| Page(s) : [1] 2 3 4 5 6 7 8 9 10 11 ... | Result(s) : 129077 |
Alerts
| Date | Name | Categories | Detail | |
|---|---|---|---|---|
| N/A | 2018-05-26 | CVE-2018-6411 | cve | An issue was discovered in Appnitro MachForm before 4.2.3. When the form is set to filter a blacklist, it automatically adds dangerous extensions to the filters. If the filter i... |
| N/A | 2018-05-26 | CVE-2018-6410 | cve | An issue was discovered in Appnitro MachForm before 4.2.3. There is a download.php SQL injection via the q parameter. |
| N/A | 2018-05-26 | CVE-2018-6409 | cve | An issue was discovered in Appnitro MachForm before 4.2.3. The module in charge of serving stored files gets the path from the database. Modifying the name of the file to serve ... |
| N/A | 2018-05-26 | CVE-2018-11505 | cve | The Werewolf Online application 0.8.8 for Android allows attackers to discover the Firebase token by reading logcat output. |
| N/A | 2018-05-26 | CVE-2018-11504 | cve | The islist function in markdown.c in libmarkdown.a in DISCOUNT 2.2.3a allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted file, as d... |
| N/A | 2018-05-26 | CVE-2018-11503 | cve | The isfootnote function in markdown.c in libmarkdown.a in DISCOUNT 2.2.3a allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted file, ... |
| N/A | 2018-05-26 | CVE-2018-11501 | cve | PHP Scripts Mall Website Seller Script 2.0.3 has CSRF via user_submit.php?upd=2. |
| N/A | 2018-05-26 | CVE-2018-11500 | cve | navTabId=sysUser/list" that can add an admin account. |
| N/A | 2018-05-26 | CVE-2018-11499 | cve | A use-after-free vulnerability exists in handle_error() in sass_context.cpp in LibSass 3.4.x and 3.5.x through 3.5.4 that could be leveraged to cause a denial of service (applic... |
| N/A | 2018-05-26 | CVE-2018-11498 | cve | In Lizard v1.0 and LZ5 v2.0 (the prior release, before the product was renamed), there is an unchecked buffer size during a memcpy in the Lizard_decompress_LIZv1 function (lib/l... |
| N/A | 2018-05-26 | CVE-2018-11496 | cve | In Long Range Zip (aka lrzip) 0.631, there is a use-after-free in read_stream in stream.c, because decompress_file in lrzip.c lacks certain size validation. |
| N/A | 2018-05-26 | CVE-2018-11495 | cve | OpenCart through 3.0.2.0 allows directory traversal in the editDownload function in admin\model\catalog\download.php via admin/index.php?route=catalog/download/edit, related to ... |
| N/A | 2018-05-26 | CVE-2018-11494 | cve | The "program extension upload" feature in OpenCart through 3.0.2.0 has a six-step process (upload, install, unzip, move, xml, remove) that allows attackers to execute arbitrary ... |
| N/A | 2018-05-26 | CVE-2018-11493 | cve | v=add. |
| N/A | 2018-05-26 | CVE-2018-11490 | cve | The DGifDecompressLine function in dgif_lib.c in GIFLIB (possibly version 3.0.x), as later shipped in cgif.c in sam2p 0.49.4, has a heap-based buffer overflow because a certain ... |
| N/A | 2018-05-26 | CVE-2018-11489 | cve | The DGifDecompressLine function in dgif_lib.c in GIFLIB (possibly version 3.0.x), as later shipped in cgif.c in sam2p 0.49.4, has a heap-based buffer overflow because a certain ... |
| N/A | 2018-05-26 | CVE-2018-11487 | cve | PHPMyWind 5.5 has XSS via the cid parameter to newsshow.php, or the query string to news.php or about.php. |
| 7.5 | 2018-05-26 | GLSA-201805-12 | Gentoo | NTP: Multiple vulnerabilities |
| 7.5 | 2018-05-26 | GLSA-201805-11 | Gentoo | Rootkit Hunter: User-assisted execution of arbitrary code |
| 7.5 | 2018-05-26 | GLSA-201805-10 | Gentoo | Zsh: Multiple vulnerabilities |
| Page(s) : [1] 2 3 4 5 6 7 8 9 10 11 ... | Result(s) : 129077 |
