Security News

CVE-2018-19349

National Vulnerability Database - Sat, 11/17/2018 - 17:29
In SeaCMS v6.64, there is SQL injection via the admin_makehtml.php topic parameter because of mishandling in include/mkhtml.func.php.
Categories: Security News

CVE-2018-19350

National Vulnerability Database - Sat, 11/17/2018 - 17:29
In SeaCMS v6.6.4, there is stored XSS via the member.php?action=chgpwdsubmit email parameter during a password change, as demonstrated by a data: URL in an OBJECT element.
Categories: Security News

CVE-2018-19341

National Vulnerability Database - Sat, 11/17/2018 - 16:29
The u3d plugin 9.3.0.10809 (aka plugins\U3DBrowser.fpi) in FoxitReader.exe in Foxit Reader 9.3.0.10826 allows remote attackers to cause a denial of service (out-of-bounds read) or obtain sensitive information via a U3D sample because of a "Read Access Violation near NULL starting at FoxitReader!std::basic_ostream >::operator<<+0x0000000000087906" issue.
Categories: Security News

CVE-2018-19342

National Vulnerability Database - Sat, 11/17/2018 - 16:29
The u3d plugin 9.3.0.10809 (aka plugins\U3DBrowser.fpi) in FoxitReader.exe in Foxit Reader 9.3.0.10826 allows remote attackers to cause a denial of service (out-of-bounds read) or obtain sensitive information via a U3D sample because of a "Read Access Violation starting at U3DBrowser+0x000000000000347a" issue.
Categories: Security News

CVE-2018-19343

National Vulnerability Database - Sat, 11/17/2018 - 16:29
The u3d plugin 9.3.0.10809 (aka plugins\U3DBrowser.fpi) in FoxitReader.exe in Foxit Reader 9.3.0.10826 allows remote attackers to cause a denial of service (out-of-bounds read), obtain sensitive information, or possibly have unspecified other impact via a U3D sample because of a "Data from Faulting Address controls Code Flow starting at U3DBrowser!PlugInMain+0x00000000000f43ff" issue.
Categories: Security News

CVE-2018-19344

National Vulnerability Database - Sat, 11/17/2018 - 16:29
The u3d plugin 9.3.0.10809 (aka plugins\U3DBrowser.fpi) in FoxitReader.exe in Foxit Reader 9.3.0.10826 allows remote attackers to cause a denial of service (out-of-bounds read) or obtain sensitive information via a U3D sample because of a "Data from Faulting Address may be used as a return value starting at U3DBrowser!PlugInMain+0x0000000000031a75" issue.
Categories: Security News

CVE-2018-19345

National Vulnerability Database - Sat, 11/17/2018 - 16:29
The u3d plugin 9.3.0.10809 (aka plugins\U3DBrowser.fpi) in FoxitReader.exe in Foxit Reader 9.3.0.10826 allows remote attackers to cause a denial of service (out-of-bounds read) or obtain sensitive information via a U3D sample because of a "Read Access Violation near NULL starting at U3DBrowser!PlugInMain+0x0000000000053f8b" issue.
Categories: Security News

CVE-2018-19346

National Vulnerability Database - Sat, 11/17/2018 - 16:29
The u3d plugin 9.3.0.10809 (aka plugins\U3DBrowser.fpi) in FoxitReader.exe in Foxit Reader 9.3.0.10826 allows remote attackers to cause a denial of service (out-of-bounds read) or obtain sensitive information via a U3D sample because of a "Data from Faulting Address controls Branch Selection starting at U3DBrowser!PlugInMain+0x00000000000d11ea" issue.
Categories: Security News

CVE-2018-19347

National Vulnerability Database - Sat, 11/17/2018 - 16:29
The u3d plugin 9.3.0.10809 (aka plugins\U3DBrowser.fpi) in FoxitReader.exe in Foxit Reader 9.3.0.10826 allows remote attackers to cause a denial of service (out-of-bounds read) or obtain sensitive information via a U3D sample because of a "Data from Faulting Address controls Branch Selection starting at U3DBrowser!PlugInMain+0x00000000000d11bb" issue.
Categories: Security News

CVE-2018-19348

National Vulnerability Database - Sat, 11/17/2018 - 16:29
The u3d plugin 9.3.0.10809 (aka plugins\U3DBrowser.fpi) in FoxitReader.exe in Foxit Reader 9.3.0.10826 allows remote attackers to cause a denial of service (out-of-bounds read) or obtain sensitive information via a U3D sample because of a "Data from Faulting Address controls Branch Selection starting at U3DBrowser!PlugInMain+0x000000000012dff5" issue.
Categories: Security News

CVE-2018-19333

National Vulnerability Database - Sat, 11/17/2018 - 12:29
pkg/sentry/kernel/shm/shm.go in Google gVisor before 2018-11-01 allows attackers to overwrite memory locations in processes running as root (but not escape the sandbox) via vectors involving IPC_RMID shmctl calls, because reference counting is mishandled.
Categories: Security News

CVE-2018-19340

National Vulnerability Database - Sat, 11/17/2018 - 12:29
Guriddo Form PHP 5.3 has XSS via the demos/jqform/defaultnodb/default.php OrderID, ShipName, ShipAddress, ShipCity, ShipPostalCode, ShipCountry, Freight, or details parameter.
Categories: Security News

CVE-2018-19327

National Vulnerability Database - Sat, 11/17/2018 - 10:29
An issue was discovered in JTBC(PHP) 3.0.1.7. aboutus/manage.php?type=action&action=add allows CSRF.
Categories: Security News

CVE-2018-19328

National Vulnerability Database - Sat, 11/17/2018 - 10:29
LAOBANCMS 2.0 allows install/mysql_hy.php?riqi=../ Directory Traversal.
Categories: Security News

CVE-2018-19329

National Vulnerability Database - Sat, 11/17/2018 - 10:29
GreenCMS v2.3.0603 allows remote authenticated administrators to delete arbitrary files by modifying a base64-encoded pathname in an m=admin&c=media&a=delfilehandle&id= call, related to the m=admin&c=media&a=restorefile delete button.
Categories: Security News

CVE-2018-19331

National Vulnerability Database - Sat, 11/17/2018 - 10:29
An issue was discovered in S-CMS v1.5. There is a SQL injection vulnerability in search.php via the keyword parameter.
Categories: Security News

CVE-2018-19332

National Vulnerability Database - Sat, 11/17/2018 - 10:29
An issue was discovered in S-CMS v1.5. There is a CSRF vulnerability that can add a new user via the admin/ajax.php?type=member&action=add URI.
Categories: Security News

CVE-2018-19326

National Vulnerability Database - Sat, 11/17/2018 - 09:29
Zyxel VMG1312-B10D devices before 5.13(AAXA.8)C0 allow ../ Directory Traversal, as demonstrated by reading /etc/passwd.
Categories: Security News

CVE-2018-19274

National Vulnerability Database - Sat, 11/17/2018 - 08:29
Passing an absolute path to a file_exists check in phpBB before 3.2.4 allows Remote Code Execution through Object Injection by employing Phar deserialization when an attacker has access to the Admin Control Panel with founder permissions.
Categories: Security News

CVE-2018-19324

National Vulnerability Database - Sat, 11/17/2018 - 08:29
kimsQ Rb 2.3.0 allows XSS via the second input field to the /?r=home&mod=mypage&page=info URI.
Categories: Security News

Pages