The Common Vulnerabilities and Exposures (CVE) project, maintained by the MITRE Corporation, is a list of all standardized names for vulnerabilities and security exposures.
| ID | Description | Priority | Modified date |
|---|---|---|---|
| CVE-2019-7396 | In ImageMagick before 7.0.8-25, a memory leak exists in ReadSIXELImage in coders/sixel.c. | Medium | Feb 4, 2019 |
| CVE-2019-7395 | In ImageMagick before 7.0.8-25, a memory leak exists in WritePSDChannel in coders/psd.c. | Medium | Feb 4, 2019 |
| CVE-2019-7390 | An issue was discovered in /bin/goahead on D-Link DIR-823G devices with firmware 1.02B03. There is incorrect access control allowing remote attackers to hijack the DNS service configuration of all clients in the WLAN, without authentication, via the SetWanSettings HNAP API. | -- | Feb 4, 2019 |
| CVE-2019-7389 | An issue was discovered in /bin/goahead on D-Link DIR-823G devices with the firmware 1.02B03. There is incorrect access control allowing remote attackers to reset the router without authentication via the SetFactoryDefault HNAP API. Consequently, an attacker can achieve a denial-of-service attack without authentication. | High | Feb 4, 2019 |
| CVE-2019-7388 | An issue was discovered in /bin/goahead on D-Link DIR-823G devices with firmware 1.02B03. There is incorrect access control allowing remote attackers to get sensitive information (such as MAC address) about all clients in the WLAN via the GetClientInfo HNAP API. Consequently, an attacker can achieve information disclosure without authentication. | Medium | Feb 4, 2019 |
| CVE-2019-7387 | A local file inclusion vulnerability exists in the web interface of Systrome Cumilon ISG-600C, ISG-600H, and ISG-800W 1.1-R2.1_TRUNK-20180914.bin devices. When the export function is called from system/maintenance/export.php, it accepts the path provided by the user, leading to path traversal via the name parameter. | -- | Feb 4, 2019 |
| CVE-2019-7352 | Self - Stored Cross Site Scripting (XSS) exists in ZoneMinder through 1.32.3, as the view \'state\' (aka Run State) (state.php) does no input validation to the value supplied to the \'New State\' (aka newState) field, allowing an attacker to execute HTML or JavaScript code. | Medium | Feb 4, 2019 |
| CVE-2019-7351 | Log Injection exists in ZoneMinder through 1.32.3, as an attacker can entice the victim to visit a specially crafted link, which in turn will inject a custom Log message provided by the attacker in the \'log\' view page, as demonstrated by the message=User%20\'admin\'%20Logged%20in value. | Medium | Feb 4, 2019 |
| CVE-2019-7350 | Session fixation exists in ZoneMinder through 1.32.3, as an attacker can fixate his own session cookies to the next logged-in user, thereby hijacking the victim\'s account. This occurs because a set of multiple cookies (between 3 and 5) is being generated when a user successfully logs in, and these sets overlap for successive logins. | Medium | Feb 4, 2019 |
| CVE-2019-7349 | Reflected Cross Site Scripting (XSS) exists in ZoneMinder through 1.32.3, allowing an attacker to execute HTML or JavaScript code via a vulnerable \'newMonitor[V4LCapturesPerFrame]\' parameter value in the view monitor (monitor.php) because proper filtration is omitted. | Medium | Feb 4, 2019 |
| CVE-2019-7348 | Self - Stored Cross Site Scripting (XSS) exists in ZoneMinder through 1.32.3, allowing an attacker to execute HTML or JavaScript code via a vulnerable \'username\' parameter value in the view user (user.php) because proper filtration is omitted. | Medium | Feb 4, 2019 |
| CVE-2019-7347 | A Time-of-check Time-of-use (TOCTOU) Race Condition exists in ZoneMinder through 1.32.3 as a session remains active for an authenticated user even after deletion from the users table. This allows a nonexistent user to access and modify records (add/delete Monitors, Users, etc.). | Medium | Feb 4, 2019 |
