2019 CVE Vulnerabilities
17,618 CVEs published in 2019.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2019-25224 | CRITICAL | 9.8 | 16.7% | Jul 25, 2025 | The WP Database Backup plugin for WordPress is vulnerable to OS Command Injection in versions before 5.2 via the mysqldu... |
| CVE-2019-17082 | CRITICAL | 9 | 0.4% | Nov 26, 2024 | Insufficiently Protected Credentials vulnerability in OpenText™ AccuRev allows Authentication Bypass. When installed on ... |
| CVE-2019-20461 | CRITICAL | 9.8 | 0.9% | Nov 7, 2024 | An issue was discovered on Alecto IVM-100 2019-11-12 devices. The device uses a custom UDP protocol to start and control... |
| CVE-2019-20457 | CRITICAL | 9.1 | 0.7% | Nov 7, 2024 | An issue was discovered on Brother MFC-J491DW C1806180757 devices. The printer's web-interface password hash can be retr... |
| CVE-2019-25217 | CRITICAL | 9.8 | 0.8% | Oct 16, 2024 | The SiteGround Optimizer plugin for WordPress is vulnerable to authorization bypass leading to Remote Code Execution and... |
| CVE-2019-25154 | CRITICAL | 9.6 | 0.3% | Jul 16, 2024 | Inappropriate implementation in iframe in Google Chrome prior to 77.0.3865.75 allowed a remote attacker to potentially p... |
| CVE-2019-16639 | CRITICAL | 9.8 | 0.8% | Jul 16, 2024 | An issue was found on the Ruijie EG-2000 series gateway. There is a newcli.php API interface without access control, whi... |
| CVE-2019-25211 | CRITICAL | 9.1 | 0.4% | Jun 29, 2024 | parseWildcardRules in Gin-Gonic CORS middleware before 1.6.0 mishandles a wildcard at the end of an origin string, e.g.,... |
| CVE-2019-19755 | CRITICAL | 9.1 | 0.4% | Apr 30, 2024 | ethOS through 1.3.3 ships with SSH host keys baked into the installation image, which allows man-in-the-middle attacks a... |
| CVE-2019-19753 | CRITICAL | 9.1 | 0.4% | Apr 30, 2024 | SimpleMiningOS through v1259 ships with SSH host keys baked into the installation image, which allows man-in-the-middle ... |
| CVE-2019-19752 | CRITICAL | 9.8 | 0.5% | Apr 30, 2024 | nvOC through 3.2 ships with SSH host keys baked into the installation image, which allows man-in-the-middle attacks and ... |
| CVE-2019-25159 | CRITICAL | 9.8 | 0.5% | Feb 4, 2024 | A vulnerability was found in mpedraza2020 Intranet del Monterroso up to 4.50.0. It has been classified as critical. This... |
| CVE-2019-25158 | CRITICAL | 9.8 | 2.0% | Dec 19, 2023 | A vulnerability has been found in pedroetb tts-api up to 2.1.4 and classified as critical. This vulnerability affects th... |
| CVE-2019-19450 | CRITICAL | 9.8 | 4.5% | Sep 20, 2023 | paraparser in ReportLab before 3.5.31 allows remote code execution because start_unichar in paraparser.py evaluates untr... |
| CVE-2019-13690 | CRITICAL | 9.6 | 0.4% | Aug 25, 2023 | Inappropriate implementation in OS in Google Chrome on ChromeOS prior to 75.0.3770.80 allowed a remote attacker to perfo... |
| CVE-2019-25136 | CRITICAL | 10 | 0.7% | Jun 19, 2023 | A compromised child process could have injected XBL Bindings into privileged CSS rules, resulting in arbitrary code exec... |
| CVE-2019-25141 | CRITICAL | 9.8 | 4.5% | Jun 7, 2023 | The Easy WP SMTP plugin for WordPress is vulnerable to authorization bypass in versions up to, and including, 1.3.9. Thi... |
| CVE-2019-25138 | CRITICAL | 9.8 | 2.3% | Jun 7, 2023 | The User Submitted Posts plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validatio... |
| CVE-2019-19791 | CRITICAL | 9.8 | 0.8% | May 29, 2023 | In LemonLDAP::NG (aka lemonldap-ng) before 2.0.7, the default Apache HTTP Server configuration does not properly restric... |
| CVE-2019-25101 | CRITICAL | 9.8 | 0.9% | Feb 4, 2023 | A vulnerability classified as critical has been found in OnShift TurboGears 1.0.11.10. This affects an unknown part of t... |
| CVE-2019-25100 | CRITICAL | 9.8 | 0.6% | Jan 8, 2023 | A vulnerability was found in happyman twmap. It has been declared as critical. Affected by this vulnerability is an unkn... |
| CVE-2019-25098 | CRITICAL | 9.8 | 1.0% | Jan 5, 2023 | A vulnerability was found in soerennb eXtplorer up to 2.1.12. It has been classified as critical. This affects an unknow... |
| CVE-2019-25097 | CRITICAL | 9.8 | 1.0% | Jan 5, 2023 | A vulnerability was found in soerennb eXtplorer up to 2.1.12 and classified as critical. Affected by this issue is some ... |
| CVE-2019-11851 | CRITICAL | 9.8 | 1.6% | Dec 26, 2022 | The ACENet service in Sierra Wireless ALEOS before 4.4.9, 4.5.x through 4.9.x before 4.9.5, and 4.10.x through 4.13.x be... |
| CVE-2019-15167 | CRITICAL | 9.1 | 0.9% | Aug 27, 2022 | The VRRP parser in tcpdump before 4.9.3 has a buffer over-read in print-vrrp.c:vrrp_print() for VRRP version 3, a differ... |
Check if your code is affected by 2019 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now