CVEDB API

Vulnerabilities

Vulnerable Software

Security Vulnerabilities - CVEs Published In July 2019

CVE-2019-5971

Cross-site request forgery (CSRF) vulnerability in Attendance Manager 0.5.6 and earlier allows remote attackers to hijack the authentication of administrators via unspecified vectors.

CVSS Score

8.8

EPSS Score

0.001

Published

2019-07-05

CVE-2019-5972

Cross-site scripting vulnerability in Online Lesson Booking 0.8.6 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

CVSS Score

6.1

EPSS Score

0.007

Published

2019-07-05

CVE-2019-5973

Cross-site request forgery (CSRF) vulnerability in Online Lesson Booking 0.8.6 and earlier allows remote attackers to hijack the authentication of administrators via unspecified vectors.

CVSS Score

8.8

EPSS Score

0.001

Published

2019-07-05

CVE-2019-5974

Cross-site request forgery (CSRF) vulnerability in Contest Gallery versions prior to 10.4.5 allows remote attackers to hijack the authentication of administrators via unspecified vectors.

CVSS Score

8.8

EPSS Score

0.002

Published

2019-07-05

CVE-2019-5979

Cross-site request forgery (CSRF) vulnerability in Personalized WooCommerce Cart Page 2.4 and earlier allows remote attackers to hijack the authentication of administrators via unspecified vectors.

CVSS Score

8.8

EPSS Score

0.002

Published

2019-07-05

CVE-2019-5980

Cross-site request forgery (CSRF) vulnerability in Related YouTube Videos versions prior to 1.9.9 allows remote attackers to hijack the authentication of administrators via unspecified vectors.

CVSS Score

8.8

EPSS Score

0.001

Published

2019-07-05

CVE-2019-5981

Improper authorization vulnerability in VAIO Update 7.3.0.03150 and earlier allows an attackers to execute arbitrary executable file with administrative privilege via unspecified vectors.

CVSS Score

7.8

EPSS Score

0.002

Published

2019-07-05

CVE-2019-5982

Improper download file verification vulnerability in VAIO Update 7.3.0.03150 and earlier allows remote attackers to conduct a man-in-the-middle attack via a malicous wireless LAN access point. A successful exploitation may result in a malicious file being downloaded/executed.

CVSS Score

7.5

EPSS Score

0.001

Published

2019-07-05

CVE-2019-5983

Cross-site request forgery (CSRF) vulnerability in HTML5 Maps 1.6.5.6 and earlier allows remote attackers to hijack the authentication of administrators via unspecified vectors.

CVSS Score

8.8

EPSS Score

0.001

Published

2019-07-05

CVE-2019-13313

libosinfo 1.5.0 allows local users to discover credentials by listing a process, because credentials are passed to osinfo-install-script via the command line.

CVSS Score

7.8

EPSS Score

0.0

Published

2019-07-05

Prev Next

Page 132

Vulnerabilities

Vulnerable Software

Security Vulnerabilities - CVEs Published In July 2019

Products

Pricing

Contact Us