jell.ie CVEs

Read at: 2018-11-19T03:49:46+00:00

CVE-2018-19355

modules/orderfiles/ajax/upload.php in the Customer Files Upload addon 2018-08-01 for PrestaShop (1.5 through 1.7) allows remote attackers to execute arbitrary code by uploading a php file via modules/orderfiles/upload.php with auptype equal to product (for upload destinations under modules/productfiles), order (for upload destinations under modules/files), or cart (for upload destinations under modules/cartfiles).

Source: National Vulnerability Database | 19 Nov 2018 | 12:29 am GMT

CVE-2018-19358

GNOME Keyring through 3.28.2 allows local users to retrieve login credentials via a Secret Service API call and the D-Bus interface if the keyring is unlocked, a similar issue to CVE-2008-7320. One perspective is that this occurs because available D-Bus protection mechanisms (involving the busconfig and policy XML elements) are not used.

Source: National Vulnerability Database | 18 Nov 2018 | 7:29 pm GMT

CVE-2008-7320

** DISPUTED ** GNOME Seahorse through 3.30 allows physically proximate attackers to read plaintext passwords by using the quickAllow dialog at an unattended workstation, if the keyring is unlocked. NOTE: this is disputed by a software maintainer because the behavior represents a design decision.

Source: National Vulnerability Database | 18 Nov 2018 | 7:29 pm GMT

CVE-2018-19353

The ansilove_ansi function in loaders/ansi.c in libansilove 1.0.0 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted file.

Source: National Vulnerability Database | 18 Nov 2018 | 5:29 pm GMT

CVE-2018-19351

Jupyter Notebook before 5.7.1 allows XSS via an untrusted notebook because nbconvert responses are considered to have the same origin as the notebook server. In other words, nbconvert endpoints can execute JavaScript with access to the server API. In notebook/nbconvert/handlers.py, NbconvertFileHandler and NbconvertPostHandler do not set a Content Security Policy to prevent this.

Source: National Vulnerability Database | 18 Nov 2018 | 5:29 pm GMT

CVE-2018-19352

Jupyter Notebook before 5.7.2 allows XSS via a crafted directory name because notebook/static/tree/js/notebooklist.js handles certain URLs unsafely.

Source: National Vulnerability Database | 18 Nov 2018 | 5:29 pm GMT

CVE-2018-19349

In SeaCMS v6.64, there is SQL injection via the admin_makehtml.php topic parameter because of mishandling in include/mkhtml.func.php.

Source: National Vulnerability Database | 17 Nov 2018 | 10:29 pm GMT

CVE-2018-19350

In SeaCMS v6.6.4, there is stored XSS via the member.php?action=chgpwdsubmit email parameter during a password change, as demonstrated by a data: URL in an OBJECT element.

Source: National Vulnerability Database | 17 Nov 2018 | 10:29 pm GMT

CVE-2018-19342

The u3d plugin 9.3.0.10809 (aka plugins\U3DBrowser.fpi) in FoxitReader.exe in Foxit Reader 9.3.0.10826 allows remote attackers to cause a denial of service (out-of-bounds read) or obtain sensitive information via a U3D sample because of a "Read Access Violation starting at U3DBrowser+0x000000000000347a" issue.

Source: National Vulnerability Database | 17 Nov 2018 | 9:29 pm GMT

CVE-2018-19344

The u3d plugin 9.3.0.10809 (aka plugins\U3DBrowser.fpi) in FoxitReader.exe in Foxit Reader 9.3.0.10826 allows remote attackers to cause a denial of service (out-of-bounds read) or obtain sensitive information via a U3D sample because of a "Data from Faulting Address may be used as a return value starting at U3DBrowser!PlugInMain+0x0000000000031a75" issue.

