Click to open the Alert Filter

 
Year Month
Severity
Categories
Search by Alert Name
Page(s) : [1] 2 3 4 5 6 7 8 9 10 11 ...Result(s) : 129077

Alerts Feed Alerts

DateNameCategoriesDetail
N/A2018-05-26CVE-2018-6411cve An issue was discovered in Appnitro MachForm before 4.2.3. When the form is set to filter a blacklist, it automatically adds dangerous extensions to the filters. If the filter i...
N/A2018-05-26CVE-2018-6410cve An issue was discovered in Appnitro MachForm before 4.2.3. There is a download.php SQL injection via the q parameter.
N/A2018-05-26CVE-2018-6409cve An issue was discovered in Appnitro MachForm before 4.2.3. The module in charge of serving stored files gets the path from the database. Modifying the name of the file to serve ...
N/A2018-05-26CVE-2018-11505cve The Werewolf Online application 0.8.8 for Android allows attackers to discover the Firebase token by reading logcat output.
N/A2018-05-26CVE-2018-11504cve The islist function in markdown.c in libmarkdown.a in DISCOUNT 2.2.3a allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted file, as d...
N/A2018-05-26CVE-2018-11503cve The isfootnote function in markdown.c in libmarkdown.a in DISCOUNT 2.2.3a allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted file, ...
N/A2018-05-26CVE-2018-11501cve PHP Scripts Mall Website Seller Script 2.0.3 has CSRF via user_submit.php?upd=2.
N/A2018-05-26CVE-2018-11500cve navTabId=sysUser/list" that can add an admin account.
N/A2018-05-26CVE-2018-11499cve A use-after-free vulnerability exists in handle_error() in sass_context.cpp in LibSass 3.4.x and 3.5.x through 3.5.4 that could be leveraged to cause a denial of service (applic...
N/A2018-05-26CVE-2018-11498cve In Lizard v1.0 and LZ5 v2.0 (the prior release, before the product was renamed), there is an unchecked buffer size during a memcpy in the Lizard_decompress_LIZv1 function (lib/l...
N/A2018-05-26CVE-2018-11496cve In Long Range Zip (aka lrzip) 0.631, there is a use-after-free in read_stream in stream.c, because decompress_file in lrzip.c lacks certain size validation.
N/A2018-05-26CVE-2018-11495cve OpenCart through 3.0.2.0 allows directory traversal in the editDownload function in admin\model\catalog\download.php via admin/index.php?route=catalog/download/edit, related to ...
N/A2018-05-26CVE-2018-11494cve The "program extension upload" feature in OpenCart through 3.0.2.0 has a six-step process (upload, install, unzip, move, xml, remove) that allows attackers to execute arbitrary ...
N/A2018-05-26CVE-2018-11493cve v=add.
N/A2018-05-26CVE-2018-11490cve The DGifDecompressLine function in dgif_lib.c in GIFLIB (possibly version 3.0.x), as later shipped in cgif.c in sam2p 0.49.4, has a heap-based buffer overflow because a certain ...
N/A2018-05-26CVE-2018-11489cve The DGifDecompressLine function in dgif_lib.c in GIFLIB (possibly version 3.0.x), as later shipped in cgif.c in sam2p 0.49.4, has a heap-based buffer overflow because a certain ...
N/A2018-05-26CVE-2018-11487cve PHPMyWind 5.5 has XSS via the cid parameter to newsshow.php, or the query string to news.php or about.php.
7.52018-05-26GLSA-201805-12Gentoo NTP: Multiple vulnerabilities
7.52018-05-26GLSA-201805-11Gentoo Rootkit Hunter: User-assisted execution of arbitrary code
7.52018-05-26GLSA-201805-10Gentoo Zsh: Multiple vulnerabilities
Page(s) : [1] 2 3 4 5 6 7 8 9 10 11 ...Result(s) : 129077