admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-06-21 05:40:25 +00:00
Code Issues Packages Projects Releases Wiki Activity

"-Synchronized-Data."

Browse Source
This commit is contained in:
CVE Team 2019-09-20 16:00:59 +00:00
parent 978e9c203f
commit b7f812a7cf
No known key found for this signature in database
GPG Key ID: 0DA1F9F56BC892E8
23 changed files with 1562 additions and 187 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

72
2015/9xxx/CVE-2015-9392.json Normal file
View File

@ -0,0 +1,72 @@
{
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2015-9392",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The users-ultra plugin before 1.5.63 for WordPress has XSS via the p_name parameter."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://wpvulndb.com/vulnerabilities/8350",
"refsource": "MISC",
"name": "https://wpvulndb.com/vulnerabilities/8350"
},
{
"url": "https://wordpress.org/plugins/users-ultra/#developers",
"refsource": "MISC",
"name": "https://wordpress.org/plugins/users-ultra/#developers"
},
{
"url": "https://seclists.org/bugtraq/2015/Dec/13",
"refsource": "MISC",
"name": "https://seclists.org/bugtraq/2015/Dec/13"
}
]
}
}

67
2015/9xxx/CVE-2015-9393.json Normal file
View File

@ -0,0 +1,67 @@
{
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2015-9393",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The users-ultra plugin before 1.5.63 for WordPress has XSS via the p_desc parameter."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://wpvulndb.com/vulnerabilities/8350",
"refsource": "MISC",
"name": "https://wpvulndb.com/vulnerabilities/8350"
},
{
"url": "https://wordpress.org/plugins/users-ultra/#developers",
"refsource": "MISC",
"name": "https://wordpress.org/plugins/users-ultra/#developers"
}
]
}
}

67
2015/9xxx/CVE-2015-9394.json Normal file
View File

@ -0,0 +1,67 @@
{
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2015-9394",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The users-ultra plugin before 1.5.63 for WordPress has CSRF via action=package_add_new to wp-admin/admin-ajax.php."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://wpvulndb.com/vulnerabilities/8350",
"refsource": "MISC",
"name": "https://wpvulndb.com/vulnerabilities/8350"
},
{
"url": "https://wordpress.org/plugins/users-ultra/#developers",
"refsource": "MISC",
"name": "https://wordpress.org/plugins/users-ultra/#developers"
}
]
}
}

72
2015/9xxx/CVE-2015-9395.json Normal file
View File

@ -0,0 +1,72 @@
{
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2015-9395",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The users-ultra plugin before 1.5.64 for WordPress has SQL Injection via an ajax action."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://wordpress.org/plugins/users-ultra/#developers",
"refsource": "MISC",
"name": "https://wordpress.org/plugins/users-ultra/#developers"
},
{
"url": "https://wpvulndb.com/vulnerabilities/8349/",
"refsource": "MISC",
"name": "https://wpvulndb.com/vulnerabilities/8349/"
},
{
"url": "https://seclists.org/bugtraq/2015/Dec/12",
"refsource": "MISC",
"name": "https://seclists.org/bugtraq/2015/Dec/12"
}
]
}
}

67
2015/9xxx/CVE-2015-9396.json Normal file
View File

@ -0,0 +1,67 @@
{
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2015-9396",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The auto-thickbox-plus plugin through 1.9 for WordPress has wp-content/plugins/auto-thickbox-plus/download.min.php?file= XSS."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://wpvulndb.com/vulnerabilities/8344",
"refsource": "MISC",
"name": "https://wpvulndb.com/vulnerabilities/8344"
},
{
"url": "https://wordpress.org/plugins/auto-thickbox-plus/#developers",
"refsource": "MISC",
"name": "https://wordpress.org/plugins/auto-thickbox-plus/#developers"
}
]
}
}

72
2015/9xxx/CVE-2015-9397.json Normal file
View File

@ -0,0 +1,72 @@
{
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2015-9397",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The gocodes plugin through 1.3.5 for WordPress has wp-admin/tools.php deletegc XSS."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://wpvulndb.com/vulnerabilities/8322",
"refsource": "MISC",
"name": "https://wpvulndb.com/vulnerabilities/8322"
},
{
"url": "https://wordpress.org/plugins/gocodes/#developers",
"refsource": "MISC",
"name": "https://wordpress.org/plugins/gocodes/#developers"
},
{
"url": "http://cinu.pl/research/wp-plugins/mail_7ab7e224de198b2eda11dcb072d6bc8d.html",
"refsource": "MISC",
"name": "http://cinu.pl/research/wp-plugins/mail_7ab7e224de198b2eda11dcb072d6bc8d.html"
}
]
}
}

72
2015/9xxx/CVE-2015-9398.json Normal file
View File

@ -0,0 +1,72 @@
{
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2015-9398",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The gocodes plugin through 1.3.5 for WordPress has wp-admin/tools.php gcid SQL injection."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://wpvulndb.com/vulnerabilities/8322",
"refsource": "MISC",
"name": "https://wpvulndb.com/vulnerabilities/8322"
},
{
"url": "https://wordpress.org/plugins/gocodes/#developers",
"refsource": "MISC",
"name": "https://wordpress.org/plugins/gocodes/#developers"
},
{
"url": "http://cinu.pl/research/wp-plugins/mail_7ab7e224de198b2eda11dcb072d6bc8d.html",
"refsource": "MISC",
"name": "http://cinu.pl/research/wp-plugins/mail_7ab7e224de198b2eda11dcb072d6bc8d.html"
}
]
}
}

72
2015/9xxx/CVE-2015-9399.json Normal file
View File

@ -0,0 +1,72 @@
{
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2015-9399",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The wp-stats-dashboard plugin through 2.9.4 for WordPress has admin/graph_trend.php type SQL injection."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://wpvulndb.com/vulnerabilities/8316",
"refsource": "MISC",
"name": "https://wpvulndb.com/vulnerabilities/8316"
},
{
"url": "https://wordpress.org/plugins/wp-stats-dashboard/#developers",
"refsource": "MISC",
"name": "https://wordpress.org/plugins/wp-stats-dashboard/#developers"
},
{
"url": "http://cinu.pl/research/wp-plugins/mail_468b117b2dc86cb3d2ae4b8c81884a99.html",
"refsource": "MISC",
"name": "http://cinu.pl/research/wp-plugins/mail_468b117b2dc86cb3d2ae4b8c81884a99.html"
}
]
}
}

72
2015/9xxx/CVE-2015-9400.json Normal file
View File

@ -0,0 +1,72 @@
{
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2015-9400",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The wordpress-meta-robots plugin through 2.1 for WordPress has wp-admin/post-new.php text SQL injection."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://wpvulndb.com/vulnerabilities/8304",
"refsource": "MISC",
"name": "https://wpvulndb.com/vulnerabilities/8304"
},
{
"url": "https://wordpress.org/plugins/wordpress-meta-robots/#developers",
"refsource": "MISC",
"name": "https://wordpress.org/plugins/wordpress-meta-robots/#developers"
},
{
"url": "http://cinu.pl/research/wp-plugins/mail_b31beb377f24e401c9ec44a0f331a174.html",
"refsource": "MISC",
"name": "http://cinu.pl/research/wp-plugins/mail_b31beb377f24e401c9ec44a0f331a174.html"
}
]
}
}

72
2015/9xxx/CVE-2015-9401.json Normal file
View File

@ -0,0 +1,72 @@
{
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2015-9401",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The websimon-tables plugin through 1.3.4 for WordPress has wp-admin/tools.php edit_style id XSS."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://wpvulndb.com/vulnerabilities/8293",
"refsource": "MISC",
"name": "https://wpvulndb.com/vulnerabilities/8293"
},
{
"url": "https://wordpress.org/plugins/websimon-tables/#developers",
"refsource": "MISC",
"name": "https://wordpress.org/plugins/websimon-tables/#developers"
},
{
"url": "http://cinu.pl/research/wp-plugins/mail_ae9e4b6fefceaebd216ddcf003f88bdd.html",
"refsource": "MISC",
"name": "http://cinu.pl/research/wp-plugins/mail_ae9e4b6fefceaebd216ddcf003f88bdd.html"
}
]
}
}

72
2015/9xxx/CVE-2015-9402.json Normal file
View File

@ -0,0 +1,72 @@
{
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2015-9402",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The users-ultra plugin before 1.5.59 for WordPress has uultra-form-cvs-form-conf arbitrary file upload."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://wpvulndb.com/vulnerabilities/8243",
"refsource": "MISC",
"name": "https://wpvulndb.com/vulnerabilities/8243"
},
{
"url": "https://wordpress.org/plugins/users-ultra/#developers",
"refsource": "MISC",
"name": "https://wordpress.org/plugins/users-ultra/#developers"
},
{
"url": "https://seclists.org/bugtraq/2015/Nov/93",
"refsource": "MISC",
"name": "https://seclists.org/bugtraq/2015/Nov/93"
}
]
}
}

67
2015/9xxx/CVE-2015-9403.json Normal file
View File

@ -0,0 +1,67 @@
{
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2015-9403",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The neuvoo-jobroll plugin 2.0 for WordPress has neuvoo_location XSS."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://wordpress.org/plugins/neuvoo-jobroll/#developers",
"refsource": "MISC",
"name": "https://wordpress.org/plugins/neuvoo-jobroll/#developers"
},
{
"url": "https://packetstormsecurity.com/files/134240/",
"refsource": "MISC",
"name": "https://packetstormsecurity.com/files/134240/"
}
]
}
}

67
2015/9xxx/CVE-2015-9404.json Normal file
View File

@ -0,0 +1,67 @@
{
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2015-9404",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The neuvoo-jobroll plugin 2.0 for WordPress has neuvoo_keywords XSS."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://wordpress.org/plugins/neuvoo-jobroll/#developers",
"refsource": "MISC",
"name": "https://wordpress.org/plugins/neuvoo-jobroll/#developers"
},
{
"url": "https://packetstormsecurity.com/files/134240/",
"refsource": "MISC",
"name": "https://packetstormsecurity.com/files/134240/"
}
]
}
}

72
2015/9xxx/CVE-2015-9405.json Normal file
View File

@ -0,0 +1,72 @@
{
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2015-9405",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The wp-piwik plugin before 1.0.5 for WordPress has XSS."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://wpvulndb.com/vulnerabilities/8216",
"refsource": "MISC",
"name": "https://wpvulndb.com/vulnerabilities/8216"
},
{
"url": "https://wordpress.org/plugins/wp-piwik/#developers",
"refsource": "MISC",
"name": "https://wordpress.org/plugins/wp-piwik/#developers"
},
{
"url": "https://github.com/braekling/WP-Matomo/commit/5110bfdb437a9f19b185ba8af33776fcb5e19940",
"refsource": "MISC",
"name": "https://github.com/braekling/WP-Matomo/commit/5110bfdb437a9f19b185ba8af33776fcb5e19940"
}
]
}
}

72
2015/9xxx/CVE-2015-9407.json Normal file
View File

@ -0,0 +1,72 @@
{
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2015-9407",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The xpinner-lite plugin through 2.2 for WordPress has xpinner-lite.php XSS."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://wpvulndb.com/vulnerabilities/8194",
"refsource": "MISC",
"name": "https://wpvulndb.com/vulnerabilities/8194"
},
{
"url": "https://wordpress.org/plugins/xpinner-lite/#developers",
"refsource": "MISC",
"name": "https://wordpress.org/plugins/xpinner-lite/#developers"
},
{
"url": "https://packetstormsecurity.com/files/133593/",
"refsource": "MISC",
"name": "https://packetstormsecurity.com/files/133593/"
}
]
}
}