Source: National Vulnerability Database | 17 Nov 2018 | 9:29 pm GMT

CVE-2018-19345

The u3d plugin 9.3.0.10809 (aka plugins\U3DBrowser.fpi) in FoxitReader.exe in Foxit Reader 9.3.0.10826 allows remote attackers to cause a denial of service (out-of-bounds read) or obtain sensitive information via a U3D sample because of a "Read Access Violation near NULL starting at U3DBrowser!PlugInMain+0x0000000000053f8b" issue.

Source: National Vulnerability Database | 17 Nov 2018 | 9:29 pm GMT

CVE-2018-19347

The u3d plugin 9.3.0.10809 (aka plugins\U3DBrowser.fpi) in FoxitReader.exe in Foxit Reader 9.3.0.10826 allows remote attackers to cause a denial of service (out-of-bounds read) or obtain sensitive information via a U3D sample because of a "Data from Faulting Address controls Branch Selection starting at U3DBrowser!PlugInMain+0x00000000000d11bb" issue.

Source: National Vulnerability Database | 17 Nov 2018 | 9:29 pm GMT

CVE-2018-19348

The u3d plugin 9.3.0.10809 (aka plugins\U3DBrowser.fpi) in FoxitReader.exe in Foxit Reader 9.3.0.10826 allows remote attackers to cause a denial of service (out-of-bounds read) or obtain sensitive information via a U3D sample because of a "Data from Faulting Address controls Branch Selection starting at U3DBrowser!PlugInMain+0x000000000012dff5" issue.

Source: National Vulnerability Database | 17 Nov 2018 | 9:29 pm GMT

CVE-2018-19346

The u3d plugin 9.3.0.10809 (aka plugins\U3DBrowser.fpi) in FoxitReader.exe in Foxit Reader 9.3.0.10826 allows remote attackers to cause a denial of service (out-of-bounds read) or obtain sensitive information via a U3D sample because of a "Data from Faulting Address controls Branch Selection starting at U3DBrowser!PlugInMain+0x00000000000d11ea" issue.

Source: National Vulnerability Database | 17 Nov 2018 | 9:29 pm GMT

CVE-2018-19341

The u3d plugin 9.3.0.10809 (aka plugins\U3DBrowser.fpi) in FoxitReader.exe in Foxit Reader 9.3.0.10826 allows remote attackers to cause a denial of service (out-of-bounds read) or obtain sensitive information via a U3D sample because of a "Read Access Violation near NULL starting at FoxitReader!std::basic_ostream >::operator<<+0x0000000000087906" issue.

Source: National Vulnerability Database | 17 Nov 2018 | 9:29 pm GMT

CVE-2018-19343

The u3d plugin 9.3.0.10809 (aka plugins\U3DBrowser.fpi) in FoxitReader.exe in Foxit Reader 9.3.0.10826 allows remote attackers to cause a denial of service (out-of-bounds read), obtain sensitive information, or possibly have unspecified other impact via a U3D sample because of a "Data from Faulting Address controls Code Flow starting at U3DBrowser!PlugInMain+0x00000000000f43ff" issue.

Source: National Vulnerability Database | 17 Nov 2018 | 9:29 pm GMT

CVE-2018-19340

Guriddo Form PHP 5.3 has XSS via the demos/jqform/defaultnodb/default.php OrderID, ShipName, ShipAddress, ShipCity, ShipPostalCode, ShipCountry, Freight, or details parameter.

Source: National Vulnerability Database | 17 Nov 2018 | 5:29 pm GMT

CVE-2018-19333

pkg/sentry/kernel/shm/shm.go in Google gVisor before 2018-11-01 allows attackers to overwrite memory locations in processes running as root (but not escape the sandbox) via vectors involving IPC_RMID shmctl calls, because reference counting is mishandled.

Source: National Vulnerability Database | 17 Nov 2018 | 5:29 pm GMT

CVE-2018-19332

An issue was discovered in S-CMS v1.5. There is a CSRF vulnerability that can add a new user via the admin/ajax.php?type=member&action=add URI.

