VYPR

CVEs

100,082 total · page 1658 of 2,002

  • CVE-2018-19896HigDec 6, 2018
    risk 0.47cvss 7.2epss 0.01

    ThinkCMF X2.2.2 has SQL Injection via the function delete() in SlideController.class.php and is exploitable with the manager privilege via the ids[] parameter in a slide action.

  • CVE-2018-19895HigDec 6, 2018
    risk 0.47cvss 7.2epss 0.01

    ThinkCMF X2.2.2 has SQL Injection via the function edit_post() in NavController.class.php and is exploitable with the manager privilege via the parentid parameter in a nav action.

  • CVE-2018-19894HigDec 6, 2018
    risk 0.47cvss 7.2epss 0.01

    ThinkCMF X2.2.2 has SQL Injection via the functions check() and delete() in CommentadminController.class.php and is exploitable with the manager privilege via the ids[] parameter in a commentadmin action.

  • CVE-2018-19754HigDec 5, 2018
    risk 0.57cvss 8.8epss 0.03

    Tarantella Enterprise before 3.11 allows bypassing Access Control.

  • CVE-2018-19753HigDec 5, 2018
    risk 0.50cvss 7.5epss 0.17

    Tarantella Enterprise before 3.11 allows Directory Traversal.

  • CVE-2018-19650HigDec 5, 2018
    risk 0.51cvss 7.8epss 0.01

    Local attackers can trigger a stack-based buffer overflow on vulnerable installations of Antiy-AVL ATool security management v1.0.0.22. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The…

  • CVE-2018-1002103HigDec 5, 2018
    risk 0.53cvss 8.1epss 0.01

    In Minikube versions 0.3.0-0.29.0, minikube exposes the Kubernetes Dashboard listening on the VM IP at port 30000. In VM environments where the IP is easy to predict, the attacker can use DNS rebinding to indirectly make requests to the Kubernetes Dashboard, create a new…

  • CVE-2018-15797HigDec 5, 2018
    risk 0.48cvss 8.4epss 0.02

    Cloud Foundry NFS volume release, 1.2.x prior to 1.2.5, 1.5.x prior to 1.5.4, 1.7.x prior to 1.7.3, logs the cf admin username and password when running the nfsbrokerpush BOSH deploy errand. A remote authenticated user with access to BOSH can obtain the admin credentials for the…

  • CVE-2018-1941HigDec 5, 2018
    risk 0.55cvss 8.4epss 0.00

    IBM Campaign 9.1.0 and 9.1.2 could allow a local user to obtain admini privileges due to the application not validating access permissions. IBM X-Force ID: 153382.

  • CVE-2018-1730HigDec 5, 2018
    risk 0.46cvss 7.1epss 0.02

    IBM QRadar SIEM 7.2 and 7.3 is vulnerable to a XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 147709.

  • CVE-2018-1648HigDec 5, 2018
    risk 0.49cvss 7.5epss 0.01

    IBM QRadar SIEM 7.2 and 7.3 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 144653.

  • CVE-2018-19865HigDec 5, 2018
    risk 0.49cvss 7.5epss 0.02

    A keystroke logging issue was discovered in Virtual Keyboard in Qt 5.7.x, 5.8.x, 5.9.x, 5.10.x, and 5.11.x before 5.11.3.

  • CVE-2018-19786HigDec 5, 2018
    risk 0.53cvss 8.1epss 0.01

    HashiCorp Vault before 1.0.0 writes the master key to the server log in certain unusual or misconfigured scenarios in which incorrect data comes from the autoseal mechanism without an error being reported.

  • CVE-2018-18648HigDec 4, 2018
    risk 0.49cvss 7.5epss 0.01

    An issue was discovered in GitLab Community and Enterprise Edition before 11.2.7, 11.3.x before 11.3.8, and 11.4.x before 11.4.3. It has Information Exposure Through an Error Message.

  • CVE-2018-18646HigDec 4, 2018
    risk 0.57cvss 8.8epss 0.01

    An issue was discovered in GitLab Community and Enterprise Edition before 11.2.7, 11.3.x before 11.3.8, and 11.4.x before 11.4.3. It allows SSRF.

  • CVE-2018-17939HigDec 4, 2018
    risk 0.49cvss 7.5epss 0.01

    An issue was discovered in GitLab Community and Enterprise Edition 11.1.x before 11.1.8, 11.2.x before 11.2.5, and 11.3.x before 11.3.2. There is Information Exposure via the merge request JSON endpoint.

