata 1 Netdata 2019-08-14 4.3 MEDIUM 6.1 MEDIUM
** DISPUTED ** The Netdata web application through 1.13.0 allows remote attackers to inject their own malicious HTML code into an imported snapshot, aka HTML Injection. Successful exploitation will allow attacker-supplied HTML to run in the context of the affected browser, potentially allowing the attacker to steal authentication credentials or to control how the site is rendered to the user. NOTE: the vendor disputes the risk because there is a clear warning next to the button for importing a snapshot.
CVE-2019-13229 1 Deepin 1 Deepin Clone 2019-08-14 6.6 MEDIUM 5.5 MEDIUM
deepin-clone before 1.1.3 uses a fixed path /tmp/partclone.log in the Helper::getPartitionSizeInfo() function to write a log file as root, and follows symlinks there. An unprivileged user can prepare a symlink attack there to create or overwrite files in arbitrary file system locations. The content is not attacker controlled.
CVE-2019-14362 1 Openbravo 1 Openbravo Erp 2019-08-14 5.5 MEDIUM 5.4 MEDIUM
Openbravo ERP before 3.0PR19Q1.3 is affected by Directory Traversal. This vulnerability could allow remote authenticated attackers to replace a file on the server via the getAttachmentDirectoryForNewAttachment inpKey value.
CVE-2018-20349 1 Igraph 1 Igraph 2019-08-14 4.3 MEDIUM 6.5 MEDIUM
The igraph_i_strdiff function in igraph_trie.c in igraph through 0.7.1 has an NULL pointer dereference that allows attackers to cause a denial of service (application crash) via a crafted object.
CVE-2015-8553 2 Redhat, Xen 2 Enterprise Linux, Xen 2019-08-13 2.1 LOW 6.5 MEDIUM
Xen allows guest OS users to obtain sensitive information from uninitialized locations in host OS kernel memory by not enabling memory and I/O decoding control bits. NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-0777.
CVE-2018-20827 1 Atlassian 1 Jira 2019-08-13 3.5 LOW 5.4 MEDIUM
The activity stream gadget in Jira before version 7.13.1 allows remote attackers to inject arbitrary HTML or JavaScript via a cross site scripting (XSS) vulnerability in the country parameter.
CVE-2019-10933 1 Siemens 4 Spectrum Power 3, Spectrum Power 4, Spectrum Power 5 and 1 more 2019-08-13 4.3 MEDIUM 6.1 MEDIUM
A vulnerability has been identified in Spectrum Power 3 (Corporate User Interface) (All versions <= v3.11), Spectrum Power 4 (Corporate User Interface) (Version v4.75), Spectrum Power 5 (Corporate User Interface) (All versions < v5.50), Spectrum Power 7 (Corporate User Interface) (All versions <= v2.20). The web server could allow Cross-Site Scripting (XSS) attacks if unsuspecting users are tricked into accessing a malicious link. User interaction is required for a successful exploitation. The user does not need to be logged into the web interface in order for the exploitation to succeed.At the stage of publishing this security advisory no public exploitation is known.
CVE-2018-20169 3 Canonical, Debian, Linux 3 Ubuntu Linux, Debian Linux, Linux Kernel 2019-08-13 7.2 HIGH 6.8 MEDIUM
An issue was discovered in the Linux kernel before 4.19.9. The USB subsystem mishandles size checks during the reading of an extra descriptor, related to __usb_get_extra_descriptor in drivers/usb/core/usb.c.
CVE-2018-14615 1 Linux 1 Linux Kernel 2019-08-13 7.1 HIGH 5.5 MEDIUM
An issue was discovered in the Linux kernel through 4.17.10. There is a buffer overflow in truncate_inline_inode() in fs/f2fs/inline.c when umounting an f2fs image, because a length value may be negative.
CVE-2018-14617 3 Canonical, Debian, Linux 3 Ubuntu Linux, Debian Linux, Linux Kernel 2019-08-13 7.1 HIGH 5.5 MEDIUM
An issue was discovered in the Linux kernel through 4.17.10. There is a NULL pointer dereference and panic in hfsplus_lookup() in fs/hfsplus/dir.c when opening a file (that is purportedly a hard link) in an hfs+ filesystem that has malformed catalog data, and is mounted read-only without a metadata directory.
CVE-2018-13098 1 Linux 1 Linux Kernel 2019-08-13 4.3 MEDIUM 5.5 MEDIUM
An issue was discovered in fs/f2fs/inode.c in the Linux kernel through 4.17.3. A denial of service (slab out-of-bounds read and BUG) can occur for a modified f2fs filesystem image in which FI_EXTRA_ATTR is set in an inode.