Source: National Vulnerability Database | 17 Nov 2018 | 3:29 pm GMT

CVE-2018-19327

An issue was discovered in JTBC(PHP) 3.0.1.7. aboutus/manage.php?type=action&action=add allows CSRF.

Source: National Vulnerability Database | 17 Nov 2018 | 3:29 pm GMT

CVE-2018-19329

GreenCMS v2.3.0603 allows remote authenticated administrators to delete arbitrary files by modifying a base64-encoded pathname in an m=admin&c=media&a=delfilehandle&id= call, related to the m=admin&c=media&a=restorefile delete button.

Source: National Vulnerability Database | 17 Nov 2018 | 3:29 pm GMT

CVE-2018-19331

An issue was discovered in S-CMS v1.5. There is a SQL injection vulnerability in search.php via the keyword parameter.

Source: National Vulnerability Database | 17 Nov 2018 | 3:29 pm GMT

CVE-2018-19328

LAOBANCMS 2.0 allows install/mysql_hy.php?riqi=../ Directory Traversal.

Source: National Vulnerability Database | 17 Nov 2018 | 3:29 pm GMT

CVE-2018-19326

Zyxel VMG1312-B10D devices before 5.13(AAXA.8)C0 allow ../ Directory Traversal, as demonstrated by reading /etc/passwd.

Source: National Vulnerability Database | 17 Nov 2018 | 2:29 pm GMT

CVE-2018-19274

Passing an absolute path to a file_exists check in phpBB before 3.2.4 allows Remote Code Execution through Object Injection by employing Phar deserialization when an attacker has access to the Admin Control Panel with founder permissions.

Source: National Vulnerability Database | 17 Nov 2018 | 1:29 pm GMT

CVE-2018-19324

kimsQ Rb 2.3.0 allows XSS via the second input field to the /?r=home&mod=mypage&page=info URI.

Source: National Vulnerability Database | 17 Nov 2018 | 1:29 pm GMT

CVE-2018-15769

RSA BSAFE Micro Edition Suite versions prior to 4.0.11 (in 4.0.x series) and versions prior to 4.1.6.2 (in 4.1.x series) contain a key management error issue. A malicious TLS server could potentially cause a Denial Of Service (DoS) on TLS clients during the handshake when a very large prime value is sent to the TLS client, and an Ephemeral or Anonymous Diffie-Hellman cipher suite (DHE or ADH) is used.

Source: National Vulnerability Database | 16 Nov 2018 | 9:29 pm GMT

CVE-2018-18955

In the Linux kernel 4.15.x through 4.19.x before 4.19.2, map_write() in kernel/user_namespace.c allows privilege escalation because it mishandles nested user namespaces with more than 5 UID or GID ranges. A user who has CAP_SYS_ADMIN in an affected user namespace can bypass access controls on resources outside the namespace, as demonstrated by reading /etc/shadow. This occurs because an ID transformation takes place properly for the namespaced-to-kernel direction but not for the kernel-to-namespaced direction.

Source: National Vulnerability Database | 16 Nov 2018 | 8:29 pm GMT

CVE-2018-19319

SRCMS 3.0.0 allows CSRF via admin.php?m=Admin&c=gifts&a=update to change goods prices with the super administrator's privileges.

Source: National Vulnerability Database | 16 Nov 2018 | 7:29 pm GMT

CVE-2018-19311

Centreon 3.4.x allows XSS via the Service field to the main.php?p=20201 URI, as demonstrated by the "Monitoring > Status Details > Services" screen.

Source: National Vulnerability Database | 16 Nov 2018 | 7:29 pm GMT

CVE-2018-19312

Centreon 3.4.x allows SQL Injection via the searchVM parameter to the main.php?p=20408 URI.

