CVE-2019-10667
An issue was discovered in LibreNMS through 1.47. Information disclosure can occur: an attacker can fingerprint the exact code version installed and disclose local file paths.
Source: CVE-2019-10667
[월:] 2019년 09월
CVE-2018-21012
CVE-2018-21012
The cf7-invisible-recaptcha plugin before 1.3.2 for WordPress has XSS.
Source: CVE-2018-21012
CVE-2018-21011
CVE-2018-21011
The charitable plugin before 1.5.14 for WordPress has unauthorized access to user and donation details.
Source: CVE-2018-21011
CVE-2018-21013
CVE-2018-21013
The Swape theme before 1.2.1 for WordPress has incorrect access control, as demonstrated by allowing new administrator accounts via vectors involving xmlPath to wp-admin/admin-ajax.php.
Source: CVE-2018-21013
CVE-2019-15639
CVE-2019-15639
main/translate.c in Sangoma Asterisk 13.28.0 and 16.5.0 allows a remote attacker to send a specific RTP packet during a call and cause a crash in a specific scenario.
Source: CVE-2019-15639
CVE-2019-15895
CVE-2019-15895
search-exclude.php in the "Search Exclude" plugin through 1.2.2 for WordPress allows unauthenticated options changes.
Source: CVE-2019-15895
CVE-2019-16148
CVE-2019-16114
CVE-2019-16114
In ATutor 2.2.4, an unauthenticated attacker can change the application settings and force it to use his crafted database, which allows him to gain access to the application. Next, he can change the directory that the application uploads files to, which allows him to achieve remote code execution. This occurs because install/include/header.php does not restrict certain changes (to db_host, db_login, db_password, and content_dir) within install/include/step5.php.
Source: CVE-2019-16114
CVE-2019-16144
CVE-2019-16144
An issue was discovered in the generator crate before 0.6.18 for Rust. Uninitialized memory is used by Scope, done, and yield_ during API calls.
Source: CVE-2019-16144
CVE-2019-16143
CVE-2019-16143
An issue was discovered in the blake2 crate before 0.8.1 for Rust. The BLAKE2b and BLAKE2s algorithms, when used with HMAC, produce incorrect results because the block sizes are half of the required sizes.
Source: CVE-2019-16143