|
250761
|
7.5 |
HIGH
Network
|
webproxy_project
|
webproxy
|
Directory traversal vulnerability in WebProxy version 1.7.8 allows an attacker to read arbitrary files via unspecified vectors.
|
CWE-22
Path Traversal
|
CVE-2018-0542
|
2024-11-21 12:38 |
2018-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250762
|
9.8 |
CRITICAL
Network
|
tinyftp_project
|
tinyftp
|
Buffer overflow in Tiny FTP Daemon Ver0.52d allows an attacker to cause a denial-of-service (DoS) condition or execute arbitrary code via unspecified vectors.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2018-0541
|
2024-11-21 12:38 |
2018-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250763
|
7.8 |
HIGH
Local
|
vix_project
|
vix
|
Untrusted search path vulnerability in ViX version 2.21.148.0 allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.
|
CWE-426
Untrusted Search Path
|
CVE-2018-0540
|
2024-11-21 12:38 |
2018-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250764
|
9.8 |
CRITICAL
Network
|
qqq_systems_project
|
qqq_systems
|
QQQ SYSTEMS version 2.24 allows an attacker to execute arbitrary commands via unspecified vectors.
|
CWE-78
OS Command
|
CVE-2018-0539
|
2024-11-21 12:38 |
2018-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250765
|
6.1 |
MEDIUM
Network
|
qqq_systems_project
|
qqq_systems
|
Cross-site scripting vulnerability in QQQ SYSTEMS ver2.24 allows an attacker to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2018-0538
|
2024-11-21 12:38 |
2018-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250766
|
6.1 |
MEDIUM
Network
|
qqq_systems_project
|
qqq_systems
|
Cross-site scripting vulnerability in QQQ SYSTEMS ver2.24 allows an attacker to inject arbitrary web script or HTML via quiz_op.cgi.
|
CWE-79
Cross-site Scripting
|
CVE-2018-0537
|
2024-11-21 12:38 |
2018-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250767
|
6.1 |
MEDIUM
Network
|
qqq_systems_project
|
qqq_systems
|
Cross-site scripting vulnerability in QQQ SYSTEMS ver2.24 allows an attacker to inject arbitrary web script or HTML via quiz.cgi.
|
CWE-79
Cross-site Scripting
|
CVE-2018-0536
|
2024-11-21 12:38 |
2018-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250768
|
6.1 |
MEDIUM
Network
|
php_2chbbs_project
|
php_2chbbs
|
Cross-site scripting vulnerability in PHP 2chBBS version bbs18c allows an attacker to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2018-0535
|
2024-11-21 12:38 |
2018-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250769
|
6.1 |
MEDIUM
Network
|
arsenol_project
|
arsenol
|
Cross-site scripting vulnerability in ArsenoL Version 0.5 allows an attacker to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2018-0534
|
2024-11-21 12:38 |
2018-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250770
|
7.5 |
HIGH
Network
|
microsoft
|
asp.net_core
|
ASP.NET Core 1.0. 1.1, and 2.0 allow an elevation of privilege vulnerability due to how ASP.NET web applications handle web requests, aka "ASP.NET Core Elevation Of Privilege Vulnerability". This CVE…
|
NVD-CWE-noinfo
|
CVE-2018-0808
|
2024-11-21 12:38 |
2018-03-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
