Max CVSS 10.0 Min CVSS 1.2 Total Count2369
IDCVSSSummaryLast (major) updatePublished
CVE-2018-18923 None
AbiSoft Ticketly 1.0 is affected by multiple SQL Injection vulnerabilities through the parameters name, category_id and description in action/addproject.php; kind_id, priority_id, project_id, status_id and title in action/addticket.php; and kind_id a
13-12-2018 - 14:29 13-12-2018 - 14:29
CVE-2018-7691 None
A potential Remote Unauthorized Access in Micro Focus Fortify Software Security Center (SSC), versions 17.10, 17.20, 18.10 this exploitation could allow Remote Unauthorized Access
13-12-2018 - 09:29 13-12-2018 - 09:29
CVE-2018-7690 None
A potential Remote Unauthorized Access in Micro Focus Fortify Software Security Center (SSC), versions 17.10, 17.20, 18.10 this exploitation could allow Remote Unauthorized Access
13-12-2018 - 09:29 13-12-2018 - 09:29
CVE-2018-6757 None
Privilege Escalation vulnerability in Microsoft Windows client in McAfee True Key (TK) 5.1.230.7 and earlier allows local users to execute arbitrary code via specially crafted malware.
06-12-2018 - 18:29 06-12-2018 - 18:29
CVE-2018-6756 None
Authentication Abuse vulnerability in Microsoft Windows client in McAfee True Key (TK) 5.1.230.7 and earlier allows local users to execute unauthorized commands via specially crafted malware.
06-12-2018 - 18:29 06-12-2018 - 18:29
CVE-2018-6755 None
Weak Directory Permission Vulnerability in Microsoft Windows client in McAfee True Key (TK) 5.1.230.7 and earlier allows local users to execute arbitrary code via specially crafted malware.
06-12-2018 - 18:29 06-12-2018 - 18:29
CVE-2018-19913 None
DomainMOD through 4.11.01 has XSS via the assets/add/registrar-accounts.php UserName, Reseller ID, or notes field.
06-12-2018 - 14:29 06-12-2018 - 14:29
CVE-2018-19877 None
login.php in Adiscon LogAnalyzer before 4.1.7 has XSS via the Login Button Referer field.
05-12-2018 - 16:29 05-12-2018 - 16:29
CVE-2018-6092 6.8
An integer overflow on 32-bit systems in WebAssembly in Google Chrome prior to 66.0.3359.106 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page.
04-12-2018 - 12:29 04-12-2018 - 12:29
CVE-2018-1002009 None
There is a reflected XSS vulnerability in WordPress Arigato Autoresponder and News letter v2.5.1.8 This vulnerability requires administrative privileges to exploit. There is an XSS vulnerability in unsubscribe.html.php:3: via GET reuqest to the email
03-12-2018 - 11:29 03-12-2018 - 11:29
CVE-2018-1002008 None
There is a reflected XSS vulnerability in WordPress Arigato Autoresponder and News letter v2.5.1.8 This vulnerability requires administrative privileges to exploit. There is an XSS vulnerability in list-user.html.php:4: via GET request offset variabl
03-12-2018 - 11:29 03-12-2018 - 11:29
CVE-2018-1002007 None
There is a reflected XSS vulnerability in WordPress Arigato Autoresponder and News letter v2.5.1.8 This vulnerability requires administrative privileges to exploit. There is an XSS vulnerability in integration-contact-form.html.php:15: via POST reque
03-12-2018 - 11:29 03-12-2018 - 11:29
CVE-2018-1002006 None
These vulnerabilities require administrative privileges to exploit. There is an XSS vulnerability in integration-contact-form.html.php:14: via POST request variable classes
03-12-2018 - 11:29 03-12-2018 - 11:29
CVE-2018-1002005 None
These vulnerabilities require administrative privileges to exploit. There is an XSS vulnerability in bft_list.html.php:43: via the filter_signup_date parameter.
03-12-2018 - 11:29 03-12-2018 - 11:29
CVE-2018-1002004 None
There is a reflected XSS vulnerability in WordPress Arigato Autoresponder and News letter v2.5.1.8 This vulnerability requires administrative privileges to exploit.
03-12-2018 - 11:29 03-12-2018 - 11:29
CVE-2018-1002003 None
There is a reflected XSS vulnerability in WordPress Arigato Autoresponder and News letter v2.5.1.8 This vulnerability requires administrative privileges to exploit.
03-12-2018 - 11:29 03-12-2018 - 11:29
CVE-2018-1002002 None
There is a reflected XSS vulnerability in WordPress Arigato Autoresponder and News letter v2.5.1.8 This vulnerability requires administrative privileges to exploit.
03-12-2018 - 11:29 03-12-2018 - 11:29
CVE-2018-1002001 None
There is a reflected XSS vulnerability in WordPress Arigato Autoresponder and News letter v2.5.1.8 This vulnerability requires administrative privileges to exploit.
03-12-2018 - 11:29 03-12-2018 - 11:29
CVE-2018-1002000 None
There is blind SQL injection in WordPress Arigato Autoresponder and Newsletter v2.5.1.8 These vulnerabilities require administrative privileges to exploit. There is an exploitable blind SQL injection vulnerability via the del_ids variable by POST req
03-12-2018 - 11:29 03-12-2018 - 11:29
CVE-2018-15716 None
NUUO NVRMini2 version 3.9.1 is vulnerable to authenticated remote command injection. An attacker can send crafted requests to upgrade_handle.php to execute OS commands as root.
30-11-2018 - 15:29 30-11-2018 - 15:29
CVE-2018-18860 None
A local privilege escalation vulnerability has been identified in the SwitchVPN client 2.1012.03 for macOS. Due to over-permissive configuration settings and a SUID binary, an attacker is able to execute arbitrary binaries as root.
30-11-2018 - 13:29 30-11-2018 - 13:29
CVE-2018-15768 None
Dell OpenManage Network Manager versions prior to 6.5.0 enabled read/write access to the file system for MySQL users due to insecure default configuration setting for the embedded MySQL database.
30-11-2018 - 12:29 30-11-2018 - 12:29
CVE-2018-15767 None
The Dell OpenManage Network Manager virtual appliance versions prior to 6.5.3 contain an improper authorization vulnerability caused by a misconfiguration in the /etc/sudoers file.
30-11-2018 - 12:29 30-11-2018 - 12:29
CVE-2018-19752 None
DomainMOD through 4.11.01 has XSS via the assets/add/registrar.php notes field for the Registrar.
29-11-2018 - 17:29 29-11-2018 - 17:29
CVE-2018-19751 None
DomainMOD through 4.11.01 has XSS via the admin/ssl-fields/add.php notes field for Custom SSL Fields.
29-11-2018 - 17:29 29-11-2018 - 17:29
CVE-2018-19750 None
DomainMOD through 4.11.01 has XSS via the admin/domain-fields/ notes field in an Add Custom Field action for Custom Domain Fields.
29-11-2018 - 17:29 29-11-2018 - 17:29
CVE-2018-19749 None
DomainMOD through 4.11.01 has XSS via the assets/add/account-owner.php Owner name field.
29-11-2018 - 17:29 29-11-2018 - 17:29
CVE-2018-18619 None
internal/advanced_comment_system/admin.php in Advanced Comment System 1.0 is prone to an SQL injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query, allowing remote attackers to execute th
29-11-2018 - 17:29 29-11-2018 - 17:29
CVE-2018-19627 None
In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the IxVeriWave file parser could crash. This was addressed in wiretap/vwr.c by adjusting a buffer boundary.
28-11-2018 - 23:29 28-11-2018 - 23:29
CVE-2018-19518 None
University of Washington IMAP Toolkit 2007f on UNIX, as used in imap_open() in PHP and other products, launches an rsh command (by means of the imap_rimap function in c-client/imap4r1.c and the tcp_aopen function in osdep/unix/tcp_unix.c) without pre
25-11-2018 - 05:29 25-11-2018 - 05:29
CVE-2018-19459 6.8
Adult Filter 1.0 has a Buffer Overflow via a crafted Black Domain List file.
22-11-2018 - 15:29 22-11-2018 - 15:29
CVE-2018-19458 5.0
In PHP Proxy 3.0.3, any user can read files from the server without authentication due to an index.php?q=file:/// LFI URI, a different vulnerability than CVE-2018-19246.
22-11-2018 - 15:29 22-11-2018 - 15:29
CVE-2018-18865 None
The Royal browser extensions TS before 4.3.60728 (Release Date 2018-07-28) and TSX before 3.3.1 (Release Date 2018-09-13) allow Credentials Disclosure.
20-11-2018 - 14:29 20-11-2018 - 14:29
CVE-2018-18859 7.2
Multiple local privilege escalation vulnerabilities have been identified in the LiquidVPN client through 1.37 for macOS. An attacker can communicate with an unprotected XPC service and directly execute arbitrary OS commands as root or load a potentia
20-11-2018 - 14:29 20-11-2018 - 14:29
CVE-2018-18858 7.2
Multiple local privilege escalation vulnerabilities have been identified in the LiquidVPN client through 1.37 for macOS. An attacker can communicate with an unprotected XPC service and directly execute arbitrary OS commands as root or load a potentia
20-11-2018 - 14:29 20-11-2018 - 14:29
CVE-2018-18857 7.2
Multiple local privilege escalation vulnerabilities have been identified in the LiquidVPN client through 1.37 for macOS. An attacker can communicate with an unprotected XPC service and directly execute arbitrary OS commands as root or load a potentia
20-11-2018 - 14:29 20-11-2018 - 14:29
CVE-2018-18856 None
Multiple local privilege escalation vulnerabilities have been identified in the LiquidVPN client through 1.37 for macOS. An attacker can communicate with an unprotected XPC service and directly execute arbitrary OS commands as root or load a potentia
20-11-2018 - 14:29 20-11-2018 - 14:29
CVE-2018-18774 4.3
CentOS-WebPanel.com (aka CWP) CentOS Web Panel through 0.9.8.740 allows XSS via the admin/index.php module parameter.
20-11-2018 - 14:29 20-11-2018 - 14:29
CVE-2018-18773 6.8
CentOS-WebPanel.com (aka CWP) CentOS Web Panel through 0.9.8.740 allows CSRF via admin/index.php?module=rootpwd, as demonstrated by changing the root password.
20-11-2018 - 14:29 20-11-2018 - 14:29
CVE-2018-18772 6.8
CentOS-WebPanel.com (aka CWP) CentOS Web Panel through 0.9.8.740 allows CSRF via admin/index.php?module=send_ssh, as demonstrated by executing an arbitrary OS command.
20-11-2018 - 14:29 20-11-2018 - 14:29
CVE-2018-18955 None
In the Linux kernel 4.15.x through 4.19.x before 4.19.2, map_write() in kernel/user_namespace.c allows privilege escalation because it mishandles nested user namespaces with more than 5 UID or GID ranges. A user who has CAP_SYS_ADMIN in an affected u
16-11-2018 - 15:29 16-11-2018 - 15:29
CVE-2018-18805 7.5
PointOfSales 1.0 allows SQL injection via the login screen, related to LoginForm1.vb.
16-11-2018 - 13:29 16-11-2018 - 13:29
CVE-2018-18804 7.5
Bakeshop Inventory System 1.0 has SQL injection via the login screen, related to include/publicfunction.vb.
16-11-2018 - 13:29 16-11-2018 - 13:29
CVE-2018-18803 7.5
Curriculum Evaluation System 1.0 allows SQL Injection via the login screen, related to frmCourse.vb and includes/user.vb.
16-11-2018 - 13:29 16-11-2018 - 13:29
CVE-2018-18801 7.5
The BSEN Ordering software 1.0 has SQL Injection via student/index.php?view=view&id=[SQL] or index.php?q=single-item&id=[SQL].
16-11-2018 - 13:29 16-11-2018 - 13:29
CVE-2018-18799 6.8
School Attendance Monitoring System 1.0 has CSRF via event/controller.php?action=photos.
16-11-2018 - 13:29 16-11-2018 - 13:29
CVE-2018-18797 6.8
School Attendance Monitoring System 1.0 has CSRF via /user/user/edit.php.
16-11-2018 - 13:29 16-11-2018 - 13:29
CVE-2018-18795 7.5
School Event Management System 1.0 has SQL Injection via the student/index.php or event/index.php id parameter.
16-11-2018 - 13:29 16-11-2018 - 13:29
CVE-2018-18794 6.8
School Event Management System 1.0 allows CSRF via user/controller.php?action=edit.
16-11-2018 - 13:29 16-11-2018 - 13:29
CVE-2018-18793 7.5
School Event Management System 1.0 allows Arbitrary File Upload via event/controller.php?action=photos.
16-11-2018 - 13:29 16-11-2018 - 13:29
CVE-2018-18763 7.5
SaltOS 3.1 r8126 allows action=ajax&query=numbers&page=usuarios&action2=[SQL] SQL Injection.
16-11-2018 - 13:29 16-11-2018 - 13:29
CVE-2018-18761 7.5
SaltOS 3.1 r8126 allows action=login&querystring=&user=[SQL] SQL Injection.
16-11-2018 - 13:29 16-11-2018 - 13:29
CVE-2018-18760 4.3
RhinOS 3.0 build 1190 allows CSRF.
16-11-2018 - 13:29 16-11-2018 - 13:29
CVE-2018-18759 None
Modbus Slave 7.0.0 in modbus tools has a Buffer Overflow.
16-11-2018 - 13:29 16-11-2018 - 13:29
CVE-2018-18755 7.5
K-iwi Framework 1775 has SQL Injection via the admin/user/group/update user_group_id parameter or the admin/user/user/update user_id parameter.
16-11-2018 - 13:29 16-11-2018 - 13:29
CVE-2018-5407 None
Simultaneous Multi-threading (SMT) in processors can enable local users to exploit software vulnerable to timing attacks via a side-channel timing attack on 'port contention'.
15-11-2018 - 16:29 15-11-2018 - 16:29
CVE-2018-19287 4.3
XSS in the Ninja Forms plugin before 3.3.18 for WordPress allows Remote Attackers to execute JavaScript via the includes/Admin/Menus/Submissions.php (aka submissions page) begin_date, end_date, or form_id parameter.
15-11-2018 - 01:29 15-11-2018 - 01:29
CVE-2018-7358 None
ZTE ZXHN H168N product with versions V2.2.0_PK1.2T5, V2.2.0_PK1.2T2, V2.2.0_PK11T7 and V2.2.0_PK11T have an improper change control vulnerability, which may allow an unauthorized user to perform unauthorized operations.
14-11-2018 - 10:29 14-11-2018 - 10:29
CVE-2018-7357 None
ZTE ZXHN H168N product with versions V2.2.0_PK1.2T5, V2.2.0_PK1.2T2, V2.2.0_PK11T7 and V2.2.0_PK11T have an improper access control vulnerability, which may allow an unauthorized user to gain unauthorized access.
14-11-2018 - 10:29 14-11-2018 - 10:29
CVE-2018-6065 None
Integer overflow in computing the required allocation size when instantiating a new javascript object in V8 in Google Chrome prior to 65.0.3325.146 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
14-11-2018 - 10:29 14-11-2018 - 10:29
CVE-2018-6064 None
Type Confusion in the implementation of __defineGetter__ in V8 in Google Chrome prior to 65.0.3325.146 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
14-11-2018 - 10:29 14-11-2018 - 10:29
CVE-2018-8552 7.6
An information disclosure vulnerability exists when VBScript improperly discloses the contents of its memory, which could provide an attacker with information to further compromise the user's computer or data, aka "Windows Scripting Engine Memory Cor
13-11-2018 - 20:29 13-11-2018 - 20:29
CVE-2018-8550 4.6
An elevation of privilege exists in Windows COM Aggregate Marshaler, aka "Windows COM Elevation of Privilege Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019, Windows Server 2012
13-11-2018 - 20:29 13-11-2018 - 20:29
CVE-2018-8544 9.3
A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka "Windows VBScript Engine Remote Code Execution Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Ser
13-11-2018 - 20:29 13-11-2018 - 20:29
CVE-2018-19246 5.0
PHP-Proxy 5.1.0 allows remote attackers to read local files if the default "pre-installed version" (intended for users who lack shell access to their web server) is used. This occurs because the aeb067ca0aa9a3193dce3a7264c90187 app_key value from the
13-11-2018 - 04:29 13-11-2018 - 04:29
CVE-2018-19135 None
ClipperCMS 1.3.3 does not have CSRF protection on its kcfinder file upload (enabled by default). This can be used by an attacker to perform actions for an admin (or any user with the file upload capability). With this vulnerability, one can automatic
10-11-2018 - 23:29 10-11-2018 - 23:29
CVE-2018-19136 4.3
DomainMOD through 4.11.01 has XSS via the assets/edit/registrar-account.php raid parameter.
09-11-2018 - 14:29 09-11-2018 - 14:29
CVE-2018-19126 7.5
PrestaShop 1.6.x before 1.6.1.23 and 1.7.x before 1.7.4.4 allows remote attackers to execute arbitrary code via a file upload.
09-11-2018 - 06:29 09-11-2018 - 06:29
CVE-2018-19125 6.4
PrestaShop 1.6.x before 1.6.1.23 and 1.7.x before 1.7.4.4 allows remote attackers to delete an image directory.
09-11-2018 - 06:29 09-11-2018 - 06:29
CVE-2018-15437 None
A vulnerability in the system scanning component of Cisco Immunet and Cisco Advanced Malware Protection (AMP) for Endpoints running on Microsoft Windows could allow a local attacker to disable the scanning functionality of the product. This could all
08-11-2018 - 12:29 08-11-2018 - 12:29
CVE-2018-9488 4.6
In the SELinux permissions of crash_dump.te, there is a permissions bypass due to a missing restriction. This could lead to a local escalation of privilege, with System privileges needed. User interaction is not needed for exploitation. Product: Andr
07-11-2018 - 06:29 06-11-2018 - 12:29
CVE-2018-9445 7.2
In readMetadata of Utils.cpp, there is a possible path traversal bug due to a confused deputy. This could lead to local escalation of privilege when mounting a USB device with no additional execution privileges needed. User interaction is not needed
07-11-2018 - 06:29 06-11-2018 - 12:29
CVE-2018-18957 7.5
An issue has been found in libIEC61850 v1.3. It is a stack-based buffer overflow in prepareGooseBuffer in goose/goose_publisher.c.
05-11-2018 - 17:29 05-11-2018 - 17:29
CVE-2018-18924 None
The image-upload feature in ProjeQtOr 7.2.5 allows remote attackers to execute arbitrary code by uploading a .shtml file with "#exec cmd" because rejected files remain on the server, with predictable filenames, after a "This file is not a valid image
04-11-2018 - 01:29 04-11-2018 - 01:29
CVE-2018-18777 4.0
Directory traversal vulnerability in Microstrategy Web, version 7, in "/WebMstr7/servlet/mstrWeb" (in the parameter subpage) allows remote authenticated users to bypass intended SecurityManager restrictions and list a parent directory via a /.. (slas
01-11-2018 - 13:29 01-11-2018 - 13:29
CVE-2018-18776 4.3
Microstrategy Web, version 7, does not sufficiently encode user-controlled inputs, resulting in a Cross-Site Scripting (XSS) vulnerability via the admin/admin.asp ShowAll parameter. NOTE: this is a deprecated product.
01-11-2018 - 13:29 01-11-2018 - 13:29
CVE-2018-18775 4.3
Microstrategy Web, version 7, does not sufficiently encode user-controlled inputs, resulting in a Cross-Site Scripting (XSS) vulnerability via the Login.asp Msg parameter. NOTE: this is a deprecated product.
01-11-2018 - 13:29 01-11-2018 - 13:29
CVE-2018-15707 3.5
Advantech WebAccess 8.3.1 and 8.3.2 are vulnerable to cross-site scripting in the Bwmainleft.asp page. An attacker could leverage this vulnerability to disclose credentials amongst other things.
31-10-2018 - 18:29 31-10-2018 - 18:29
CVE-2018-15705 8.5
WADashboard API in Advantech WebAccess 8.3.1 and 8.3.2 allows remote authenticated attackers to write or overwrite any file on the filesystem due to a directory traversal vulnerability in the writeFile API. An attacker can use this vulnerability to r
31-10-2018 - 18:29 31-10-2018 - 18:29
CVE-2018-10712 None
The AsrDrv101.sys and AsrDrv102.sys low-level drivers in ASRock RGBLED before v1.0.35.1, A-Tuning before v3.0.210, F-Stream before v3.0.210, and RestartToUEFI before v1.0.6.2 expose functionality to read/write data from/to IO ports. This could be lev
30-10-2018 - 14:29 30-10-2018 - 14:29
CVE-2018-10711 None
The AsrDrv101.sys and AsrDrv102.sys low-level drivers in ASRock RGBLED before v1.0.35.1, A-Tuning before v3.0.210, F-Stream before v3.0.210, and RestartToUEFI before v1.0.6.2 expose functionality to read and write Machine Specific Registers (MSRs). T
30-10-2018 - 14:29 30-10-2018 - 14:29
CVE-2018-10710 None
The AsrDrv101.sys and AsrDrv102.sys low-level drivers in ASRock RGBLED before v1.0.35.1, A-Tuning before v3.0.210, F-Stream before v3.0.210, and RestartToUEFI before v1.0.6.2 expose functionality to read and write arbitrary physical memory. This coul
30-10-2018 - 14:29 30-10-2018 - 14:29
CVE-2018-10709 None
The AsrDrv101.sys and AsrDrv102.sys low-level drivers in ASRock RGBLED before v1.0.35.1, A-Tuning before v3.0.210, F-Stream before v3.0.210, and RestartToUEFI before v1.0.6.2 expose functionality to read and write CR register values. This could be le
30-10-2018 - 14:29 30-10-2018 - 14:29
CVE-2018-14665 None
A flaw was found in xorg-x11-server before 1.20.3. An incorrect permission check for -modulepath and -logfile options when starting Xorg. X server allows unprivileged users with the ability to log in to the system via physical console to escalate the
29-10-2018 - 08:29 25-10-2018 - 16:29
CVE-2018-15687 1.9
A race condition in chown_one() of systemd allows an attacker to cause systemd to set arbitrary permissions on arbitrary files. Affected releases are systemd versions up to and including 239.
26-10-2018 - 10:29 26-10-2018 - 10:29
CVE-2018-15686 10.0
A vulnerability in unit_deserialize of systemd allows an attacker to supply arbitrary state across systemd re-execution via NotifyAccess. This can be used to improperly influence systemd execution and possibly lead to root privilege escalation. Affec
26-10-2018 - 10:29 26-10-2018 - 10:29
CVE-2018-18548 4.3
ajenticp (aka Ajenti Docker control panel) for Ajenti through v1.2.23.13 has XSS via a filename that is mishandled in File Manager.
24-10-2018 - 17:29 24-10-2018 - 17:29
CVE-2018-15442 None
A vulnerability in the update service of Cisco Webex Meetings Desktop App for Windows could allow an authenticated, local attacker to execute arbitrary commands as a privileged user. The vulnerability is due to insufficient validation of user-supplie
24-10-2018 - 15:29 24-10-2018 - 15:29
CVE-2018-18437 4.3
In AXIOS ITALIA Axioscloud Sissiweb Registro Elettronico 1.7.0, secret/relogoff.aspx has XSS via the Error_Desc parameter.
23-10-2018 - 17:30 23-10-2018 - 17:30
CVE-2018-18557 6.8
LibTIFF 4.0.9 (with JBIG enabled) decodes arbitrarily-sized JBIG into a buffer, ignoring the buffer size, which leads to a tif_jbig.c JBIGDecode out-of-bounds write.
22-10-2018 - 12:29 22-10-2018 - 12:29
CVE-2018-18428 None
TP-Link TL-SC3130 1.6.18P12_121101 devices allow unauthenticated RTSP stream access, as demonstrated by a /jpg/image.jpg URI.
19-10-2018 - 18:29 19-10-2018 - 18:29
CVE-2018-18419 3.5
Stored XSS has been discovered in the upload section of ARDAWAN.COM User Management 1.1, as demonstrated by a .jpg filename to the /account URI.
19-10-2018 - 18:29 19-10-2018 - 18:29
CVE-2018-18417 3.5
In the 3.1 version of Ekushey Project Manager CRM, Stored XSS has been discovered in the input and upload sections, as demonstrated by the name parameter to the index.php/admin/client/create URI.
19-10-2018 - 18:29 19-10-2018 - 18:29
CVE-2018-18416 3.5
LANGO Codeigniter Multilingual Script 1.0 has XSS in the input and upload sections, as demonstrated by the site_name parameter to the admin/settings/update URI.
19-10-2018 - 18:29 19-10-2018 - 18:29
CVE-2018-10824 None
An issue was discovered on D-Link DWR-116 through 1.06, DIR-140L through 1.02, DIR-640L through 1.02, DWR-512 through 2.02, DWR-712 through 2.02, DWR-912 through 2.02, DWR-921 through 2.02, and DWR-111 through 1.01 devices. The administrative passwor
17-10-2018 - 10:29 17-10-2018 - 10:29
CVE-2018-10823 None
An issue was discovered on D-Link DWR-116 through 1.06, DWR-512 through 2.02, DWR-712 through 2.02, DWR-912 through 2.02, DWR-921 through 2.02, and DWR-111 through 1.01 devices. An authenticated attacker may execute arbitrary code by injecting the sh
17-10-2018 - 10:29 17-10-2018 - 10:29
CVE-2018-10822 None
Directory traversal vulnerability in the web interface on D-Link DWR-116 through 1.06, DIR-140L through 1.02, DIR-640L through 1.02, DWR-512 through 2.02, DWR-712 through 2.02, DWR-912 through 2.02, DWR-921 through 2.02, and DWR-111 through 1.01 devi
17-10-2018 - 10:29 17-10-2018 - 10:29
CVE-2018-10933 6.4
A vulnerability was found in libssh's server-side state machine before versions 0.7.6 and 0.8.4. A malicious client could create channels without first performing authentication, resulting in unauthorized access.
17-10-2018 - 08:29 17-10-2018 - 08:29
CVE-2018-18308 4.3
In the 4.2.23 version of BigTree, a Stored XSS vulnerability has been discovered in /admin/ajax/file-browser/upload/ (aka the image upload area).
16-10-2018 - 18:29 16-10-2018 - 18:29
CVE-2018-17980 None
NoMachine before 5.3.27 and 6.x before 6.3.6 allows attackers to gain privileges via a Trojan horse wintab32.dll file located in the same directory as a .nxs file, as demonstrated by a scenario where the .nxs file and the DLL are in the current worki
15-10-2018 - 15:29 15-10-2018 - 15:29
CVE-2018-17961 6.8
Artifex Ghostscript 9.25 and earlier allows attackers to bypass a sandbox protection mechanism via vectors involving errorhandler setup. NOTE: this issue exists because of an incomplete fix for CVE-2018-17183.
15-10-2018 - 12:29 15-10-2018 - 12:29
CVE-2018-18324 4.3
CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.480 has XSS via the admin/fileManager2.php fm_current_dir parameter, or the admin/index.php module, service_start, service_fullstatus, service_restart, service_stop, or file (within the file_editor
15-10-2018 - 03:29 15-10-2018 - 03:29
CVE-2018-18323 5.0
CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.480 has Local File Inclusion via directory traversal with an admin/index.php?module=file_editor&file=/../ URI.
15-10-2018 - 03:29 15-10-2018 - 03:29
CVE-2018-18322 7.5
CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.480 has Command Injection via shell metacharacters in the admin/index.php service_start, service_restart, service_fullstatus, or service_stop parameter.
15-10-2018 - 03:29 15-10-2018 - 03:29
CVE-2018-9206 None
Unauthenticated arbitrary file upload vulnerability in Blueimp jQuery-File-Upload <= v9.22.0
11-10-2018 - 11:29 11-10-2018 - 11:29
CVE-2018-17784 4.3
Multiple vulnerabilities in YUI and FlashCanvas embedded in SugarCRM Community Edition 6.5.26 could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack on a targeted system.
10-10-2018 - 17:29 10-10-2018 - 17:29
CVE-2018-12596 None
Episerver Ektron CMS before 9.0 SP3 Site CU 31, 9.1 before SP3 Site CU 45, or 9.2 before SP2 Site CU 22 allows remote attackers to call aspx pages via the "activateuser.aspx" page, even if a page is located under the /WorkArea/ path, which is forbidd
10-10-2018 - 17:29 10-10-2018 - 17:29
CVE-2018-8533 4.3
An information disclosure vulnerability exists in Microsoft SQL Server Management Studio (SSMS) when parsing malicious XML content containing a reference to an external entity, aka "SQL Server Management Studio Information Disclosure Vulnerability."
10-10-2018 - 09:29 10-10-2018 - 09:29
CVE-2018-8532 4.3
An information disclosure vulnerability exists in Microsoft SQL Server Management Studio (SSMS) when parsing a malicious XMLA file containing a reference to an external entity, aka "SQL Server Management Studio Information Disclosure Vulnerability."
10-10-2018 - 09:29 10-10-2018 - 09:29
CVE-2018-8527 4.3
An information disclosure vulnerability exists in Microsoft SQL Server Management Studio (SSMS) when parsing a malicious XEL file containing a reference to an external entity, aka "SQL Server Management Studio Information Disclosure Vulnerability." T
10-10-2018 - 09:29 10-10-2018 - 09:29
CVE-2018-8411 7.2
An elevation of privilege vulnerability exists when NTFS improperly checks access, aka "NTFS Elevation of Privilege Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2019, Windows Serv
10-10-2018 - 09:29 10-10-2018 - 09:29
CVE-2018-17775 None
Seqrite End Point Security v7.4 has "Everyone: (F)" permission for %PROGRAMFILES%\Seqrite\Seqrite, which allows local users to gain privileges by replacing an executable file with a Trojan horse.
08-10-2018 - 13:29 08-10-2018 - 13:29
CVE-2018-17443 4.3
An issue was discovered on D-Link Central WiFi Manager before v 1.03r0100-Beta1. The 'sitename' parameter of the UpdateSite endpoint is vulnerable to stored XSS.
08-10-2018 - 12:29 08-10-2018 - 12:29
CVE-2018-17442 6.5
An issue was discovered on D-Link Central WiFi Manager before v 1.03r0100-Beta1. An unrestricted file upload vulnerability in the onUploadLogPic endpoint allows remote authenticated users to execute arbitrary PHP code.
08-10-2018 - 12:29 08-10-2018 - 12:29
CVE-2018-17441 4.3
An issue was discovered on D-Link Central WiFi Manager before v 1.03r0100-Beta1. The 'username' parameter of the addUser endpoint is vulnerable to stored XSS.
08-10-2018 - 12:29 08-10-2018 - 12:29
CVE-2018-17440 7.5
An issue was discovered on D-Link Central WiFi Manager before v 1.03r0100-Beta1. They expose an FTP server that serves by default on port 9000 and has hardcoded credentials (admin, admin). Taking advantage of this, a remote unauthenticated attacker c
08-10-2018 - 12:29 08-10-2018 - 12:29
CVE-2018-17456 None
Git before 2.14.5, 2.15.x before 2.15.3, 2.16.x before 2.16.5, 2.17.x before 2.17.2, 2.18.x before 2.18.1, and 2.19.x before 2.19.1 allows remote code execution during processing of a recursive "git clone" of a superproject if a .gitmodules file has
06-10-2018 - 10:29 06-10-2018 - 10:29
CVE-2018-15379 None
A vulnerability in which the HTTP web server for Cisco Prime Infrastructure (PI) has unrestricted directory permissions could allow an unauthenticated, remote attacker to upload an arbitrary file. This file could allow the attacker to execute command
05-10-2018 - 10:29 05-10-2018 - 10:29
CVE-2018-0438 None
A vulnerability in the Cisco Umbrella Enterprise Roaming Client (ERC) could allow an authenticated, local attacker to elevate privileges to Administrator. To exploit the vulnerability, the attacker must authenticate with valid local user credentials.
05-10-2018 - 10:29 05-10-2018 - 10:29
CVE-2018-0437 None
A vulnerability in the Cisco Umbrella Enterprise Roaming Client (ERC) could allow an authenticated, local attacker to elevate privileges to Administrator. To exploit the vulnerability, the attacker must authenticate with valid local user credentials.
05-10-2018 - 10:29 05-10-2018 - 10:29
CVE-2018-17553 6.5
An "Unrestricted Upload of File with Dangerous Type" issue with directory traversal in navigate_upload.php in Naviwebs Navigate CMS 2.8 allows authenticated attackers to achieve remote code execution via a POST request with engine=picnik and id=../..
03-10-2018 - 16:29 03-10-2018 - 16:29
CVE-2018-17552 7.5
SQL Injection in login.php in Naviwebs Navigate CMS 2.8 allows remote attackers to bypass authentication via the navigate-user cookie.
03-10-2018 - 16:29 03-10-2018 - 16:29
CVE-2018-17428 7.5
An issue was discovered in OPAC EasyWeb Five 5.7. There is SQL injection via the w2001/index.php?scelta=campi biblio parameter.
03-10-2018 - 16:29 03-10-2018 - 16:29
CVE-2018-17408 None
Stack-based buffer overflows in Zahir Accounting Enterprise Plus 6 through build 10b allow remote attackers to execute arbitrary code via a crafted CSV file that is accessed through the Import CSV File menu.
03-10-2018 - 16:29 03-10-2018 - 16:29
CVE-2018-9515 7.2
In sdcardfs_create and sdcardfs_mkdir of inode.c, there is a possible memory corruption due to improper locking. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for explo
02-10-2018 - 15:29 02-10-2018 - 15:29
CVE-2018-17593 4.3
AirTies Air 5453 devices with software 1.0.0.18 have XSS via the top.html productboardtype parameter.
02-10-2018 - 14:29 02-10-2018 - 14:29
CVE-2018-17591 4.3
AirTies Air 5343v2 devices with software 1.0.0.18 have XSS via the top.html productboardtype parameter.
02-10-2018 - 14:29 02-10-2018 - 14:29
CVE-2018-17590 4.3
AirTies Air 5442 devices with software 1.0.0.18 have XSS via the top.html productboardtype parameter.
02-10-2018 - 14:29 02-10-2018 - 14:29
CVE-2018-17588 4.3
AirTies Air 5021 devices with software 1.0.0.18 have XSS via the top.html productboardtype parameter.
02-10-2018 - 14:29 02-10-2018 - 14:29
CVE-2018-17587 4.3
AirTies Air 5750 devices with software 1.0.0.18 have XSS via the top.html productboardtype parameter.
02-10-2018 - 14:29 02-10-2018 - 14:29
CVE-2018-17832 4.3
XSS exists in WUZHI CMS 2.0 via the index.php v or f parameter.
01-10-2018 - 04:29 01-10-2018 - 04:29
CVE-2018-17793 None
** DISPUTED ** Virtualenv 16.0.0 allows a sandbox escape via "python $(bash >&2)" and "python $(rbash >&2)" commands. NOTE: the software maintainer disputes this because the Python interpreter in a virtualenv is supposed to be able to execute arbitra
30-09-2018 - 15:29 30-09-2018 - 15:29
CVE-2018-17776 None
PCProtect Anti-Virus v4.8.35 has "Everyone: (F)" permission for %PROGRAMFILES(X86)%\PCProtect, which allows local users to gain privileges by replacing an executable file with a Trojan horse.
28-09-2018 - 17:29 28-09-2018 - 17:29
CVE-2018-17397 7.5
SQL Injection exists in the AlphaIndex Dictionaries 1.0 component for Joomla! via the letter parameter.
27-09-2018 - 20:29 27-09-2018 - 20:29
CVE-2018-17394 7.5
SQL Injection exists in the Timetable Schedule 3.6.8 component for Joomla! via the eid parameter.
27-09-2018 - 20:29 27-09-2018 - 20:29
CVE-2018-17391 7.5
SQL Injection exists in authors_post.php in Super Cms Blog Pro 1.0 via the author parameter.
27-09-2018 - 20:29 27-09-2018 - 20:29
CVE-2018-17385 7.5
SQL Injection exists in the Social Factory 3.8.3 component for Joomla! via the radius[lat], radius[lng], or radius[radius] parameter.
27-09-2018 - 20:29 27-09-2018 - 20:29
CVE-2018-17384 7.5
SQL Injection exists in the Swap Factory 2.2.1 component for Joomla! via the filter_order_Dir or filter_order parameter.
27-09-2018 - 20:29 27-09-2018 - 20:29
CVE-2018-17383 7.5
SQL Injection exists in the Collection Factory 4.1.9 component for Joomla! via the filter_order or filter_order_Dir parameter.
27-09-2018 - 20:29 27-09-2018 - 20:29
CVE-2018-17382 7.5
SQL Injection exists in the Jobs Factory 2.0.4 component for Joomla! via the filter_letter parameter.
27-09-2018 - 20:29 27-09-2018 - 20:29
CVE-2018-17380 7.5
SQL Injection exists in the Article Factory Manager 4.3.9 component for Joomla! via the start_date, m_start_date, or m_end_date parameter.
27-09-2018 - 20:29 27-09-2018 - 20:29
CVE-2018-17379 7.5
SQL Injection exists in the Raffle Factory 3.5.2 component for Joomla! via the filter_order_Dir or filter_order parameter.
27-09-2018 - 20:29 27-09-2018 - 20:29
CVE-2018-17378 7.5
SQL Injection exists in the Penny Auction Factory 2.0.4 component for Joomla! via the filter_order_Dir or filter_order parameter.
27-09-2018 - 20:29 27-09-2018 - 20:29
CVE-2018-17377 7.5
SQL Injection exists in the Questions 1.4.3 component for Joomla! via the term, userid, users, or groups parameter.
27-09-2018 - 20:29 27-09-2018 - 20:29
CVE-2018-17376 7.5
SQL Injection exists in the Reverse Auction Factory 4.3.8 component for Joomla! via the filter_order_Dir, cat, or filter_letter parameter.