Source: National Vulnerability Database | 16 Nov 2018 | 7:29 pm GMT

CVE-2018-19318

SRCMS 3.0.0 allows CSRF via admin.php?m=Admin&c=manager&a=update to change the username and password of the super administrator account.

Source: National Vulnerability Database | 16 Nov 2018 | 7:29 pm GMT

CVE-2018-18805

PointOfSales 1.0 allows SQL injection via the login screen, related to LoginForm1.vb.

Source: National Vulnerability Database | 16 Nov 2018 | 6:29 pm GMT

CVE-2018-18806

School Equipment Monitoring System 1.0 allows SQL injection via the login screen, related to include/user.vb.

Source: National Vulnerability Database | 16 Nov 2018 | 6:29 pm GMT

CVE-2018-18804

Bakeshop Inventory System 1.0 has SQL injection via the login screen, related to include/publicfunction.vb.

Source: National Vulnerability Database | 16 Nov 2018 | 6:29 pm GMT

CVE-2018-18799

School Attendance Monitoring System 1.0 has CSRF via event/controller.php?action=photos.

Source: National Vulnerability Database | 16 Nov 2018 | 6:29 pm GMT

CVE-2018-18795

School Event Management System 1.0 has SQL Injection via the student/index.php or event/index.php id parameter.

Source: National Vulnerability Database | 16 Nov 2018 | 6:29 pm GMT

CVE-2018-18760

RhinOS 3.0 build 1190 allows CSRF.

Source: National Vulnerability Database | 16 Nov 2018 | 6:29 pm GMT

CVE-2018-16396

An issue was discovered in Ruby before 2.3.8, 2.4.x before 2.4.5, 2.5.x before 2.5.2, and 2.6.x before 2.6.0-preview3. It does not taint strings that result from unpacking tainted strings with some formats.

Source: National Vulnerability Database | 16 Nov 2018 | 6:29 pm GMT

CVE-2018-18761

SaltOS 3.1 r8126 allows action=login&querystring=&user=[SQL] SQL Injection.

Source: National Vulnerability Database | 16 Nov 2018 | 6:29 pm GMT

CVE-2018-18796

Library Management System 1.0 has SQL Injection via the "Search for Books" screen.

Source: National Vulnerability Database | 16 Nov 2018 | 6:29 pm GMT

CVE-2018-18794

School Event Management System 1.0 allows CSRF via user/controller.php?action=edit.

Source: National Vulnerability Database | 16 Nov 2018 | 6:29 pm GMT

CVE-2018-18803

Curriculum Evaluation System 1.0 allows SQL Injection via the login screen, related to frmCourse.vb and includes/user.vb.

Source: National Vulnerability Database | 16 Nov 2018 | 6:29 pm GMT

CVE-2018-18797

School Attendance Monitoring System 1.0 has CSRF via /user/user/edit.php.

Source: National Vulnerability Database | 16 Nov 2018 | 6:29 pm GMT

CVE-2018-18756

Local Server 1.0.9 has a Buffer Overflow via crafted data on Port 4008.

Source: National Vulnerability Database | 16 Nov 2018 | 6:29 pm GMT

CVE-2018-18755

K-iwi Framework 1775 has SQL Injection via the admin/user/group/update user_group_id parameter or the admin/user/user/update user_id parameter.

Source: National Vulnerability Database | 16 Nov 2018 | 6:29 pm GMT

CVE-2018-18793

School Event Management System 1.0 allows Arbitrary File Upload via event/controller.php?action=photos.

Source: National Vulnerability Database | 16 Nov 2018 | 6:29 pm GMT

CVE-2018-18763

SaltOS 3.1 r8126 allows action=ajax&query=numbers&page=usuarios&action2=[SQL] SQL Injection.

Source: National Vulnerability Database | 16 Nov 2018 | 6:29 pm GMT

CVE-2018-18801

The BSEN Ordering software 1.0 has SQL Injection via student/index.php?view=view&id=[SQL] or index.php?q=single-item&id=[SQL].

