VYPR

CVEs

101,972 total · page 1837 of 2,040

  • CVE-2017-1000450HigJan 2, 2018
    risk 0.00cvss 8.8epss 0.03

    In opencv/modules/imgcodecs/src/utils.cpp, functions FillUniColor and FillUniGray do not check the input length, which can lead to integer overflow. If the image is from remote, may lead to remote code execution or denial of service. This affects Opencv 3.3 and earlier.

  • CVE-2017-1000448HigJan 2, 2018
    risk 0.49cvss 7.5epss 0.02

    Structured Data Linter versions 2.4.1 and older are vulnerable to a directory traversal attack in the URL input field resulting in the possibility of disclosing information about the remote host.

  • CVE-2017-1000412HigJan 2, 2018
    risk 0.00cvss 7.5epss 0.02

    Linaro's open source TEE solution called OP-TEE, version 2.4.0 (and older) is vulnerable to the bellcore attack in the LibTomCrypt code resulting in compromised private RSA key.

  • CVE-2017-9966HigJan 2, 2018
    risk 0.46cvss 7.1epss 0.02

    A privilege escalation vulnerability exists in Schneider Electric's Pelco VideoXpert Enterprise versions 2.0 and prior. By replacing certain files, an unauthorized user can obtain system privileges and the inserted code would execute at an elevated privilege level.

  • CVE-2018-3814HigJan 1, 2018
    risk 0.57cvss 8.8epss 0.01

    Craft CMS 2.6.3000 allows remote attackers to execute arbitrary PHP code by using the "Assets->Upload files" screen and then the "Replace it" option, because this allows a .jpg file to have embedded PHP code, and then be renamed to a .php extension.

  • CVE-2017-18009HigJan 1, 2018
    risk 0.00cvss 7.5epss 0.02

    In OpenCV 3.3.1, a heap-based buffer over-read exists in the function cv::HdrDecoder::checkSignature in modules/imgcodecs/src/grfmt_hdr.cpp.

  • CVE-2017-17704HigDec 31, 2017
    risk 0.48cvss 7.4epss 0.01

    A door-unlocking issue was discovered on Software House iStar Ultra devices through 6.5.2.20569 when used in conjunction with the IP-ACM Ethernet Door Module. The communications between the IP-ACM and the iStar Ultra is encrypted using a fixed AES key and IV. Each message is…

  • CVE-2017-14855HigDec 30, 2017
    risk 0.56cvss 8.6epss 0.01

    Red Lion HMI panels allow remote attackers to cause a denial of service (software exception) via an HTTP POST request to a long URI that does not exist, as demonstrated by version HMI 2.41 PLC 2.42.

  • CVE-2017-17997HigDec 30, 2017
    risk 0.49cvss 7.5epss 0.02

    In Wireshark before 2.2.12, the MRDISC dissector misuses a NULL pointer and crashes. This was addressed in epan/dissectors/packet-mrdisc.c by validating an IPv4 address. This vulnerability is similar to CVE-2017-9343.

  • CVE-2017-17990HigDec 30, 2017
    risk 0.57cvss 8.8epss 0.01

    Biometric Shift Employee Management System has CSRF via index.php in an edit_holiday action.

  • CVE-2017-17987HigDec 30, 2017
    risk 0.47cvss 7.2epss 0.01

    PHP Scripts Mall Muslim Matrimonial Script allows arbitrary file upload via admin/mydetails_edit.php.

  • CVE-2017-17983HigDec 30, 2017
    risk 0.57cvss 8.8epss 0.01

    PHP Scripts Mall Muslim Matrimonial Script has SQL injection via the view-profile.php mem_id parameter.

  • CVE-2017-17901HigDec 29, 2017
    risk 0.49cvss 7.5epss 0.02

    ZyXEL P-660HW v3 devices allow remote attackers to cause a denial of service (CPU consumption) via a flood of IP packets with a TTL of 1.

  • CVE-2015-8008HigDec 29, 2017
    risk 0.49cvss 7.5epss 0.03

    The OAuth extension for MediaWiki improperly negotiates a new client token only over Special:OAuth/initiate, which allows attackers to bypass intended IP address access restrictions by making an API request with an existing token.

  • CVE-2015-3302HigDec 29, 2017
    risk 0.53cvss 7.5epss 0.22

    The TheCartPress eCommerce Shopping Cart (aka The Professional WordPress eCommerce Plugin) plugin for WordPress before 1.3.9.3 allows remote attackers to obtain sensitive order detail information by leveraging a "broken authentication mechanism."

  • CVE-2014-8119HigDec 29, 2017
    risk 0.49cvss 7.5epss 0.03

    The find_ifcfg_path function in netcf before 0.2.7 might allow attackers to cause a denial of service (application crash) via vectors involving augeas path expressions.

  • CVE-2014-0120HigDec 29, 2017
    risk 0.50cvss 8.8epss 0.01

    Cross-site request forgery (CSRF) vulnerability in the admin terminal in Hawt.io allows remote attackers to hijack the authentication of arbitrary users for requests that run commands on the Karaf server, as demonstrated by running "shutdown -f."

