VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
>
Debian
>
Debian Linux
> Medium
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2019-10-22
CVE-2019-15587
Cross-site Scripting vulnerability in multiple products
In the Loofah gem for Ruby through v2.3.0 unsanitized JavaScript may occur in sanitized output when a crafted SVG element is republished.
network
low complexity
loofah-project
fedoraproject
canonical
debian
CWE-79
5.4
5.4
2019-10-18
CVE-2019-18197
Use After Free vulnerability in multiple products
In xsltCopyText in transform.c in libxslt 1.1.33, a pointer variable isn't reset under certain circumstances.
network
high complexity
xmlsoft
canonical
debian
CWE-416
5.1
5.1
2019-10-17
CVE-2019-17674
Cross-site Scripting vulnerability in multiple products
WordPress before 5.2.4 is vulnerable to stored XSS (cross-site scripting) via the Customizer.
network
low complexity
wordpress
debian
CWE-79
5.4
5.4
2019-10-17
CVE-2019-17673
WordPress before 5.2.4 is vulnerable to poisoning of the cache of JSON GET requests because certain requests lack a Vary: Origin header.
network
low complexity
wordpress
debian
5.0
5.0
2019-10-17
CVE-2019-17672
Cross-site Scripting vulnerability in multiple products
WordPress before 5.2.4 is vulnerable to a stored XSS attack to inject JavaScript into STYLE elements.
network
low complexity
wordpress
debian
CWE-79
6.1
6.1
2019-10-17
CVE-2019-17671
Information Exposure vulnerability in multiple products
In WordPress before 5.2.4, unauthenticated viewing of certain content is possible because the static query property is mishandled.
network
low complexity
wordpress
debian
CWE-200
5.3
5.3
2019-10-16
CVE-2019-2999
Vulnerability in the Java SE product of Oracle Java SE (component: Javadoc).
network
high complexity
oracle
redhat
netapp
debian
opensuse
canonical
4.7
4.7
2019-10-16
CVE-2019-2987
Vulnerability in the Java SE product of Oracle Java SE (component: 2D).
network
oracle
redhat
netapp
debian
4.3
4.3
2019-10-16
CVE-2019-2977
Vulnerability in the Java SE product of Oracle Java SE (component: Hotspot).
network
oracle
netapp
debian
5.8
5.8
2019-10-16
CVE-2019-2975
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Scripting).
network
high complexity
oracle
redhat
netapp
debian
opensuse
mcafee
canonical
4.8
4.8
«
Previous
1
2
...
180
181
182
(current)
183
184
...
418
419
»
Next