Vulnerabilities (CVE)

CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2012-1495 1 Webcalendar Project 1 Webcalendar 2020-01-29 7.5 HIGH 9.8 CRITICAL
install/index.php in WebCalendar before 1.2.5 allows remote attackers to execute arbitrary code via the form_single_user_login parameter.
CVE-2018-5376 1 Discuz 1 Discuzx 2020-01-29 4.3 MEDIUM 6.1 MEDIUM
Discuz! DiscuzX X3.4 has XSS via the include\spacecp\spacecp_upload.php op parameter.
CVE-2012-6448 1 Cpanel 1 Webhost Manager 2020-01-29 4.3 MEDIUM 6.1 MEDIUM
Cross-site Scripting (XSS) in cPanel WebHost Manager (WHM) 11.34.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
CVE-2013-4770 1 Eucalyptus 1 Eucalyptus Management Console 2020-01-29 4.3 MEDIUM 6.1 MEDIUM
Cross-site scripting (XSS) vulnerability in Eucalyptus Management Console (EMC) 4.0.x before 4.0.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
CVE-2020-8090 1 A1 2 Wlan Box Adb Vv2220, Wlan Box Adb Vv2220 Firmware 2020-01-29 3.5 LOW 4.8 MEDIUM
The Username field in the Storage Service settings of A1 WLAN Box ADB VV2220v2 devices allows stored XSS (after a successful Administrator login).
CVE-2013-2474 1 Aws-dms 1 Aws Xms 2020-01-29 5.0 MEDIUM 7.5 HIGH
Directory traversal vulnerability in AWS XMS 2.5 allows remote attackers to view arbitrary files via the 'what' parameter.
CVE-2020-8091 1 Typo3 1 Typo3 2020-01-29 4.3 MEDIUM 6.1 MEDIUM
svg.swf in TYPO3 6.2.0 to 6.2.38 ELTS and 7.0.0 to 7.1.0 could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack on a targeted system. This may be at a contrib/websvg/svg.swf pathname.
CVE-2014-8741 1 Lexmark 1 Markvision Enterprise 2020-01-29 10.0 HIGH 9.8 CRITICAL
Directory traversal vulnerability in the GfdFileUploadServerlet servlet in Lexmark MarkVision Enterprise before 2.1 allows remote attackers to write to arbitrary files via unspecified vectors.
CVE-2014-9627 1 Videolan 1 Vlc Media Player 2020-01-29 6.8 MEDIUM 7.8 HIGH
The MP4_ReadBox_String function in modules/demux/mp4/libmp4.c in VideoLAN VLC media player before 2.1.6 performs an incorrect cast operation from a 64-bit integer to a 32-bit integer, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via a large box size.
CVE-2012-5699 1 Babygekko 1 Babygekko 2020-01-29 7.5 HIGH 9.8 CRITICAL
BabyGekko before 1.2.4 allows PHP file inclusion.
CVE-2012-5698 1 Babygekko 1 Babygekko 2020-01-29 6.8 MEDIUM 8.8 HIGH
BabyGekko before 1.2.4 has SQL injection.
CVE-2014-8742 1 Lexmark 1 Markvision Enterprise 2020-01-29 7.8 HIGH 7.5 HIGH
Directory traversal vulnerability in the ReportDownloadServlet servlet in Lexmark MarkVision Enterprise before 2.1 allows remote attackers to read arbitrary files via unspecified vectors.
CVE-2019-10779 1 Gchq 1 Stroom 2020-01-29 4.3 MEDIUM 6.1 MEDIUM
All versions of stroom:stroom-app before 5.5.12 and all versions of the 6.0.0 branch before 6.0.25 are affected by Cross-site Scripting. An attacker website is able to load the Stroom UI into a hidden iframe. Using that iframe, the attacker site can issue commands to the Stroom UI via an XSS vulnerability to take full control of the Stroom UI on behalf of the logged-in user.