  • CVE-2017-17973HigDec 29, 2017
    risk 0.57cvss 8.8epss 0.03

    In LibTIFF 4.0.8, there is a heap-based use-after-free in the t2p_writeproc function in tiff2pdf.c. NOTE: there is a third-party report of inability to reproduce this issue

  • CVE-2017-17920HigDec 29, 2017
    risk 0.53cvss 8.1epss 0.02

    SQL injection vulnerability in the 'reorder' method in Ruby on Rails 5.1.4 and earlier allows remote attackers to execute arbitrary SQL commands via the 'name' parameter. NOTE: The vendor disputes this issue because the documentation states that this method is not intended for…

  • CVE-2017-17919HigDec 29, 2017
    risk 0.53cvss 8.1epss 0.02

    SQL injection vulnerability in the 'order' method in Ruby on Rails 5.1.4 and earlier allows remote attackers to execute arbitrary SQL commands via the 'id desc' parameter. NOTE: The vendor disputes this issue because the documentation states that this method is not intended for…

  • CVE-2017-17917HigDec 29, 2017
    risk 0.53cvss 8.1epss 0.02

    SQL injection vulnerability in the 'where' method in Ruby on Rails 5.1.4 and earlier allows remote attackers to execute arbitrary SQL commands via the 'id' parameter. NOTE: The vendor disputes this issue because the documentation states that this method is not intended for use…

  • CVE-2017-17916HigDec 29, 2017
    risk 0.53cvss 8.1epss 0.02

    SQL injection vulnerability in the 'find_by' method in Ruby on Rails 5.1.4 and earlier allows remote attackers to execute arbitrary SQL commands via the 'name' parameter. NOTE: The vendor disputes this issue because the documentation states that this method is not intended for…

  • CVE-2014-3651HigDec 29, 2017
    risk 0.49cvss 7.5epss 0.02

    JBoss KeyCloak before 1.0.3.Final allows remote attackers to cause a denial of service (resource consumption) via a large value in the size parameter to auth/qrcode, related to QR code generation.

  • CVE-2013-7400HigDec 29, 2017
    risk 0.49cvss 7.5epss 0.02

    The Direct Mail (direct_mail) extension before 3.1.2 for TYPO3 allows remote attackers to obtain sensitive information by leveraging improper checking of authentication codes.

  • CVE-2017-17960HigDec 28, 2017
    risk 0.57cvss 8.8epss 0.01

    PHP Scripts Mall PHP Multivendor Ecommerce has CSRF via admin/sellerupd.php.

  • CVE-2017-17952HigDec 28, 2017
    risk 0.56cvss 8.6epss 0.01

    PHP Scripts Mall PHP Multivendor Ecommerce has a predicable registration URL, which makes it easier for remote attackers to register with an invalid or spoofed e-mail address.

  • CVE-2017-17950HigDec 28, 2017
    risk 0.57cvss 8.8epss 0.01

    Cells Blog 3.5 has SQL Injection via the pub_readpost.php ptid parameter.

  • CVE-2017-15667HigDec 28, 2017
    risk 0.52cvss 7.5epss 0.04

    In Flexense SysGauge Server 3.6.18, the Control Protocol suffers from a denial of service. The attack vector is a crafted SERVER_GET_INFO packet sent to control port 9221.

  • CVE-2017-17942HigDec 28, 2017
    risk 0.57cvss 8.8epss 0.02

    In LibTIFF 4.0.9, there is a heap-based buffer over-read in the function PackBitsEncode in tif_packbits.c.

  • CVE-2017-17941HigDec 28, 2017
    risk 0.47cvss 7.2epss 0.01

    PHP Scripts Mall Single Theater Booking has SQL Injection via the admin/movieview.php movieid parameter.

  • CVE-2017-17939HigDec 28, 2017
    risk 0.57cvss 8.8epss 0.00

    PHP Scripts Mall Single Theater Booking has CSRF via admin/sitesettings.php.

  • CVE-2017-17936HigDec 28, 2017
    risk 0.57cvss 8.8epss 0.00

    Vanguard Marketplace Digital Products PHP has CSRF via /search.

  • CVE-2015-3637HigDec 28, 2017
    risk 0.53cvss 8.1epss 0.01

    SQL injection vulnerability in phpMyBackupPro when run in multi-user mode before 2.5 allows remote attackers to execute arbitrary SQL commands via the username and password parameters.

  • CVE-2017-11698HigDec 27, 2017
    risk 0.51cvss 7.8epss 0.01

    Heap-based buffer overflow in the __get_page function in lib/dbm/src/h_page.c in Mozilla Network Security Services (NSS) allows context-dependent attackers to have unspecified impact using a crafted cert8.db file.

