|
246091
|
6.1 |
MEDIUM
Network
|
axiositalia
|
registro_elettronico
|
In AXIOS ITALIA Axioscloud Sissiweb Registro Elettronico 1.7.0, secret/relogoff.aspx has XSS via the Error_Desc parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2018-18437
|
2024-11-21 12:55 |
2018-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246092
|
7.5 |
HIGH
Network
|
ruletkaio
|
ruletkaio
|
A gambling smart contract implementation for RuletkaIo, an Ethereum gambling game, generates a random value that is predictable by an external contract call. The developer wrote a random() function t…
|
CWE-338
Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG)
|
CVE-2018-17968
|
2024-11-21 12:55 |
2018-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246093
|
7.5 |
HIGH
Network
|
greedy599
|
greedy_599
|
A lottery smart contract implementation for Greedy 599, an Ethereum gambling game, generates a random value that is predictable via an external contract call. The developer used the extcodesize() fun…
|
CWE-338
Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG)
|
CVE-2018-17877
|
2024-11-21 12:55 |
2018-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246094
|
8.8 |
HIGH
Adjacent
|
wifiranger
|
wifiranger_firmware
|
An incorrect access control vulnerability in the FTP configuration of WiFiRanger devices with firmware version 7.0.8rc3 and earlier allows an attacker with adjacent network access to read the SSH Pri…
|
CWE-732
Incorrect Permission Assignment for Critical Resource
|
CVE-2018-17873
|
2024-11-21 12:55 |
2018-10-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246095
|
7.8 |
HIGH
Local
|
trendmicro
|
antivirus_for_mac_2017
antivirus_for_mac_2018
antivirus_for_mac_2019
|
A KERedirect Untrusted Pointer Dereference Privilege Escalation vulnerability in Trend Micro Antivirus for Mac (Consumer) 7.0 (2017) and above could allow a local attacker to escalate privileges on v…
|
CWE-476
NULL Pointer Dereference
|
CVE-2018-18329
|
2024-11-21 12:55 |
2018-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246096
|
7.8 |
HIGH
Local
|
trendmicro
|
antivirus_for_mac_2017
antivirus_for_mac_2018
antivirus_for_mac_2019
|
A KERedirect Untrusted Pointer Dereference Privilege Escalation vulnerability in Trend Micro Antivirus for Mac (Consumer) 7.0 (2017) and above could allow a local attacker to escalate privileges on v…
|
CWE-476
NULL Pointer Dereference
|
CVE-2018-18328
|
2024-11-21 12:55 |
2018-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246097
|
7.8 |
HIGH
Local
|
trendmicro
|
antivirus_for_mac_2017
antivirus_for_mac_2018
antivirus_for_mac_2019
|
A KERedirect Untrusted Pointer Dereference Privilege Escalation vulnerability in Trend Micro Antivirus for Mac (Consumer) 7.0 (2017) and above could allow a local attacker to escalate privileges on v…
|
CWE-476
NULL Pointer Dereference
|
CVE-2018-18327
|
2024-11-21 12:55 |
2018-10-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246098
|
5.5 |
MEDIUM
Local
|
qemu
redhat
|
qemu
enterprise_linux
openstack
|
Qemu has integer overflows because IOReadHandler and its associated functions use a signed integer data type for a size value.
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2018-18438
|
2024-11-21 12:55 |
2018-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246099
|
7.5 |
HIGH
Network
|
tp-link
|
tl-sc3130_firmware
|
TP-Link TL-SC3130 1.6.18P12_121101 devices allow unauthenticated RTSP stream access, as demonstrated by a /jpg/image.jpg URI.
|
CWE-200
Information Exposure
|
CVE-2018-18428
|
2024-11-21 12:55 |
2018-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246100
|
8.8 |
HIGH
Network
|
tribalsystems
|
zenario
|
Cross-Site Request Forgery (CSRF) vulnerability was discovered in the 8.3 version of Zenario Content Management System via the admin/organizer.ajax.php?path=zenario__content%2Fpanels%2Fcontent URI.
|
CWE-352
Origin Validation Error
|
CVE-2018-18420
|
2024-11-21 12:55 |
2018-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