27-09-2018 - 20:29 27-09-2018 - 20:29
CVE-2018-17375 7.5
SQL Injection exists in the Music Collection 3.0.3 component for Joomla! via the id parameter.
27-09-2018 - 20:29 27-09-2018 - 20:29
CVE-2018-16659 7.5
An issue was discovered in Rausoft ID.prove 2.95. The login page allows SQL injection via Microsoft SQL Server stacked queries in the Username POST parameter. Hypothetically, an attacker can utilize master..xp_cmdshell for the further privilege eleva
27-09-2018 - 20:29 27-09-2018 - 20:29
CVE-2018-17313 4.3
On the RICOH MP C307 printer, HTML Injection and Stored XSS vulnerabilities have been discovered in the area of adding addresses via the entryNameIn parameter to /web/entry/en/address/adrsSetUserWizard.cgi.
26-09-2018 - 18:29 26-09-2018 - 18:29
CVE-2018-17310 4.3
On the RICOH MP C1803 JPN printer, HTML Injection and Stored XSS vulnerabilities have been discovered in the area of adding addresses via the entryNameIn parameter to /web/entry/en/address/adrsSetUserWizard.cgi.
26-09-2018 - 18:29 26-09-2018 - 18:29
CVE-2018-14327 None
The installer for the Alcatel OSPREY3_MINI Modem component on EE EE40VB 4G mobile broadband modems with firmware before EE40_00_02.00_45 sets weak permissions (Everyone:Full Control) for the "Web Connecton\EE40" and "Web Connecton\EE40\BackgroundServ
26-09-2018 - 18:29 26-09-2018 - 18:29
CVE-2018-16672 None
An issue was discovered in CIRCONTROL CirCarLife before 4.3. Due to the storage of multiple sensitive information elements in a JSON format at /services/system/setup.json, an authenticated but unprivileged user can exfiltrate critical setup informati
26-09-2018 - 13:29 26-09-2018 - 13:29
CVE-2018-14634 7.2
An integer overflow flaw was found in the Linux kernel's create_elf_tables() function. An unprivileged local user with access to SUID (or otherwise privileged) binary could use this flaw to escalate their privileges on the system. Kernel versions 2.6
25-09-2018 - 17:29 25-09-2018 - 17:29
CVE-2018-15961 10.0
Adobe ColdFusion versions July 12 release (2018.0.0.310739), Update 6 and earlier, and Update 14 and earlier have an unrestricted file upload vulnerability. Successful exploitation could lead to arbitrary code execution.
25-09-2018 - 09:29 25-09-2018 - 09:29
CVE-2018-16299 5.0
The Localize My Post plugin 1.0 for WordPress allows Directory Traversal via the ajax/include.php file parameter.
24-09-2018 - 18:29 24-09-2018 - 18:29
CVE-2018-16283 7.5
The Wechat Broadcast plugin 1.2.0 and earlier for WordPress allows Directory Traversal via the Image.php url parameter.
24-09-2018 - 18:29 24-09-2018 - 18:29
CVE-2018-17173 7.5
LG SuperSign CMS allows remote attackers to execute arbitrary code via the sourceUri parameter to qsr_server/device/getThumbnail.
21-09-2018 - 13:29 21-09-2018 - 13:29
CVE-2018-16833 4.3
Zoho ManageEngine Desktop Central 10.0.271 has XSS via the "Features & Articles" search field to the /advsearch.do?SUBREQUEST=XMLHTTP URI.
21-09-2018 - 13:29 21-09-2018 - 13:29
CVE-2018-16752 9.0
LINK-NET LW-N605R devices with firmware 12.20.2.1486 allow Remote Code Execution via shell metacharacters in the HOST field of the ping feature at adm/systools.asp. Authentication is needed but the default password of admin for the admin account may
20-09-2018 - 16:29 20-09-2018 - 16:29
CVE-2018-15832 6.8
upc.exe in Ubisoft Uplay Desktop Client versions 63.0.5699.0 allows remote attackers to execute arbitrary code. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The sp
20-09-2018 - 16:29 20-09-2018 - 16:29
CVE-2018-14592 7.5
The CWJoomla CW Article Attachments PRO extension before 2.0.7 and CW Article Attachments FREE extension before 1.0.6 for Joomla! allow SQL Injection within download.php.
20-09-2018 - 16:29 20-09-2018 - 16:29
CVE-2018-17255 4.3
Navigate CMS 2.8 has Reflected XSS via the navigate.php fid parameter.
20-09-2018 - 10:29 20-09-2018 - 10:29
CVE-2018-17254 7.5
The JCK Editor component 6.4.4 for Joomla! allows SQL Injection via the jtreelink/dialogs/links.php parent parameter.
20-09-2018 - 10:29 20-09-2018 - 10:29
CVE-2018-17182 7.2
An issue was discovered in the Linux kernel through 4.18.8. The vmacache_flush_all function in mm/vmacache.c mishandles sequence number overflows. An attacker can trigger a use-after-free (and possibly gain privileges) via certain thread creation, ma
19-09-2018 - 05:29 19-09-2018 - 05:29
CVE-2018-16671 5.0
An issue was discovered in CIRCONTROL CirCarLife before 4.3. There is system software information disclosure due to lack of authentication for /html/device-id.
18-09-2018 - 16:29 18-09-2018 - 16:29
CVE-2018-16670 5.0
An issue was discovered in CIRCONTROL CirCarLife before 4.3. There is PLC status disclosure due to lack of authentication for /html/devstat.html.
18-09-2018 - 16:29 18-09-2018 - 16:29
CVE-2018-16669 5.0
An issue was discovered in CIRCONTROL Open Charge Point Protocol (OCPP) before 1.5.0, as used in CirCarLife, PowerStudio, and other products. Due to storage of credentials in XML files, an unprivileged user can look at /services/config/config.xml for
18-09-2018 - 16:29 18-09-2018 - 16:29
CVE-2018-16668 5.0
An issue was discovered in CIRCONTROL CirCarLife before 4.3. There is internal installation path disclosure due to the lack of authentication for /html/repository.
18-09-2018 - 16:29 18-09-2018 - 16:29
CVE-2018-17140 3.5
The Quizlord plugin through 2.0 for WordPress is prone to Stored XSS via the title parameter in a ql_insert action to wp-admin/admin.php.
17-09-2018 - 02:29 17-09-2018 - 02:29
CVE-2018-17138 3.5
The Jibu Pro plugin through 1.7 for WordPress is prone to Stored XSS via the wp-content/plugins/jibu-pro/quiz_action.php name (aka Quiz Name) field.
17-09-2018 - 02:29 17-09-2018 - 02:29
CVE-2018-17128 3.5
A Persistent XSS issue was discovered in the Visual Editor in MyBB before 1.8.19 via a Video MyCode.
17-09-2018 - 00:29 17-09-2018 - 00:29
CVE-2018-17110 7.5
Simple POS 4.0.24 allows SQL Injection via a products/get_products/ columns[0][search][value] parameter in the management panel, as demonstrated by products/get_products/1.
17-09-2018 - 00:29 17-09-2018 - 00:29
CVE-2018-10814 2.1
Synametrics SynaMan 4.0 build 1488 uses cleartext password storage for SMTP credentials.
15-09-2018 - 06:29 14-09-2018 - 17:29
CVE-2018-10763 3.5
Multiple cross-site scripting (XSS) vulnerabilities in Synametrics SynaMan 4.0 build 1488 via the (1) Main heading or (2) Sub heading fields in the Partial Branding configuration page.
15-09-2018 - 06:29 14-09-2018 - 17:29
CVE-2018-16288 7.8
LG SuperSign CMS allows reading of arbitrary files via signEzUI/playlist/edit/upload/..%2f URIs.
14-09-2018 - 17:29 14-09-2018 - 17:29
CVE-2018-8474 5.0
A security feature bypass vulnerability exists when Lync for Mac 2011 fails to properly sanitize specially crafted messages, aka "Lync for Mac 2011 Security Feature Bypass Vulnerability." This affects Microsoft Lync.
12-09-2018 - 20:29 12-09-2018 - 20:29
CVE-2018-8469 4.3
An elevation of privilege vulnerability exists in Microsoft Edge that could allow an attacker to escape from the AppContainer sandbox in the browser, aka "Microsoft Edge Elevation of Privilege Vulnerability." This affects Microsoft Edge. This CVE ID
12-09-2018 - 20:29 12-09-2018 - 20:29
CVE-2018-8468 4.3
An elevation of privilege vulnerability exists when Windows, allowing a sandbox escape, aka "Windows Elevation of Privilege Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Wind
12-09-2018 - 20:29 12-09-2018 - 20:29
CVE-2018-8467 7.6
A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka "Chakra Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID
12-09-2018 - 20:29 12-09-2018 - 20:29
CVE-2018-8466 7.6
A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka "Chakra Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID
12-09-2018 - 20:29 12-09-2018 - 20:29
CVE-2018-8463 4.3
An elevation of privilege vulnerability exists in Microsoft Edge that could allow an attacker to escape from the AppContainer sandbox in the browser, aka "Microsoft Edge Elevation of Privilege Vulnerability." This affects Microsoft Edge. This CVE ID
12-09-2018 - 20:29 12-09-2018 - 20:29
CVE-2018-8449 2.1
A security feature bypass exists when Device Guard incorrectly validates an untrusted file, aka "Device Guard Security Feature Bypass Vulnerability." This affects Windows Server 2016, Windows 10, Windows 10 Servers.
12-09-2018 - 20:29 12-09-2018 - 20:29
CVE-2018-8410 7.2
An elevation of privilege vulnerability exists when the Windows Kernel API improperly handles registry objects in memory, aka "Windows Registry Elevation of Privilege Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Win
12-09-2018 - 20:29 12-09-2018 - 20:29
CVE-2018-7921 3.3
Huawei B315s-22 products with software of 21.318.01.00.26 have an information leak vulnerability. Unauthenticated adjacent attackers may exploit this vulnerability to obtain device information.
12-09-2018 - 11:29 12-09-2018 - 11:29
CVE-2017-1085 7.2
In FreeBSD before 11.2-RELEASE, an application which calls setrlimit() to increase RLIMIT_STACK may turn a read-only memory region below the stack into a read-write region. A specially crafted executable could be exploited to execute arbitrary code i
12-09-2018 - 10:29 12-09-2018 - 10:29
CVE-2017-1084 7.8
In FreeBSD before 11.2-RELEASE, multiple issues with the implementation of the stack guard-page reduce the protections afforded by the guard-page. This results in the possibility a poorly written process could be cause a stack overflow.
12-09-2018 - 10:29 12-09-2018 - 10:29
CVE-2018-16946 5.0
LG LNB*, LND*, LNU*, and LNV* smart network camera devices have broken access control. Attackers are able to download /updownload/t.report (aka Log & Report) files and download backup files (via download.php) without authenticating. These backup file
11-09-2018 - 21:29 11-09-2018 - 21:29
CVE-2018-16836 None
Rubedo through 3.4.0 contains a Directory Traversal vulnerability in the theme component, allowing unauthenticated attackers to read and execute arbitrary files outside of the service root path, as demonstrated by a /theme/default/img/%2e%2e/..//etc/
11-09-2018 - 12:29 11-09-2018 - 12:29
CVE-2018-16736 3.5
In the rcfilters plugin 2.1.6 for Roundcube, XSS exists via the _whatfilter and _messages parameters (in the Filters section of the settings).
09-09-2018 - 08:29 09-09-2018 - 08:29
CVE-2018-16059 5.0
Endress+Hauser WirelessHART Fieldgate SWG70 3.x devices allow Directory Traversal via the fcgi-bin/wgsetcgi filename parameter.
07-09-2018 - 18:29 07-09-2018 - 18:29
CVE-2018-16709 7.5
Fuji Xerox DocuCentre-V 3065, ApeosPort-VI C3371, ApeosPort-V C4475, ApeosPort-V C3375, DocuCentre-VI C2271, ApeosPort-V C5576, DocuCentre-IV C2263, DocuCentre-V C2263, and ApeosPort-V 5070 devices allow remote attackers to read or write to files via
07-09-2018 - 15:29 07-09-2018 - 15:29
CVE-2018-1756 5.0
IBM Security Identity Governance and Intelligence 5.2.3.2 and 5.2.4 is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the attacker to view, information in the back-end database. IBM X-For
07-09-2018 - 11:29 07-09-2018 - 11:29
CVE-2018-0624 6.8
Untrusted search path vulnerability in Multiple Yayoi 17 Series products (Yayoi Kaikei 17 Series Ver.23.1.1 and earlier, Yayoi Aoiro Shinkoku 17 Ver.23.1.1 and earlier, Yayoi Kyuuyo 17 Ver.20.1.4 and earlier, Yayoi Kyuuyo Keisan 17 Ver.20.1.4 and ear
07-09-2018 - 10:29 07-09-2018 - 10:29
CVE-2018-16252 2.1
FsPro Labs Event Log Explorer 4.6.1.2115 has ".elx" FileType XML External Entity Injection.
05-09-2018 - 17:29 05-09-2018 - 17:29
CVE-2018-15918 5.5
An issue was discovered in Jorani 0.6.5. SQL Injection (error-based) allows a user of the application without permissions to read and modify sensitive information from the database used by the application via the startdate or enddate parameter to lea
05-09-2018 - 17:29 05-09-2018 - 17:29
CVE-2018-15917 3.5
Persistent cross-site scripting (XSS) issues in Jorani 0.6.5 allow remote attackers to inject arbitrary web script or HTML via the language parameter to session/language.
05-09-2018 - 17:29 05-09-2018 - 17:29
CVE-2018-16509 9.3
An issue was discovered in Artifex Ghostscript before 9.24. Incorrect "restoration of privilege" checking during handling of /invalidaccess exceptions could be used by attackers able to supply crafted PostScript to execute code using the "pipe" instr
05-09-2018 - 02:29 05-09-2018 - 02:29
CVE-2018-16323 4.3
ReadXBMImage in coders/xbm.c in ImageMagick before 7.0.8-9 leaves data uninitialized when processing an XBM file that has a negative pixel value. If the affected code is used as a library loaded into a process that includes sensitive information, tha
01-09-2018 - 14:29 01-09-2018 - 14:29
CVE-2018-15745 5.0
Argus Surveillance DVR 4.0.0.0 devices allow Unauthenticated Directory Traversal, leading to File Disclosure via a ..%2F in the WEBACCOUNT.CGI RESULTPAGE parameter.
30-08-2018 - 13:29 30-08-2018 - 13:29
CVE-2018-15691 7.5
Insecure deserialization of a specially crafted serialized object, in CA Release Automation 6.5 and earlier, allows attackers to potentially execute arbitrary code.
30-08-2018 - 10:29 30-08-2018 - 10:29
CVE-2018-16134 4.3
Cybrotech CyBroHttpServer 1.0.3 allows XSS via a URI.
29-08-2018 - 18:29 29-08-2018 - 18:29
CVE-2018-16133 5.0
Cybrotech CyBroHttpServer 1.0.3 allows Directory Traversal via a ../ in the URI.
29-08-2018 - 18:29 29-08-2018 - 18:29
CVE-2018-12710 2.7
An issue was discovered on D-Link DIR-601 2.02NA devices. Being local to the network and having only "User" account (which is a low privilege account) access, an attacker can intercept the response from a POST request to obtain "Admin" rights due to
29-08-2018 - 15:29 29-08-2018 - 15:29
CVE-2018-12827 5.0
Adobe Flash Player 30.0.0.134 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure.
29-08-2018 - 09:29 29-08-2018 - 09:29
CVE-2018-15884 6.8
RICOH MP C4504ex devices allow HTML Injection via the /web/entry/en/address/adrsSetUserWizard.cgi entryNameIn parameter.
28-08-2018 - 15:29 28-08-2018 - 15:29
CVE-2018-15873 7.5
A SQL Injection issue was discovered in Sentrifugo 3.2 via the deptid parameter.
28-08-2018 - 15:29 28-08-2018 - 15:29
CVE-2018-15608 4.3
Zoho ManageEngine ADManager Plus 6.5.7 allows HTML Injection on the "AD Delegation" "Help Desk Technicians" screen.
28-08-2018 - 15:29 28-08-2018 - 15:29
CVE-2018-15596 4.3
An issue was discovered in inc/class_feedgeneration.php in MyBB 1.8.17. On the forum RSS Syndication page, one can generate a URL such as http://localhost/syndication.php?fid=&type=atom1.0&limit=15. The thread titles (within title elements of the gen
28-08-2018 - 15:29 28-08-2018 - 15:29
CVE-2018-15839 7.5
D-Link DIR-615 devices have a buffer overflow via a long Authorization HTTP header.
28-08-2018 - 13:29 28-08-2018 - 13:29
CVE-2018-0715 4.3
Cross-site scripting vulnerability in QNAP Photo Station versions 5.7.0 and earlier could allow remote attackers to inject Javascript code in the compromised application.
27-08-2018 - 09:29 27-08-2018 - 09:29
CVE-2018-15877 9.0
The Plainview Activity Monitor plugin before 20180826 for WordPress is vulnerable to OS command injection via shell metacharacters in the ip parameter of a wp-admin/admin.php?page=plainview_activity_monitor&tab=activity_tools request.
26-08-2018 - 03:29 26-08-2018 - 03:29
CVE-2018-15845 6.8
There is a CSRF vulnerability that can add an administrator account in Gleez CMS 1.2.0 via admin/users/add.
25-08-2018 - 17:29 25-08-2018 - 17:29
CVE-2018-15844 6.8
An issue was discovered in DamiCMS 6.0.0. There is an CSRF vulnerability that can revise the administrator account's password via /admin.php?s=/Admin/doedit.
25-08-2018 - 17:29 25-08-2018 - 17:29
CVE-2018-15576 6.8
An issue was discovered in EasyLogin Pro through 1.3.0. Encryptor.php contains an unserialize call that can be exploited for remote code execution in the decrypt function, if the attacker knows the key.
25-08-2018 - 06:29 24-08-2018 - 17:29
CVE-2018-15120 6.8
libpango in Pango 1.40.8 through 1.42.3, as used in hexchat and other products, allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via crafted text with invalid Unicode sequences.
25-08-2018 - 06:29 24-08-2018 - 15:29
CVE-2018-14059 3.5
Pimcore allows XSS via Users, Assets, Data Objects, Video Thumbnails, Image Thumbnails, Field-Collections, Objectbrick, Classification Store, Document Types, Predefined Properties, Predefined Asset Metadata, Quantity Value, and Static Routes function
25-08-2018 - 06:29 24-08-2018 - 18:29
CVE-2018-15536 5.8
/filemanager/ajax_calls.php in tecrail Responsive FileManager before 9.13.4 does not properly validate file paths in archives, allowing for the extraction of crafted archives to overwrite arbitrary files via an extract action, aka Directory Traversal
24-08-2018 - 15:29 24-08-2018 - 15:29
CVE-2018-15535 5.0
/filemanager/ajax_calls.php in tecrail Responsive FileManager before 9.13.4 uses external input to construct a pathname that should be within a restricted directory, but it does not properly neutralize get_file sequences such as ".." that can resolve
24-08-2018 - 15:29 24-08-2018 - 15:29
CVE-2018-15685 6.8
GitHub Electron 1.7.15, 1.8.7, 2.0.7, and 3.0.0-beta.6, in certain scenarios involving IFRAME elements and "nativeWindowOpen: true" or "sandbox: true" options, is affected by a WebPreferences vulnerability that can be leveraged to perform remote code
23-08-2018 - 01:29 23-08-2018 - 01:29
CVE-2018-11776 9.3
Apache Struts versions 2.3 to 2.3.34 and 2.5 to 2.5.16 suffer from possible Remote Code Execution when alwaysSelectFullNamespace is true (either by user or a plugin like Convention Plugin) and then: results are used with no namespace and in same time
22-08-2018 - 09:29 22-08-2018 - 09:29
CVE-2018-15534 5.0
Geutebrueck re_porter 16 before 7.8.974.20 has a possibility of unauthenticated access to sensitive information including usernames and hashes via a direct request for /statistics/gscsetup.xml on TCP port 12003.
21-08-2018 - 12:29 21-08-2018 - 12:29
CVE-2018-15533 4.3
A reflected cross-site scripting vulnerability exists in Geutebrueck re_porter 16 before 7.8.974.20 by appending a query string to /modifychannel/exec or /images/*.png on TCP port 12005.
21-08-2018 - 12:29 21-08-2018 - 12:29
CVE-2018-15473 5.0
OpenSSH through 7.7 is prone to a user enumeration vulnerability due to not delaying bailout for an invalid authenticating user until after the packet containing the request has been fully parsed, related to auth2-gss.c, auth2-hostbased.c, and auth2-
17-08-2018 - 15:29 17-08-2018 - 15:29
CVE-2018-14058 4.0
Pimcore before 5.3.0 allows SQL Injection via the REST web service API.
17-08-2018 - 14:29 17-08-2018 - 14:29
CVE-2018-14057 6.8
Pimcore before 5.3.0 allows remote attackers to conduct cross-site request forgery (CSRF) attacks by leveraging validation of the X-pimcore-csrf-token anti-CSRF token only in the "Settings > Users / Roles" function.
17-08-2018 - 14:29 17-08-2018 - 14:29
CVE-2018-12256 6.5
admin/vqmods.app/vqmods.inc.php in LiteCart before 2.1.3 allows remote authenticated attackers to upload a malicious file (resulting in remote code execution) by using the text/xml or application/xml Content-Type in a public_html/admin/?app=vqmods&do
16-08-2018 - 16:29 16-08-2018 - 16:29
CVE-2018-11511 7.5
The tree list functionality in the photo gallery application in ASUSTOR ADM 3.1.0.RFQ3 has a SQL injection vulnerability that affects the 'album_id' or 'scope' parameter via a photo-gallery/api/album/tree_lists/ URI.
16-08-2018 - 16:29 16-08-2018 - 16:29
CVE-2018-11509 7.5
ASUSTOR ADM 3.1.0.RFQ3 uses the same default root:admin username and password as it does for the NAS itself for applications that are installed from the online repository. This may allow an attacker to login and upload a webshell.
16-08-2018 - 16:29 16-08-2018 - 16:29
CVE-2018-8384 7.6
A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka "Chakra Scripting Engine Memory Corruption Vulnerability." This affects ChakraCore. This CVE ID is unique from C
15-08-2018 - 13:29 15-08-2018 - 13:29
CVE-2018-8355 7.6
A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers, aka "Scripting Engine Memory Corruption Vulnerability." This affects ChakraCore, Internet Explorer 11, Microsoft Edge. This
15-08-2018 - 13:29 15-08-2018 - 13:29
CVE-2018-8353 7.6
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer, aka "Scripting Engine Memory Corruption Vulnerability." This affects Internet Explorer 9, Internet Explorer 11, Internet
15-08-2018 - 13:29 15-08-2018 - 13:29
CVE-2018-15172 5.0
TP-Link WR840N devices have a buffer overflow via a long Authorization HTTP header.
15-08-2018 - 13:29 15-08-2018 - 13:29
CVE-2018-0952 7.2
An Elevation of Privilege vulnerability exists when Diagnostics Hub Standard Collector allows file creation in arbitrary locations, aka "Diagnostic Hub Standard Collector Elevation Of Privilege Vulnerability." This affects Windows Server 2016, Window
15-08-2018 - 13:29 15-08-2018 - 13:29
CVE-2018-14922 4.3
Multiple cross-site scripting (XSS) vulnerabilities in Monstra CMS 3.0.4 allow remote attackers to inject arbitrary web script or HTML via the (1) first name or (2) last name field in the edit profile page.
14-08-2018 - 14:29 14-08-2018 - 14:29
CVE-2018-14888 4.3
inc/plugins/thankyoulike.php in the Eldenroot Thank You/Like plugin before 3.1.0 for MyBB allows XSS via a post or thread subject.
14-08-2018 - 14:29 14-08-2018 - 14:29
CVE-2018-15142 6.5
Directory traversal in portal/import_template.php in versions of OpenEMR before 5.0.1.4 allows a remote attacker authenticated in the patient portal to execute arbitrary PHP code by writing a file with a PHP extension via the "docid" and "content" pa
13-08-2018 - 14:29 13-08-2018 - 14:29
CVE-2018-15141 5.5
Directory traversal in portal/import_template.php in versions of OpenEMR before 5.0.1.4 allows a remote attacker authenticated in the patient portal to delete arbitrary files via the "docid" parameter when the mode is set to delete.
13-08-2018 - 14:29 13-08-2018 - 14:29
CVE-2018-15140 4.0
Directory traversal in portal/import_template.php in versions of OpenEMR before 5.0.1.4 allows a remote attacker authenticated in the patient portal to read arbitrary files via the "docid" parameter when the mode is set to get.
13-08-2018 - 14:29 13-08-2018 - 14:29
CVE-2018-13417 7.5
In Vuze Bittorrent Client 5.7.6.0, the XML parsing engine for SSDP/UPnP functionality is vulnerable to an XML External Entity Processing (XXE) attack. Remote, unauthenticated attackers can use this vulnerability to: (1) Access arbitrary files from th
13-08-2018 - 13:29 13-08-2018 - 13:29
CVE-2018-13415 7.5
In Plex Media Server 1.13.2.5154, the XML parsing engine for SSDP/UPnP functionality is vulnerable to an XML External Entity Processing (XXE) attack. Remote, unauthenticated attackers can use this vulnerability to: (1) Access arbitrary files from the
13-08-2018 - 13:29 13-08-2018 - 13:29
CVE-2018-15181 6.8
JioFi 4G Hotspot M2S devices allow attackers to cause a denial of service (secure configuration outage) via an XSS payload in the SSID name and Security Key fields.
09-08-2018 - 15:29 09-08-2018 - 15:29
CVE-2018-14869 3.5
PHP Template Store Script 3.0.6 allows XSS via the Address line 1, Address Line 2, Bank name, or A/C Holder name field in a profile.
07-08-2018 - 21:29 06-08-2018 - 17:29
CVE-2016-8527 4.3
Aruba Airwave all versions up to, but not including, 8.2.3.1 is vulnerable to a reflected cross-site scripting (XSS). The vulnerability is present in the VisualRF component of AirWave. By exploiting this vulnerability, an attacker who can trick a log
07-08-2018 - 21:29 06-08-2018 - 16:29
CVE-2016-8526 4.0
Aruba Airwave all versions up to, but not including, 8.2.3.1 is vulnerable to an XML external entities (XXE). XXEs are a way to permit XML parsers to access storage that exist on external systems. If an unprivileged user is permitted to control the c
07-08-2018 - 21:29 06-08-2018 - 16:29
CVE-2018-15137 10.0
CeLa Link CLR-M20 devices allow unauthorized users to upload any file (e.g., asp, aspx, cfm, html, jhtml, jsp, or shtml), which causes remote code execution as well. Because of the WebDAV feature, it is possible to upload arbitrary files by utilizing
07-08-2018 - 20:29 07-08-2018 - 20:29
CVE-2018-14912 5.0
cgit_clone_objects in CGit before 1.2.1 has a directory traversal vulnerability when `enable-http-clone=1` is not turned off, as demonstrated by a cgit/cgit.cgi/git/objects/?path=../ request.
06-08-2018 - 21:29 03-08-2018 - 15:29
CVE-2018-14716 5.0
A Server Side Template Injection (SSTI) was discovered in the SEOmatic plugin before 3.1.4 for Craft CMS, because requests that don't match any elements incorrectly generate the canonicalUrl, and can lead to execution of Twig code.
06-08-2018 - 16:29 06-08-2018 - 16:29
CVE-2018-14541 3.5
PHP Scripts Mall Basic B2B Script 2.0.0 has Reflected and Stored XSS via the First name, Last name, Address 1, City, State, and Company name fields.
05-08-2018 - 21:29 03-08-2018 - 21:29
CVE-2018-14417 10.0
A command injection vulnerability was found in the web administration console in SoftNAS Cloud before 4.0.3. In particular, the snserv script did not sanitize the 'recentVersion' parameter from the snserv endpoint, allowing an unauthenticated attacke
04-08-2018 - 21:29 03-08-2018 - 21:29
CVE-2018-13416 7.5
In Universal Media Server (UMS) 7.1.0, the XML parsing engine for SSDP/UPnP functionality is vulnerable to an XML External Entity Processing (XXE) attack. Remote, unauthenticated attackers can use this vulnerability to: (1) Access arbitrary files fro
04-08-2018 - 21:29 03-08-2018 - 13:29
CVE-2017-15358 6.9
Race condition in the Charles Proxy Settings suid binary in Charles Proxy before 4.2.1 allows local users to gain privileges via vectors involving the --self-repair option.
04-08-2018 - 21:29 03-08-2018 - 14:29
CVE-2018-14497 3.5
Tenda D152 ADSL routers allow XSS via a crafted SSID.
03-08-2018 - 21:29 03-08-2018 - 21:29
CVE-2018-14728 7.5
upload.php in Responsive FileManager 9.13.1 allows SSRF via the url parameter.
03-08-2018 - 14:29 03-08-2018 - 14:29
CVE-2018-14847 5.0
MikroTik RouterOS through 6.42 allows unauthenticated remote attackers to read arbitrary files and remote authenticated attackers to write arbitrary files due to a directory traversal vulnerability in the WinBox interface.
02-08-2018 - 03:29 02-08-2018 - 03:29
CVE-2018-14840 4.3
uploads/.htaccess in Subrion CMS 4.2.1 allows XSS because it does not block .html file uploads (but does block, for example, .htm file uploads).
01-08-2018 - 21:29 01-08-2018 - 21:29
CVE-2016-8641 7.2
A privilege escalation vulnerability was found in nagios 4.2.x that occurs in daemon-init.in when creating necessary files and insecurely changing the ownership afterwards. It's possible for the local attacker to create symbolic links before the file
01-08-2018 - 10:29 01-08-2018 - 10:29
CVE-2018-14533 7.2
read_tmp and write_tmp in Inteno IOPSYS allow attackers to gain privileges after writing to /tmp/etc/smb.conf because /var is a symlink to /tmp.
31-07-2018 - 10:29 31-07-2018 - 10:29
CVE-2017-15118 7.5
A stack-based buffer overflow vulnerability was found in NBD server implementation in qemu before 2.11 allowing a client to request an export name of size up to 4096 bytes, which in fact should be limited to 256 bytes, causing an out-of-bounds stack
27-07-2018 - 17:29 27-07-2018 - 17:29
CVE-2017-18344 2.1
The timer_create syscall implementation in kernel/time/posix-timers.c in the Linux kernel before 4.14.8 doesn't properly validate the sigevent->sigev_notify field, which leads to out-of-bounds access in the show_timer function (called when /proc/$PID
26-07-2018 - 15:29 26-07-2018 - 15:29
CVE-2018-10900 7.2
Network Manager VPNC plugin (aka networkmanager-vpnc) before version 1.2.6 is vulnerable to a privilege escalation attack. A new line character can be used to inject a Password helper parameter into the configuration data passed to VPNC, allowing an
26-07-2018 - 11:29 26-07-2018 - 11:29
CVE-2018-14493 4.3
Cross-site scripting (XSS) vulnerability in the Groups Page in Open-Audit Community 2.2.6 allows remote attackers to inject arbitrary web script or HTML via the group name.
25-07-2018 - 19:29 25-07-2018 - 19:29
CVE-2018-10906 4.6
In fuse before versions 2.9.8 and 3.x before 3.2.5, fusermount is vulnerable to a restriction bypass when SELinux is active. This allows non-root users to mount a FUSE file system with the 'allow_other' mount option regardless of whether 'user_allow_
24-07-2018 - 16:29 24-07-2018 - 16:29
CVE-2018-14335 4.0
An issue was discovered in H2 1.4.197. Insecure handling of permissions in the backup function allows attackers to read sensitive files (outside of their permissions) via a symlink to a fake database file.
24-07-2018 - 09:29 24-07-2018 - 09:29
CVE-2018-14328 5.0
Brynamics "Online Trade - Online trading and cryptocurrency investment system" allows remote attackers to obtain sensitive information via a direct request for /dashboard/addplan, /dashboard/paywithcard/charge, /dashboard/withdrawal, or /privacy&term
23-07-2018 - 16:29 23-07-2018 - 16:29
CVE-2018-1513 3.5
IBM Sterling B2B Integrator Standard Edition 5.2.0 through 5.2.6 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to c
23-07-2018 - 09:29 23-07-2018 - 09:29
CVE-2018-1563 3.5
IBM Sterling B2B Integrator Standard Edition (IBM Sterling File Gateway 2.2.0 through 2.2.6) is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functional
20-07-2018 - 12:29 20-07-2018 - 12:29
CVE-2018-14418 7.5
In Msvod Cms v10, SQL Injection exists via an images/lists?cid= URI.
19-07-2018 - 21:29 19-07-2018 - 21:29
CVE-2018-14336 5.0
TP-Link WR840N devices allow remote attackers to cause a denial of service (connectivity loss) via a series of packets with random MAC addresses.
19-07-2018 - 16:29 19-07-2018 - 16:29
CVE-2018-7602 7.5
A remote code execution vulnerability exists within multiple subsystems of Drupal 7.x and 8.x. This potentially allows attackers to exploit multiple attack vectors on a Drupal site, which could result in the site being compromised. This vulnerability
19-07-2018 - 13:29 19-07-2018 - 13:29
CVE-2018-14392 4.3
The New Threads plugin before 1.2 for MyBB has XSS.
18-07-2018 - 22:29 18-07-2018 - 22:29
CVE-2018-14082 3.5
PHP Scripts Mall JOB SITE (aka Job Portal) 3.0.1 has Cross-site Scripting (XSS) via the search bar.
18-07-2018 - 12:29 18-07-2018 - 12:29
CVE-2018-2892 7.2
Vulnerability in the Solaris component of Oracle Sun Systems Products Suite (subcomponent: Availability Suite Service). Supported versions that are affected are 10 and 11.3. Easily exploitable vulnerability allows low privileged attacker with logon t
18-07-2018 - 09:29 18-07-2018 - 09:29
CVE-2018-1612 5.0
IBM QRadar Incident Forensics (IBM QRadar SIEM 7.2, and 7.3) could allow a remote attacker to bypass authentication and obtain sensitive information. IBM X-Force ID: 144164.
17-07-2018 - 12:29 17-07-2018 - 12:29
CVE-2018-13862 7.5
Touchpad / Trivum WebTouch Setup V9 V2.53 build 13163 of Apr 6 2018 09:10:14 (FW 303) allow unauthorized remote attackers to reset the authentication via the "/xml/system/setAttribute.xml" URL, using the GET request "?id=0&attr=protectAccess&newValue
17-07-2018 - 10:29 17-07-2018 - 10:29
CVE-2018-13859 7.5
MusicCenter / Trivum Multiroom Setup Tool V8.76 - SNR 8604.26 - C4 Professional before V9.34 build 13381 - 12.07.18, allow unauthorized remote attackers to reset the authentication via the "/xml/system/setAttribute.xml" URL, using the GET request "?i
17-07-2018 - 10:29 17-07-2018 - 10:29
CVE-2018-0710 9.0
Command injection vulnerability in SSH of QNAP Q'center Virtual Appliance version 1.7.1063 and earlier could allow authenticated users to run arbitrary commands.
16-07-2018 - 21:29 16-07-2018 - 21:29
CVE-2018-0709 9.0
Command injection vulnerability in date of QNAP Q'center Virtual Appliance version 1.7.1063 and earlier could allow authenticated users to run arbitrary commands.
16-07-2018 - 21:29 16-07-2018 - 21:29
CVE-2018-0708 9.0
Command injection vulnerability in networking of QNAP Q'center Virtual Appliance version 1.7.1063 and earlier could allow authenticated users to run arbitrary commands.
16-07-2018 - 21:29 16-07-2018 - 21:29
CVE-2018-0707 9.0
Command injection vulnerability in change password of QNAP Q'center Virtual Appliance version 1.7.1063 and earlier could allow authenticated users to run arbitrary commands.
16-07-2018 - 21:29 16-07-2018 - 21:29
CVE-2018-0706 4.0
Exposure of Private Information in QNAP Q'center Virtual Appliance version 1.7.1063 and earlier could allow authenticated users to access sensitive information.
16-07-2018 - 21:29 16-07-2018 - 21:29
CVE-2018-13832 3.5
Multiple Persistent cross-site scripting (XSS) issues in the Techotronic all-in-one-favicon (aka All In One Favicon) plugin 4.6 for WordPress allow remote attackers to inject arbitrary web script or HTML via Apple-Text, GIF-Text, ICO-Text, PNG-Text,
16-07-2018 - 16:29 16-07-2018 - 16:29
CVE-2018-12584 7.5
The ConnectionBase::preparseNewBytes function in resip/stack/ConnectionBase.cxx in reSIProcate through 1.10.2 allows remote attackers to cause a denial of service (buffer overflow) or possibly execute arbitrary code when TLS communication is enabled.
16-07-2018 - 16:29 16-07-2018 - 16:29
CVE-2018-13981 7.5
The websites that were built from Zeta Producer Desktop CMS before 14.2.1 are vulnerable to unauthenticated remote code execution due to a default component that permits arbitrary upload of PHP files, because the formmailer widget blocks .php files b
16-07-2018 - 10:29 16-07-2018 - 10:29
CVE-2018-13980 2.1
The websites that were built from Zeta Producer Desktop CMS before 14.2.1 are vulnerable to unauthenticated file disclosure if the plugin "filebrowser" is installed, because of assets/php/filebrowser/filebrowser.main.php?file=../ directory traversal.
16-07-2018 - 10:29 16-07-2018 - 10:29
CVE-2018-14064 5.0
The uc-http service 1.0.0 on VelotiSmart WiFi B-380 camera devices allows Directory Traversal, as demonstrated by /../../etc/passwd on TCP port 80.
