Skip to main content
CVE-2019-9025 CRITICAL POC Act Now

An issue was discovered in PHP 7.3.x before 7.3.1. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP Buffer Overflow Information Disclosure Storage Automation Store
NVD
CVSS 3.0
9.8
EPSS
3.1%
CVE-2019-9023 CRITICAL POC PATCH Act Now

An issue was discovered in PHP before 5.6.40, 7.x before 7.1.26, 7.2.x before 7.2.14, and 7.3.x before 7.3.1. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

PHP Buffer Overflow Information Disclosure Debian Linux Ubuntu Linux +2
NVD
CVSS 3.0
9.8
EPSS
9.3%
CVE-2019-9021 CRITICAL POC THREAT Act Now

An issue was discovered in PHP before 5.6.40, 7.x before 7.1.26, 7.2.x before 7.2.14, and 7.3.x before 7.3.1. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP Buffer Overflow Information Disclosure Debian Linux Ubuntu Linux +2
NVD
CVSS 3.0
9.8
EPSS
10.1%
CVE-2019-9020 CRITICAL POC THREAT Act Now

An issue was discovered in PHP before 5.6.40, 7.x before 7.1.26, 7.2.x before 7.2.14, and 7.3.x before 7.3.1. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP Buffer Overflow Information Disclosure Debian Linux Ubuntu Linux +2
NVD
CVSS 3.0
9.8
EPSS
10.1%
CVE-2019-9002 CRITICAL POC PATCH Act Now

An issue was discovered in Tiny Issue 1.3.1 and pixeline Bugs through 1.3.2c. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Authentication Bypass PHP Tiny Issue Bugs
NVD GitHub
CVSS 3.0
9.8
EPSS
2.4%
CVE-2019-9015 CRITICAL POC Act Now

A Path Traversal vulnerability was discovered in MOPCMS through 2018-11-30, leading to deletion of unexpected critical files. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Path Traversal Mopcms
NVD GitHub
CVSS 3.0
9.1
EPSS
1.9%
CVE-2019-9024 HIGH POC This Week

An issue was discovered in PHP before 5.6.40, 7.x before 7.1.26, 7.2.x before 7.2.14, and 7.3.x before 7.3.1. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP Buffer Overflow Information Disclosure Debian Linux Ubuntu Linux +2
NVD
CVSS 3.0
7.5
EPSS
7.1%
CVE-2019-9022 HIGH POC This Week

An issue was discovered in PHP 7.x before 7.1.26, 7.2.x before 7.2.14, and 7.3.x before 7.3.2. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP Buffer Overflow Information Disclosure Debian Linux Ubuntu Linux +1
NVD
CVSS 3.0
7.5
EPSS
4.2%
CVE-2019-9004 HIGH POC This Week

In Eclipse Wakaama (formerly liblwm2m) 1.0, core/er-coap-13/er-coap-13.c in lwm2mserver in the LWM2M server mishandles invalid options, leading to a memory leak. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Wakaama
NVD GitHub
CVSS 3.0
7.5
EPSS
1.5%
CVE-2019-9019 MEDIUM POC This Month

The British Airways Entertainment System, as installed on Boeing 777-36N(ER) and possibly other aircraft, does not prevent the USB charging/data-transfer feature from interacting with USB keyboard. Rated medium severity (CVSS 6.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Entertainment System
NVD
CVSS 3.0
6.8
EPSS
0.5%
CVE-2019-9016 MEDIUM POC This Month

An XSS vulnerability was discovered in MOPCMS through 2018-11-30. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS PHP Mopcms
NVD GitHub
CVSS 3.0
6.1
EPSS
1.1%
CVE-2019-9003 HIGH PATCH This Week

In the Linux kernel before 4.20.5, attackers can trigger a drivers/char/ipmi/ipmi_msghandler.c use-after-free and OOPS by arranging for certain simultaneous execution of the code, as demonstrated by. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Use After Free vulnerability could allow attackers to access freed memory to execute arbitrary code or crash the application.

Use After Free Linux Information Disclosure Memory Corruption Linux Kernel +6
NVD GitHub
CVSS 3.1
7.5
EPSS
4.9%
CVE-2019-7728 HIGH This Week

An issue was discovered in the Bosch Smart Camera App before 1.3.1 for Android. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Google Apple Information Disclosure Smart Camera
NVD
CVSS 3.0
7.5
EPSS
0.5%
CVE-2019-6485 MEDIUM PATCH This Month

Citrix NetScaler Gateway 12.1 before build 50.31, 12.0 before build 60.9, 11.1 before build 60.14, 11.0 before build 72.17, and 10.5 before build 69.5 and Application Delivery Controller (ADC) 12.1. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required.

Citrix Information Disclosure Oracle Netscaler Gateway Firmware Netscaler Application Delivery Controller Firmware
NVD GitHub
CVSS 3.0
5.9
EPSS
2.3%
CVE-2019-7729 LOW Monitor

An issue was discovered in the Bosch Smart Camera App before 1.3.1 for Android. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity. No vendor patch available.

Google Apple Information Disclosure Smart Camera
NVD
CVSS 3.0
3.3
EPSS
0.3%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy