Max CVSS | 7.8 | Min CVSS | 3.5 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2018-10310 | 3.5 |
A persistent cross-site scripting vulnerability has been identified in the web interface of the Catapult UK Cookie Consent plugin before 2.3.10 for WordPress that allows the execution of arbitrary HTML/script code in the context of a victim's browser
|
13-06-2018 - 11:29 | 25-04-2018 - 09:29 | |
CVE-2018-10312 | 6.8 |
index.php?m=member&v=pw_reset in WUZHI CMS 4.1.0 allows CSRF to change the password of a common member.
|
24-05-2018 - 18:32 | 24-04-2018 - 02:29 | |
CVE-2018-10070 | 7.8 |
A vulnerability in MikroTik Version 6.41.4 could allow an unauthenticated remote attacker to exhaust all available CPU and all available RAM by sending a crafted FTP request on port 21 that begins with many '\0' characters, preventing the affected ro
|
22-05-2018 - 16:20 | 16-04-2018 - 21:29 | |
CVE-2018-10253 | 5.0 |
Paessler PRTG Network Monitor before 18.1.39.1648 mishandles stack memory during unspecified API calls.
|
22-05-2018 - 15:12 | 21-04-2018 - 02:29 | |
CVE-2018-9205 | 5.0 |
Vulnerability in avatar_uploader v7.x-1.0-beta8 , The code in view.php doesn't verify users or sanitize the file path.
|
21-05-2018 - 12:37 | 04-04-2018 - 15:29 | |
CVE-2018-10109 | 3.5 |
Monstra CMS 3.0.4 has a stored XSS vulnerability when an attacker has access to the editor role, and enters the payload in the content section of a new page in the blog catalog.
|
16-05-2018 - 15:21 | 16-04-2018 - 09:58 | |
CVE-2007-5067 | 7.5 |
Multiple buffer overflows in iMatix Xitami Web Server 2.5c2 allow remote attackers to execute arbitrary code via a long If-Modified-Since header to (1) xigui32.exe or (2) xitami.exe.
|
29-09-2017 - 01:29 | 24-09-2007 - 23:17 |