72
2015/9xxx/CVE-2015-9408.json Normal file
View File

@ -0,0 +1,72 @@
{
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2015-9408",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The xpinner-lite plugin through 2.2 for WordPress has wp-admin/options-general.php CSRF with resultant XSS."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://wpvulndb.com/vulnerabilities/8194",
"refsource": "MISC",
"name": "https://wpvulndb.com/vulnerabilities/8194"
},
{
"url": "https://wordpress.org/plugins/xpinner-lite/#developers",
"refsource": "MISC",
"name": "https://wordpress.org/plugins/xpinner-lite/#developers"
},
{
"url": "https://packetstormsecurity.com/files/133593/",
"refsource": "MISC",
"name": "https://packetstormsecurity.com/files/133593/"
}
]
}
}

2
2019/15xxx/CVE-2019-15843.json
View File

@ -34,7 +34,7 @@
"description_data": [
{
"lang": "eng",
"value": "A malicious file upload vulnerability was discovered in Xiaomi Millet mobile phones 1-6.3.9.3. A man-in-the-middle attacker could write files or read privileged data."
"value": "A malicious file upload vulnerability was discovered in Xiaomi Millet mobile phones 1-6.3.9.3. A particular condition involving a man-in-the-middle attack may lead to partial data leakage or malicious file writing."
}
]
},

62
2019/16xxx/CVE-2019-16533.json Normal file
View File

@ -0,0 +1,62 @@
{
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2019-16533",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "On DrayTek Vigor2925 devices with firmware 3.8.4.3, Incorrect Access Control exists in loginset.htm, and can be used to trigger XSS. NOTE: this is an end-of-life product."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://www.facebook.com/Huang.YuHsiang.Phone/posts/1815316691945755",
"refsource": "MISC",
"name": "https://www.facebook.com/Huang.YuHsiang.Phone/posts/1815316691945755"
}
]
}
}

62
2019/16xxx/CVE-2019-16534.json Normal file
View File

@ -0,0 +1,62 @@
{
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2019-16534",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "On DrayTek Vigor2925 devices with firmware 3.8.4.3, XSS exists via a crafted WAN name on the General Setup screen. NOTE: this is an end-of-life product."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://www.facebook.com/Huang.YuHsiang.Phone/posts/1815316691945755",
"refsource": "MISC",
"name": "https://www.facebook.com/Huang.YuHsiang.Phone/posts/1815316691945755"
}
]
}
}

62
2019/16xxx/CVE-2019-16643.json Normal file
View File

@ -0,0 +1,62 @@
{
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2019-16643",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "An issue was discovered in ZrLog 2.1.1. There is a Stored XSS vulnerability in the article_edit area."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://github.com/94fzb/zrlog/issues/54",
"refsource": "MISC",
"name": "https://github.com/94fzb/zrlog/issues/54"
}
]
}
}

62
2019/16xxx/CVE-2019-16644.json Normal file
View File

@ -0,0 +1,62 @@
{
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2019-16644",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "App\\Home\\Controller\\ZhuantiController.class.php in TuziCMS 2.0.6 has SQL injection via the index.php/Zhuanti/group?id= substring."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"url": "https://github.com/yeyinshi/tuzicms/issues/6",
"refsource": "MISC",
"name": "https://github.com/yeyinshi/tuzicms/issues/6"
}
]
}
}

