CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
  What's the CVSS score of your company?
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Security Vulnerabilities Published In August 2019

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
301 CVE-2019-14981 369 DoS 2019-08-12 2020-08-19
4.3
None Remote Medium Not required None None Partial
In ImageMagick 7.x before 7.0.8-41 and 6.x before 6.9.10-41, there is a divide-by-zero vulnerability in the MeanShiftImage function. It allows an attacker to cause a denial of service by sending a crafted file.
302 CVE-2019-14980 416 DoS 2019-08-12 2019-11-15
4.3
None Remote Medium Not required None None Partial
In ImageMagick 7.x before 7.0.8-42 and 6.x before 6.9.10-42, there is a use after free vulnerability in the UnmapBlob function that allows an attacker to cause a denial of service by sending a crafted file.
303 CVE-2019-14979 20 2019-08-29 2020-02-10
5.0
None Remote Low Not required None Partial None
** DISPUTED ** cgi-bin/webscr?cmd=_cart in the WooCommerce PayPal Checkout Payment Gateway plugin 1.6.17 for WordPress allows Parameter Tampering in an amount parameter (such as amount_1), as demonstrated by purchasing an item for lower than the intended price. NOTE: The plugin author states it is true that the amount can be manipulated in the PayPal payment flow. However, the amount is validated against the WooCommerce order total before completing the order, and if it doesn’t match then the order will be left in an “On Hold” state.
304 CVE-2019-14978 20 2019-08-29 2019-12-02
5.0
None Remote Low Not required None Partial None
/payu/icpcheckout/ in the WooCommerce PayU India Payment Gateway plugin 2.1.1 for WordPress allows Parameter Tampering in the purchaseQuantity=1 parameter, as demonstrated by purchasing an item for lower than the intended price.
305 CVE-2019-14977 20 2019-08-29 2019-09-10
5.0
None Remote Low Not required None Partial None
** DISPUTED ** card/pay/.../amount in the WooCommerce Instamojo Payment Gateway plugin 1.0.7 for WordPress allows Parameter Tampering in the sign parameter, as demonstrated by purchasing an item for lower than the intended price. NOTE: The vendor disputes this vulnerability stating, "Validation is happening as expected on the data in POST body. The URL parameters are completely unused in this POST."
306 CVE-2019-14976 79 XSS 2019-08-12 2019-08-15
4.3
None Remote Medium Not required None Partial None
iCMS 7.0.15 allows admincp.php?app=apps XSS via the keywords parameter.
307 CVE-2019-14975 125 2019-08-14 2019-08-26
5.8
None Remote Medium Not required Partial None Partial
Artifex MuPDF before 1.16.0 has a heap-based buffer over-read in fz_chartorune in fitz/string.c because pdf/pdf-op-filter.c does not check for a missing string.
308 CVE-2019-14974 79 XSS 2019-08-14 2019-08-19
4.3
None Remote Medium Not required None Partial None
SugarCRM Enterprise 9.0.0 allows mobile/error-not-supported-platform.html?desktop_url= XSS.
309 CVE-2019-14973 190 Overflow 2019-08-14 2020-11-06
4.3
None Remote Medium Not required None None Partial
_TIFFCheckMalloc and _TIFFCheckRealloc in tif_aux.c in LibTIFF through 4.0.10 mishandle Integer Overflow checks because they rely on compiler behavior that is undefined by the applicable C standards. This can, for example, lead to an application crash.
310 CVE-2019-14970 787 Overflow 2019-08-29 2020-08-24
6.8
None Remote Medium Not required Partial Partial Partial
A vulnerability in mkv::event_thread_t in VideoLAN VLC media player 3.0.7.1 allows remote attackers to trigger a heap-based buffer overflow via a crafted .mkv file.