| CVE-2019-7346 | A CSRF check issue exists in ZoneMinder through 1.32.3 as whenever a CSRF check fails, a callback function is called displaying a Try again button, which allows resending the failed request, making the CSRF attack successful. | Medium | Feb 4, 2019 |
| CVE-2019-7345 | Self - Stored Cross Site Scripting (XSS) exists in ZoneMinder through 1.32.3, as the view \'options\' (options.php) does no input validation for the WEB_TITLE, HOME_URL, HOME_CONTENT, or WEB_CONSOLE_BANNER value, allowing an attacker to execute HTML or JavaScript code. This relates to functions.php. | Low | Feb 4, 2019 |
| CVE-2019-7344 | Reflected XSS exists in ZoneMinder through 1.32.3, allowing an attacker to execute HTML or JavaScript code in the view \'filter\' as it insecurely prints the \'filter[Name]\' (aka Filter name) value on the web page without applying any proper filtration. | Medium | Feb 4, 2019 |
| CVE-2019-7343 | Reflected - Cross Site Scripting (XSS) exists in ZoneMinder through 1.32.3, allowing an attacker to execute HTML or JavaScript code via a vulnerable \'newMonitor[Method]\' parameter value in the view monitor (monitor.php) because proper filtration is omitted. | Medium | Feb 4, 2019 |
| CVE-2019-7342 | POST - Cross Site Scripting (XSS) exists in ZoneMinder through 1.32.3, allowing an attacker to execute HTML or JavaScript code via a vulnerable \'filter[AutoExecuteCmd]\' parameter value in the view filter (filter.php) because proper filtration is omitted. | Medium | Feb 4, 2019 |
| CVE-2019-7341 | Reflected - Cross Site Scripting (XSS) exists in ZoneMinder through 1.32.3, allowing an attacker to execute HTML or JavaScript code via a vulnerable \'newMonitor[LinkedMonitors]\' parameter value in the view monitor (monitor.php) because proper filtration is omitted. | Medium | Feb 4, 2019 |
| CVE-2019-7340 | POST - Cross Site Scripting (XSS) exists in ZoneMinder through 1.32.3, allowing an attacker to execute HTML or JavaScript code via a vulnerable \'filter[Query][terms][0][val]\' parameter value in the view filter (filter.php) because proper filtration is omitted. | Medium | Feb 4, 2019 |
| CVE-2019-7339 | POST - Cross Site Scripting (XSS) exists in ZoneMinder through 1.32.3, allowing an attacker to execute HTML or JavaScript code via a vulnerable \'level\' parameter value in the view log (log.php) because proper filtration is omitted. | Medium | Feb 4, 2019 |
| CVE-2019-7338 | Self - Stored XSS exists in ZoneMinder through 1.32.3, allowing an attacker to execute HTML or JavaScript code in the view \'group\' as it insecurely prints the \'Group Name\' value on the web page without applying any proper filtration. | Medium | Feb 4, 2019 |
| CVE-2019-7337 | Reflected Cross Site Scripting (XSS) exists in ZoneMinder through 1.32.3 as the view \'events\' (events.php) insecurely displays the limit parameter value, without applying any proper output filtration. This issue exists because of the function sortHeader() in functions.php, which insecurely returns the value of the limit query string parameter without applying any filtration. | Low | Feb 4, 2019 |
| CVE-2019-7336 | Self - Stored Cross Site Scripting (XSS) exists in ZoneMinder through 1.32.3, as the view _monitor_filters.php contains takes in input from the user and saves it into the session, and retrieves it later (insecurely). The values of the MonitorName and Source parameters are being displayed without any output filtration being applied. This relates to the view=cycle value. | Medium | Feb 4, 2019 |
| CVE-2019-7335 | Self - Stored XSS exists in ZoneMinder through 1.32.3, allowing an attacker to execute HTML or JavaScript code in the view \'log\' as it insecurely prints the \'Log Message\' value on the web page without applying any proper filtration. This relates to the view=logs value. | Medium | Feb 4, 2019 |
