|
246151
|
9.8 |
CRITICAL
Network
|
lcds
|
laquis_scada
|
LAquis SCADA Versions 4.1.0.3870 and prior has an untrusted pointer dereference vulnerability, which may allow remote code execution.
|
CWE-476
NULL Pointer Dereference
|
CVE-2018-17893
|
2024-11-21 12:55 |
2018-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246152
|
6.1 |
MEDIUM
Network
|
bigtreecms
|
bigtree_cms
|
In the 4.2.23 version of BigTree, a Stored XSS vulnerability has been discovered in /admin/ajax/file-browser/upload/ (aka the image upload area).
|
CWE-79
Cross-site Scripting
|
CVE-2018-18308
|
2024-11-21 12:55 |
2018-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246153
|
6.1 |
MEDIUM
Network
|
alchemy-cms
|
alchemy_cms
|
A Stored XSS vulnerability has been discovered in version 4.1.0 of AlchemyCMS via the /admin/pictures image field. NOTE: the vendor's position is that this is not a valid report: "The researcher used…
|
CWE-79
Cross-site Scripting
|
CVE-2018-18307
|
2024-11-21 12:55 |
2018-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246154
|
9.8 |
CRITICAL
Network
|
neo4j
|
neo4j
|
Due to incorrect access control in Neo4j Enterprise Database Server 3.4.x before 3.4.9, the setting of LDAP for authentication with STARTTLS, and System Account for authorization, allows an attacker …
|
CWE-287
Improper Authentication
|
CVE-2018-18389
|
2024-11-21 12:55 |
2018-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246155
|
7.5 |
HIGH
Network
|
asciidoctor
|
asciidoctor
|
Asciidoctor in versions < 1.5.8 allows remote attackers to cause a denial of service (infinite loop). The loop was caused by the fact that Parser.next_block was not exhausting all the lines in the re…
|
CWE-835
Loop with Unreachable Exit Condition ('Infinite Loop')
|
CVE-2018-18385
|
2024-11-21 12:55 |
2018-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246156
|
5.5 |
MEDIUM
Local
|
unzip_project
|
unzip
|
Info-ZIP UnZip 6.0 has a buffer overflow in list.c, when a ZIP archive has a crafted relationship between the compressed-size value and the uncompressed-size value, because a buffer size is 10 and is…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2018-18384
|
2024-11-21 12:55 |
2018-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246157
|
8.8 |
HIGH
Network
|
coderpixel
|
advanced_hrm
|
Advanced HRM 1.6 allows Remote Code Execution via PHP code in a .php file to the user/update-user-avatar URI, which can be accessed through an "Update Profile" "Change Picture" (aka user/edit-profile…
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2018-18382
|
2024-11-21 12:55 |
2018-10-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246158
|
5.4 |
MEDIUM
Network
|
zblogcn
|
z-blogphp
|
Z-BlogPHP 1.5.2.1935 (Zero) has a stored XSS Vulnerability in zb_system/function/c_system_admin.php via the Content-Type header during the uploading of image attachments.
|
CWE-79
Cross-site Scripting
|
CVE-2018-18381
|
2024-11-21 12:55 |
2018-10-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246159
|
7.5 |
HIGH
Network
|
orange
|
airbox_firmware
|
goform/setReset on Orange AirBox Y858_FL_01.16_04 devices allows attackers to reset a router to factory settings, which can be used to login using the default admin:admin credentials.
|
CWE-862
Missing Authorization
|
CVE-2018-18377
|
2024-11-21 12:55 |
2018-10-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246160
|
7.5 |
HIGH
Network
|
orange
|
airbox_firmware
|
goform/getWlanClientInfo in Orange AirBox Y858_FL_01.16_04 allows remote attackers to discover information about currently connected devices (hostnames, IP addresses, MAC addresses, and connection ti…
|
CWE-200
Information Exposure
|
CVE-2018-18376
|
2024-11-21 12:55 |
2018-10-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