311 CVE-2019-14969 732 Exec Code 2019-08-12 2020-08-24
6.9
None Local Medium Not required Complete Complete Complete
Netwrix Auditor before 9.8 has insecure permissions on %PROGRAMDATA%\Netwrix Auditor\Logs\ActiveDirectory\ and sub-folders. In addition, the service Netwrix.ADA.StorageAuditService (which writes to that directory) does not perform proper impersonation, and thus the target file will have the same permissions as the invoking process (in this case, granting Authenticated Users full access over the target file). This vulnerability can be triggered by a low-privileged user to perform DLL Hijacking/Binary Planting attacks and ultimately execute code as NT AUTHORITY\SYSTEM with the help of Symbolic Links.
312 CVE-2019-14968 89 Sql 2019-08-12 2019-08-15
7.5
None Remote Low Not required Partial Partial Partial
An issue was discovered in imcat 4.9. There is SQL Injection via the index.php order parameter in a mod=faqs action.
313 CVE-2019-14967 79 XSS 2019-08-12 2019-08-15
4.3
None Remote Medium Not required None Partial None
An issue was discovered in Frappe Framework 10, 11 before 11.1.46, and 12. There exists an XSS vulnerability.
314 CVE-2019-14966 89 Sql 2019-08-12 2019-08-16
6.5
None Remote Low ??? Partial Partial Partial
An issue was discovered in Frappe Framework 10 through 12 before 12.0.4. There exists an authenticated SQL injection.
315 CVE-2019-14965 94 2019-08-12 2020-08-24
7.5
None Remote Low Not required Partial Partial Partial
An issue was discovered in Frappe Framework 10 through 12 before 12.0.4. A server side template injection (SSTI) issue exists.
316 CVE-2019-14951 307 2019-08-12 2020-08-24
5.0
None Remote Low Not required Partial None None
The Telenav Scout GPS Link app 1.x for iOS, as used with Toyota and Lexus vehicles, has an incorrect protection mechanism against brute-force attacks on the authentication process, which makes it easier for attackers to obtain multimedia-screen access via port 7050 on the cellular network, as demonstrated by a DrivingRestriction method call to uma/jsonrpc/mobile.
317 CVE-2019-14950 79 XSS 2019-08-12 2019-08-15
4.3
None Remote Medium Not required None Partial None
The wp-live-chat-support plugin before 8.0.27 for WordPress has XSS via the GDPR page.
318 CVE-2019-14949 79 XSS 2019-08-12 2019-08-21
4.3
None Remote Medium Not required None Partial None
The wp-database-backup plugin before 5.1.2 for WordPress has XSS.
319 CVE-2019-14948 79 XSS 2019-08-12 2019-08-21
3.5
None Remote Medium ??? None Partial None
The woocommerce-product-addon plugin before 18.4 for WordPress has XSS via an import of a new meta data structure.
320 CVE-2019-14947 79 XSS 2019-08-12 2019-08-14
3.5
None Remote Medium ??? None Partial None
The ultimate-member plugin before 2.0.52 for WordPress has XSS during an account upgrade.
321 CVE-2019-14946 79 XSS 2019-08-12 2019-08-14
3.5
None Remote Medium ??? None Partial None
The ultimate-member plugin before 2.0.52 for WordPress has XSS related to UM Roles create and edit operations.
322 CVE-2019-14945 79 XSS 2019-08-12 2019-08-14
3.5
None Remote Medium ??? None Partial None
The ultimate-member plugin before 2.0.54 for WordPress has XSS.
323 CVE-2019-14943 798 2019-08-29 2019-09-04
7.5
None Remote Low Not required Partial Partial Partial
An issue was discovered in GitLab Community and Enterprise Edition 12.0 through 12.1.4. It uses Hard-coded Credentials.
324 CVE-2019-14940 2019-08-12 2020-08-24
4.0
None Remote Low ??? None None Partial
In Storage Performance Development Kit (SPDK) before 19.07, a user of a vhost can cause a crash if the target is sent invalid input.
325 CVE-2019-14939 200 +Info 2019-08-12 2021-07-21
2.1
None Local Low Not required Partial None None
An issue was discovered in the mysql (aka mysqljs) module 2.17.1 for Node.js. The LOAD DATA LOCAL INFILE option is open by default.
