CVE List - 2018 / February
Showing 901 - 1000 of 1325 CVEs for February 2018 (Page 10 of 14)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2018-7187 | 2018-02-16 | The "go get" implementation in Go 1.9.4, when the -insecure command-line option is used, does not validate the import path (get/vcs.go only checks for "://" anywhere in the string), which... |
| CVE-2017-18089 | 2018-02-16 | The view review history resource in Atlassian Crucible before version 4.4.3 (the fixed version for 4.4.x) and 4.5.0 allows remote attackers to inject arbitrary HTML or JavaScript via a cross... |
| CVE-2017-18090 | 2018-02-16 | Various resources in Atlassian Fisheye before version 4.5.1 (the fixed version for 4.5.x) and before version 4.6.0 allow remote attackers to inject arbitrary HTML or JavaScript via a cross site... |
| CVE-2017-18091 | 2018-02-16 | The admin backupprogress action in Atlassian Fisheye and Crucible before version 4.4.3 (the fixed version for 4.4.x) and before 4.5.0 allows remote attackers with administrative privileges to inject arbitrary HTML... |
| CVE-2018-7188 | 2018-02-16 | An XSS vulnerability (via an SVG image) in Tiki before 18 allows an authenticated user to gain administrator privileges if an administrator opens a wiki page with a malicious SVG... |
| CVE-2018-1049 | 2018-02-16 | In systemd prior to 234 a race condition exists between .mount and .automount units such that automount requests from kernel may not be serviced by systemd resulting in kernel holding... |
| CVE-2018-3609 | 2018-02-16 | A vulnerability in the Trend Micro InterScan Messaging Security Virtual Appliance 9.0 and 9.1 management portal could allow an unauthenticated user to access sensitive information in a particular log file... |
| CVE-2018-6218 | 2018-02-16 | A DLL Hijacking vulnerability in Trend Micro's User-Mode Hooking Module (UMH) could allow an attacker to run arbitrary code on a vulnerable system. |
| CVE-2018-5970 | 2018-02-17 | SQL Injection exists in the JGive 2.0.9 component for Joomla! via the filter_org_ind_type or campaign_countries parameter. |
| CVE-2018-5971 | 2018-02-17 | SQL Injection exists in the MediaLibrary Free 4.0.12 component for Joomla! via the id parameter or the mid array parameter. |
| CVE-2018-5974 | 2018-02-17 | SQL Injection exists in the SimpleCalendar 3.1.9 component for Joomla! via the catid array parameter. |
| CVE-2018-5975 | 2018-02-17 | SQL Injection exists in the Smart Shoutbox 3.0.0 component for Joomla! via the shoutauthor parameter to the archive URI. |
| CVE-2018-5980 | 2018-02-17 | SQL Injection exists in the Solidres 2.5.1 component for Joomla! via the direction parameter in a hub.search action. |
| CVE-2018-5981 | 2018-02-17 | SQL Injection exists in the Gallery WD 1.3.6 component for Joomla! via the tag_id parameter or gallery_id parameter. |
| CVE-2018-5982 | 2018-02-17 | SQL Injection exists in the Advertisement Board 3.1.0 component for Joomla! via a task=show_rss_categories&catname= request. |
| CVE-2018-5983 | 2018-02-17 | SQL Injection exists in the JquickContact 1.3.2.2.1 component for Joomla! via a task=refresh&sid= request. |
| CVE-2018-5987 | 2018-02-17 | SQL Injection exists in the Pinterest Clone Social Pinboard 2.0 component for Joomla! via the pin_id or user_id parameter in a task=getlikeinfo action, the ends parameter in a view=gift action,... |
| CVE-2018-5989 | 2018-02-17 | SQL Injection exists in the ccNewsletter 2.x component for Joomla! via the id parameter in a task=removeSubscriber action, a related issue to CVE-2011-5099. |
| CVE-2018-5990 | 2018-02-17 | SQL Injection exists in the AllVideos Reloaded 1.2.x component for Joomla! via the divid parameter. |
| CVE-2018-5991 | 2018-02-17 | SQL Injection exists in the Form Maker 3.6.12 component for Joomla! via the id, from, or to parameter in a view=stats request, a different vulnerability than CVE-2015-2798. |
| CVE-2018-5992 | 2018-02-17 | SQL Injection exists in the Staff Master through 1.0 RC 1 component for Joomla! via the name parameter in a view=staff request. |