| CVE-2019-7334 | Reflected Cross Site Scripting (XSS) exists in ZoneMinder through 1.32.3, allowing an attacker to execute HTML or JavaScript code via a vulnerable \'Exportfile\' parameter value in the view export (export.php) because proper filtration is omitted. | Medium | Feb 4, 2019 |
| CVE-2019-7333 | Reflected Cross Site Scripting (XSS) exists in ZoneMinder through 1.32.3, allowing an attacker to execute HTML or JavaScript code via a vulnerable \'Exportfile\' parameter value in the view download (download.php) because proper filtration is omitted. | Medium | Feb 4, 2019 |
| CVE-2019-7332 | Reflected Cross Site Scripting (XSS) exists in ZoneMinder through 1.32.3, allowing an attacker to execute HTML or JavaScript code via a vulnerable \'eid\' (aka Event ID) parameter value in the view download (download.php) because proper filtration is omitted. | Medium | Feb 4, 2019 |
| CVE-2019-7331 | Self - Stored Cross Site Scripting (XSS) exists in ZoneMinder through 1.32.3 while editing an existing monitor field named signal check color (monitor.php). There exists no input validation or output filtration, leaving it vulnerable to HTML Injection and an XSS attack. | Medium | Feb 4, 2019 |
| CVE-2019-7330 | Reflected Cross Site Scripting (XSS) exists in ZoneMinder through 1.32.3, allowing an attacker to execute HTML or JavaScript code via a vulnerable \'show\' parameter value in the view frame (frame.php) because proper filtration is omitted. | Medium | Feb 4, 2019 |
| CVE-2019-7329 | Reflected Cross Site Scripting (XSS) exists in ZoneMinder through 1.32.3, as the form action on multiple views utilizes $_SERVER[\'PHP_SELF\'] insecurely, mishandling any arbitrary input appended to the webroot URL, without any proper filtration, leading to XSS. | Medium | Feb 4, 2019 |
| CVE-2019-7328 | Reflected Cross Site Scripting (XSS) exists in ZoneMinder through 1.32.3, allowing an attacker to execute HTML or JavaScript code via a vulnerable \'scale\' parameter value in the view frame (frame.php) via /js/frame.js.php because proper filtration is omitted. | Medium | Feb 4, 2019 |
| CVE-2019-7327 | Reflected Cross Site Scripting (XSS) exists in ZoneMinder through 1.32.3, allowing an attacker to execute HTML or JavaScript code via a vulnerable \'scale\' parameter value in the view frame (frame.php) because proper filtration is omitted. | Medium | Feb 4, 2019 |
| CVE-2019-7326 | Self - Stored Cross Site Scripting (XSS) exists in ZoneMinder through 1.32.3, allowing an attacker to execute HTML or JavaScript code via a vulnerable \'Host\' parameter value in the view console (console.php) because proper filtration is omitted. This relates to the index.php?view=monitor Host Name field. | Medium | Feb 4, 2019 |
| CVE-2019-7325 | Reflected Cross Site Scripting (XSS) exists in ZoneMinder through 1.32.3, as multiple views under web/skins/classic/views insecurely utilize $_REQUEST[\'PHP_SELF\'], without applying any proper filtration. | Medium | Feb 4, 2019 |
| CVE-2019-7324 | app/Core/Paginator.php in Kanboard before 1.2.8 has XSS in pagination sorting. | Medium | Feb 4, 2019 |
| CVE-2019-7323 | GUP (generic update process) in LightySoft LogMX before 7.4.0 does not properly verify the authenticity of updates, which allows man-in-the-middle attackers to execute arbitrary code via a Trojan horse update. The update process relies on cleartext HTTP. The attacker could replace the LogMXUpdater.class file. | -- | Feb 4, 2019 |
| CVE-2019-7317 | png_image_free in png.c in libpng 1.6.36 has a use-after-free because png_image_free_function is called under png_safe_execute. | Low | Feb 4, 2019 |
| CVE-2019-7316 | An issue was discovered in CSS-TRICKS Chat2 through 2015-05-05. The userid parameter in jumpin.php has a SQL injection vulnerability. | High | Feb 4, 2019 |
