CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
  What's the CVSS score of your company?
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Security Vulnerabilities Published In February 2019

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
201 CVE-2019-8394 434 2019-02-17 2019-02-26
4.0
None Remote Low ??? None Partial None
Zoho ManageEngine ServiceDesk Plus (SDP) before 10.0 build 10012 allows remote attackers to upload arbitrary files via login page customization.
202 CVE-2019-8393 89 Sql 2019-02-17 2019-02-20
7.5
None Remote Low Not required Partial Partial Partial
Hotels_Server through 2018-11-05 has SQL Injection via the API because the controller/api/login.php telephone parameter is mishandled.
203 CVE-2019-8392 2019-02-17 2020-08-24
5.0
None Remote Low Not required None Partial None
An issue was discovered on D-Link DIR-823G devices with firmware 1.02B03. There is incorrect access control allowing remote attackers to enable Guest Wi-Fi via the SetWLanRadioSettings HNAP API to the web service provided by /bin/goahead.
204 CVE-2019-8389 200 +Info 2019-02-17 2021-07-21
4.8
None Local Network Low Not required Partial Partial None
A file-read vulnerability was identified in the Wi-Fi transfer feature of Musicloud 1.6. By default, the application runs a transfer service on port 8080, accessible by everyone on the same Wi-Fi network. An attacker can send the POST parameters downfiles and cur-folder (with a crafted ../ payload) to the download.script endpoint. This will create a MusicPlayerArchive.zip archive that is publicly accessible and includes the content of any requested file (such as the /etc/passwd file).
205 CVE-2019-8383 119 DoS Overflow 2019-02-17 2021-12-30
6.8
None Remote Medium Not required Partial Partial Partial
An issue was discovered in AdvanceCOMP through 2.1. An invalid memory address occurs in the function adv_png_unfilter_8 in lib/png.c. It can be triggered by sending a crafted file to a binary. It allows an attacker to cause a Denial of Service (Segmentation fault) or possibly have unspecified other impact when a victim opens a specially crafted file.
206 CVE-2019-8382 476 DoS 2019-02-17 2019-02-19
6.8
None Remote Medium Not required Partial Partial Partial
An issue was discovered in Bento4 1.5.1-628. A NULL pointer dereference occurs in the function AP4_List:Find located in Core/Ap4List.h when called from Core/Ap4Movie.cpp. It can be triggered by sending a crafted file to the mp4dump binary. It allows an attacker to cause a Denial of Service (Segmentation fault) or possibly have unspecified other impact.
207 CVE-2019-8381 119 DoS Overflow 2019-02-17 2019-03-30
6.8
None Remote Medium Not required Partial Partial Partial
An issue was discovered in Tcpreplay 4.3.1. An invalid memory access occurs in do_checksum in checksum.c. It can be triggered by sending a crafted pcap file to the tcpreplay-edit binary. It allows an attacker to cause a Denial of Service (Segmentation fault) or possibly have unspecified other impact.
208 CVE-2019-8380 476 DoS 2019-02-17 2019-02-19
6.8
None Remote Medium Not required Partial Partial Partial
An issue was discovered in Bento4 1.5.1-628. A NULL pointer dereference occurs in AP4_Track::GetSampleIndexForTimeStampMs() located in Core/Ap4Track.cpp. It can triggered by sending a crafted file to the mp4audioclip binary. It allows an attacker to cause a Denial of Service (Segmentation fault) or possibly have unspecified other impact.
209 CVE-2019-8379 476 DoS 2019-02-17 2021-12-30
6.8
None Remote Medium Not required Partial Partial Partial
An issue was discovered in AdvanceCOMP through 2.1. A NULL pointer dereference exists in the function be_uint32_read() located in endianrw.h. It can be triggered by sending a crafted file to a binary. It allows an attacker to cause a Denial of Service (Segmentation fault) or possibly have unspecified other impact when a victim opens a specially crafted file.