| CVE-2018-5993 | 2018-02-17 | SQL Injection exists in the Aist through 2.0 component for Joomla! via the id parameter in a view=showvacancy request. |
| CVE-2018-5994 | 2018-02-17 | SQL Injection exists in the JS Jobs 1.1.9 component for Joomla! via the zipcode parameter in a newest-jobs request, or the ta parameter in a view_resume request. |
| CVE-2018-6004 | 2018-02-17 | SQL Injection exists in the File Download Tracker 3.0 component for Joomla! via the dynfield[phone] or sess parameter. |
| CVE-2018-6005 | 2018-02-17 | SQL Injection exists in the Realpin through 1.5.04 component for Joomla! via the pinboard parameter. |
| CVE-2018-6006 | 2018-02-17 | SQL Injection exists in the JS Autoz 1.0.9 component for Joomla! via the vtype, pre, or prs parameter. |
| CVE-2018-6368 | 2018-02-17 | SQL Injection exists in the JomEstate PRO through 3.7 component for Joomla! via the id parameter in a task=detailed action. |
| CVE-2018-6370 | 2018-02-17 | SQL Injection exists in the NeoRecruit 4.1 component for Joomla! via the (1) PATH_INFO or (2) name of a .html file under the all-offers/ URI. |
| CVE-2018-6372 | 2018-02-17 | SQL Injection exists in the JB Bus 2.3 component for Joomla! via the order_number parameter. |
| CVE-2018-6373 | 2018-02-17 | SQL Injection exists in the Fastball 2.5 component for Joomla! via the season parameter in a view=player action. |
| CVE-2018-6394 | 2018-02-17 | SQL Injection exists in the InviteX 3.0.5 component for Joomla! via the invite_type parameter in a view=invites action. |
| CVE-2018-6396 | 2018-02-17 | SQL Injection exists in the Google Map Landkarten through 4.2.3 component for Joomla! via the cid or id parameter in a layout=form_markers action, or the map parameter in a layout=default... |
| CVE-2018-6583 | 2018-02-17 | SQL Injection exists in the Timetable Responsive Schedule 1.5 component for Joomla! via a view=event&alias= request. |
| CVE-2018-6584 | 2018-02-17 | SQL Injection exists in the DT Register 3.2.7 component for Joomla! via a task=edit&id= request. |
| CVE-2018-6585 | 2018-02-17 | SQL Injection exists in the JTicketing 2.0.16 component for Joomla! via a view=events action with a filter_creator or filter_events_cat parameter. |
| CVE-2018-7177 | 2018-02-17 | SQL Injection exists in the Saxum Numerology 3.0.4 component for Joomla! via the publicid parameter. |
| CVE-2018-7178 | 2018-02-17 | SQL Injection exists in the Saxum Picker 3.2.10 component for Joomla! via the publicid parameter. |
| CVE-2018-7179 | 2018-02-17 | SQL Injection exists in the SquadManagement 1.0.3 component for Joomla! via the id parameter. |
| CVE-2018-7180 | 2018-02-17 | SQL Injection exists in the Saxum Astro 4.0.14 component for Joomla! via the publicid parameter. |
| CVE-2018-7197 | 2018-02-18 | An issue was discovered in Pluck through 4.7.4. A stored cross-site scripting (XSS) vulnerability allows remote unauthenticated users to inject arbitrary web script or HTML into admin/blog Reaction Comments via... |
| CVE-2018-7198 | 2018-02-18 | October CMS through 1.0.431 allows XSS by entering HTML on the Add Posts page. |
| CVE-2018-7206 | 2018-02-18 | An issue was discovered in Project Jupyter JupyterHub OAuthenticator 0.6.x before 0.6.2 and 0.7.x before 0.7.3. When using JupyterHub with GitLab group whitelisting for access control, group membership was not... |
| CVE-2018-7208 | 2018-02-18 | In the coff_pointerize_aux function in coffgen.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.30, an index is not validated, which allows remote attackers... |
| CVE-2018-7209 | 2018-02-18 | An issue was discovered in iDashboards 9.6b. It allows remote attackers to obtain sensitive information via a direct request for the idashboards/config.xml URI, as demonstrated by intranet URLs for reports. |
| CVE-2018-7210 | 2018-02-18 | An issue was discovered in iDashboards 9.6b. It allows remote attackers to obtain sensitive information via a direct request for the idb/config?CMD=installLicense URI, as demonstrated by intranet IP addresses and... |
