Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In September 2019
CVE-2017-18614
The kama-clic-counter plugin 3.4.9 for WordPress has SQL injection via the admin.php order parameter.
CVSS Score
8.1
EPSS Score
0.007
Published
2019-09-13
CVE-2017-18615
The kama-clic-counter plugin before 3.5.0 for WordPress has XSS.
CVSS Score
6.1
EPSS Score
0.005
Published
2019-09-13
CVE-2019-16277
PicoC 2.1 has a heap-based buffer overflow in StringStrcpy in cstdlib/string.c when called from ExpressionParseFunctionCall in expression.c.
CVSS Score
7.8
EPSS Score
0.002
Published
2019-09-13
CVE-2016-10938
The copy-me plugin 1.0.0 for WordPress has CSRF for copying non-public posts to a public location.
CVSS Score
6.5
EPSS Score
0.001
Published
2019-09-13
CVE-2016-10939
The xtremelocator plugin 1.5 for WordPress has SQL injection via the id parameter.
CVSS Score
7.2
EPSS Score
0.005
Published
2019-09-13
CVE-2016-10940
The zm-gallery plugin 1.0 for WordPress has SQL injection via the order parameter.
CVSS Score
7.2
EPSS Score
0.135
Published
2019-09-13
CVE-2016-10941
The podlove-podcasting-plugin-for-wordpress plugin before 2.3.16 for WordPress has XSS exploitable via CSRF.
CVSS Score
6.1
EPSS Score
0.003
Published
2019-09-13
CVE-2016-10942
The podlove-podcasting-plugin-for-wordpress plugin before 2.3.16 for WordPress has SQL injection via the insert_id parameter exploitable via CSRF.
CVSS Score
9.8
EPSS Score
0.01
Published
2019-09-13
CVE-2019-13530
Philips IntelliVue WLAN, portable patient monitors, WLAN Version A, Firmware A.03.09, WLAN Version A, Firmware A.03.09, Part #: M8096-67501, WLAN Version B, Firmware A.01.09, Part #: N/A (Replaced by Version C) and WLAN Version B, Firmware A.01.09, Part #: N/A (Replaced by Version C). An attacker can use these credentials to login via ftp and upload a malicious firmware.
CVSS Score
7.2
EPSS Score
0.002
Published
2019-09-12
CVE-2019-13534
Philips IntelliVue WLAN, portable patient monitors, WLAN Version A, Firmware A.03.09, WLAN Version A, Firmware A.03.09, Part #: M8096-67501, WLAN Version B, Firmware A.01.09, Part #: N/A (Replaced by Version C) and WLAN Version B, Firmware A.01.09, Part #: N/A (Replaced by Version C). The product downloads source code or an executable from a remote location and executes the code without sufficiently verifying the origin and integrity of the code.
CVSS Score
7.2
EPSS Score
0.001
Published
2019-09-12


Products
Pricing
Contact Us

Shodan ® - All rights reserved