210 CVE-2019-8378 125 DoS 2019-02-17 2019-02-20
6.8
None Remote Medium Not required Partial Partial Partial
An issue was discovered in Bento4 1.5.1-628. A heap-based buffer over-read exists in AP4_BitStream::ReadBytes() in Codecs/Ap4BitStream.cpp, a similar issue to CVE-2017-14645. It can be triggered by sending a crafted file to the aac2mp4 binary. It allows an attacker to cause a Denial of Service (Segmentation fault) or possibly have unspecified other impact.
211 CVE-2019-8377 476 DoS 2019-02-17 2020-06-25
6.8
None Remote Medium Not required Partial Partial Partial
An issue was discovered in Tcpreplay 4.3.1. A NULL pointer dereference occurred in the function get_ipv6_l4proto() located at get.c. This can be triggered by sending a crafted pcap file to the tcpreplay-edit binary. It allows an attacker to cause a Denial of Service (Segmentation fault) or possibly have unspecified other impact.
212 CVE-2019-8376 476 DoS 2019-02-17 2019-03-30
6.8
None Remote Medium Not required Partial Partial Partial
An issue was discovered in Tcpreplay 4.3.1. A NULL pointer dereference occurred in the function get_layer4_v6() located at get.c. This can be triggered by sending a crafted pcap file to the tcpreplay-edit binary. It allows an attacker to cause a Denial of Service (Segmentation fault) or possibly have unspecified other impact.
213 CVE-2019-8375 119 DoS Overflow 2019-02-24 2019-05-09
7.5
None Remote Low Not required Partial Partial Partial
The UIProcess subsystem in WebKit, as used in WebKitGTK through 2.23.90 and WebKitGTK+ through 2.22.6 and other products, does not prevent the script dialog size from exceeding the web view size, which allows remote attackers to cause a denial of service (Buffer Overflow) or possibly have unspecified other impact, related to UIProcess/API/gtk/WebKitScriptDialogGtk.cpp, UIProcess/API/gtk/WebKitScriptDialogImpl.cpp, and UIProcess/API/gtk/WebKitWebViewGtk.cpp, as demonstrated by GNOME Web (aka Epiphany).
214 CVE-2019-8372 59 2019-02-18 2019-02-26
6.9
None Local Medium Not required Complete Complete Complete
The LHA.sys driver before 1.1.1811.2101 in LG Device Manager exposes functionality that allows low-privileged users to read and write arbitrary physical memory via specially crafted IOCTL requests and elevate system privileges. This occurs because the device object has an associated symbolic link and an open DACL.
215 CVE-2019-8363 79 XSS 2019-02-16 2019-02-19
4.3
None Remote Medium Not required None Partial None
Verydows 2.0 has XSS via the index.php?c=main a parameter, as demonstrated by an a=index[XSS] value.
216 CVE-2019-8362 434 2019-02-16 2019-02-20
5.0
None Remote Low Not required None Partial None
DedeCMS through V5.7SP2 allows arbitrary file upload in dede/album_edit.php or dede/album_add.php, as demonstrated by a dede/album_edit.php?dopost=save&formzip=1 request with a ZIP archive that contains a file such as "1.jpg.php" (because input validation only checks that .jpg, .png, or .gif is present as a substring, and does not otherwise check the file name or content).
217 CVE-2019-8361 79 XSS 2019-02-16 2019-02-19
4.3
None Remote Medium Not required None Partial None
PHP Scripts Mall Responsive Video News Script has XSS via the Search Bar. This might, for example, be leveraged for HTML injection or URL redirection.
218 CVE-2019-8360 89 Sql 2019-02-16 2019-02-20
7.5
None Remote Low Not required Partial Partial Partial
Themerig Find a Place CMS Directory 1.5 has SQL Injection via the find/assets/external/data_2.php cate parameter.
219 CVE-2019-8358 22 Dir. Trav. 2019-02-16 2019-02-19
6.8
None Remote Medium Not required Partial Partial Partial
In Hiawatha before 10.8.4, a remote attacker is able to do directory traversal if AllowDotFiles is enabled.
220 CVE-2019-8357 476 2019-02-15 2019-05-28
4.3
None Remote Medium Not required None None Partial
An issue was discovered in SoX 14.4.2. lsx_make_lpf in effect_i_dsp.c allows a NULL pointer dereference.
221 CVE-2019-8356 787 Overflow 2019-02-15 2020-08-24
4.3
None Remote Medium Not required None None Partial
An issue was discovered in SoX 14.4.2. One of the arguments to bitrv2 in fft4g.c is not guarded, such that it can lead to write access outside of the statically declared array, aka a stack-based buffer overflow.
222 CVE-2019-8355 787 Overflow 2019-02-15 2020-08-24
4.3
None Remote Medium Not required None None Partial
An issue was discovered in SoX 14.4.2. In xmalloc.h, there is an integer overflow on the result of multiplication fed into the lsx_valloc macro that wraps malloc. When the buffer is allocated, it is smaller than expected, leading to a heap-based buffer overflow in channels_start in remix.c.
223 CVE-2019-8354 787 Overflow 2019-02-15 2020-08-24
4.3
None Remote Medium Not required None None Partial
An issue was discovered in SoX 14.4.2. lsx_make_lpf in effect_i_dsp.c has an integer overflow on the result of multiplication fed into malloc. When the buffer is allocated, it is smaller than expected, leading to a heap-based buffer overflow.
224 CVE-2019-8347 352 CSRF 2019-02-15 2019-02-15
6.8
None Remote Medium Not required Partial Partial Partial
BEESCMS 4.0 has a CSRF vulnerability to add arbitrary VIP accounts via the admin/admin_member.php?action=add&nav=add_web_user&admin_p_nav=user URI.
225 CVE-2019-8345 601 2019-02-15 2021-07-21
4.3
None Local Network Medium Not required Partial Partial None
The Help feature in the ES File Explorer File Manager application 4.1.9.7.4 for Android allows session hijacking by a Man-in-the-middle attacker on the local network because HTTPS is not used, and an attacker's web site is displayed in a WebView with no information about the URL.
226 CVE-2019-8343 416 2019-02-15 2019-02-15
6.8
None Remote Medium Not required Partial Partial Partial
In Netwide Assembler (NASM) 2.14.02, there is a use-after-free in paste_tokens in asm/preproc.c.
227 CVE-2019-8341 94 2019-02-15 2021-07-21
7.5
None Remote Low Not required Partial Partial Partial
** DISPUTED ** An issue was discovered in Jinja2 2.10. The from_string function is prone to Server Side Template Injection (SSTI) where it takes the "source" parameter as a template object, renders it, and then returns it. The attacker can exploit it with {{INJECTION COMMANDS}} in a URI. NOTE: The maintainer and multiple third parties believe that this vulnerability isn't valid because users shouldn't use untrusted templates without sandboxing.
228 CVE-2019-8337 295 2019-02-13 2019-03-01
5.0
None Remote Low Not required None Partial None
In msmtp 1.8.2 and mpop 1.4.3, when tls_trust_file has its default configuration, certificate-verification results are not properly checked.
229 CVE-2019-8335 79 XSS 2019-02-13 2019-02-13
4.3
None Remote Medium Not required None Partial None
An issue was discovered in SchoolCMS 2.3.1. There is an XSS vulnerability via index.php?a=Index&c=Channel&m=Home&id=[XSS].
230 CVE-2019-8334 79 XSS 2019-02-13 2019-02-13
4.3
None Remote Medium Not required None Partial None
An issue was discovered in SchoolCMS 2.3.1. There is an XSS vulnerability via index.php?a=Index&c=Channel&m=Home&viewid=[XSS].
231 CVE-2019-8331 79 XSS 2019-02-20 2021-07-22
4.3
None Remote Medium Not required None Partial None
In Bootstrap before 3.4.1 and 4.3.x before 4.3.1, XSS is possible in the tooltip or popover data-template attribute.
232 CVE-2019-8319 78 Exec Code 2019-02-13 2021-04-23
9.0
None Remote Low ??? Complete Complete Complete
An issue was discovered on D-Link DIR-878 devices with firmware 1.12A1. This issue is a Command Injection allowing a remote attacker to execute arbitrary code, and get a root shell. A command Injection vulnerability allows attackers to execute arbitrary OS commands via a crafted /HNAP1 POST request. This occurs when any HNAP API function triggers a call to the system function with untrusted input from the request body for the SetStaticRouteIPv4Settings API function, as demonstrated by shell metacharacters in the Gateway field.
233 CVE-2019-8318 78 Exec Code 2019-02-13 2021-04-23
9.0
None Remote Low ??? Complete Complete Complete
An issue was discovered on D-Link DIR-878 devices with firmware 1.12A1. This issue is a Command Injection allowing a remote attacker to execute arbitrary code, and get a root shell. A command Injection vulnerability allows attackers to execute arbitrary OS commands via a crafted /HNAP1 POST request. This occurs when any HNAP API function triggers a call to the twsystem function with untrusted input from the request body for the SetSysEmailSettings API function, as demonstrated by shell metacharacters in the SMTPServerPort field.
234 CVE-2019-8317 78 Exec Code 2019-02-13 2021-04-23
9.0
None Remote Low ??? Complete Complete Complete
An issue was discovered on D-Link DIR-878 devices with firmware 1.12A1. This issue is a Command Injection allowing a remote attacker to execute arbitrary code, and get a root shell. A command Injection vulnerability allows attackers to execute arbitrary OS commands via a crafted /HNAP1 POST request. This occurs when any HNAP API function triggers a call to the system function with untrusted input from the request body for the SetStaticRouteIPv6Settings API function, as demonstrated by shell metacharacters in the DestNetwork field.
235 CVE-2019-8316 78 Exec Code 2019-02-13 2021-04-23
9.0
None Remote Low ??? Complete Complete Complete
An issue was discovered on D-Link DIR-878 devices with firmware 1.12A1. This issue is a Command Injection allowing a remote attacker to execute arbitrary code, and get a root shell. A command Injection vulnerability allows attackers to execute arbitrary OS commands via a crafted /HNAP1 POST request. This occurs when any HNAP API function triggers a call to the system function with untrusted input from the request body for the SetWebFilterSettings API function, as demonstrated by shell metacharacters in the WebFilterURLs field.
236 CVE-2019-8315 78 Exec Code 2019-02-13 2021-04-23
9.0
None Remote Low ??? Complete Complete Complete
An issue was discovered on D-Link DIR-878 devices with firmware 1.12A1. This issue is a Command Injection allowing a remote attacker to execute arbitrary code, and get a root shell. A command Injection vulnerability allows attackers to execute arbitrary OS commands via a crafted /HNAP1 POST request. This occurs when any HNAP API function triggers a call to the twsystem function with untrusted input from the request body for the SetIPv4FirewallSettings API function, as demonstrated by shell metacharacters in the SrcIPv4AddressRangeStart field.
237 CVE-2019-8314 78 Exec Code 2019-02-13 2021-04-23
9.0
None Remote Low ??? Complete Complete Complete
An issue was discovered on D-Link DIR-878 devices with firmware 1.12A1. This issue is a Command Injection allowing a remote attacker to execute arbitrary code, and get a root shell. A command Injection vulnerability allows attackers to execute arbitrary OS commands via a crafted /HNAP1 POST request. This occurs when any HNAP API function triggers a call to the system function with untrusted input from the request body for the SetQoSSettings API function, as demonstrated by shell metacharacters in the IPAddress field.
238 CVE-2019-8313 78 Exec Code 2019-02-13 2021-04-23
9.0
None Remote Low ??? Complete Complete Complete
An issue was discovered on D-Link DIR-878 devices with firmware 1.12A1. This issue is a Command Injection allowing a remote attacker to execute arbitrary code, and get a root shell. A command Injection vulnerability allows attackers to execute arbitrary OS commands via a crafted /HNAP1 POST request. This occurs when any HNAP API function triggers a call to the twsystem function with untrusted input from the request body for the SetIPv6FirewallSettings API function, as demonstrated by shell metacharacters in the SrcIPv6AddressRangeStart field.
