| Page(s) : 1 ... 1145 1146 1147 1148 1149 1150 1151 1152 1153 1154 [1155] 1156 1157 1158 1159 1160 1161 1162 1163 1164 1165 ... | Result(s) : 43697 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.8 | 2018-07-15 | CVE-2018-14064 | cve | The uc-http service 1.0.0 on VelotiSmart WiFi B-380 camera devices allows Directory Traversal, as demonstrated by /../../etc/passwd on TCP port 80. |
| 9.8 | 2018-07-15 | CVE-2018-14065 | cve | XMLReader.php in PHPOffice Common before 0.2.9 allows XXE. |
| 9.8 | 2018-07-15 | CVE-2018-14066 | cve | The content://wappush content provider in com.android.provider.telephony, as found in some custom ROMs for Android phones, allows SQL injection. One consequence is that an appli... |
| 9.8 | 2018-07-15 | CVE-2018-14084 | cve | An issue was discovered in a smart contract implementation for MKCB, an Ethereum token. If the owner sets the value of sellPrice to a large number in setPrices() then the "amoun... |
| 9.8 | 2018-07-15 | CVE-2018-14086 | cve | An issue was discovered in a smart contract implementation for SingaporeCoinOrigin (SCO), an Ethereum token. The contract has an integer overflow. If the owner sets the value of... |
| 9.8 | 2018-07-15 | CVE-2018-14087 | cve | An issue was discovered in a smart contract implementation for EUC (EUC), an Ethereum token. The contract has an integer overflow. If the owner sets the value of buyPrice to a l... |
| 9.8 | 2018-07-15 | CVE-2018-14088 | cve | An issue was discovered in a smart contract implementation for STeX White List (STE(WL)), an Ethereum token. The contract has an integer overflow. If the owner sets the value of... |
| 9.8 | 2018-07-14 | CVE-2018-14010 | cve | OS command injection in the guest Wi-Fi settings feature in /cgi-bin/luci on Xiaomi R3P before 2.14.5, R3C before 2.12.15, R3 before 2.22.15, and R3D before 2.26.4 devices allow... |
| 9.8 | 2018-07-14 | CVE-2018-14060 | cve | OS command injection in the AP mode settings feature in /cgi-bin/luci /api/misystem/set_router_wifiap on Xiaomi R3D before 2.26.4 devices allows an attacker to execute any comma... |
| 9.8 | 2018-07-13 | CVE-2018-14043 | cve | mstdlib (aka the M Standard Library for C) 1.2.0 has incorrect file access control in situations where M_fs_perms_can_access attempts to delete an existing file (that lacks publ... |
| 9.8 | 2018-07-13 | CVE-2018-14054 | cve | A double free exists in the MP4StringProperty class in mp4property.cpp in MP4v2 2.0.0. A dangling pointer is freed again in the destructor once an exception is triggered. |
| 9.8 | 2018-07-13 | CVE-2016-6545 | cve | Session cookies are not used for maintaining valid sessions in iTrack Easy. The user's password is passed as a POST parameter over HTTPS using a base64 encoded passwd field... |
| 9.8 | 2018-07-13 | CVE-2016-6548 | cve | The Zizai Tech Nut mobile app makes requests via HTTP instead of HTTPS. These requests contain the user's authenticated session token with the URL. An attacker can capture ... |
| 9.8 | 2018-07-13 | CVE-2016-6551 | cve | Intellian Satellite TV antennas t-Series and v-Series, firmware version 1.07, uses non-random default credentials of: ftp/ftp or intellian:12345678. A remote network attacker ca... |
| 9.8 | 2018-07-13 | CVE-2016-6552 | cve | Green Packet DX-350 uses non-random default credentials of: root:wimax. A remote network attacker can gain privileged access to a vulnerable device. |
| 9.8 | 2018-07-13 | CVE-2016-6553 | cve | Nuuo NT-4040 Titan, firmware NT-4040_01.07.0000.0015_1120, uses non-random default credentials of: admin:admin and localdisplay:111111. A remote network attacker can gain privil... |
| 9.8 | 2018-07-13 | CVE-2016-6554 | cve | Synology NAS servers DS107, firmware version 3.1-1639 and prior, and DS116, DS213, firmware versions prior to 5.2-5644-1, use non-random default credentials of: guest:(blank) an... |
| 9.8 | 2018-07-13 | CVE-2016-6558 | cve | A command injection vulnerability exists in apply.cgi on the ASUS RP-AC52 access point, firmware version 1.0.1.1s and possibly earlier, web interface specifically in the action_... |
| 9.8 | 2018-07-13 | CVE-2016-6559 | cve | Improper bounds checking of the obuf variable in the link_ntoa() function in linkaddr.c of the BSD libc library may allow an attacker to read or write from memory. The full impa... |
| 9.8 | 2018-07-13 | CVE-2016-6563 | cve | Processing malformed SOAP messages when performing the HNAP Login action causes a buffer overflow in the stack in some D-Link DIR routers. The vulnerable XML fields within the S... |
| Page(s) : 1 ... 1145 1146 1147 1148 1149 1150 1151 1152 1153 1154 [1155] 1156 1157 1158 1159 1160 1161 1162 1163 1164 1165 ... | Result(s) : 43697 |
