CVE List - 2018 / April
Showing 1301 - 1400 of 1667 CVEs for April 2018 (Page 14 of 17)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2018-3843 | 2018-04-19 | An exploitable type confusion vulnerability exists in the way Foxit... |
| CVE-2018-0112 | 2018-04-19 | A vulnerability in Cisco WebEx Business Suite clients, Cisco WebEx... |
| CVE-2018-0227 | 2018-04-19 | A vulnerability in the Secure Sockets Layer (SSL) Virtual Private... |
| CVE-2018-0228 | 2018-04-19 | A vulnerability in the ingress flow creation functionality of Cisco... |
| CVE-2018-0229 | 2018-04-19 | A vulnerability in the implementation of Security Assertion Markup Language... |
| CVE-2018-0230 | 2018-04-19 | A vulnerability in the internal packet-processing functionality of Cisco Firepower... |
| CVE-2018-0231 | 2018-04-19 | A vulnerability in the Transport Layer Security (TLS) library of... |
| CVE-2018-0233 | 2018-04-19 | A vulnerability in the Secure Sockets Layer (SSL) packet reassembly... |
| CVE-2018-0237 | 2018-04-19 | A vulnerability in the file type detection mechanism of the... |
| CVE-2018-0238 | 2018-04-19 | A vulnerability in the role-based resource checking functionality of the... |
| CVE-2018-0239 | 2018-04-19 | A vulnerability in the egress packet processing functionality of the... |
| CVE-2018-0240 | 2018-04-19 | Multiple vulnerabilities in the Application Layer Protocol Inspection feature of... |
| CVE-2018-0241 | 2018-04-19 | A vulnerability in the UDP broadcast forwarding function of Cisco... |
| CVE-2018-0242 | 2018-04-19 | A vulnerability in the WebVPN web-based management interface of Cisco... |
| CVE-2018-0243 | 2018-04-19 | A vulnerability in the detection engine of Cisco Firepower System... |
| CVE-2018-0244 | 2018-04-19 | A vulnerability in the detection engine of Cisco Firepower System... |
| CVE-2018-0251 | 2018-04-19 | A vulnerability in the Web Server Authentication Required screen of... |
| CVE-2018-0254 | 2018-04-19 | A vulnerability in the detection engine of Cisco Firepower System... |
| CVE-2018-0255 | 2018-04-19 | A vulnerability in the device manager web interface of Cisco... |
| CVE-2018-0256 | 2018-04-19 | A vulnerability in the peer-to-peer message processing functionality of Cisco... |
| CVE-2018-0257 | 2018-04-19 | A vulnerability in Cisco IOS XE Software running on Cisco... |
| CVE-2018-0259 | 2018-04-19 | A vulnerability in the web-based management interface of Cisco MATE... |
| CVE-2018-0260 | 2018-04-19 | A vulnerability in the web interface of Cisco MATE Live... |
| CVE-2018-0266 | 2018-04-19 | A vulnerability in the web framework of Cisco Unified Communications... |
| CVE-2018-0267 | 2018-04-19 | A vulnerability in the web framework of Cisco Unified Communications... |
| CVE-2018-0269 | 2018-04-19 | A vulnerability in the web framework of the Cisco Digital... |
| CVE-2018-0272 | 2018-04-19 | A vulnerability in the Secure Sockets Layer (SSL) Engine of... |
| CVE-2018-0273 | 2018-04-19 | A vulnerability in the IPsec Manager of Cisco StarOS for... |
| CVE-2018-0275 | 2018-04-19 | A vulnerability in the support tunnel feature of Cisco Identity... |
| CVE-2018-0276 | 2018-04-19 | A vulnerability in Cisco WebEx Connect IM could allow an... |
| CVE-2018-10238 | 2018-04-20 | bvlc.c in skarg BACnet Protocol Stack bacserv 0.9.1 and 0.8.5... |
| CVE-2018-10201 | 2018-04-20 | An issue was discovered in NcMonitorServer.exe in NC Monitor Server... |
| CVE-2018-0564 | 2018-04-20 | Session fixation vulnerability in EC-CUBE (EC-CUBE 3.0.0, EC-CUBE 3.0.1, EC-CUBE... |
| CVE-2018-6960 | 2018-04-20 | VMware Horizon DaaS (7.x before 8.0.0) contains a broken authentication... |
