|
246711
|
6.1 |
MEDIUM
Network
|
ilias
|
ilias
|
ILIAS 5.1.x, 5.2.x, and 5.3.x before 5.3.5 redirects a logged-in user to a third-party site via the return_to_url parameter.
|
CWE-601
Open Redirect
|
CVE-2018-11119
|
2024-11-21 12:42 |
2018-05-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246712
|
6.1 |
MEDIUM
Network
|
ilias
|
ilias
|
The RSS subsystem in ILIAS 5.1.x, 5.2.x, and 5.3.x before 5.3.5 has XSS via a URI to Services/Feeds/classes/class.ilExternalFeedItem.php.
|
CWE-79
Cross-site Scripting
|
CVE-2018-11118
|
2024-11-21 12:42 |
2018-05-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246713
|
6.1 |
MEDIUM
Network
|
ilias
|
ilias
|
Services/Feeds/classes/class.ilExternalFeedItem.php in ILIAS 5.1.x, 5.2.x, and 5.3.x before 5.3.5 has XSS via a link attribute.
|
CWE-79
Cross-site Scripting
|
CVE-2018-11117
|
2024-11-21 12:42 |
2018-05-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246714
|
8.8 |
HIGH
Network
|
jbig2enc_project
|
jbig2enc
|
jbig2_add_page in jbig2enc.cc in libjbig2enc.a in jbig2enc 0.29 allows remote attackers to cause a denial of service (use-after-free) or possibly have unspecified other impact via a crafted file.
|
CWE-416
Use After Free
|
CVE-2018-11230
|
2024-11-21 12:42 |
2018-05-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246715
|
8.8 |
HIGH
Network
|
libming
|
libming
|
The getString function in decompile.c in libming through 0.4.8 mishandles cases where the header indicates a file size greater than the actual size, which allows remote attackers to cause a denial of…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2018-11226
|
2024-11-21 12:42 |
2018-05-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246716
|
8.8 |
HIGH
Network
|
libming
|
libming
|
The dcputs function in decompile.c in libming through 0.4.8 mishandles cases where the header indicates a file size greater than the actual size, which allows remote attackers to cause a denial of se…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2018-11225
|
2024-11-21 12:42 |
2018-05-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246717
|
6.5 |
MEDIUM
Network
|
libav
|
libav
|
An issue was discovered in Libav 12.3. A read access violation in the in_table_init16 function in libavcodec/aacsbr.c allows remote attackers to cause a denial of service (application crash), as demo…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2018-11224
|
2024-11-21 12:42 |
2018-05-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246718
|
6.5 |
MEDIUM
Network
|
ijg
debian
canonical
|
libjpeg
debian_linux
ubuntu_linux
|
An issue was discovered in libjpeg 9a. The get_text_rgb_row function in rdppm.c allows remote attackers to cause a denial of service (Segmentation fault) via a crafted file.
|
NVD-CWE-noinfo
|
CVE-2018-11214
|
2024-11-21 12:42 |
2018-05-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246719
|
6.5 |
MEDIUM
Network
|
ijg
debian
canonical
|
libjpeg
debian_linux
ubuntu_linux
|
An issue was discovered in libjpeg 9a. The get_text_gray_row function in rdppm.c allows remote attackers to cause a denial of service (Segmentation fault) via a crafted file.
|
NVD-CWE-noinfo
|
CVE-2018-11213
|
2024-11-21 12:42 |
2018-05-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246720
|
6.5 |
MEDIUM
Network
|
ijg
debian
canonical
netapp
oracle
redhat
opensuse
|
libjpeg
debian_linux
ubuntu_linux
oncommand_unified_manager
oncommand_workflow_automation
snapmanager
jdk
jre
enterprise_linux_desktop
enterprise_linux_workstation
enter…
|
An issue was discovered in libjpeg 9a and 9d. The alloc_sarray function in jmemmgr.c allows remote attackers to cause a denial of service (divide-by-zero error) via a crafted file.
|
CWE-369
Divide By Zero
|
CVE-2018-11212
|
2024-11-21 12:42 |
2018-05-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