Source: National Vulnerability Database | 16 Nov 2018 | 6:29 pm GMT

CVE-2018-18759

Modbus Slave 7.0.0 in modbus tools has a Buffer Overflow.

Source: National Vulnerability Database | 16 Nov 2018 | 6:29 pm GMT

CVE-2018-15692

Inova Partner 5.0.5-RELEASE, Build 0510-0906 and earlier allows authenticated users authorization bypass and data manipulation in certain functions.

Source: National Vulnerability Database | 16 Nov 2018 | 6:29 pm GMT

CVE-2018-15693

Inova Partner 5.0.5-RELEASE, Build 0510-0906 and earlier allows authenticated users authorization bypass via insecure direct object reference.

Source: National Vulnerability Database | 16 Nov 2018 | 6:29 pm GMT

CVE-2018-16395

An issue was discovered in the OpenSSL library in Ruby before 2.3.8, 2.4.x before 2.4.5, 2.5.x before 2.5.2, and 2.6.x before 2.6.0-preview3. When two OpenSSL::X509::Name objects are compared using ==, depending on the ordering, non-equal objects may return true. When the first argument is one character longer than the second, or the second argument contains a character that is one less than a character in the same position of the first argument, the result of == will be true. This could be leveraged to create an illegitimate certificate that may be accepted as legitimate and then used in signing or encryption operations.

Source: National Vulnerability Database | 16 Nov 2018 | 6:29 pm GMT

CVE-2018-7363

All versions up to V1.1.10P3T18 of ZTE ZXHN F670 product are impacted by improper authorization vulnerability. Since appviahttp service has no authorization delay, an attacker can be allowed to brute force account credentials.

Source: National Vulnerability Database | 16 Nov 2018 | 3:29 pm GMT

CVE-2018-7362

All versions up to V1.1.10P3T18 of ZTE ZXHN F670 product are impacted by improper access control vulnerability, which may allows an unauthorized user to perform unauthorized operations on the router.

Source: National Vulnerability Database | 16 Nov 2018 | 3:29 pm GMT

CVE-2018-1797

IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 using Enterprise bundle Archives (EBA) could allow a local attacker to traverse directories on the system. By persuading a victim to extract a specially-crafted ZIP archive containing "dot dot slash" sequences (../), an attacker could exploit this vulnerability to write to arbitrary files on the system. Note: This vulnerability is known as "Zip-Slip". IBM X-Force ID: 149427.

Source: National Vulnerability Database | 16 Nov 2018 | 3:29 pm GMT

CVE-2018-7361

All versions up to V1.1.10P3T18 of ZTE ZXHN F670 product are impacted by null pointer dereference vulnerability, which may allows an attacker to cause a denial of service.

Source: National Vulnerability Database | 16 Nov 2018 | 3:29 pm GMT

CVE-2018-1639

The Report Builder of Jazz Reporting Service 5.0 through 5.0.2 and 6.0 through 6.0.6 could allow an authenticated user to obtain sensitive information beyond its assigned privileges. IBM X-Force ID: 144579.

Source: National Vulnerability Database | 16 Nov 2018 | 3:29 pm GMT

CVE-2018-7360

All versions up to V1.1.10P3T18 of ZTE ZXHN F670 product are impacted by information exposure vulnerability, which may allow an unauthenticated attacker to get the GPON SN information via appviahttp service.

Source: National Vulnerability Database | 16 Nov 2018 | 3:29 pm GMT

CVE-2018-7359

All versions up to V1.1.10P3T18 of ZTE ZXHN F670 product are impacted by heap-based buffer overflow vulnerability, which may allow an attacker to execute arbitrary code.

Source: National Vulnerability Database | 16 Nov 2018 | 3:29 pm GMT

CVE-2018-9071

Lenovo Chassis Management Module (CMM) prior to version 2.0.0 allows unauthenticated users to retrieve information related to the current authentication configuration settings. Exposed settings relate to password lengths, expiration, and lockout configuration.

