Click to open the Alert Filter

 
Year Month
Severity
Categories
Search by Alert Name
Page(s) : 1 2 3 4 5 6 7 8 [9] 10 11 12 13 14 15 16 17 18 19 ...Result(s) : 105912

Alerts Feed Alerts

DateNameCategoriesDetail
N/A2018-04-24CVE-2018-10321cve Frog CMS 0.9.5 has a stored Cross Site Scripting Vulnerability via "Admin Site title" in Settings.
N/A2018-04-23CVE-2018-6491cve Local Escalation of Privilege vulnerability to Micro Focus Universal CMDB, versions 10.20, 10.21, 10.22, 10.30, 10.31, 10.32, 10.33, 11.00. The vulnerability could be remotely e...
N/A2018-04-23CVE-2018-10320cve Frog CMS 0.9.5 has XSS via the admin/?/layout/edit layout[name] parameter, aka Edit Layout.
N/A2018-04-23CVE-2018-10319cve Frog CMS 0.9.5 has XSS via the admin/?/snippet/edit snippet[name] parameter, aka Edit Snippet.
N/A2018-04-23CVE-2018-10318cve Frog CMS 0.9.5 has XSS via the admin/?/page/edit page[keywords] parameter, aka Edit Page Metadata.
N/A2018-04-23CVE-2018-10316cve Netwide Assembler (NASM) 2.14rc0 has an endless while loop in the assemble_file function of asm/nasm.c because of a globallineno integer overflow.
N/A2018-04-23CVE-2018-10313cve set_iframe=1 URI.
N/A2018-04-23CVE-2018-10312cve v=pw_reset in WUZHI CMS 4.1.0 allows CSRF to change the password of a common member.
N/A2018-04-23CVE-2018-10311cve v=add URI.
N/A2018-04-23CVE-2018-10309cve The Responsive Cookie Consent plugin before 1.8 for WordPress mishandles number fields, leading to XSS.
N/A2018-04-23CVE-2018-10305cve The MessageSearch2 function in PersonalMessage.php in Simple Machines Forum (SMF) before 2.0.15 does not properly use the possible_users variable in a query, which might allow a...
N/A2018-04-23CVE-2016-9601cve ghostscript before version 0.14 is vulnerable to a heap based buffer overflow that was found in the ghostscript jbig2_decode_gray_scale_image function which is used to decode ha...
N/A2018-04-23CVE-2016-9599cve puppet-tripleo before versions 5.5.0, 6.2.0 is vulnerable to an access-control flaw in the IPtables rules management, which allowed the creation of TCP/UDP rules with empty port...
N/A2018-04-23CVE-2018-10303cve A use-after-free in Foxit Reader before 9.1 and PhantomPDF before 9.1 allows remote attackers to execute arbitrary code, aka iDefense ID V-y0nqfutlf3.
N/A2018-04-23CVE-2017-7893cve In SaltStack Salt before 2016.3.6, compromised salt-minions can impersonate the salt-master.
N/A2018-04-23CVE-2018-9921cve In CMS Made Simple 2.2.7, a Directory Traversal issue makes it possible to determine the existence of files and directories outside the web-site installation directory, and dete...
N/A2018-04-23CVE-2018-8880cve Lutron Quantum BACnet Integration 2.0 (firmware 3.2.243) doesn't check for correct user authentication before showing the /deviceIP information, which leads to internal net...
N/A2018-04-23CVE-2018-8781cve The udl_fb_mmap function in drivers/gpu/drm/udl/udl_fb.c at the Linux kernel version 3.4 and up to and including 4.15 has an integer-overflow vulnerability allowing local users ...
N/A2018-04-23CVE-2018-1106cve An authentication bypass flaw has been found in PackageKit before 1.1.10 that allows users without administrator privileges to install signed packages. A local attacker can use ...
N/A2018-04-23CVE-2018-10302cve A use-after-free in Foxit Reader before 9.1 and PhantomPDF before 9.1 allows remote attackers to execute arbitrary code, aka iDefense ID V-jyb51g3mv9.
Page(s) : 1 2 3 4 5 6 7 8 [9] 10 11 12 13 14 15 16 17 18 19 ...Result(s) : 105912