Skip to main content
CVE-2019-5114 CRITICAL POC Act Now

An exploitable SQL injection vulnerability exists in the authenticated portion of YouPHPTube 7.6. Rated critical severity (CVSS 9.9), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

SQLi Youphptube
NVD
CVSS 3.1
9.9
EPSS
1.4%
CVE-2019-5129 CRITICAL POC THREAT Act Now

A command injection have been found in YouPHPTube Encoder. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP Command Injection Youphptube Encoder
NVD
CVSS 3.1
9.8
EPSS
38.5%
CVE-2019-5128 CRITICAL POC THREAT Act Now

A command injection have been found in YouPHPTube Encoder. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP Command Injection Youphptube Encoder
NVD
CVSS 3.1
9.8
EPSS
30.2%
CVE-2019-5127 CRITICAL POC THREAT Act Now

A command injection have been found in YouPHPTube Encoder. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP Command Injection Youphptube Encoder
NVD
CVSS 3.1
9.8
EPSS
45.3%
CVE-2019-13553 CRITICAL Act Now

Rittal Chiller SK 3232-Series web interface as built upon Carel pCOWeb firmware A1.5.3 - B1.2.4. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Pcoweb Firmware
NVD
CVSS 3.1
9.8
EPSS
1.8%
CVE-2019-16265 CRITICAL Act Now

CODESYS V2.3 ENI server up to V3.2.2.24 has a Buffer Overflow. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Memory Corruption Eni Server Codesys
NVD
CVSS 3.1
9.8
EPSS
1.6%
CVE-2019-14451 CRITICAL Act Now

RepetierServer.exe in Repetier-Server 0.8 through 0.91 does not properly validate the XML data structure provided when uploading a new printer configuration. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

File Upload RCE Repetier Server
NVD
CVSS 3.1
9.8
EPSS
4.5%
CVE-2019-8088 CRITICAL Act Now

Adobe Experience Manager versions 6.5, 6.4, 6.3 and 6.2 have a command injection vulnerability. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE Command Injection Adobe Experience Manager
NVD
CVSS 3.1
9.8
EPSS
5.8%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy