|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
Update Date":July 1, 2026, 4:01 p.m.
Update Date:July 1, 2026, 4:27 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 247461 | 7.5 |
HIGH
Network |
microfocus | solutions_business_manager | Denial of service issue in Micro Focus Solutions Business Manager (SBM) (formerly Serena Business Manager (SBM)) versions prior to 11.5. |
CWE-20
Improper Input Validation |
CVE-2018-19642 | 2024-11-21 12:58 | 2019-03-28 | Show | GitHub Exploit DB Packet Storm |
| 247462 | 9.8 |
CRITICAL
Network |
microfocus | solutions_business_manager | Unauthenticated remote code execution issue in Micro Focus Solutions Business Manager (SBM) (formerly Serena Business Manager (SBM)) versions prior to 11.5. |
CWE-94
Code Injection |
CVE-2018-19641 | 2024-11-21 12:58 | 2019-03-28 | Show | GitHub Exploit DB Packet Storm |
| 247463 | 7.5 |
HIGH
Network |
gitlab | gitlab | GitLab CE/EE before 11.3.12, 11.4.x before 11.4.10, and 11.5.x before 11.5.3 allows Directory Traversal in Templates API. |
CWE-22
Path Traversal |
CVE-2018-19856 | 2024-11-21 12:58 | 2019-03-27 | Show | GitHub Exploit DB Packet Storm |
| 247464 | 4.6 |
MEDIUM
Physics |
linux debian netapp |
linux_kernel debian_linux element_software_management_node active_iq_performance_analytics_services |
The function hso_get_config_data in drivers/net/usb/hso.c in the Linux kernel through 4.19.8 reads if_num from the USB device (as a u8) and uses it to index a small array, resulting in an object out-… |
CWE-125
Out-of-bounds Read |
CVE-2018-19985 | 2024-11-21 12:58 | 2019-03-22 | Show | GitHub Exploit DB Packet Storm |
| 247465 | 4.8 |
MEDIUM
Network |
solarwinds | serv-u_ftp_server | SolarWinds Serv-U FTP Server 15.1.6.25 has reflected cross-site scripting (XSS) in the Web management interface via URL path and HTTP POST parameter. |
CWE-79
Cross-site Scripting |
CVE-2018-19934 | 2024-11-21 12:58 | 2019-03-22 | Show | GitHub Exploit DB Packet Storm |
| 247466 | 6.1 |
MEDIUM
Network |
microweber | microweber | Microweber 1.0.8 has reflected cross-site scripting (XSS) vulnerabilities. |
CWE-79
Cross-site Scripting |
CVE-2018-19917 | 2024-11-21 12:58 | 2019-03-22 | Show | GitHub Exploit DB Packet Storm |
| 247467 | 5.5 |
MEDIUM
Local |
qt opensuse fedoraproject |
qt leap fedora |
An issue was discovered in Qt 5.11. A malformed PPM image causes a division by zero and a crash in qppmhandler.cpp. |
CWE-369
Divide By Zero |
CVE-2018-19872 | 2024-11-21 12:58 | 2019-03-22 | Show | GitHub Exploit DB Packet Storm |
| 247468 | 9.8 |
CRITICAL
Network |
kentix | multisensor-lan_firmware | Kentix MultiSensor-LAN 5.63.00 devices and previous allow Authentication Bypass via an Alternate Path or Channel. |
CWE-287
Improper Authentication |
CVE-2018-19783 | 2024-11-21 12:58 | 2019-03-22 | Show | GitHub Exploit DB Packet Storm |
| 247469 | 6.1 |
MEDIUM
Network |
hms-networks |
netbiter_ws100_firmware netbiter_ws200_firmware netbiter_ec150_firmware netbiter_ec250_firmware netbiter_lc310_firmware netbiter_lc310_thingworx_firmware netbiter_lc350_firmware … |
HMS Industrial Networks Netbiter WS100 3.30.5 devices and previous have reflected XSS in the login form. |
CWE-79
Cross-site Scripting |
CVE-2018-19694 | 2024-11-21 12:58 | 2019-03-22 | Show | GitHub Exploit DB Packet Storm |
| 247470 | 6.1 |
MEDIUM
Network |
systrome |
cumilon_isg-600c_firmware cumilon_isg-600h_firmware cumilon_isg-800w_firmware |
An issue was discovered on Systrome ISG-600C, ISG-600H, and ISG-800W 1.1-R2.1_TRUNK-20180914.bin devices. There is CSRF via /ui/?g=obj_keywords_add and /ui/?g=obj_keywords_addsave with resultant XSS … |
CWE-352 CWE-79 Origin Validation Error Cross-site Scripting |
CVE-2018-19525 | 2024-11-21 12:58 | 2019-03-22 | Show | GitHub Exploit DB Packet Storm |