Click to open the Alert Filter

 
Year Month
Severity
Categories
Search by Alert Name
Page(s) : 1 ... 1129 1130 1131 1132 1133 1134 1135 1136 1137 1138 [1139] 1140 1141 1142 1143 1144 1145 1146 1147 1148 1149 ... Result(s) : 43697

Alerts Feed Alerts

DATE NAME CATEGORIES DETAIL
9.8 2018-09-05 CVE-2018-16550 cve TeamViewer 10.x through 13.x allows remote attackers to bypass the brute-force authentication protection mechanism by skipping the "Cancel" step, which makes it easier to determ...
9.1 2018-09-04 CVE-2018-16444 cve An issue was discovered in SeaCMS 6.61. adm1n/admin_reslib.php has SSRF via the url parameter.
9.8 2018-09-04 CVE-2018-16445 cve An issue was discovered in SeaCMS through 6.61. SQL injection exists via the tid parameter in an adm1n/admin_topic_vod.php request.
9.8 2018-09-04 CVE-2018-0664 cve A vulnerability in NoMachine App for Android 5.0.63 and earlier allows attackers to alter environment variables via unspecified vectors.
9.8 2018-09-03 CVE-2018-16402 cve libelf/elf_end.c in elfutils 0.173 allows remote attackers to cause a denial of service (double free and application crash) or possibly have unspecified other impact because it ...
9.8 2018-09-03 CVE-2018-16428 cve In GNOME GLib 2.56.1, g_markup_parse_context_end_parse() in gmarkup.c has a NULL pointer dereference.
9.8 2018-09-03 CVE-2018-16432 cve BlueCMS 1.6 allows SQL Injection via the user_name parameter to uploads/user.php?act=index_login.
9.8 2018-09-02 CVE-2018-16352 cve There is a PHP code upload vulnerability in WeaselCMS 0.3.6 via index.php because code can be embedded at the end of a .png file when the image/png content type is used.
9.8 2018-09-02 CVE-2018-16353 cve An issue was discovered in FHCRM through 2018-02-11. There is a SQL injection via the /index.php/Customer/read limit parameter.
9.8 2018-09-02 CVE-2018-16354 cve An issue was discovered in FHCRM through 2018-02-11. There is a SQL injection via the index.php/User/read limit parameter.
9.9 2018-09-02 CVE-2018-16367 cve In OnlineJudge 2.0, the sandbox has an incorrect access control vulnerability that can write a file anywhere. A user can write a directory listing to /tmp, and can leak file dat...
9.8 2018-09-02 CVE-2018-16370 cve In PESCMS Team 2.2.1, attackers may upload and execute arbitrary PHP code through /Public/?g=Team&m=Setting&a=upgrade by placing a .php file in a ZIP archive.
9.8 2018-09-02 CVE-2018-16385 cve ThinkPHP before 5.1.23 allows SQL Injection via the public/index/index/test/index query string.
9.8 2018-09-01 CVE-2018-16328 cve In ImageMagick before 7.0.8-8, a NULL pointer dereference exists in the CheckEventLogging function in MagickCore/log.c.
9.8 2018-09-01 CVE-2018-16329 cve In ImageMagick before 7.0.8-8, a NULL pointer dereference exists in the GetMagickProperty function in MagickCore/property.c.
9.8 2018-08-31 CVE-2018-16278 cve phpkaiyuancms PhpOpenSourceCMS (POSCMS) V3.2.0 allows an unauthenticated user to execute arbitrary SQL commands via the diy/module/member/controllers/Api.php ajax_save_draft fun...
9.8 2018-08-30 CVE-2018-16158 cve Eaton Power Xpert Meter 4000, 6000, and 8000 devices before 13.4.0.10 have a single SSH private key across different customers' installations and do not properly restrict a...
9.8 2018-08-30 CVE-2018-13821 cve A lack of authentication, in CA Unified Infrastructure Management 8.5.1, 8.5, and 8.4.7, allows remote attackers to conduct a variety of attacks, including file reading/writing.
9.8 2018-08-30 CVE-2018-13824 cve Insufficient input sanitization of two parameters in CA PPM 14.3 and below, 14.4, 15.1, 15.2 CP5 and below, and 15.3 CP2 and below, allows remote attackers to execute SQL inject...
9.1 2018-08-30 CVE-2018-13826 cve An XML external entity vulnerability in the XOG functionality, in CA PPM 14.3 and below, 14.4, 15.1, 15.2 CP5 and below, and 15.3 CP2 and below, allows remote attackers to condu...
Page(s) : 1 ... 1129 1130 1131 1132 1133 1134 1135 1136 1137 1138 [1139] 1140 1141 1142 1143 1144 1145 1146 1147 1148 1149 ... Result(s) : 43697