|
248961
|
7.5 |
HIGH
Network
|
intchain
|
node_token
|
The sell function of a smart contract implementation for Internet Node Token (INT), a tradable Ethereum ERC20 token, allows a potential trap that could be used to cause financial damage to the seller…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2018-12063
|
2024-11-21 12:44 |
2018-06-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248962
|
7.5 |
HIGH
Network
|
swft
|
swftcoin
|
The sell function of a smart contract implementation for SwftCoin (SWFTC), a tradable Ethereum ERC20 token, allows a potential trap that could be used to cause financial damage to the seller, because…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2018-12062
|
2024-11-21 12:44 |
2018-06-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248963
|
9.8 |
CRITICAL
Network
|
ntp
|
ntp
|
Stack-based buffer overflow in ntpq and ntpdc of NTP version 4.2.8p11 allows an attacker to achieve code execution or escalate to higher privileges via a long string as the argument for an IPv4 or IP…
|
CWE-787
Out-of-bounds Write
|
CVE-2018-12327
|
2024-11-21 12:44 |
2018-06-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248964
|
8.8 |
HIGH
Network
|
webkit
|
webkitgtk\+
|
WebCore/platform/graphics/texmap/TextureMapperLayer.cpp in WebKit, as used in WebKitGTK+ prior to version 2.20.2, is vulnerable to a use after free for a WebCore::TextureMapperLayer object.
|
CWE-416
Use After Free
|
CVE-2018-12294
|
2024-11-21 12:44 |
2018-06-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248965
|
8.8 |
HIGH
Network
|
canonical
webkitgtk
wpewebkit
|
ubuntu_linux
webkitgtk\+
wpe_webkit
|
The getImageData function in the ImageBufferCairo class in WebCore/platform/graphics/cairo/ImageBufferCairo.cpp in WebKit, as used in WebKitGTK+ prior to version 2.20.3 and WPE WebKit prior to versio…
|
CWE-787
CWE-190
Out-of-bounds Write
Integer Overflow or Wraparound
|
CVE-2018-12293
|
2024-11-21 12:44 |
2018-06-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248966
|
5.5 |
MEDIUM
Local
|
liblnk_project
|
liblnk
|
The liblnk_data_block_read function in liblnk_data_block.c in liblnk through 2018-04-19 allows remote attackers to cause an information disclosure (heap-based buffer over-read) via a crafted lnk file…
|
CWE-200
CWE-125
Information Exposure
Out-of-bounds Read
|
CVE-2018-12098
|
2024-11-21 12:44 |
2018-06-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248967
|
5.5 |
MEDIUM
Local
|
liblnk_project
|
liblnk
|
The liblnk_location_information_read_data function in liblnk_location_information.c in liblnk through 2018-04-19 allows remote attackers to cause an information disclosure (heap-based buffer over-rea…
|
CWE-200
CWE-125
Information Exposure
Out-of-bounds Read
|
CVE-2018-12097
|
2024-11-21 12:44 |
2018-06-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248968
|
5.5 |
MEDIUM
Local
|
liblnk_project
|
liblnk
|
The liblnk_data_string_get_utf8_string_size function in liblnk_data_string.c in liblnk through 2018-04-19 allows remote attackers to cause an information disclosure (heap-based buffer over-read) via …
|
CWE-125
Out-of-bounds Read
|
CVE-2018-12096
|
2024-11-21 12:44 |
2018-06-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248969
|
6.1 |
MEDIUM
Network
|
airbnb
|
knowledge_repo
|
Cross-site scripting (XSS) vulnerability in Airbnb Knowledge Repo 0.7.4 allows remote attackers to inject arbitrary web scripts or HTML via the post comments functionality, as demonstrated by the pos…
|
CWE-79
Cross-site Scripting
|
CVE-2018-12104
|
2024-11-21 12:44 |
2018-06-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248970
|
5.3 |
MEDIUM
Adjacent
|
eminent-online
|
em4544
|
An issue was discovered on Eminent EM4544 9.10 devices. The device does not require the user's current password to set a new one within the web interface. Therefore, it is possible to exploit this is…
|
CWE-79
Cross-site Scripting
|
CVE-2018-12073
|
2024-11-21 12:44 |
2018-06-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