Source: National Vulnerability Database | 16 Nov 2018 | 2:29 pm GMT

CVE-2018-9085

A write protection lock bit was left unset after boot on an older generation of Lenovo and IBM System x servers, potentially allowing an attacker with administrator access to modify the subset of flash memory containing Intel Server Platform Services (SPS) and the system Flash Descriptors.

Source: National Vulnerability Database | 16 Nov 2018 | 2:29 pm GMT

CVE-2018-9073

Lenovo Chassis Management Module (CMM) prior to version 2.0.0 utilizes a hardcoded encryption key to protect certain secrets. Possession of the key can allow an attacker that has already compromised the server to decrypt these secrets.

Source: National Vulnerability Database | 16 Nov 2018 | 2:29 pm GMT

CVE-2018-9086

In some Lenovo ThinkServer-branded servers, a command injection vulnerability exists in the BMC firmware download command. This allows a privileged user to download and execute arbitrary code inside the BMC. This can only be exploited by authorized privileged users.

Source: National Vulnerability Database | 16 Nov 2018 | 2:29 pm GMT

CVE-2018-19296

PHPMailer before 5.2.27 and 6.x before 6.0.6 is vulnerable to an object injection attack.

Source: National Vulnerability Database | 16 Nov 2018 | 9:29 am GMT

CVE-2018-19301

tp4a TELEPORT 3.1.0 allows XSS via the login page because a crafted username is mishandled when an administrator later views the system log.

Source: National Vulnerability Database | 15 Nov 2018 | 11:29 pm GMT

CVE-2018-5407

Simultaneous Multi-threading (SMT) in processors can enable local users to exploit software vulnerable to timing attacks via a side-channel timing attack on 'port contention'.

Source: National Vulnerability Database | 15 Nov 2018 | 9:29 pm GMT

CVE-2018-16621

Sonatype Nexus Repository Manager before 3.14 allows Java Expression Language Injection.

Source: National Vulnerability Database | 15 Nov 2018 | 8:29 pm GMT

CVE-2018-18954

The pnv_lpc_do_eccb function in hw/ppc/pnv_lpc.c in Qemu before 3.1 allows out-of-bounds write or read access to PowerNV memory.

Source: National Vulnerability Database | 15 Nov 2018 | 8:29 pm GMT

CVE-2018-16620

Sonatype Nexus Repository Manager before 3.14 has Incorrect Access Control.

Source: National Vulnerability Database | 15 Nov 2018 | 8:29 pm GMT

CVE-2018-14935

The Web administration console on Polycom Trio devices with software before 5.5.4 has XSS.

Source: National Vulnerability Database | 15 Nov 2018 | 8:29 pm GMT

CVE-2018-14934

The Bluetooth subsystem on Polycom Trio devices with software before 5.5.4 has Incorrect Access Control. An attacker can connect without authentication and subsequently record audio from the device microphone.

Source: National Vulnerability Database | 15 Nov 2018 | 8:29 pm GMT

CVE-2018-16619

Sonatype Nexus Repository Manager before 3.14 allows XSS.

Source: National Vulnerability Database | 15 Nov 2018 | 8:29 pm GMT

CVE-2018-8529

A remote code execution vulnerability exists when Team Foundation Server (TFS) does not enable basic authorization on the communication between the TFS and Search services, aka "Team Foundation Server Remote Code Execution Vulnerability." This affects Team.

Source: National Vulnerability Database | 15 Nov 2018 | 7:29 pm GMT

CVE-2018-1643

The Installation Verification Tool of IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 144588

Source: National Vulnerability Database | 15 Nov 2018 | 4:29 pm GMT

CVE-2018-12543

In Eclipse Mosquitto versions 1.5 to 1.5.2 inclusive, if a message is published to Mosquitto that has a topic starting with $, but that is not $SYS, e.g. $test/test, then an assert is triggered that should otherwise not be reachable and Mosquitto will exit.