| CVE-2018-7211 | 2018-02-18 | An issue was discovered in iDashboards 9.6b. The SSO implementation is affected by a weak obfuscation library, allowing man-in-the-middle attackers to discover credentials. |
| CVE-2018-7212 | 2018-02-18 | An issue was discovered in rack-protection/lib/rack/protection/path_traversal.rb in Sinatra 2.x before 2.0.1 on Windows. Path traversal is possible via backslash characters. |
| CVE-2018-7216 | 2018-02-18 | Cross-site request forgery (CSRF) vulnerability in esop/toolkit/profile/regData.do in Bravo Tejari Procurement Portal allows remote authenticated users to hijack the authentication of application users for requests that modify their personal data... |
| CVE-2018-7217 | 2018-02-18 | In Bravo Tejari Procurement Portal, uploaded files are not properly validated by the application either on the client or the server side. An attacker can take advantage of this vulnerability... |
| CVE-2018-6024 | 2018-02-18 | SQL Injection exists in the Project Log 1.5.3 component for Joomla! via the search parameter. |
| CVE-2017-16924 | 2018-02-19 | Remote Information Disclosure and Escalation of Privileges in ManageEngine Desktop Central MSP 10.0.137 allows attackers to download unencrypted XML files containing all data for configuration policies via a predictable /client-data/<client_id>/collections/##/usermgmt.xml... |
| CVE-2018-5378 | 2018-02-19 | The Quagga BGP daemon (bgpd) prior to version 1.2.3 does not properly bounds check the data sent with a NOTIFY to a peer, if an attribute length is invalid. Arbitrary... |
| CVE-2018-5379 | 2018-02-19 | The Quagga BGP daemon (bgpd) prior to version 1.2.3 can double-free memory when processing certain forms of UPDATE message, containing cluster-list and/or unknown attributes. A successful attack could cause a... |
| CVE-2018-5380 | 2018-02-19 | The Quagga BGP daemon (bgpd) prior to version 1.2.3 can overrun internal BGP code-to-string conversion tables used for debug by 1 pointer value, based on input. |
| CVE-2018-5381 | 2018-02-19 | The Quagga BGP daemon (bgpd) prior to version 1.2.3 has a bug in its parsing of "Capabilities" in BGP OPEN messages, in the bgp_packet.c:bgp_capability_msg_parse function. The parser can enter an... |
| CVE-2017-16755 | 2018-02-19 | An issue was discovered in Userscape HelpSpot before 4.7.2. A reflected cross-site scripting vulnerability exists in the "return" parameter of the "index.php?pg=moderated" endpoint. It executes when the return link is... |
| CVE-2017-16756 | 2018-02-19 | An issue was discovered in Userscape HelpSpot before 4.7.2. A cross-site request forgery vulnerability exists on POST requests to the "index.php?pg=password.change" endpoint. This allows an attacker to change the password... |
| CVE-2018-6591 | 2018-02-19 | Converse.js and Inverse.js through 3.3 allow remote attackers to obtain sensitive information because it is too difficult to determine whether safe publication of private data was configured or even intended.... |
| CVE-2018-7219 | 2018-02-19 | application/admin/controller/Admin.php in NoneCms 1.3.0 has CSRF, as demonstrated by changing an admin password or adding an account via a public/index.php/admin/admin/edit.html request. |
| CVE-2017-15712 | 2018-02-19 | Vulnerability allows a user of Apache Oozie 3.1.3-incubating to 4.3.0 and 5.0.0-beta1 to expose private files on the Oozie server process. The malicious user can construct a workflow XML file... |
| CVE-2017-18092 | 2018-02-19 | The print snippet resource in Atlassian Crucible before version 4.4.3 (the fixed version for 4.4.x) and before 4.5.0 allows remote attackers to inject arbitrary HTML or JavaScript via a cross... |
| CVE-2017-18093 | 2018-02-19 | Various resources in Atlassian Fisheye and Crucible before version 4.4.3 (the fixed version for 4.4.x) and before 4.5.0 allow remote attackers who have permission to add or modify a repository... |
| CVE-2017-18095 | 2018-02-19 | The SnippetRPCServiceImpl class in Atlassian Crucible before version 4.5.1 (the fixed version 4.5.x) and before 4.6.0 allows remote attackers to comment on snippets they do not have authorization to access... |