15-07-2018 - 11:29 15-07-2018 - 11:29
CVE-2016-6566 7.5
The valueAsString parameter inside the JSON payload contained by the ucLogin_txtLoginId_ClientStat POST parameter of the Sungard eTRAKiT3 software version 3.2.1.17 is not properly validated. An unauthenticated remote attacker may be able to modify th
13-07-2018 - 16:29 13-07-2018 - 16:29
CVE-2016-6563 10.0
Processing malformed SOAP messages when performing the HNAP Login action causes a buffer overflow in the stack in some D-Link DIR routers. The vulnerable XML fields within the SOAP body are: Action, Username, LoginPassword, and Captcha. The following
13-07-2018 - 16:29 13-07-2018 - 16:29
CVE-2018-1000207 6.5
MODX Revolution version <=2.6.4 contains a Incorrect Access Control vulnerability in Filtering user parameters before passing them into phpthumb class that can result in Creating file with custom a filename and content. This attack appear to be explo
13-07-2018 - 14:29 13-07-2018 - 14:29
CVE-2018-10018 6.8
The GDASPAMLib.AntiSpam ActiveX control ASK\GDASpam.dll in G DATA Total Security 25.4.0.3 has a buffer overflow via a long IsBlackListed argument.
13-07-2018 - 13:29 13-07-2018 - 13:29
CVE-2018-14029 6.8
CSRF vulnerability in admin/user/edit in Creatiwity wityCMS 0.6.2 allows an attacker to take over a user account, as demonstrated by modifying the account's email field.
12-07-2018 - 22:29 12-07-2018 - 22:29
CVE-2018-13458 4.3
qh_core in Nagios Core 4.4.1 and earlier is prone to a NULL pointer dereference vulnerability, which allows attackers to cause a local denial-of-service condition by sending a crafted payload to the listening UNIX socket.
12-07-2018 - 14:29 12-07-2018 - 14:29
CVE-2018-13457 4.3
qh_echo in Nagios Core 4.4.1 and earlier is prone to a NULL pointer dereference vulnerability, which allows attackers to cause a local denial-of-service condition by sending a crafted payload to the listening UNIX socket.
12-07-2018 - 14:29 12-07-2018 - 14:29
CVE-2018-13441 2.1
qh_help in Nagios Core version 4.4.1 and earlier is prone to a NULL pointer dereference vulnerability, which allows attacker to cause a local denial-of-service condition by sending a crafted payload to the listening UNIX socket.
12-07-2018 - 14:29 12-07-2018 - 14:29
CVE-2018-12981 3.5
An issue was discovered on WAGO e!DISPLAY 762-3000 through 762-3003 devices with firmware before FW 02. The vulnerability can be exploited by authenticated and unauthenticated users by sending special crafted requests to the web server allowing injec
12-07-2018 - 14:29 12-07-2018 - 14:29
CVE-2018-12980 6.5
An issue was discovered on WAGO e!DISPLAY 762-3000 through 762-3003 devices with firmware before FW 02. The vulnerability allows an authenticated user to upload arbitrary files to the file system with the permissions of the web server.
12-07-2018 - 14:29 12-07-2018 - 14:29
CVE-2018-12979 5.5
An issue was discovered on WAGO e!DISPLAY 762-3000 through 762-3003 devices with firmware before FW 02. Weak permissions allow an authenticated user to overwrite critical files by abusing the unrestricted file upload in the WBM.
12-07-2018 - 14:29 12-07-2018 - 14:29
CVE-2018-12463 7.5
An XML external entity (XXE) vulnerability in Fortify Software Security Center (SSC), version 17.1, 17.2, 18.1 allows remote unauthenticated users to read arbitrary files or conduct server-side request forgery (SSRF) attacks via a crafted DTD in an X
12-07-2018 - 12:29 12-07-2018 - 12:29
CVE-2018-13989 8.3
Grundig Smart Inter@ctive TV 3.0 devices allow CSRF attacks via a POST request to TCP port 8085 containing a predictable ID value, as demonstrated by a /sendrcpackage?keyid=-2544&keysymbol=-4081 request to shut off the device.
11-07-2018 - 12:29 11-07-2018 - 12:29
CVE-2018-11529 6.8
VideoLAN VLC media player 2.2.x is prone to a use after free vulnerability which an attacker can leverage to execute arbitrary code via crafted MKV files. Failed exploit attempts will likely result in denial of service conditions.
11-07-2018 - 12:29 11-07-2018 - 12:29
CVE-2018-8298 7.6
A remote code execution vulnerability exists in the way that the ChakraCore scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability." This affects ChakraCore. This CVE ID is unique from CVE-2018-8242, CVE-201
10-07-2018 - 20:29 10-07-2018 - 20:29
CVE-2018-8291 7.6
A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers, aka "Scripting Engine Memory Corruption Vulnerability." This affects ChakraCore, Internet Explorer 11, Microsoft Edge. This
10-07-2018 - 20:29 10-07-2018 - 20:29
CVE-2018-8288 7.6
A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers, aka "Scripting Engine Memory Corruption Vulnerability." This affects ChakraCore, Internet Explorer 11, Microsoft Edge. This
10-07-2018 - 20:29 10-07-2018 - 20:29
CVE-2018-8279 7.6
A remote code execution vulnerability exists when Microsoft Edge improperly accesses objects in memory, aka "Microsoft Edge Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID is unique from CVE-2018-8125, CVE-2018-
10-07-2018 - 20:29 10-07-2018 - 20:29
CVE-2018-13849 4.3
edit_requests.php in yTakkar Instagram-clone through 2018-04-23 has XSS via an onmouseover payload because of an inadequate XSS protection mechanism based on preg_replace.
10-07-2018 - 14:29 10-07-2018 - 14:29
CVE-2018-13256 4.3
PHP Scripts Mall Auditor Website 2.0.1 has XSS via the lastname or firstname parameter.
09-07-2018 - 08:29 09-07-2018 - 08:29
CVE-2018-13784 6.4
PrestaShop before 1.6.1.20 and 1.7.x before 1.7.3.4 mishandles cookie encryption in Cookie.php, Rinjdael.php, and Blowfish.php.
09-07-2018 - 06:29 09-07-2018 - 06:29
CVE-2018-13405 4.6
The inode_init_owner function in fs/inode.c in the Linux kernel through 4.17.4 allows local users to create files with an unintended group ownership, in a scenario where a directory is SGID to a certain group and is writable by a user who is not a me
06-07-2018 - 10:29 06-07-2018 - 10:29
CVE-2018-13110 8.5
All ADB broadband gateways / routers based on the Epicentro platform are affected by a privilege escalation vulnerability where attackers can gain access to the command line interface (CLI) if previously disabled by the ISP, escalate their privileges
06-07-2018 - 10:29 06-07-2018 - 10:29
CVE-2018-13109 5.0
All ADB broadband gateways / routers based on the Epicentro platform are affected by an authorization bypass vulnerability where attackers are able to access and manipulate settings within the web interface that are forbidden to end users (e.g., by t
06-07-2018 - 10:29 06-07-2018 - 10:29
CVE-2018-13108 7.2
All ADB broadband gateways / routers based on the Epicentro platform are affected by a local root jailbreak vulnerability where attackers are able to gain root access on the device, and extract further information such as sensitive configuration data
06-07-2018 - 10:29 06-07-2018 - 10:29
CVE-2018-11124 3.5
Cross-site scripting (XSS) vulnerability in Attributes functionality in Open-AudIT Community edition before 2.2.2 allows remote attackers to inject arbitrary web script or HTML via a crafted attribute name of an Attribute.
06-07-2018 - 10:29 06-07-2018 - 10:29
CVE-2018-8738 4.3
Airties 5444 1.0.0.18 and 5444TT 1.0.0.18 devices allow XSS.
05-07-2018 - 16:29 05-07-2018 - 16:29
CVE-2018-12739 6.8
In BEESCMS 4.0, CSRF allows administrators to be added arbitrarily, a related issue to CVE-2018-10266.
05-07-2018 - 16:29 05-07-2018 - 16:29
CVE-2018-12520 6.8
An issue was discovered in ntopng 3.4 before 3.4.180617. The PRNG involved in the generation of session IDs is not seeded at program startup. This results in deterministic session IDs being allocated for active user sessions. An attacker with forekno
05-07-2018 - 16:29 05-07-2018 - 16:29
CVE-2018-13134 4.3
TP-Link Archer C1200 1.13 Build 2018/01/24 rel.52299 EU devices have XSS via the PATH_INFO to the /webpages/data URI.
04-07-2018 - 04:29 04-07-2018 - 04:29
CVE-2018-13065 4.3
** DISPUTED ** ModSecurity 3.0.0 has XSS via an onerror attribute of an IMG element. NOTE: a third party has disputed this issue because it may only apply to environments without a Core Rule Set configured.
03-07-2018 - 08:29 03-07-2018 - 08:29
CVE-2018-12465 9.0
An OS command injection vulnerability in the web administration component of Micro Focus Secure Messaging Gateway (SMG) allows a remote attacker authenticated as a privileged user to execute arbitrary OS commands on the SMG server. This can be exploi
29-06-2018 - 12:29 29-06-2018 - 12:29
CVE-2018-12464 7.5
A SQL injection vulnerability in the web administration and quarantine components of Micro Focus Secure Messaging Gateway allows an unauthenticated remote attacker to execute arbitrary SQL statements against the database. This can be exploited to cre
29-06-2018 - 12:29 29-06-2018 - 12:29
CVE-2018-12938 None
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2017-17833. Reason: This candidate is a duplicate of CVE-2017-17833. Notes: All CVE users should reference CVE-2017-17833 instead of this candidate. All references and descriptions i
28-06-2018 - 19:29 28-06-2018 - 19:29
CVE-2018-12589 6.8
Polaris Office 2017 8.1 allows attackers to execute arbitrary code via a Trojan horse puiframeworkproresenu.dll file in the current working directory.
28-06-2018 - 10:29 28-06-2018 - 10:29
CVE-2018-11510 5.0
The ASUSTOR ADM 3.1.0.RFQ3 NAS portal suffers from an unauthenticated remote code execution vulnerability in the portal/apis/aggrecate_js.cgi file by embedding OS commands in the 'script' parameter.
28-06-2018 - 10:29 28-06-2018 - 10:29
CVE-2018-1306 5.0
The PortletV3AnnotatedDemo Multipart Portlet war file code provided in Pluto version 3.0.0 could allow a remote attacker to obtain sensitive information, caused by the failure to restrict path information provided during a file upload. An attacker co
27-06-2018 - 14:29 27-06-2018 - 14:29
CVE-2018-12912 6.5
An issue wan discovered in admin\controllers\database.php in HongCMS 3.0.0. There is a SQL Injection vulnerability via an admin/index.php/database/operate?dbaction=emptytable&tablename= URI.
27-06-2018 - 14:29 27-06-2018 - 14:29
CVE-2018-12908 5.0
Brynamics "Online Trade - Online trading and cryptocurrency investment system" allows remote attackers to obtain sensitive information via a direct request for the /dashboard/deposit URI, as demonstrated by discovering database credentials.
27-06-2018 - 12:29 27-06-2018 - 12:29
CVE-2018-10594 7.5
Delta Industrial Automation COMMGR from Delta Electronics versions 1.08 and prior with accompanying PLC Simulators (DVPSimulator EH2, EH3, ES2, SE, SS2 and AHSIM_5x0, AHSIM_5x1) utilize a fixed-length stack buffer where an unverified length value can
26-06-2018 - 16:29 26-06-2018 - 16:29
CVE-2018-10662 10.0
An issue was discovered in multiple models of Axis IP Cameras. There is an Exposed Insecure Interface.
26-06-2018 - 14:29 26-06-2018 - 14:29
CVE-2018-10661 10.0
An issue was discovered in multiple models of Axis IP Cameras. There is a bypass of access control.
26-06-2018 - 14:29 26-06-2018 - 14:29
CVE-2018-10660 10.0
An issue was discovered in multiple models of Axis IP Cameras. There is Shell Command Injection.
26-06-2018 - 14:29 26-06-2018 - 14:29
CVE-2018-12603 6.8
Cross-site request forgery (CSRF) vulnerability in admin.php in LFCMS 3.7.0 allows remote attackers to hijack the authentication of unspecified users for requests that add administrator users via the s parameter, a related issue to CVE-2018-12114.
25-06-2018 - 16:29 25-06-2018 - 16:29
CVE-2018-12602 6.8
A CSRF vulnerability exists in LFCMS 3.7.0: users can be added arbitrarily.
25-06-2018 - 11:29 25-06-2018 - 11:29
CVE-2018-10956 5.0
IPConfigure Orchid Core VMS 2.0.5 allows Directory Traversal.
25-06-2018 - 11:29 25-06-2018 - 11:29
CVE-2018-12706 7.5
DIGISOL DG-BR4000NG devices have a Buffer Overflow via a long Authorization HTTP header.
24-06-2018 - 19:29 24-06-2018 - 19:29
CVE-2018-12705 4.3
DIGISOL DG-BR4000NG devices have XSS via the SSID (it is validated only on the client side).
24-06-2018 - 19:29 24-06-2018 - 19:29
CVE-2018-12636 6.5
The iThemes Security (better-wp-security) plugin before 7.0.3 for WordPress allows SQL Injection (by attackers with Admin privileges) via the logs page.
22-06-2018 - 12:29 22-06-2018 - 12:29
CVE-2018-12634 5.0
CirCarLife Scada before 4.3 allows remote attackers to obtain sensitive information via a direct request for the html/log or services/system/info.html URI.
21-06-2018 - 20:29 21-06-2018 - 20:29
CVE-2018-12613 6.5
An issue was discovered in phpMyAdmin 4.8.x before 4.8.2, in which an attacker can include (view and potentially execute) files on the server. The vulnerability comes from a portion of code where pages are redirected and loaded within phpMyAdmin, and
21-06-2018 - 16:29 21-06-2018 - 16:29
CVE-2018-12617 5.0
qmp_guest_file_read in qga/commands-posix.c and qga/commands-win32.c in qemu-ga (aka QEMU Guest Agent) in QEMU 2.12.50 has an integer overflow causing a g_malloc0() call to trigger a segmentation fault when trying to allocate a large memory chunk. Th
21-06-2018 - 14:29 21-06-2018 - 14:29
CVE-2018-12604 5.0
GreenCMS 2.3.0603 allows remote attackers to obtain sensitive information via a direct request for Data/Log/year_month_day.log.
20-06-2018 - 15:29 20-06-2018 - 15:29
CVE-2018-6563 6.8
Multiple cross-site request forgery (CSRF) vulnerabilities in totemomail Encryption Gateway before 6.0.0_Build_371 allow remote attackers to hijack the authentication of users for requests that (1) change user settings, (2) send emails, or (3) change
20-06-2018 - 10:29 20-06-2018 - 10:29
CVE-2018-12327 7.5
Stack-based buffer overflow in ntpq and ntpdc of NTP version 4.2.8p11 allows an attacker to achieve code execution or escalate to higher privileges via a long string as the argument for an IPv4 or IPv6 command-line parameter. NOTE: It is unclear whet
20-06-2018 - 10:29 20-06-2018 - 10:29
CVE-2018-1132 7.5
A flaw was found in Opendaylight's SDNInterfaceapp (SDNI). Attackers can SQL inject the component's database (SQLite) without authenticating to the controller or SDNInterfaceapp. SDNInterface has been deprecated in OpenDayLight since it was last used
20-06-2018 - 09:29 20-06-2018 - 09:29
CVE-2018-1120 3.5
A flaw was found affecting the Linux kernel before version 4.17. By mmap()ing a FUSE-backed file onto a process's memory containing command line arguments (or environment strings), an attacker can cause utilities from psutils or procps (such as ps, w
20-06-2018 - 09:29 20-06-2018 - 09:29
CVE-2018-12519 4.0
An issue was discovered in ShopNx through 2017-11-17. The vulnerability allows a remote attacker to upload any malicious file to a Node.js application. An attacker can upload a malicious HTML file that contains a JavaScript payload to steal a user's
19-06-2018 - 17:29 19-06-2018 - 17:29
CVE-2018-12293 6.8
The getImageData function in the ImageBufferCairo class in WebCore/platform/graphics/cairo/ImageBufferCairo.cpp in WebKit, as used in WebKitGTK+ prior to version 2.20.3 and WPE WebKit prior to version 2.20.1, is vulnerable to a heap-based buffer over
19-06-2018 - 17:29 19-06-2018 - 17:29
CVE-2018-8727 5.0
Path Traversal in Gateway in Mirasys DVMS Workstation 5.12.6 and earlier allows an attacker to traverse the file system to access files or directories via the Web Client webserver.
19-06-2018 - 15:29 19-06-2018 - 15:29
CVE-2018-11526 6.8
The plugin "WordPress Comments Import & Export" for WordPress (v2.0.4 and before) is vulnerable to CSV Injection.
19-06-2018 - 15:29 19-06-2018 - 15:29
CVE-2018-11525 6.8
The plugin "Advanced Order Export For WooCommerce" for WordPress (v1.5.4 and before) is vulnerable to CSV Injection.
19-06-2018 - 15:29 19-06-2018 - 15:29
CVE-2018-12525 5.0
An issue was discovered in perfSONAR Monitoring and Debugging Dashboard (MaDDash) 2.0.2. A direct request to /images/ provides a directory listing.
18-06-2018 - 07:29 18-06-2018 - 07:29
CVE-2018-12524 5.0
An issue was discovered in perfSONAR Monitoring and Debugging Dashboard (MaDDash) 2.0.2. A direct request to /lib/ provides a directory listing.
18-06-2018 - 07:29 18-06-2018 - 07:29
CVE-2018-12523 5.0
An issue was discovered in perfSONAR Monitoring and Debugging Dashboard (MaDDash) 2.0.2. A direct request to /etc/ provides a directory listing.
18-06-2018 - 07:29 18-06-2018 - 07:29
CVE-2018-12522 5.0
An issue was discovered in perfSONAR Monitoring and Debugging Dashboard (MaDDash) 2.0.2. A direct request to /style/ provides a directory listing.
18-06-2018 - 07:29 18-06-2018 - 07:29
CVE-2018-10969 7.5
SQL injection vulnerability in the Pie Register plugin before 3.0.10 for WordPress allows remote attackers to execute arbitrary SQL commands via the invitation codes grid.
17-06-2018 - 12:29 17-06-2018 - 12:29
CVE-2018-12326 4.6
Buffer overflow in redis-cli of Redis before 4.0.10 and 5.x before 5.0 RC3 allows an attacker to achieve code execution and escalate to higher privileges via a crafted command line. NOTE: It is unclear whether there are any common situations in which
17-06-2018 - 10:29 17-06-2018 - 10:29
CVE-2018-12453 5.0
Type confusion in the xgroupCommand function in t_stream.c in redis-server in Redis before 5.0 allows remote attackers to cause denial-of-service via an XGROUP command in which the key is not a stream.
16-06-2018 - 13:29 16-06-2018 - 13:29
CVE-2018-5756 4.0
The backend component in Open-Xchange OX App Suite before 7.6.3-rev36, 7.8.x before 7.8.2-rev39, 7.8.3 before 7.8.3-rev44, and 7.8.4 before 7.8.4-rev22 does not properly check for folder-to-object association, which allows remote authenticated users
15-06-2018 - 21:29 15-06-2018 - 21:29
CVE-2018-5755 7.1
Absolute path traversal vulnerability in the readerengine component in Open-Xchange OX App Suite before 7.6.3-rev3, 7.8.x before 7.8.2-rev4, 7.8.3 before 7.8.3-rev5, and 7.8.4 before 7.8.4-rev4 allows remote attackers to read arbitrary files via a fu
15-06-2018 - 21:29 15-06-2018 - 21:29
CVE-2018-5754 3.5
Cross-site scripting (XSS) vulnerability in the office-web component in Open-Xchange OX App Suite before 7.8.3-rev12 and 7.8.4 before 7.8.4-rev9 allows remote attackers to inject arbitrary web script or HTML via a crafted presentation file, related t
15-06-2018 - 21:29 15-06-2018 - 21:29
CVE-2018-5753 4.0
The frontend component in Open-Xchange OX App Suite before 7.6.3-rev31, 7.8.x before 7.8.2-rev31, 7.8.3 before 7.8.3-rev41, and 7.8.4 before 7.8.4-rev20 allows remote attackers to spoof the origin of e-mails via unicode characters in the "personal pa
15-06-2018 - 21:29 15-06-2018 - 21:29
CVE-2018-5752 6.5
The backend component in Open-Xchange OX App Suite before 7.6.3-rev36, 7.8.x before 7.8.2-rev39, 7.8.3 before 7.8.3-rev44, and 7.8.4 before 7.8.4-rev22 allows remote attackers to conduct server-side request forgery (SSRF) attacks via vectors involvin
15-06-2018 - 21:29 15-06-2018 - 21:29
CVE-2018-5751 4.0
The backend component in Open-Xchange OX App Suite before 7.6.3-rev36, 7.8.x before 7.8.2-rev39, 7.8.3 before 7.8.3-rev44, and 7.8.4 before 7.8.4-rev22 allows remote authenticated users to obtain sensitive information about external guest users via v
15-06-2018 - 21:29 15-06-2018 - 21:29
CVE-2017-17062 4.0
The backend component in Open-Xchange OX App Suite before 7.6.3-rev35, 7.8.x before 7.8.2-rev38, 7.8.3 before 7.8.3-rev41, and 7.8.4 before 7.8.4-rev19 allows remote authenticated users to save arbitrary user attributes by leveraging improper privile
15-06-2018 - 21:29 15-06-2018 - 21:29
CVE-2018-12114 6.8
Maccms 10 allows CSRF via admin.php/admin/admin/info.html to add user accounts.
14-06-2018 - 13:29 14-06-2018 - 13:29
CVE-2018-8229 7.6
A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka "Chakra Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID
14-06-2018 - 08:29 14-06-2018 - 08:29
CVE-2018-8214 6.9
An elevation of privilege vulnerability exists in Windows when Desktop Bridge does not properly manage the virtual registry, aka "Windows Desktop Bridge Elevation of Privilege Vulnerability." This affects Windows Server 2016, Windows 10, Windows 10 S
14-06-2018 - 08:29 14-06-2018 - 08:29
CVE-2018-8208 6.9
An elevation of privilege vulnerability exists in Windows when Desktop Bridge does not properly manage the virtual registry, aka "Windows Desktop Bridge Elevation of Privilege Vulnerability." This affects Windows Server 2016, Windows 10, Windows 10 S
14-06-2018 - 08:29 14-06-2018 - 08:29
CVE-2018-0982 6.9
An elevation of privilege vulnerability exists in the way that the Windows Kernel API enforces permissions, aka "Windows Elevation of Privilege Vulnerability." This affects Windows Server 2016, Windows 10, Windows 10 Servers.
14-06-2018 - 08:29 14-06-2018 - 08:29
CVE-2018-1121 4.3
procps-ng, procps is vulnerable to a process hiding through race condition. Since the kernel's proc_pid_readdir() returns PID entries in ascending numeric order, a process occupying a high PID can use inotify events to determine when the process list
13-06-2018 - 16:29 13-06-2018 - 16:29
CVE-2018-12292 7.5
A use-after-free vulnerability exists in DOMProxyHandler::EnsureExpandoObject in Pale Moon before 27.9.3.
13-06-2018 - 10:29 13-06-2018 - 10:29
CVE-2018-12254 6.5
router.php in the Harmis Ek rishta (aka ek-rishta) 2.10 component for Joomla! allows SQL Injection via the PATH_INFO to a home/requested_user/Sent%20interest/ URI.
12-06-2018 - 13:29 12-06-2018 - 13:29
CVE-2018-10507 2.1
A vulnerability in Trend Micro OfficeScan 11.0 SP1 and XG could allow a attacker to take a series of steps to bypass or render the OfficeScan Unauthorized Change Prevention inoperable on vulnerable installations. An attacker must already have adminis
12-06-2018 - 13:29 12-06-2018 - 13:29
CVE-2018-6961 6.8
VMware NSX SD-WAN Edge by VeloCloud prior to version 3.1.0 contains a command injection vulnerability in the local web UI component. This component is disabled by default and should not be enabled on untrusted networks. VeloCloud by VMware will be re
11-06-2018 - 18:29 11-06-2018 - 18:29
CVE-2018-5159 7.5
An integer overflow can occur in the Skia library due to 32-bit integer use in an array without integer overflow checks, resulting in possible out-of-bounds writes. This could lead to a potentially exploitable crash triggerable by web content. This v
11-06-2018 - 17:29 11-06-2018 - 17:29
CVE-2017-7783 5.0
If a long user name is used in a username/password combination in a site URL (such as " http://UserName:Password@example.com"), the resulting modal prompt will hang in a non-responsive state or crash, causing a denial of service. This vulnerability a
11-06-2018 - 17:29 11-06-2018 - 17:29
CVE-2017-5465 6.4
An out-of-bounds read while processing SVG content in "ConvolvePixel". This results in a crash and also allows for otherwise inaccessible memory being copied into SVG graphic content, which could then displayed. This vulnerability affects Thunderbird
11-06-2018 - 17:29 11-06-2018 - 17:29
CVE-2017-5447 6.4
An out-of-bounds read during the processing of glyph widths during text layout. This results in a potentially exploitable crash and could allow an attacker to read otherwise inaccessible memory. This vulnerability affects Thunderbird < 52.1, Firefox
11-06-2018 - 17:29 11-06-2018 - 17:29
CVE-2017-5415 5.0
An attack can use a blob URL and script to spoof an arbitrary addressbar URL prefaced by "blob:" as the protocol, leading to user confusion and further spoofing attacks. This vulnerability affects Firefox < 52.
11-06-2018 - 17:29 11-06-2018 - 17:29
CVE-2017-5404 7.5
A use-after-free error can occur when manipulating ranges in selections with one node inside a native anonymous tree and one node outside of it. This results in a potentially exploitable crash. This vulnerability affects Firefox < 52, Firefox ESR < 4
11-06-2018 - 17:29 11-06-2018 - 17:29
CVE-2017-5375 7.5
JIT code allocation can allow for a bypass of ASLR and DEP protections leading to potential memory corruption attacks. This vulnerability affects Thunderbird < 45.7, Firefox ESR < 45.7, and Firefox < 51.
11-06-2018 - 17:29 11-06-2018 - 17:29
CVE-2016-9899 7.5
Use-after-free while manipulating DOM events and removing audio elements due to errors in the handling of node adoption. This vulnerability affects Firefox < 50.1, Firefox ESR < 45.6, and Thunderbird < 45.6.
11-06-2018 - 17:29 11-06-2018 - 17:29
CVE-2016-9079 5.0
A use-after-free vulnerability in SVG Animation has been discovered. An exploit built on this vulnerability has been discovered in the wild targeting Firefox and Tor Browser users on Windows. This vulnerability affects Firefox < 50.0.2, Firefox ESR <
11-06-2018 - 17:29 11-06-2018 - 17:29
CVE-2018-12111 4.3
Cross-site scripting (XSS) vulnerability in the Canon PrintMe EFI webinterface allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO to the /wt3/mydocs.php URI.
11-06-2018 - 09:29 11-06-2018 - 09:29
CVE-2018-12095 3.5
A Reflected Cross-Site Scripting web vulnerability has been discovered in the OEcms v3.1 web-application. The vulnerability is located in the mod parameter of info.php.
11-06-2018 - 07:29 11-06-2018 - 07:29
CVE-2018-12094 3.5
Cross-site scripting (XSS) vulnerability in news.php in Dimofinf CMS Version 3.0.0 allows remote attackers to inject arbitrary web script or HTML via the id parameter.
11-06-2018 - 07:29 11-06-2018 - 07:29
CVE-2018-12090 4.3
There is unauthenticated reflected cross-site scripting (XSS) in LAMS before 3.1 that allows a remote attacker to introduce arbitrary JavaScript via manipulation of an unsanitized GET parameter during a forgotPasswordChange.jsp?key= password change.
11-06-2018 - 06:29 11-06-2018 - 06:29
CVE-2018-4243 9.3
An issue was discovered in certain Apple products. iOS before 11.4 is affected. macOS before 10.13.5 is affected. tvOS before 11.4 is affected. watchOS before 4.3.1 is affected. The issue involves the "Kernel" component. A buffer overflow in getvolat
08-06-2018 - 14:29 08-06-2018 - 14:29
CVE-2018-4241 9.3
An issue was discovered in certain Apple products. iOS before 11.4 is affected. macOS before 10.13.5 is affected. tvOS before 11.4 is affected. watchOS before 4.3.1 is affected. The issue involves the "Kernel" component. A buffer overflow in mptcp_us
08-06-2018 - 14:29 08-06-2018 - 14:29
CVE-2018-4240 4.3
An issue was discovered in certain Apple products. iOS before 11.4 is affected. macOS before 10.13.5 is affected. tvOS before 11.4 is affected. watchOS before 4.3.1 is affected. The issue involves the "Messages" component. It allows remote attackers
08-06-2018 - 14:29 08-06-2018 - 14:29
CVE-2018-4237 6.8
An issue was discovered in certain Apple products. iOS before 11.4 is affected. macOS before 10.13.5 is affected. tvOS before 11.4 is affected. watchOS before 4.3.1 is affected. The issue involves the "libxpc" component. It allows attackers to gain p
08-06-2018 - 14:29 08-06-2018 - 14:29
CVE-2018-4233 6.8
An issue was discovered in certain Apple products. iOS before 11.4 is affected. Safari before 11.1.1 is affected. iCloud before 7.5 on Windows is affected. iTunes before 12.7.5 on Windows is affected. tvOS before 11.4 is affected. watchOS before 4.3.
08-06-2018 - 14:29 08-06-2018 - 14:29
CVE-2018-4230 7.6
An issue was discovered in certain Apple products. macOS before 10.13.5 is affected. The issue involves the "NVIDIA Graphics Drivers" component. It allows attackers to execute arbitrary code in a privileged context via a crafted app that triggers a S
08-06-2018 - 14:29 08-06-2018 - 14:29
CVE-2018-4222 6.8
An issue was discovered in certain Apple products. iOS before 11.4 is affected. Safari before 11.1.1 is affected. iCloud before 7.5 on Windows is affected. iTunes before 12.7.5 on Windows is affected. tvOS before 11.4 is affected. watchOS before 4.3.
08-06-2018 - 14:29 08-06-2018 - 14:29
CVE-2018-4218 6.8
An issue was discovered in certain Apple products. iOS before 11.4 is affected. Safari before 11.1.1 is affected. iCloud before 7.5 on Windows is affected. iTunes before 12.7.5 on Windows is affected. tvOS before 11.4 is affected. watchOS before 4.3.
08-06-2018 - 14:29 08-06-2018 - 14:29
CVE-2018-4206 6.8
An issue was discovered in certain Apple products. iOS before 11.3.1 is affected. macOS before 10.13.4 Security Update 2018-001 is affected. tvOS before 11.4 is affected. watchOS before 4.3.1 is affected. The issue involves the "Crash Reporter" compo
08-06-2018 - 14:29 08-06-2018 - 14:29
CVE-2018-4200 6.8
An issue was discovered in certain Apple products. iOS before 11.3.1 is affected. Safari before 11.1 is affected. iCloud before 7.5 on Windows is affected. iTunes before 12.7.5 on Windows is affected. tvOS before 11.4 is affected. The issue involves
08-06-2018 - 14:29 08-06-2018 - 14:29
CVE-2018-4192 5.1
An issue was discovered in certain Apple products. iOS before 11.4 is affected. Safari before 11.1.1 is affected. iCloud before 7.5 on Windows is affected. iTunes before 12.7.5 on Windows is affected. tvOS before 11.4 is affected. watchOS before 4.3.
08-06-2018 - 14:29 08-06-2018 - 14:29
CVE-2018-11409 5.0
Splunk through 7.0.1 allows information disclosure by appending __raw/services/server/info/server-info?output_mode=json to a query, as demonstrated by discovering a license key.
08-06-2018 - 08:29 08-06-2018 - 08:29
CVE-2018-10088 10.0
Buffer overflow in XiongMai uc-httpd 1.0.0 has unspecified impact and attack vectors, a different vulnerability than CVE-2017-16725.
08-06-2018 - 08:29 08-06-2018 - 08:29
CVE-2018-12055 7.5
Multiple SQL Injections exist in PHP Scripts Mall Schools Alert Management Script via crafted POST data in contact_us.php, faq.php, about.php, photo_gallery.php, privacy.php, and so on.
08-06-2018 - 07:29 08-06-2018 - 07:29
CVE-2018-12054 5.0
Arbitrary File Read exists in PHP Scripts Mall Schools Alert Management Script via the f parameter in img.php, aka absolute path traversal.
08-06-2018 - 07:29 08-06-2018 - 07:29
CVE-2018-12053 6.4
Arbitrary File Deletion exists in PHP Scripts Mall Schools Alert Management Script via the img parameter in delete_img.php by using directory traversal.
08-06-2018 - 07:29 08-06-2018 - 07:29
CVE-2018-12052 7.5
SQL Injection exists in PHP Scripts Mall Schools Alert Management Script via the q Parameter in get_sec.php.
08-06-2018 - 07:29 08-06-2018 - 07:29
CVE-2018-12049 10.0
** DISPUTED ** A remote attacker can bypass the System Manager Mode on the Canon LBP6030w web interface without a PIN for /checkLogin.cgi via vectors involving /portal_top.html to get full access to the device. NOTE: the vendor reportedly responded t
07-06-2018 - 21:29 07-06-2018 - 21:29
CVE-2018-12048 10.0
** DISPUTED ** A remote attacker can bypass the Management Mode on the Canon LBP7110Cw web interface without a PIN for /checkLogin.cgi via vectors involving /portal_top.html to get full access to the device. NOTE: the vendor reportedly responded that
07-06-2018 - 21:29 07-06-2018 - 21:29
CVE-2018-10619 4.6
An unquoted search path or element in RSLinx Classic Versions 3.90.01 and prior and FactoryTalk Linx Gateway Versions 3.90.00 and prior may allow an authorized, but non-privileged local user to execute arbitrary code and allow a threat actor to escal
07-06-2018 - 16:29 07-06-2018 - 16:29
CVE-2018-0296 5.0
A vulnerability in the web interface of the Cisco Adaptive Security Appliance (ASA) could allow an unauthenticated, remote attacker to cause an affected device to reload unexpectedly, resulting in a denial of service (DoS) condition. It is also possi
07-06-2018 - 08:29 07-06-2018 - 08:29
CVE-2018-11586 7.5
XML external entity (XXE) vulnerability in api/rest/status in SearchBlox 8.6.7 allows remote unauthenticated users to read arbitrary files or conduct server-side request forgery (SSRF) attacks via a crafted DTD in an XML request.
05-06-2018 - 17:29 05-06-2018 - 17:29
CVE-2018-11715 3.5
The Recent Threads plugin before 1.1 for MyBB allows XSS via a thread subject.
04-06-2018 - 13:29 04-06-2018 - 13:29
CVE-2018-11711 10.0
** DISPUTED ** A remote attacker can bypass the System Manager Mode on the Canon MF210 and MF220 web interface without knowing the PIN for /login.html via vectors involving /portal_top.html to get full access to the device. NOTE: the vendor reportedl
04-06-2018 - 09:29 04-06-2018 - 09:29
CVE-2018-11692 10.0
** DISPUTED ** An issue was discovered on Canon LBP6650, LBP3370, LBP3460, and LBP7750C devices. It is possible to bypass the Administrator Mode authentication for /tlogin.cgi via vectors involving frame.cgi?page=DevStatus. NOTE: the vendor reportedl
04-06-2018 - 02:29 04-06-2018 - 02:29
CVE-2018-11564 3.5
Stored XSS in YOOtheme Pagekit 1.0.13 and earlier allows a user to upload malicious code via the picture upload feature. A user with elevated privileges could upload a photo to the system in an SVG format. This file will be uploaded to the system and
01-06-2018 - 21:29 01-06-2018 - 21:29
CVE-2018-11522 4.3
Yosoro 1.0.4 has stored XSS.
01-06-2018 - 21:29 01-06-2018 - 21:29
CVE-2018-11538 6.8
servlet/UserServlet in SearchBlox 8.6.6 has CSRF via the u_name, u_passwd1, u_passwd2, role, and X-XSRF-TOKEN POST parameters because of CSRF Token Bypass.
01-06-2018 - 15:29 01-06-2018 - 15:29
CVE-2018-11671 6.8
An issue was discovered in GreenCMS v2.3.0603. There is a CSRF vulnerability that can add an admin account via index.php?m=admin&c=access&a=adduserhandle.
01-06-2018 - 13:29 01-06-2018 - 13:29
CVE-2018-11670 6.8
An issue was discovered in GreenCMS v2.3.0603. There is a CSRF vulnerability that allows attackers to execute arbitrary PHP code via the content parameter to index.php?m=admin&c=media&a=fileconnect.
01-06-2018 - 13:29 01-06-2018 - 13:29
CVE-2018-11581 3.5
Cross-site scripting (XSS) vulnerability on Brother HL series printers allows remote attackers to inject arbitrary web script or HTML via the url parameter to etc/loginerror.html.
01-06-2018 - 13:29 01-06-2018 - 13:29
CVE-2018-11652 10.0
CSV Injection vulnerability in Nikto 2.1.6 and earlier allows remote attackers to inject arbitrary OS commands via the Server field in an HTTP response header, which is directly injected into a CSV report.
01-06-2018 - 11:29 01-06-2018 - 11:29
CVE-2018-11628 4.3
Data input into EMS Master Calendar before 8.0.0.201805210 via URL parameters is not properly sanitized, allowing malicious attackers to send a crafted URL for XSS.
01-06-2018 - 11:29 01-06-2018 - 11:29
CVE-2018-11646 5.0
webkitFaviconDatabaseSetIconForPageURL and webkitFaviconDatabaseSetIconURLForPageURL in UIProcess/API/glib/WebKitFaviconDatabase.cpp in WebKit, as used in WebKitGTK+ through 2.21.3, mishandle an unset pageURL, leading to an application crash.
01-06-2018 - 09:29 01-06-2018 - 09:29
CVE-2018-11138 10.0
The '/common/download_agent_installer.php' script in the Quest KACE System Management Appliance 8.0.318 is accessible by anonymous users and can be abused to execute arbitrary commands on the system.
31-05-2018 - 14:29 31-05-2018 - 14:29
CVE-2018-11220 9.0
Bitmain Antminer D3, L3+, and S9 devices allow Remote Command Execution via the system restore function.
31-05-2018 - 11:29 31-05-2018 - 11:29
CVE-2018-11235 6.8
In Git before 2.13.7, 2.14.x before 2.14.4, 2.15.x before 2.15.2, 2.16.x before 2.16.4, and 2.17.x before 2.17.1, remote code execution can occur. With a crafted .gitmodules file, a malicious project can execute an arbitrary script on a machine that
30-05-2018 - 00:29 30-05-2018 - 00:29
CVE-2018-10751 5.4
A malformed OMACP WAP push message can cause memory corruption on a Samsung S7 Edge device when processing the String Extension portion of the WbXml payload. This is due to an integer overflow in memory allocation for this string. The Samsung ID is S
29-05-2018 - 16:29 29-05-2018 - 16:29
CVE-2018-1235 10.0
Dell EMC RecoverPoint versions prior to 5.1.2 and RecoverPoint for VMs versions prior to 5.1.1.3, contain a command injection vulnerability. An unauthenticated remote attacker may potentially exploit this vulnerability to execute arbitrary commands o
29-05-2018 - 13:29 29-05-2018 - 13:29
CVE-2018-11535 7.5
An issue was discovered in SITEMAKIN SLAC (Site Login and Access Control) v1.0. The parameter "my_item_search" in users.php is exploitable using SQL injection.
29-05-2018 - 03:29 29-05-2018 - 03:29
CVE-2018-11532 4.3
An issue was discovered in the ChangUonDyU Advanced Statistics plugin 1.0.2 for MyBB. changstats.php has XSS, as demonstrated by a subject field.
29-05-2018 - 03:29 29-05-2018 - 03:29
CVE-2018-11523 7.5
upload.php on NUUO NVRmini 2 devices allows Arbitrary File Upload, such as upload of .php files.
29-05-2018 - 03:29 29-05-2018 - 03:29
CVE-2018-11512 3.5
Stored cross-site scripting (XSS) vulnerability in the "Website's name" field found in the "Settings" page under the "General" menu in Creatiwity wityCMS 0.6.1 allows remote attackers to inject arbitrary web script or HTML via a crafted website name
28-05-2018 - 09:29 28-05-2018 - 09:29
CVE-2018-6411 7.5
An issue was discovered in Appnitro MachForm before 4.2.3. When the form is set to filter a blacklist, it automatically adds dangerous extensions to the filters. If the filter is set to a whitelist, the dangerous extensions can be bypassed through ap
26-05-2018 - 18:29 26-05-2018 - 18:29
CVE-2018-6410 7.5
An issue was discovered in Appnitro MachForm before 4.2.3. There is a download.php SQL injection via the q parameter.
26-05-2018 - 18:29 26-05-2018 - 18:29
CVE-2018-6409 5.0
An issue was discovered in Appnitro MachForm before 4.2.3. The module in charge of serving stored files gets the path from the database. Modifying the name of the file to serve on the corresponding ap_form table leads to a path traversal vulnerabilit
26-05-2018 - 18:29 26-05-2018 - 18:29
CVE-2018-11505 5.0
The Werewolf Online application 0.8.8 for Android allows attackers to discover the Firebase token by reading logcat output.
26-05-2018 - 18:29 26-05-2018 - 18:29
CVE-2018-11445 6.8
A CSRF issue was discovered on the User Add/System Settings Page (system-settings-user-new2.php) in EasyService Billing 1.0. A User can be added with the Admin role.
25-05-2018 - 08:29 25-05-2018 - 08:29
CVE-2018-11444 7.5
A SQL Injection issue was observed in the parameter "q" in jobcard-ongoing.php in EasyService Billing 1.0.
25-05-2018 - 08:29 25-05-2018 - 08:29
CVE-2018-11443 4.3
The parameter q is affected by Cross-site Scripting in jobcard-ongoing.php in EasyService Billing 1.0.
25-05-2018 - 08:29 25-05-2018 - 08:29
CVE-2018-11442 6.8
A CSRF issue was discovered in EasyService Billing 1.0, which was triggered via a quotation-new3-new2.php?add=true&id= URI, as demonstrated by adding a new quotation.
25-05-2018 - 08:29 25-05-2018 - 08:29
CVE-2018-11415 4.3
SAP Internet Transaction Server (ITS) 6200.X.X has Reflected Cross Site Scripting (XSS) via certain wgate URIs. NOTE: the vendor has reportedly indicated that there will not be any further releases of this product.
24-05-2018 - 15:29 24-05-2018 - 15:29
CVE-2018-11412 4.3
In the Linux kernel 4.13 through 4.16.11, ext4_read_inline_data() in fs/ext4/inline.c performs a memcpy with an untrusted length value in certain circumstances involving a crafted filesystem that stores the system.data extended attribute value in a d
24-05-2018 - 14:29 24-05-2018 - 14:29
CVE-2018-11332 3.5
Stored cross-site scripting (XSS) vulnerability in the "Site Name" field found in the "site" tab under configurations in ClipperCMS 1.3.3 allows remote attackers to inject arbitrary web script or HTML via a crafted site name to the manager/processors
24-05-2018 - 12:29 24-05-2018 - 12:29
CVE-2018-11404 4.3
DomainMod v4.09.03 has XSS via the assets/edit/ssl-provider-account.php sslpaid parameter.
24-05-2018 - 03:29 24-05-2018 - 03:29
CVE-2018-11403 3.5
DomainMod v4.09.03 has XSS via the assets/edit/account-owner.php oid parameter.
24-05-2018 - 03:29 24-05-2018 - 03:29
CVE-2018-8898 7.5
A flaw in the authentication mechanism in the Login Panel of router D-Link DSL-3782 (A1_WI_20170303 || SWVer="V100R001B012" FWVer="3.10.0.24" FirmVer="TT_77616E6771696F6E67") allows unauthenticated attackers to perform arbitrary modification (read, w
23-05-2018 - 12:29 23-05-2018 - 12:29
CVE-2018-1125 5.0
procps-ng before version 3.3.15 is vulnerable to a stack buffer overflow in pgrep. This vulnerability is mitigated by FORTIFY, as it involves strncat() to a stack-allocated string. When pgrep is compiled with FORTIFY (as on Red Hat Enterprise Linux a
23-05-2018 - 10:29 23-05-2018 - 10:29
CVE-2018-1123 5.0
procps-ng before version 3.3.15 is vulnerable to a denial of service in ps via mmap buffer overflow. Inbuilt protection in ps maps a guard page at the end of the overflowed buffer, ensuring that the impact of this flaw is limited to a crash (temporar
23-05-2018 - 10:29 23-05-2018 - 10:29
CVE-2018-1122 4.4
procps-ng before version 3.3.15 is vulnerable to a local privilege escalation in top. If a user runs top with HOME unset in an attacker-controlled directory, the attacker could achieve privilege escalation by exploiting one of several vulnerabilities
23-05-2018 - 10:29 23-05-2018 - 10:29
CVE-2018-11396 5.0
ephy-session.c in libephymain.so in GNOME Web (aka Epiphany) through 3.28.2.1 allows remote attackers to cause a denial of service (application crash) via JavaScript code that triggers access to a NULL URL, as demonstrated by a crafted window.open ca
23-05-2018 - 09:29 23-05-2018 - 09:29
CVE-2018-1126 7.5
procps-ng before version 3.3.15 is vulnerable to an incorrect integer size in proc/alloc.* leading to truncation/integer overflow issues. This flaw is related to CVE-2018-1124.
23-05-2018 - 09:29 23-05-2018 - 09:29
CVE-2018-1124 4.6
procps-ng before version 3.3.15 is vulnerable to multiple integer overflows leading to a heap corruption in file2strvec function. This allows a privilege escalation for a local attacker who can create entries in procfs by starting processes, which co
23-05-2018 - 09:29 23-05-2018 - 09:29
CVE-2018-10094 7.5
SQL injection vulnerability in Dolibarr before 7.0.2 allows remote attackers to execute arbitrary SQL commands via vectors involving integer parameters without quotes.
22-05-2018 - 16:29 22-05-2018 - 16:29
CVE-2018-3639 4.9
Systems with microprocessors utilizing speculative execution and speculative execution of memory reads before the addresses of all prior memory writes are known may allow unauthorized disclosure of information to an attacker with local user access vi
22-05-2018 - 08:29 22-05-2018 - 08:29
CVE-2018-11339 4.3
An XSS issue was discovered in Frappe ERPNext v11.x.x-develop b1036e5 via a comment.
21-05-2018 - 21:29 21-05-2018 - 21:29
CVE-2018-11096 4.3
Horse Market Sell & Rent Portal Script 1.5.7 has a CSRF vulnerability through which an attacker can change all of the target's account information remotely.
21-05-2018 - 10:29 21-05-2018 - 10:29
CVE-2018-11092 5.8
An issue was discovered in the Admin Notes plugin 1.1 for MyBB. CSRF allows an attacker to remotely delete all admin notes via an admin/index.php?empty=table (aka Clear Table) action.
21-05-2018 - 10:29 21-05-2018 - 10:29
CVE-2018-11311 6.4
A hardcoded FTP username of myscada and password of Vikuk63 in 'myscadagate.exe' in mySCADA myPRO 7 allows remote attackers to access the FTP server on port 2121, and upload files or list directories, by entering these credentials.
20-05-2018 - 18:29 20-05-2018 - 18:29
CVE-2018-11242 4.0
An issue was discovered in the MakeMyTrip application 7.2.4 for Android. The databases (locally stored) are not encrypted and have cleartext that might lead to sensitive information disclosure, as demonstrated by data/com.makemytrip/databases and dat
20-05-2018 - 10:29 20-05-2018 - 10:29
CVE-2018-4937 10.0
Adobe Flash Player versions 29.0.0.113 and earlier have an exploitable out-of-bounds write vulnerability. Successful exploitation could lead to arbitrary code execution in the context of the current user.
19-05-2018 - 13:29 19-05-2018 - 13:29
CVE-2018-4936 5.0
Adobe Flash Player versions 29.0.0.113 and earlier have an exploitable Heap Overflow vulnerability. Successful exploitation could lead to information disclosure.
19-05-2018 - 13:29 19-05-2018 - 13:29
CVE-2018-4935 10.0
Adobe Flash Player versions 29.0.0.113 and earlier have an exploitable out-of-bounds write vulnerability. Successful exploitation could lead to arbitrary code execution in the context of the current user.
19-05-2018 - 13:29 19-05-2018 - 13:29
CVE-2018-4934 5.0
Adobe Flash Player versions 29.0.0.113 and earlier have an exploitable out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure.
19-05-2018 - 13:29 19-05-2018 - 13:29
CVE-2018-11237 4.6
An AVX-512-optimized implementation of the mempcpy function in the GNU C Library (aka glibc or libc6) 2.27 and earlier may write data beyond the target buffer, leading to a buffer overflow in __mempcpy_avx512_no_vzeroupper.
18-05-2018 - 12:29 18-05-2018 - 12:29
CVE-2018-1111 7.9
DHCP packages in Red Hat Enterprise Linux 6 and 7, Fedora 28, and earlier are vulnerable to a command injection flaw in the NetworkManager integration script included in the DHCP client. A malicious DHCP server, or an attacker on the local network ab
17-05-2018 - 12:29 17-05-2018 - 12:29
CVE-2018-9958 6.8
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 9.0.1.1049. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious
17-05-2018 - 11:29 17-05-2018 - 11:29
CVE-2018-9948 4.3
This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Foxit Reader 9.0.0.29935. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a
17-05-2018 - 11:29 17-05-2018 - 11:29
CVE-2018-10123 9.0
p910nd on Inteno IOPSYS 2.0 through 4.2.0 allows remote attackers to read, or append data to, arbitrary files via requests on TCP port 9100.
16-05-2018 - 09:29 16-05-2018 - 09:29
CVE-2018-11094 10.0
An issue was discovered on Intelbras NCLOUD 300 1.0 devices. /cgi-bin/ExportSettings.sh, /goform/updateWPS, /goform/RebootSystem, and /goform/vpnBasicSettings do not require authentication. For example, when an HTTP POST request is made to /cgi-bin/E
15-05-2018 - 15:29 15-05-2018 - 15:29
CVE-2018-11034 6.1
In 2345 Security Guard 3.7, the driver file (2345NsProtect.sys, X64 version) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of not validating input values from IOCTL 0x8000200D.
13-05-2018 - 21:29 13-05-2018 - 21:29
CVE-2018-6023 6.8
Fastweb FASTgate 0.00.47 devices are vulnerable to CSRF, with impacts including Wi-Fi password changing, Guest Wi-Fi activating, etc.
11-05-2018 - 17:29 11-05-2018 - 17:29
CVE-2018-10832 4.3
ModbusPal 1.6b is vulnerable to an XML External Entity (XXE) attack. Projects are saved as .xmpp files and automations can be exported as .xmpa files, both XML-based, which are vulnerable to XXE injection. Sending a crafted .xmpp or .xmpa file to a u
11-05-2018 - 17:29 11-05-2018 - 17:29
CVE-2018-10580 3.5
The "Latest Posts on Profile" plugin 1.1 for MyBB has XSS because there is an added section in a user profile that displays that user's most recent posts without sanitizing the tsubject (aka thread subject) field.
11-05-2018 - 10:29 11-05-2018 - 10:29
CVE-2018-10655 6.8
DLPnpAuditor.exe in DeviceLock Plug and Play Auditor (freeware) 5.72 has a Unicode Buffer Overflow (SEH).
10-05-2018 - 10:29 10-05-2018 - 10:29
CVE-2018-10314 3.5
Cross-site scripting (XSS) vulnerability in Open-AudIT Community 2.2.0 allows remote attackers to inject arbitrary web script or HTML via a crafted name of a component, as demonstrated by the action parameter in the Discover -> Audit Scripts -> List
09-05-2018 - 23:29 09-05-2018 - 23:29
CVE-2018-8174 7.6
A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka "Windows VBScript Engine Remote Code Execution Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Ser
09-05-2018 - 15:29 09-05-2018 - 15:29
CVE-2018-8145 7.6
An information disclosure vulnerability exists when Chakra improperly discloses the contents of its memory, which could provide an attacker with information to further compromise the user's computer or data, aka "Chakra Scripting Engine Memory Corrup
09-05-2018 - 15:29 09-05-2018 - 15:29
CVE-2018-8139 7.6
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Microsoft Edge, aka "Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID is unique from
09-05-2018 - 15:29 09-05-2018 - 15:29
CVE-2018-8134 6.9
An elevation of privilege vulnerability exists in the way that the Windows Kernel API enforces permissions, aka "Windows Elevation of Privilege Vulnerability." This affects Windows Server 2012 R2, Windows RT 8.1, Windows Server 2016, Windows 8.1, Win
09-05-2018 - 15:29 09-05-2018 - 15:29
CVE-2018-8133 7.6
A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka "Chakra Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID
09-05-2018 - 15:29 09-05-2018 - 15:29
CVE-2018-8120 7.2
An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka "Win32k Elevation of Privilege Vulnerability." This affects Windows Server 2008, Windows 7, Windows Server 2008 R2. Th
09-05-2018 - 15:29 09-05-2018 - 15:29
CVE-2018-0953 7.6
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Microsoft Edge, aka "Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID is unique from
09-05-2018 - 15:29 09-05-2018 - 15:29
CVE-2018-0946 7.6
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Microsoft Edge, aka "Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID is unique from
09-05-2018 - 15:29 09-05-2018 - 15:29
CVE-2018-0824 5.1
A remote code execution vulnerability exists in "Microsoft COM for Windows" when it fails to properly handle serialized objects, aka "Microsoft COM for Windows Remote Code Execution Vulnerability." This affects Windows 7, Windows Server 2012 R2, Wind
09-05-2018 - 15:29 09-05-2018 - 15:29
CVE-2018-10828 2.1
An issue was discovered in Alps Pointing-device Driver 10.1.101.207. ApMsgFwd.exe allows the current user to map and write to the "ApMsgFwd File Mapping Object" section. ApMsgFwd.exe uses the data written to this section as arguments to functions. Th
09-05-2018 - 14:29 09-05-2018 - 14:29
CVE-2018-10830 6.1
In 2345 Security Guard 3.7, the driver file (2345BdPcSafe.sys, X64 version) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of not validating input values from IOCtl 0x002220e0.
09-05-2018 - 03:29 09-05-2018 - 03:29
CVE-2015-1503 7.8
Multiple directory traversal vulnerabilities in IceWarp Mail Server before 11.2 allow remote attackers to read arbitrary files via a (1) .. (dot dot) in the file parameter to a webmail/client/skins/default/css/css.php page or .../. (dot dot dot slash
08-05-2018 - 16:29 08-05-2018 - 16:29
CVE-2018-8897 7.2
A statement in the System Programming Guide of the Intel 64 and IA-32 Architectures Software Developer's Manual (SDM) was mishandled in the development of some or all operating-system kernels, resulting in unexpected behavior for #DB exceptions that
08-05-2018 - 14:29 08-05-2018 - 14:29
CVE-2018-1247 5.8
RSA Authentication Manager Security Console, version 8.3 and earlier, contains a XML External Entity (XXE) vulnerability. This could potentially allow admin users to cause a denial of service or extract server data via injecting a maliciously crafted
08-05-2018 - 09:29 08-05-2018 - 09:29
CVE-2018-10809 6.1
In 2345 Security Guard 3.7, the driver file (2345NetFirewall.sys) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of not validating input values from IOCtl 0x00222040. NOTE: this vulnerability
08-05-2018 - 03:29 08-05-2018 - 03:29
CVE-2018-0494 4.3
GNU Wget before 1.19.5 is prone to a cookie injection vulnerability in the resp_new function in http.c via a \r\n sequence in a continuation line.
06-05-2018 - 18:29 06-05-2018 - 18:29
CVE-2018-10757 7.5
CSP MySQL User Manager 2.3.1 allows SQL injection, and resultant Authentication Bypass, via a crafted username during a login attempt.
05-05-2018 - 15:29 05-05-2018 - 15:29
CVE-2018-10752 3.5
The Tagregator plugin 0.6 for WordPress has stored XSS via the title field in an Add New action.
04-05-2018 - 22:29 04-05-2018 - 22:29
CVE-2018-10562 7.5
An issue was discovered on Dasan GPON home routers. Command Injection can occur via the dest_host parameter in a diag_action=ping request to a GponForm/diag_Form URI. Because the router saves ping results in /tmp and transmits them to the user when t
03-05-2018 - 23:29 03-05-2018 - 23:29
CVE-2018-10561 7.5
An issue was discovered on Dasan GPON home routers. It is possible to bypass authentication simply by appending "?images" to any URL of the device that requires authentication, as demonstrated by the /menu.html?images/ or /GponForm/diag_FORM?images/
03-05-2018 - 23:29 03-05-2018 - 23:29
CVE-2018-10718 10.0
Stack-based buffer overflow in Activision Infinity Ward Call of Duty Modern Warfare 2 before 2018-04-26 allows remote attackers to execute arbitrary code via crafted packets.
03-05-2018 - 14:29 03-05-2018 - 14:29
CVE-2018-10577 9.0
An issue was discovered on WatchGuard AP100, AP102, and AP200 devices with firmware before 1.2.9.15, and AP300 devices with firmware before 2.0.0.10. File upload functionality allows any users authenticated on the web interface to upload files contai
02-05-2018 - 17:29 02-05-2018 - 17:29
CVE-2018-9302 6.4
SSRF (Server Side Request Forgery) in /assets/lib/fuc.js.php in Cockpit 0.4.4 through 0.5.5 allows remote attackers to read arbitrary files or send TCP traffic to intranet hosts via the url parameter. NOTE: this vulnerability exists because of an inc
02-05-2018 - 11:29 02-05-2018 - 11:29
CVE-2018-10260 6.5
A Local File Inclusion vulnerability was found in HRSALE The Ultimate HRM v1.0.2, exploitable by a low privileged user.
01-05-2018 - 15:29 01-05-2018 - 15:29
CVE-2018-10259 3.5
An Authenticated Stored XSS vulnerability was found in HRSALE The Ultimate HRM v1.0.2, exploitable by a low privileged user.
01-05-2018 - 15:29 01-05-2018 - 15:29
CVE-2018-10258 6.5
A CSV Injection vulnerability was discovered in Shopy Point of Sale v1.0 that allows a user with low level privileges to inject a command that will be included in the exported CSV file, leading to possible code execution.
01-05-2018 - 15:29 01-05-2018 - 15:29
CVE-2018-10257 6.5
A CSV Injection vulnerability was discovered in HRSALE The Ultimate HRM v1.0.2 that allows a user with low level privileges to inject a command that will be included in the exported CSV file, leading to possible code execution.
01-05-2018 - 15:29 01-05-2018 - 15:29
CVE-2018-10256 6.5
A SQL Injection vulnerability was discovered in HRSALE The Ultimate HRM v1.0.2 that allows a user with low level privileges to directly modify the SQL query.
01-05-2018 - 15:29 01-05-2018 - 15:29
CVE-2018-10255 6.5
A CSV Injection vulnerability was discovered in clustercoding Blog Master Pro v1.0 that allows a user with low level privileges to inject a command that will be included in the exported CSV file, leading to possible code execution.
01-05-2018 - 15:29 01-05-2018 - 15:29
CVE-2016-10036 7.5
Unrestricted file upload vulnerability in ui/artifact/upload in JFrog Artifactory before 4.16 allows remote attackers to (1) deploy an arbitrary servlet application and execute arbitrary code by uploading a war file or (2) possibly write to arbitrary
01-05-2018 - 15:29 01-05-2018 - 15:29
CVE-2018-10583 5.0
An information disclosure vulnerability occurs when LibreOffice 6.0.3 and Apache OpenOffice Writer 4.1.5 automatically process and initiate an SMB connection embedded in a malicious file, as demonstrated by xlink:href=file://192.168.0.2/test.jpg with
01-05-2018 - 12:29 01-05-2018 - 12:29
CVE-2018-10365 3.5
An XSS issue was discovered in the Threads to Link plugin 1.3 for MyBB. When editing a thread, the user is given the option to convert the thread to a link. The thread link input box is not properly sanitized.
01-05-2018 - 12:29 01-05-2018 - 12:29
CVE-2017-17020 6.5
On D-Link DCS-5009 devices with firmware 1.08.11 and earlier, DCS-5010 devices with firmware 1.14.09 and earlier, and DCS-5020L devices with firmware before 1.15.01, command injection in alphapd (binary responsible for running the camera's web server
01-05-2018 - 12:29 01-05-2018 - 12:29
CVE-2018-10371 4.3
An issue was discovered in the wunderfarm WF Cookie Consent plugin 1.1.3 for WordPress. A persistent cross-site scripting vulnerability has been identified in the web interface of the plugin that allows the execution of arbitrary HTML/script code to
01-05-2018 - 09:29 01-05-2018 - 09:29
CVE-2018-10576 4.6
An issue was discovered on WatchGuard AP100, AP102, and AP200 devices with firmware before 1.2.9.15. Improper authentication handling by the native Access Point web UI allows authentication using a local system account (instead of the dedicated web-o
30-04-2018 - 18:29 30-04-2018 - 18:29
CVE-2018-10575 7.5
An issue was discovered on WatchGuard AP100, AP102, and AP200 devices with firmware before 1.2.9.15. Hardcoded credentials exist for an unprivileged SSH account with a shell of /bin/false.
30-04-2018 - 18:29 30-04-2018 - 18:29
CVE-2018-5234 8.3
The Norton Core router prior to v237 may be susceptible to a command injection exploit. This is a type of attack in which the goal is execution of arbitrary commands on the host system via vulnerable software.
30-04-2018 - 14:29 30-04-2018 - 14:29
CVE-2018-10517 6.5
In CMS Made Simple (CMSMS) through 2.2.7, the "module import" operation in the admin dashboard contains a remote code execution vulnerability, exploitable by an admin user, because an XML Package can contain base64-encoded PHP code in a data element.
27-04-2018 - 14:29 27-04-2018 - 14:29
CVE-2018-7669 7.8
An issue was discovered in Sitecore Sitecore.NET 8.1 rev. 151207 Hotfix 141178-1 and above. The 'Log Viewer' application is vulnerable to a directory traversal attack, allowing an attacker to access arbitrary files from the host Operating System usin
27-04-2018 - 12:29 27-04-2018 - 12:29
CVE-2018-10504 6.8
The WebDorado "Form Maker by WD" plugin before 1.12.24 for WordPress allows CSV injection.
27-04-2018 - 12:29 27-04-2018 - 12:29
CVE-2018-7465 3.5
An XSS issue was discovered in VirtueMart before 3.2.14. All the textareas in the backend of the plugin can be closed by simply adding </textarea> to the value and saving the product/config. By editing back the product/config, the editor's browser wi
26-04-2018 - 15:29 26-04-2018 - 15:29
CVE-2018-1418 7.5
IBM Security QRadar SIEM 7.2 and 7.3 could allow a user to bypass authentication which could lead to code execution. IBM X-Force ID: 138824.
26-04-2018 - 10:29 26-04-2018 - 10:29
CVE-2018-8716 3.5
WSO2 Identity Server before 5.5.0 has XSS via the dashboard, allowing attacks by low-privileged attackers.
25-04-2018 - 16:29 25-04-2018 - 16:29
CVE-2018-10366 4.3
An issue was discovered in the Users (aka Front-end user management) plugin 1.4.5 for October CMS. XSS exists in the name field.
25-04-2018 - 05:29 25-04-2018 - 05:29
CVE-2018-10310 3.5
A persistent cross-site scripting vulnerability has been identified in the web interface of the Catapult UK Cookie Consent plugin before 2.3.10 for WordPress that allows the execution of arbitrary HTML/script code in the context of a victim's browser
25-04-2018 - 05:29 25-04-2018 - 05:29
CVE-2018-9131 None
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none.
24-04-2018 - 12:29 24-04-2018 - 12:29
CVE-2018-9060 None
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none.
24-04-2018 - 12:29 24-04-2018 - 12:29
CVE-2016-9587 9.3
Ansible before versions 2.1.4, 2.2.1 is vulnerable to an improper input validation in Ansible's handling of data sent from client systems. An attacker with control over a client system being managed by Ansible and the ability to send facts back to th
24-04-2018 - 12:29 24-04-2018 - 12:29
CVE-2018-10321 3.5
Frog CMS 0.9.5 has a stored Cross Site Scripting Vulnerability via "Admin Site title" in Settings.
24-04-2018 - 02:29 24-04-2018 - 02:29
CVE-2018-10313 3.5
WUZHI CMS 4.1.0 allows persistent XSS via the form%5Bqq_10%5D parameter to the /index.php?m=member&f=index&v=profile&set_iframe=1 URI.
23-04-2018 - 22:29 23-04-2018 - 22:29
CVE-2018-10312 6.8
index.php?m=member&v=pw_reset in WUZHI CMS 4.1.0 allows CSRF to change the password of a common member.
23-04-2018 - 22:29 23-04-2018 - 22:29
CVE-2018-10311 4.3
A vulnerability was discovered in WUZHI CMS 4.1.0. There is persistent XSS that allows remote attackers to inject arbitrary web script or HTML via the tag[pinyin] parameter to the /index.php?m=tags&f=index&v=add URI.
23-04-2018 - 22:29 23-04-2018 - 22:29
CVE-2018-10309 3.5
The Responsive Cookie Consent plugin before 1.8 for WordPress mishandles number fields, leading to XSS.
23-04-2018 - 22:29 23-04-2018 - 22:29
CVE-2018-8880 5.0
Lutron Quantum BACnet Integration 2.0 (firmware 3.2.243) doesn't check for correct user authentication before showing the /deviceIP information, which leads to internal network information disclosure.
23-04-2018 - 14:29 23-04-2018 - 14:29
CVE-2018-9245 10.0
The Ericsson-LG iPECS NMS A.1Ac login portal has a SQL injection vulnerability in the User ID and password fields that allows users to bypass the login page and execute remote code on the operating system.
22-04-2018 - 09:29 22-04-2018 - 09:29
CVE-2018-10286 4.0
The Ericsson-LG iPECS NMS A.1Ac web application discloses sensitive information such as the NMS admin credentials and the PostgreSQL database credentials to logged-in users via the responses to certain HTTP POST requests. In order to be able to see t
22-04-2018 - 09:29 22-04-2018 - 09:29
CVE-2018-10285 7.5
The Ericsson-LG iPECS NMS A.1Ac web application uses incorrect access control mechanisms. Since the app does not use any sort of session ID, an attacker might bypass authentication.
22-04-2018 - 09:29 22-04-2018 - 09:29
CVE-2018-10253 5.0
Paessler PRTG Network Monitor before 18.1.39.1648 mishandles stack memory during unspecified API calls.
20-04-2018 - 22:29 20-04-2018 - 22:29
CVE-2018-9059 7.5
Stack-based buffer overflow in Easy File Sharing (EFS) Web Server 7.2 allows remote attackers to execute arbitrary code via a malicious login request to forum.ghp. NOTE: this may overlap CVE-2014-3791.
20-04-2018 - 17:29 20-04-2018 - 17:29
CVE-2018-7747 3.5
Multiple cross-site scripting (XSS) vulnerabilities in the Caldera Forms plugin before 1.6.0-rc.1 for WordPress allow remote attackers to inject arbitrary web script or HTML via vectors involving (1) a greeting message, (2) the email transaction log,
20-04-2018 - 17:29 20-04-2018 - 17:29
CVE-2018-10079 2.1
Geist WatchDog Console 3.2.2 uses a weak ACL for the C:\ProgramData\WatchDog Console directory, which allows local users to modify configuration data by updating (1) config.xml or (2) servers.xml.
20-04-2018 - 17:29 20-04-2018 - 17:29
CVE-2018-10078 3.5
Cross-site scripting (XSS) vulnerability in Geist WatchDog Console 3.2.2 allows remote authenticated administrators to inject arbitrary web script or HTML via a server description.
20-04-2018 - 17:29 20-04-2018 - 17:29
CVE-2018-10077 4.0
XML external entity (XXE) vulnerability in Geist WatchDog Console 3.2.2 allows remote authenticated administrators to read arbitrary files via crafted XML data.
20-04-2018 - 17:29 20-04-2018 - 17:29
CVE-2018-10201 5.0
An issue was discovered in NcMonitorServer.exe in NC Monitor Server in NComputing vSpace Pro 10 and 11. It is possible to read arbitrary files outside the root directory of the web server. This vulnerability could be exploited remotely by a crafted U
20-04-2018 - 04:29 20-04-2018 - 04:29
CVE-2018-10188 6.8
phpMyAdmin 4.8.0 before 4.8.0-1 has CSRF, allowing an attacker to execute arbitrary SQL statements, related to js/db_operations.js, js/tbl_operations.js, libraries/classes/Operations.php, and sql.php.
19-04-2018 - 10:29 19-04-2018 - 10:29
CVE-2018-9137 3.5
Open-AudIT before 2.2 has CSV Injection.
19-04-2018 - 04:29 19-04-2018 - 04:29
CVE-2018-2844 4.6
Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization (subcomponent: Core). Supported versions that are affected are Prior to 5.1.36 and Prior to 5.2.10. Easily exploitable vulnerability allows low privileged attacker with logo
18-04-2018 - 22:29 18-04-2018 - 22:29
CVE-2018-2791 5.8
Vulnerability in the Oracle WebCenter Sites component of Oracle Fusion Middleware (subcomponent: Advanced UI). Supported versions that are affected are 11.1.1.8.0, 12.2.1.2.0 and 12.2.1.3.0. Easily exploitable vulnerability allows unauthenticated att
18-04-2018 - 22:29 18-04-2018 - 22:29
CVE-2018-2628 7.5
Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: WLS Core Components). Supported versions that are affected are 10.3.6.0, 12.1.3.0, 12.2.1.2 and 12.2.1.3. Easily exploitable vulnerability allows unauthe
18-04-2018 - 22:29 18-04-2018 - 22:29
CVE-2018-6546 10.0
plays_service.exe in the plays.tv service before 1.27.7.0, as distributed in AMD driver-installation packages and Gaming Evolved products, executes code at a user-defined (local or SMB) path as SYSTEM when the execute_installer parameter is used in a
18-04-2018 - 21:29 13-04-2018 - 12:29
CVE-2017-6020 4.0
Leao Consultoria e Desenvolvimento de Sistemas (LCDS) LTDA ME LAquis SCADA software versions prior to version 4.1.0.3237 do not neutralize external input to ensure that users are not calling for absolute path sequences outside of their privilege leve
18-04-2018 - 21:29 17-04-2018 - 10:29
CVE-2018-10110 3.5
D-Link DIR-615 T1 devices allow XSS via the Add User feature.
18-04-2018 - 17:29 18-04-2018 - 17:29
CVE-2018-8831 4.3
A Persistent XSS vulnerability exists in Kodi (formerly XBMC) through 17.6 that allows the execution of arbitrary HTML/script code in the context of the victim user's browser via a playlist.
18-04-2018 - 13:29 18-04-2018 - 13:29
CVE-2018-10070 7.8
A vulnerability in MikroTik Version 6.41.4 could allow an unauthenticated remote attacker to exhaust all available CPU and all available RAM by sending a crafted FTP request on port 21 that begins with many '\0' characters, preventing the affected ro
17-04-2018 - 21:29 16-04-2018 - 17:29
CVE-2018-10063 6.8
The Convert Forms extension before 2.0.4 for Joomla! is vulnerable to Remote Command Execution using CSV Injection that is mishandled when exporting a Leads file.
17-04-2018 - 21:29 12-04-2018 - 15:29
CVE-2018-8736 9.0
A privilege escalation vulnerability in Nagios XI 5.2.x through 5.4.x before 5.4.13 allows an attacker to leverage an RCE vulnerability escalating to root.
17-04-2018 - 20:29 17-04-2018 - 20:29
CVE-2018-8735 9.0
Remote command execution (RCE) vulnerability in Nagios XI 5.2.x through 5.4.x before 5.4.13 allows an attacker to execute arbitrary commands on the target system, aka OS command injection.
17-04-2018 - 20:29 17-04-2018 - 20:29
CVE-2018-8734 7.5
SQL injection vulnerability in the core config manager in Nagios XI 5.2.x through 5.4.x before 5.4.13 allows an attacker to execute arbitrary SQL commands via the selInfoKey1 parameter.
17-04-2018 - 20:29 17-04-2018 - 20:29
CVE-2018-8733 6.4
Authentication bypass vulnerability in the core config manager in Nagios XI 5.2.x through 5.4.x before 5.4.13 allows an unauthenticated attacker to make configuration changes and leverage an authenticated SQL injection vulnerability.
17-04-2018 - 20:29 17-04-2018 - 20:29
CVE-2018-5430 4.0
The Spring web flows of TIBCO Software Inc.'s TIBCO JasperReports Server, TIBCO JasperReports Server Community Edition, TIBCO JasperReports Server for ActiveMatrix BPM, TIBCO Jaspersoft for AWS with Multi-Tenancy, and TIBCO Jaspersoft Reporting and A
17-04-2018 - 14:29 17-04-2018 - 14:29
CVE-2018-9843 7.5
The REST API in CyberArk Password Vault Web Access before 9.9.5 and 10.x before 10.1 allows remote attackers to execute arbitrary code via a serialized .NET object in an Authorization HTTP header.
16-04-2018 - 05:58 12-04-2018 - 11:29
CVE-2018-9842 5.0
CyberArk Password Vault before 9.7 allows remote attackers to obtain sensitive information from process memory by replaying a logon message.
16-04-2018 - 05:58 12-04-2018 - 11:29
CVE-2018-10118 3.5
Monstra CMS 3.0.4 has Stored XSS via the Name field on the Create New Page screen under the admin/index.php?id=pages URI, related to plugins/box/pages/pages.admin.php.
16-04-2018 - 05:58 16-04-2018 - 05:58
CVE-2018-10109 3.5
Monstra CMS 3.0.4 has a stored XSS vulnerability when an attacker has access to the editor role, and enters the payload in the content section of a new page in the blog catalog.
16-04-2018 - 05:58 16-04-2018 - 05:58
CVE-2017-0358 7.2
Jann Horn of Google Project Zero discovered that NTFS-3G, a read-write NTFS driver for FUSE, does not scrub the environment before executing modprobe with elevated privileges. A local user can take advantage of this flaw for local root privilege esca
16-04-2018 - 05:58 13-04-2018 - 11:29
CVE-2017-0359 10.0
diffoscope before 77 writes to arbitrary locations on disk based on the contents of an untrusted archive.
13-04-2018 - 12:29 13-04-2018 - 12:29
CVE-2018-10080 5.0
Secutech RiS-11, RiS-22, and RiS-33 devices with firmware V5.07.52_es_FRI01 allow DNS settings changes via a goform/AdvSetDns?GO=wan_dns.asp request in conjunction with a crafted admin cookie.
13-04-2018 - 00:29 13-04-2018 - 00:29
CVE-2018-10068 4.3
The jDownloads extension before 3.2.59 for Joomla! has XSS.
12-04-2018 - 14:29 12-04-2018 - 14:29
CVE-2018-9155 3.5
Cross-site scripting (XSS) vulnerability in Open-AudIT Professional 2.1.1 allows remote attackers to inject arbitrary web script or HTML via a crafted name of a component, as demonstrated by the Admin->Logs section (with a logs?logs.type= URI) and th
12-04-2018 - 11:29 12-04-2018 - 11:29
CVE-2018-9118 5.0
exports/download.php in the 99 Robots WP Background Takeover Advertisements plugin before 4.1.5 for WordPress has Directory Traversal via a .. in the filename parameter.