CVE-2019-17651 1 Fortinet 1 Fortisiem 2020-01-29 3.5 LOW 5.4 MEDIUM
An Improper Neutralization of Input vulnerability in the description and title parameters of a Device Maintenance Schedule in FortiSIEM version 5.2.5 and below may allow a remote authenticated attacker to perform a Stored Cross Site Scripting attack (XSS) by injecting malicious JavaScript code into the description field of a Device Maintenance schedule.
CVE-2020-1933 2 Apache, Mozilla 2 Nifi, Firefox 2020-01-29 4.3 MEDIUM 6.1 MEDIUM
A XSS vulnerability was found in Apache NiFi 1.0.0 to 1.10.0. Malicious scripts could be injected to the UI through action by an unaware authenticated user in Firefox. Did not appear to occur in other browsers.
CVE-2014-9626 1 Videolan 1 Vlc Media Player 2020-01-29 6.8 MEDIUM 7.8 HIGH
Integer underflow in the MP4_ReadBox_String function in modules/demux/mp4/libmp4.c in VideoLAN VLC media player before 2.1.6 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a box size less than 7.
CVE-2019-15607 1 Nodered 1 Node-red 2020-01-29 3.5 LOW 5.4 MEDIUM
A stored XSS vulnerability is present within node-red (version: <= 0.20.7) npm package, which is a visual tool for wiring the Internet of Things. This issue will allow the attacker to steal session cookies, deface web applications, etc.
CVE-2020-5224 1 Django-user-sessions Project 1 Django-user-sessions 2020-01-29 4.0 MEDIUM 8.8 HIGH
In Django User Sessions (django-user-sessions) before 1.7.1, the views provided allow users to terminate specific sessions. The session key is used to identify sessions, and thus included in the rendered HTML. In itself this is not a problem. However if the website has an XSS vulnerability, the session key could be extracted by the attacker and a session takeover could happen.
CVE-2019-15989 1 Cisco 28 Asr 9000v, Asr 9001, Asr 9006 and 25 more 2020-01-29 5.0 MEDIUM 8.6 HIGH
A vulnerability in the implementation of the Border Gateway Protocol (BGP) functionality in Cisco IOS XR Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition. The vulnerability is due to incorrect processing of a BGP update message that contains a specific BGP attribute. An attacker could exploit this vulnerability by sending BGP update messages that include a specific, malformed attribute to be processed by an affected system. A successful exploit could allow the attacker to cause the BGP process to restart unexpectedly, resulting in a DoS condition. The Cisco implementation of BGP accepts incoming BGP traffic only from explicitly defined peers. To exploit this vulnerability, the malicious BGP update message would need to come from a configured, valid BGP peer or would need to be injected by the attacker into the victim&rsquo;s BGP network on an existing, valid TCP connection to a BGP peer.
CVE-2019-20429 1 Lustre 1 Lustre 2020-01-29 7.8 HIGH 7.5 HIGH
In the Lustre file system before 2.12.3, the ptlrpc module has an out-of-bounds read and panic (via a modified lm_bufcount field) due to the lack of validation for specific fields of packets sent by a client. This is caused by interaction between sptlrpc_svc_unwrap_request and lustre_msg_hdr_size_v2.
CVE-2019-20425 1 Lustre 1 Lustre 2020-01-29 7.8 HIGH 7.5 HIGH
In the Lustre file system before 2.12.3, the ptlrpc module has an out-of-bounds access and panic due to the lack of validation for specific fields of packets sent by a client. In the function lustre_msg_string, there is no validation of a certain length value derived from lustre_msg_buflen_v2.
CVE-2019-20428 1 Lustre 1 Lustre 2020-01-29 7.8 HIGH 7.5 HIGH
In the Lustre file system before 2.12.3, the ptlrpc module has an out-of-bounds read and panic due to the lack of validation for specific fields of packets sent by a client. The ldl_request_cancel function mishandles a large lock_count parameter.