  • CVE-2017-11697HigDec 27, 2017
    risk 0.51cvss 7.8epss 0.01

    The __hash_open function in hash.c:229 in Mozilla Network Security Services (NSS) allows context-dependent attackers to cause a denial of service (floating point exception and crash) via a crafted cert8.db file.

  • CVE-2017-11696HigDec 27, 2017
    risk 0.51cvss 7.8epss 0.01

    Heap-based buffer overflow in the __hash_open function in lib/dbm/src/hash.c in Mozilla Network Security Services (NSS) allows context-dependent attackers to have unspecified impact using a crafted cert8.db file.

  • CVE-2017-11695HigDec 27, 2017
    risk 0.51cvss 7.8epss 0.01

    Heap-based buffer overflow in the alloc_segs function in lib/dbm/src/hash.c in Mozilla Network Security Services (NSS) allows context-dependent attackers to have unspecified impact using a crafted cert8.db file.

  • CVE-2017-13056HigDec 27, 2017
    risk 0.54cvss 7.8epss 0.06

    The launchURL function in PDF-XChange Viewer 2.5 (Build 314.0) might allow remote attackers to execute arbitrary code via a crafted PDF file.

  • CVE-2016-6914HigDec 27, 2017
    risk 0.54cvss 7.8epss 0.01

    Ubiquiti UniFi Video before 3.8.0 for Windows uses weak permissions for the installation directory, which allows local users to gain SYSTEM privileges via a Trojan horse taskkill.exe file.

  • CVE-2017-7163HigDec 27, 2017
    risk 0.51cvss 7.8epss 0.01

    An issue was discovered in certain Apple products. macOS before 10.13.2 is affected. The issue involves the "Intel Graphics Driver" component. It allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.

  • CVE-2017-7162HigDec 27, 2017
    risk 0.51cvss 7.8epss 0.01

    An issue was discovered in certain Apple products. iOS before 11.2 is affected. macOS before 10.13.2 is affected. tvOS before 11.2 is affected. watchOS before 4.2 is affected. The issue involves the "IOKit" component. It allows attackers to execute arbitrary code in a privileged…

  • CVE-2017-7160HigDec 27, 2017
    risk 0.57cvss 8.8epss 0.03

    An issue was discovered in certain Apple products. iOS before 11.2 is affected. Safari before 11.0.2 is affected. iCloud before 7.2 on Windows is affected. iTunes before 12.7.2 on Windows is affected. tvOS before 11.2 is affected. The issue involves the "WebKit" component. It…

  • CVE-2017-7159HigDec 27, 2017
    risk 0.51cvss 7.8epss 0.01

    An issue was discovered in certain Apple products. macOS before 10.13.2 is affected. The issue involves the "IOAcceleratorFamily" component. It allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.

  • CVE-2017-7157HigDec 27, 2017
    risk 0.57cvss 8.8epss 0.02

    An issue was discovered in certain Apple products. iOS before 11.2 is affected. Safari before 11.0.2 is affected. iCloud before 7.2 on Windows is affected. iTunes before 12.7.2 on Windows is affected. tvOS before 11.2 is affected. The issue involves the "WebKit" component. It…

  • CVE-2017-7156HigDec 27, 2017
    risk 0.57cvss 8.8epss 0.02

    An issue was discovered in certain Apple products. iOS before 11.2 is affected. Safari before 11.0.2 is affected. iCloud before 7.2 on Windows is affected. iTunes before 12.7.2 on Windows is affected. tvOS before 11.2 is affected. The issue involves the "WebKit" component. It…

  • CVE-2017-7155HigDec 27, 2017
    risk 0.51cvss 7.8epss 0.01

    An issue was discovered in certain Apple products. macOS before 10.13.2 is affected. The issue involves the "Intel Graphics Driver" component. It allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.

  • CVE-2017-17935HigDec 27, 2017
    risk 0.49cvss 7.5epss 0.03

    The File_read_line function in epan/wslua/wslua_file.c in Wireshark through 2.2.11 does not properly strip '\n' characters, which allows remote attackers to cause a denial of service (buffer underflow and application crash) via a crafted packet that triggers the attempted…

  • CVE-2017-17930HigDec 27, 2017
    risk 0.57cvss 8.8epss 0.01

    PHP Scripts Mall Professional Service Script has CSRF via admin/general_settingupd.php, as demonstrated by modifying a setting in the user panel.

  • CVE-2017-17915HigDec 27, 2017
    risk 0.57cvss 8.8epss 0.02

    In GraphicsMagick 1.4 snapshot-20171217 Q8, there is a heap-based buffer over-read in ReadMNGImage in coders/png.c, related to accessing one byte before testing whether a limit has been reached.

  • CVE-2017-17913HigDec 27, 2017
    risk 0.57cvss 8.8epss 0.02

    In GraphicsMagick 1.4 snapshot-20171217 Q8, there is a stack-based buffer over-read in WriteWEBPImage in coders/webp.c, related to an incompatibility with libwebp versions, 0.5.0 and later, that use a different structure type.