  • CVE-2018-18993HigDec 4, 2018
    risk 0.51cvss 7.8epss 0.02

    Two stack-based buffer overflow vulnerabilities have been discovered in CX-One Versions 4.42 and prior (CX-Programmer Versions 9.66 and prior and CX-Server Versions 5.0.23 and prior). When processing project files, the application allows input data to exceed the buffer. An…

  • CVE-2018-18989HigDec 4, 2018
    risk 0.51cvss 7.8epss 0.02

    In CX-One Versions 4.42 and prior (CX-Programmer Versions 9.66 and prior and CX-Server Versions 5.0.23 and prior), when processing project files, the application fails to check if it is referencing freed memory. An attacker could use a specially crafted project file to exploit…

  • CVE-2018-0468HigDec 4, 2018
    risk 0.51cvss 7.8epss 0.00

    A vulnerability in the configuration of a local database installed as part of the Cisco Energy Management Suite (CEMS) could allow an authenticated, local attacker to access and alter confidential data. The vulnerability is due to the installation of the PostgreSQL database with…

  • CVE-2018-6101HigDec 4, 2018
    risk 0.49cvss 7.5epss 0.03

    A lack of host validation in DevTools in Google Chrome prior to 66.0.3359.117 allowed a remote attacker to execute arbitrary code via a crafted HTML page, if the user is running a remote DevTools debugging server.

  • CVE-2018-6094HigDec 4, 2018
    risk 0.57cvss 8.8epss 0.02

    Inline metadata in GarbageCollection in Google Chrome prior to 66.0.3359.117 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.

  • CVE-2018-6092HigDec 4, 2018
    risk 0.61cvss 8.8epss 0.09

    An integer overflow on 32-bit systems in WebAssembly in Google Chrome prior to 66.0.3359.117 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page.

  • CVE-2018-6090HigDec 4, 2018
    risk 0.57cvss 8.8epss 0.03

    An integer overflow that lead to a heap buffer-overflow in Skia in Google Chrome prior to 66.0.3359.117 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page.

  • CVE-2018-6088HigDec 4, 2018
    risk 0.57cvss 8.8epss 0.02

    An iterator-invalidation bug in PDFium in Google Chrome prior to 66.0.3359.117 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted PDF file.

  • CVE-2018-6087HigDec 4, 2018
    risk 0.57cvss 8.8epss 0.03

    A use-after-free in WebAssembly in Google Chrome prior to 66.0.3359.117 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page.

  • CVE-2018-6086HigDec 4, 2018
    risk 0.57cvss 8.8epss 0.03

    A double-eviction in the Incognito mode cache that lead to a user-after-free in Networking Disk Cache in Google Chrome prior to 66.0.3359.117 allowed a remote attacker to execute arbitrary code via a crafted HTML page.

  • CVE-2018-6085HigDec 4, 2018
    risk 0.57cvss 8.8epss 0.04

    Re-entry of a destructor in Networking Disk Cache in Google Chrome prior to 66.0.3359.117 allowed a remote attacker to execute arbitrary code via a crafted HTML page.

  • CVE-2018-12319HigDec 4, 2018
    risk 0.49cvss 7.5epss 0.01

    Denial-of-service in the login page of ASUSTOR ADM 3.1.1 allows attackers to prevent users from signing in by placing malformed text in the title.

  • CVE-2018-12318HigDec 4, 2018
    risk 0.57cvss 8.8epss 0.01

    Information disclosure in the SNMP settings page in ASUSTOR ADM version 3.1.1 allows attackers to obtain the SNMP password in cleartext.

  • CVE-2018-12317HigDec 4, 2018
    risk 0.57cvss 8.8epss 0.03

    OS command injection in group.cgi in ASUSTOR ADM version 3.1.1 allows attackers to execute system commands as root by modifying the "name" POST parameter.

  • CVE-2018-12316HigDec 4, 2018
    risk 0.57cvss 8.8epss 0.03

    OS Command Injection in upload.cgi in ASUSTOR ADM version 3.1.1 allows attackers to execute system commands by modifying the filename POST parameter.

  • CVE-2018-12314HigDec 4, 2018
    risk 0.49cvss 7.5epss 0.02

    Directory Traversal in downloadwallpaper.cgi in ASUSTOR ADM version 3.1.1 allows attackers to download arbitrary files by manipulating the "file" and "folder" URL parameters.

  • CVE-2018-12312HigDec 4, 2018
    risk 0.57cvss 8.8epss 0.03

    OS command injection in user.cgi in ASUSTOR ADM version 3.1.1 allows attackers to execute system commands as root via the "secret_key" URL parameter.

  • CVE-2018-12309HigDec 4, 2018
    risk 0.49cvss 7.5epss 0.01

    Directory Traversal in upload.cgi in ASUSTOR ADM version 3.1.1 allows attackers to upload files to arbitrary locations by modifying the "path" URL parameter. NOTE: the "filename" POST parameter is covered by CVE-2018-11345.

  • CVE-2018-12307HigDec 4, 2018
    risk 0.57cvss 8.8epss 0.03

    OS command injection in user.cgi in ASUSTOR ADM version 3.1.1 allows attackers to execute system commands as root via the "name" POST parameter.

