Vulnerabilities > Exposure of Resource to Wrong Sphere
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-10-25 | CVE-2019-13546 | Exposure of Resource to Wrong Sphere vulnerability in Philips Intellispace Perinatal K In IntelliSpace Perinatal, Versions K and prior, a vulnerability within the IntelliSpace Perinatal application environment could enable an unauthorized attacker with physical access to a locked application screen, or an authorized remote desktop session host application user to break-out from the containment of the application and access unauthorized resources from the Windows operating system as the limited-access Windows user. | 6.8 |
| 2019-09-25 | CVE-2019-12660 | Exposure of Resource to Wrong Sphere vulnerability in Cisco IOS XE A vulnerability in the CLI of Cisco IOS XE Software could allow an authenticated, local attacker to write values to the underlying memory of an affected device. | 5.5 |
| 2019-09-23 | CVE-2019-16518 | Exposure of Resource to Wrong Sphere vulnerability in Vandyvape Swell KIT MOD Firmware 2.0.2 An issue was discovered on Swell Kit Mod devices that use the Vandy Vape platform. | 4.3 |
| 2019-09-20 | CVE-2019-15138 | Exposure of Resource to Wrong Sphere vulnerability in Html-Pdf Project Html-Pdf The html-pdf package 2.2.0 for Node.js has an arbitrary file read vulnerability via an HTML file that uses XMLHttpRequest to access a file:/// URL. | 7.5 |
| 2019-09-20 | CVE-2016-11010 | Exposure of Resource to Wrong Sphere vulnerability in Usabilitydynamics Wp-Invoice The wp-invoice plugin before 4.1.1 for WordPress has incorrect access control over wpi_twocheckout payer metadata updates. | 5.3 |
| 2019-09-20 | CVE-2016-11009 | Exposure of Resource to Wrong Sphere vulnerability in Usabilitydynamics Wp-Invoice The wp-invoice plugin before 4.1.1 for WordPress has incorrect access control over wpi_interkassa payer metadata updates. | 5.3 |
| 2019-09-20 | CVE-2016-11008 | Exposure of Resource to Wrong Sphere vulnerability in Usabilitydynamics Wp-Invoice The wp-invoice plugin before 4.1.1 for WordPress has incorrect access control over wpi_paypal payer metadata updates. | 5.3 |
| 2019-09-20 | CVE-2016-11007 | Exposure of Resource to Wrong Sphere vulnerability in Usabilitydynamics Wp-Invoice The wp-invoice plugin before 4.1.1 for WordPress has incorrect access control over wpi_user_id for invoice retrieval. | 5.3 |
| 2019-09-20 | CVE-2016-11006 | Exposure of Resource to Wrong Sphere vulnerability in Usabilitydynamics Wp-Invoice The wp-invoice plugin before 4.1.1 for WordPress has incorrect access control for admin_init settings changes. | 5.3 |
| 2019-08-01 | CVE-2018-20947 | Exposure of Resource to Wrong Sphere vulnerability in Cpanel cPanel before 68.0.27 allows certain file-write operations via the telnetcrt script (SEC-356). | 5.5 |