CVE-2018-17xxx

There are 712 CVE in this subgroup.

Last updated:

← Back to 2018

ID

Summary

Flags

Max Score

A NULL pointer dereference in the function _TIFFmemcmp at tif_unix.c (called from TIFFWriteDirectory...

E

On the RICOH SP 4510SF printer, HTML Injection and Stored XSS vulnerabilities have been discovered i...

E

On the RICOH MP 2001 printer, HTML Injection and Stored XSS vulnerabilities have been discovered in ...

E

In LimeSurvey 3.14.7, HTML Injection and Stored XSS have been discovered in the appendix via the sur...

An issue was discovered on TP-Link TL-WR886N 6.0 2.3.4 and TL-WR886N 7.0 1.1.0 devices. Authenticate...

E

An issue was discovered on TP-Link TL-WR886N 6.0 2.3.4 and TL-WR886N 7.0 1.1.0 devices. Authenticate...

E

An issue was discovered on TP-Link TL-WR886N 6.0 2.3.4 and TL-WR886N 7.0 1.1.0 devices. Authenticate...

E

An issue was discovered on TP-Link TL-WR886N 6.0 2.3.4 and TL-WR886N 7.0 1.1.0 devices. Authenticate...

E

An issue was discovered on TP-Link TL-WR886N 6.0 2.3.4 and TL-WR886N 7.0 1.1.0 devices. Authenticate...

E

An issue was discovered on TP-Link TL-WR886N 6.0 2.3.4 and TL-WR886N 7.0 1.1.0 devices. Authenticate...

E

An issue was discovered on TP-Link TL-WR886N 6.0 2.3.4 and TL-WR886N 7.0 1.1.0 devices. Authenticate...

E

An issue was discovered on TP-Link TL-WR886N 6.0 2.3.4 and TL-WR886N 7.0 1.1.0 devices. Authenticate...

E

An issue was discovered on TP-Link TL-WR886N 6.0 2.3.4 and TL-WR886N 7.0 1.1.0 devices. Authenticate...

E

An issue was discovered on TP-Link TL-WR886N 6.0 2.3.4 and TL-WR886N 7.0 1.1.0 devices. Authenticate...

E

An issue was discovered on TP-Link TL-WR886N 6.0 2.3.4 and TL-WR886N 7.0 1.1.0 devices. Authenticate...

E

An issue was discovered on TP-Link TL-WR886N 6.0 2.3.4 and TL-WR886N 7.0 1.1.0 devices. Authenticate...

E

An issue was discovered on TP-Link TL-WR886N 6.0 2.3.4 and TL-WR886N 7.0 1.1.0 devices. Authenticate...

E

An issue was discovered on TP-Link TL-WR886N 6.0 2.3.4 and TL-WR886N 7.0 1.1.0 devices. Authenticate...

E

An issue was discovered on TP-Link TL-WR886N 6.0 2.3.4 and TL-WR886N 7.0 1.1.0 devices. Authenticate...

E

In Bro through 2.5.5, there is a DoS in IRC protocol names command parsing in analyzer/protocol/irc/...

S

ASUS GT-AC5300 devices with firmware through 3.0.0.4.384_32738 allow remote attackers to cause a den...

E

Cross-site scripting (XSS) vulnerability on ASUS GT-AC5300 devices with firmware through 3.0.0.4.384...

E

Stack-based buffer overflow on the ASUS GT-AC5300 router through 3.0.0.4.384_32738 allows remote att...

E

Cross-site request forgery (CSRF) vulnerability on ASUS GT-AC5300 routers with firmware through 3.0....

E

admin/index.php in Monstra CMS 3.0.4 allows XSS via the page_meta_title parameter in an add_page act...

E

admin/index.php in Monstra CMS 3.0.4 allows XSS via the page_meta_title parameter in an edit_page ac...

E

admin/index.php in Monstra CMS 3.0.4 allows XSS via the page_meta_title parameter in an edit_page&na...

E

BigTree CMS 4.2.23 allows remote authenticated users, if possessing privileges to set hooks, to exec...

E

In Gogs 0.11.53, an attacker can use a crafted .eml file to trigger MIME type sniffing, which leads ...

E

UCMS 1.4.6 has XSS via the install/index.php mysql_dbname parameter....

E

UCMS 1.4.6 has SQL injection during installation via the install/index.php mysql_dbname parameter....

E

An issue was discovered in UCMS 1.4.6 and 1.6. It allows PHP code injection during installation via ...

