Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In March 2019
CVE-2019-10107
CMS Made Simple 2.2.10 has XSS via the myaccount.php "Email Address" field, which is reachable via the "My Preferences -> My Account" section.
CVSS Score
5.4
EPSS Score
0.003
Published
2019-03-26
CVE-2019-1569
The Expedition Migration tool 1.1.8 and earlier may allow an authenticated attacker to run arbitrary JavaScript or HTML in the User Mapping Settings for account name of admin user.
CVSS Score
4.8
EPSS Score
0.007
Published
2019-03-26
CVE-2019-1570
The Expedition Migration tool 1.1.8 and earlier may allow an authenticated attacker to run arbitrary JavaScript or HTML in the LDAP server settings.
CVSS Score
4.8
EPSS Score
0.007
Published
2019-03-26
CVE-2019-1572
PAN-OS 9.0.0 may allow an unauthenticated remote user to access php files.
CVSS Score
7.5
EPSS Score
0.005
Published
2019-03-26
CVE-2019-6569
The monitor barrier of the affected products insufficiently blocks data from being forwarded over the mirror port into the mirrored network. An attacker could use this behavior to transmit malicious packets to systems in the mirrored network, possibly influencing their configuration and runtime behavior.
CVSS Score
9.1
EPSS Score
0.005
Published
2019-03-26
CVE-2018-15813
FastStone Image Viewer 6.5 has a User Mode Write AV starting at image00400000+0x00000000000e1237 via a crafted image file.
CVSS Score
5.5
EPSS Score
0.002
Published
2019-03-26
CVE-2018-15814
FastStone Image Viewer 6.5 has a User Mode Write AV starting at image00400000+0x00000000001cb509 via a crafted image file.
CVSS Score
5.5
EPSS Score
0.002
Published
2019-03-26
CVE-2018-15815
FastStone Image Viewer 6.5 has an Exception Handler Chain Corrupted issue starting at image00400000+0x00000000003ef68a via a crafted image file.
CVSS Score
5.5
EPSS Score
0.002
Published
2019-03-26
CVE-2018-15816
FastStone Image Viewer 6.5 has a Read Access Violation on Block Data Move starting at image00400000+0x0000000000002d7d via a crafted image file.
CVSS Score
5.5
EPSS Score
0.002
Published
2019-03-26
CVE-2018-15817
FastStone Image Viewer 6.5 has a Read Access Violation on Block Data Move starting at image00400000+0x0000000000002d63 via a crafted image file.
CVSS Score
5.5
EPSS Score
0.002
Published
2019-03-26


Products
Pricing
Contact Us

Shodan ® - All rights reserved