239 CVE-2019-8312 78 Exec Code 2019-02-13 2021-04-23
9.0
None Remote Low ??? Complete Complete Complete
An issue was discovered on D-Link DIR-878 devices with firmware 1.12A1. This issue is a Command Injection allowing a remote attacker to execute arbitrary code, and get a root shell. A command Injection vulnerability allows attackers to execute arbitrary OS commands via a crafted /HNAP1 POST request. This occurs when any HNAP API function triggers a call to the twsystem function with untrusted input from the request body for the SetSysLogSettings API function, as demonstrated by shell metacharacters in the IPAddress field.
240 CVE-2019-8308 668 2019-02-12 2020-08-24
4.4
None Local Medium Not required Partial Partial Partial
Flatpak before 1.0.7, and 1.1.x and 1.2.x before 1.2.3, exposes /proc in the apply_extra script sandbox, which allows attackers to modify a host-side executable file.
241 CVE-2019-7753 79 XSS 2019-02-12 2019-02-12
4.3
None Remote Medium Not required None Partial None
Verydows 2.0 has XSS via the index.php?m=api&c=stats&a=count referrer parameter.
242 CVE-2019-7748 79 XSS 2019-02-11 2019-02-12
4.3
None Remote Medium Not required None Partial None
_includes\online.php in DbNinja 3.2.7 allows XSS via the data.php task parameter if _users/admin/tasks.php exists.
243 CVE-2019-7747 384 2019-02-11 2019-02-13
6.8
None Remote Medium Not required Partial Partial Partial
DbNinja 3.2.7 allows session fixation via the data.php sessid parameter.
244 CVE-2019-7744 79 XSS 2019-02-12 2019-02-13
4.3
None Remote Medium Not required None Partial None
An issue was discovered in Joomla! before 3.9.3. Inadequate filtering on URL fields in various core components could lead to an XSS vulnerability.
245 CVE-2019-7743 502 2019-02-12 2020-08-24
7.5
None Remote Low Not required Partial Partial Partial
An issue was discovered in Joomla! before 3.9.3. The phar:// stream wrapper can be used for objection injection attacks because there is no protection mechanism (such as the TYPO3 PHAR stream wrapper) to prevent use of the phar:// handler for non .phar-files.
246 CVE-2019-7742 79 XSS 2019-02-12 2019-02-13
4.3
None Remote Medium Not required None Partial None
An issue was discovered in Joomla! before 3.9.3. A combination of specific web server configurations, in connection with specific file types and browser-side MIME-type sniffing, causes an XSS attack vector.
247 CVE-2019-7741 79 XSS 2019-02-12 2019-02-13
4.3
None Remote Medium Not required None Partial None
An issue was discovered in Joomla! before 3.9.3. Inadequate checks at the Global Configuration helpurl settings allowed stored XSS.
248 CVE-2019-7740 79 XSS 2019-02-12 2019-02-13
4.3
None Remote Medium Not required None Partial None
An issue was discovered in Joomla! before 3.9.3. Inadequate parameter handling in JavaScript code (core.js writeDynaList) could lead to an XSS attack vector.
249 CVE-2019-7739 2019-02-12 2020-08-24
4.3
None Remote Medium Not required None Partial None
An issue was discovered in Joomla! before 3.9.3. The "No Filtering" textfilter overrides child settings in the Global Configuration. This is intended behavior. However, it might be unexpected for the user because the configuration dialog lacks an additional message to explain this.
250 CVE-2019-7738 352 CSRF 2019-02-11 2019-02-13
5.8
None Remote Medium Not required None Partial Partial
C.P.Sub before 5.3 allows CSRF via a manage.php?p=article_del&id= URI.
Total number of vulnerabilities : 839   Page : 1 2 3 4 5 (This Page)6 7 8 9 10 11 12 13 14 15 16 17
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.