12-04-2018 - 11:29 12-04-2018 - 11:29
CVE-2018-0980 7.6
A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka "Chakra Scripting Engine Memory Corruption Vulnerability." This affects Microsoft Edge, ChakraCore. This CVE ID
11-04-2018 - 21:29 11-04-2018 - 21:29
CVE-2018-0975 2.1
An information disclosure vulnerability exists in the Windows kernel that could allow an attacker to retrieve information that could lead to a Kernel Address Space Layout Randomization (ASLR) bypass, aka "Windows Kernel Information Disclosure Vulnera
11-04-2018 - 21:29 11-04-2018 - 21:29
CVE-2018-0974 2.1
An information disclosure vulnerability exists in the Windows kernel that could allow an attacker to retrieve information that could lead to a Kernel Address Space Layout Randomization (ASLR) bypass, aka "Windows Kernel Information Disclosure Vulnera
11-04-2018 - 21:29 11-04-2018 - 21:29
CVE-2018-0973 2.1
An information disclosure vulnerability exists in the Windows kernel that could allow an attacker to retrieve information that could lead to a Kernel Address Space Layout Randomization (ASLR) bypass, aka "Windows Kernel Information Disclosure Vulnera
11-04-2018 - 21:29 11-04-2018 - 21:29
CVE-2018-0972 2.1
An information disclosure vulnerability exists in the Windows kernel that could allow an attacker to retrieve information that could lead to a Kernel Address Space Layout Randomization (ASLR) bypass, aka "Windows Kernel Information Disclosure Vulnera
11-04-2018 - 21:29 11-04-2018 - 21:29
CVE-2018-0971 2.1
An information disclosure vulnerability exists in the Windows kernel that could allow an attacker to retrieve information that could lead to a Kernel Address Space Layout Randomization (ASLR) bypass, aka "Windows Kernel Information Disclosure Vulnera
11-04-2018 - 21:29 11-04-2018 - 21:29
CVE-2018-0970 2.1
An information disclosure vulnerability exists in the Windows kernel that could allow an attacker to retrieve information that could lead to a Kernel Address Space Layout Randomization (ASLR) bypass, aka "Windows Kernel Information Disclosure Vulnera
11-04-2018 - 21:29 11-04-2018 - 21:29
CVE-2018-0969 2.1
An information disclosure vulnerability exists in the Windows kernel that could allow an attacker to retrieve information that could lead to a Kernel Address Space Layout Randomization (ASLR) bypass, aka "Windows Kernel Information Disclosure Vulnera
11-04-2018 - 21:29 11-04-2018 - 21:29
CVE-2018-0968 2.1
An information disclosure vulnerability exists in the Windows kernel that could allow an attacker to retrieve information that could lead to a Kernel Address Space Layout Randomization (ASLR) bypass, aka "Windows Kernel Information Disclosure Vulnera
11-04-2018 - 21:29 11-04-2018 - 21:29
CVE-2018-0966 2.1
A security feature bypass exists when Device Guard incorrectly validates an untrusted file, aka "Device Guard Security Feature Bypass Vulnerability." This affects Windows Server 2016, Windows 10, Windows 10 Servers.
11-04-2018 - 21:29 11-04-2018 - 21:29
CVE-2018-10054 6.5
H2 1.4.197, as used in Datomic before 0.9.5697 and other products, allows remote code execution because CREATE ALIAS can execute arbitrary Java code.
11-04-2018 - 16:29 11-04-2018 - 16:29
CVE-2017-14459 10.0
An exploitable OS Command Injection vulnerability exists in the Telnet, SSH, and console login functionality of Moxa AWK-3131A Industrial IEEE 802.11a/b/g/n wireless AP/bridge/client in firmware versions 1.4 to 1.7 (current). An attacker can inject c
11-04-2018 - 12:29 11-04-2018 - 12:29
CVE-2018-9995 5.0
TBK DVR4104 and DVR4216 devices, as well as Novo, CeNova, QSee, Pulnix, XVR 5 in 1, Securus, Night OWL, DVR Login, HVR Login, and MDVR Login, which run re-branded versions of the original TBK DVR4104 and DVR4216 series, allow remote attackers to bypa
10-04-2018 - 18:29 10-04-2018 - 18:29
CVE-2018-9038 5.5
Monstra CMS 3.0.4 allows remote attackers to delete files via an admin/index.php?id=filesmanager&delete_dir=./&path=uploads/ request.
10-04-2018 - 14:29 10-04-2018 - 14:29
CVE-2018-9037 6.5
Monstra CMS 3.0.4 allows remote code execution via an upload_file request for a .zip file, which is automatically extracted and may contain .php files.
10-04-2018 - 14:29 10-04-2018 - 14:29
CVE-2018-8772 4.3
Coship RT3052 4.0.0.48 devices allow XSS via a crafted SSID field on the "Wireless Setting - Basic" screen.
10-04-2018 - 14:29 10-04-2018 - 14:29
CVE-2017-14611 6.4
SSRF (Server Side Request Forgery) in Cockpit 0.13.0 allows remote attackers to read arbitrary files or send TCP traffic to intranet hosts via the url parameter, related to use of the discontinued aheinze/fetch_url_contents component.
10-04-2018 - 11:29 10-04-2018 - 11:29
CVE-2018-9927 6.8
An issue was discovered in WUZHI CMS 4.1.0. There is a CSRF vulnerability that can add a user account via index.php?m=member&f=index&v=add.
10-04-2018 - 02:29 10-04-2018 - 02:29
CVE-2018-9926 6.8
An issue was discovered in WUZHI CMS 4.1.0. There is a CSRF vulnerability that can add an admin account via index.php?m=core&f=power&v=add.
10-04-2018 - 02:29 10-04-2018 - 02:29
CVE-2018-1217 5.0
Avamar Installation Manager in Dell EMC Avamar Server 7.3.1, 7.4.1, and 7.5.0, and Dell EMC Integrated Data Protection Appliance 2.0 and 2.1, is affected by a missing access control check vulnerability which could potentially allow a remote unauthent
09-04-2018 - 16:29 09-04-2018 - 16:29
CVE-2018-9857 4.3
PHP Scripts Mall Match Clone Script 1.0.4 has XSS via the search field to searchbyid.php (aka the "View Search By Id" screen).
09-04-2018 - 03:29 09-04-2018 - 03:29
CVE-2018-9844 4.3
The Iptanus WordPress File Upload plugin before 4.3.4 for WordPress mishandles Settings attributes, leading to XSS.
07-04-2018 - 03:29 07-04-2018 - 03:29
CVE-2018-1270 7.5
Spring Framework, versions 5.0 prior to 5.0.5 and versions 4.3 prior to 4.3.15 and older unsupported versions, allow applications to expose STOMP over WebSocket endpoints with a simple, in-memory STOMP broker through the spring-messaging module. A ma
06-04-2018 - 09:29 06-04-2018 - 09:29
CVE-2018-9233 2.1
Sophos Endpoint Protection 10.7 uses an unsalted SHA-1 hash for password storage in %PROGRAMDATA%\Sophos\Sophos Anti-Virus\Config\machine.xml, which makes it easier for attackers to determine a cleartext password, and subsequently choose unsafe malwa
05-04-2018 - 13:29 05-04-2018 - 13:29
CVE-2018-4863 2.1
Sophos Endpoint Protection 10.7 allows local users to bypass an intended tamper protection mechanism by deleting the HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\Sophos Endpoint Defense\ registry key.
05-04-2018 - 13:29 05-04-2018 - 13:29
CVE-2016-8380 7.5
The web server in Phoenix Contact ILC PLCs allows access to read and write PLC variables without authentication.
05-04-2018 - 12:29 05-04-2018 - 12:29
CVE-2016-8371 7.5
The web server in Phoenix Contact ILC PLCs can be accessed without authenticating even if the authentication mechanism is enabled.
05-04-2018 - 12:29 05-04-2018 - 12:29
CVE-2016-8366 5.0
Webvisit in Phoenix Contact ILC PLCs offers a password macro to protect HMI pages on the PLC against casual or coincidental opening of HMI pages by the user. The password macro can be configured in a way that the password is stored and transferred in
05-04-2018 - 12:29 05-04-2018 - 12:29
CVE-2018-9126 5.0
The DNNArticle module 11 for DNN (formerly DotNetNuke) allows remote attackers to read the web.config file, and consequently discover database credentials, via the /GetCSS.ashx/?CP=%2fweb.config URI.
04-04-2018 - 15:29 04-04-2018 - 15:29
CVE-2018-9115 5.0
Systematic SitaWare 6.4 SP2 does not validate input from other sources sufficiently. e.g., information utilizing the NVG interface. An attacker can freeze the Situational Layer, which means that the Situational Picture is no longer updated. Unfortuna
04-04-2018 - 15:29 04-04-2018 - 15:29
CVE-2018-9035 6.8
CSV Injection vulnerability in ExportToCsvUtf8.php of the Contact Form 7 to Database Extension plugin 2.10.32 for WordPress allows remote attackers to inject spreadsheet formulas into CSV files via the contact form.
04-04-2018 - 15:29 04-04-2018 - 15:29
CVE-2018-9034 3.5
Cross-site scripting (XSS) vulnerability in lib/interface.php of the Relevanssi plugin 4.0.4 for WordPress allows remote attackers to inject arbitrary JavaScript or HTML via the tab GET parameter.
04-04-2018 - 15:29 04-04-2018 - 15:29
CVE-2018-8719 5.0
An issue was discovered in the WP Security Audit Log plugin 3.1.1 for WordPress. Access to wp-content/uploads/wp-security-audit-log/* files is not restricted. For example, these files are indexed by Google and allows for attackers to possibly find se
04-04-2018 - 15:29 04-04-2018 - 15:29
CVE-2018-0986 9.3
A remote code execution vulnerability exists when the Microsoft Malware Protection Engine does not properly scan a specially crafted file, leading to memory corruption, aka "Microsoft Malware Protection Engine Remote Code Execution Vulnerability." Th
04-04-2018 - 13:29 04-04-2018 - 13:29
CVE-2017-13262 3.3
In bnep_data_ind of bnep_main.cc, there is a possible out of bounds read due to a missing length decrement operation. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for
04-04-2018 - 13:29 04-04-2018 - 13:29
CVE-2017-13261 5.0
In bnep_process_control_packet of bnep_utils.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for
04-04-2018 - 13:29 04-04-2018 - 13:29
CVE-2017-13260 5.0
In bnep_data_ind of bnep_main.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.
04-04-2018 - 13:29 04-04-2018 - 13:29
CVE-2017-13258 5.0
In bnep_data_ind of bnep_main.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.
04-04-2018 - 13:29 04-04-2018 - 13:29
CVE-2017-13253 9.3
In CryptoPlugin::decrypt of CryptoPlugin.cpp, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for explo
04-04-2018 - 13:29 04-04-2018 - 13:29
CVE-2018-9248 7.5
FiberHome VDSL2 Modem HG 150-UB devices allow authentication bypass via a "Cookie: Name=0admin" header.
04-04-2018 - 11:29 04-04-2018 - 11:29
CVE-2018-9205 5.0
Vulnerability in avatar_uploader v7.x-1.0-beta8 , The code in view.php doesn't verify users or sanitize the file path.
04-04-2018 - 11:29 04-04-2018 - 11:29
CVE-2018-8814 5.8
Cross-site request forgery (CSRF) vulnerability in WolfCMS 0.8.3.1 allows remote attackers to hijack the authentication of users for requests that modify plugin/[pluginname]/settings by crafting a malicious request.
04-04-2018 - 11:29 04-04-2018 - 11:29
CVE-2018-8813 4.9
Open redirect vulnerability in the login[redirect] parameter login functionality in WolfCMS 0.8.3.1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a malformed URL.
04-04-2018 - 11:29 04-04-2018 - 11:29
CVE-2018-9238 4.3
proberv.php in Yahei-PHP Proberv 0.4.7 has XSS via the funName parameter.
04-04-2018 - 03:29 04-04-2018 - 03:29
CVE-2018-9237 3.5
iScripts EasyCreate 3.2.1 has Stored Cross-Site Scripting in the "Site Description" field.
04-04-2018 - 03:29 04-04-2018 - 03:29
CVE-2018-9236 3.5
iScripts EasyCreate 3.2.1 has Stored Cross-Site Scripting in the "Site title" field.
04-04-2018 - 03:29 04-04-2018 - 03:29
CVE-2018-9235 4.3
iScripts SonicBB 1.0 has Reflected Cross-Site Scripting via the query parameter to search.php.
04-04-2018 - 03:29 04-04-2018 - 03:29
CVE-2017-18256 4.3
Brave Browser before 0.13.0 allows remote attackers to cause a denial of service (resource consumption) via a long alert() argument in JavaScript code, because window dialogs are mishandled.
03-04-2018 - 22:29 03-04-2018 - 22:29
CVE-2016-10718 5.0
Brave Browser before 0.13.0 allows a tab to close itself even if the tab was not opened by a script, resulting in denial of service.
03-04-2018 - 22:29 03-04-2018 - 22:29
CVE-2018-0492 4.4
Johnathan Nightingale beep through 1.3.4, if setuid, has a race condition that allows local privilege escalation.
03-04-2018 - 03:29 03-04-2018 - 03:29
CVE-2018-4139 9.3
An issue was discovered in certain Apple products. macOS before 10.13.4 is affected. The issue involves the "kext tools" component. It allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption)
03-04-2018 - 02:29 03-04-2018 - 02:29
CVE-2018-4121 6.8
An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 is affected. iCloud before 7.4 on Windows is affected. iTunes before 12.7.4 on Windows is affected. tvOS before 11.3 is affected. watchOS before 4.3 is
03-04-2018 - 02:29 03-04-2018 - 02:29
CVE-2018-4090 4.3
An issue was discovered in certain Apple products. iOS before 11.2.5 is affected. macOS before 10.13.3 is affected. tvOS before 11.2.5 is affected. watchOS before 4.2.2 is affected. The issue involves the "Kernel" component. It allows attackers to by
03-04-2018 - 02:29 03-04-2018 - 02:29
CVE-2018-4089 6.8
An issue was discovered in certain Apple products. iOS before 11.2.5 is affected. macOS before 10.13.3 is affected. Safari before 11.0.3 is affected. tvOS before 11.2.5 is affected. The issue involves the "WebKit" component. It allows remote attacker
03-04-2018 - 02:29 03-04-2018 - 02:29
CVE-2018-4087 9.3
An issue was discovered in certain Apple products. iOS before 11.2.5 is affected. tvOS before 11.2.5 is affected. watchOS before 4.2.2 is affected. The issue involves the "Core Bluetooth" component. It allows attackers to execute arbitrary code in a
03-04-2018 - 02:29 03-04-2018 - 02:29
CVE-2018-4083 9.3
An issue was discovered in certain Apple products. macOS before 10.13.3 is affected. The issue involves the "Touch Bar Support" component. It allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corr
03-04-2018 - 02:29 03-04-2018 - 02:29
CVE-2017-7005 6.8
An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. Safari before 10.1.1 is affected. tvOS before 10.2.1 is affected. The issue involves the "JavaScriptCore" component. It allows remote attackers to execute arbitrary cod
03-04-2018 - 02:29 03-04-2018 - 02:29
CVE-2017-7004 5.1
An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. macOS before 10.12.5 is affected. The issue involves the "Security" component. A race condition allows attackers to bypass intended entitlement restrictions for sending
03-04-2018 - 02:29 03-04-2018 - 02:29
CVE-2018-9183 3.5
The Joom Sky JS Jobs extension before 1.2.1 for Joomla! has XSS.
02-04-2018 - 11:29 02-04-2018 - 11:29
CVE-2018-1038 7.2
The Windows kernel in Windows 7 SP1 and Windows Server 2008 R2 SP1 allows an elevation of privilege vulnerability due to the way it handles objects in memory, aka "Windows Kernel Elevation of Privilege Vulnerability."
02-04-2018 - 09:29 02-04-2018 - 09:29
CVE-2018-9163 3.5
A stored Cross-site scripting (XSS) vulnerability in Zoho ManageEngine Recovery Manager Plus before 5.3 (Build 5350) allows remote authenticated users (with Add New Technician permissions) to inject arbitrary web script or HTML via the loginName fiel
02-04-2018 - 08:29 02-04-2018 - 08:29
CVE-2018-9173 4.3
Cross-site scripting (XSS) vulnerability in admin/template/js/uploadify/uploadify.swf in GetSimple CMS 3.3.13 allows remote attackers to inject arbitrary web script or HTML, as demonstrated by the movieName parameter.
01-04-2018 - 23:29 01-04-2018 - 23:29
CVE-2018-9172 3.5
The Iptanus WordPress File Upload plugin before 4.3.3 for WordPress mishandles shortcode attributes.
01-04-2018 - 19:29 01-04-2018 - 19:29
CVE-2018-6849 4.3
In the WebRTC component in DuckDuckGo 4.2.0, after visiting a web site that attempts to gather complete client information (such as https://ip.voidsec.com), the browser can disclose a private IP address in a STUN request.
01-04-2018 - 14:29 01-04-2018 - 14:29
CVE-2018-9128 6.8
DVD X Player Standard 5.5.3.9 has a Buffer Overflow via a crafted .plf file, a related issue to CVE-2007-3068.
01-04-2018 - 03:29 01-04-2018 - 03:29
CVE-2018-9162 7.5
Contec Smart Home 4.15 devices do not require authentication for new_user.php, edit_user.php, delete_user.php, and user.php, as demonstrated by changing the admin password and then obtaining control over doors.
31-03-2018 - 18:29 31-03-2018 - 18:29
CVE-2018-9161 7.5
Prisma Industriale Checkweigher PrismaWEB 1.21 allows remote attackers to discover the hardcoded prisma password for the prismaweb account by reading user/scripts/login_par.js.
31-03-2018 - 18:29 31-03-2018 - 18:29
CVE-2018-8908 6.8
An issue was discovered in /admin/?/user/add in Frog CMS 0.9.5. The application's add user functionality suffers from CSRF. A malicious user can craft an HTML page and use it to trick a victim into clicking on it; once executed, a malicious user will
31-03-2018 - 18:29 31-03-2018 - 18:29
CVE-2018-9160 5.0
SickRage before v2018.03.09-1 includes cleartext credentials in HTTP responses.
31-03-2018 - 17:29 31-03-2018 - 17:29
CVE-2018-7203 4.3
Cross-site scripting (XSS) vulnerability in Twonky Server 7.0.11 through 8.5 allows remote attackers to inject arbitrary web script or HTML via the friendlyname parameter to rpc/set_all.
30-03-2018 - 17:29 30-03-2018 - 17:29
CVE-2018-7171 5.0
Directory traversal vulnerability in Twonky Server 7.0.11 through 8.5 allows remote attackers to share the contents of arbitrary directories via a .. (dot dot) in the contentbase parameter to rpc/set_all.
30-03-2018 - 17:29 30-03-2018 - 17:29
CVE-2018-5708 6.1
An issue was discovered on D-Link DIR-601 B1 2.02NA devices. Being on the same local network as, but being unauthenticated to, the administrator's panel, a user can obtain the admin username and cleartext password in the response (specifically, the c
30-03-2018 - 17:29 30-03-2018 - 17:29
CVE-2018-9148 5.0
Western Digital WD My Cloud v04.05.00-320 devices embed the session token (aka PHPSESSID) in filenames, which makes it easier for attackers to bypass authentication by listing a directory. NOTE: this can be exploited in conjunction with CVE-2018-7171
30-03-2018 - 15:29 30-03-2018 - 15:29
CVE-2018-7600 7.5
Drupal before 7.58, 8.x before 8.3.9, 8.4.x before 8.4.6, and 8.5.x before 8.5.1 allows remote attackers to execute arbitrary code because of an issue affecting multiple subsystems with default or common module configurations.
29-03-2018 - 03:29 29-03-2018 - 03:29
CVE-2018-0171 10.0
A vulnerability in the Smart Install feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to trigger a reload of an affected device, resulting in a denial of service (DoS) condition, or to execute ar
28-03-2018 - 18:29 28-03-2018 - 18:29
CVE-2018-9107 6.8
CSV Injection (aka Excel Macro Injection or Formula Injection) exists in the export feature in the Acyba AcyMailing extension before 5.9.6 for Joomla! via a value that is mishandled in a CSV export.
28-03-2018 - 00:29 28-03-2018 - 00:29
CVE-2018-9106 6.8
CSV Injection (aka Excel Macro Injection or Formula Injection) exists in the export feature in the Acyba AcySMS extension before 3.5.1 for Joomla! via a value that is mishandled in a CSV export.
28-03-2018 - 00:29 28-03-2018 - 00:29
CVE-2018-9092 6.8
There is a CSRF vulnerability in mc-admin/conf.php in MiniCMS 1.10 that can change the administrator account password.
27-03-2018 - 18:29 27-03-2018 - 18:29
CVE-2018-8718 6.0
Cross-site request forgery (CSRF) vulnerability in the Mailer Plugin 1.20 for Jenkins 2.111 allows remote authenticated users to send unauthorized mail as an arbitrary user via a /descriptorByName/hudson.tasks.Mailer/sendTestMail request.
27-03-2018 - 12:29 27-03-2018 - 12:29
CVE-2018-9032 7.5
An authentication bypass vulnerability on D-Link DIR-850L Wireless AC1200 Dual Band Gigabit Cloud Router (Hardware Version : A1, B1; Firmware Version : 1.02-2.06) devices potentially allows attackers to bypass SharePort Web Access Portal by directly
26-03-2018 - 23:29 26-03-2018 - 23:29
CVE-2018-7658 5.0
NTSServerSvc.exe in the server in Softros Network Time System 2.3.4 allows remote attackers to cause a denial of service (daemon crash) by sending exactly 11 bytes.
26-03-2018 - 17:29 26-03-2018 - 17:29
CVE-2018-7543 4.3
Cross-site scripting (XSS) vulnerability in installer/build/view.step4.php of the SnapCreek Duplicator plugin 1.2.32 for WordPress allows remote attackers to inject arbitrary JavaScript or HTML via the json parameter.
26-03-2018 - 14:29 26-03-2018 - 14:29
CVE-2018-1213 6.8
Dell EMC Isilon OneFS versions between 8.1.0.0 - 8.1.0.1, 8.0.1.0 - 8.0.1.2, and 8.0.0.0 - 8.0.0.6, versions 7.2.1.x, and version 7.1.1.11 and 8.1.0.2 is affected by a cross-site request forgery vulnerability. A malicious user may potentially exploit
26-03-2018 - 14:29 26-03-2018 - 14:29
CVE-2018-1204 7.2
Dell EMC Isilon OneFS versions between 8.1.0.0 - 8.1.0.1, 8.0.1.0 - 8.0.1.2, and 8.0.0.0 - 8.0.0.6, versions 7.2.1.x, and version 7.1.1.11 is affected by a path traversal vulnerability in the isi_phone_home tool. A malicious compadmin may potentially
26-03-2018 - 14:29 26-03-2018 - 14:29
CVE-2018-1203 7.2
In Dell EMC Isilon OneFS, the compadmin is able to run tcpdump binary with root privileges. In versions between 8.1.0.0 - 8.1.0.1, 8.0.1.0 - 8.0.1.2, and 8.0.0.0 - 8.0.0.6, the tcpdump binary, being run with sudo, may potentially be used by compadmin
26-03-2018 - 14:29 26-03-2018 - 14:29
CVE-2018-1202 3.5
Dell EMC Isilon versions between 8.1.0.0 - 8.1.0.1, 8.0.1.0 - 8.0.1.2, and 8.0.0.0 - 8.0.0.6, and version 7.1.1.11 is affected by a cross-site scripting vulnerability in the NDMP Page within the OneFS web administration interface. A malicious adminis
26-03-2018 - 14:29 26-03-2018 - 14:29
CVE-2018-1201 3.5
Dell EMC Isilon versions between 8.1.0.0 - 8.1.0.1, 8.0.1.0 - 8.0.1.2, and 8.0.0.0 - 8.0.0.6, versions 7.2.1.x, and version 7.1.1.11 is affected by a cross-site scripting vulnerability in the Job Operations Page within the OneFS web administration in
26-03-2018 - 14:29 26-03-2018 - 14:29
CVE-2018-1189 3.5
Dell EMC Isilon versions between 8.1.0.0 - 8.1.0.1, 8.0.1.0 - 8.0.1.2, and 8.0.0.0 - 8.0.0.6, versions 7.2.1.x, and version 7.1.1.11 is affected by a cross-site scripting vulnerability in the Antivirus Page within the OneFS web administration interfa
26-03-2018 - 14:29 26-03-2018 - 14:29
CVE-2018-1188 3.5
Dell EMC Isilon versions between 8.1.0.0 - 8.1.0.1, 8.0.1.0 - 8.0.1.2, and 8.0.0.0 - 8.0.0.6, and versions 7.2.1.x is affected by a cross-site scripting vulnerability in the Authorization Providers page within the OneFS web administration interface.
26-03-2018 - 14:29 26-03-2018 - 14:29
CVE-2018-1187 3.5
Dell EMC Isilon versions between 8.1.0.0 - 8.1.0.1, 8.0.1.0 - 8.0.1.2, and 8.0.0.0 - 8.0.0.6 is affected by a cross-site scripting vulnerability in the Network Configuration page within the OneFS web administration interface. A malicious administrato
26-03-2018 - 14:29 26-03-2018 - 14:29
CVE-2018-1186 3.5
Dell EMC Isilon versions between 8.1.0.0 - 8.1.0.1, 8.0.1.0 - 8.0.1.2, and 8.0.0.0 - 8.0.0.6, versions 7.2.1.x, and version 7.1.1.11 is affected by a cross-site scripting vulnerability in the Cluster description of the OneFS web administration interf
26-03-2018 - 14:29 26-03-2018 - 14:29
CVE-2018-8979 6.8
Open-AudIT Professional 2.1 has CSRF, as demonstrated by modifying a user account or inserting XSS sequences via the credentials URI.
25-03-2018 - 15:29 25-03-2018 - 15:29
CVE-2018-8817 6.8
Wampserver before 3.1.3 has CSRF in add_vhost.php.
25-03-2018 - 15:29 25-03-2018 - 15:29
CVE-2018-9010 5.0
Intelbras TELEFONE IP TIP200/200 LITE 60.0.75.29 devices allow remote authenticated admins to read arbitrary files via the /cgi-bin/cgiServer.exx page parameter, aka absolute path traversal. In some cases, authentication can be achieved via the admin
25-03-2018 - 14:29 25-03-2018 - 14:29
CVE-2018-8947 5.0
rap2hpoutre Laravel Log Viewer before v0.13.0 relies on Base64 encoding for l, dl, and del requests, which makes it easier for remote attackers to bypass intended access restrictions, as demonstrated by reading arbitrary files via a dl request.
25-03-2018 - 12:29 25-03-2018 - 12:29
CVE-2018-7719 5.0
Acrolinx Server before 5.2.5 on Windows allows Directory Traversal.
25-03-2018 - 12:29 25-03-2018 - 12:29
CVE-2018-8903 3.5
Open-AudIT Professional 2.1 allows XSS via the Name or Description field on the Credentials screen.
22-03-2018 - 17:29 22-03-2018 - 17:29
CVE-2018-7520 7.5
An improper access control vulnerability has been identified in Geutebruck G-Cam/EFD-2250 Version 1.12.0.4 and Topline TopFD-2125 Version 3.15.1 IP cameras, which could allow a full configuration download, including passwords.
22-03-2018 - 14:29 22-03-2018 - 14:29
CVE-2018-1322 4.0
An administrator with user search entitlements in Apache Syncope 1.2.x before 1.2.11, 2.0.x before 2.0.8, and unsupported releases 1.0.x and 1.1.x which may be also affected, can recover sensitive security values using the fiql and orderby parameters
20-03-2018 - 13:29 20-03-2018 - 13:29
CVE-2018-1321 6.5
An administrator with report and template entitlements in Apache Syncope 1.2.x before 1.2.11, 2.0.x before 2.0.8, and unsupported releases 1.0.x and 1.1.x which may be also affected, can use XSL Transformations (XSLT) to perform malicious operations,
20-03-2018 - 13:29 20-03-2018 - 13:29
CVE-2018-8815 3.5
Cross-site scripting (XSS) vulnerability in the gallery function in Alkacon OpenCMS 10.5.3 allows remote attackers to inject arbitrary web script or HTML via a malicious SVG image.
20-03-2018 - 03:29 20-03-2018 - 03:29
CVE-2018-8811 6.8
Cross-site request forgery (CSRF) vulnerability in system/workplace/admin/accounts/user_role.jsp in OpenCMS 10.5.3 allows remote attackers to hijack the authentication of administrative users for requests that perform privilege escalation.
20-03-2018 - 03:29 20-03-2018 - 03:29
CVE-2018-7445 10.0
A buffer overflow was found in the MikroTik RouterOS SMB service when processing NetBIOS session request messages. Remote attackers with access to the service can exploit this vulnerability and gain code execution on the system. The overflow occurs b
19-03-2018 - 17:29 19-03-2018 - 17:29
CVE-2018-8732 3.5
Cross-site scripting (XSS) vulnerability in WampServer 3.1.1 allows remote attackers to inject arbitrary web script or HTML via the virtual_del parameter.
19-03-2018 - 16:29 19-03-2018 - 16:29
CVE-2018-1218 5.0
In Dell EMC NetWorker versions prior to 9.2.1.1, versions prior to 9.1.1.6, 9.0.x, and versions prior to 8.2.4.11, the 'nsrd' daemon causes a buffer overflow condition when handling certain messages. A remote unauthenticated attacker could potentiall
19-03-2018 - 14:29 19-03-2018 - 14:29
CVE-2018-7422 5.0
A Local File Inclusion vulnerability in the Site Editor plugin through 1.1.1 for WordPress allows remote attackers to retrieve arbitrary files via the ajax_path parameter to editor/extensions/pagebuilder/includes/ajax_shortcode_pattern.php, aka absol
19-03-2018 - 10:29 19-03-2018 - 10:29
CVE-2018-8770 5.0
Physical path Leakage exists in Western Bridge Cobub Razor 0.8.0 via generate.php, controllers/getConfigTest.php, controllers/getUpdateTest.php, controllers/postclientdataTest.php, controllers/posterrorTest.php, controllers/posteventTest.php, control
18-03-2018 - 02:29 18-03-2018 - 02:29
CVE-2018-6230 8.3
A SQL injection vulnerability in an Trend Micro Email Encryption Gateway 5.5 search configuration script could allow an attacker to execute SQL commands to upload and execute arbitrary code that may harm the target system.
15-03-2018 - 15:29 15-03-2018 - 15:29
CVE-2018-6229 10.0
A SQL injection vulnerability in an Trend Micro Email Encryption Gateway 5.5 edit policy script could allow an attacker to execute SQL commands to upload and execute arbitrary code that may harm the target system.
15-03-2018 - 15:29 15-03-2018 - 15:29
CVE-2018-6228 10.0
A SQL injection vulnerability in a Trend Micro Email Encryption Gateway 5.5 policy script could allow an attacker to execute SQL commands to upload and execute arbitrary code that may harm the target system.
15-03-2018 - 15:29 15-03-2018 - 15:29
CVE-2018-6227 3.5
A stored cross-site scripting (XSS) vulnerability in Trend Micro Email Encryption Gateway 5.5 could allow an attacker to inject client-side scripts into vulnerable systems.
15-03-2018 - 15:29 15-03-2018 - 15:29
CVE-2018-6226 3.5
Reflected cross-site scripting (XSS) vulnerabilities in two Trend Micro Email Encryption Gateway 5.5 configuration files could allow an attacker to inject client-side scripts into vulnerable systems.
15-03-2018 - 15:29 15-03-2018 - 15:29
CVE-2018-6225 4.0
An XML external entity injection (XXE) vulnerability in Trend Micro Email Encryption Gateway 5.5 could allow an authenticated user to expose a normally protected configuration script.
15-03-2018 - 15:29 15-03-2018 - 15:29
CVE-2018-6224 6.8
A lack of cross-site request forgery (CSRF) protection vulnerability in Trend Micro Email Encryption Gateway 5.5 could allow an attacker to submit authenticated requests to a user browsing an attacker-controlled domain.
15-03-2018 - 15:29 15-03-2018 - 15:29
CVE-2018-6223 5.0
A missing authentication for appliance registration vulnerability in Trend Micro Email Encryption Gateway 5.5 could allow an attacker to manipulate the registration process of the product to reset configuration parameters.
15-03-2018 - 15:29 15-03-2018 - 15:29
CVE-2018-6222 7.2
Arbitrary logs location in Trend Micro Email Encryption Gateway 5.5 could allow an attacker to change location of log files and be manipulated to execute arbitrary commands and attain command execution on a vulnerable system.
15-03-2018 - 15:29 15-03-2018 - 15:29
CVE-2018-6221 9.3
An unvalidated software update vulnerability in Trend Micro Email Encryption Gateway 5.5 could allow a man-in-the-middle attacker to tamper with an update file and inject their own.
15-03-2018 - 15:29 15-03-2018 - 15:29
CVE-2018-6220 7.5
An arbitrary file write vulnerability in Trend Micro Email Encryption Gateway 5.5 could allow an attacker to inject arbitrary data, which may lead to gaining code execution on vulnerable systems.
15-03-2018 - 15:29 15-03-2018 - 15:29
CVE-2018-6219 6.4
An Insecure Update via HTTP vulnerability in Trend Micro Email Encryption Gateway 5.5 could allow an attacker to eavesdrop and tamper with certain types of update data.
15-03-2018 - 15:29 15-03-2018 - 15:29
CVE-2018-8729 4.3
Multiple cross-site scripting (XSS) vulnerabilities in the Activity Log plugin before 2.4.1 for WordPress allow remote attackers to inject arbitrary JavaScript or HTML via a title that is not escaped.
15-03-2018 - 13:29 15-03-2018 - 13:29
CVE-2018-7886 4.6
An issue was discovered in CloudMe 1.11.0. An unauthenticated local attacker that can connect to the "CloudMe Sync" client application listening on 127.0.0.1 port 8888 can send a malicious payload causing a buffer overflow condition. This will result
14-03-2018 - 22:29 14-03-2018 - 22:29
CVE-2018-7756 10.0
RunExeFile.exe in the installer for DEWESoft X3 SP1 (64-bit) devices does not require authentication for sessions on TCP port 1999, which allows remote attackers to execute arbitrary code or access internal commands, as demonstrated by a RUN command
14-03-2018 - 21:29 14-03-2018 - 21:29
CVE-2018-7707 4.3
Cross-site scripting (XSS) vulnerability in SecurEnvoy SecurMail before 9.2.501 allows remote attackers to inject arbitrary web script or HTML via an HTML-formatted e-mail message.
14-03-2018 - 21:29 14-03-2018 - 21:29
CVE-2018-7706 4.0
Directory traversal vulnerability in SecurEnvoy SecurMail before 9.2.501 allows remote authenticated users to read arbitrary e-mail messages via a .. (dot dot) in the option2 parameter in an attachment action to secmail/getmessage.exe.
14-03-2018 - 21:29 14-03-2018 - 21:29
CVE-2018-7705 5.5
Directory traversal vulnerability in SecurEnvoy SecurMail before 9.2.501 allows remote authenticated users to read e-mail messages to arbitrary recipients via a .. (dot dot) in the filename parameter to secupload2/upload.aspx.
14-03-2018 - 21:29 14-03-2018 - 21:29
CVE-2018-7704 4.0
SecurEnvoy SecurMail before 9.2.501 allows remote authenticated users to read arbitrary e-mail messages via the option1 parameter in a reply action to secmail/getmessage.exe.
14-03-2018 - 21:29 14-03-2018 - 21:29
CVE-2018-7703 4.3
Cross-site scripting (XSS) vulnerability in SecurEnvoy SecurMail before 9.2.501 allows remote attackers to inject arbitrary web script or HTML via the mailboxid parameter to secmail/getmessage.exe.
14-03-2018 - 21:29 14-03-2018 - 21:29
CVE-2018-7702 6.4
SecurEnvoy SecurMail before 9.2.501 allows remote attackers to spoof transmission of arbitrary e-mail messages, resend e-mail messages to arbitrary recipients, or modify arbitrary message bodies and attachments by leveraging missing authentication an
14-03-2018 - 21:29 14-03-2018 - 21:29
CVE-2018-7701 5.8
Multiple cross-site request forgery (CSRF) vulnerabilities in SecurEnvoy SecurMail before 9.2.501 allow remote attackers to hijack the authentication of arbitrary users for requests that (1) delete e-mail messages via a delete action in a request to
14-03-2018 - 21:29 14-03-2018 - 21:29
CVE-2018-6329 7.5
It was discovered that the Unitrends Backup (UB) before 10.1.0 libbpext.so authentication could be bypassed with a SQL injection, allowing a remote attacker to place a privilege escalation exploit on the target system and subsequently execute arbitra
14-03-2018 - 15:29 14-03-2018 - 15:29
CVE-2018-6328 7.5
It was discovered that the Unitrends Backup (UB) before 10.1.0 user interface was exposed to an authentication bypass, which then could allow an unauthenticated user to inject arbitrary commands into its /api/hosts parameters using backquotes.