CVE-2012-5384 1 Webcalendar Project 1 Webcalendar 2020-01-29 4.3 MEDIUM N/A
Multiple cross-site scripting (XSS) vulnerabilities in Craig Knudsen WebCalendar allow remote attackers to inject arbitrary web script or HTML via the (1) $name or (2) $description variables in edit_entry_handler.php, or (3) $url, (4) $tempfullname, or (5) $ext_users[] variables in view_entry.php, different vectors than CVE-2012-0846.
CVE-2012-5385 1 Webcalendar Project 1 Webcalendar 2020-01-29 7.5 HIGH N/A
install/index.php in Craig Knudsen WebCalendar before 1.2.5 allows remote attackers to modify settings.php and possibly execute arbitrary code via vectors related to the user theme preference.
CVE-2013-1421 1 Webcalendar Project 1 Webcalendar 2020-01-29 4.3 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in Craig Knudsen WebCalendar before 1.2.5, 1.2.6, and other versions before 1.2.7 allows remote attackers to inject arbitrary web script or HTML via the Category Name field to category.php.
CVE-2019-20431 1 Lustre 1 Lustre 2020-01-29 7.8 HIGH 7.5 HIGH
In the Lustre file system before 2.12.3, the ptlrpc module has an osd_map_remote_to_local out-of-bounds access and panic due to the lack of validation for specific fields of packets sent by a client. osd_bufs_get in the osd_ldiskfs module does not validate a certain length value.
CVE-2014-9482 1 Libdwarf Project 1 Libdwarf 2020-01-29 4.3 MEDIUM 6.5 MEDIUM
Use-after-free vulnerability in dwarfdump in libdwarf 20130126 through 20140805 might allow remote attackers to cause a denial of service (program crash) via a crafted ELF file.
CVE-2013-6056 1 Alienvault 1 Open Source Security Information Management 2020-01-29 7.8 HIGH 7.5 HIGH
OSSIM before 4.3.3.1 has tele_compress.php path traversal vulnerability
CVE-2020-7952 1 Valvesoftware 1 Dota 2 2020-01-29 6.8 MEDIUM 7.8 HIGH
rendersystemdx9.dll in Valve Dota 2 before 7.23f allows remote attackers to achieve code execution or denial of service by creating a gaming server and inviting a victim to this server, because a crafted map is affected by memory corruption.
CVE-2013-1744 1 Iris Citations Management Tool Project 1 Iris Citations Management Tool 2020-01-29 7.5 HIGH 9.8 CRITICAL
IRIS citations management tool through 1.3 allows remote attackers to execute arbitrary commands.
CVE-2019-16024 1 Cisco 2 Crosswork Change Automation, Crosswork Network Automation 2020-01-29 4.3 MEDIUM 6.1 MEDIUM
A vulnerability in the web-based management interface of Cisco Crosswork Change Automation could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web-based management interface of an affected system. The vulnerability is due to insufficient validation of user-supplied input by the web-based management interface of an affected system. An attacker could exploit this vulnerability by persuading a user to click a crafted link. A successful exploit could allow the attacker to execute arbitrary script code in the context of the affected interface or access sensitive, browser-based information.
CVE-2019-16022 1 Cisco 28 Asr 9000v, Asr 9001, Asr 9006 and 25 more 2020-01-29 5.0 MEDIUM 8.6 HIGH
Multiple vulnerabilities in the implementation of Border Gateway Protocol (BGP) Ethernet VPN (EVPN) functionality in Cisco IOS XR Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition. The vulnerabilities are due to incorrect processing of BGP update messages that contain crafted EVPN attributes. An attacker could exploit these vulnerabilities by sending BGP EVPN update messages with malformed attributes to be processed by an affected system. A successful exploit could allow the attacker to cause the BGP process to restart unexpectedly, resulting in a DoS condition. The Cisco implementation of BGP accepts incoming BGP traffic only from explicitly defined peers. To exploit these vulnerabilities, the malicious BGP update message would need to come from a configured, valid BGP peer, or would need to be injected by the attacker into the victim's BGP network on an existing, valid TCP connection to a BGP peer.
