CVE-2019-5791
Inappropriate optimization in V8 in Google Chrome prior to 73.0.3683.75 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page.
Source: CVE-2019-5791
[월:] 2019년 05월
CVE-2019-5790
CVE-2019-5790
An integer overflow leading to an incorrect capacity of a buffer in JavaScript in Google Chrome prior to 73.0.3683.75 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page.
Source: CVE-2019-5790
CVE-2019-5792
CVE-2019-5792
Integer overflow in PDFium in Google Chrome prior to 73.0.3683.75 allowed a remote attacker to potentially perform out of bounds memory access via a crafted PDF file.
Source: CVE-2019-5792
CVE-2019-10846
CVE-2019-10846
Computrols CBAS 18.0.0 allows Unauthenticated Reflected Cross-Site Scripting vulnerabilities in the login page and password reset page via the username GET parameter.
Source: CVE-2019-10846
CVE-2019-5796
CVE-2019-5796
Data race in extensions guest view in Google Chrome prior to 73.0.3683.75 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Source: CVE-2019-5796
CVE-2019-5794
CVE-2019-5794
Incorrect handling of cancelled requests in Navigation in Google Chrome prior to 73.0.3683.75 allowed a remote attacker to perform domain spoofing via a crafted HTML page.
Source: CVE-2019-5794
CVE-2018-19614
CVE-2018-19614
XSS exists in the /cmdexec/cmdexe?cmd= function in Westermo DR-250 Pre-5162 and DR-260 Pre-5162 routers.
Source: CVE-2018-19614
CVE-2019-10849
CVE-2019-10849
Computrols CBAS 18.0.0 allows unprotected Subversion (SVN) directory / source code disclosure.
Source: CVE-2019-10849
CVE-2019-10850
CVE-2019-10866
CVE-2019-10866
In the Form Maker plugin before 1.13.3 for WordPress, it’s possible to achieve SQL injection in the function get_labels_parameters in the file form-maker/admin/models/Submissions_fm.php with a crafted value of the /models/Submissioc parameter.
Source: CVE-2019-10866