|
249421
|
9.8 |
CRITICAL
Network
|
advantech
|
webaccess
webaccess_dashboard
webaccess_scada
webaccess\/nms
|
In Advantech WebAccess versions V8.2_20170817 and prior, WebAccess versions V8.3.0 and prior, WebAccess Dashboard versions V.2.0.15 and prior, WebAccess Scada Node versions prior to 8.3.1, and WebAcc…
|
CWE-22
Path Traversal
|
CVE-2018-10589
|
2024-11-21 12:41 |
2018-05-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249422
|
6.5 |
MEDIUM
Network
|
foxitsoftware
|
phantompdf
foxit_reader
|
This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Foxit Reader 9.0.0.29935. User interaction is required to exploit this vulnerability in tha…
|
CWE-125
Out-of-bounds Read
|
CVE-2018-10478
|
2024-11-21 12:41 |
2018-05-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249423
|
8.8 |
HIGH
Network
|
foxitsoftware
|
phantompdf
foxit_reader
|
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 9.0.0.29935. User interaction is required to exploit this vulnerability in that the ta…
|
CWE-787
Out-of-bounds Write
|
CVE-2018-10477
|
2024-11-21 12:41 |
2018-05-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249424
|
6.5 |
MEDIUM
Network
|
foxitsoftware
|
phantompdf
foxit_reader
|
This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Foxit Reader 9.0.0.29935. User interaction is required to exploit this vulnerability in tha…
|
CWE-125
Out-of-bounds Read
|
CVE-2018-10476
|
2024-11-21 12:41 |
2018-05-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249425
|
6.5 |
MEDIUM
Network
|
foxitsoftware
|
phantompdf
foxit_reader
|
This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Foxit Reader 9.0.0.29935. User interaction is required to exploit this vulnerability in tha…
|
CWE-125
Out-of-bounds Read
|
CVE-2018-10475
|
2024-11-21 12:41 |
2018-05-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249426
|
8.8 |
HIGH
Network
|
foxitsoftware
|
phantompdf
foxit_reader
|
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 9.0.0.29935. User interaction is required to exploit this vulnerability in that the ta…
|
CWE-787
Out-of-bounds Write
|
CVE-2018-10474
|
2024-11-21 12:41 |
2018-05-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249427
|
8.8 |
HIGH
Network
|
foxitsoftware
|
phantompdf
foxit_reader
|
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 9.0.0.29935. User interaction is required to exploit this vulnerability in that the ta…
|
CWE-787
Out-of-bounds Write
|
CVE-2018-10473
|
2024-11-21 12:41 |
2018-05-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249428
|
8.1 |
HIGH
Network
|
actiontec
|
wcb6200q_firmware
|
An issue was discovered on Actiontec WCB6200Q before 1.1.10.20a devices. The admin login session cookie is insecurely generated making admin session hijacking possible. When an admin logs in, a sessi…
|
CWE-384
Session Fixation
|
CVE-2018-10252
|
2024-11-21 12:41 |
2018-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249429
|
6.1 |
MEDIUM
Network
|
mybb
|
mybb
|
MyBB 1.8.15, when accessed with Microsoft Edge, mishandles 'target="_blank" rel="noopener"' in A elements, which makes it easier for remote attackers to conduct redirection attacks.
|
CWE-601
Open Redirect
|
CVE-2018-10678
|
2024-11-21 12:41 |
2018-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249430
|
5.4 |
MEDIUM
Network
|
latest_posts_on_profile_project
|
latest_posts_on_profile
|
The "Latest Posts on Profile" plugin 1.1 for MyBB has XSS because there is an added section in a user profile that displays that user's most recent posts without sanitizing the tsubject (aka thread s…
|
CWE-79
Cross-site Scripting
|
CVE-2018-10580
|
2024-11-21 12:41 |
2018-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