CVE-2019-16020 1 Cisco 28 Asr 9000v, Asr 9001, Asr 9006 and 25 more 2020-01-29 5.0 MEDIUM 8.6 HIGH
Multiple vulnerabilities in the implementation of Border Gateway Protocol (BGP) Ethernet VPN (EVPN) functionality in Cisco IOS XR Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition. The vulnerabilities are due to incorrect processing of BGP update messages that contain crafted EVPN attributes. An attacker could exploit these vulnerabilities by sending BGP EVPN update messages with malformed attributes to be processed by an affected system. A successful exploit could allow the attacker to cause the BGP process to restart unexpectedly, resulting in a DoS condition. The Cisco implementation of BGP accepts incoming BGP traffic only from explicitly defined peers. To exploit these vulnerabilities, the malicious BGP update message would need to come from a configured, valid BGP peer, or would need to be injected by the attacker into the victim's BGP network on an existing, valid TCP connection to a BGP peer.
CVE-2013-0137 2 Digital Alert Systems, Monroe Electronics 2 Dasdec Eas, R189 One-net Eas 2020-01-29 10.0 HIGH N/A
The default configuration of the Digital Alert Systems DASDEC EAS device before 2.0-2 and the Monroe Electronics R189 One-Net EAS device before 2.0-2 contains a known SSH private key, which makes it easier for remote attackers to obtain root access, and spoof alerts, via an SSH session.
CVE-2014-9628 1 Videolan 1 Vlc Media Player 2020-01-29 6.8 MEDIUM 7.8 HIGH
The MP4_ReadBox_String function in modules/demux/mp4/libmp4.c in VideoLAN VLC media player before 2.1.6 allows remote attackers to trigger an unintended zero-size malloc and conduct buffer overflow attacks, and consequently execute arbitrary code, via a box size of 7.
CVE-2019-16008 1 Cisco 38 Ip Phone 6821, Ip Phone 6821 Firmware, Ip Phone 6825 and 35 more 2020-01-29 3.5 LOW 5.4 MEDIUM
A vulnerability in the web-based GUI of Cisco IP Phone 6800, 7800, and 8800 Series with Multiplatform Firmware could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web-based interface of an affected system. The vulnerability is due to insufficient validation of user-supplied input by the web-based GUI of an affected system. An attacker could exploit this vulnerability by persuading a user of the interface to click a crafted link. A successful exploit could allow the attacker to execute arbitrary script code in the context of the affected interface or access sensitive, browser-based information.
CVE-2012-1496 1 Webcalendar Project 1 Webcalendar 2020-01-29 6.5 MEDIUM 8.8 HIGH
Local file inclusion in WebCalendar before 1.2.5.
CVE-2019-17584 1 Meinbergglobal 2 Syncbox\/ptpv2, Syncbox\/ptpv2 Firmware 2020-01-29 8.5 HIGH 7.5 HIGH
The Meinberg SyncBox/PTP/PTPv2 devices have default SSH keys which allow attackers to get root access to the devices. All firmware versions up to v5.34o, v5.34s, v5.32* or 5.34g are affected. The private key is also used in an internal interface of another Meinberg Device and can be extracted from a firmware update of this device. An update to fix the vulnerability was published by the vendor.
CVE-2020-7594 1 Multitech 2 Conduit Mtcdt-lvw2-246a, Conduit Mtcdt-lvw2-246a Firmware 2020-01-29 9.0 HIGH 7.2 HIGH
MultiTech Conduit MTCDT-LVW2-24XX 1.4.17-ocea-13592 devices allow remote authenticated administrators to execute arbitrary OS commands by navigating to the Debug Options page and entering shell metacharacters in the interface JSON field of the ping function.