  • CVE-2018-12306HigDec 4, 2018
    risk 0.49cvss 7.5epss 0.02

    Directory Traversal in File Explorer in ASUSTOR ADM version 3.1.1 allows attackers to view arbitrary files by modifying the "file1" URL parameter, a similar issue to CVE-2018-11344.

  • CVE-2018-11347HigDec 4, 2018
    risk 0.57cvss 8.8epss 0.01

    The YunoHost 2.7.2 through 2.7.14 web application is affected by one HTTP Response Header Injection. This flaw allows an attacker to inject, into the response from the server, one or several HTTP Header. It requires an interaction with the user to send him the malicious link. It…

  • CVE-2018-19591HigDec 4, 2018
    risk 0.49cvss 7.5epss 0.06

    In the GNU C Library (aka glibc or libc6) through 2.28, attempting to resolve a crafted hostname via getaddrinfo() leads to the allocation of a socket descriptor that is not closed. This is related to the if_nametoindex() function.

  • CVE-2018-16634HigDec 4, 2018
    risk 0.57cvss 8.8epss 0.01

    Pluck v4.7.7 allows CSRF via admin.php?action=settings.

  • CVE-2018-17159HigDec 4, 2018
    risk 0.49cvss 7.5epss 0.04

    In FreeBSD before 11.2-STABLE(r340854) and 11.2-RELEASE-p5, the NFS server lacks a bounds check in the READDIRPLUS NFS request. Unprivileged remote users with access to the NFS server can cause a resource exhaustion by forcing the server to allocate an arbitrarily large memory…

  • CVE-2018-17158HigDec 4, 2018
    risk 0.49cvss 7.5epss 0.04

    In FreeBSD before 11.2-STABLE(r340854) and 11.2-RELEASE-p5, an integer overflow error can occur when handling the client address length field in an NFSv4 request. Unprivileged remote users with access to the NFS server can crash the system by sending a specially crafted NFSv4…

  • CVE-2018-6981HigDec 4, 2018
    risk 0.57cvss 8.8epss 0.01

    VMware ESXi 6.7 without ESXi670-201811401-BG and VMware ESXi 6.5 without ESXi650-201811301-BG, VMware ESXi 6.0 without ESXi600-201811401-BG, VMware Workstation 15, VMware Workstation 14.1.3 or below, VMware Fusion 11, VMware Fusion 10.1.3 or below contain uninitialized stack…

  • CVE-2018-19853HigDec 4, 2018
    risk 0.57cvss 8.8epss 0.01

    An issue was discovered in hitshop through 2014-07-15. There is an elevation-of-privilege vulnerability (that allows control over the whole web site) via the admin.php/user/add URI because a storekeeper account (which is supposed to have only privileges for commodity management)…

  • CVE-2018-4021HigDec 3, 2018
    risk 0.53cvss 7.2epss 0.72

    An exploitable command injection vulnerability exists in the way Netgate pfSense CE 2.4.4-RELEASE processes the parameters of a specific POST request. The attacker can exploit this and gain the ability to execute arbitrary commands on the system. An attacker needs to be able to…

  • CVE-2018-4020HigDec 3, 2018
    risk 0.51cvss 7.2epss 0.49

    An exploitable command injection vulnerability exists in the way Netgate pfSense CE 2.4.4-RELEASE processes the parameters of a specific POST request. The attacker can exploit this and gain the ability to execute arbitrary commands on the system. An attacker needs to be able to…

  • CVE-2018-4019HigDec 3, 2018
    risk 0.51cvss 7.2epss 0.49

    An exploitable command injection vulnerability exists in the way Netgate pfSense CE 2.4.4-RELEASE processes the parameters of a specific POST request. The attacker can exploit this and gain the ability to execute arbitrary commands on the system. An attacker needs to be able to…

  • CVE-2018-3854HigDec 3, 2018
    risk 0.46cvss 7.1epss 0.00

    An exploitable information disclosure vulnerability exists in the password protection functionality of Quicken Deluxe 2018 for Mac version 5.2.2. A specially crafted sqlite3 request can cause the removal of the password protection, allowing an attacker to access and modify the…

  • CVE-2018-14707HigDec 3, 2018
    risk 0.51cvss 7.5epss 0.28

    Directory traversal in the Drobo Pix web application on Drobo 5N2 NAS version 4.0.5-13.28.96115 allows unauthenticated attackers to upload files to arbitrary locations.

  • CVE-2018-14702HigDec 3, 2018
    risk 0.49cvss 7.5epss 0.01

    Incorrect access control in the /drobopix/api/drobo.php endpoint in Drobo 5N2 NAS version 4.0.5-13.28.96115 allows unauthenticated attackers to retrieve sensitive system information.

  • CVE-2018-14700HigDec 3, 2018
    risk 0.49cvss 7.5epss 0.01

    Incorrect access control in the /mysql/api/logfile.php endpoint in Drobo 5N2 NAS version 4.0.5-13.28.96115 allows unauthenticated attackers to retrieve MySQL log files via the "name" URL parameter.