Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In August 2019
CVE-2019-3633
Buffer overflow in McAfee Data Loss Prevention (DLPe) for Windows 11.x prior to 11.3.2.8 allows local user to cause the Windows operating system to "blue screen" via a carefully constructed message sent to DLPe which bypasses DLPe internal checks and results in DLPe reading unallocated memory.
CVSS Score
4.4
EPSS Score
0.001
Published
2019-08-21
CVE-2019-12746
An issue was discovered in Open Ticket Request System (OTRS) Community Edition 5.0.x through 5.0.36 and 6.0.x through 6.0.19. A user logged into OTRS as an agent might unknowingly disclose their session ID by sharing the link of an embedded ticket article with third parties. This identifier can be then be potentially abused in order to impersonate the agent user.
CVSS Score
6.5
EPSS Score
0.007
Published
2019-08-21
CVE-2019-13458
An issue was discovered in Open Ticket Request System (OTRS) 7.0.x through 7.0.8, and Community Edition 5.0.x through 5.0.36 and 6.0.x through 6.0.19. An attacker who is logged into OTRS as an agent user with appropriate permissions can leverage OTRS notification tags in templates in order to disclose hashed user passwords.
CVSS Score
2.7
EPSS Score
0.004
Published
2019-08-21
CVE-2017-18560
The content-audit plugin before 1.9.2 for WordPress has XSS.
CVSS Score
6.1
EPSS Score
0.002
Published
2019-08-21
CVE-2017-18565
The updater plugin before 1.35 for WordPress has multiple XSS issues.
CVSS Score
6.1
EPSS Score
0.001
Published
2019-08-21
CVE-2019-15110
The wp-front-end-profile plugin before 0.2.2 for WordPress has XSS.
CVSS Score
6.1
EPSS Score
0.002
Published
2019-08-21
CVE-2019-15111
The wp-front-end-profile plugin before 0.2.2 for WordPress has a privilege escalation issue.
CVSS Score
9.8
EPSS Score
0.003
Published
2019-08-21
CVE-2019-15112
The wp-slimstat plugin before 4.8.1 for WordPress has XSS.
CVSS Score
6.1
EPSS Score
0.003
Published
2019-08-21
CVE-2016-10900
The uji-countdown plugin before 2.0.7 for WordPress has XSS.
CVSS Score
6.1
EPSS Score
0.002
Published
2019-08-21
CVE-2016-10901
The wp-customer-reviews plugin before 3.0.9 for WordPress has XSS in the admin tools.
CVSS Score
6.1
EPSS Score
0.002
Published
2019-08-21


Products
Pricing
Contact Us

Shodan ® - All rights reserved