CVE-2012-6649 1 Devfarm 1 Wp Gpx Maps 2020-01-29 7.5 HIGH 9.8 CRITICAL
WordPress WP GPX Maps Plugin 1.1.21 allows remote attackers to execute arbitrary PHP code via improper file upload.
CVE-2015-5333 2 Openbsd, Opensuse 2 Libressl, Opensuse 2020-01-29 5.0 MEDIUM 7.5 HIGH
Memory leak in the OBJ_obj2txt function in LibreSSL before 2.3.1 allows remote attackers to cause a denial of service (memory consumption) via a large number of ASN.1 object identifiers in X.509 certificates.
CVE-2019-10781 1 Schema-inspector Project 1 Schema-inspector 2020-01-29 7.5 HIGH 9.8 CRITICAL
In schema-inspector before 1.6.9, a maliciously crafted JavaScript object can bypass the `sanitize()` and the `validate()` function used within schema-inspector.
CVE-2019-20427 1 Lustre 1 Lustre 2020-01-29 9.0 HIGH 9.8 CRITICAL
In the Lustre file system before 2.12.3, the ptlrpc module has a buffer overflow and panic, and possibly remote code execution, due to the lack of validation for specific fields of packets sent by a client. Interaction between req_capsule_get_size and tgt_brw_write leads to a tgt_shortio2pages integer signedness error.
CVE-2020-1840 1 Huawei 2 Mate 20, Mate 20 Firmware 2020-01-29 3.6 LOW 6.0 MEDIUM
HUAWEI Mate 20 smart phones with versions earlier than 10.0.0.175(C00E70R3P8) have an insufficient authentication vulnerability. A local attacker with high privilege can execute a specific command to exploit this vulnerability. Successful exploitation may cause information leak and compromise the availability of the smart phones.Affected product versions include: HUAWEI Mate 20 versions Versions earlier than 10.0.0.175(C00E70R3P8)
CVE-2020-7105 1 Redislabs 1 Hiredis 2020-01-29 5.0 MEDIUM 7.5 HIGH
async.c and dict.c in libhiredis.a in hiredis through 0.14.0 allow a NULL pointer dereference because malloc return values are unchecked.
CVE-2019-15313 1 Zimbra 1 Collaboration Server 2020-01-29 4.3 MEDIUM 6.1 MEDIUM
In Zimbra Collaboration before 8.8.15 Patch 1, there is a non-persistent XSS vulnerability.
CVE-2015-2784 1 Papercrop Project 1 Papercrop 2020-01-29 7.5 HIGH 9.8 CRITICAL
The papercrop gem before 0.3.0 for Ruby on Rails does not properly handle crop input.
CVE-2020-7229 1 Simplejobscript 1 Simplejobscript 2020-01-29 7.5 HIGH 9.8 CRITICAL
An issue was discovered in Simplejobscript.com SJS before 1.65. There is unauthenticated SQL injection via the search engine. The parameter is landing_location. The function is countSearchedJobs(). The file is _lib/class.Job.php.
CVE-2014-9625 1 Videolan 1 Vlc Media Player 2020-01-29 6.8 MEDIUM 7.8 HIGH
The GetUpdateFile function in misc/update.c in the Updater in VideoLAN VLC media player before 2.1.6 performs an incorrect cast operation from a 64-bit integer to a 32-bit integer, which allows remote attackers to conduct buffer overflow attacks and execute arbitrary code via a crafted update status file, aka an "integer truncation" vulnerability.
CVE-2014-9629 1 Videolan 1 Vlc Media Player 2020-01-29 6.8 MEDIUM 7.8 HIGH
Integer overflow in the Encode function in modules/codec/schroedinger.c in VideoLAN VLC media player before 2.1.6 and 2.2.x before 2.2.1 allows remote attackers to conduct buffer overflow attacks and execute arbitrary code via a crafted length value.