Search

Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

Search Examples

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

Search Results (347829 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2019-20531 1 Google 1 Android 2024-11-21 7.1 High
An issue was discovered on Samsung mobile devices with P(9.0) (Exynos chipsets) software. The Wi-Fi kernel drivers have an out-of-bounds Read. The Samsung IDs are SVE-2019-15692, SVE-2019-15693 (December 2019).
CVE-2019-20530 1 Google 1 Android 2024-11-21 9.8 Critical
An issue was discovered on Samsung mobile devices with N(7.1), O(8.x), P(9.0), and Q(10.0) software. Arbitrary code execution is possible on the lock screen. The Samsung ID is SVE-2019-15266 (December 2019).
CVE-2019-20529 1 Frappe 1 Frappe 2024-11-21 7.5 High
In core/doctype/prepared_report/prepared_report.py in Frappe 11 and 12, data files generated with Prepared Report were being stored as public files (no authentication is required to access; having a link is sufficient) instead of private files.
CVE-2019-20528 1 Igniterealtime 1 Openfire 2024-11-21 6.1 Medium
Ignite Realtime Openfire 4.4.1 allows XSS via the setup/setup-datasource-standard.jsp username parameter.
CVE-2019-20527 1 Igniterealtime 1 Openfire 2024-11-21 6.1 Medium
Ignite Realtime Openfire 4.4.1 allows XSS via the setup/setup-datasource-standard.jsp serverURL parameter.
CVE-2019-20526 1 Igniterealtime 1 Openfire 2024-11-21 6.1 Medium
Ignite Realtime Openfire 4.4.1 allows XSS via the setup/setup-datasource-standard.jsp password parameter.
CVE-2019-20525 1 Igniterealtime 1 Openfire 2024-11-21 6.1 Medium
Ignite Realtime Openfire 4.4.1 allows XSS via the setup/setup-datasource-standard.jsp driver parameter.
CVE-2019-20524 1 Ilch 1 Ilch Cms 2024-11-21 6.1 Medium
ilchCMS 2.1.23 allows XSS via the index.php/partner/index Banner parameter.
CVE-2019-20523 1 Ilch 1 Ilch Cms 2024-11-21 6.1 Medium
ilchCMS 2.1.23 allows XSS via the index.php/partner/index Name parameter.
CVE-2019-20522 1 Ilch 1 Ilch Cms 2024-11-21 6.1 Medium
ilchCMS 2.1.23 allows XSS via the index.php/partner/index Link parameter.
CVE-2019-20521 1 Frappe 1 Erpnext 2024-11-21 6.1 Medium
ERPNext 11.1.47 allows reflected XSS via the PATH_INFO to the api/ URI.
CVE-2019-20520 1 Frappe 1 Erpnext 2024-11-21 6.1 Medium
ERPNext 11.1.47 allows reflected XSS via the PATH_INFO to the api/method/ URI.
CVE-2019-20519 1 Frappe 1 Erpnext 2024-11-21 6.1 Medium
ERPNext 11.1.47 allows reflected XSS via the PATH_INFO to the user/ URI, as demonstrated by a crafted e-mail address.
CVE-2019-20518 1 Frappe 1 Erpnext 2024-11-21 6.1 Medium
ERPNext 11.1.47 allows reflected XSS via the PATH_INFO to the project/ URI.
CVE-2019-20517 1 Frappe 1 Erpnext 2024-11-21 6.1 Medium
ERPNext 11.1.47 allows reflected XSS via the PATH_INFO to the contact/ URI.
CVE-2019-20516 1 Frappe 1 Erpnext 2024-11-21 6.1 Medium
ERPNext 11.1.47 allows reflected XSS via the PATH_INFO to the blog/ URI.
CVE-2019-20515 1 Frappe 1 Erpnext 2024-11-21 6.1 Medium
ERPNext 11.1.47 allows reflected XSS via the PATH_INFO to the addresses/ URI.
CVE-2019-20514 1 Frappe 1 Erpnext 2024-11-21 6.1 Medium
ERPNext 11.1.47 allows reflected XSS via the PATH_INFO to the address/ URI.
CVE-2019-20513 1 Edx 1 Open Edx 2024-11-21 6.1 Medium
Open edX Ironwood.1 allows support/certificates?user= reflected XSS.
CVE-2019-20512 1 Open.edx 1 Ironwood 2024-11-21 6.1 Medium
Open edX Ironwood.1 allows support/certificates?course_id= reflected XSS.