192
2019/4xxx/CVE-2019-4505.json
View File

@ -1,99 +1,99 @@
{
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"lang" : "eng",
"value" : "Obtain Information"
}
]
}
]
},
"affects" : {
"vendor" : {
"vendor_data" : [
"problemtype": {
"problemtype_data": [
{
"product" : {
"product_data" : [
{
"product_name" : "WebSphere Application Server",
"version" : {
"version_data" : [
{
"version_value" : "7.0"
},
{
"version_value" : "8.0"
},
{
"version_value" : "8.5"
},
{
"version_value" : "9.0"
}
]
}
}
]
},
"vendor_name" : "IBM"
"description": [
{
"lang": "eng",
"value": "Obtain Information"
}
]
}
]
}
},
"impact" : {
"cvssv3" : {
"TM" : {
"RL" : "O",
"RC" : "C",
"E" : "U"
},
"BM" : {
"PR" : "N",
"A" : "N",
"S" : "U",
"SCORE" : "3.700",
"AV" : "N",
"AC" : "H",
"C" : "L",
"I" : "N",
"UI" : "N"
}
}
},
"data_format" : "MITRE",
"data_version" : "4.0",
"CVE_data_meta" : {
"DATE_PUBLIC" : "2019-09-18T00:00:00",
"ASSIGNER" : "psirt@us.ibm.com",
"ID" : "CVE-2019-4505",
"STATE" : "PUBLIC"
},
"data_type" : "CVE",
"references" : {
"reference_data" : [
{
"refsource" : "CONFIRM",
"name" : "https://www.ibm.com/support/pages/node/964766",
"title" : "IBM Security Bulletin 964766 (WebSphere Application Server)",
"url" : "https://www.ibm.com/support/pages/node/964766"
},
{
"title" : "X-Force Vulnerability Report",
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/164364",
"name" : "ibm-was-cve20194505-info-disc (164364)",
"refsource" : "XF"
}
]
},
"description" : {
"description_data" : [
{
"value" : "IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 Network Deployment could allow a remote attacker to obtain sensitive information, caused by sending a specially-crafted URL. This can lead the attacker to view any file in a certain directory. IBM X-Force ID: 164364.",
"lang" : "eng"
}
]
}
}
]
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "WebSphere Application Server",
"version": {
"version_data": [
{
"version_value": "7.0"
},
{
"version_value": "8.0"
},
{
"version_value": "8.5"
},
{
"version_value": "9.0"
}
]
}
}
]
},
"vendor_name": "IBM"
}
]
}
},
"impact": {
"cvssv3": {
"TM": {
"RL": "O",
"RC": "C",
"E": "U"
},
"BM": {
"PR": "N",
"A": "N",
"S": "U",
"SCORE": "3.700",
"AV": "N",
"AC": "H",
"C": "L",
"I": "N",
"UI": "N"
}
}
},
"data_format": "MITRE",
"data_version": "4.0",
"CVE_data_meta": {
"DATE_PUBLIC": "2019-09-18T00:00:00",
"ASSIGNER": "psirt@us.ibm.com",
"ID": "CVE-2019-4505",
"STATE": "PUBLIC"
},
"data_type": "CVE",
"references": {
"reference_data": [
{
"refsource": "CONFIRM",
"name": "https://www.ibm.com/support/pages/node/964766",
"title": "IBM Security Bulletin 964766 (WebSphere Application Server)",
"url": "https://www.ibm.com/support/pages/node/964766"
},
{
"title": "X-Force Vulnerability Report",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/164364",
"name": "ibm-was-cve20194505-info-disc (164364)",
"refsource": "XF"
}
]
},
"description": {
"description_data": [
{
"value": "IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 Network Deployment could allow a remote attacker to obtain sensitive information, caused by sending a specially-crafted URL. This can lead the attacker to view any file in a certain directory. IBM X-Force ID: 164364.",
"lang": "eng"
}
]
}
}

