Security News

CVE-2018-16327

National Vulnerability Database - Sat, 09/01/2018 - 18:29
There is Stored XSS in Subrion 4.2.1 via the admin panel URL configuration.
Categories: Security News

CVE-2018-16328

National Vulnerability Database - Sat, 09/01/2018 - 18:29
In ImageMagick before 7.0.8-8, a NULL pointer dereference exists in the CheckEventLogging function in MagickCore/log.c.
Categories: Security News

CVE-2018-16329

National Vulnerability Database - Sat, 09/01/2018 - 18:29
In ImageMagick before 7.0.8-8, a NULL pointer dereference exists in the GetMagickProperty function in MagickCore/property.c.
Categories: Security News

CVE-2018-16323

National Vulnerability Database - Sat, 09/01/2018 - 14:29
ReadXBMImage in coders/xbm.c in ImageMagick before 7.0.8-9 leaves data uninitialized when processing an XBM file that has a negative pixel value. If the affected code is used as a library loaded into a process that includes sensitive information, that information sometimes can be leaked via the image data.
Categories: Security News

CVE-2018-16324

National Vulnerability Database - Sat, 09/01/2018 - 14:29
In IceWarp Server 12.0.3.1 and before, there is XSS in the /webmail/ username field.
Categories: Security News

CVE-2018-16308

National Vulnerability Database - Sat, 09/01/2018 - 14:29
The Ninja Forms plugin before 3.3.14.1 for WordPress allows CSV injection.
Categories: Security News

CVE-2018-16313

National Vulnerability Database - Sat, 09/01/2018 - 14:29
Bludit 2.3.4 allows XSS via a user name.
Categories: Security News

CVE-2018-16314

National Vulnerability Database - Sat, 09/01/2018 - 14:29
An issue was discovered in admincp.php in idreamsoft iCMS 7.0.11. When verifying CSRF_TOKEN, if CSRF_TOKEN does not exist, only the Referer header is validated, which can be bypassed via an admincp.php substring in this header.
Categories: Security News

CVE-2018-16315

National Vulnerability Database - Sat, 09/01/2018 - 14:29
In waimai Super Cms 20150505, there is a CSRF vulnerability that can change the configuration via admin.php?m=Config&a=add.
Categories: Security News

CVE-2018-16316

National Vulnerability Database - Sat, 09/01/2018 - 14:29
A stored Cross-site scripting (XSS) vulnerability in Portainer through 1.19.1 allows remote authenticated users to inject arbitrary JavaScript and/or HTML via the Team Name field.
Categories: Security News

CVE-2018-16320

National Vulnerability Database - Sat, 09/01/2018 - 14:29
idreamsoft iCMS 7.0.11 allows admincp.php?app=config Directory Traversal, resulting in execution of arbitrary PHP code from a ZIP file.
Categories: Security News

CVE-2018-16302

National Vulnerability Database - Sat, 09/01/2018 - 10:29
MediaComm Zip-n-Go before 4.95 has a Buffer Overflow via a crafted file.
Categories: Security News

CVE-2018-16303

National Vulnerability Database - Sat, 09/01/2018 - 10:29
PDF-XChange Editor through 7.0.326.1 allows remote attackers to cause a denial of service (resource consumption) via a crafted x:xmpmeta structure, a related issue to CVE-2003-1564.
Categories: Security News

CVE-2018-15157

National Vulnerability Database - Fri, 08/31/2018 - 23:29
** DISPUTED ** The libfsclfs_block_read function in libfsclfs_block.c in libfsclfs before 2018-07-25 allows remote attackers to cause a heap-based buffer over-read via a crafted clfs file. NOTE: the vendor has disputed this as described in the GitHub issue comments.
Categories: Security News

CVE-2018-15158

National Vulnerability Database - Fri, 08/31/2018 - 23:29
** DISPUTED ** The libesedb_page_read_values function in libesedb_page.c in libesedb through 2018-04-01 allows remote attackers to cause a heap-based buffer over-read via a crafted esedb file. NOTE: the vendor has disputed this as described in the GitHub issue comments.
Categories: Security News

CVE-2018-15159

National Vulnerability Database - Fri, 08/31/2018 - 23:29
** DISPUTED ** The libesedb_page_read_tags function in libesedb_page.c in libesedb through 2018-04-01 allows remote attackers to cause a heap-based buffer over-read via a crafted esedb file. NOTE: the vendor has disputed this as described in the GitHub issue comments.
Categories: Security News

CVE-2018-15160

National Vulnerability Database - Fri, 08/31/2018 - 23:29
** DISPUTED ** The libesedb_catalog_definition_read function in libesedb_catalog_definition.c in libesedb through 2018-04-01 allows remote attackers to cause a heap-based buffer over-read via a crafted esedb file. NOTE: the vendor has disputed this as described in the GitHub issue comments.
Categories: Security News

CVE-2018-15161

National Vulnerability Database - Fri, 08/31/2018 - 23:29
** DISPUTED ** The libesedb_key_append_data function in libesedb_key.c in libesedb through 2018-04-01 allows remote attackers to cause a heap-based buffer over-read via a crafted esedb file. NOTE: the vendor has disputed this as described in the GitHub issue comments.
Categories: Security News

CVE-2018-15514

National Vulnerability Database - Fri, 08/31/2018 - 21:29
HandleRequestAsync in Docker for Windows before 18.06.0-ce-rc3-win68 (edge) and before 18.06.0-ce-win72 (stable) deserialized requests over the \\.\pipe\dockerBackend named pipe without verifying the validity of the deserialized .NET objects. This would allow a malicious user in the "docker-users" group (who may not otherwise have administrator access) to escalate to administrator privileges.
Categories: Security News

CVE-2018-16298

National Vulnerability Database - Fri, 08/31/2018 - 19:29
An issue was discovered in MiniCMS 1.10. There is an mc-admin/post.php?tag= XSS vulnerability for a state=delete, state=draft, or state=publish request.
Categories: Security News

Pages