Click to open the Alert Filter

 
Year Month
Severity
Categories
Search by Alert Name
Page(s) : 1 ... 1112 1113 1114 1115 1116 1117 1118 1119 1120 1121 [1122] 1123 1124 1125 1126 1127 1128 1129 1130 1131 1132 ... Result(s) : 43697

Alerts Feed Alerts

DATE NAME CATEGORIES DETAIL
9.8 2018-10-29 CVE-2016-10734 cve ProjectSend (formerly cFTP) r582 allows Insecure Direct Object Reference via includes/actions.log.export.php.
9.8 2018-10-29 CVE-2018-18702 cve spider.admincp.php in iCMS v7.0.11 allows SQL injection via admincp.php?app=spider&do=import_rule because the upfile content is base64 decoded, deserialized, and used for databa...
9.8 2018-10-29 CVE-2018-18704 cve PhpTpoint Pharmacy Management System suffers from a SQL injection vulnerability in the index.php username parameter.
9.8 2018-10-29 CVE-2018-18705 cve PhpTpoint hospital management system suffers from multiple SQL injection vulnerabilities via the index.php user parameter associated with LOGIN.php, or the rno parameter to ALIS...
9.8 2018-10-29 CVE-2018-18728 cve An issue was discovered on Tenda AC9 V15.03.05.19(6318)_CN, AC15 V15.03.05.19_CN, and AC18 V15.03.05.19(6318)_CN devices. They allow remote code execution via shell metacharacte...
9.8 2018-10-29 CVE-2018-18729 cve An issue was discovered on Tenda AC7 V15.03.06.44_CN, AC9 V15.03.05.19(6318)_CN, AC10 V15.03.06.23_CN, AC15 V15.03.05.19_CN, and AC18 V15.03.05.19(6318)_CN devices. There is a h...
10 2018-10-29 CVE-2018-18748 cve Sandboxie 5.26 allows a Sandbox Escape via an "import os" statement, followed by os.system("cmd") or os.system("powershell"), within a .py file. NOTE: the vendor disputes this i...
9.8 2018-10-29 CVE-2018-18751 cve An issue was discovered in GNU gettext 0.19.8. There is a double free in default_add_message in read-catalog.c, related to an invalid free in po_gram_parse in po-gram-gen.y, as ...
9.8 2018-10-29 CVE-2018-18752 cve Webiness Inventory 2.3 suffers from an Arbitrary File upload vulnerability via PHP code in the protected/library/ajax/WsSaveToModel.php logo parameter.
9.8 2018-10-29 CVE-2018-18753 cve Typecho V1.1 allows remote attackers to send shell commands via base64-encoded serialized data, as demonstrated by SSRF.
9.8 2018-10-29 CVE-2018-18754 cve ZyXEL VMG3312-B10B 1.00(AAPP.7) devices have a backdoor root account with the tTn3+Z@!Sr0O+ password hash in the etc/default.cfg file.
9.1 2018-10-29 CVE-2018-18764 cve An exploitable arbitrary memory read vulnerability exists in the MQTT packet-parsing functionality of Cesanta Mongoose 6.13. It is a heap-based buffer over-read in a parse_mqtt ...
9.1 2018-10-29 CVE-2018-18765 cve An exploitable arbitrary memory read vulnerability exists in the MQTT packet-parsing functionality of Cesanta Mongoose 6.13. It is a heap-based buffer over-read in mg_mqtt_next_...
9.8 2018-10-29 CVE-2018-18785 cve An issue was discovered in zzcms 8.3. SQL Injection exists in zs/subzs.php with a zzcmscpid cookie to zs/search.php.
9.8 2018-10-29 CVE-2018-18786 cve An issue was discovered in zzcms 8.3. SQL Injection exists in ajax/zs.php via a pxzs cookie.
9.8 2018-10-29 CVE-2018-18787 cve An issue was discovered in zzcms 8.3. SQL Injection exists in zs/zs.php via a pxzs cookie.
9.8 2018-10-29 CVE-2018-18789 cve An issue was discovered in zzcms 8.3. SQL Injection exists in zt/top.php via a Host HTTP header to zt/news.php.
9.8 2018-10-29 CVE-2018-18791 cve An issue was discovered in zzcms 8.3. SQL Injection exists in zs/search.php via a pxzs cookie.
9.8 2018-10-29 CVE-2018-18792 cve An issue was discovered in zzcms 8.3. SQL Injection exists in zs/zs_list.php via a pxzs cookie.
9.8 2018-10-24 CVE-2018-11792 cve In Apache Impala before 3.0.1, ALTER TABLE/VIEW RENAME required ALTER on the old table. This may pose a potential security risk, such as having ALTER on a table and ALL on a par...
Page(s) : 1 ... 1112 1113 1114 1115 1116 1117 1118 1119 1120 1121 [1122] 1123 1124 1125 1126 1127 1128 1129 1130 1131 1132 ... Result(s) : 43697