| CVE-2018-10245 | 2018-04-20 | A Full Path Disclosure vulnerability in AWStats through 7.6 allows... |
| CVE-2018-10248 | 2018-04-20 | An issue was discovered in WUZHI CMS 4.1.0. There is... |
| CVE-2018-10250 | 2018-04-20 | iCMS V7.0.8 has XSS via the admincp.php keywords parameter in... |
| CVE-2018-1289 | 2018-04-20 | In Apache Fineract versions 1.0.0, 0.6.0-incubating, 0.5.0-incubating, 0.4.0-incubating, the system... |
| CVE-2018-1290 | 2018-04-20 | In Apache Fineract versions 1.0.0, 0.6.0-incubating, 0.5.0-incubating, 0.4.0-incubating, Using a... |
| CVE-2018-1291 | 2018-04-20 | Apache Fineract 1.0.0, 0.6.0-incubating, 0.5.0-incubating, 0.4.0-incubating exposes different REST end... |
| CVE-2018-1292 | 2018-04-20 | Within the 'getReportType' method in Apache Fineract 1.0.0, 0.6.0-incubating, 0.5.0-incubating,... |
| CVE-2018-10249 | 2018-04-20 | baijiacms V3 has CSRF via index.php?mod=site&op=edituser&name=manager&do=user to add an administrator... |
| CVE-2017-8315 | 2018-04-20 | Eclipse XML parser for the Eclipse IDE versions 2017.2.5 and... |
| CVE-2014-10073 | 2018-04-20 | The create_response function in server/server.c in Psensor before 1.1.4 allows... |
| CVE-2014-4782 | 2018-04-20 | IBM InfoSphere BigInsights 2.1.2 allows remote authenticated users to discover... |
| CVE-2014-6108 | 2018-04-20 | IBM Tivoli Identity Manager 5.1.x before 5.1.0.15-ISS-TIM-IF0057 and Security Identity... |
| CVE-2014-6109 | 2018-04-20 | IBM Tivoli Identity Manager 5.1.x before 5.1.0.15-ISS-TIM-IF0057 and Security Identity... |
| CVE-2014-6111 | 2018-04-20 | IBM Tivoli Identity Manager 5.1.x before 5.1.0.15-ISS-TIM-IF0057 and Security Identity... |
| CVE-2014-6112 | 2018-04-20 | IBM Tivoli Identity Manager 5.1.x before 5.1.0.15-ISS-TIM-IF0057 and Security Identity... |
| CVE-2018-8826 | 2018-04-20 | ASUS RT-AC51U, RT-AC58U, RT-AC66U, RT-AC1750, RT-ACRH13, and RT-N12 D1 routers... |
| CVE-2014-0883 | 2018-04-20 | IBM Power Hardware Management Console cross-site scripting |
| CVE-2014-0900 | 2018-04-20 | The Device Administrator code in Android before 4.4.1_r1 might allow... |
| CVE-2014-0912 | 2018-04-20 | IBM Sterling B2B Integrator 5.1 and 5.2 and Sterling File... |
| CVE-2014-0927 | 2018-04-20 | The ActiveMQ admin user interface in IBM Sterling B2B Integrator... |
| CVE-2014-0931 | 2018-04-20 | Multiple XML external entity (XXE) vulnerabilities in the (1) CCRC... |
| CVE-2014-0950 | 2018-04-20 | Multiple XML external entity (XXE) vulnerabilities in (1) CQWeb /... |
| CVE-2018-10077 | 2018-04-20 | XML external entity (XXE) vulnerability in Geist WatchDog Console 3.2.2... |
| CVE-2018-10078 | 2018-04-20 | Cross-site scripting (XSS) vulnerability in Geist WatchDog Console 3.2.2 allows... |
| CVE-2018-10079 | 2018-04-20 | Geist WatchDog Console 3.2.2 uses a weak ACL for the... |
| CVE-2018-10173 | 2018-04-20 | Digital Guardian Management Console 7.1.2.0015 allows authenticated remote code execution... |
| CVE-2018-10174 | 2018-04-20 | Digital Guardian Management Console 7.1.2.0015 has an SSRF issue that... |
| CVE-2018-10175 | 2018-04-20 | Digital Guardian Management Console 7.1.2.0015 has an XXE issue. |
| CVE-2018-10176 | 2018-04-20 | Digital Guardian Management Console 7.1.2.0015 has a Directory Traversal issue. |
| CVE-2018-7747 | 2018-04-20 | Multiple cross-site scripting (XSS) vulnerabilities in the Caldera Forms plugin... |
| CVE-2018-9059 | 2018-04-20 | Stack-based buffer overflow in Easy File Sharing (EFS) Web Server... |
| CVE-2017-2825 | 2018-04-20 | In the trapper functionality of Zabbix Server 2.4.x, specifically crafted... |