14-03-2018 - 15:29 14-03-2018 - 15:29
CVE-2018-0935 7.6
Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows remote code execution, due to how the sc
14-03-2018 - 13:29 14-03-2018 - 13:29
CVE-2018-0934 7.6
ChakraCore and Microsoft Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows remote code execution, due to how the Chakra scripting engine handles objects in memory, aka "Chakra Scripting Engine Memory Corruption Vulnerability". T
14-03-2018 - 13:29 14-03-2018 - 13:29
CVE-2018-0933 7.6
ChakraCore and Microsoft Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows remote code execution, due to how the Chakra scripting engine handles objects in memory, aka "Chakra Scripting Engine Memory Corruption Vulnerability". T
14-03-2018 - 13:29 14-03-2018 - 13:29
CVE-2018-0901 1.9
The Windows kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709, Windows Server 2016 and Windows Server, version 1709 allows an informa
14-03-2018 - 13:29 14-03-2018 - 13:29
CVE-2018-0897 1.9
The Windows kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709, Windows Server 2016 and Windows Server, version 1709 allows an informa
14-03-2018 - 13:29 14-03-2018 - 13:29
CVE-2018-0895 1.9
The Windows kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709, Windows Server 2016 and Windows Server, version 1709 allows an informa
14-03-2018 - 13:29 14-03-2018 - 13:29
CVE-2018-0894 1.9
The Windows kernel in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709, Windows Server 2016 and Windows Server, version 1709 allows an informa
14-03-2018 - 13:29 14-03-2018 - 13:29
CVE-2018-0891 4.3
ChakraCore, and Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, and Internet Explorer and Microsoft Edge in Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows
14-03-2018 - 13:29 14-03-2018 - 13:29
CVE-2018-0886 7.6
The Credential Security Support Provider protocol (CredSSP) in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709 Windows Server 2016 and Window
14-03-2018 - 13:29 14-03-2018 - 13:29
CVE-2018-0882 6.9
The Desktop Bridge in Windows 10 1607, 1703, and 1709, Windows Server 2016 and Windows Server, version 1709 allows an elevation of privilege vulnerability due to how the virtual registry is managed, aka "Windows Desktop Bridge Elevation of Privilege
14-03-2018 - 13:29 14-03-2018 - 13:29
CVE-2018-0880 6.9
The Desktop Bridge in Windows 10 1607, 1703, and 1709, Windows Server 2016 and Windows Server, version 1709 allows an elevation of privilege vulnerability due to how the virtual registry is managed, aka "Windows Desktop Bridge Elevation of Privilege
14-03-2018 - 13:29 14-03-2018 - 13:29
CVE-2018-0878 2.6
Windows Remote Assistance in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709, Windows Server 2016 and Windows Server, version 1709 allows an
14-03-2018 - 13:29 14-03-2018 - 13:29
CVE-2018-0877 7.2
The Desktop Bridge Virtual File System (VFS) in Windows 10 1607, 1703, and 1709, Windows Server 2016 and Windows Server, version 1709 allows an elevation of privilege vulnerability due to how file paths are managed, aka "Windows Desktop Bridge VFS El
14-03-2018 - 13:29 14-03-2018 - 13:29
CVE-2018-7474 7.5
An issue was discovered in Textpattern CMS 4.6.2 and earlier. It is possible to inject SQL code in the variable "qty" on the page index.php.
14-03-2018 - 10:29 14-03-2018 - 10:29
CVE-2018-8096 7.5
Datalust Seq before 4.2.605 is vulnerable to Authentication Bypass (with the attacker obtaining admin access) via '"Name":"isauthenticationenabled","Value":false' in an api/settings/setting-isauthenticationenabled PUT request.
13-03-2018 - 20:29 13-03-2018 - 20:29
CVE-2018-7750 7.5
transport.py in the SSH server implementation of Paramiko before 1.17.6, 1.18.x before 1.18.5, 2.0.x before 2.0.8, 2.1.x before 2.1.5, 2.2.x before 2.2.3, 2.3.x before 2.3.2, and 2.4.x before 2.4.1 does not properly check whether authentication is co
13-03-2018 - 14:29 13-03-2018 - 14:29
CVE-2018-1000094 6.5
CMS Made Simple version 2.2.5 contains a Remote Code Execution vulnerability in File Manager that can result in Allows an authenticated admin that has access to the file manager to execute code on the server. This attack appear to be exploitable via
12-03-2018 - 21:29 12-03-2018 - 21:29
CVE-2018-7538 7.5
A SQL injection vulnerability in the tracker functionality of Enalean Tuleap software engineering platform before 9.18 allows attackers to execute arbitrary SQL commands.
12-03-2018 - 17:29 12-03-2018 - 17:29
CVE-2017-2619 6.0
Samba before versions 4.6.1, 4.5.7 and 4.4.11 are vulnerable to a malicious client using a symlink race to allow access to areas of the server file system not exported under the share definition.
12-03-2018 - 11:29 12-03-2018 - 11:29
CVE-2018-8057 7.5
A SQL Injection vulnerability exists in Western Bridge Cobub Razor 0.8.0 via the channel_name or platform parameter in a /index.php?/manage/channel/addchannel request, related to /application/controllers/manage/channel.php.
11-03-2018 - 14:29 11-03-2018 - 14:29
CVE-2018-8056 5.0
Physical path Leakage exists in Western Bridge Cobub Razor 0.8.0 via an invalid channel_name parameter to /index.php?/manage/channel/addchannel or a direct request to /export.php.
11-03-2018 - 14:29 11-03-2018 - 14:29
CVE-2018-7582 5.0
WebLog Expert Web Server Enterprise 9.4 allows Remote Denial Of Service (daemon crash) via a long HTTP Accept Header to TCP port 9991.
09-03-2018 - 15:29 09-03-2018 - 15:29
CVE-2018-7581 4.6
\ProgramData\WebLog Expert\WebServer\WebServer.cfg in WebLog Expert Web Server Enterprise 9.4 has weak permissions (BUILTIN\Users:(ID)C), which allows local users to set a cleartext password and login as admin.
09-03-2018 - 15:29 09-03-2018 - 15:29
CVE-2018-8002 6.8
In PoDoFo 0.9.5, there exists an infinite loop vulnerability in PdfParserObject::ParseFileComplete() in PdfParserObject.cpp which may result in stack overflow. Remote attackers could leverage this vulnerability to cause a denial-of-service or possibl
09-03-2018 - 14:29 09-03-2018 - 14:29
CVE-2018-7890 10.0
A remote code execution issue was discovered in Zoho ManageEngine Applications Manager before 13.6 (build 13640). The publicly accessible testCredential.do endpoint takes multiple user inputs and validates supplied credentials by accessing a specifie
08-03-2018 - 17:29 08-03-2018 - 17:29
CVE-2017-15367 7.5
Bacula-web before 8.0.0-rc2 is affected by multiple SQL Injection vulnerabilities that could allow an attacker to access the Bacula database and, depending on configuration, escalate privileges on the server.
07-03-2018 - 15:29 07-03-2018 - 15:29
CVE-2018-7746 4.3
An issue was discovered in Western Bridge Cobub Razor 0.7.2. Authentication is not required for /index.php?/manage/channel/modifychannel. For example, with a crafted channel name, stored XSS is triggered during a later /index.php?/manage/channel requ
07-03-2018 - 12:29 07-03-2018 - 12:29
CVE-2018-7745 5.0
An issue was discovered in Western Bridge Cobub Razor 0.7.2. Authentication is not required for /index.php?/install/installation/createuserinfo requests, resulting in account creation.
07-03-2018 - 12:29 07-03-2018 - 12:29
CVE-2018-7739 7.5
antsle antman before 0.9.1a allows remote attackers to bypass authentication via invalid characters in the username and password parameters, as demonstrated by a username=>&password=%0a string to the /login URI. This allows obtaining root permissions
06-03-2018 - 21:29 06-03-2018 - 21:29
CVE-2018-7737 5.0
In Z-BlogPHP 1.5.1.1740, there is Web Site physical path leakage, as demonstrated by admin_footer.php or admin_footer.php.
06-03-2018 - 16:29 06-03-2018 - 16:29
CVE-2018-7736 4.3
In Z-BlogPHP 1.5.1.1740, cmd.php has XSS via the ZC_BLOG_SUBNAME parameter or ZC_UPLOAD_FILETYPE parameter.
06-03-2018 - 16:29 06-03-2018 - 16:29
CVE-2018-7182 5.0
The ctl_getitem method in ntpd in ntp-4.2.8p6 before 4.2.8p11 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted mode 6 packet with a ntpd instance from 4.2.8p6 through 4.2.8p10.
06-03-2018 - 15:29 06-03-2018 - 15:29
CVE-2018-0491 5.0
A use-after-free issue was discovered in Tor 0.3.2.x before 0.3.2.10. It allows remote attackers to cause a denial of service (relay crash) because the KIST implementation allows a channel to be added more than once in the pending list.
05-03-2018 - 10:29 05-03-2018 - 10:29
CVE-2018-1000115 5.0
Memcached version 1.5.5 contains an Insufficient Control of Network Message Volume (Network Amplification, CWE-406) vulnerability in the UDP support of the memcached server that can result in denial of service via network flood (traffic amplification
05-03-2018 - 09:29 05-03-2018 - 09:29
CVE-2018-7661 2.9
Papenmeier WiFi Baby Monitor Free & Lite before 2.02.2 allows remote attackers to obtain audio data via certain requests to TCP ports 8258 and 8257.
04-03-2018 - 17:29 04-03-2018 - 17:29
CVE-2018-7653 4.3
In YzmCMS 3.6, index.php has XSS via the a, c, or m parameter.
04-03-2018 - 14:29 04-03-2018 - 14:29
CVE-2018-7583 5.0
Proxy.exe in DualDesk 20 allows Remote Denial Of Service (daemon crash) via a long string to TCP port 5500.
03-03-2018 - 20:29 03-03-2018 - 20:29
CVE-2018-7449 5.0
SEGGER FTP Server for Windows before 3.22a allows remote attackers to cause a denial of service (daemon crash) via an invalid LIST, STOR, or RETR command.
03-03-2018 - 20:29 03-03-2018 - 20:29
CVE-2017-14798 6.9
A race condition in the postgresql init script could be used by attackers able to access the postgresql account to escalate their privileges to root.
01-03-2018 - 15:29 01-03-2018 - 15:29
CVE-2018-7584 7.5
In PHP through 5.6.33, 7.0.x before 7.0.28, 7.1.x through 7.1.14, and 7.2.x through 7.2.2, there is a stack-based buffer under-read while parsing an HTTP response in the php_stream_url_wrap_http_ex function in ext/standard/http_fopen_wrapper.c. This
01-03-2018 - 14:29 01-03-2018 - 14:29
CVE-2018-7573 10.0
An issue was discovered in FTPShell Client 6.7. A remote FTP server can send 400 characters of 'F' in conjunction with the FTP 220 response code to crash the application; after this overflow, one can run arbitrary code on the victim machine. This is
01-03-2018 - 12:29 01-03-2018 - 12:29
CVE-2018-2380 6.5
SAP CRM, 7.01, 7.02,7.30, 7.31, 7.33, 7.54, allows an attacker to exploit insufficient validation of path information provided by users, thus characters representing "traverse to parent directory" are passed through to the file APIs.
01-03-2018 - 12:29 01-03-2018 - 12:29
CVE-2018-6947 7.2
An uninitialised stack variable in the nxfuse component that is part of the Open Source DokanFS library shipped with NoMachine 6.0.66_2 and earlier allows a local low privileged user to gain elevation of privileges on Windows 7 (32 and 64bit), and de
28-02-2018 - 17:29 28-02-2018 - 17:29
CVE-2018-7264 7.5
The Pictview image processing library embedded in the ActivePDF toolkit through 2018.1.0.18321 is prone to multiple out of bounds write and sign errors, allowing a remote attacker to execute arbitrary code on vulnerable applications using the ActiveP
28-02-2018 - 12:29 28-02-2018 - 12:29
CVE-2017-9447 5.0
In the web interface of Parallels Remote Application Server (RAS) 15.5 Build 16140, a vulnerability exists due to improper validation of the file path when requesting a resource under the "RASHTML5Gateway" directory. A remote, unauthenticated attacke
28-02-2018 - 10:29 28-02-2018 - 10:29
CVE-2018-7482 5.0
** DISPUTED ** The K2 component 2.8.0 for Joomla! has Incorrect Access Control with directory traversal, allowing an attacker to download arbitrary files, as demonstrated by a view=media&task=connector&cmd=file&target=l1_../configuration.php&download
28-02-2018 - 02:29 28-02-2018 - 02:29
CVE-2018-7477 7.5
SQL Injection exists in PHP Scripts Mall School Management Script 3.0.4 via the Username and Password fields to parents/Parent_module/parent_login.php.
28-02-2018 - 02:29 28-02-2018 - 02:29
CVE-2018-6481 7.5
A buffer overflow vulnerability in the control protocol of Disk Savvy Enterprise v10.4.18 allows remote attackers to execute arbitrary code by sending a crafted packet to TCP port 9124.
27-02-2018 - 14:29 27-02-2018 - 14:29
CVE-2018-7490 5.0
uWSGI before 2.0.17 mishandles a DOCUMENT_ROOT check during use of the --php-docroot option, allowing directory traversal.
26-02-2018 - 17:29 26-02-2018 - 17:29
CVE-2018-7448 8.5
Remote code execution vulnerability in /cmsms-2.1.6-install.php/index.php in CMS Made Simple version 2.1.6 allows remote attackers to inject arbitrary PHP code via the "timezone" parameter in step 4 of a fresh installation procedure.
26-02-2018 - 12:29 26-02-2018 - 12:29
CVE-2017-18195 5.0
An issue was discovered in tools/conversations/view_ajax.php in Concrete5 before 8.3.0. An unauthenticated user can enumerate comments from all blog posts by POSTing requests to /index.php/tools/required/conversations/view_ajax with incremental 'cnvI
26-02-2018 - 12:29 26-02-2018 - 12:29
CVE-2018-7466 6.0
install/installNewDB.php in TestLink through 1.9.16 allows remote attackers to conduct injection attacks by leveraging control over DB LOGIN NAMES data during installation to provide a long, crafted value.
25-02-2018 - 02:29 25-02-2018 - 02:29
CVE-2018-6859 7.5
SQL Injection exists in PHP Scripts Mall Schools Alert Management Script 2.0.2 via the Login Parameter.
23-02-2018 - 13:29 23-02-2018 - 13:29
CVE-2018-6868 3.5
Cross Site Scripting (XSS) exists in PHP Scripts Mall Slickdeals / DealNews / Groupon Clone Script 3.0.2 via a User Profile Field parameter.
23-02-2018 - 08:29 23-02-2018 - 08:29
CVE-2018-6867 3.5
Cross Site Scripting (XSS) exists in PHP Scripts Mall Alibaba Clone Script 1.0.2 via a profile parameter.
23-02-2018 - 08:29 23-02-2018 - 08:29
CVE-2018-6866 3.5
Cross Site Scripting (XSS) exists in PHP Scripts Mall Learning and Examination Management System Script 2.3.1 via a crafted message.
23-02-2018 - 08:29 23-02-2018 - 08:29
CVE-2018-7319 7.5
SQL Injection exists in the OS Property Real Estate 3.12.7 component for Joomla! via the cooling_system1, heating_system1, or laundry parameter.
22-02-2018 - 14:29 22-02-2018 - 14:29
CVE-2018-7318 7.5
SQL Injection exists in the CheckList 1.1.1 component for Joomla! via the title_search, tag_search, name_search, description_search, or filter_order parameter.
22-02-2018 - 14:29 22-02-2018 - 14:29
CVE-2018-7317 5.0
Backup Download exists in the Proclaim 9.1.1 component for Joomla! via a direct request for a .sql file under backup/.
22-02-2018 - 14:29 22-02-2018 - 14:29
CVE-2018-7316 7.5
Arbitrary File Upload exists in the Proclaim 9.1.1 component for Joomla! via a mediafileform action.
22-02-2018 - 14:29 22-02-2018 - 14:29
CVE-2018-7315 7.5
SQL Injection exists in the Ek Rishta 2.9 component for Joomla! via the gender, age1, age2, religion, mothertounge, caste, or country parameter.
22-02-2018 - 14:29 22-02-2018 - 14:29
CVE-2018-7314 7.5
SQL Injection exists in the PrayerCenter 3.0.2 component for Joomla! via the sessionid parameter, a different vulnerability than CVE-2008-6429.
22-02-2018 - 14:29 22-02-2018 - 14:29
CVE-2018-7312 7.5
SQL Injection exists in the Alexandria Book Library 3.1.2 component for Joomla! via the letter parameter.
22-02-2018 - 14:29 22-02-2018 - 14:29
CVE-2018-7300 10.0
Directory Traversal / Arbitrary File Write / Remote Code Execution in the User.setLanguage method in eQ-3 AG Homematic CCU2 2.29.2 and earlier allows remote attackers to write arbitrary files to the device's filesystem. This vulnerability can be expl
22-02-2018 - 14:29 22-02-2018 - 14:29
CVE-2018-7297 10.0
Remote Code Execution in the TCL script interpreter in eQ-3 AG Homematic CCU2 2.29.2 and earlier allows remote attackers to obtain read/write access and execute system commands on the device. This vulnerability can be exploited by unauthenticated att
22-02-2018 - 14:29 22-02-2018 - 14:29
CVE-2018-7313 7.5
SQL Injection exists in the CW Tags 2.0.6 component for Joomla! via the searchtext array parameter.
22-02-2018 - 09:29 22-02-2018 - 09:29
CVE-2018-7286 4.0
An issue was discovered in Asterisk through 13.19.1, 14.x through 14.7.5, and 15.x through 15.2.1, and Certified Asterisk through 13.18-cert2. res_pjsip allows remote authenticated users to crash Asterisk (segmentation fault) by sending a number of S
21-02-2018 - 19:29 21-02-2018 - 19:29
CVE-2018-7284 5.0
A Buffer Overflow issue was discovered in Asterisk through 13.19.1, 14.x through 14.7.5, and 15.x through 15.2.1, and Certified Asterisk through 13.18-cert2. When processing a SUBSCRIBE request, the res_pjsip_pubsub module stores the accepted formats
21-02-2018 - 19:29 21-02-2018 - 19:29
CVE-2018-6936 3.5
Cross Site Scripting (XSS) exists on the D-Link DIR-600M C1 3.01 via the SSID or the name of a user account.
21-02-2018 - 17:29 21-02-2018 - 17:29
CVE-2018-7289 4.3
An issue was discovered in armadito-windows-driver/src/communication.c in Armadito 0.12.7.2. Malware with filenames containing pure UTF-16 characters can bypass detection. The user-mode service will fail to open the file for scanning after the conver
21-02-2018 - 13:29 21-02-2018 - 13:29
CVE-2018-7273 4.9
In the Linux kernel through 4.15.4, the floppy driver reveals the addresses of kernel functions and global variables using printk calls within the function show_floppy in drivers/block/floppy.c. An attacker can read this information from dmesg and us
20-02-2018 - 19:29 20-02-2018 - 19:29
CVE-2017-6192 4.3
Buffer overflow in APNGDis 2.8 and earlier allows a remote attackers to cause denial of service and possibly execute arbitrary code via a crafted image containing a malformed chunk size descriptor.
20-02-2018 - 11:29 20-02-2018 - 11:29
CVE-2018-6941 6.8
A /shell?cmd= CSRF issue exists in the HTTPD component of NAT32 v2.2 Build 22284 devices that can be exploited for Remote Code Execution in conjunction with XSS.
20-02-2018 - 10:29 20-02-2018 - 10:29
CVE-2018-6940 4.3
A /shell?cmd= XSS issue exists in the HTTPD component of NAT32 v2.2 Build 22284 devices that can be exploited for Remote Code Execution in conjunction with CSRF.
20-02-2018 - 10:29 20-02-2018 - 10:29
CVE-2017-16356 4.3
Reflected XSS in Kubik-Rubik SIGE (aka Simple Image Gallery Extended) before 3.3.0 allows attackers to execute JavaScript in a victim's browser by having them visit a plugins/content/sige/plugin_sige/print.php link with a crafted img, name, or captio
20-02-2018 - 10:29 20-02-2018 - 10:29
CVE-2016-6272 5.0
XPath injection vulnerability in Epic MyChart allows remote attackers to access contents of an XML document containing static display strings, such as field labels, via the topic parameter to help.asp. NOTE: this was originally reported as a SQL inje
20-02-2018 - 10:29 20-02-2018 - 10:29
CVE-2018-7254 6.8
The ParseCaffHeaderConfig function of the cli/caff.c file of WavPack 5.1.0 allows a remote attacker to cause a denial-of-service (global buffer over-read), or possibly trigger a buffer overflow or incorrect memory allocation, via a maliciously crafte
19-02-2018 - 18:29 19-02-2018 - 18:29
CVE-2018-6024 7.5
SQL Injection exists in the Project Log 1.5.3 component for Joomla! via the search parameter.
18-02-2018 - 15:29 18-02-2018 - 15:29
CVE-2018-7216 6.0
Cross-site request forgery (CSRF) vulnerability in esop/toolkit/profile/regData.do in Bravo Tejari Procurement Portal allows remote authenticated users to hijack the authentication of application users for requests that modify their personal data by
18-02-2018 - 01:29 18-02-2018 - 01:29
CVE-2018-7198 4.3
October CMS through 1.0.431 allows XSS by entering HTML on the Add Posts page.
17-02-2018 - 22:29 17-02-2018 - 22:29
CVE-2018-7180 7.5
SQL Injection exists in the Saxum Astro 4.0.14 component for Joomla! via the publicid parameter.
17-02-2018 - 02:29 17-02-2018 - 02:29
CVE-2018-7179 7.5
SQL Injection exists in the SquadManagement 1.0.3 component for Joomla! via the id parameter.
17-02-2018 - 02:29 17-02-2018 - 02:29
CVE-2018-7178 7.5
SQL Injection exists in the Saxum Picker 3.2.10 component for Joomla! via the publicid parameter.
17-02-2018 - 02:29 17-02-2018 - 02:29
CVE-2018-7177 7.5
SQL Injection exists in the Saxum Numerology 3.0.4 component for Joomla! via the publicid parameter.
17-02-2018 - 02:29 17-02-2018 - 02:29
CVE-2018-6585 7.5
SQL Injection exists in the JTicketing 2.0.16 component for Joomla! via a view=events action with a filter_creator or filter_events_cat parameter.
17-02-2018 - 02:29 17-02-2018 - 02:29
CVE-2018-6584 7.5
SQL Injection exists in the DT Register 3.2.7 component for Joomla! via a task=edit&id= request.
17-02-2018 - 02:29 17-02-2018 - 02:29
CVE-2018-6583 7.5
SQL Injection exists in the Timetable Responsive Schedule 1.5 component for Joomla! via a view=event&alias= request.
17-02-2018 - 02:29 17-02-2018 - 02:29
CVE-2018-6396 7.5
SQL Injection exists in the Google Map Landkarten through 4.2.3 component for Joomla! via the cid or id parameter in a layout=form_markers action, or the map parameter in a layout=default action.
17-02-2018 - 02:29 17-02-2018 - 02:29
CVE-2018-6394 7.5
SQL Injection exists in the InviteX 3.0.5 component for Joomla! via the invite_type parameter in a view=invites action.
17-02-2018 - 02:29 17-02-2018 - 02:29
CVE-2018-6373 7.5
SQL Injection exists in the Fastball 2.5 component for Joomla! via the season parameter in a view=player action.
17-02-2018 - 02:29 17-02-2018 - 02:29
CVE-2018-6372 7.5
SQL Injection exists in the JB Bus 2.3 component for Joomla! via the order_number parameter.
17-02-2018 - 02:29 17-02-2018 - 02:29
CVE-2018-6370 7.5
SQL Injection exists in the NeoRecruit 4.1 component for Joomla! via the (1) PATH_INFO or (2) name of a .html file under the all-offers/ URI.
17-02-2018 - 02:29 17-02-2018 - 02:29
CVE-2018-6368 7.5
SQL Injection exists in the JomEstate PRO through 3.7 component for Joomla! via the id parameter in a task=detailed action.
17-02-2018 - 02:29 17-02-2018 - 02:29
CVE-2018-6006 7.5
SQL Injection exists in the JS Autoz 1.0.9 component for Joomla! via the vtype, pre, or prs parameter.
17-02-2018 - 02:29 17-02-2018 - 02:29
CVE-2018-6005 7.5
SQL Injection exists in the Realpin through 1.5.04 component for Joomla! via the pinboard parameter.
17-02-2018 - 02:29 17-02-2018 - 02:29
CVE-2018-6004 7.5
SQL Injection exists in the File Download Tracker 3.0 component for Joomla! via the dynfield[phone] or sess parameter.
17-02-2018 - 02:29 17-02-2018 - 02:29
CVE-2018-5994 7.5
SQL Injection exists in the JS Jobs 1.1.9 component for Joomla! via the zipcode parameter in a newest-jobs request, or the ta parameter in a view_resume request.
17-02-2018 - 02:29 17-02-2018 - 02:29
CVE-2018-5993 7.5
SQL Injection exists in the Aist through 2.0 component for Joomla! via the id parameter in a view=showvacancy request.
17-02-2018 - 02:29 17-02-2018 - 02:29
CVE-2018-5992 7.5
SQL Injection exists in the Staff Master through 1.0 RC 1 component for Joomla! via the name parameter in a view=staff request.
17-02-2018 - 02:29 17-02-2018 - 02:29
CVE-2018-5991 7.5
SQL Injection exists in the Form Maker 3.6.12 component for Joomla! via the id, from, or to parameter in a view=stats request, a different vulnerability than CVE-2015-2798.
17-02-2018 - 02:29 17-02-2018 - 02:29
CVE-2018-5990 7.5
SQL Injection exists in the AllVideos Reloaded 1.2.x component for Joomla! via the divid parameter.
17-02-2018 - 02:29 17-02-2018 - 02:29
CVE-2018-5989 7.5
SQL Injection exists in the ccNewsletter 2.x component for Joomla! via the id parameter in a task=removeSubscriber action, a related issue to CVE-2011-5099.
17-02-2018 - 02:29 17-02-2018 - 02:29
CVE-2018-5987 7.5
SQL Injection exists in the Pinterest Clone Social Pinboard 2.0 component for Joomla! via the pin_id or user_id parameter in a task=getlikeinfo action, the ends parameter in a view=gift action, the category parameter in a view=home action, the uid pa
17-02-2018 - 02:29 17-02-2018 - 02:29
CVE-2018-5983 7.5
SQL Injection exists in the JquickContact 1.3.2.2.1 component for Joomla! via a task=refresh&sid= request.
17-02-2018 - 02:29 17-02-2018 - 02:29
CVE-2018-5982 7.5
SQL Injection exists in the Advertisement Board 3.1.0 component for Joomla! via a task=show_rss_categories&catname= request.
17-02-2018 - 02:29 17-02-2018 - 02:29
CVE-2018-5981 7.5
SQL Injection exists in the Gallery WD 1.3.6 component for Joomla! via the tag_id parameter or gallery_id parameter.
17-02-2018 - 02:29 17-02-2018 - 02:29
CVE-2018-5980 7.5
SQL Injection exists in the Solidres 2.5.1 component for Joomla! via the direction parameter in a hub.search action.
17-02-2018 - 02:29 17-02-2018 - 02:29
CVE-2018-5975 7.5
SQL Injection exists in the Smart Shoutbox 3.0.0 component for Joomla! via the shoutauthor parameter to the archive URI.
17-02-2018 - 02:29 17-02-2018 - 02:29
CVE-2018-5974 7.5
SQL Injection exists in the SimpleCalendar 3.1.9 component for Joomla! via the catid array parameter.
17-02-2018 - 02:29 17-02-2018 - 02:29
CVE-2018-5971 7.5
SQL Injection exists in the MediaLibrary Free 4.0.12 component for Joomla! via the id parameter or the mid array parameter.
17-02-2018 - 02:29 17-02-2018 - 02:29
CVE-2018-5970 7.5
SQL Injection exists in the JGive 2.0.9 component for Joomla! via the filter_org_ind_type or campaign_countries parameter.
17-02-2018 - 02:29 17-02-2018 - 02:29
CVE-2018-7176 6.8
FrontAccounting 2.4.3 suffers from a CSRF flaw, which leads to adding a user account via admin/users.php (aka the "add user" feature of the User Permissions page).
15-02-2018 - 23:29 15-02-2018 - 23:29
CVE-2018-5767 7.5
An issue was discovered on Tenda AC15 V15.03.1.16_multi devices. A remote, unauthenticated attacker can gain remote code execution on the device with a crafted password parameter for the COOKIE header.
15-02-2018 - 18:29 15-02-2018 - 18:29
CVE-2017-8982 5.0
A Remote Authentication Restriction Bypass vulnerability in HPE Intelligent Management Center (iMC) PLAT version 7.3 E0504P4 was found.
15-02-2018 - 17:29 15-02-2018 - 17:29
CVE-2017-5817 10.0
A Remote Code Execution vulnerability in HPE Intelligent Management Center (iMC) PLAT version 7.3 E0504P04 was found.
15-02-2018 - 17:29 15-02-2018 - 17:29
CVE-2017-5816 10.0
A Remote Code Execution vulnerability in HPE Intelligent Management Center (iMC) PLAT version 7.3 E0504P04 was found.
15-02-2018 - 17:29 15-02-2018 - 17:29
CVE-2017-5815 10.0
A Remote Code Execution vulnerability in HPE Intelligent Management Center (iMC) PLAT version 7.3 E0504P04 was found.
15-02-2018 - 17:29 15-02-2018 - 17:29
CVE-2017-5799 6.5
A Remote Code Execution vulnerability in HPE OpenCall Media Platform (OCMP) was found. The vulnerability impacts OCMP versions prior to 3.4.2 RP201 (for OCMP 3.x), all versions prior to 4.4.7 RP702 (for OCMP 4.x).
15-02-2018 - 17:29 15-02-2018 - 17:29
CVE-2017-5798 4.3
A Remote Code Execution vulnerability in HPE OpenCall Media Platform (OCMP) was found. The vulnerability impacts OCMP versions prior to 3.4.2 RP201 (for OCMP 3.x), all versions prior to 4.4.7 RP702 (for OCMP 4.x).
15-02-2018 - 17:29 15-02-2018 - 17:29
CVE-2017-5792 7.5
A Remote Code Execution vulnerability in HPE Intelligent Management Center (iMC) PLAT version 7.3 E0504P2 was found.
15-02-2018 - 17:29 15-02-2018 - 17:29
CVE-2017-12557 10.0
A Remote Code Execution vulnerability in HPE intelligent Management Center (iMC) PLAT version IMC Plat 7.3 E0504P2 and earlier was found.
15-02-2018 - 17:29 15-02-2018 - 17:29
CVE-2017-12542 10.0
A authentication bypass and execution of code vulnerability in HPE Integrated Lights-out 4 (iLO 4) version prior to 2.53 was found.
15-02-2018 - 17:29 15-02-2018 - 17:29
CVE-2017-12500 9.0
A Remote Code Execution vulnerability in HPE Intelligent Management Center (iMC) PLAT version PLAT 7.3 (E0504) was found. The problem was resolved in HPE Intelligent Management Center PLAT v7.3 (E0506) or any subsequent version.
15-02-2018 - 17:29 15-02-2018 - 17:29
CVE-2016-8523 9.0
A Remote Arbitrary Code Execution vulnerability in HPE Smart Storage Administrator version before v2.60.18.0 was found.
15-02-2018 - 17:29 15-02-2018 - 17:29
CVE-2018-1041 5.0
A vulnerability was found in the way RemoteMessageChannel, introduced in jboss-remoting versions 3.3.10, reads from an empty buffer. An attacker could use this flaw to cause denial of service via high CPU caused by an infinite loop.
15-02-2018 - 12:29 15-02-2018 - 12:29
CVE-2017-12718 6.8
A Classic Buffer Overflow issue was discovered in Smiths Medical Medfusion 4000 Wireless Syringe Infusion Pump, Version 1.1, 1.5, and 1.6. A third-party component used in the pump does not verify input buffer size prior to copying, leading to a buffe
15-02-2018 - 05:29 15-02-2018 - 05:29
CVE-2018-0866 9.3
Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows remote code execution, due to how the sc
14-02-2018 - 21:29 14-02-2018 - 21:29
CVE-2018-0860 7.6
Microsoft Edge and ChakraCore in Microsoft Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows remote code execution, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability
14-02-2018 - 21:29 14-02-2018 - 21:29
CVE-2018-0840 9.3
Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, and Internet Explorer and Microsoft Edge in Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows
14-02-2018 - 21:29 14-02-2018 - 21:29
CVE-2018-0838 7.6
Microsoft Edge and ChakraCore in Microsoft Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows remote code execution, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability
14-02-2018 - 21:29 14-02-2018 - 21:29
CVE-2018-0837 7.6
Microsoft Edge and ChakraCore in Microsoft Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows remote code execution, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability
14-02-2018 - 21:29 14-02-2018 - 21:29
CVE-2018-0835 7.6
Microsoft Edge and ChakraCore in Microsoft Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows remote code execution, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability
14-02-2018 - 21:29 14-02-2018 - 21:29
CVE-2018-0834 9.3
Microsoft Edge and ChakraCore in Microsoft Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows remote code execution, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability
14-02-2018 - 21:29 14-02-2018 - 21:29
CVE-2018-0833 6.3
The Microsoft Server Message Block 2.0 and 3.0 (SMBv2/SMBv3) client in Windows 8.1 and RT 8.1 and Windows Server 2012 R2 allows a denial of service vulnerability due to how specially crafted requests are handled, aka "SMBv2/SMBv3 Null Dereference Den
14-02-2018 - 21:29 14-02-2018 - 21:29
CVE-2018-0832 1.9
The Windows kernel in Windows 8.1 and RT 8.1, Windows Server 2012 R2, Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allows an information disclosure vulnerability due to how objects in memory are han
14-02-2018 - 21:29 14-02-2018 - 21:29
CVE-2018-0826 4.4
Windows Storage Services in Windows 10 versions 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allows an elevation of privilege vulnerability due to the way objects are handled in memory, aka "Windows Storage Services
14-02-2018 - 21:29 14-02-2018 - 21:29
CVE-2018-0823 4.4
The Named Pipe File System in Windows 10 version 1709 and Windows Server, version 1709 allows an elevation of privilege vulnerability due to the way the Named Pipe File System handles objects, aka "Named Pipe File System Elevation of Privilege Vulner
14-02-2018 - 21:29 14-02-2018 - 21:29
CVE-2018-0822 4.4
NTFS in Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allows an elevation of privilege vulnerability due to the way NTFS handles objects, aka "Windows NTFS Global Reparse Point Elevation of Privilege
14-02-2018 - 21:29 14-02-2018 - 21:29
CVE-2018-0821 4.4
AppContainer in Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allows an elevation of privilege vulnerability due to the way constrained impersonations are handled, aka "Windows AppContainer Elevation
14-02-2018 - 21:29 14-02-2018 - 21:29
CVE-2018-6928 7.5
PHP Scripts Mall News Website Script 2.0.4 has SQL Injection via a search term.
13-02-2018 - 12:29 13-02-2018 - 12:29
CVE-2018-6911 10.0
The VBWinExec function in Node\AspVBObj.dll in Advantech WebAccess 8.3.0 allows remote attackers to execute arbitrary OS commands via a single argument (aka the command parameter).
13-02-2018 - 09:29 13-02-2018 - 09:29
CVE-2017-13236 4.6
In the KeyStore service, there is a permissions bypass that allows access to protected resources. This could lead to local escalation of privilege with system execution privileges needed. User interaction is not needed for exploitation. Product: Andr
12-02-2018 - 14:29 12-02-2018 - 14:29
CVE-2018-6889 6.5
An issue was discovered in Typesetter 5.1. It suffers from a Host header injection vulnerability, Using this attack, a malicious user can poison the web cache or perform advanced password reset attacks or even trigger arbitrary user re-direction.
11-02-2018 - 22:29 11-02-2018 - 22:29
CVE-2018-6888 6.0
An issue was discovered in Typesetter 5.1. The User Permissions page (aka Admin/Users) suffers from critical flaw of Cross Site Request forgery: using a forged HTTP request, a malicious user can lead a user to unknowingly create / delete or modify a
11-02-2018 - 22:29 11-02-2018 - 22:29
CVE-2018-6864 3.5
Cross Site Scripting (XSS) exists in PHP Scripts Mall Multi religion Responsive Matrimonial 4.7.2 via a user profile update parameter.
11-02-2018 - 22:29 11-02-2018 - 22:29
CVE-2018-6863 7.5
SQL Injection exists in PHP Scripts Mall Select Your College Script 2.0.2 via a Login Parameter.
11-02-2018 - 22:29 11-02-2018 - 22:29
CVE-2018-6862 3.5
Cross Site Scripting (XSS) exists in PHP Scripts Mall Bitcoin MLM Software 1.0.2 via a profile field.
11-02-2018 - 22:29 11-02-2018 - 22:29
CVE-2018-6861 3.5
Cross Site Scripting (XSS) exists in PHP Scripts Mall Lawyer Search Script 1.0.2 via a profile update parameter.
11-02-2018 - 22:29 11-02-2018 - 22:29
CVE-2018-6860 6.5
Arbitrary File Upload and Remote Code Execution exist in PHP Scripts Mall Schools Alert Management Script 2.0.2 via a profile picture.
11-02-2018 - 22:29 11-02-2018 - 22:29
CVE-2018-6858 3.5
Cross Site Scripting (XSS) exists in PHP Scripts Mall Facebook Clone Script.
11-02-2018 - 22:29 11-02-2018 - 22:29
CVE-2018-6845 4.3
PHP Scripts Mall Multi Language Olx Clone Script 2.0.6 has XSS via the Leave Comment field.
11-02-2018 - 22:29 11-02-2018 - 22:29
CVE-2018-6892 7.5
An issue was discovered in CloudMe before 1.11.0. An unauthenticated remote attacker that can connect to the "CloudMe Sync" client application listening on port 8888 can send a malicious payload causing a buffer overflow condition. This will result i
11-02-2018 - 13:29 11-02-2018 - 13:29
CVE-2018-1000049 6.0
Nanopool Claymore Dual Miner version 7.3 and earlier contains a remote code execution vulnerability by abusing the miner API. The flaw can be exploited only if the software is executed with read/write mode enabled.
