CVE List - 2018 / May
Showing 301 - 400 of 1162 CVEs for May 2018 (Page 4 of 12)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2018-6021 | 2018-05-09 | Silex SD-320AN version 2.01 and prior and GE MobileLink(GEH-SD-320AN) version... |
| CVE-2018-8860 | 2018-05-09 | In Vecna VGo Robot versions prior to 3.0.3.52164, an attacker... |
| CVE-2017-2601 | 2018-05-10 | Jenkins before versions 2.44, 2.32.2 is vulnerable to a persisted... |
| CVE-2018-10949 | 2018-05-10 | mailboxd in Zimbra Collaboration Suite 8.8 before 8.8.8; 8.7 before... |
| CVE-2018-10950 | 2018-05-10 | mailboxd in Zimbra Collaboration Suite 8.8 before 8.8.8; 8.7 before... |
| CVE-2018-10951 | 2018-05-10 | mailboxd in Zimbra Collaboration Suite 8.8 before 8.8.8; 8.7 before... |
| CVE-2018-10952 | 2018-05-10 | In 2345 Security Guard 3.7, the driver file (2345BdPcSafe.sys, X64... |
| CVE-2018-10953 | 2018-05-10 | In 2345 Security Guard 3.7, the driver file (2345BdPcSafe.sys, X64... |
| CVE-2018-10954 | 2018-05-10 | In 2345 Security Guard 3.7, the driver file (2345BdPcSafe.sys, X64... |
| CVE-2018-10955 | 2018-05-10 | In 2345 Security Guard 3.7, the driver file (2345BdPcSafe.sys, X64... |
| CVE-2018-10957 | 2018-05-10 | CSRF exists on D-Link DIR-868L devices, leading to (for example)... |
| CVE-2018-10958 | 2018-05-10 | In types.cpp in Exiv2 0.26, a large size value may... |
| CVE-2018-10962 | 2018-05-10 | An issue was discovered in Shanghai 2345 Security Guard 3.7.0.... |
| CVE-2018-10963 | 2018-05-10 | The TIFFWriteDirectorySec() function in tif_dirwrite.c in LibTIFF through 4.0.9 allows... |
| CVE-2018-10314 | 2018-05-10 | Cross-site scripting (XSS) vulnerability in Open-AudIT Community 2.2.0 allows remote... |
| CVE-2018-10942 | 2018-05-10 | modules/attributewizardpro/file_upload.php in the Attribute Wizard addon 1.6.9 for PrestaShop 1.4.0.1... |
| CVE-2018-8060 | 2018-05-10 | HWiNFO AMD64 Kernel driver version 8.98 and lower allows an... |
| CVE-2018-8061 | 2018-05-10 | HWiNFO AMD64 Kernel driver version 8.98 and lower allows an... |
| CVE-2018-8824 | 2018-05-10 | modules/bamegamenu/ajax_phpcode.php in the Responsive Mega Menu (Horizontal+Vertical+Dropdown) Pro module 1.0.32... |
| CVE-2018-9111 | 2018-05-10 | Cross Site Scripting (XSS) exists on the Foxconn FEMTO AP-FC4064-T... |
| CVE-2018-9112 | 2018-05-10 | A low privileged admin account with a weak default password... |
| CVE-2018-1130 | 2018-05-10 | Linux kernel before version 4.16-rc7 is vulnerable to a null... |
| CVE-2018-8910 | 2018-05-10 | Cross-site scripting (XSS) vulnerability in Attachment Preview in Synology Drive... |
| CVE-2018-8914 | 2018-05-10 | SQL injection vulnerability in UPnP DMA in Synology Media Server... |
| CVE-2018-8915 | 2018-05-10 | Cross-site scripting (XSS) vulnerability in Notification Center in Synology Calendar... |
| CVE-2017-18266 | 2018-05-10 | The open_envvar function in xdg-open in xdg-utils before 1.1.3 does... |
| CVE-2018-10655 | 2018-05-10 | DLPnpAuditor.exe in DeviceLock Plug and Play Auditor (freeware) 5.72 has... |
| CVE-2018-10803 | 2018-05-10 | Cross-site scripting (XSS) vulnerability in the add credentials functionality in... |
| CVE-2018-7933 | 2018-05-10 | Huawei home gateway products HiRouter-CD20 and WS5200 with the versions... |
| CVE-2018-7940 | 2018-05-10 | Huawei smart phones Mate 10 and Mate 10 Pro with... |
| CVE-2018-7941 | 2018-05-10 | Huawei iBMC V200R002C60 have an authentication bypass vulnerability. A remote... |
| CVE-2018-9849 | 2018-05-10 | Pulse Secure Pulse Connect Secure 8.1.x before 8.1R14, 8.2.x before... |