Source: National Vulnerability Database | 15 Nov 2018 | 3:29 pm GMT

CVE-2018-0693

Directory traversal vulnerability in FileZen V3.0.0 to V4.2.1 allows remote attackers to upload an arbitrary file in the specific directory in FileZen via unspecified vectors.

Source: National Vulnerability Database | 15 Nov 2018 | 3:29 pm GMT

CVE-2018-0694

FileZen V3.0.0 to V4.2.1 allows remote attackers to execute arbitrary OS commands via unspecified vectors.

Source: National Vulnerability Database | 15 Nov 2018 | 3:29 pm GMT

CVE-2018-0695

Cross-site scripting vulnerability in User-friendly SVN (USVN) Version 1.0.7 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Source: National Vulnerability Database | 15 Nov 2018 | 3:29 pm GMT

CVE-2018-0699

Cross-site scripting vulnerability in YukiWiki 2.1.3 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Source: National Vulnerability Database | 15 Nov 2018 | 3:29 pm GMT

CVE-2018-0697

Cross-site scripting vulnerability in Metabase version 0.29.3 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Source: National Vulnerability Database | 15 Nov 2018 | 3:29 pm GMT

CVE-2018-16163

OpenDolphin 2.7.0 and earlier allows authenticated attackers to bypass authentication to create and/or delete other users accounts via unspecified vectors.

Source: National Vulnerability Database | 15 Nov 2018 | 3:29 pm GMT

CVE-2018-16160

SecureCore Standard Edition Version 2.x allows an attacker to bypass the product 's authentication to log in to a Windows PC.

Source: National Vulnerability Database | 15 Nov 2018 | 3:29 pm GMT

CVE-2018-16161

OpenDolphin 2.7.0 and earlier allows authenticated users to gain administrative privileges and perform unintended operations.

Source: National Vulnerability Database | 15 Nov 2018 | 3:29 pm GMT

CVE-2018-16162

OpenDolphin 2.7.0 and earlier allows authenticated attackers to obtain other users credentials such as a user ID and/or its password via unspecified vectors.

Source: National Vulnerability Database | 15 Nov 2018 | 3:29 pm GMT

CVE-2018-0701

BlueStacks App Player (BlueStacks App Player for Windows 3.0.0 to 4.31.55, BlueStacks App Player for macOS 2.0.0 and later) allows an attacker on the same network segment to bypass access restriction to gain unauthorized access.

Source: National Vulnerability Database | 15 Nov 2018 | 3:29 pm GMT

CVE-2018-0700

YukiWiki 2.1.3 and earlier does not process a particular request properly that may allow consumption of large amounts of CPU and memory resources and may result in causing a denial of service condition.

Source: National Vulnerability Database | 15 Nov 2018 | 3:29 pm GMT

CVE-2018-0691

Multiple +Message Apps (Softbank +Message App for Android prior to version 10.1.7, Softbank +Message App for iOS prior to version 1.1.23, NTT DOCOMO +Message App for Android prior to version 42.40.2800, NTT DOCOMO +Message App for iOS prior to version 1.1.23, KDDI +Message App for Android prior to version 1.0.6, and KDDI +Message App for iOS prior to version 1.1.23) do not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

Source: National Vulnerability Database | 15 Nov 2018 | 3:29 pm GMT

CVE-2018-0681

Denbun by NEOJAPAN Inc. (Denbun POP version V3.3P R4.0 and earlier, Denbun IMAP version V3.3I R4.0 and earlier) uses hard-coded credentials, which may allow remote attackers to login to the Management page and change the configuration.

Source: National Vulnerability Database | 15 Nov 2018 | 3:29 pm GMT

CVE-2018-0673

Directory traversal vulnerability in Cybozu Garoon 3.5.0 to 4.6.3 allows authenticated attackers to read arbitrary files via unspecified vectors.

