CVE-2019-15778
The woo-variation-gallery plugin before 1.1.29 for WordPress has XSS.
Source: CVE-2019-15778
[월:] 2019년 08월
CVE-2019-15771
CVE-2019-15771
The nd-shortcodes plugin before 6.0 for WordPress has a nopriv_ AJAX action that allows modification of the siteurl setting.
Source: CVE-2019-15771
CVE-2019-15782
CVE-2019-15782
WebTorrent before 0.107.6 allows XSS in the HTTP server via a title or file name.
Source: CVE-2019-15782
CVE-2019-14943
CVE-2019-14943
An issue was discovered in GitLab Community and Enterprise Edition 12.0 through 12.1.4. It uses Hard-coded Credentials.
Source: CVE-2019-14943
CVE-2019-15783
CVE-2019-15783
Lute-Tab before 2019-08-23 has a buffer overflow in pdf_print.cc.
Source: CVE-2019-15783
CVE-2019-15777
CVE-2019-15777
The shapepress-dsgvo plugin before 2.2.19 for WordPress has wp-admin/admin-ajax.php?action=admin-common-settings&admin_email= XSS.
Source: CVE-2019-15777
CVE-2019-15770
CVE-2019-15770
The woo-address-book plugin before 1.6.0 for WordPress has save calls without nonce verification checks.
Source: CVE-2019-15770
CVE-2019-15775
CVE-2019-15775
The nd-learning plugin before 4.8 for WordPress has a nopriv_ AJAX action that allows modification of the siteurl setting.
Source: CVE-2019-15775
CVE-2019-15780
CVE-2019-15780
The formidable plugin before 4.02.01 for WordPress has unsafe deserialization.
Source: CVE-2019-15780
CVE-2019-15773
CVE-2019-15773
The nd-travel plugin before 1.7 for WordPress has a nopriv_ AJAX action that allows modification of the siteurl setting.
Source: CVE-2019-15773