|
251521
|
8.8 |
HIGH
Network
|
techsmith
|
mp4v2
|
In MP4v2 2.0.0, there is an integer underflow (with resultant memory corruption) when parsing MP4Atom in mp4atom.cpp.
|
CWE-191
Integer Underflow (Wrap or Wraparound)
|
CVE-2018-14325
|
2024-11-21 12:48 |
2018-07-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251522
|
9.8 |
CRITICAL
Network
|
oracle
|
glassfish_server
|
The demo feature in Oracle GlassFish Open Source Edition 5.0 has TCP port 7676 open by default with a password of admin for the admin account. This allows remote attackers to obtain potentially sensi…
|
CWE-798
Use of Hard-coded Credentials
|
CVE-2018-14324
|
2024-11-21 12:48 |
2018-07-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251523
|
9.8 |
CRITICAL
Network
|
zeta-producer
|
zeta_producer_desktop_cms
|
The websites that were built from Zeta Producer Desktop CMS before 14.2.1 are vulnerable to unauthenticated remote code execution due to a default component that permits arbitrary upload of PHP files…
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2018-13981
|
2024-11-21 12:48 |
2018-07-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251524
|
5.5 |
MEDIUM
Local
|
zeta-producer
|
zeta_producer
|
The websites that were built from Zeta Producer Desktop CMS before 14.2.1 are vulnerable to unauthenticated file disclosure if the plugin "filebrowser" is installed, because of assets/php/filebrowser…
|
CWE-22
Path Traversal
|
CVE-2018-13980
|
2024-11-21 12:48 |
2018-07-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251525
|
9.8 |
CRITICAL
Network
|
cyberhobo
|
geo_mashup
|
The Geo Mashup plugin before 1.10.4 for WordPress has insufficient sanitization of post editor and other user input.
|
CWE-20
Improper Input Validation
|
CVE-2018-14071
|
2024-11-21 12:48 |
2018-07-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251526
|
7.5 |
HIGH
Network
|
virgo_zodiactoken_project
|
virgo_zodiactoken
|
An issue was discovered in a smart contract implementation for Virgo_ZodiacToken, an Ethereum token. In this contract, 'bool sufficientAllowance = allowance <= _value' will cause an arbitrary transfe…
|
CWE-20
Improper Input Validation
|
CVE-2018-14089
|
2024-11-21 12:48 |
2018-07-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251527
|
9.8 |
CRITICAL
Network
|
stex_white_list_project
|
stex_white_list
|
An issue was discovered in a smart contract implementation for STeX White List (STE(WL)), an Ethereum token. The contract has an integer overflow. If the owner sets the value of amount to a large num…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2018-14088
|
2024-11-21 12:48 |
2018-07-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251528
|
9.8 |
CRITICAL
Network
|
encryptedtoken_project
|
encryptedtoken
|
An issue was discovered in a smart contract implementation for EUC (EUC), an Ethereum token. The contract has an integer overflow. If the owner sets the value of buyPrice to a large number in setPric…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2018-14087
|
2024-11-21 12:48 |
2018-07-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251529
|
9.8 |
CRITICAL
Network
|
mytoken_project
|
mytoken
|
An issue was discovered in a smart contract implementation for SingaporeCoinOrigin (SCO), an Ethereum token. The contract has an integer overflow. If the owner sets the value of sellPrice to a large …
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2018-14086
|
2024-11-21 12:48 |
2018-07-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251530
|
9.8 |
CRITICAL
Network
|
myadvancedtoken_project
|
myadvancedtoken
|
An issue was discovered in a smart contract implementation for MKCB, an Ethereum token. If the owner sets the value of sellPrice to a large number in setPrices() then the "amount * sellPrice" will ca…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2018-14084
|
2024-11-21 12:48 |
2018-07-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|