CVE-2018-14609 3 Canonical, Debian, Linux 3 Ubuntu Linux, Debian Linux, Linux Kernel 2019-08-13 7.1 HIGH 5.5 MEDIUM
An issue was discovered in the Linux kernel through 4.17.10. There is an invalid pointer dereference in __del_reloc_root() in fs/btrfs/relocation.c when mounting a crafted btrfs image, related to removing reloc rb_trees when reloc control has not been initialized.
CVE-2019-14696 1 Open-school 1 Open-school 2019-08-13 4.3 MEDIUM 6.1 MEDIUM
Open-School 3.0, and Community Edition 2.3, allows XSS via the osv/index.php?r=students/guardians/create id parameter.
CVE-2016-10794 1 Cpanel 1 Cpanel 2019-08-13 4.0 MEDIUM 6.5 MEDIUM
cPanel before 59.9999.145 allows arbitrary file-read operations because of a multipart form processing error (SEC-154).
CVE-2016-10791 1 Cpanel 1 Cpanel 2019-08-13 5.0 MEDIUM 5.3 MEDIUM
cPanel before 60.0.15 does not ensure that system accounts lack a valid password, so that logins are impossible (CPANEL-9559).
CVE-2017-18402 1 Cpanel 1 Cpanel 2019-08-13 3.5 LOW 5.4 MEDIUM
cPanel before 68.0.15 allows stored XSS during a cpaddons moderated upgrade (SEC-336).
CVE-2017-18403 1 Cpanel 1 Cpanel 2019-08-13 6.5 MEDIUM 6.3 MEDIUM
cPanel before 68.0.15 allows code execution in the context of the nobody account via Mailman archives (SEC-337).
CVE-2017-18396 1 Cpanel 1 Cpanel 2019-08-13 4.9 MEDIUM 5.5 MEDIUM
cPanel before 68.0.15 allows arbitrary file-read operations via Exim vdomainaliases (SEC-329).
CVE-2019-11198 1 Sitecore 1 Cms 2019-08-13 4.3 MEDIUM 6.1 MEDIUM
Multiple cross-site scripting (XSS) vulnerabilities in Sitecore CMS 9.0.1 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) #300583 - List Manager Dashboard module, (2) #307638 - Campaign Creator module, (3) #316994 - Attributes field, (4) I#316995 - Icon Selection module, (5) #317000 - Latitude field, (6) #317000 - Longitude field, (7) #317017 - UploadPackage2.aspx module, (8) #317072 - Context menu, or (9) I#317073 - Insert from Template dialog.
CVE-2018-20945 1 Cpanel 1 Cpanel 2019-08-13 7.9 HIGH 5.7 MEDIUM
bin/csvprocess in cPanel before 68.0.27 allows insecure file operations (SEC-354).
CVE-2016-10798 1 Cpanel 1 Cpanel 2019-08-13 4.9 MEDIUM 6.8 MEDIUM
cPanel before 58.0.4 allows a file-ownership change (to nobody) via rearrangeacct (SEC-134).
CVE-2016-10797 1 Cpanel 1 Cpanel 2019-08-13 4.0 MEDIUM 4.3 MEDIUM
cPanel before 58.0.4 allows WHM "Purchase and Install an SSL Certificate" page visitors to list all server domains (SEC-133).
CVE-2019-14772 1 Verdaccio 1 Verdaccio 2019-08-13 4.3 MEDIUM 6.1 MEDIUM
verdaccio before 3.12.0 allows XSS.
CVE-2016-10799 1 Cpanel 1 Cpanel 2019-08-13 2.1 LOW 5.5 MEDIUM
cPanel before 58.0.4 does not set the Pear tmp directory during a PHP installation (SEC-137).
CVE-2016-10838 1 Cpanel 1 Cpanel 2019-08-13 6.8 MEDIUM 6.5 MEDIUM
cPanel before 11.54.0.4 allows arbitrary file-read operations via the bin/fmq script (SEC-70).
CVE-2016-10836 1 Cpanel 1 Cpanel 2019-08-13 4.0 MEDIUM 6.5 MEDIUM
cPanel before 55.9999.141 allows arbitrary file-read operations during authentication with caldav (SEC-108).
CVE-2019-14364 1 Icegram 1 Email Subscribers \& Newsletters 2019-08-13 4.3 MEDIUM 6.1 MEDIUM
An XSS vulnerability in the "Email Subscribers & Newsletters" plugin 4.1.6 for WordPress allows an attacker to inject malicious JavaScript code through a publicly available subscription form using the esfpx_name wp-admin/admin-ajax.php POST parameter.
CVE-2017-18405 1 Cpanel 1 Cpanel 2019-08-12 2.1 LOW 5.5 MEDIUM
cPanel before 68.0.15 allows arbitrary file-read operations because of the backup .htaccess modification logic (SEC-345).