| CVE-2018-1409 | 2018-02-19 | IBM Notes Diagnostics (IBM Client Application Access and IBM Notes) could allow a local user to execute commands on the system. By crafting a command line sent via the shared... |
| CVE-2018-1410 | 2018-02-19 | IBM Notes Diagnostics (IBM Client Application Access and IBM Notes) could allow a local user to execute commands on the system. By crafting a command line sent via the shared... |
| CVE-2018-1411 | 2018-02-19 | IBM Notes Diagnostics (IBM Client Application Access and IBM Notes) could allow a local user to execute commands on the system. By crafting a command line sent via the shared... |
| CVE-2018-7225 | 2018-02-19 | An issue was discovered in LibVNCServer through 0.9.11. rfbProcessClientNormalMessage() in rfbserver.c does not sanitize msg.cct.length, leading to access to uninitialized and potentially sensitive data or possibly unspecified other impact (e.g.,... |
| CVE-2016-8750 | 2018-02-19 | Apache Karaf prior to 4.0.8 used the LDAPLoginModule to authenticate users to a directory via LDAP. However, it did not encoding usernames properly and hence was vulnerable to LDAP injection... |
| CVE-2009-4267 | 2018-02-19 | The console in Apache jUDDI 3.0.0 does not properly escape line feeds, which allows remote authenticated users to spoof log entries via the numRows parameter. |
| CVE-2017-18191 | 2018-02-19 | An issue was discovered in OpenStack Nova 15.x through 15.1.0 and 16.x through 16.1.1. By detaching and reattaching an encrypted volume, an attacker may access the underlying raw volume and... |
| CVE-2018-7226 | 2018-02-19 | An issue was discovered in vcSetXCutTextProc() in VNConsole.c in LinuxVNC and VNCommand from the LibVNC/vncterm distribution through 0.9.10. Missing sanitization of the client-specified message length may cause integer overflow or... |
| CVE-2018-5439 | 2018-02-19 | A Command Injection issue was discovered in Nortek Linear eMerge E3 series Versions V0.32-07e and prior. A remote attacker may be able to execute arbitrary code on a target machine... |
| CVE-2018-5473 | 2018-02-19 | An Improper Restriction of Operations within the Bounds of a Memory Buffer issue was discovered in GE D60 Line Distance Relay devices running firmware Version 7.11 and prior. The SSH... |
| CVE-2018-5475 | 2018-02-19 | A Stack-based Buffer Overflow issue was discovered in GE D60 Line Distance Relay devices running firmware Version 7.11 and prior. Multiple stack-based buffer overflow vulnerabilities have been identified, which may... |
| CVE-2018-7247 | 2018-02-19 | An issue was discovered in pixHtmlViewer in prog/htmlviewer.c in Leptonica before 1.75.3. Unsanitized input (rootname) can overflow a buffer, leading potentially to arbitrary code execution or possibly unspecified other impact. |
| CVE-2010-0109 | 2018-02-19 | DBManager in Symantec Altiris Deployment Solution 6.9.x before DS 6.9 SP4 allows remote attackers to cause a denial of service via a crafted request. |
| CVE-2011-3477 | 2018-02-19 | GEAR Software CD DVD Filter driver (aka GEARAspiWDM.sys), as used in Symantec Backup Exec System Recovery 8.5 and BESR 2010, Symantec System Recovery 2011, Norton 360, and Norton Ghost, allows... |
| CVE-2012-0771 | 2018-02-19 | Adobe Shockwave Player before 11.6.4.634 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2012-0759. |
| CVE-2014-3972 | 2018-02-19 | Directory traversal vulnerability in Apexis APM-J601-WS cameras with firmware before 17.35.2.49 allows remote attackers to read arbitrary files via unspecified vectors. |
| CVE-2015-2324 | 2018-02-19 | Cross-site scripting (XSS) vulnerability in the filemanager in the Photo Gallery plugin before 1.2.13 for WordPress allows remote authenticated users with edit permission to inject arbitrary web script or HTML... |
| CVE-2015-9253 | 2018-02-19 | An issue was discovered in PHP 7.3.x before 7.3.0alpha3, 7.2.x before 7.2.8, and before 7.1.20. The php-fpm master process restarts a child process in an endless loop when using program... |
