Export limit exceeded: 358831 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (358831 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2018-9864 | 1 3cx | 1 Live Chat | 2024-11-21 | N/A |
| The WP Live Chat Support plugin before 8.0.06 for WordPress has stored XSS via the Name field. | ||||
| CVE-2018-9862 | 1 Hyper | 1 Runv | 2024-11-21 | N/A |
| util.c in runV 1.0.0 for Docker mishandles a numeric username, which allows attackers to obtain root access by leveraging the presence of an initial numeric value on an /etc/passwd line, and then issuing a "docker exec" command with that value in the -u argument, a similar issue to CVE-2016-3697. | ||||
| CVE-2018-9861 | 2 Ckeditor, Drupal | 2 Enhanced Image, Drupal | 2024-11-21 | N/A |
| Cross-site scripting (XSS) vulnerability in the Enhanced Image (aka image2) plugin for CKEditor (in versions 4.5.10 through 4.9.1; fixed in 4.9.2), as used in Drupal 8 before 8.4.7 and 8.5.x before 8.5.2 and other products, allows remote attackers to inject arbitrary web script through a crafted IMG element. | ||||
| CVE-2018-9860 | 1 Botan Project | 1 Botan | 2024-11-21 | N/A |
| An issue was discovered in Botan 1.11.32 through 2.x before 2.6.0. An off-by-one error when processing malformed TLS-CBC ciphertext could cause the receiving side to include in the HMAC computation exactly 64K bytes of data following the record buffer, aka an over-read. The MAC comparison will subsequently fail and the connection will be closed. This could be used for denial of service. No information leak occurs. | ||||
| CVE-2018-9859 | 1 Navercorp | 1 Whale | 2024-11-21 | N/A |
| The path of Whale update service was unquoted in NAVER Whale before 1.0.40.7. This vulnerability can be used for persistent privilege escalation if it's available to create an executable file with System privilege by other vulnerable applications. | ||||
| CVE-2018-9857 | 1 Match Clone Script Project | 1 Match Clone Script | 2024-11-21 | N/A |
| PHP Scripts Mall Match Clone Script 1.0.4 has XSS via the search field to searchbyid.php (aka the "View Search By Id" screen). | ||||
| CVE-2018-9856 | 1 Kotti Project | 1 Kotti | 2024-11-21 | N/A |
| Kotti before 1.3.2 and 2.x before 2.0.0b2 has CSRF in the local roles implementation, as demonstrated by triggering a permission change via a /admin-document/@@share request. | ||||
| CVE-2018-9853 | 1 Freesshd | 1 Freesshd | 2024-11-21 | N/A |
| Insecure access control in freeSSHd version 1.3.1 allows attackers to obtain the privileges of the freesshd.exe process by leveraging the ability to login to an unprivileged account on the server. | ||||
| CVE-2018-9852 | 1 Gxlcms | 1 Gxlcms Qy | 2024-11-21 | 9.8 Critical |
| In Gxlcms QY v1.0.0713, Lib\Lib\Action\Home\HitsAction.class.php allows remote attackers to read data from a database by embedding a FROM clause in a query string within a Home-Hits request, as demonstrated hy sid=user,password%20from%20mysql.user%23. | ||||
| CVE-2018-9851 | 1 Gxlcms | 1 Gxlcms Qy | 2024-11-21 | N/A |
| In Gxlcms QY v1.0.0713, Lib\Lib\Action\Admin\TplAction.class.php allows remote attackers to read any file via a modified pathname in an Admin-Tpl request, as demonstrated by use of '|' instead of '/' as a directory separator, in conjunction with a ".." sequence. | ||||
| CVE-2018-9850 | 1 Gxlcms | 1 Gxlcms Qy | 2024-11-21 | N/A |
| In Gxlcms QY v1.0.0713, Lib\Lib\Action\Admin\DataAction.class.php allows remote attackers to delete any file via directory traversal sequences in the id parameter of an Admin-Data-del request. | ||||
| CVE-2018-9849 | 1 Pulsesecure | 1 Pulse Connect Secure | 2024-11-21 | N/A |
| Pulse Secure Pulse Connect Secure 8.1.x before 8.1R14, 8.2.x before 8.2R11, and 8.3.x before 8.3R5 do not properly process nested XML entities, which allows remote attackers to cause a denial of service (memory consumption and memory errors) via a crafted XML document. | ||||
| CVE-2018-9848 | 1 Gxlcms | 1 Gxlcms Qy | 2024-11-21 | N/A |
| In Gxlcms QY v1.0.0713, the upload function in Lib\Lib\Action\Admin\UploadAction.class.php allows remote attackers to execute arbitrary PHP code by first using an Admin-Admin-Configsave request to change the config[upload_class] value from jpg,gif,png,jpeg to jpg,gif,png,jpeg,php and then making an Admin-Upload-Upload request. | ||||
| CVE-2018-9847 | 1 Gxlcms | 1 Gxlcms Qy | 2024-11-21 | N/A |
| In Gxlcms QY v1.0.0713, the update function in Lib\Lib\Action\Admin\TplAction.class.php allows remote attackers to execute arbitrary PHP code by placing this code into a template. | ||||
| CVE-2018-9846 | 2 Debian, Roundcube | 2 Debian Linux, Webmail | 2024-11-21 | N/A |
| In Roundcube from versions 1.2.0 to 1.3.5, with the archive plugin enabled and configured, it's possible to exploit the unsanitized, user-controlled "_uid" parameter (in an archive.php _task=mail&_mbox=INBOX&_action=plugin.move2archive request) to perform an MX (IMAP) injection attack by placing an IMAP command after a %0d%0a sequence. NOTE: this is less easily exploitable in 1.3.4 and later because of a Same Origin Policy protection mechanism. | ||||
| CVE-2018-9845 | 1 Etherpad | 1 Etherpad Lite | 2024-11-21 | N/A |
| Etherpad Lite before 1.6.4 is exploitable for admin access. | ||||
| CVE-2018-9844 | 1 Iptanus | 1 Wordpress File Upload | 2024-11-21 | N/A |
| The Iptanus WordPress File Upload plugin before 4.3.4 for WordPress mishandles Settings attributes, leading to XSS. | ||||
| CVE-2018-9843 | 1 Cyberark | 1 Password Vault | 2024-11-21 | N/A |
| The REST API in CyberArk Password Vault Web Access before 9.9.5 and 10.x before 10.1 allows remote attackers to execute arbitrary code via a serialized .NET object in an Authorization HTTP header. | ||||
| CVE-2018-9842 | 1 Cyberark | 1 Password Vault | 2024-11-21 | N/A |
| CyberArk Password Vault before 9.7 allows remote attackers to obtain sensitive information from process memory by replaying a logon message. | ||||
| CVE-2018-9841 | 1 Ffmpeg | 1 Ffmpeg | 2024-11-21 | N/A |
| The export function in libavfilter/vf_signature.c in FFmpeg through 3.4.2 allows remote attackers to cause a denial of service (out-of-array access) or possibly have unspecified other impact via a long filename. | ||||