| CVE-2019-7314 | liblivemedia in Live555 before 2019.02.03 mishandles the termination of an RTSP stream after RTP/RTCP-over-RTSP has been set up, which could lead to a Use-After-Free error that causes the RTSP server to crash (Segmentation fault) or possibly have unspecified other impact. | High | Feb 3, 2019 |
| CVE-2019-7313 | www/resource.py in Buildbot before 1.8.1 allows CRLF injection in the Location header of /auth/login and /auth/logout via the redirect parameter. This affects other web sites in the same domain. | Medium | Feb 3, 2019 |
| CVE-2019-7312 | Limited plaintext disclosure exists in PRIMX Zed Entreprise for Windows before 6.1.2240, Zed Entreprise for Windows (ANSSI qualification submission) before 6.1.2150, Zed Entreprise for Mac before 2.0.199, Zed Entreprise for Linux before 2.0.199, Zed Pro for Windows before 1.0.195, Zed Pro for Mac before 1.0.199, Zed Pro for Linux before 1.0.199, Zed Free for Windows before 1.0.195, Zed Free for Mac before 1.0.199, and Zed Free for Linux before 1.0.199. Analyzing a Zed container can lead to the disclosure of plaintext content of very small files (a few bytes) stored into it. | -- | Feb 3, 2019 |
| CVE-2019-7310 | In Poppler 0.73.0, a heap-based buffer over-read (due to an integer signedness error in the XRef::getEntry function in XRef.cc) allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted PDF document, as demonstrated by pdftocairo. | Medium | Feb 2, 2019 |
| CVE-2019-7309 | In the GNU C Library (aka glibc or libc6) through 2.29, the memcmp function for the x32 architecture can incorrectly return zero (indicating that the inputs are equal) because the RDX most significant bit is mishandled. | Low | Feb 2, 2019 |
| CVE-2019-7308 | kernel/bpf/verifier.c in the Linux kernel before 4.20.6 performs undesirable out-of-bounds speculation on pointer arithmetic in various cases, including cases of different branches with different state or limits to sanitize, leading to side-channel attacks. | -- | Feb 1, 2019 |
| CVE-2019-7301 | Zen Load Balancer 3.10.1 allows remote authenticated admin users to execute arbitrary commands as root via shell metacharacters in the index.cgi?action=View_Cert certname parameter. | High | Feb 1, 2019 |
| CVE-2019-7300 | Artica Proxy 3.06.200056 allows remote attackers to execute arbitrary commands as root by reading the ressources/settings.inc ldap_admin and ldap_password fields, using these credentials at logon.php, and then entering the commands in the admin.index.php command-line field. | High | Feb 1, 2019 |
| CVE-2019-7298 | An issue was discovered on D-Link DIR-823G devices with firmware through 1.02B03. A command Injection vulnerability allows attackers to execute arbitrary OS commands via a crafted /HNAP1 request. This occurs when any HNAP API function triggers a call to the system function with untrusted input from the request body, such as a body of \' /bin/telnetd\' for the GetDeviceSettingsset API function. Consequently, an attacker can execute any command remotely when they control this input. | High | Feb 1, 2019 |
| CVE-2019-7297 | An issue was discovered on D-Link DIR-823G devices with firmware through 1.02B03. A command Injection vulnerability allows attackers to execute arbitrary OS commands via shell metacharacters in a crafted /HNAP1 request. This occurs when the GetNetworkTomographyResult function calls the system function with an untrusted input parameter named Address. Consequently, an attacker can execute any command remotely when they control this input. | -- | Jan 31, 2019 |
| CVE-2019-7296 | typora through 0.9.64 has XSS, with resultant remote command execution, during inline rendering of a mathematical formula. | Medium | Jan 31, 2019 |
| CVE-2019-7295 | typora through 0.9.63 has XSS, with resultant remote command execution, during block rendering of a mathematical formula. | Medium | Jan 31, 2019 |
