Vulnerabilities > High
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2019-11-12 | CVE-2010-3844 | Classic Buffer Overflow vulnerability in multiple products An unchecked sscanf() call in ettercap before 0.7.5 allows an insecure temporary settings file to overflow a static-sized buffer on the stack. | 8.8 |
2019-11-12 | CVE-2010-3305 | Cross-Site Request Forgery (CSRF) vulnerability in Pixelpost 1.7.3 Cross-site request forgery (CSRF) vulnerability in pixelpost 1.7.3 could allow remote attackers to change the admin password. | 8.8 |
2019-11-12 | CVE-2019-14367 | Information Exposure vulnerability in Slack-Chat Project Slack-Chat 1.5.5 Slack-Chat through 1.5.5 leaks a Slack Access Token in source code. | 7.5 |
2019-11-12 | CVE-2019-14366 | Information Exposure vulnerability in Slack WP Slacksync WP SlackSync plugin through 1.8.5 for WordPress leaks a Slack Access Token in source code. | 7.5 |
2019-11-12 | CVE-2019-14365 | Information Exposure vulnerability in Intercom 1.2.1 The Intercom plugin through 1.2.1 for WordPress leaks a Slack Access Token in source code. | 7.5 |
2019-11-12 | CVE-2011-2335 | Double Free vulnerability in Google Blink M11 A double-free vulnerability exists in WebKit in Google Chrome before Blink M12 in the WebCore::CSSSelector function. | 7.5 |
2019-11-12 | CVE-2010-2488 | NULL Pointer Dereference vulnerability in ZNC NULL pointer dereference vulnerability in ZNC before 0.092 caused by traffic stats when there are unauthenticated connections. | 7.5 |
2019-11-12 | CVE-2019-1457 | Incorrect Permission Assignment for Critical Resource vulnerability in Microsoft Office 2016/2019 A security feature bypass vulnerability exists in Microsoft Office software by not enforcing macro settings on an Excel document, aka 'Microsoft Office Excel Security Feature Bypass'. | 7.8 |
2019-11-12 | CVE-2019-1456 | Out-of-bounds Write vulnerability in Microsoft products A remote code execution vulnerability exists in Microsoft Windows when the Windows Adobe Type Manager Library improperly handles specially crafted OpenType fonts, aka 'OpenType Font Parsing Remote Code Execution Vulnerability'. | 8.8 |
2019-11-12 | CVE-2019-1448 | Unspecified vulnerability in Microsoft Excel, Office and Office 365 Proplus A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory, aka 'Microsoft Excel Remote Code Execution Vulnerability'. | 7.8 |