| CVE-2018-10253 | 2018-04-21 | Paessler PRTG Network Monitor before 18.1.39.1648 mishandles stack memory during... |
| CVE-2018-10254 | 2018-04-21 | Netwide Assembler (NASM) 2.13 has a stack-based buffer over-read in... |
| CVE-2018-10265 | 2018-04-21 | An issue was discovered in HongCMS v3.0.0. There is a... |
| CVE-2018-10266 | 2018-04-21 | BEESCMS 4.0 has a CSRF vulnerability to add an administrator... |
| CVE-2018-10267 | 2018-04-21 | WTCMS 1.0 has a CSRF vulnerability to add an administrator... |
| CVE-2018-10268 | 2018-04-21 | An issue was discovered in FastAdmin V1.0.0.20180417_beta. There is XSS... |
| CVE-2018-10283 | 2018-04-21 | CliqueMania loja virtual 14 has SQL Injection via the patch/remote.php... |
| CVE-2018-10284 | 2018-04-21 | Adaltech G-Ticket v70 EME104 has SQL Injection via the mobile-loja/mensagem.asp... |
| CVE-2017-15640 | 2018-04-21 | app/sections/user-menu.php in phpIPAM before 1.3.1 has XSS via the ip... |
| CVE-2018-10126 | 2018-04-21 | ijg-libjpeg before 9d, as used in tiff2pdf (from LibTIFF) and... |
| CVE-2018-10289 | 2018-04-22 | In MuPDF 1.13.0, there is an infinite loop in the... |
| CVE-2018-10285 | 2018-04-22 | The Ericsson-LG iPECS NMS A.1Ac web application uses incorrect access... |
| CVE-2018-10286 | 2018-04-22 | The Ericsson-LG iPECS NMS A.1Ac web application discloses sensitive information... |
| CVE-2018-9245 | 2018-04-22 | The Ericsson-LG iPECS NMS A.1Ac login portal has a SQL... |
| CVE-2018-10295 | 2018-04-22 | ChemCMS v1.0.6 has CSRF by using public/admin/user/addpost.html to add an... |
| CVE-2018-10296 | 2018-04-22 | MiniCMS V1.10 has XSS via the mc-admin/post-edit.php title parameter. |
| CVE-2017-17889 | 2018-04-22 | Kliqqi CMS 3.5.2 has XSS via a crafted group name... |
| CVE-2017-17902 | 2018-04-22 | SQL Injection exists in Kliqqi CMS 3.5.2 via the randkey... |
| CVE-2018-10297 | 2018-04-22 | Discuz! DiscuzX through X3.4 has stored XSS via the portal.php?mod=portalcp&ac=article... |
| CVE-2018-10298 | 2018-04-22 | Discuz! DiscuzX through X3.4 has reflected XSS via forum.php?mod=post&action=newthread because... |
| CVE-2018-10299 | 2018-04-23 | An integer overflow in the batchTransfer function of a smart... |
| CVE-2017-1473 | 2018-04-23 | IBM Security Access Manager Appliance 8.0.0 through 8.0.1.6 and 9.0.0... |
| CVE-2017-1486 | 2018-04-23 | IBM Cognos Business Intelligence 10.2, 10.2.1, 10.2.1.1, and 10.2.2 is... |
| CVE-2017-1701 | 2018-04-23 | IBM Team Concert (RTC) 5.0, 5.0.1, 5.0.2, 6.0, 6.0.1, 6.0.2,... |
| CVE-2017-1764 | 2018-04-23 | IBM Cognos Business Intelligence 10.2, 10.2.1, 10.2.1.1, and 10.2.2, under... |
| CVE-2017-1786 | 2018-04-23 | IBM WebSphere MQ 8.0 through 8.0.0.8 and 9.0 through 9.0.4... |
| CVE-2018-10233 | 2018-04-23 | The User Profile & Membership plugin before 2.0.7 for WordPress... |
| CVE-2018-10234 | 2018-04-23 | Authenticated Cross site Scripting exists in the User Profile &... |
| CVE-2017-13073 | 2018-04-23 | Cross-site scripting (XSS) vulnerability in QNAP NAS application Photo Station... |
| CVE-2017-14458 | 2018-04-23 | An exploitable use-after-free vulnerability exists in the JavaScript engine of... |
| CVE-2018-3850 | 2018-04-23 | An exploitable use-after-free vulnerability exists in the JavaScript engine Foxit... |
| CVE-2018-4847 | 2018-04-23 | A vulnerability has been identified in SIMATIC WinCC OA Operator... |
| CVE-2016-9586 | 2018-04-23 | curl before version 7.52.0 is vulnerable to a buffer overflow... |
| CVE-2017-17833 | 2018-04-23 | OpenSLP releases in the 1.0.2 and 1.1.0 code streams have... |