safari vulnerabilities and exploits

NA
CVE-2019-9881

WPGraphQL plugin for WordPress could allow a remote attacker to obtain sensitive information, caused by improper validation of user privileges. By sending a specially-crafted request, an attacker could exploit this vulnerability to obtain information from protected...

NA
CVE-2019-9880

WPGraphQL plugin for WordPress could allow a remote attacker to bypass security restrictions, caused by improper validation of user privileges. By sending a specially-crafted request, an attacker could exploit this vulnerability to post comments on restricted...

NA
CVE-2019-9879

WPGraphQL plugin for WordPress could allow a remote attacker to bypass security restrictions, caused by improper validation of user privileges. By sending a specially-crafted request, an attacker could exploit this vulnerability to create administrative users....

NA
CVE-2019-11091

A vulnerability in the Microarchitectural Data Sampling Uncacheable Memory (MDSUM) of Intel microcode could allow a local attacker to access sensitive information on a targeted system. The vulnerability is due to improper memory operations that could expose a side channel on the...

NA
CVE-2018-12126

A vulnerability in the Microarchitectural Store Buffer Data Sampling (MSBDS) of Intel Microcode could allow a local attacker to access sensitive information on a targeted system. The vulnerability is due to improper memory operations that could expose a side channel on the...

NA
CVE-2018-12127

A vulnerability in the Microarchitectural Load Port Data Sampling (MLPDS) of Intel Microcode could allow a local attacker to access sensitive information on a targeted system. The vulnerability is due to improper memory operations that could expose a side channel on the affected...

NA
CVE-2018-12130

A vulnerability in the Microarchitectural Fill Buffer Data Sampling (MFBDS) of Intel microcode could allow a local attacker to access sensitive information on a targeted system. The vulnerability is due to improper memory operations that could expose a side channel on the...

4.3
CVSSv2
CVE-2019-8391

qdPM 9.1 suffers from Cross-site Scripting (XSS) via configuration?type=[XSS] parameter....

4.3
CVSSv2
CVE-2019-8390

qdPM 9.1 suffers from Cross-site Scripting (XSS) in the search[keywords] parameter....

NA
CVE-2019-8623

Safari 12.1.1...