| Page(s) : [1] 2 3 4 5 6 7 8 9 | Result(s) : 172 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 4.7 | 2017-08-18 | CVE-2017-9682 | cve | In all Qualcomm products with Android releases from CAF using the Linux kernel, a race condition in two KGSL driver functions can lead to a Use After Free condition. |
| 5.3 | 2017-08-18 | CVE-2015-4071 | cve | The Helpdesk Pro Plugin before 1.4.0 for Joomla! allows remote attackers to read the support tickets of arbitrary users via obtaining the target ticketId, and navigating to http... |
| 5.3 | 2017-08-18 | CVE-2017-8446 | cve | The Reporting feature in X-Pack in versions prior to 5.5.2 and standalone Reporting plugin versions versions prior to 2.4.6 had an impersonation vulnerability. A user with the r... |
| 5.4 | 2017-08-18 | CVE-2017-12591 | cve | ASUS DSL-N10S V2.1.16_APAC devices have reflected and stored cross site scripting, as demonstrated by the snmpSysName parameter. |
| 5.4 | 2017-08-18 | CVE-2017-1338 | cve | IBM DOORS Next Generation (DNG/RRC) 4.0, 5.0, and 6.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thu... |
| 5.4 | 2017-08-18 | CVE-2017-9767 | cve | Multiple cross-site scripting (XSS) vulnerabilities in Quali CloudShell before 8 allow remote authenticated users to inject arbitrary web script or HTML via the (1) Name or (2) ... |
| 5.4 | 2017-08-18 | CVE-2017-12882 | cve | Stored Cross-site scripting (XSS) vulnerability in Spring Batch Admin before 1.3.0 allows remote authenticated users to inject arbitrary JavaScript or HTML via the file upload f... |
| 5.5 | 2017-08-18 | CVE-2017-0687 | cve | A denial of service vulnerability in the Android media framework (libavc). Product: Android. Versions: 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-35583675. |
| 5.5 | 2017-08-18 | CVE-2017-8254 | cve | In all Qualcomm products with Android releases from CAF using the Linux kernel, an audio client pointer is dereferenced before being checked if it is valid. |
| 5.5 | 2017-08-18 | CVE-2017-8445 | cve | An error was found in the X-Pack Security TLS trust manager for versions 5.0.0 to 5.5.1. If reloading the trust material fails the trust manager will be replaced with an instanc... |
| 5.9 | 2017-08-18 | CVE-2017-12859 | cve | NetApp Data ONTAP before 8.2.5, when operating in 7-Mode in NFS environments, allows remote attackers to cause a denial of service via unspecified vectors. |
| 5.9 | 2017-08-18 | CVE-2017-1501 | cve | IBM WebSphere Application Server 8.0, 8.5, and 9.0 could provide weaker than expected security after using the Admin Console to update the web services security bindings setting... |
| 6.1 | 2017-08-18 | CVE-2017-12680 | cve | Cross-Site Scripting (XSS) exists in NexusPHP 1.5 via the type parameter to shoutbox.php. |
| 6.1 | 2017-08-18 | CVE-2017-9816 | cve | Cross-site scripting (XSS) vulnerability in Paessler PRTG Network Monitor before 17.2.32.2279 allows remote attackers to inject arbitrary web script or HTML via unspecified vect... |
| 6.1 | 2017-08-18 | CVE-2015-5057 | cve | Cross-site scripting (XSS) vulnerability exists in the Wordpress admin panel when the Broken Link Checker plugin before 1.10.9 is installed. |
| 6.1 | 2017-08-18 | CVE-2017-12948 | cve | Core\Admin\PFTemplater.php in the PressForward plugin 4.3.0 and earlier for WordPress has XSS in the PATH_INFO to wp-admin/admin.php, related to PHP_SELF. |
| 6.5 | 2017-08-18 | CVE-2015-4082 | cve | attic before 0.15 does not confirm unencrypted backups with the user, which allows remote attackers with read and write privileges for the encrypted repository to obtain potenti... |
| 6.5 | 2017-08-18 | CVE-2017-12956 | cve | There is an illegal address access in Exiv2::FileIo::path[abi:cxx11]() in basicio.cpp of libexiv2 in Exiv2 0.26 that will lead to remote denial of service. |
| 6.5 | 2017-08-18 | CVE-2017-12957 | cve | There is a heap-based buffer over-read in libexiv2 in Exiv2 0.26 that is triggered in the Exiv2::Image::io function in image.cpp. It will lead to remote denial of service. |
| 6.8 | 2017-08-18 | CVE-2017-10811 | cve | Buffalo WCR-1166DS devices with firmware 1.30 and earlier allow an attacker to execute arbitrary OS commands via unspecified vectors. |
| Page(s) : [1] 2 3 4 5 6 7 8 9 | Result(s) : 172 |