| CVE-2016-9568 | 2018-02-19 | A security design issue can allow an unprivileged user to interact with the Carbon Black Sensor and perform unauthorized actions. |
| CVE-2017-16670 | 2018-02-19 | The project import functionality in SoapUI 5.3.0 allows remote attackers to execute arbitrary Java code via a crafted request parameter in a WSDL project file. |
| CVE-2017-17101 | 2018-02-19 | An issue was discovered in Apexis APM-H803-MPC software, as used with many different models of IP Camera. An unprotected CGI method inside the web application permits an unauthenticated user to... |
| CVE-2017-7375 | 2018-02-19 | A flaw in libxml2 allows remote XML entity inclusion with default parser flags (i.e., when the caller did not request entity substitution, DTD validation, external DTD subset loading, or default... |
| CVE-2017-7376 | 2018-02-19 | Buffer overflow in libxml2 allows remote attackers to execute arbitrary code by leveraging an incorrect limit for port values when handling redirects. |
| CVE-2018-6592 | 2018-02-19 | Unisys Stealth 3.3 Windows endpoints before 3.3.016.1 allow local users to gain access to Stealth-enabled devices by leveraging improper cleanup of memory used for negotiation key storage. |
| CVE-2016-10007 | 2018-02-19 | SQL injection vulnerability in the "Marketing > Forms" screen in dotCMS before 3.7.2 and 4.x before 4.1.1 allows remote authenticated administrators to execute arbitrary SQL commands via the _EXT_FORM_HANDLER_orderBy parameter. |
| CVE-2016-10008 | 2018-02-19 | SQL injection vulnerability in the "Content Types > Content Types" screen in dotCMS before 3.7.2 and 4.x before 4.1.1 allows remote authenticated administrators to execute arbitrary SQL commands via the... |
| CVE-2018-5763 | 2018-02-19 | An issue was discovered in OXID eShop Enterprise Edition before 5.3.7 and 6.x before 6.0.1. By entering specially crafted URLs, an attacker is able to bring the shop server to... |
| CVE-2018-7251 | 2018-02-19 | An issue was discovered in config/error.php in Anchor 0.12.3. The error log is exposed at an errors.log URI, and contains MySQL credentials if a MySQL error (such as "Too many... |
| CVE-2018-7253 | 2018-02-19 | The ParseDsdiffHeaderConfig function of the cli/dsdiff.c file of WavPack 5.1.0 allows a remote attacker to cause a denial-of-service (heap-based buffer over-read) or possibly overwrite the heap via a maliciously crafted... |
| CVE-2018-7254 | 2018-02-19 | The ParseCaffHeaderConfig function of the cli/caff.c file of WavPack 5.1.0 allows a remote attacker to cause a denial-of-service (global buffer over-read), or possibly trigger a buffer overflow or incorrect memory... |
| CVE-2018-7259 | 2018-02-20 | The FSX / P3Dv4 installer 2.0.1.231 for Flight Sim Labs A320-X sends a user's Google account credentials to http://installLog.flightsimlabs.com/LogHandler3.ashx if a pirated serial number has been entered, which allows remote... |
| CVE-2015-2081 | 2018-02-20 | Datto ALTO and SIRIS devices allow Remote Code Execution via unauthenticated requests to PHP scripts. |
| CVE-2017-16835 | 2018-02-20 | The "Photo,Video Locker-Calculator" application 12.0 for Android has android:allowBackup="true" in AndroidManifest.xml, which allows attackers to obtain sensitive cleartext information via an "adb backup '-f smart.calculator.gallerylock'" command. |
| CVE-2015-9254 | 2018-02-20 | Datto ALTO and SIRIS devices have a default VNC password. |
| CVE-2015-9255 | 2018-02-20 | Datto ALTO and SIRIS devices allow remote attackers to obtain sensitive information about data, software versions, configuration, and virtual machines via a request to a Web Virtual Directory. |
| CVE-2015-9256 | 2018-02-20 | Datto ALTO and SIRIS devices allow remote attackers to obtain sensitive information via access to device/VM restore mount points, because they do not have ACLs by default. |
| CVE-2017-18192 | 2018-02-20 | smart/calculator/gallerylock/CalculatorActivity.java in the "Photo,Video Locker-Calculator" application through 18 for Android allows attackers to access files via the backdoor 17621762 PIN. |