From DHS/US-CERT's National Vulnerability Database
CVE-2019-6149 PUBLISHED: 2019-03-18
An unquoted search path vulnerability was identified in Lenovo Dynamic Power Reduction Utility prior to version 18.104.22.168 that could allow a malicious user with local access to execute code with administrative privileges.
Five9 Agent Desktop Plus 10.0.70 has Incorrect Access Control (issue 2 of 2).
Phamm (aka PHP LDAP Virtual Hosting Manager) 0.6.8 allows XSS via the login page (the /public/main.php action parameter).
CVE-2019-5616 PUBLISHED: 2019-03-15
An Integer overflow vulnerability exists in the batchTransfer function of a smart contract implementation for CryptoBotsBattle (CBTB), an Ethereum token. This vulnerability could be used by an attacker to create an arbitrary amount of tokens for any user.