|
254881
|
6.1 |
MEDIUM
Network
|
web-dorado
|
event_calendar_wd
|
Cross-site scripting vulnerability in Event Calendar WD prior to version 1.0.94 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2017-2224
|
2024-11-21 12:23 |
2017-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
254882
|
8.8 |
HIGH
Network
|
iodata
|
ts-wptcam_camera_firmware
ts-ptcam_camera_firmware
ts-ptcam\/poe_camera_firmware
ts-wlc2_camera_firmware
ts-wlce_camera_firmware
ts-wrlc_camera_firmware
ts-wptcam2_firmware
|
Cross-site request forgery (CSRF) vulnerability in TS-WPTCAM, TS-PTCAM, TS-PTCAM/POE, TS-WLC2, TS-WLCE, TS-WRLC firmware version 1.19 and earlier and TS-WPTCAM2 firmware version 1.01 and earlier allo…
|
CWE-352
Origin Validation Error
|
CVE-2017-2223
|
2024-11-21 12:23 |
2017-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
254883
|
6.1 |
MEDIUM
Network
|
butlerblog
|
wp-members
|
Cross-site scripting vulnerability in WP-Members prior to version 3.1.8 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2017-2222
|
2024-11-21 12:23 |
2017-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
254884
|
7.8 |
HIGH
Local
|
ipa
|
casl_ii_simulator
|
Untrusted search path vulnerability in Installer of CASL II simulator (self-extract format) allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.
|
CWE-426
Untrusted Search Path
|
CVE-2017-2220
|
2024-11-21 12:23 |
2017-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
254885
|
7.8 |
HIGH
Local
|
apple
|
quicktime
|
Untrusted search path vulnerability in Installer of QuickTime for Windows allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.
|
CWE-426
Untrusted Search Path
|
CVE-2017-2218
|
2024-11-21 12:23 |
2017-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
254886
|
6.1 |
MEDIUM
Network
|
wpdownloadmanager
|
wordpress_download_manager
|
Open redirect vulnerability in WordPress Download Manager prior to version 2.9.51 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.
|
CWE-601
Open Redirect
|
CVE-2017-2217
|
2024-11-21 12:23 |
2017-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
254887
|
6.1 |
MEDIUM
Network
|
wpdownloadmanager
|
wordpress_download_manager
|
Cross-site scripting vulnerability in WordPress Download Manager prior to version 2.9.50 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2017-2216
|
2024-11-21 12:23 |
2017-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
254888
|
7.8 |
HIGH
Local
|
e-tax.nta
|
e-tax
|
Untrusted search path vulnerability in Installer of "Setup file of advance preparation" (jizen_setup.exe) (The version which was available on the website prior to 2017 June 12) allows an attacker to …
|
CWE-426
Untrusted Search Path
|
CVE-2017-2215
|
2024-11-21 12:23 |
2017-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
254889
|
7.8 |
HIGH
Local
|
acquisition_technology_and_logistics_agency
|
installer_of_electronic_tendering
|
Untrusted search path vulnerability in Installer of Electronic tendering and bid opening system available prior to June 12, 2017 allows an attacker to execute arbitrary code via a specially crafted e…
|
CWE-426
Untrusted Search Path
|
CVE-2017-2208
|
2024-11-21 12:23 |
2017-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
254890
|
6.1 |
MEDIUM
Network
|
ipa
|
icodechecker
|
Cross-site scripting vulnerability in Source code security studying tool iCodeChecker allows an attacker to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2017-2194
|
2024-11-21 12:23 |
2017-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
