|
247591
|
5.5 |
MEDIUM
Local
|
espruino
|
espruino
|
Espruino before 1.99 allows attackers to cause a denial of service (application crash) with a user crafted input file via a Buffer Overflow during syntax parsing of "VOID" tokens in jsparse.c.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2018-11594
|
2024-11-21 12:43 |
2018-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247592
|
7.1 |
HIGH
Local
|
espruino
|
espruino
|
Espruino before 1.99 allows attackers to cause a denial of service (application crash) and potential Information Disclosure with a user crafted input file via a Buffer Overflow during syntax parsing …
|
CWE-787
Out-of-bounds Write
|
CVE-2018-11593
|
2024-11-21 12:43 |
2018-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247593
|
5.5 |
MEDIUM
Local
|
espruino
|
espruino
|
Espruino before 1.98 allows attackers to cause a denial of service (application crash) with a user crafted input file via an Out-of-bounds Read during syntax parsing in which certain height validatio…
|
CWE-125
Out-of-bounds Read
|
CVE-2018-11592
|
2024-11-21 12:43 |
2018-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247594
|
5.5 |
MEDIUM
Local
|
espruino
|
espruino
|
Espruino before 1.98 allows attackers to cause a denial of service (application crash) with a user crafted input file via a NULL pointer dereference during syntax parsing. This was addressed by addin…
|
CWE-476
NULL Pointer Dereference
|
CVE-2018-11591
|
2024-11-21 12:43 |
2018-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247595
|
5.5 |
MEDIUM
Local
|
espruino
|
espruino
|
Espruino before 1.99 allows attackers to cause a denial of service (application crash) with a user crafted input file via an integer overflow during syntax parsing. This was addressed by fixing stack…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2018-11590
|
2024-11-21 12:43 |
2018-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247596
|
6.1 |
MEDIUM
Network
|
seacms
|
seacms
|
SeaCMS 6.61 has stored XSS in admin_collect.php via the siteurl parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2018-11583
|
2024-11-21 12:43 |
2018-05-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247597
|
5.4 |
MEDIUM
Network
|
multidots
|
mass_pages\/posts_creator
|
An issue was discovered in mass-pages-posts-creator.php in the MULTIDOTS Mass Pages/Posts Creator plugin 1.2.2 for WordPress. Any logged in user can launch Mass Pages/Posts creation with custom conte…
|
CWE-79
Cross-site Scripting
|
CVE-2018-11580
|
2024-11-21 12:43 |
2018-05-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247598
|
5.3 |
MEDIUM
Network
|
multidots
|
woocommerce_category_banner_management
|
class-woo-banner-management.php in the MULTIDOTS WooCommerce Category Banner Management plugin 1.1.0 for WordPress has an Unauthenticated Settings Change Vulnerability, related to certain wp_ajax_nop…
|
CWE-287
Improper Authentication
|
CVE-2018-11579
|
2024-11-21 12:43 |
2018-05-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247599
|
6.5 |
MEDIUM
Network
|
miniupnp_project
|
ngiflib
|
GifIndexToTrueColor in ngiflib.c in MiniUPnP ngiflib 0.4 has a Segmentation fault.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2018-11578
|
2024-11-21 12:43 |
2018-05-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247600
|
8.8 |
HIGH
Network
|
liblouis
canonical
opensuse
|
liblouis
ubuntu_linux
leap
|
Liblouis 3.5.0 has a Segmentation fault in lou_logPrint in logging.c.
|
CWE-120
Classic Buffer Overflow
|
CVE-2018-11577
|
2024-11-21 12:43 |
2018-05-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
