Security News

CVE-2018-19183

National Vulnerability Database - Sun, 11/11/2018 - 21:29
ethereumjs-vm 2.4.0 allows attackers to cause a denial of service (vm.runCode failure and REVERT) via a "code: Buffer.from(my_code, 'hex')" attribute.
Categories: Security News

CVE-2018-19184

National Vulnerability Database - Sun, 11/11/2018 - 21:29
cmd/evm/runner.go in Go Ethereum (aka geth) 1.8.17 allows attackers to cause a denial of service (SEGV) via crafted bytecode.
Categories: Security News

CVE-2018-19180

National Vulnerability Database - Sun, 11/11/2018 - 12:29
statics/app/index/controller/Install.php in YUNUCMS 1.1.5 (if install.lock is not present) allows remote attackers to execute arbitrary PHP code by placing this code in the index.php?s=index/install/setup2 DB_PREFIX field, which is written to database.php.
Categories: Security News

CVE-2018-19181

National Vulnerability Database - Sun, 11/11/2018 - 12:29
statics/ueditor/php/vendor/Local.class.php in YUNUCMS 1.1.5 allows arbitrary file deletion via the statics/ueditor/php/controller.php?action=remove key parameter, as demonstrated by using directory traversal to delete the install.lock file.
Categories: Security News

CVE-2018-19178

National Vulnerability Database - Sun, 11/11/2018 - 11:29
In JEESNS 1.3, com/lxinet/jeesns/core/utils/XssHttpServletRequestWrapper.java allows stored XSS via an HTML EMBED element, a different vulnerability than CVE-2018-17886.
Categories: Security News

CVE-2018-19141

National Vulnerability Database - Sun, 11/11/2018 - 00:29
Open Ticket Request System (OTRS) 4.0.x before 4.0.33 and 5.0.x before 5.0.31 allows an admin to conduct an XSS attack via a modified URL because user and customer preferences are mishandled.
Categories: Security News

CVE-2018-19142

National Vulnerability Database - Sun, 11/11/2018 - 00:29
Open Ticket Request System (OTRS) 6.0.x before 6.0.13 allows an admin to conduct an XSS attack via a modified URL.
Categories: Security News

CVE-2018-19143

National Vulnerability Database - Sun, 11/11/2018 - 00:29
Open Ticket Request System (OTRS) 4.0.x before 4.0.33, 5.0.x before 5.0.31, and 6.0.x before 6.0.13 allows an authenticated user to delete files via a modified submission form because upload caching is mishandled.
Categories: Security News

CVE-2018-19170

National Vulnerability Database - Sun, 11/11/2018 - 00:29
In JPress v1.0-rc.5, there is stored XSS via each of the first three input fields to the starter-tomcat-1.0/admin/setting URI, as demonstrated by the web_name parameter.
Categories: Security News

CVE-2018-19135

National Vulnerability Database - Sat, 11/10/2018 - 23:29
ClipperCMS 1.3.3 does not have CSRF protection on its kcfinder file upload (enabled by default). This can be used by an attacker to perform actions for an admin (or any user with the file upload capability). With this vulnerability, one can automatically upload files (by default, it allows html, pdf, xml, zip, and many other file types). A file can be accessed publicly under the "/assets/files" directory.
Categories: Security News

CVE-2018-19168

National Vulnerability Database - Sat, 11/10/2018 - 19:29
Shell Metacharacter Injection in www/modules/save.php in FruityWifi (aka PatatasFritas/PatataWifi) through 2.4 allows remote attackers to execute arbitrary code with root privileges via a crafted mod_name parameter in a POST request. NOTE: unlike in CVE-2018-17317, the attacker does not need a valid session.
Categories: Security News

CVE-2017-17550

National Vulnerability Database - Sat, 11/10/2018 - 17:29
ZyXEL ZyWALL USG 2.12 AQQ.2 and 3.30 AQQ.7 devices are affected by a CSRF vulnerability via a cgi-bin/zysh-cgi cmd action to add a user account. This account's access could, for example, subsequently be used for stored XSS.
Categories: Security News

CVE-2018-19148

National Vulnerability Database - Sat, 11/10/2018 - 14:29
Caddy through 0.11.0 sends incorrect certificates for certain invalid requests, making it easier for attackers to enumerate hostnames. Specifically, when unable to match a Host header with a vhost in its configuration, it serves the X.509 certificate for a randomly selected vhost in its configuration. Repeated requests (with a nonexistent hostname in the Host header) permit full enumeration of all certificates on the server. This generally permits an attacker to easily and accurately discover the existence of and relationships among hostnames that weren't meant to be public, though this information could likely have been discovered via other methods with additional effort.
Categories: Security News

CVE-2018-19149

National Vulnerability Database - Sat, 11/10/2018 - 14:29
Poppler before 0.70.0 has a NULL pointer dereference in _poppler_attachment_new when called from poppler_annot_file_attachment_get_attachment.
Categories: Security News

CVE-2018-19150

National Vulnerability Database - Sat, 11/10/2018 - 14:29
Memory corruption in PDMODELProvidePDModelHFT in pdmodel.dll in pdfforge PDF Architect 6 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact because of a "Data from Faulting Address controls Code Flow" issue.
Categories: Security News

CVE-2018-19084

National Vulnerability Database - Fri, 11/09/2018 - 22:29
RegFilter.sys in IOBit Malware Fighter 6.2 is susceptible to a stack-based buffer overflow when an attacker uses IOCTL 0x8006E05C with a size larger than 8 bytes. This can lead to denial of service or code execution with root privileges.
Categories: Security News

CVE-2018-19085

National Vulnerability Database - Fri, 11/09/2018 - 22:29
RegFilter.sys in IOBit Malware Fighter 6.2 is susceptible to a stack-based buffer overflow when an attacker uses IOCTL 0x8006E048 with a size larger than 8 bytes. This can lead to denial of service or code execution with root privileges.
Categories: Security News

CVE-2018-19086

National Vulnerability Database - Fri, 11/09/2018 - 22:29
RegFilter.sys in IOBit Malware Fighter 6.2 is susceptible to a stack-based buffer overflow when an attacker uses IOCTL 0x8006E040 with a size larger than 8 bytes. This can lead to denial of service or code execution with root privileges.
Categories: Security News

CVE-2018-19087

National Vulnerability Database - Fri, 11/09/2018 - 22:29
RegFilter.sys in IOBit Malware Fighter 6.2 is susceptible to a stack-based buffer overflow when an attacker uses IOCTL 0x8006E044 with a size larger than 8 bytes. This can lead to denial of service or code execution with root privileges.
Categories: Security News

CVE-2018-19145

National Vulnerability Database - Fri, 11/09/2018 - 18:29
An issue was discovered in S-CMS v1.5. There is an XSS vulnerability in search.php via the keyword parameter.
Categories: Security News

Pages