E

user/editpost.php in UCMS 1.4.6 mishandles levels, which allows escalation from the normal user leve...

E

MiniCMS 1.10, when Internet Explorer is used, allows XSS via a crafted URI because $_SERVER['REQUEST...

E

An issue has been found in dbf2txt through 2012-07-19. It is a infinite loop....

E

An issue has been found in doc2txt through 2014-03-19. It is a heap-based buffer overflow in the fun...

E

In YzmCMS 5.1, stored XSS exists via the admin/system_manage/user_config_add.html title parameter....

E

An issue was discovered in CMS MaeloStore V.1.5.0. There is a CSRF vulnerability that can change the...

E

translate man before 2018-08-21 has XSS via containers/outputBox/outputBox.vue and store/index.js....

E

admin/Lib/Action/FpluginAction.class.php in FDCMS (aka Fangfa Content Manage System) 4.2 allows SQL ...

S

CQU-LANKERS through 2017-11-02 has XSS via the public/api.php callback parameter in an uploadpic act...

E

The mintToken function of a smart contract implementation for PolyAi (AI), an Ethereum token, has an...

E

K-Net Cisco Configuration Manager through 2014-11-19 has XSS via devices.php....

E

Cross-site scripting (XSS) vulnerability in Identity Server in Progress Sitefinity CMS versions 10.0...

E

Cross-site scripting (XSS) vulnerability in Identity Server in Progress Sitefinity CMS versions 10.0...

E

An arbitrary file upload vulnerability in Progress Sitefinity CMS versions 4.0 through 11.0 related ...

E

Cross-site scripting (XSS) vulnerability in ServiceStack in Progress Sitefinity CMS versions 10.2 th...

E

An issue was discovered in TCPDF before 6.2.22. Attackers can trigger deserialization of arbitrary d...

E S

An issue was discovered in JABA XPress Online Shop through 2018-09-14. It contains an arbitrary file...

Telerik Extensions for ASP.NET MVC (all versions) does not whitelist requests, which can allow a rem...

BullGuard Safe Browsing before 18.1.355.9 allows XSS on Google, Bing, and Yahoo! pages via domains i...

An issue was discovered in SeaCMS 6.64. XSS exists in admin_video.php via the action, area, type, yu...

E

An issue was discovered on D-Link DIR-816 A2 1.10 B05 devices. An HTTP request parameter is used in ...

E

An issue was discovered on D-Link DIR-816 A2 1.10 B05 devices. An HTTP request parameter is used in ...

E

An issue was discovered on D-Link DIR-816 A2 1.10 B05 devices. Within the handler function of the /g...

E

An issue was discovered on D-Link DIR-816 A2 1.10 B05 devices. An HTTP request parameter is used in ...

E

An issue was discovered on D-Link DIR-816 A2 1.10 B05 devices. A very long password to /goform/formL...

E

An issue was discovered on D-Link DIR-816 A2 1.10 B05 devices. An HTTP request parameter is used in ...

E

An issue was discovered in UNL-CMS 7.59. A CSRF attack can create new content via ?q=node%2Fadd%2Far...

E

An issue was discovered in UNL-CMS 7.59. A CSRF attack can update the website settings via ?q=admin%...

E

The fallback function of a simple lottery smart contract implementation for Lucky9io, an Ethereum ga...

E

JSON++ through 2016-06-15 has a buffer over-read in yyparse() in json.y....

wernsey/bitmap before 2018-08-18 allows a NULL pointer dereference via a 4-bit image....

E S

The Feed Statistics plugin before 4.0 for WordPress has an Open Redirect via the feed-stats-url para...

E

The html package (aka x/net/html) before 2018-07-13 in Go mishandles "in frameset" insertion mode, l...

E S

GPP through 2.25 will try to use more memory space than is available on the stack, leading to a segm...

E

An issue was discovered in yiqicms through 2016-11-20. There is stored XSS in comment.php because a ...

E

An issue was discovered in ZRLOG 2.0.1. There is a Stored XSS vulnerability in the nickname field of...

E

e107 2.1.9 allows CSRF via e107_admin/wmessage.php?mode=&action=inline&ajax_used=1&id= for changing ...

E

The Apache2 component in PHP before 5.6.38, 7.0.x before 7.0.32, 7.1.x before 7.1.22, and 7.2.x befo...

E S

An issue was discovered in OTCMS 3.61. XSS exists in admin/users.php via these parameters: dataTypeC...

E

An issue was discovered in OTCMS 3.61. XSS exists in admin/share_switch.php via these parameters: fi...

