Vulnerabilities > Use of Incorrectly-Resolved Name or Reference
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-01-24 | CVE-2019-1351 | Use of Incorrectly-Resolved Name or Reference vulnerability in multiple products A tampering vulnerability exists when Git for Visual Studio improperly handles virtual drive paths, aka 'Git for Visual Studio Tampering Vulnerability'. | 7.5 |
| 2019-12-02 | CVE-2019-19493 | Use of Incorrectly-Resolved Name or Reference vulnerability in Kentico Kentico before 12.0.50 allows file uploads in which the Content-Type header is inconsistent with the file extension, leading to XSS. | 5.4 |
| 2019-10-14 | CVE-2019-17575 | Use of Incorrectly-Resolved Name or Reference vulnerability in Wbce CMS A file-rename filter bypass exists in admin/media/rename.php in WBCE CMS 1.4.0 and earlier. | 7.2 |
| 2019-06-11 | CVE-2019-0220 | Use of Incorrectly-Resolved Name or Reference vulnerability in multiple products A vulnerability was found in Apache HTTP Server 2.4.0 to 2.4.38. | 5.3 |
| 2019-04-25 | CVE-2019-9901 | Use of Incorrectly-Resolved Name or Reference vulnerability in Envoyproxy Envoy Envoy 1.9.0 and before does not normalize HTTP URL paths. | 10.0 |
| 2019-04-09 | CVE-2019-0816 | Use of Incorrectly-Resolved Name or Reference vulnerability in Canonical Ubuntu Linux 18.04 A security feature bypass exists in Azure SSH Keypairs, due to a change in the provisioning logic for some Linux images that use cloud-init, aka 'Azure SSH Keypairs Security Feature Bypass Vulnerability'. | 5.1 |
| 2019-03-06 | CVE-2019-9616 | Use of Incorrectly-Resolved Name or Reference vulnerability in Ofcms Project Ofcms 1.1.1/1.1.2 An issue was discovered in OFCMS before 1.1.3. | 7.2 |
| 2019-02-18 | CVE-2019-8908 | Use of Incorrectly-Resolved Name or Reference vulnerability in Wtcms Project Wtcms 1.0 An issue was discovered in WTCMS 1.0. | 9.8 |
| 2019-02-17 | CVE-2019-8395 | Use of Incorrectly-Resolved Name or Reference vulnerability in Zohocorp Manageengine Servicedesk Plus An Insecure Direct Object Reference (IDOR) vulnerability exists in Zoho ManageEngine ServiceDesk Plus (SDP) before 10.0 build 10007 via an attachment to a request. | 9.8 |
| 2019-02-11 | CVE-2019-7731 | Use of Incorrectly-Resolved Name or Reference vulnerability in Mywebsql 3.7 MyWebSQL 3.7 has a remote code execution (RCE) vulnerability after an attacker writes shell code into the database, and executes the Backup Database function with a .php filename for the backup's archive file. | 9.8 |