09-02-2018 - 18:29 09-02-2018 - 18:29
CVE-2015-1862 6.9
The crash reporting feature in Abrt allows local users to gain privileges by leveraging an execve by root after a chroot into a user-specified directory in a namedspaced environment.
09-02-2018 - 17:29 09-02-2018 - 17:29
CVE-2018-6871 5.0
LibreOffice before 5.4.5 and 6.x before 6.0.1 allows remote attackers to read arbitrary files via =WEBSERVICE calls in a document, which use the COM.MICROSOFT.WEBSERVICE function.
09-02-2018 - 01:29 09-02-2018 - 01:29
CVE-2018-6789 7.5
An issue was discovered in the base64d function in the SMTP listener in Exim before 4.90.1. By sending a handcrafted message, a buffer overflow may happen. This can be used to execute code remotely.
08-02-2018 - 18:29 08-02-2018 - 18:29
CVE-2018-6180 5.0
A flaw in the profile section of Online Voting System 1.0 allows an unauthenticated user to set an arbitrary password for other accounts.
08-02-2018 - 18:29 08-02-2018 - 18:29
CVE-2017-5124 4.3
Incorrect application of sandboxing in Blink in Google Chrome prior to 62.0.3202.62 allowed a remote attacker to inject arbitrary scripts or HTML (UXSS) via a crafted MHTML page.
07-02-2018 - 18:29 07-02-2018 - 18:29
CVE-2018-6655 3.5
PHP Scripts Mall Doctor Search Script 1.0.2 has Stored XSS via an arbitrary profile field.
07-02-2018 - 16:29 07-02-2018 - 16:29
CVE-2018-6794 5.0
Suricata before 4.0.4 is prone to an HTTP detection bypass vulnerability in detect.c and stream-tcp.c. If a malicious server breaks a normal TCP flow and sends data before the 3-way handshake is complete, then the data sent by the malicious server wi
07-02-2018 - 00:29 07-02-2018 - 00:29
CVE-2018-4878 7.5
A use-after-free vulnerability was discovered in Adobe Flash Player before 28.0.0.161. This vulnerability occurs due to a dangling pointer in the Primetime SDK related to media player handling of listener objects. A successful attack can lead to arbi
06-02-2018 - 16:29 06-02-2018 - 16:29
CVE-2018-6389 5.0
In WordPress through 4.9.2, unauthenticated attackers can cause a denial of service (resource consumption) by using the large list of registered .js files (from wp-includes/script-loader.php) to construct a series of requests to load every file many
06-02-2018 - 12:29 06-02-2018 - 12:29
CVE-2018-6610 5.0
Information Leakage exists in the jLike 1.0 component for Joomla! via a task=getUserByCommentId request.
05-02-2018 - 17:29 05-02-2018 - 17:29
CVE-2018-6609 7.5
SQL Injection exists in the JSP Tickets 1.1 component for Joomla! via the ticketcode parameter in a ticketlist edit action, or the id parameter in a statuslist (or prioritylist) edit action.
05-02-2018 - 17:29 05-02-2018 - 17:29
CVE-2018-6605 7.5
SQL Injection exists in the Zh BaiduMap 3.0.0.1 component for Joomla! via the id parameter in a getPlacemarkDetails, getPlacemarkHoverText, getPathHoverText, or getPathDetails request.
05-02-2018 - 16:29 05-02-2018 - 16:29
CVE-2018-6604 7.5
SQL Injection exists in the Zh YandexMap 6.2.1.0 component for Joomla! via the id parameter in a task=getPlacemarkDetails request.
05-02-2018 - 16:29 05-02-2018 - 16:29
CVE-2018-6582 7.5
SQL Injection exists in the Zh GoogleMap 8.4.0.0 component for Joomla! via the id parameter in a getPlacemarkDetails, getPlacemarkHoverText, getPathHoverText, or getPathDetails request.
05-02-2018 - 16:29 05-02-2018 - 16:29
CVE-2017-9414 6.8
Cross-site request forgery (CSRF) vulnerability in the Subscribe to Podcast feature in Subsonic 6.1.1 allows remote attackers to hijack the authentication of unspecified victims for requests that conduct cross-site scripting (XSS) attacks or possibly
05-02-2018 - 11:29 05-02-2018 - 11:29
CVE-2018-1185 7.2
An issue was discovered in EMC RecoverPoint for Virtual Machines versions prior to 5.1.1, EMC RecoverPoint version 5.1.0.0, and EMC RecoverPoint versions prior to 5.0.1.3. Command injection vulnerability in Admin CLI may allow a malicious user with a
03-02-2018 - 21:29 03-02-2018 - 11:29
CVE-2018-6606 4.6
An issue was discovered in MalwareFox AntiMalware 2.74.0.150. Improper access control in zam32.sys and zam64.sys allows a non-privileged process to register itself with the driver by sending IOCTL 0x80002010 and then using IOCTL 0x8000204C to \\.\Zem
03-02-2018 - 20:29 03-02-2018 - 20:29
CVE-2018-6593 4.6
An issue was discovered in MalwareFox AntiMalware 2.74.0.150. Improper access control in zam32.sys and zam64.sys allows a non-privileged process to register itself with the driver by connecting to the filter communication port and then using IOCTL 0x
03-02-2018 - 13:29 03-02-2018 - 13:29
CVE-2018-6317 6.4
The remote management interface in Claymore Dual Miner 10.5 and earlier is vulnerable to an unauthenticated format string vulnerability, allowing remote attackers to read memory or cause a denial of service.
02-02-2018 - 16:29 02-02-2018 - 16:29
CVE-2018-6579 7.5
SQL Injection exists in the JEXTN Reverse Auction 3.1.0 component for Joomla! via a view=products&uid= request.
02-02-2018 - 12:29 02-02-2018 - 12:29
CVE-2018-6578 7.5
SQL Injection exists in the JE PayperVideo 3.0.0 component for Joomla! via the usr_plan parameter in a view=myplans&task=myplans.usersubscriptions request.
02-02-2018 - 12:29 02-02-2018 - 12:29
CVE-2018-6577 7.5
SQL Injection exists in the JEXTN Membership 3.1.0 component for Joomla! via the usr_plan parameter in a view=myplans&task=myplans.usersubscriptions request.
02-02-2018 - 12:29 02-02-2018 - 12:29
CVE-2018-6576 7.5
SQL Injection exists in Event Manager 1.0 via the event.php id parameter or the page.php slug parameter.
02-02-2018 - 12:29 02-02-2018 - 12:29
CVE-2017-1000409 6.9
A buffer overflow in glibc 2.5 (released on September 29, 2006) and can be triggered through the LD_LIBRARY_PATH environment variable. Please note that many versions of glibc are not vulnerable to this issue if patched for CVE-2017-1000366.
31-01-2018 - 23:29 31-01-2018 - 23:29
CVE-2017-1000408 7.2
A memory leak in glibc 2.1.1 (released on May 24, 1999) can be reached and amplified through the LD_HWCAP_MASK environment variable. Please note that many versions of glibc are not vulnerable to this issue if patched for CVE-2017-1000366.
31-01-2018 - 23:29 31-01-2018 - 23:29
CVE-2017-16945 7.2
The standardrestorer binary in Arq 5.10 and earlier for Mac allows local users to write to arbitrary files and consequently gain root privileges via a crafted restore path.
31-01-2018 - 15:29 31-01-2018 - 15:29
CVE-2017-16928 7.2
The arq_updater binary in Arq 5.10 and earlier for Mac allows local users to write to arbitrary files and consequently gain root privileges via a crafted update URL, as demonstrated by file:///tmp/blah/Arq.zip.
31-01-2018 - 15:29 31-01-2018 - 15:29
CVE-2018-5701 10.0
In Iolo System Shield AntiVirus and AntiSpyware 5.0.0.136, the amp.sys driver file contains an Arbitrary Write vulnerability due to not validating input values from IOCtl 0x00226003.
31-01-2018 - 13:29 31-01-2018 - 13:29
CVE-2018-6460 5.0
Hotspot Shield runs a webserver with a static IP address 127.0.0.1 and port 895. The web server uses JSONP and hosts sensitive information including configuration. User controlled input is not sufficiently filtered: an unauthenticated attacker can se
31-01-2018 - 12:29 31-01-2018 - 12:29
CVE-2018-1000001 7.2
In glibc 2.26 and earlier there is confusion in the usage of getcwd() by realpath() which can be used to write before the destination buffer leading to a buffer underflow and potential code execution.
31-01-2018 - 09:29 31-01-2018 - 09:29
CVE-2016-6599 7.5
BMC Track-It! 11.4 before Hotfix 3 exposes an unauthenticated .NET remoting configuration service (ConfigurationService) on port 9010. This service contains a method that can be used to retrieve a configuration file that contains the application data
30-01-2018 - 15:29 30-01-2018 - 15:29
CVE-2016-6598 10.0
BMC Track-It! 11.4 before Hotfix 3 exposes an unauthenticated .NET remoting file storage service (FileStorageService) on port 9010. This service contains a method that allows uploading a file to an arbitrary path on the machine that is running Track-
30-01-2018 - 15:29 30-01-2018 - 15:29
CVE-2018-6398 7.5
SQL Injection exists in the CP Event Calendar 3.0.1 component for Joomla! via the id parameter in a task=load action.
30-01-2018 - 10:29 30-01-2018 - 10:29
CVE-2018-6397 5.0
Directory Traversal exists in the Picture Calendar 3.1.4 component for Joomla! via the list.php folder parameter.
30-01-2018 - 10:29 30-01-2018 - 10:29
CVE-2018-6395 7.5
SQL Injection exists in the Visual Calendar 3.1.3 component for Joomla! via the id parameter in a view=load action.
30-01-2018 - 10:29 30-01-2018 - 10:29
CVE-2018-0101 10.0
A vulnerability in the Secure Sockets Layer (SSL) VPN functionality of the Cisco Adaptive Security Appliance (ASA) Software could allow an unauthenticated, remote attacker to cause a reload of the affected system or to remotely execute code. The vuln
29-01-2018 - 15:29 29-01-2018 - 15:29
CVE-2018-6388 9.0
iBall iB-WRA150N 1.2.6 build 110401 Rel.47776n devices allow remote authenticated users to execute arbitrary OS commands via shell metacharacters in the ping test arguments on the Diagnostics page.
29-01-2018 - 13:29 29-01-2018 - 13:29
CVE-2017-1000353 7.5
Jenkins versions 2.56 and earlier as well as 2.46.1 LTS and earlier are vulnerable to an unauthenticated remote code execution. An unauthenticated remote code execution vulnerability allowed attackers to transfer a serialized Java `SignedObject` obje
29-01-2018 - 12:29 29-01-2018 - 12:29
CVE-2018-6008 5.0
Arbitrary File Download exists in the Jtag Members Directory 5.3.7 component for Joomla! via the download_file parameter.
29-01-2018 - 00:29 29-01-2018 - 00:29
CVE-2018-6007 6.8
CSRF exists in the JS Support Ticket 1.1.0 component for Joomla! and allows attackers to inject HTML or edit a ticket.
29-01-2018 - 00:29 29-01-2018 - 00:29
CVE-2018-5720 6.8
An issue was discovered on DODOCOOL DC38 3-in-1 N300 Mini Wireless Range Extend RTN2-AW.GD.R3465.1.20161103 devices. A Cross-site request forgery (CSRF) vulnerability allows remote attackers to hijack the authentication of users for requests that mod
29-01-2018 - 00:29 29-01-2018 - 00:29
CVE-2017-18078 4.6
systemd-tmpfiles in systemd before 237 attempts to support ownership/permission changes on hardlinked files even if the fs.protected_hardlinks sysctl is turned off, which allows local users to bypass intended access restrictions via vectors involving
29-01-2018 - 00:29 29-01-2018 - 00:29
CVE-2017-17976 7.5
In Utilities.php in Perfex CRM 1.9.7, Unrestricted file upload can lead to remote code execution.
26-01-2018 - 15:29 26-01-2018 - 15:29
CVE-2017-14523 5.0
** DISPUTED ** WonderCMS 2.3.1 is vulnerable to an HTTP Host header injection attack. It uses user-entered values to redirect pages. NOTE: the vendor reports that exploitation is unlikely because the attack can only come from a local machine or from
26-01-2018 - 15:29 26-01-2018 - 15:29
CVE-2018-6323 6.8
The elf_object_p function in elfcode.h in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.29.1, has an unsigned integer overflow because bfd_size_type multiplication is not used. A crafted ELF file allows remot
26-01-2018 - 03:29 26-01-2018 - 03:29
CVE-2018-5997 10.0
An issue was discovered in the HTTP Server in RAVPower Filehub 2.000.056. Due to an unrestricted upload feature and a path traversal vulnerability, it is possible to upload a file on a filesystem with root privileges: this will lead to remote code ex
25-01-2018 - 12:29 25-01-2018 - 12:29
CVE-2018-5973 7.5
SQL Injection exists in Professional Local Directory Script 1.0 via the sellers_subcategories.php IndustryID parameter, or the suppliers.php IndustryID or CategoryID parameter.
25-01-2018 - 12:29 25-01-2018 - 12:29
CVE-2018-5954 5.0
phpFreeChat 1.7 and earlier allows remote attackers to cause a denial of service by sending a large number of connect commands.
25-01-2018 - 11:29 25-01-2018 - 11:29
CVE-2018-1000006 9.3
GitHub Electron versions 1.8.2-beta.3 and earlier, 1.7.10 and earlier, 1.6.15 and earlier has a vulnerability in the protocol handler, specifically Electron apps running on Windows 10, 7 or 2008 that register custom protocol handlers can be tricked i
24-01-2018 - 18:29 24-01-2018 - 18:29
CVE-2017-1000474 7.5
Soyket Chowdhury Vehicle Sales Management System version 2017-07-30 is vulnerable to multiple SQL Injecting in login/vehicle.php, login/profile.php, login/Actions.php, login/manage_employee.php, and login/sell.php scripts resulting in the expose of u
24-01-2018 - 17:29 24-01-2018 - 17:29
CVE-2018-6193 2.6
A Cross-Site Scripting (XSS) vulnerability was found in Routers2 2.24, affecting the 'rtr' GET parameter in a page=graph action to cgi-bin/routers2.pl.
24-01-2018 - 16:29 24-01-2018 - 16:29
CVE-2018-6191 4.3
The js_strtod function in jsdtoa.c in Artifex MuJS through 1.0.2 has an integer overflow because of incorrect exponent validation.
24-01-2018 - 16:29 24-01-2018 - 16:29
CVE-2018-6190 3.5
Netis WF2419 V3.2.41381 devices allow XSS via the Description field on the MAC Filtering page.
24-01-2018 - 16:29 24-01-2018 - 16:29
CVE-2018-5759 4.3
jsparse.c in Artifex MuJS through 1.0.2 does not properly maintain the AST depth for binary expressions, which allows remote attackers to cause a denial of service (excessive recursion) via a crafted file.
24-01-2018 - 16:29 24-01-2018 - 16:29
CVE-2018-5705 4.3
Reservo Image Hosting 1.6 is vulnerable to XSS attacks. The affected function is its search engine (the t parameter to the /search URI). Since there is an user/admin login interface, it's possible for attackers to steal sessions of users and thus adm
24-01-2018 - 12:29 24-01-2018 - 12:29
CVE-2018-5319 5.0
RAVPower FileHub 2.000.056 allows remote users to steal sensitive information via a crafted HTTP request.
24-01-2018 - 10:29 24-01-2018 - 10:29
CVE-2018-5988 7.5
SQL Injection exists in Flexible Poll 1.2 via the id parameter to mobile_preview.php or index.php.
24-01-2018 - 05:29 24-01-2018 - 05:29
CVE-2018-5986 7.5
SQL Injection exists in Easy Car Script 2014 via the s_order or s_row parameter to site_search.php.
24-01-2018 - 05:29 24-01-2018 - 05:29
CVE-2018-5985 7.5
SQL Injection exists in the LiveCRM SaaS Cloud 1.0 component for Joomla! via an r=site/login&company_id= request.
24-01-2018 - 05:29 24-01-2018 - 05:29
CVE-2018-5984 7.5
SQL Injection exists in the Tumder (An Arcade Games Platform) 2.1 component for Joomla! via the PATH_INFO to the category/ URI.
24-01-2018 - 05:29 24-01-2018 - 05:29
CVE-2018-5979 7.5
SQL Injection exists in Wchat Fully Responsive PHP AJAX Chat Script 1.5 via the login.php User field.
24-01-2018 - 05:29 24-01-2018 - 05:29
CVE-2018-5978 7.5
SQL Injection exists in Facebook Style Php Ajax Chat Zechat 1.5 via the login.php User field.
24-01-2018 - 05:29 24-01-2018 - 05:29
CVE-2018-5977 7.5
SQL Injection exists in Affiligator Affiliate Webshop Management System 2.1.0 via a search/?q=&price_type=range&price= request.
24-01-2018 - 05:29 24-01-2018 - 05:29
CVE-2018-5976 6.8
Cross Site Request Forgery (CSRF) exists in RSVP Invitation Online 1.0 via function/account.php, as demonstrated by modifying the admin password.
24-01-2018 - 05:29 24-01-2018 - 05:29
CVE-2018-5972 7.5
SQL Injection exists in Classified Ads CMS Quickad 4.0 via the keywords, placeid, cat, or subcat parameter to the listing URI.
24-01-2018 - 05:29 24-01-2018 - 05:29
CVE-2018-5969 6.8
Cross Site Request Forgery (CSRF) exists in Photography CMS 1.0 via clients/resources/ajax/ajax_new_admin.php, as demonstrated by adding an admin account.
24-01-2018 - 05:29 24-01-2018 - 05:29
CVE-2018-5359 9.3
The server in Flexense SysGauge 3.6.18 operating on port 9221 can be exploited remotely with the attacker gaining system-level access because of a Buffer Overflow.
23-01-2018 - 13:29 23-01-2018 - 13:29
CVE-2017-17999 7.5
SQL injection vulnerability in RISE Ultimate Project Manager 1.9 allows remote attackers to execute arbitrary SQL commands via the search parameter to index.php/knowledge_base/get_article_suggestion/.
23-01-2018 - 13:29 23-01-2018 - 13:29
CVE-2017-2741 10.0
A potential security vulnerability has been identified with HP PageWide Printers, HP OfficeJet Pro Printers, with firmware before 1708D. This vulnerability could potentially be exploited to execute arbitrary code.
23-01-2018 - 11:29 23-01-2018 - 11:29
CVE-2017-18049 4.3
In the CSV export feature of SilverStripe before 3.5.6, 3.6.x before 3.6.3, and 4.x before 4.0.1, it's possible for the output to contain macros and scripts, which may be executed if imported without sanitization into common software (including Micro
23-01-2018 - 01:29 23-01-2018 - 01:29
CVE-2017-18048 6.5
Monstra CMS 3.0.4 allows users to upload arbitrary files, which leads to remote command execution on the server, for example because .php (lowercase) is blocked but .PHP (uppercase) is not.
23-01-2018 - 01:29 23-01-2018 - 01:29
CVE-2018-6000 10.0
An issue was discovered in AsusWRT before 3.0.0.4.384_10007. The do_vpnupload_post function in router/httpd/web.c in vpnupload.cgi provides functionality for setting NVRAM configuration values, which allows attackers to set the admin password and lau
22-01-2018 - 15:29 22-01-2018 - 15:29
CVE-2018-5999 10.0
An issue was discovered in AsusWRT before 3.0.0.4.384_10007. In the handle_request function in router/httpd/httpd.c, processing of POST requests continues even if authentication fails.
22-01-2018 - 15:29 22-01-2018 - 15:29
CVE-2017-18047 7.5
Buffer Overflow in the FTP client in LabF nfsAxe 3.7 allows remote FTP servers to execute arbitrary code via a long reply.
21-01-2018 - 23:29 21-01-2018 - 23:29
CVE-2018-5955 7.5
An issue was discovered in GitStack through 2.3.10. User controlled input is not sufficiently filtered, allowing an unauthenticated attacker to add a user to the server via the username and password fields to the rest/user/ URI.
21-01-2018 - 17:29 21-01-2018 - 17:29
CVE-2017-14097 5.0
An improper access control vulnerability in Trend Micro Smart Protection Server (Standalone) versions 3.2 and below could allow an attacker to decrypt contents of a database with information that could be used to access a vulnerable system.
19-01-2018 - 14:29 19-01-2018 - 14:29
CVE-2017-14096 4.3
A stored cross site scripting (XSS) vulnerability in Trend Micro Smart Protection Server (Standalone) versions 3.2 and below could allow an attacker to execute a malicious payload on vulnerable systems.
19-01-2018 - 14:29 19-01-2018 - 14:29
CVE-2017-14095 6.8
A vulnerability in Trend Micro Smart Protection Server (Standalone) versions 3.2 and below could allow an attacker to perform remote command execution via a local file inclusion on a vulnerable system.
19-01-2018 - 14:29 19-01-2018 - 14:29
CVE-2017-14094 7.5
A vulnerability in Trend Micro Smart Protection Server (Standalone) versions 3.2 and below could allow an attacker to perform remote command execution via a cron job injection on a vulnerable system.
19-01-2018 - 14:29 19-01-2018 - 14:29
CVE-2017-11398 6.8
A session hijacking via log disclosure vulnerability in Trend Micro Smart Protection Server (Standalone) versions 3.2 and below could allow an unauthenticated attacker to hijack active user sessions to perform authenticated requests on a vulnerable s
19-01-2018 - 14:29 19-01-2018 - 14:29
CVE-2018-2698 4.1
Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization (subcomponent: Core). Supported versions that are affected are Prior to 5.1.32 and Prior to 5.2.6. Easily exploitable vulnerability allows low privileged attacker with logon
17-01-2018 - 21:29 17-01-2018 - 21:29
CVE-2018-2636 6.8
Vulnerability in the Oracle Hospitality Simphony component of Oracle Hospitality Applications (subcomponent: Security). Supported versions that are affected are 2.7, 2.8 and 2.9. Difficult to exploit vulnerability allows unauthenticated attacker with
17-01-2018 - 21:29 17-01-2018 - 21:29
CVE-2017-10273 3.7
Vulnerability in the Oracle JDeveloper component of Oracle Fusion Middleware (subcomponent: Deployment). Supported versions that are affected are 11.1.1.7.0, 11.1.1.7.1, 11.1.1.9.0, 11.1.2.4.0, 12.1.3.0.0 and 12.2.1.2.0. Difficult to exploit vulnerab
17-01-2018 - 21:29 17-01-2018 - 21:29
CVE-2018-5726 5.0
MASTER IPCAMERA01 3.3.4.2103 devices allow remote attackers to obtain sensitive information via a crafted HTTP request, as demonstrated by the username, password, and configuration settings.
16-01-2018 - 17:29 16-01-2018 - 17:29
CVE-2018-5725 5.0
MASTER IPCAMERA01 3.3.4.2103 devices allow Unauthenticated Configuration Change, as demonstrated by the port number of the web server.
16-01-2018 - 17:29 16-01-2018 - 17:29
CVE-2018-5724 10.0
MASTER IPCAMERA01 3.3.4.2103 devices allow Unauthenticated Configuration Download and Upload, as demonstrated by restore.cgi.
16-01-2018 - 17:29 16-01-2018 - 17:29
CVE-2018-5723 10.0
MASTER IPCAMERA01 3.3.4.2103 devices have a hardcoded password of cat1029 for the root account.
16-01-2018 - 17:29 16-01-2018 - 17:29
CVE-2018-5715 4.3
phprint.php in SugarCRM 3.5.1 has XSS via a parameter name in the query string (aka a $key variable).
16-01-2018 - 15:29 16-01-2018 - 15:29
CVE-2018-5370 4.3
BizLogic xnami 1.0 has XSS via the comment parameter in an addComment action to the /media/ajax URI.
16-01-2018 - 14:29 16-01-2018 - 14:29
CVE-2018-5702 6.8
Transmission through 2.92 relies on X-Transmission-Session-Id (which is not a forbidden header for Fetch) for access control, which allows remote attackers to execute arbitrary RPC commands, and consequently write to arbitrary files, via POST request
15-01-2018 - 11:29 15-01-2018 - 11:29
CVE-2018-5479 4.3
FoxSash ImgHosting 1.5 (according to footer information) is vulnerable to XSS attacks. The affected function is its search engine via the search parameter to the default URI. Since there is an user/admin login interface, it's possible for attackers t
15-01-2018 - 11:29 15-01-2018 - 11:29
CVE-2018-5688 4.3
ILIAS before 5.2.4 has XSS via the cmd parameter to the displayHeader function in setup/classes/class.ilSetupGUI.php in the Setup component.
14-01-2018 - 15:29 14-01-2018 - 15:29
CVE-2017-13216 7.2
In ashmem_ioctl of ashmem.c, there is an out-of-bounds write due to insufficient locking when accessing asma. This could lead to a local elevation of privilege enabling code execution as a privileged process with no additional execution privileges ne
12-01-2018 - 18:29 12-01-2018 - 18:29
CVE-2017-13209 7.2
In the ServiceManager::add function in the hardware service manager, there is an insecure permissions check based on the PID of the caller which could allow an application or service to replace a HAL service with its own service. This could lead to a
12-01-2018 - 18:29 12-01-2018 - 18:29
CVE-2018-5315 7.5
The Wachipi WP Events Calendar plugin 1.0 for WordPress has SQL Injection via the event_id parameter to event.php.
12-01-2018 - 12:29 12-01-2018 - 12:29
CVE-2018-5262 10.0
A stack-based buffer overflow in Flexense DiskBoss 8.8.16 and earlier allows unauthenticated remote attackers to execute arbitrary code in the context of a highly privileged account.
12-01-2018 - 12:29 12-01-2018 - 12:29
CVE-2017-17970 7.5
Multiple SQL injection vulnerabilities in Muviko 1.1 allow remote attackers to execute arbitrary SQL commands via the (1) email parameter to login.php; the (2) season_id parameter to themes/flixer/ajax/load_season.php; the (3) movie_id parameter to t
12-01-2018 - 12:29 12-01-2018 - 12:29
CVE-2017-16887 5.0
The portal on FiberHome Mobile WIFI Device Model LM53Q1 VH519R05C01S38 uses SOAP based web services in order to interact with the portal. Unauthorized Access to Web Services can result in disclosure of the WLAN key/password.
12-01-2018 - 12:29 12-01-2018 - 12:29
CVE-2017-16886 6.8
The portal on FiberHome Mobile WIFI Device Model LM53Q1 VH519R05C01S38 uses SOAP based web services in order to interact with the portal. Unauthorized Access to Web Services via CSRF can result in an unauthorized change of username or password of the
12-01-2018 - 12:29 12-01-2018 - 12:29
CVE-2017-16885 5.0
Improper Permissions Handling in the Portal on FiberHome LM53Q1 VH519R05C01S38 devices (intended for obtaining information about Internet Usage, Changing Passwords, etc.) allows remote attackers to look for the information without authenticating. The
12-01-2018 - 12:29 12-01-2018 - 12:29
CVE-2018-5347 10.0
Seagate Media Server in Seagate Personal Cloud has unauthenticated command injection in the uploadTelemetry and getLogs functions in views.py because .psp URLs are handled by the fastcgi.server component and shell metacharacters are mishandled.
11-01-2018 - 20:29 11-01-2018 - 20:29
CVE-2018-5189 7.2
Race condition in Jungo Windriver 12.5.1 allows local users to cause a denial of service (buffer overflow) or gain system privileges by flipping pool buffer size, aka a "double fetch" vulnerability.
11-01-2018 - 11:29 11-01-2018 - 11:29
CVE-2017-18016 5.0
Parity Browser 1.6.10 and earlier allows remote attackers to bypass the Same Origin Policy and obtain sensitive information by requesting other websites via the Parity web proxy engine (reusing the current website's token, which is not bound to an or
11-01-2018 - 11:29 11-01-2018 - 11:29
CVE-2017-15665 5.0
In Flexense DiskBoss Enterprise 8.5.12, the Control Protocol suffers from a denial of service vulnerability. The attack vector is a crafted SERVER_GET_INFO packet sent to control port 8094.
10-01-2018 - 13:29 10-01-2018 - 13:29
CVE-2017-15664 5.0
In Flexense Sync Breeze Enterprise v10.1.16, the Control Protocol suffers from a denial of service vulnerability. The attack vector is a crafted SERVER_GET_INFO packet sent to control port 9121.
10-01-2018 - 13:29 10-01-2018 - 13:29
CVE-2017-15663 5.0
In Flexense Disk Pulse Enterprise v10.1.18, the Control Protocol suffers from a denial of service vulnerability. The attack vector is a crafted SERVER_GET_INFO packet sent to control port 9120.
10-01-2018 - 13:29 10-01-2018 - 13:29
CVE-2017-15662 5.0
In Flexense VX Search Enterprise v10.1.12, the Control Protocol suffers from a denial of service vulnerability. The attack vector is a crafted SERVER_GET_INFO packet sent to control port 9123.
10-01-2018 - 13:29 10-01-2018 - 13:29
CVE-2016-9722 4.9
IBM QRadar 7.2 and 7.3 specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors. IBM X-Force ID: 119737.
10-01-2018 - 12:29 10-01-2018 - 12:29
CVE-2018-5221 6.8
Multiple buffer overflows in BarCodeWiz BarCode before 6.7 ActiveX control (BarcodeWiz.DLL) allow remote attackers to execute arbitrary code via a long argument to the (1) BottomText or (2) TopText property.
09-01-2018 - 11:29 09-01-2018 - 11:29
CVE-2018-5211 7.5
PHP Melody version 2.7.1 suffer from SQL Injection Time-based attack on the page ajax.php with the parameter playlist.
09-01-2018 - 11:29 09-01-2018 - 11:29
CVE-2018-5263 3.5
The StackIdeas EasyDiscuss (aka com_easydiscuss) extension before 4.0.21 for Joomla! allows XSS.
08-01-2018 - 18:29 08-01-2018 - 18:29
CVE-2017-7997 7.5
Multiple SQL injection vulnerabilities in Gespage before 7.4.9 allow remote attackers to execute arbitrary SQL commands via the (1) show_prn parameter to webapp/users/prnow.jsp or show_month parameter to (2) webapp/users/blhistory.jsp or (3) webapp/u
08-01-2018 - 14:29 08-01-2018 - 14:29
CVE-2018-5282 7.2
** DISPUTED ** Kentico 9.0 through 11.0 has a stack-based buffer overflow via the SqlName, SqlPswd, Database, UserName, or Password field in a SilentInstall XML document. NOTE: the vendor disputes this issue because neither a buffer overflow nor a cr
08-01-2018 - 04:29 08-01-2018 - 04:29
CVE-2017-16666 9.0
Xplico before 1.2.1 allows remote authenticated users to execute arbitrary commands via shell metacharacters in the name of an uploaded PCAP file. NOTE: this issue can be exploited without authentication by leveraging the user registration feature.
05-01-2018 - 11:29 05-01-2018 - 11:29
CVE-2017-16720 10.0
A Path Traversal issue was discovered in WebAccess versions 8.3.2 and earlier. An attacker has access to files within the directory structure of the target device.
05-01-2018 - 03:29 05-01-2018 - 03:29
CVE-2017-16716 7.5
A SQL Injection issue was discovered in WebAccess versions prior to 8.3. WebAccess does not properly sanitize its inputs for SQL commands.
05-01-2018 - 03:29 05-01-2018 - 03:29
CVE-2017-17867 9.0
Inteno iopsys 2.0-3.14 and 4.0 devices allow remote authenticated users to execute arbitrary OS commands by modifying the leasetrigger field in the odhcpd configuration to specify an arbitrary program, as demonstrated by a program located on an SMB s
04-01-2018 - 14:29 04-01-2018 - 14:29
CVE-2017-14960 5.0
xDashboard in OpenText Document Sciences xPression (formerly EMC Document Sciences xPression) v4.5SP1 Patch 13 has SQL Injection.
04-01-2018 - 12:29 04-01-2018 - 12:29
CVE-2014-7862 7.5
The DCPluginServelet servlet in ManageEngine Desktop Central and Desktop Central MSP before build 90109 allows remote attackers to create administrator accounts via an addPlugInUser action.
04-01-2018 - 12:29 04-01-2018 - 12:29
CVE-2018-0780 2.6
Microsoft Edge in Microsoft Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows an attacker to obtain information to further compromise the user's system, due to how the scripting engine handles objects in memory, aka "Scripting E
04-01-2018 - 09:29 04-01-2018 - 09:29
CVE-2018-0777 7.6
Microsoft Edge in Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memor
04-01-2018 - 09:29 04-01-2018 - 09:29
CVE-2018-0776 7.6
Microsoft Edge in Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memor
04-01-2018 - 09:29 04-01-2018 - 09:29
CVE-2018-0775 7.6
Microsoft Edge in Windows 10 1709 allows an attacker to execute arbitrary code in the context of the current user, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is uniqu
04-01-2018 - 09:29 04-01-2018 - 09:29
CVE-2018-0774 7.6
Microsoft Edge in Windows 10 1709 allows an attacker to execute arbitrary code in the context of the current user, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is uniqu
04-01-2018 - 09:29 04-01-2018 - 09:29
CVE-2018-0770 7.6
Microsoft Edge in Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memor
04-01-2018 - 09:29 04-01-2018 - 09:29
CVE-2018-0769 7.6
Microsoft Edge in Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memor
04-01-2018 - 09:29 04-01-2018 - 09:29
CVE-2018-0767 2.6
Microsoft Edge in Microsoft Windows 10 1511, 1607, 1703, 1709, and Windows Server 2016 allows an attacker to obtain information to further compromise the user's system, due to how the scripting engine handles objects in memory, aka "Scripting Engine
04-01-2018 - 09:29 04-01-2018 - 09:29
CVE-2018-0758 7.6
Microsoft Edge in Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memor
04-01-2018 - 09:29 04-01-2018 - 09:29
CVE-2018-0752 4.6
The Windows Kernel API in Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allows an elevation of privilege vulnerability due to the way the Kernel AP
04-01-2018 - 09:29 04-01-2018 - 09:29
CVE-2018-0751 3.6
The Windows Kernel API in Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allows an elevation of privilege vulnerability due to the way the Kernel AP
04-01-2018 - 09:29 04-01-2018 - 09:29
CVE-2018-0749 4.6
The Microsoft Server Message Block (SMB) Server in Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2008 SP2 and R2 SP1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709
04-01-2018 - 09:29 04-01-2018 - 09:29
CVE-2018-0748 4.6
The Windows kernel in Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2008 SP2 and R2 SP1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allows an elevation of privi
04-01-2018 - 09:29 04-01-2018 - 09:29
CVE-2018-0746 1.9
The Windows kernel in Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allows an information disclosure vulnerability due to the way memory addresses
04-01-2018 - 09:29 04-01-2018 - 09:29
CVE-2018-0745 1.9
The Windows kernel in Windows 10 version 1703. Windows 10 version 1709, and Windows Server, version 1709 allows an information disclosure vulnerability due to the way objects are handled in memory, aka "Windows Information Disclosure Vulnerability".
04-01-2018 - 09:29 04-01-2018 - 09:29
CVE-2018-0744 4.4
The Windows kernel in Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allows an elevation of privilege vulnerability due to the way objects are handl
04-01-2018 - 09:29 04-01-2018 - 09:29
CVE-2018-0743 4.4
Windows Subsystem for Linux in Windows 10 version 1703, Windows 10 version 1709, and Windows Server, version 1709 allows an elevation of privilege vulnerability due to the way objects are handled in memory, aka "Windows Subsystem for Linux Elevation
04-01-2018 - 09:29 04-01-2018 - 09:29
CVE-2017-5753 4.7
Systems with microprocessors utilizing speculative execution and branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis.
04-01-2018 - 08:29 04-01-2018 - 08:29
CVE-2017-5715 4.7
Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis.
04-01-2018 - 08:29 04-01-2018 - 08:29
CVE-2018-0114 5.0
A vulnerability in the Cisco node-jose open source library before 0.11.0 could allow an unauthenticated, remote attacker to re-sign tokens using a key that is embedded within the token. The vulnerability is due to node-jose following the JSON Web Sig
04-01-2018 - 01:29 04-01-2018 - 01:29
CVE-2017-8046 7.5
Malicious PATCH requests submitted to servers using Spring Data REST versions prior to 2.6.9 (Ingalls SR9), versions prior to 3.0.1 (Kay SR1) and Spring Boot versions prior to 1.5.9, 2.0 M6 can use specially crafted JSON data to run arbitrary Java co
04-01-2018 - 01:29 04-01-2018 - 01:29
CVE-2017-18019 3.6
In K7 Total Security before 15.1.0.305, user-controlled input to the K7Sentry device is not sufficiently sanitized: the user-controlled input can be used to compare an arbitrary memory address with a fixed value, which in turn can be used to read the
03-01-2018 - 23:29 03-01-2018 - 23:29
CVE-2017-1000486 7.5
Primetek Primefaces 5.x is vulnerable to a weak encryption flaw resulting in remote code execution
03-01-2018 - 15:29 03-01-2018 - 15:29
CVE-2017-1000499 6.8
phpMyAdmin versions 4.7.x (prior to 4.7.6.1/4.7.7) are vulnerable to a CSRF weakness. By deceiving a user to click on a crafted URL, it is possible to perform harmful database operations such as deleting records, dropping/truncating tables etc.
