|
252141
|
7.5 |
HIGH
Network
|
cjson_project
|
cjson
|
Dave Gamble cJSON version 1.7.6 and earlier contains a CWE-772 vulnerability in cJSON library that can result in Denial of Service (DoS). This attack appear to be exploitable via If the attacker can …
|
CWE-772
Missing Release of Resource after Effective Lifetime
|
CVE-2018-1000215
|
2024-11-21 12:39 |
2018-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252142
|
7.8 |
HIGH
Local
|
microsoft
|
windows_10
windows_server_2016
visual_studio_2017
visual_studio_2015
|
An Elevation of Privilege vulnerability exists when Diagnostics Hub Standard Collector allows file creation in arbitrary locations, aka "Diagnostic Hub Standard Collector Elevation Of Privilege Vulne…
|
NVD-CWE-noinfo
|
CVE-2018-0952
|
2024-11-21 12:39 |
2018-08-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252143
|
7.5 |
HIGH
Network
|
doorkeeper_project
|
doorkeeper
|
Doorkeeper version 4.2.0 and later contains a Incorrect Access Control vulnerability in Token revocation API's authorized method that can result in Access tokens are not revoked for public OAuth apps…
|
CWE-732
Incorrect Permission Assignment for Critical Resource
|
CVE-2018-1000211
|
2024-11-21 12:39 |
2018-07-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252144
|
7.5 |
HIGH
Network
|
modx
|
modx_revolution
|
MODX Revolution version <=2.6.4 contains a Directory Traversal vulnerability in /core/model/modx/modmanagerrequest.class.php that can result in remove files. This attack appear to be exploitable via …
|
CWE-22
Path Traversal
|
CVE-2018-1000208
|
2024-11-21 12:39 |
2018-07-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252145
|
7.2 |
HIGH
Network
|
modx
|
modx_revolution
|
MODX Revolution version <=2.6.4 contains a Incorrect Access Control vulnerability in Filtering user parameters before passing them into phpthumb class that can result in Creating file with custom a f…
|
CWE-732
Incorrect Permission Assignment for Critical Resource
|
CVE-2018-1000207
|
2024-11-21 12:39 |
2018-07-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252146
|
8.8 |
HIGH
Network
|
jfrog
|
artifactory
|
JFrog Artifactory version since 5.11 contains a Cross ite Request Forgery (CSRF) vulnerability in UI rest endpoints that can result in Classic CSRF attack allowing an attacker to perform actions as l…
|
CWE-352
Origin Validation Error
|
CVE-2018-1000206
|
2024-11-21 12:39 |
2018-07-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252147
|
7.8 |
HIGH
Local
|
yamldotnet_project
|
yamldotnet
|
YamlDotNet version 4.3.2 and earlier contains a Insecure Direct Object Reference vulnerability in The default behavior of Deserializer.Deserialize() will deserialize user-controlled types in the line…
|
CWE-502
CWE-639
Deserialization of Untrusted Data
Authorization Bypass Through User-Controlled Key
|
CVE-2018-1000210
|
2024-11-21 12:39 |
2018-07-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252148
|
8.8 |
HIGH
Network
|
sensu
|
sensu_core
|
Sensu, Inc. Sensu Core version Before version 1.4.2-3 contains a Insecure Permissions vulnerability in Sensu Core on Windows platforms that can result in Unprivileged users may execute code in contex…
|
CWE-732
Incorrect Permission Assignment for Critical Resource
|
CVE-2018-1000209
|
2024-11-21 12:39 |
2018-07-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252149
|
6.5 |
MEDIUM
Network
|
microsoft
|
internet_explorer
|
A security feature bypass vulnerability exists when Microsoft Internet Explorer improperly handles requests involving UNC resources, aka "Internet Explorer Security Feature Bypass Vulnerability." Thi…
|
NVD-CWE-noinfo
|
CVE-2018-0949
|
2024-11-21 12:39 |
2018-07-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252150
|
7.8 |
HIGH
Local
|
jenkins
|
aws_codebuild
|
Jenkins project Jenkins AWS CodeBuild Plugin version 0.26 and earlier contains a Insufficiently Protected Credentials vulnerability in AWSClientFactory.java, CodeBuilder.java that can result in Crede…
|
CWE-522
Insufficiently Protected Credentials
|
CVE-2018-1000404
|
2024-11-21 12:39 |
2018-07-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
