|
247661
|
4.9 |
MEDIUM
Network
|
opencart
|
opencart
|
OpenCart through 3.0.2.0 allows directory traversal in the editDownload function in admin\model\catalog\download.php via admin/index.php?route=catalog/download/edit, related to the download_id. For e…
|
CWE-22
Path Traversal
|
CVE-2018-11495
|
2024-11-21 12:43 |
2018-05-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247662
|
8.0 |
HIGH
Network
|
opencart
|
opencart
|
The "program extension upload" feature in OpenCart through 3.0.2.0 has a six-step process (upload, install, unzip, move, xml, remove) that allows attackers to execute arbitrary code if the remove ste…
|
CWE-22
CWE-434
Path Traversal
Unrestricted Upload of File with Dangerous Type
|
CVE-2018-11494
|
2024-11-21 12:43 |
2018-05-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247663
|
8.8 |
HIGH
Network
|
wuzhicms
|
wuzhi_cms
|
An issue was discovered in WUZHI CMS 4.1.0. There is a CSRF vulnerability that can add a friendship link via index.php?m=link&f=index&v=add.
|
CWE-352
Origin Validation Error
|
CVE-2018-11493
|
2024-11-21 12:43 |
2018-05-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247664
|
8.8 |
HIGH
Network
|
sam2p_project
giflib_project
debian
canonical
|
sam2p
giflib
debian_linux
ubuntu_linux
|
The DGifDecompressLine function in dgif_lib.c in GIFLIB (possibly version 3.0.x), as later shipped in cgif.c in sam2p 0.49.4, has a heap-based buffer overflow because a certain "Private->RunningCode …
|
CWE-787
CWE-129
Out-of-bounds Write
Improper Validation of Array Index
|
CVE-2018-11490
|
2024-11-21 12:43 |
2018-05-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247665
|
8.8 |
HIGH
Network
|
sam2p_project
giflib_project
|
sam2p
giflib
|
The DGifDecompressLine function in dgif_lib.c in GIFLIB (possibly version 3.0.x), as later shipped in cgif.c in sam2p 0.49.4, has a heap-based buffer overflow because a certain CrntCode array index i…
|
CWE-787
CWE-129
Out-of-bounds Write
Improper Validation of Array Index
|
CVE-2018-11489
|
2024-11-21 12:43 |
2018-05-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247666
|
6.1 |
MEDIUM
Network
|
phpmywind
|
phpmywind
|
PHPMyWind 5.5 has XSS via the cid parameter to newsshow.php, or the query string to news.php or about.php.
|
CWE-79
Cross-site Scripting
|
CVE-2018-11487
|
2024-11-21 12:43 |
2018-05-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247667
|
8.0 |
HIGH
Network
|
monstra
|
monstra
|
Monstra CMS 3.0.4 has a Session Management Issue in the Users tab. A password change at users/1/edit does not invalidate a session that is open in a different browser.
|
CWE-384
Session Fixation
|
CVE-2018-11475
|
2024-11-21 12:43 |
2018-05-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247668
|
8.0 |
HIGH
Network
|
monstra
|
monstra
|
Monstra CMS 3.0.4 has a Session Management Issue in the Administrations Tab. A password change at admin/index.php?id=users&action=edit&user_id=1 does not invalidate a session that is open in a differ…
|
CWE-384
Session Fixation
|
CVE-2018-11474
|
2024-11-21 12:43 |
2018-05-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247669
|
7.8 |
HIGH
Local
|
windscribe
|
windscribe
|
The VPN component in Windscribe 1.81 uses the OpenVPN client for connections. Also, it creates a WindScribeService.exe system process that establishes a \\.\pipe\WindscribeService named pipe endpoint…
|
CWE-20
Improper Input Validation
|
CVE-2018-11479
|
2024-11-21 12:43 |
2018-05-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247670
|
6.1 |
MEDIUM
Network
|
monstra
|
monstra
|
Monstra CMS 3.0.4 has XSS in the registration Form (i.e., the login parameter to users/registration).
|
CWE-79
Cross-site Scripting
|
CVE-2018-11473
|
2024-11-21 12:43 |
2018-05-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
