|
246391
|
7.5 |
HIGH
Network
|
tp-link
|
tl-wr840n_firmware
|
TP-Link TL-WR840N devices allow remote attackers to cause a denial of service (networking outage) via fragmented packets, as demonstrated by an "nmap -f" command.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2018-15840
|
2024-11-21 12:51 |
2019-03-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246392
|
6.1 |
MEDIUM
Network
|
sir
|
gnuboard
|
Cross-Site Scripting (XSS) vulnerability in newwinform.php in GNUBOARD5 before 5.3.1.6 allows remote attackers to inject arbitrary web script or HTML via the popup title parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2018-15585
|
2024-11-21 12:51 |
2019-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246393
|
5.5 |
MEDIUM
Local
|
faststone
|
image_viewer
|
FastStone Image Viewer 6.5 has a Read Access Violation on Block Data Move starting at image00400000+0x0000000000002d63 via a crafted image file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2018-15817
|
2024-11-21 12:51 |
2019-03-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246394
|
5.5 |
MEDIUM
Local
|
faststone
|
image_viewer
|
FastStone Image Viewer 6.5 has a Read Access Violation on Block Data Move starting at image00400000+0x0000000000002d7d via a crafted image file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2018-15816
|
2024-11-21 12:51 |
2019-03-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246395
|
5.5 |
MEDIUM
Local
|
faststone
|
image_viewer
|
FastStone Image Viewer 6.5 has an Exception Handler Chain Corrupted issue starting at image00400000+0x00000000003ef68a via a crafted image file.
|
CWE-754
Improper Check for Unusual or Exceptional Conditions
|
CVE-2018-15815
|
2024-11-21 12:51 |
2019-03-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246396
|
5.5 |
MEDIUM
Local
|
faststone
|
image_viewer
|
FastStone Image Viewer 6.5 has a User Mode Write AV starting at image00400000+0x00000000001cb509 via a crafted image file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2018-15814
|
2024-11-21 12:51 |
2019-03-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246397
|
5.5 |
MEDIUM
Local
|
faststone
|
image_viewer
|
FastStone Image Viewer 6.5 has a User Mode Write AV starting at image00400000+0x00000000000e1237 via a crafted image file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2018-15813
|
2024-11-21 12:51 |
2019-03-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246398
|
6.1 |
MEDIUM
Network
|
sir
|
gnuboard
|
Cross-Site Scripting (XSS) vulnerability in point_list.php in GNUBOARD5 before 5.3.1.6 allows remote attackers to inject arbitrary web script or HTML via the popup title parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2018-15583
|
2024-11-21 12:51 |
2019-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246399
|
7.2 |
HIGH
Network
|
solarwinds
|
serv-u_ftp_server
|
SolarWinds Serv-U FTP Server 15.1.6 allows remote authenticated users to execute arbitrary code by leveraging the Import feature and modifying a CSV file.
|
NVD-CWE-noinfo
|
CVE-2018-15906
|
2024-11-21 12:51 |
2019-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246400
|
7.5 |
HIGH
Network
|
reputeinfosystems
|
repute_arforms
|
An issue was discovered in Repute ARForms 3.5.1 and prior. An attacker is able to delete any file on the server with web server privileges by sending a malicious request to admin-ajax.php.
|
CWE-20
Improper Input Validation
|
CVE-2018-15818
|
2024-11-21 12:51 |
2019-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
