|
246911
|
6.5 |
MEDIUM
Network
|
fasterxml
oracle
netapp
|
jackson-modules-java8
database_server
clusterware
global_lifecycle_management_opatch
nosql_database
active_iq_unified_manager
|
Fasterxml Jackson version Before 2.9.8 contains a CWE-20: Improper Input Validation vulnerability in Jackson-Modules-Java8 that can result in Causes a denial-of-service (DoS). This attack appear to b…
|
CWE-20
Improper Input Validation
|
CVE-2018-1000873
|
2024-11-21 12:40 |
2018-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246912
|
5.4 |
MEDIUM
Network
|
phpipam
|
phpipam
|
PHPipam version 1.3.2 and earlier contains a CWE-79 vulnerability in /app/admin/users/print-user.php that can result in Execute code in the victims browser. This attack appear to be exploitable via A…
|
CWE-79
Cross-site Scripting
|
CVE-2018-1000870
|
2024-11-21 12:40 |
2018-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246913
|
9.8 |
CRITICAL
Network
|
phpipam
|
phpipam
|
phpIPAM version 1.3.2 contains a CWE-89 vulnerability in /app/admin/nat/item-add-submit.php that can result in SQL Injection.. This attack appear to be exploitable via Rough user, exploiting the vuln…
|
CWE-89
SQL Injection
|
CVE-2018-1000869
|
2024-11-21 12:40 |
2018-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246914
|
6.1 |
MEDIUM
Network
|
webidsupport
|
webid
|
WeBid version up to current version 1.2.2 contains a Cross Site Scripting (XSS) vulnerability in user_login.php, register.php that can result in Javascript execution in the user's browser, injection …
|
CWE-79
Cross-site Scripting
|
CVE-2018-1000868
|
2024-11-21 12:40 |
2018-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246915
|
8.8 |
HIGH
Network
|
webidsupport
|
webid
|
WeBid version up to current version 1.2.2 contains a SQL Injection vulnerability in All five yourauctions*.php scripts that can result in Database Read via Blind SQL Injection. This attack appear to …
|
CWE-89
SQL Injection
|
CVE-2018-1000867
|
2024-11-21 12:40 |
2018-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246916
|
4.7 |
MEDIUM
Network
|
phpipam
|
phpipam
|
phpipam version 1.3.2 and earlier contains a Cross Site Scripting (XSS) vulnerability in The value of the phpipamredirect cookie is copied into an HTML tag on the login page encapsulated in single qu…
|
CWE-79
Cross-site Scripting
|
CVE-2018-1000860
|
2024-11-21 12:40 |
2018-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246917
|
8.8 |
HIGH
Network
|
gnupg
canonical
|
gnupg
ubuntu_linux
|
GnuPG version 2.1.12 - 2.2.11 contains a Cross ite Request Forgery (CSRF) vulnerability in dirmngr that can result in Attacker controlled CSRF, Information Disclosure, DoS. This attack appear to be e…
|
CWE-352
Origin Validation Error
|
CVE-2018-1000858
|
2024-11-21 12:40 |
2018-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246918
|
8.8 |
HIGH
Network
|
open-systems
|
log-user-session
|
log-user-session version 0.7 and earlier contains a Directory Traversal vulnerability in Main SUID-binary /usr/local/bin/log-user-session that can result in User to root privilege escalation. This at…
|
CWE-22
Path Traversal
|
CVE-2018-1000857
|
2024-11-21 12:40 |
2018-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246919
|
4.8 |
MEDIUM
Network
|
domainmod
|
domainmod
|
DomainMOD version 4.09.03 and above. Also verified in the latest version 4.11.01 contains a Cross Site Scripting (XSS) vulnerability in Segment Name field in the segments page that can result in Arbi…
|
CWE-79
Cross-site Scripting
|
CVE-2018-1000856
|
2024-11-21 12:40 |
2018-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246920
|
6.1 |
MEDIUM
Network
|
basecamp
|
easymon
|
easymon version 1.4 and earlier contains a Cross Site Scripting (XSS) vulnerability in Endpoint where monitoring is mounted that can result in Reflected XSS that affects Firefox. Can be used to steal…
|
CWE-79
Cross-site Scripting
|
CVE-2018-1000855
|
2024-11-21 12:40 |
2018-12-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