| CVE-2017-6289 | 2018-05-10 | In Android before the 2018-05-05 security patch level, NVIDIA Trusted... |
| CVE-2017-6293 | 2018-05-10 | In Android before the 2018-05-05 security patch level, NVIDIA Tegra... |
| CVE-2018-6246 | 2018-05-10 | In Android before the 2018-05-05 security patch level, NVIDIA Widevine... |
| CVE-2018-6254 | 2018-05-10 | In Android before the 2018-05-05 security patch level, NVIDIA Media... |
| CVE-2017-18267 | 2018-05-10 | The FoFiType1C::cvtGlyph function in fofi/FoFiType1C.cc in Poppler through 0.64.0 allows... |
| CVE-2018-10971 | 2018-05-10 | An issue was discovered in Free Lossless Image Format (FLIF)... |
| CVE-2018-10972 | 2018-05-10 | An issue was discovered in Free Lossless Image Format (FLIF)... |
| CVE-2018-10974 | 2018-05-10 | In 2345 Security Guard 3.7, the driver file (2345BdPcSafe.sys, X64... |
| CVE-2018-10975 | 2018-05-10 | In 2345 Security Guard 3.7, the driver file (2345BdPcSafe.sys, X64... |
| CVE-2018-10976 | 2018-05-10 | In 2345 Security Guard 3.7, the driver file (2345BdPcSafe.sys, X64... |
| CVE-2018-10977 | 2018-05-10 | In 2345 Security Guard 3.7, the driver file (2345BdPcSafe.sys, X64... |
| CVE-2018-10706 | 2018-05-10 | An integer overflow in the transferMulti function of a smart... |
| CVE-2018-10973 | 2018-05-10 | An integer overflow in the transferMulti function of a smart... |
| CVE-2018-1115 | 2018-05-10 | postgresql before versions 10.4, 9.6.9 is vulnerable in the adminpack... |
| CVE-2018-10981 | 2018-05-10 | An issue was discovered in Xen through 4.10.x allowing x86... |
| CVE-2018-1118 | 2018-05-10 | Linux kernel vhost since version 4.8 does not properly initialize... |
| CVE-2018-3612 | 2018-05-10 | Intel NUC kits with insufficient input validation in system firmware,... |
| CVE-2018-3649 | 2018-05-10 | DLL injection vulnerability in the installation executables (Autorun.exe and Setup.exe)... |
| CVE-2018-10982 | 2018-05-10 | An issue was discovered in Xen through 4.10.x allowing x86... |
| CVE-2016-8627 | 2018-05-11 | admin-cli before versions 3.0.0.alpha25, 2.2.1.cr2 is vulnerable to an EAP... |
| CVE-2017-6015 | 2018-05-11 | Without quotation marks, any whitespace in the file path for... |
| CVE-2018-10580 | 2018-05-11 | The "Latest Posts on Profile" plugin 1.1 for MyBB has... |
| CVE-2018-7248 | 2018-05-11 | An issue was discovered in Zoho ManageEngine ServiceDesk Plus 9.3... |
| CVE-2009-5150 | 2018-05-11 | Absolute Computrace Agent V80.845 and V80.866 does not have a... |
| CVE-2009-5151 | 2018-05-11 | The stub component of Absolute Computrace Agent V70.785 executes code... |
| CVE-2009-5152 | 2018-05-11 | Absolute Computrace Agent, as distributed on certain Dell Inspiron systems... |
| CVE-2018-1257 | 2018-05-11 | Spring Framework, versions 5.0.x prior to 5.0.6, versions 4.3.x prior... |
| CVE-2018-1258 | 2018-05-11 | Spring Framework version 5.0.5 when used in combination with any... |
| CVE-2018-1259 | 2018-05-11 | Spring Data Commons, versions 1.13 prior to 1.13.12 and 2.0... |
| CVE-2018-1260 | 2018-05-11 | Spring Security OAuth, versions 2.3 prior to 2.3.3, 2.2 prior... |
| CVE-2018-1261 | 2018-05-11 | Spring-integration-zip versions prior to 1.0.1 exposes an arbitrary file write... |
| CVE-2018-1278 | 2018-05-11 | Apps Manager included in Pivotal Application Service, versions 1.12.x prior... |
| CVE-2018-1280 | 2018-05-11 | Pivotal Greenplum Command Center versions 2.x prior to 2.5.1 contains... |
| CVE-2018-10832 | 2018-05-11 | ModbusPal 1.6b is vulnerable to an XML External Entity (XXE)... |
| CVE-2018-5303 | 2018-05-11 | An issue was discovered on the Impinj Speedway Connect R420... |
