|
256081
|
8.8 |
HIGH
Network
|
metinfo
|
metinfo
|
Metinfo 5.3.18 is affected by: Cross Site Request Forgery (CSRF). The impact is: Information Disclosure (remote). The component is: admin/interface/online/delete.php. The attack vector is: The admini…
|
CWE-352
Origin Validation Error
|
CVE-2017-12789
|
2024-11-21 12:10 |
2019-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256082
|
7.5 |
HIGH
Network
|
webfile_explorer_project
|
webfile_explorer
|
http://codecanyon.net/user/Endober WebFile Explorer 1.0 is affected by: SQL Injection. The impact is: Arbitrary File Download (remote). The component is: $file = $_GET['id'] in download.php. The atta…
|
CWE-89
SQL Injection
|
CVE-2017-12761
|
2024-11-21 12:10 |
2019-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256083
|
8.8 |
HIGH
Network
|
ynetinteractive
|
mobiketa
|
Ynet Interactive - http://demo.ynetinteractive.com/mobiketa/ Mobiketa 4.0 is affected by: SQL Injection. The impact is: Code execution (remote).
|
CWE-89
SQL Injection
|
CVE-2017-12760
|
2024-11-21 12:10 |
2019-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256084
|
9.8 |
CRITICAL
Network
|
ynetinteractive
|
soa_school_management
|
Ynet Interactive - http://demo.ynetinteractive.com/soa/ SOA School Management 3.0 is affected by: SQL Injection. The impact is: Code execution (remote).
|
CWE-89
SQL Injection
|
CVE-2017-12759
|
2024-11-21 12:10 |
2019-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256085
|
9.8 |
CRITICAL
Network
|
joomlaextensions
|
component_appointment
|
https://www.joomlaextensions.co.in/ Joomla! Component Appointment 1.1 is affected by: SQL Injection. The impact is: Code execution (remote). The component is: com_appointment component.
|
CWE-89
SQL Injection
|
CVE-2017-12758
|
2024-11-21 12:10 |
2019-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256086
|
9.8 |
CRITICAL
Network
|
ambittechnologies
|
itech_b2b_script
itech_travel_script
itech_social_networking_script
itech_multi_vendor_script
itech_movie_script
itech_job_script
itech_image_sharing_script
itech_freelancer_scri…
|
Certain Ambit Technologies Pvt. Ltd products are affected by: SQL Injection. This affects iTech B2B Script 4.42i and Tech Business Networking Script 8.26i and Tech Caregiver Script 2.71i and Tech Cla…
|
CWE-89
SQL Injection
|
CVE-2017-12757
|
2024-11-21 12:10 |
2019-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256087
|
8.3 |
HIGH
Network
|
mpg123
|
mpg123
|
A heap-based buffer over-read in the getbits function in src/libmpg123/getbits.h in mpg123 through 1.25.5 allows remote attackers to cause a possible denial-of-service (out-of-bounds read) or possibl…
|
CWE-125
Out-of-bounds Read
|
CVE-2017-12839
|
2024-11-21 12:10 |
2019-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256088
|
6.5 |
MEDIUM
Network
|
metinfo
|
metinfo
|
Metinfo 5.3.18 is affected by: Cross Site Request Forgery (CSRF). The impact is: Information Disclosure (remote). The component is: admin/index.php. The attack vector is: The administrator clicks on …
|
CWE-352
Origin Validation Error
|
CVE-2017-12790
|
2024-11-21 12:10 |
2019-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256089
|
7.1 |
HIGH
Local
|
qbittorrent
|
qbittorrent
|
The UI Lock feature in qBittorrent version 3.3.15 is vulnerable to Authentication Bypass, which allows Attack to gain unauthorized access to qBittorrent functions by tampering the affected flag value…
|
CWE-287
Improper Authentication
|
CVE-2017-12778
|
2024-11-21 12:10 |
2019-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256090
|
7.5 |
HIGH
Network
|
imagemagick
|
imagemagick
|
In ImageMagick 7.0.6-6, a memory exhaustion vulnerability was found in the function format8BIM, which allows attackers to cause a denial of service.
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2017-12806
|
2024-11-21 12:10 |
2019-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