180
2019/4xxx/CVE-2019-4565.json
View File

@ -1,93 +1,93 @@
{
"data_version" : "4.0",
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"lang" : "eng",
"value" : "Obtain Information"
}
]
}
]
},
"impact" : {
"cvssv3" : {
"BM" : {
"A" : "N",
"S" : "U",
"PR" : "N",
"UI" : "N",
"I" : "N",
"AC" : "H",
"C" : "H",
"SCORE" : "5.900",
"AV" : "N"
},
"TM" : {
"E" : "U",
"RC" : "C",
"RL" : "O"
}
}
},
"affects" : {
"vendor" : {
"vendor_data" : [
"data_version": "4.0",
"problemtype": {
"problemtype_data": [
{
"product" : {
"product_data" : [
{
"product_name" : "Security Key Lifecycle Manager",
"version" : {
"version_data" : [
{
"version_value" : "3.0"
},
{
"version_value" : "3.0.1"
}
]
}
}
]
},
"vendor_name" : "IBM"
"description": [
{
"lang": "eng",
"value": "Obtain Information"
}
]
}
]
}
},
"data_format" : "MITRE",
"references" : {
"reference_data" : [
{
"name" : "https://www.ibm.com/support/pages/security-bulletin-ibm-security-key-lifecycle-manager-uses-weak-password-policy-cve-2019-4565",
"refsource" : "CONFIRM",
"title" : "IBM Security Bulletin 1073598 (Security Key Lifecycle Manager)",
"url" : "https://www.ibm.com/support/pages/security-bulletin-ibm-security-key-lifecycle-manager-uses-weak-password-policy-cve-2019-4565"
},
{
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/166626",
"title" : "X-Force Vulnerability Report",
"name" : "ibm-tivoli-cve20194565-info-disc (166626)",
"refsource" : "XF"
}
]
},
"description" : {
"description_data" : [
{
"lang" : "eng",
"value" : "IBM Security Key Lifecycle Manager 3.0 and 3.0.1 does not require that users should have strong passwords by default, which makes it easier for attackers to compromise user accounts. IBM X-Force ID: 166626."
}
]
},
"CVE_data_meta" : {
"ID" : "CVE-2019-4565",
"STATE" : "PUBLIC",
"ASSIGNER" : "psirt@us.ibm.com",
"DATE_PUBLIC" : "2019-09-17T00:00:00"
},
"data_type" : "CVE"
}
]
},
"impact": {
"cvssv3": {
"BM": {
"A": "N",
"S": "U",
"PR": "N",
"UI": "N",
"I": "N",
"AC": "H",
"C": "H",
"SCORE": "5.900",
"AV": "N"
},
"TM": {
"E": "U",
"RC": "C",
"RL": "O"
}
}
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Security Key Lifecycle Manager",
"version": {
"version_data": [
{
"version_value": "3.0"
},
{
"version_value": "3.0.1"
}
]
}
}
]
},
"vendor_name": "IBM"
}
]
}
},
"data_format": "MITRE",
"references": {
"reference_data": [
{
"name": "https://www.ibm.com/support/pages/security-bulletin-ibm-security-key-lifecycle-manager-uses-weak-password-policy-cve-2019-4565",
"refsource": "CONFIRM",
"title": "IBM Security Bulletin 1073598 (Security Key Lifecycle Manager)",
"url": "https://www.ibm.com/support/pages/security-bulletin-ibm-security-key-lifecycle-manager-uses-weak-password-policy-cve-2019-4565"
},
{
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/166626",
"title": "X-Force Vulnerability Report",
"name": "ibm-tivoli-cve20194565-info-disc (166626)",
"refsource": "XF"
}
]
},
"description": {
"description_data": [
{
"lang": "eng",
"value": "IBM Security Key Lifecycle Manager 3.0 and 3.0.1 does not require that users should have strong passwords by default, which makes it easier for attackers to compromise user accounts. IBM X-Force ID: 166626."
}
]
},
"CVE_data_meta": {
"ID": "CVE-2019-4565",
"STATE": "PUBLIC",
"ASSIGNER": "psirt@us.ibm.com",
"DATE_PUBLIC": "2019-09-17T00:00:00"
},
"data_type": "CVE"
}