Shodan
Vulnerabilities
Vulnerable Software
Security Vulnerabilities - CVEs Published In 2019
CVE-2018-21026
A vulnerability in Hitachi Command Suite 7.x and 8.x before 8.6.5-00 allows an unauthenticated remote user to read internal information.
CVSS Score
7.5
EPSS Score
0.005
Published
2019-11-12
CVE-2012-1572
OpenStack Keystone: extremely long passwords can crash Keystone by exhausting stack space
CVSS Score
7.5
EPSS Score
0.004
Published
2019-11-12
CVE-2019-17234
includes/class-coming-soon-creator.php in the igniteup plugin through 3.4 for WordPress allows unauthenticated arbitrary file deletion.
CVSS Score
7.5
EPSS Score
0.233
Published
2019-11-12
CVE-2019-17235
includes/class-coming-soon-creator.php in the igniteup plugin through 3.4 for WordPress allows information disclosure.
CVSS Score
5.3
EPSS Score
0.006
Published
2019-11-12
CVE-2019-17236
includes/class-coming-soon-creator.php in the igniteup plugin through 3.4 for WordPress is vulnerable to stored XSS.
CVSS Score
6.1
EPSS Score
0.005
Published
2019-11-12
CVE-2019-17237
includes/class-coming-soon-creator.php in the igniteup plugin through 3.4 for WordPress allows CSRF.
CVSS Score
8.8
EPSS Score
0.003
Published
2019-11-12
CVE-2019-18655
File Sharing Wizard version 1.5.0 build 2008 is affected by a Structured Exception Handler based buffer overflow vulnerability. An unauthenticated attacker is able to perform remote command execution and obtain a command shell by sending a HTTP GET request including the malicious payload in the URL. A similar issue to CVE-2019-17415, CVE-2019-16724, and CVE-2010-2331.
CVSS Score
9.8
EPSS Score
0.435
Published
2019-11-12
CVE-2019-18924
Systematic IRIS WebForms 5.4 is vulnerable to directory traversal. By manipulating variables that reference files with ../ (and variations), it is possible to list all the directories and check if a particular file exists.
CVSS Score
5.3
EPSS Score
0.002
Published
2019-11-12
CVE-2019-18925
Systematic IRIS WebForms 5.4 and its functionalities can be accessed and used without any form of authentication.
CVSS Score
9.8
EPSS Score
0.003
Published
2019-11-12
CVE-2019-18926
Systematic IRIS Standards Management (ISM) v2.1 SP1 89 is vulnerable to unauthenticated reflected Cross Site Scripting (XSS). A user input (related to dialog information) is reflected directly in the web page, allowing a malicious user to conduct a Cross Site Scripting attack against users of the application.
CVSS Score
6.1
EPSS Score
0.006
Published
2019-11-12


Products
Pricing
Contact Us

Shodan ® - All rights reserved