326 CVE-2019-14937 89 Sql 2019-08-17 2019-08-27
6.0
None Remote Medium ??? Partial Partial Partial
REDCap before 9.3.0 allows time-based SQL injection in the edit calendar event via the cal_id parameter, such as cal_id=55 and sleep(3) to Calendar/calendar_popup_ajax.php. The attacker can obtain a user's login sessionid from the database, and then re-login into REDCap to compromise all data.
327 CVE-2019-14935 732 2019-08-12 2020-08-24
4.6
None Local Low Not required Partial Partial Partial
3CX Phone 15 on Windows has insecure permissions on the "%PROGRAMDATA%\3CXPhone for Windows\PhoneApp" installation directory, allowing Full Control access for Everyone, and leading to privilege escalation because of a StartUp link.
328 CVE-2019-14934 787 2019-08-11 2020-12-01
6.8
None Remote Medium Not required Partial Partial Partial
An issue was discovered in PDFResurrect before 0.18. pdf_load_pages_kids in pdf.c doesn't validate a certain size value, which leads to a malloc failure and out-of-bounds write.
329 CVE-2019-14933 352 CSRF 2019-08-11 2019-08-14
6.8
None Remote Medium Not required Partial Partial Partial
Bagisto 0.1.5 allows CSRF under /admin URIs.
330 CVE-2019-14932 200 +Info 2019-08-12 2021-07-21
5.0
None Remote Low Not required Partial None None
The Recruitment module in Humanica Humatrix 7 1.0.0.681 and 1.0.0.203 allows remote attackers to access all candidates' information on the website via a modified selApp variable to personalData/resumeDetail.cfm. This includes personal information and other sensitive data.
331 CVE-2019-14924 200 +Info 2019-08-10 2021-07-21
5.0
None Remote Low Not required Partial None None
An issue was discovered in GCDWebServer before 3.5.3. The method moveItem in the GCDWebUploader class checks the FileExtension of newAbsolutePath but not oldAbsolutePath. By leveraging this vulnerability, an adversary can make an inaccessible file be available (the credential of the app, for instance).
332 CVE-2019-14923 78 Exec Code 2019-08-16 2021-02-23
6.5
None Remote Low ??? Partial Partial Partial
EyesOfNetwork 5.1 allows Remote Command Execution via shell metacharacters in the module/tool_all/ host field.
333 CVE-2019-14809 Bypass 2019-08-13 2020-08-24
7.5
None Remote Low Not required Partial Partial Partial
net/url in Go before 1.11.13 and 1.12.x before 1.12.8 mishandles malformed hosts in URLs, leading to an authorization bypass in some applications. This is related to a Host field with a suffix appearing in neither Hostname() nor Port(), and is related to a non-numeric port number. For example, an attacker can compose a crafted javascript:// URL that results in a hostname of google.com.
334 CVE-2019-14807 79 XSS 2019-08-09 2019-09-25
4.3
None Remote Medium Not required None Partial None
In the MobileFrontend extension 1.31 through 1.33 for MediaWiki, XSS exists within the edit summary field in includes/specials/MobileSpecialPageFeed.php.
335 CVE-2019-14806 331 2019-08-09 2019-09-11
5.0
None Remote Low Not required Partial None None
Pallets Werkzeug before 0.15.3, when used with Docker, has insufficient debugger PIN randomness because Docker containers share the same machine id.
336 CVE-2019-14805 79 XSS 2019-08-09 2019-08-14
3.5
None Remote Medium ??? None Partial None
studio/builder_menu.php?page=sets in UNA 10.0.0-RC1 allows XSS via the System Name field under Sets during set editing.
337 CVE-2019-14804 79 XSS 2019-08-09 2019-08-14
3.5
None Remote Medium ??? None Partial None
studio/polyglot.php?page=etemplates in UNA 10.0.0-RC1 allows XSS via the System Name field under Emails during template editing.