E

The ProcessGpsInfo function of the gpsinfo.c file of jhead 3.00 may allow a remote attacker to cause...

E S

An issue was discovered in DonLinkage 6.6.8. The modules /pages/bazy/bazy_adresow.php and /pages/pro...

E

An issue was discovered in DonLinkage 6.6.8. It allows remote attackers to obtain potentially sensit...

E

An issue was discovered in DonLinkage 6.6.8. SQL injection in /pages/proxy/php.php and /pages/proxy/...

E

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2017-11125. Reason: This candidat...

R

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2017-11124. Reason: This candidat...

R

An issue has been discovered in mpruett Audio File Library (aka audiofile) 0.3.6, 0.3.5, 0.3.4, 0.3....

E S

The BPMDetect class in BPMDetect.cpp in libSoundTouch.a in Olli Parviainen SoundTouch 2.0 allows rem...

E

The WavFileBase class in WavFile.cpp in Olli Parviainen SoundTouch 2.0 allows remote attackers to ca...

E

The WavFileBase class in WavFile.cpp in Olli Parviainen SoundTouch 2.0 allows remote attackers to ca...

E

An issue was discovered in LibTIFF 4.0.9. There is a int32 overflow in multiply_ms in tools/ppm2tiff...

S

An issue was discovered in LibTIFF 4.0.9. There are two out-of-bounds writes in cpTags in tools/tiff...

S

An issue was discovered in QuickAppsCMS (aka QACMS) through 2.0.0-beta2. A CSRF vulnerability can ch...

E

An issue was discovered in GetSimple CMS v3.3.13. There is a CSRF vulnerability that can change the ...

E

An issue was discovered in Microweber 1.0.7. There is a CSRF attack (against the admin user) that ca...

E S

In Tinyftp Tinyftpd 1.1, a buffer overflow exists in the text variable of the do_mkd function in the...

E

In Tgstation tgstation-server 3.2.4.0 through 3.2.1.0 (fixed in 3.2.5.0), active logins would be cac...

The SBIbuddy (aka com.sbi.erupee) application 1.41 and 1.42 for Android might allow attackers to per...

E

Simple POS 4.0.24 allows SQL Injection via a products/get_products/ columns[0][search][value] parame...

E

The onlyOwner modifier of a smart contract implementation for Coinlancer (CL), an Ethereum ERC20 tok...

App/Modules/Admin/Tpl/default/Public/dwz/uploadify/scripts/uploadify.swf in EasyCMS 1.5 has XSS via ...

E

CScms 4.1 allows arbitrary directory deletion via a dir=..\\ substring to plugins\sys\admin\Plugins....

E

CScms 4.1 allows remote code execution, as demonstrated by 1');eval($_POST[cmd]);# in Web Name to up...

E

blocking_request.cgi on ASUS GT-AC5300 devices through 3.0.0.4.384_32738 allows remote attackers to ...

E

A Persistent XSS issue was discovered in the Visual Editor in MyBB before 1.8.19 via a Video MyCode....

E

MetInfo 6.1.0 has SQL injection in doexport() in app/system/feedback/admin/feedback_admin.class.php ...

E

PHPMyWind 5.5 has XSS in member.php via an HTTP Referer header,...

E

admin/web_config.php in PHPMyWind 5.5 allows Admin users to execute arbitrary code via the varvalue ...

E

admin/goods_update.php in PHPMyWind 5.5 allows Admin users to execute arbitrary code via the attrval...

E

admin/web_config.php in PHPMyWind 5.5 allows Admin users to execute arbitrary code via the rewrite u...

E

admin/web_config.php in PHPMyWind 5.5 allows Admin users to execute arbitrary code via the cfg_autho...

E

zzcms 8.3 contains a SQL Injection vulnerability in /user/check.php via a Client-Ip HTTP header....

E

Prezi Next 1.3.101.11 has a documented purpose of creating HTML5 presentations but has SE_DEBUG_PRIV...

E

The Jibu Pro plugin through 1.7 for WordPress is prone to Stored XSS via the wp-content/plugins/jibu...

E

UltimatePOS 2.5 allows users to upload arbitrary files, which leads to remote command execution by p...

E

The Quizlord plugin through 2.0 for WordPress is prone to Stored XSS via the title parameter in a ql...

E

HylaFAX 6.0.6 and HylaFAX+ 5.6.0 allow remote attackers to execute arbitrary code via a dial-in sess...

E

The html package (aka x/net/html) through 2018-09-17 in Go mishandles