Source: National Vulnerability Database | 15 Nov 2018 | 3:29 pm GMT

CVE-2018-0683

Buffer overflow in Denbun by NEOJAPAN Inc. (Denbun POP version V3.3P R4.0 and earlier, Denbun IMAP version V3.3I R4.0 and earlier) allows remote attackers to execute arbitrary code or cause a denial-of-service (DoS) condition via Cookie data.

Source: National Vulnerability Database | 15 Nov 2018 | 3:29 pm GMT

CVE-2018-0679

Cross-site scripting vulnerability in multiple FXC Inc. network devices (Managed Ethernet switch FXC5210/5218/5224 firmware prior to version Ver1.00.22, Managed Ethernet switch FXC5426F firmware prior to version Ver1.00.06, Managed Ethernet switch FXC5428 firmware prior to version Ver1.00.07, Power over Ethernet (PoE) switch FXC5210PE/5218PE/5224PE firmware prior to version Ver1.00.14, and Wireless LAN router AE1021/AE1021PE firmware all versions) allows attacker with administrator rights to inject arbitrary web script or HTML via the administrative page.

Source: National Vulnerability Database | 15 Nov 2018 | 3:29 pm GMT

CVE-2018-0686

Denbun by NEOJAPAN Inc. (Denbun POP version V3.3P R4.0 and earlier, Denbun IMAP version V3.3I R4.0 and earlier) allows remote authenticated attackers to upload and execute any executable files via unspecified vectors.

Source: National Vulnerability Database | 15 Nov 2018 | 3:29 pm GMT

CVE-2018-0690

An unvalidated software update vulnerability in Music Center for PC version 1.0.02 and earlier could allow a man-in-the-middle attacker to tamper with an update file and inject executable files.

Source: National Vulnerability Database | 15 Nov 2018 | 3:29 pm GMT

CVE-2018-0680

Denbun by NEOJAPAN Inc. (Denbun POP version V3.3P R4.0 and earlier, Denbun IMAP version V3.3I R4.0 and earlier) uses hard-coded credentials, which may allow remote attackers to read/send mail or change the configuration.

Source: National Vulnerability Database | 15 Nov 2018 | 3:29 pm GMT

CVE-2018-0684

Buffer overflow in Denbun by NEOJAPAN Inc. (Denbun POP version V3.3P R3.0 and earlier, Denbun IMAP version V3.3I R3.0 and earlier) allows remote attackers to execute arbitrary code or cause a denial-of-service (DoS) condition via multipart/form-data format data.

Source: National Vulnerability Database | 15 Nov 2018 | 3:29 pm GMT

CVE-2018-0685

SQL injection vulnerability in the Denbun POP version V3.3P R4.0 and earlier allows remote authenticated attackers to execute arbitrary SQL commands via HTTP requests for mail search.

Source: National Vulnerability Database | 15 Nov 2018 | 3:29 pm GMT

CVE-2018-0692

Untrusted search path vulnerability in Baidu Browser Version 43.23.1000.500 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.

Source: National Vulnerability Database | 15 Nov 2018 | 3:29 pm GMT

CVE-2018-0687

Cross-site scripting vulnerability in Denbun by NEOJAPAN Inc. (Denbun POP version V3.3P R4.0 and earlier, Denbun IMAP version V3.3I R4.0 and earlier) allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Source: National Vulnerability Database | 15 Nov 2018 | 3:29 pm GMT

CVE-2018-0682

Denbun by NEOJAPAN Inc. (Denbun POP version V3.3P R4.0 and earlier, Denbun IMAP version V3.3I R4.0 and earlier) does not properly manage sessions, which allows remote attackers to read/send mail or change the configuration via unspecified vectors.

Source: National Vulnerability Database | 15 Nov 2018 | 3:29 pm GMT

count: 100