338 CVE-2019-14801 89 Sql 2019-08-09 2019-08-14
7.5
None Remote Low Not required Partial Partial Partial
The FV Flowplayer Video Player plugin before 7.3.15.727 for WordPress allows email subscription SQL injection.
339 CVE-2019-14800 200 +Info 2019-08-15 2019-08-21
5.0
None Remote Low Not required Partial None None
The FV Flowplayer Video Player plugin before 7.3.15.727 for WordPress allows guests to obtain the email subscription list in CSV format via the wp-admin/admin-post.php?page=fvplayer&fv-email-export=1 URI.
340 CVE-2019-14799 79 XSS 2019-08-09 2019-08-23
4.3
None Remote Medium Not required None Partial None
The FV Flowplayer Video Player plugin before 7.3.14.727 for WordPress allows email subscription XSS.
341 CVE-2019-14798 22 Dir. Trav. File Inclusion 2019-08-09 2019-08-14
4.0
None Remote Low ??? Partial None None
The 10Web Photo Gallery plugin before 1.5.25 for WordPress has Authenticated Local File Inclusion via directory traversal in the wp-admin/admin-ajax.php?action=shortcode_bwg tagtext parameter.
342 CVE-2019-14797 79 XSS 2019-08-09 2019-08-14
3.5
None Remote Medium ??? None Partial None
The 10Web Photo Gallery plugin before 1.5.23 for WordPress has authenticated stored XSS.
343 CVE-2019-14796 79 XSS 2019-08-09 2019-08-20
3.5
None Remote Medium ??? None Partial None
The mq-woocommerce-products-price-bulk-edit (aka Woocommerce Products Price Bulk Edit) plugin 2.0 for WordPress allows XSS via the wp-admin/admin-ajax.php?action=update_options show_products_page_limit parameter.
344 CVE-2019-14795 79 XSS 2019-08-15 2019-08-21
3.5
None Remote Medium ??? None Partial None
The toggle-the-title (aka Toggle The Title) plugin 1.4 for WordPress has XSS via the wp-admin/admin-ajax.php?action=update_title_options isAutoSaveValveChecked or isDisableAllPagesValveChecked parameter.
345 CVE-2019-14794 19 2019-08-09 2019-08-14
5.0
None Remote Low Not required None Partial None
The Meta Box plugin before 4.16.2 for WordPress mishandles the uploading of files to custom folders.
346 CVE-2019-14793 862 2019-08-09 2020-08-24
5.5
None Remote Low ??? None Partial Partial
The Meta Box plugin before 4.16.3 for WordPress allows file deletion via ajax, with the wp-admin/admin-ajax.php?action=rwmb_delete_file attachment_id parameter.
347 CVE-2019-14792 79 XSS 2019-08-09 2019-08-14
3.5
None Remote Medium ??? None Partial None
The WP Google Maps plugin before 7.11.35 for WordPress allows XSS via the wp-admin/ rectangle_name or rectangle_opacity parameter.
348 CVE-2019-14791 79 XSS 2019-08-09 2019-08-14
4.3
None Remote Medium Not required None Partial None
The Appointment Booking Calendar plugin 1.3.18 for WordPress allows XSS via the wp-admin/admin-post.php editionarea parameter.
349 CVE-2019-14790 79 XSS 2019-08-15 2019-08-21
4.3
None Remote Medium Not required None Partial None
The limb-gallery (aka Limb Gallery) plugin 1.4.0 for WordPress has XSS via the wp-admin/admin-ajax.php?action=grsGalleryAjax&grsAction=shortcode task parameter,
350 CVE-2019-14789 79 XSS 2019-08-15 2019-08-20
4.3
None Remote Medium Not required None Partial None
The Custom 404 Pro plugin 3.2.8 for WordPress has XSS via the wp-admin/admin.php?page=c4p-main page parameter.
Total number of vulnerabilities : 2004   Page : 1 2 3 4 5 6 7 (This Page)8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.