| CVE-2018-5304 | 2018-05-11 | An issue was discovered on the Impinj Speedway Connect R420... |
| CVE-2018-6023 | 2018-05-11 | Fastweb FASTgate 0.00.47 devices are vulnerable to CSRF, with impacts... |
| CVE-2018-6361 | 2018-05-11 | Easy Hosting Control Panel (EHCP) v0.37.12.b has XSS via the... |
| CVE-2018-6362 | 2018-05-11 | Easy Hosting Control Panel (EHCP) v0.37.12.b has XSS via the... |
| CVE-2018-6458 | 2018-05-11 | Easy Hosting Control Panel (EHCP) v0.37.12.b allows remote attackers to... |
| CVE-2018-6617 | 2018-05-11 | Easy Hosting Control Panel (EHCP) v0.37.12.b, when using a local... |
| CVE-2018-6618 | 2018-05-11 | Easy Hosting Control Panel (EHCP) v0.37.12.b allows attackers to obtain... |
| CVE-2018-6619 | 2018-05-11 | Easy Hosting Control Panel (EHCP) v0.37.12.b makes it easier for... |
| CVE-2018-10992 | 2018-05-11 | lilypond-invoke-editor in LilyPond 2.19.80 does not validate strings before launching... |
| CVE-2018-10996 | 2018-05-12 | The weblogin_log function in /htdocs/cgibin on D-Link DIR-629-B1 devices allows... |
| CVE-2018-10998 | 2018-05-12 | An issue was discovered in Exiv2 0.26. readMetadata in jp2image.cpp... |
| CVE-2018-10999 | 2018-05-12 | An issue was discovered in Exiv2 0.26. The Exiv2::Internal::PngChunk::parseTXTChunk function... |
| CVE-2018-11003 | 2018-05-12 | An issue was discovered in YXcms 1.4.7. Cross-site request forgery... |
| CVE-2018-11004 | 2018-05-12 | An issue was discovered in SDcms v1.5. Cross-site request forgery... |
| CVE-2018-11011 | 2018-05-12 | ruibaby Halo 0.0.2 has stored XSS via the commentAuthor field... |
| CVE-2018-11012 | 2018-05-12 | ruibaby Halo 0.0.2 has stored XSS via the loginName and... |
| CVE-2018-11013 | 2018-05-13 | Stack-based buffer overflow in the websRedirect function in GoAhead on... |
| CVE-2018-10678 | 2018-05-13 | MyBB 1.8.15, when accessed with Microsoft Edge, mishandles 'target="_blank" rel="noopener"'... |
| CVE-2018-11017 | 2018-05-13 | The newVar_N function in decompile.c in libming through 0.4.8 mishandles... |
| CVE-2018-11018 | 2018-05-13 | An issue was discovered in PbootCMS v1.0.7. Cross-site request forgery... |
| CVE-2018-11031 | 2018-05-14 | application/home/controller/debug.php in PHPRAP 1.0.4 through 1.0.8 has SSRF via the... |
| CVE-2018-11032 | 2018-05-14 | PHPRAP 1.0.4 through 1.0.8 has SQL Injection via the application/home/controller/project.php... |
| CVE-2018-11033 | 2018-05-14 | The DCTStream::readHuffSym function in Stream.cc in the DCT decoder in... |
| CVE-2018-10944 | 2018-05-14 | The request_dividend function of a smart contract implementation for ROC... |
| CVE-2018-11034 | 2018-05-14 | In 2345 Security Guard 3.7, the driver file (2345NsProtect.sys, X64... |
| CVE-2018-11035 | 2018-05-14 | In 2345 Security Guard 3.7, the driver file (2345NsProtect.sys, X64... |
| CVE-2018-11037 | 2018-05-14 | In Exiv2 0.26, the Exiv2::PngImage::printStructure function in pngimage.cpp allows remote... |
| CVE-2018-0568 | 2018-05-14 | Unrestricted file upload vulnerability in SiteBridge Inc. Joruri Gw Ver... |
| CVE-2018-0576 | 2018-05-14 | Cross-site scripting vulnerability in Events Manager plugin prior to version... |
| CVE-2018-0577 | 2018-05-14 | Cross-site scripting vulnerability in WP Google Map Plugin prior to... |
| CVE-2018-0578 | 2018-05-14 | Cross-site scripting vulnerability in PixelYourSite plugin prior to version 5.3.0... |
| CVE-2018-0579 | 2018-05-14 | Cross-site scripting vulnerability in Open Graph for Facebook, Google+ and... |
| CVE-2018-0580 | 2018-05-14 | Untrusted search path vulnerability in CELSYS, Inc CLIP STUDIO series... |