|
246651
|
6.1 |
MEDIUM
Network
|
gvectors
|
wpforo_forum
|
wpforo_get_request_uri in wpf-includes/functions.php in the wpForo Forum plugin before 1.4.12 for WordPress allows Unauthenticated Reflected Cross-Site Scripting (XSS) via the URI.
|
CWE-79
Cross-site Scripting
|
CVE-2018-11709
|
2024-11-21 12:43 |
2018-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246652
|
8.1 |
HIGH
Network
|
sass-lang
|
libsass
|
An issue was discovered in LibSass through 3.5.4. An out-of-bounds read of a memory region was found in the function Sass::handle_error which could be leveraged by an attacker to disclose information…
|
CWE-125
Out-of-bounds Read
|
CVE-2018-11698
|
2024-11-21 12:43 |
2018-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246653
|
8.1 |
HIGH
Network
|
sass-lang
|
libsass
|
An issue was discovered in LibSass through 3.5.4. An out-of-bounds read of a memory region was found in the function Sass::Prelexer::exactly() which could be leveraged by an attacker to disclose info…
|
CWE-125
Out-of-bounds Read
|
CVE-2018-11697
|
2024-11-21 12:43 |
2018-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246654
|
8.8 |
HIGH
Network
|
sass-lang
|
libsass
|
An issue was discovered in LibSass through 3.5.4. A NULL pointer dereference was found in the function Sass::Inspect::operator which could be leveraged by an attacker to cause a denial of service (ap…
|
CWE-476
NULL Pointer Dereference
|
CVE-2018-11696
|
2024-11-21 12:43 |
2018-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246655
|
8.8 |
HIGH
Network
|
sass-lang
|
libsass
|
An issue was discovered in LibSass <3.5.3. A NULL pointer dereference was found in the function Sass::Expand::operator which could be leveraged by an attacker to cause a denial of service (applicatio…
|
CWE-476
NULL Pointer Dereference
|
CVE-2018-11695
|
2024-11-21 12:43 |
2018-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246656
|
8.8 |
HIGH
Network
|
sass-lang
|
libsass
|
An issue was discovered in LibSass through 3.5.4. A NULL pointer dereference was found in the function Sass::Functions::selector_append which could be leveraged by an attacker to cause a denial of se…
|
CWE-476
NULL Pointer Dereference
|
CVE-2018-11694
|
2024-11-21 12:43 |
2018-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246657
|
8.1 |
HIGH
Network
|
sass-lang
|
libsass
|
An issue was discovered in LibSass through 3.5.4. An out-of-bounds read of a memory region was found in the function Sass::Prelexer::skip_over_scopes which could be leveraged by an attacker to disclo…
|
CWE-125
Out-of-bounds Read
|
CVE-2018-11693
|
2024-11-21 12:43 |
2018-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246658
|
9.8 |
CRITICAL
Network
|
canon
|
lbp3370_firmware
lbp3460_firmware
lbp7750c_firmware
lbp6650_firmware
|
An issue was discovered on Canon LBP6650, LBP3370, LBP3460, and LBP7750C devices. It is possible to bypass the Administrator Mode authentication for /tlogin.cgi via vectors involving frame.cgi?page=D…
|
CWE-287
Improper Authentication
|
CVE-2018-11692
|
2024-11-21 12:43 |
2018-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246659
|
8.8 |
HIGH
Network
|
liblouis
canonical
opensuse
|
liblouis
ubuntu_linux
leap
|
Liblouis 3.5.0 has a stack-based Buffer Overflow in the function compileHyphenation in compileTranslationTable.c.
|
CWE-787
Out-of-bounds Write
|
CVE-2018-11685
|
2024-11-21 12:43 |
2018-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246660
|
8.8 |
HIGH
Network
|
liblouis
canonical
opensuse
|
liblouis
ubuntu_linux
leap
|
Liblouis 3.5.0 has a stack-based Buffer Overflow in the function includeFile in compileTranslationTable.c.
|
CWE-787
Out-of-bounds Write
|
CVE-2018-11684
|
2024-11-21 12:43 |
2018-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
