Security Vulnerabilities - CVEs Published In September 2019
TuziCMS 2.0.6 has index.php/manage/notice/do_add CSRF.
CVSS Score
8.8
EPSS Score
0.001
Published
2019-09-21
TuziCMS 2.0.6 has index.php/manage/link/do_add CSRF.
CVSS Score
8.8
EPSS Score
0.002
Published
2019-09-21
joyplus-cms 1.6.0 has admin_ajax.php?action=savexml&tab=vodplay CSRF.
CVSS Score
8.8
EPSS Score
0.001
Published
2019-09-21
Ogma CMS 0.5 has XSS via creation of a new blog.
CVSS Score
5.4
EPSS Score
0.003
Published
2019-09-21
An issue was discovered in ThinkSAAS 2.91. There is XSS via the index.php?app=group&ac=create&ts=do groupname parameter.
CVSS Score
4.8
EPSS Score
0.002
Published
2019-09-21
An issue was discovered in ThinkSAAS 2.91. There is XSS via the content to the index.php?app=group&ac=comment&ts=do&js=1 URI, as demonstrated by a crafted SVG document in the SRC attribute of an EMBED element.
CVSS Score
6.1
EPSS Score
0.002
Published
2019-09-21
joyplus-cms 1.6.0 allows reinstallation if the install/ URI remains available.
CVSS Score
7.5
EPSS Score
0.002
Published
2019-09-21
On Supermicro H11, H12, M11, X9, X10, and X11 products, a combination of encryption and authentication problems in the virtual media service allows capture of BMC credentials and data transferred over virtual media devices. Attackers can use captured credentials to connect virtual USB devices to the server managed by the BMC.
CVSS Score
10.0
EPSS Score
0.001
Published
2019-09-21
On Supermicro X10 and X11 products, a client's access privileges may be transferred to a different client that later has the same socket file descriptor number. In opportunistic circumstances, an attacker can simply connect to the virtual media service, and then connect virtual USB devices to the server managed by the BMC.
CVSS Score
10.0
EPSS Score
0.007
Published
2019-09-21
The html-pdf package 2.2.0 for Node.js has an arbitrary file read vulnerability via an HTML file that uses XMLHttpRequest to access a file:/// URL.
CVSS Score
7.5
EPSS Score
0.003
Published
2019-09-20