03-01-2018 - 09:29 03-01-2018 - 09:29
CVE-2017-1000432 6.0
Vanilla Forums below 2.1.5 are affected by CSRF leading to Deleting topics and comments from forums Admin access
02-01-2018 - 18:29 02-01-2018 - 18:29
CVE-2017-17098 7.5
The writeLog function in fn_common.php in gps-server.net GPS Tracking Software (self hosted) through 3.0 allows remote attackers to inject arbitrary PHP code via a crafted request that is mishandled during admin log viewing, as demonstrated by <?php
02-01-2018 - 10:29 02-01-2018 - 10:29
CVE-2017-17097 5.0
gps-server.net GPS Tracking Software (self hosted) 2.x has a password reset procedure that immediately resets passwords upon an unauthenticated request, and then sends e-mail with a predictable (date-based) password to the admin, which makes it easie
02-01-2018 - 10:29 02-01-2018 - 10:29
CVE-2018-3811 7.5
SQL Injection vulnerability in the Oturia Smart Google Code Inserter plugin before 3.5 for WordPress allows unauthenticated attackers to execute SQL queries in the context of the web server. The saveGoogleAdWords() function in smartgooglecode.php did
01-01-2018 - 01:29 01-01-2018 - 01:29
CVE-2018-3810 7.5
Authentication Bypass vulnerability in the Oturia Smart Google Code Inserter plugin before 3.5 for WordPress allows unauthenticated attackers to insert arbitrary JavaScript or HTML code (via the sgcgoogleanalytic parameter) that runs on all pages ser
01-01-2018 - 01:29 01-01-2018 - 01:29
CVE-2017-18001 10.0
Trustwave Secure Web Gateway (SWG) through 11.8.0.27 allows remote attackers to append an arbitrary public key to the device's SSH Authorized Keys data, and consequently obtain remote root access, via the publicKey parameter to the /sendKey URI.
31-12-2017 - 14:29 31-12-2017 - 14:29
CVE-2017-17968 10.0
A buffer overflow vulnerability in NetTransport.exe in NetTransport Download Manager 2.96L and earlier could allow remote HTTP servers to execute arbitrary code on NAS devices via a long HTTP response.
29-12-2017 - 10:29 29-12-2017 - 10:29
CVE-2017-15667 5.0
In Flexense SysGauge Server 3.6.18, the Control Protocol suffers from a denial of service. The attack vector is a crafted SERVER_GET_INFO packet sent to control port 9221.
28-12-2017 - 12:29 28-12-2017 - 12:29
CVE-2017-17932 10.0
A buffer overflow vulnerability exists in MediaServer.exe in ALLPlayer ALLMediaServer 0.95 and earlier that could allow remote attackers to execute arbitrary code and/or cause denial of service on the victim machine/computer via a long string to TCP
28-12-2017 - 01:29 28-12-2017 - 01:29
CVE-2017-13056 6.8
The launchURL function in PDF-XChange Viewer 2.5 (Build 314.0) might allow remote attackers to execute arbitrary code via a crafted PDF file.
27-12-2017 - 12:29 27-12-2017 - 12:29
CVE-2016-6914 7.2
Ubiquiti UniFi Video before 3.8.0 for Windows uses weak permissions for the installation directory, which allows local users to gain SYSTEM privileges via a Trojan horse taskkill.exe file.
27-12-2017 - 12:29 27-12-2017 - 12:29
CVE-2017-7154 5.6
An issue was discovered in certain Apple products. iOS before 11.2 is affected. macOS before 10.13.2 is affected. tvOS before 11.2 is affected. The issue involves the "Kernel" component. It allows local users to bypass intended memory-read restrictio
27-12-2017 - 12:08 27-12-2017 - 12:08
CVE-2017-17876 5.0
Biometric Shift Employee Management System 3.0 allows remote attackers to bypass intended file-read restrictions via a user=download request with a pathname in the path parameter.
27-12-2017 - 12:08 27-12-2017 - 12:08
CVE-2017-17875 7.5
The JEXTN FAQ Pro extension 4.0.0 for Joomla! has SQL Injection via the id parameter in a view=category action.
27-12-2017 - 12:08 27-12-2017 - 12:08
CVE-2017-17872 7.5
The JEXTN Video Gallery extension 3.0.5 for Joomla! has SQL Injection via the id parameter in a view=category action.
27-12-2017 - 12:08 27-12-2017 - 12:08
CVE-2017-17871 7.5
The "JEXTN Question And Answer" extension 3.1.0 for Joomla! has SQL Injection via the an parameter in a view=tags action, or the ques-srch parameter.
27-12-2017 - 12:08 27-12-2017 - 12:08
CVE-2017-17849 10.0
A buffer overflow vulnerability in GetGo Download Manager 5.3.0.2712 and earlier could allow remote HTTP servers to execute arbitrary code on NAS devices via a long response.
27-12-2017 - 12:08 27-12-2017 - 12:08
CVE-2017-16995 7.2
The check_alu_op function in kernel/bpf/verifier.c in the Linux kernel through 4.14.8 allows local users to cause a denial of service (memory corruption) or possibly have unspecified other impact by leveraging incorrect sign extension.
27-12-2017 - 12:08 27-12-2017 - 12:08
CVE-2017-13878 5.6
An issue was discovered in certain Apple products. macOS before 10.13.2 is affected. The issue involves the "Intel Graphics Driver" component. It allows local users to bypass intended memory-read restrictions or cause a denial of service (out-of-boun
25-12-2017 - 16:29 25-12-2017 - 16:29
CVE-2017-13876 9.3
An issue was discovered in certain Apple products. iOS before 11.2 is affected. macOS before 10.13.2 is affected. tvOS before 11.2 is affected. watchOS before 4.2 is affected. The issue involves the "Kernel" component. It allows attackers to execute
25-12-2017 - 16:29 25-12-2017 - 16:29
CVE-2017-13875 9.3
An issue was discovered in certain Apple products. macOS before 10.13.2 is affected. The issue involves the "Intel Graphics Driver" component. It allows attackers to execute arbitrary code in a privileged context or cause a denial of service (out-of-
25-12-2017 - 16:29 25-12-2017 - 16:29
CVE-2017-13869 4.3
An issue was discovered in certain Apple products. iOS before 11.2 is affected. macOS before 10.13.2 is affected. tvOS before 11.2 is affected. watchOS before 4.2 is affected. The issue involves the "Kernel" component. It allows attackers to bypass i
25-12-2017 - 16:29 25-12-2017 - 16:29
CVE-2017-13868 4.3
An issue was discovered in certain Apple products. iOS before 11.2 is affected. macOS before 10.13.2 is affected. tvOS before 11.2 is affected. watchOS before 4.2 is affected. The issue involves the "Kernel" component. It allows attackers to bypass i
25-12-2017 - 16:29 25-12-2017 - 16:29
CVE-2017-13867 9.3
An issue was discovered in certain Apple products. iOS before 11.2 is affected. macOS before 10.13.2 is affected. tvOS before 11.2 is affected. watchOS before 4.2 is affected. The issue involves the "Kernel" component. It allows attackers to execute
25-12-2017 - 16:29 25-12-2017 - 16:29
CVE-2017-13865 4.3
An issue was discovered in certain Apple products. iOS before 11.2 is affected. macOS before 10.13.2 is affected. tvOS before 11.2 is affected. watchOS before 4.2 is affected. The issue involves the "Kernel" component. It allows attackers to bypass i
25-12-2017 - 16:29 25-12-2017 - 16:29
CVE-2017-13861 9.3
An issue was discovered in certain Apple products. iOS before 11.2 is affected. tvOS before 11.2 is affected. watchOS before 4.2 is affected. The issue involves the "IOSurface" component. It allows attackers to execute arbitrary code in a privileged
25-12-2017 - 16:29 25-12-2017 - 16:29
CVE-2017-13855 4.3
An issue was discovered in certain Apple products. iOS before 11.2 is affected. macOS before 10.13.2 is affected. tvOS before 11.2 is affected. watchOS before 4.2 is affected. The issue involves the "Kernel" component. It allows attackers to bypass i
25-12-2017 - 16:29 25-12-2017 - 16:29
CVE-2017-13847 9.3
An issue was discovered in certain Apple products. iOS before 11.2 is affected. macOS before 10.13.2 is affected. The issue involves the "IOKit" component. It allows attackers to execute arbitrary code in a privileged context or cause a denial of ser
25-12-2017 - 16:29 25-12-2017 - 16:29
CVE-2017-17692 5.0
Samsung Internet Browser 5.4.02.3 allows remote attackers to bypass the Same Origin Policy and obtain sensitive information via crafted JavaScript code that redirects to a child tab and rewrites the innerHTML property.
21-12-2017 - 14:29 21-12-2017 - 14:29
CVE-2017-17411 10.0
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Linksys WVBR0. Authentication is not required to exploit this vulnerability. The specific flaw exists within the web management portal. The issue lies
21-12-2017 - 09:29 21-12-2017 - 09:29
CVE-2017-5255 9.0
In version 3.5 and prior of Cambium Networks ePMP firmware, a lack of input sanitation for certain parameters on the web management console allows any authenticated user (including the otherwise low-privilege readonly user) to inject shell meta-chara
20-12-2017 - 17:29 20-12-2017 - 17:29
CVE-2017-17752 4.3
Ability Mail Server 3.3.2 has Cross Site Scripting (XSS) via the body of an e-mail message, with JavaScript code executed on the Read Mail screen (aka the /_readmail URI). This is fixed in version 4.2.4.
20-12-2017 - 11:29 20-12-2017 - 11:29
CVE-2017-17761 10.0
An issue was discovered on Ichano AtHome IP Camera devices. The device runs the "noodles" binary - a service on port 1300 that allows a remote (LAN) unauthenticated user to run arbitrary commands. This binary requires the "system" XML element for spe
19-12-2017 - 16:29 19-12-2017 - 16:29
CVE-2017-17088 5.0
The Enterprise version of SyncBreeze 10.2.12 and earlier is affected by a Remote Denial of Service vulnerability. The web server does not check bounds when reading server requests in the Host header on making a connection, resulting in a classic Buff
19-12-2017 - 10:29 19-12-2017 - 10:29
CVE-2017-15049 9.3
The ZoomLauncher binary in the Zoom client for Linux before 2.0.115900.1201 does not properly sanitize user input when constructing a shell command, which allows remote attackers to execute arbitrary code by leveraging the zoommtg:// scheme handler.
19-12-2017 - 10:29 19-12-2017 - 10:29
CVE-2017-15048 6.8
Stack-based buffer overflow in the ZoomLauncher binary in the Zoom client for Linux before 2.0.115900.1201 allows remote attackers to execute arbitrary code by leveraging the zoommtg:// scheme handler.
19-12-2017 - 10:29 19-12-2017 - 10:29
CVE-2017-17759 10.0
Conarc iChannel allows remote attackers to obtain sensitive information, modify the configuration, or cause a denial of service (by deleting the configuration) via a wc.dll?wwMaint~EditConfig request (which reaches an older version of a West Wind Web
19-12-2017 - 02:29 19-12-2017 - 02:29
CVE-2017-16949 7.5
An issue was discovered in the AccessKeys AccessPress Anonymous Post Pro plugin through 3.1.9 for WordPress. Improper input sanitization allows the attacker to override the settings for allowed file extensions and upload file size, related to inc/cor
18-12-2017 - 21:29 18-12-2017 - 21:29
CVE-2017-17721 7.5
CWEBNET/WOSummary/List in ZUUSE BEIMS ContractorWeb .NET 5.18.0.0 allows SQL injection via the tradestatus, assetno, assignto, building, domain, jobtype, site, trade, woType, workorderno, or workorderstatus parameter.
18-12-2017 - 11:29 18-12-2017 - 11:29
CVE-2017-17651 7.5
Paid To Read Script 2.0.5 has SQL Injection via the admin/userview.php uid parameter, the admin/viewemcamp.php fnum parameter, or the admin/viewvisitcamp.php fn parameter.
18-12-2017 - 04:29 18-12-2017 - 04:29
CVE-2017-17649 4.3
Readymade Video Sharing Script 3.2 has HTML Injection via the single-video-detail.php comment parameter.
18-12-2017 - 04:29 18-12-2017 - 04:29
CVE-2017-17645 7.5
Bus Booking Script 1.0 has SQL Injection via the txtname parameter to admin/index.php.
18-12-2017 - 04:29 18-12-2017 - 04:29
CVE-2017-17643 7.5
FS Lynda Clone 1.0 has SQL Injection via the keywords parameter to tutorial/.
18-12-2017 - 04:29 18-12-2017 - 04:29
CVE-2017-17739 7.5
The BrightSign Digital Signage (4k242) device (Firmware 6.2.63 and below) has directory traversal via the /storage.html rp parameter, allowing an attacker to read or write to files.
18-12-2017 - 01:29 18-12-2017 - 01:29
CVE-2017-17738 6.4
The BrightSign Digital Signage (4k242) device (Firmware 6.2.63 and below) allows renaming and modifying files via /tools.html.
18-12-2017 - 01:29 18-12-2017 - 01:29
CVE-2017-17737 4.3
The BrightSign Digital Signage (4k242) device (Firmware 6.2.63 and below) has XSS via the REF parameter to /network_diagnostics.html or /storage_info.html.
18-12-2017 - 01:29 18-12-2017 - 01:29
CVE-2017-3195 10.0
Commvault Edge Communication Service (cvd) prior to version 11 SP7 or version 11 SP6 with hotfix 590 is prone to a stack-based buffer overflow vulnerability that could lead to arbitrary code execution with administrative privileges.
15-12-2017 - 21:29 15-12-2017 - 21:29
CVE-2017-16787 4.0
The Web Configuration Utility in Meinberg LANTIME devices with firmware before 6.24.004 allows remote attackers to read arbitrary files by leveraging failure to restrict URL access.
15-12-2017 - 13:29 15-12-2017 - 13:29
CVE-2017-17405 9.3
Ruby before 2.4.3 allows Net::FTP command injection. Net::FTP#get, getbinaryfile, gettextfile, put, putbinaryfile, and puttextfile use Kernel#open to open a local file. If the localfile argument starts with the "|" pipe character, the command followi
15-12-2017 - 04:29 15-12-2017 - 04:29
CVE-2017-5264 6.8
Versions of Nexpose prior to 6.4.66 fail to adequately validate the source of HTTP requests intended for the Automated Actions administrative web application, and are susceptible to a cross-site request forgery (CSRF) attack.
14-12-2017 - 16:29 14-12-2017 - 16:29
CVE-2017-17672 7.5
In vBulletin through 5.3.x, there is an unauthenticated deserialization vulnerability that leads to arbitrary file deletion and, under certain circumstances, code execution, because of unsafe usage of PHP's unserialize() in vB_Library_Template's cach
13-12-2017 - 19:29 13-12-2017 - 19:29
CVE-2017-17648 7.5
Entrepreneur Dating Script 2.0.1 has SQL Injection via the search_result.php marital, gender, country, or profileid parameter.
13-12-2017 - 11:29 13-12-2017 - 11:29
CVE-2017-17639 7.5
Muslim Matrimonial Script 3.02 has SQL Injection via the success-story.php succid parameter.
13-12-2017 - 04:29 13-12-2017 - 04:29
CVE-2017-17584 7.5
FS Makemytrip Clone 1.0 has SQL Injection via the show-flight-result.php fl_orig or fl_dest parameter.
13-12-2017 - 04:29 13-12-2017 - 04:29
CVE-2017-17538 7.8
MikroTik v6.40.5 devices allow remote attackers to cause a denial of service via a flood of ICMP packets.
13-12-2017 - 04:29 13-12-2017 - 04:29
CVE-2017-11918 7.6
ChakraCore and Microsoft Edge in Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows an attacker to gain the same user rights as the current user, due to how the scripting engine handles objects in memory, aka "Scripting Engine Me
12-12-2017 - 16:29 12-12-2017 - 16:29
CVE-2017-11914 7.6
ChakraCore and Microsoft Edge in Windows 10 1511, 1607, 1703, 1709, and Windows Server 2016 allows an attacker to gain the same user rights as the current user, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory C
12-12-2017 - 16:29 12-12-2017 - 16:29
CVE-2017-11911 7.6
ChakraCore and Windows 10 1511, 1607, 1703, 1709, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corrupt
12-12-2017 - 16:29 12-12-2017 - 16:29
CVE-2017-11909 7.6
ChakraCore and Windows 10 1511, 1607, 1703, 1709, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corrupt
12-12-2017 - 16:29 12-12-2017 - 16:29
CVE-2017-11907 7.6
Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows an attacker to gain the same user rights
12-12-2017 - 16:29 12-12-2017 - 16:29
CVE-2017-11906 2.6
Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, and Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows an attacker to obtain information to
12-12-2017 - 16:29 12-12-2017 - 16:29
CVE-2017-11903 7.6
Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows an attacker to gain the same user rights
12-12-2017 - 16:29 12-12-2017 - 16:29
CVE-2017-11893 7.6
ChakraCore and Microsoft Edge in Windows 10 1511, 1607, 1703, 1709, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to how the scripting engine handles objects in memory, aka "Scripting Eng
12-12-2017 - 16:29 12-12-2017 - 16:29
CVE-2017-11890 7.6
Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allow an attacker to execute arbitrary code in the context of the cu
12-12-2017 - 16:29 12-12-2017 - 16:29
CVE-2017-11885 8.5
Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2008 SP2 and R2 SP1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allow a remote code execution vulnerability due to
12-12-2017 - 16:29 12-12-2017 - 16:29
CVE-2017-5717 7.2
Type Confusion in Content Protection HECI Service in Intel Graphics Driver allows unprivileged user to elevate privileges via local access.
12-12-2017 - 15:29 12-12-2017 - 15:29
CVE-2017-17562 6.8
Embedthis GoAhead before 3.6.5 allows remote code execution if CGI is enabled and a CGI program is dynamically linked. This is a result of initializing the environment of forked CGI scripts using untrusted HTTP request parameters in the cgiHandler fu
12-12-2017 - 14:29 12-12-2017 - 14:29
CVE-2017-17560 10.0
An issue was discovered on Western Digital MyCloud PR4100 2.30.172 devices. The web administration component, /web/jquery/uploader/multi_uploadify.php, provides multipart upload functionality that is accessible without authentication and can be used
12-12-2017 - 13:29 12-12-2017 - 13:29
CVE-2017-17111 7.5
Posty Readymade Classifieds Script 1.0 allows an attacker to inject SQL commands via a listings.php?catid= or ads-details.php?ID= request.
11-12-2017 - 12:29 11-12-2017 - 12:29
CVE-2017-17110 7.5
Techno Portfolio Management Panel 1.0 allows an attacker to inject SQL commands via a single.php?id= request.
11-12-2017 - 12:29 11-12-2017 - 12:29
CVE-2017-15944 7.5
Palo Alto Networks PAN-OS before 6.1.19, 7.0.x before 7.0.19, 7.1.x before 7.1.14, and 8.0.x before 8.0.6 allows remote attackers to execute arbitrary code via vectors involving the management interface.
11-12-2017 - 12:29 11-12-2017 - 12:29
CVE-2017-11319 6.5
Perspective ICM Investigation & Case 5.1.1.16 allows remote authenticated users to modify access level permissions and consequently gain privileges by leveraging insufficient validation methods and missing cross server side checking mechanisms.
11-12-2017 - 12:29 11-12-2017 - 12:29
CVE-2017-16921 9.0
In OTRS 6.0.x up to and including 6.0.1, OTRS 5.0.x up to and including 5.0.24, and OTRS 4.0.x up to and including 4.0.26, an attacker who is logged into OTRS as an agent can manipulate form parameters (related to PGP) and execute arbitrary shell com
08-12-2017 - 10:29 08-12-2017 - 10:29
CVE-2017-17055 8.5
Artica Web Proxy before 3.06.112911 allows remote attackers to execute arbitrary code as root by conducting a cross-site scripting (XSS) attack involving the username-form-id parameter to freeradius.users.php.
06-12-2017 - 21:29 06-12-2017 - 21:29
CVE-2017-16884 4.3
Cross-site scripting (XSS) vulnerability in MistServer before 2.13 allows remote attackers to inject arbitrary web script or HTML via vectors related to failed authentication requests alerts.
06-12-2017 - 21:29 06-12-2017 - 21:29
CVE-2017-14355 7.2
A potential security vulnerability has been identified in HPE Connected Backup versions 8.6 and 8.8.6. The vulnerability could be exploited locally to allow escalation of privilege.
05-12-2017 - 16:29 05-12-2017 - 16:29
CVE-2016-1252 4.3
The apt package in Debian jessie before 1.0.9.8.4, in Debian unstable before 1.4~beta2, in Ubuntu 14.04 LTS before 1.0.1ubuntu2.17, in Ubuntu 16.04 LTS before 1.2.15ubuntu0.2, and in Ubuntu 16.10 before 1.3.2ubuntu0.1 allows man-in-the-middle attacke
05-12-2017 - 11:29 05-12-2017 - 11:29
CVE-2017-8824 7.2
The dccp_disconnect function in net/dccp/proto.c in the Linux kernel through 4.14.3 allows local users to gain privileges or cause a denial of service (use-after-free) via an AF_UNSPEC connect system call during the DCCP_LISTEN state.
05-12-2017 - 04:29 05-12-2017 - 04:29
CVE-2017-16930 10.0
The remote management interface on the Claymore Dual GPU miner 10.1 allows an unauthenticated remote attacker to execute arbitrary code due to a stack-based buffer overflow in the request handler. This can be exploited via a long API request that is
05-12-2017 - 04:29 05-12-2017 - 04:29
CVE-2017-16929 8.5
The remote management interface on the Claymore Dual GPU miner 10.1 is vulnerable to an authenticated directory traversal vulnerability exploited by issuing a specially crafted request, allowing a remote attacker to read/write arbitrary files. This c
05-12-2017 - 04:29 05-12-2017 - 04:29
CVE-2017-17095 6.8
tools/pal2rgb.c in pal2rgb in LibTIFF 4.0.9 allows remote attackers to cause a denial of service (TIFFSetupStrips heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted TIFF file.
02-12-2017 - 01:29 02-12-2017 - 01:29
CVE-2017-17090 5.0
An issue was discovered in chan_skinny.c in Asterisk Open Source 13.18.2 and older, 14.7.2 and older, and 15.1.2 and older, and Certified Asterisk 13.13-cert7 and older. If the chan_skinny (aka SCCP protocol) channel driver is flooded with certain re
01-12-2017 - 19:29 01-12-2017 - 19:29
CVE-2017-16953 5.0
connoppp.cgi on ZTE ZXDSL 831CII devices does not require HTTP Basic Authentication, which allows remote attackers to modify the PPPoE configuration or set up a malicious configuration via a GET request.
01-12-2017 - 12:29 01-12-2017 - 12:29
CVE-2017-16895 7.2
The (1) arq_updater, (2) arqcommitter, (3) standardrestorer, (4) arqglacierrestorer, and (5) arqs3glacierrestorer helper apps in Arq 5.x before 5.10 for Mac allow local users to gain root privileges via a crafted data packet.
01-12-2017 - 12:29 01-12-2017 - 12:29
CVE-2017-15357 6.9
The setpermissions function in the auto-updater in Arq before 5.9.7 for Mac allows local users to gain root privileges via a symlink attack on the updater binary itself.
01-12-2017 - 12:29 01-12-2017 - 12:29
CVE-2017-17085 5.0
In Wireshark 2.4.0 to 2.4.2 and 2.2.0 to 2.2.10, the CIP Safety dissector could crash. This was addressed in epan/dissectors/packet-cipsafety.c by validating the packet length.
01-12-2017 - 03:29 01-12-2017 - 03:29
CVE-2017-11282 7.5
Adobe Flash Player has an exploitable memory corruption vulnerability in the MP4 atom parser. Successful exploitation could lead to arbitrary code execution. This affects 26.0.0.151 and earlier.
01-12-2017 - 03:29 01-12-2017 - 03:29
CVE-2017-11281 7.5
Adobe Flash Player has an exploitable memory corruption vulnerability in the text handling function. Successful exploitation could lead to arbitrary code execution. This affects 26.0.0.151 and earlier.
01-12-2017 - 03:29 01-12-2017 - 03:29
CVE-2017-1000405 6.9
The Linux Kernel versions 2.6.38 through 4.14 have a problematic use of pmd_mkdirty() in the touch_pmd() function inside the THP implementation. touch_pmd() can be reached by get_user_pages(). In such case, the pmd will become dirty. This scenario br
30-11-2017 - 17:29 30-11-2017 - 17:29
CVE-2017-13872 9.3
An issue was discovered in certain Apple products. macOS High Sierra before Security Update 2017-001 is affected. The issue involves the "Directory Utility" component. It allows attackers to obtain administrator access without a password via certain
29-11-2017 - 12:29 29-11-2017 - 12:29
CVE-2017-17058 5.0
** DISPUTED ** The WooCommerce plugin through 3.x for WordPress has a Directory Traversal Vulnerability via a /wp-content/plugins/woocommerce/templates/emails/plain/ URI, which accesses a parent directory. NOTE: a software maintainer indicates that D
29-11-2017 - 02:29 29-11-2017 - 02:29
CVE-2017-16952 4.3
KMPlayer 4.2.2.4 allows remote attackers to cause a denial of service via a crafted NSV file.
28-11-2017 - 10:29 28-11-2017 - 10:29
CVE-2017-16951 4.3
Winamp Pro 5.66 Build 3512 allows remote attackers to cause a denial of service via a crafted WAV, WMV, AU, ASF, AIFF, or AIF file.
28-11-2017 - 10:29 28-11-2017 - 10:29
CVE-2017-16994 2.1
The walk_hugetlb_range function in mm/pagewalk.c in the Linux kernel before 4.14.2 mishandles holes in hugetlb ranges, which allows local users to obtain sensitive information from uninitialized kernel memory via crafted use of the mincore() system c
27-11-2017 - 14:29 27-11-2017 - 14:29
CVE-2017-16962 4.3
The WebMail components (Crystal, pronto, and pronto4) in CommuniGate Pro before 6.2.1 have stored XSS vulnerabilities via (1) the location or details field of a Google Calendar invitation, (2) a crafted Outlook.com calendar (aka Hotmail Calendar) inv
27-11-2017 - 05:29 27-11-2017 - 05:29
CVE-2017-16944 5.0
The receive_msg function in receive.c in the SMTP daemon in Exim 4.88 and 4.89 allows remote attackers to cause a denial of service (infinite loop and stack exhaustion) via vectors involving BDAT commands and an improper check for a '.' character sig
25-11-2017 - 12:29 25-11-2017 - 12:29
CVE-2017-16939 7.2
The XFRM dump policy implementation in net/xfrm/xfrm_user.c in the Linux kernel before 4.13.11 allows local users to gain privileges or cause a denial of service (use-after-free) via a crafted SO_RCVBUF setsockopt system call in conjunction with XFRM
24-11-2017 - 05:29 24-11-2017 - 05:29
CVE-2017-16935 5.0
Ametys before 4.0.3 requires authentication only for URIs containing a /cms/ substring, which allows remote attackers to bypass intended access restrictions via a direct request to /plugins/core-ui/servercomm/messages.xml, as demonstrated by changing
24-11-2017 - 02:29 24-11-2017 - 02:29
CVE-2017-16934 10.0
The web server on DBL DBLTek devices allows remote attackers to execute arbitrary OS commands by obtaining the admin password via a frame.html?content=/dev/mtdblock/5 request, and then using this password for the HTTP Basic Authentication needed for
24-11-2017 - 02:29 24-11-2017 - 02:29
CVE-2017-16902 7.8
On the Vonage VDV-23 115 3.2.11-0.9.40 home router, sending a long string of characters in the loginPassword and/or loginUsername field to goform/login causes the router to reboot.
20-11-2017 - 13:29 20-11-2017 - 13:29
CVE-2017-16819 3.5
A stored cross-site scripting vulnerability in the Icon Time Systems RTC-1000 v2.5.7458 and earlier time clock allows remote attackers to inject arbitrary JavaScript in the nameFirst (aka First Name) field for the employee details page (/employee.htm
17-11-2017 - 12:29 17-11-2017 - 12:29
CVE-2017-16843 3.5
Vonage VDV-23 115 3.2.11-0.9.40 devices have stored XSS via the NewKeyword or NewDomain field to /goform/RgParentalBasic.
16-11-2017 - 16:29 16-11-2017 - 16:29
CVE-2017-16777 7.2
If HashiCorp Vagrant VMware Fusion plugin (aka vagrant-vmware-fusion) 5.0.3 is installed but VMware Fusion is not, a local attacker can create a fake application directory and exploit the suid sudo helper in order to escalate to root.
16-11-2017 - 10:29 16-11-2017 - 10:29
CVE-2017-16841 4.3
LanSweeper 6.0.100.75 has XSS via the description parameter to /Calendar/CalendarActions.aspx.
15-11-2017 - 22:29 15-11-2017 - 22:29
CVE-2017-15806 6.8
The send function in the ezcMailMtaTransport class in Zeta Components Mail before 1.8.2 does not properly restrict the set of characters used in the ezcMail returnPath property, which might allow remote attackers to execute arbitrary code via a craft
15-11-2017 - 11:29 15-11-2017 - 11:29
CVE-2017-15272 2.1
The PSFTPd 10.0.4 Build 729 server stores its configuration inside PSFTPd.dat. This file is a Microsoft Access Database and can be extracted. The application sets the encrypt flag with the password "ITsILLEGAL"; however, this password is not required
15-11-2017 - 11:29 15-11-2017 - 11:29
CVE-2017-15271 4.3
A use-after-free issue could be triggered remotely in the SFTP component of PSFTPd 10.0.4 Build 729. This issue could be triggered prior to authentication. The PSFTPd server did not automatically restart, which enabled attackers to perform a very eff
15-11-2017 - 11:29 15-11-2017 - 11:29
CVE-2017-15270 5.0
The PSFTPd 10.0.4 Build 729 server does not properly escape data before writing it into a Comma Separated Values (CSV) file. This can be used by attackers to hide data in the Graphical User Interface (GUI) view and create arbitrary entries to a certa
15-11-2017 - 11:29 15-11-2017 - 11:29
CVE-2017-15269 4.0
The PSFTPd 10.0.4 Build 729 server does not prevent FTP bounce scans by default. These can be performed using "nmap -b" and allow performing scans via the FTP server.
15-11-2017 - 11:29 15-11-2017 - 11:29
CVE-2017-14961 7.2
In IKARUS anti.virus 2.16.7, the ntguard.sys driver contains an Arbitrary Write vulnerability because of not validating input values from IOCtl 0x8300000c.
15-11-2017 - 11:29 15-11-2017 - 11:29
CVE-2017-7851 6.8
D-Link DCS-936L devices with firmware before 1.05.07 have an inadequate CSRF protection mechanism that requires the device's IP address to be a substring of the HTTP Referer header.
15-11-2017 - 03:29 15-11-2017 - 03:29
CVE-2017-11882 9.3
Microsoft Office 2007 Service Pack 3, Microsoft Office 2010 Service Pack 2, Microsoft Office 2013 Service Pack 1, and Microsoft Office 2016 allow an attacker to run arbitrary code in the context of the current user by failing to properly handle objec
14-11-2017 - 22:29 14-11-2017 - 22:29
CVE-2017-11873 7.6
ChakraCore and Microsoft Edge in Windows 10 1511, 1607, 1703, 1709, Windows Server 2016 and Windows Server, version 1709 allows an attacker to gain the same user rights as the current user, due to how the scripting engine handles objects in memory, a
14-11-2017 - 22:29 14-11-2017 - 22:29
CVE-2017-11870 7.6
ChakraCore and Microsoft Edge in Windows 10 1703, 1709, and Windows Server, version 1709 allows an attacker to gain the same user rights as the current user, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corr
14-11-2017 - 22:29 14-11-2017 - 22:29
CVE-2017-11861 7.6
Microsoft Edge in Windows 10 1607, 1703, 1709, Windows Server 2016 and Windows Server, version 1709 allows an attacker to gain the same user rights as the current user, due to how the scripting engine handles objects in memory, aka "Scripting Engine
14-11-2017 - 22:29 14-11-2017 - 22:29
CVE-2017-11855 7.6
Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, 1709, Windows Server 2016 and Windows Server, version 1709 allows an atta
14-11-2017 - 22:29 14-11-2017 - 22:29
CVE-2017-11841 7.6
ChakraCore and Microsoft Edge in Windows 10 Gold, 1511, 1607, 1703, 1709, Windows Server 2016 and Windows Server, version 1709 allows an attacker to gain the same user rights as the current user, due to how the scripting engine handles objects in mem
14-11-2017 - 22:29 14-11-2017 - 22:29
CVE-2017-11840 7.6
ChakraCore and Microsoft Edge in Windows 10 Gold, 1511, 1607, 1703, 1709, Windows Server 2016 and Windows Server, version 1709 allows an attacker to gain the same user rights as the current user, due to how the scripting engine handles objects in mem
14-11-2017 - 22:29 14-11-2017 - 22:29
CVE-2017-11839 7.6
Microsoft Edge in Windows 10 Gold, 1511, 1607, 1703, 1709, Windows Server 2016 and Windows Server, version 1709 allows an attacker to take control of an affected system, due to how the scripting engine handles objects in memory, aka "Scripting Engine
14-11-2017 - 22:29 14-11-2017 - 22:29
CVE-2017-11831 4.7
Windows kernel in Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2008 SP2 and R2 SP1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, 1709, Windows Server 2016, and Windows Server, version 1709 allows an attacker to log on to an
14-11-2017 - 22:29 14-11-2017 - 22:29
CVE-2017-11830 4.6
Device Guard in Windows 10 Gold, 1511, 1607, 1703, and 1709, Windows Server 2016, and Windows Server, version 1709 allows an attacker to make an unsigned file appear to be signed, due to a security feature bypass, aka "Device Guard Security Feature B
14-11-2017 - 22:29 14-11-2017 - 22:29
CVE-2017-12636 9.0
CouchDB administrative users can configure the database server via HTTP(S). Some of the configuration options include paths for operating system-level binaries that are subsequently launched by CouchDB. This allows an admin user in Apache CouchDB bef
14-11-2017 - 15:29 14-11-2017 - 15:29
CVE-2017-12635 10.0
Due to differences in the Erlang-based JSON parser and JavaScript-based JSON parser, it is possible in Apache CouchDB before 1.7.0 and 2.x before 2.1.1 to submit _users documents with duplicate keys for 'roles' used for access control within the data
14-11-2017 - 15:29 14-11-2017 - 15:29
CVE-2017-16807 3.5
A cross-site Scripting (XSS) vulnerability in Kirby Panel before 2.3.3, 2.4.x before 2.4.2, and 2.5.x before 2.5.7 exists when displaying a specially prepared SVG document that has been uploaded as a content file.
13-11-2017 - 16:29 13-11-2017 - 16:29
CVE-2017-16806 5.0
The Process function in RemoteTaskServer/WebServer/HttpServer.cs in Ulterius before 1.9.5.0 allows HTTP server directory traversal.
13-11-2017 - 16:29 13-11-2017 - 16:29
CVE-2017-13849 4.3
An issue was discovered in certain Apple products. iOS before 11.1 is affected. tvOS before 11.1 is affected. watchOS before 4.1 is affected. The issue involves the "CoreText" component. It allows remote attackers to cause a denial of service (applic
12-11-2017 - 22:29 12-11-2017 - 22:29
CVE-2017-13802 6.8
An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1 is affected. iCloud before 7.1 on Windows is affected. iTunes before 12.7.1 on Windows is affected. tvOS before 11.1 is affected. The issue involves
12-11-2017 - 22:29 12-11-2017 - 22:29
CVE-2017-13798 6.8
An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1 is affected. iCloud before 7.1 on Windows is affected. iTunes before 12.7.1 on Windows is affected. tvOS before 11.1 is affected. The issue involves
12-11-2017 - 22:29 12-11-2017 - 22:29
CVE-2017-13797 6.8
An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1 is affected. iCloud before 7.1 on Windows is affected. iTunes before 12.7.1 on Windows is affected. tvOS before 11.1 is affected. The issue involves
12-11-2017 - 22:29 12-11-2017 - 22:29
CVE-2017-13796 6.8
An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1 is affected. iCloud before 7.1 on Windows is affected. iTunes before 12.7.1 on Windows is affected. tvOS before 11.1 is affected. The issue involves
12-11-2017 - 22:29 12-11-2017 - 22:29
CVE-2017-13795 6.8
An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1 is affected. iCloud before 7.1 on Windows is affected. iTunes before 12.7.1 on Windows is affected. tvOS before 11.1 is affected. The issue involves
12-11-2017 - 22:29 12-11-2017 - 22:29
CVE-2017-13794 6.8
An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1 is affected. iCloud before 7.1 on Windows is affected. iTunes before 12.7.1 on Windows is affected. tvOS before 11.1 is affected. The issue involves
12-11-2017 - 22:29 12-11-2017 - 22:29
CVE-2017-13792 6.8
An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1 is affected. iCloud before 7.1 on Windows is affected. iTunes before 12.7.1 on Windows is affected. tvOS before 11.1 is affected. The issue involves
12-11-2017 - 22:29 12-11-2017 - 22:29
CVE-2017-13791 6.8
An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1 is affected. iCloud before 7.1 on Windows is affected. iTunes before 12.7.1 on Windows is affected. tvOS before 11.1 is affected. The issue involves
12-11-2017 - 22:29 12-11-2017 - 22:29
CVE-2017-13785 6.8
An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1 is affected. iCloud before 7.1 on Windows is affected. iTunes before 12.7.1 on Windows is affected. tvOS before 11.1 is affected. The issue involves
12-11-2017 - 22:29 12-11-2017 - 22:29
CVE-2017-13784 6.8
An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1 is affected. iCloud before 7.1 on Windows is affected. iTunes before 12.7.1 on Windows is affected. tvOS before 11.1 is affected. The issue involves
12-11-2017 - 22:29 12-11-2017 - 22:29
CVE-2017-13783 6.8
An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1 is affected. iCloud before 7.1 on Windows is affected. iTunes before 12.7.1 on Windows is affected. tvOS before 11.1 is affected. The issue involves
12-11-2017 - 22:29 12-11-2017 - 22:29
CVE-2017-16781 3.5
The installer in MyBB before 1.8.13 has XSS.
10-11-2017 - 18:29 10-11-2017 - 18:29
CVE-2017-16780 7.5
The installer in MyBB before 1.8.13 allows remote attackers to execute arbitrary code by writing to the configuration file.
10-11-2017 - 18:29 10-11-2017 - 18:29