Security News

CVE-2018-10944

National Vulnerability Database - Sun, 05/13/2018 - 21:29
The request_dividend function of a smart contract implementation for ROC (aka Rasputin Online Coin), an Ethereum ERC20 token, allows attackers to steal all of the contract's Ether.
Categories: Security News

CVE-2018-11034

National Vulnerability Database - Sun, 05/13/2018 - 21:29
In 2345 Security Guard 3.7, the driver file (2345NsProtect.sys, X64 version) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of not validating input values from IOCTL 0x8000200D.
Categories: Security News

CVE-2018-11035

National Vulnerability Database - Sun, 05/13/2018 - 21:29
In 2345 Security Guard 3.7, the driver file (2345NsProtect.sys, X64 version) allows local users to cause a denial of service (BSOD) or possibly have unspecified other impact because of not validating input values from IOCTL 0x80002019.
Categories: Security News

CVE-2018-11031

National Vulnerability Database - Sun, 05/13/2018 - 20:29
application/home/controller/debug.php in PHPRAP 1.0.4 through 1.0.8 has SSRF via the /debug URI, as demonstrated by an api[url]=file:////etc/passwd&api[method]=get POST request.
Categories: Security News

CVE-2018-11032

National Vulnerability Database - Sun, 05/13/2018 - 20:29
PHPRAP 1.0.4 through 1.0.8 has SQL Injection via the application/home/controller/project.php search() function.
Categories: Security News

CVE-2018-11033

National Vulnerability Database - Sun, 05/13/2018 - 20:29
The DCTStream::readHuffSym function in Stream.cc in the DCT decoder in xpdf before 4.00 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via crafted JPEG data.
Categories: Security News

CVE-2018-11018

National Vulnerability Database - Sun, 05/13/2018 - 18:29
An issue was discovered in PbootCMS v1.0.7. Cross-site request forgery (CSRF) vulnerability in apps/admin/controller/system/RoleController.php allows remote attackers to add administrator accounts via admin.php/role/add.html.
Categories: Security News

CVE-2018-11017

National Vulnerability Database - Sun, 05/13/2018 - 17:29
The newVar_N function in decompile.c in libming through 0.4.8 mishandles cases where the header indicates a file size greater than the actual size, which allows remote attackers to cause a denial of service (Segmentation fault and application crash) or possibly have unspecified other impact.
Categories: Security News

CVE-2018-10678

National Vulnerability Database - Sun, 05/13/2018 - 16:29
MyBB 1.8.15, when accessed with Microsoft Edge, mishandles 'target="_blank" rel="noopener"' in A elements, which makes it easier for remote attackers to conduct redirection attacks.
Categories: Security News

CVE-2018-11013

National Vulnerability Database - Sun, 05/13/2018 - 11:29
Stack-based buffer overflow in the websRedirect function in GoAhead on D-Link DIR-816 A2 (CN) routers with firmware version 1.10B05 allows unauthenticated remote attackers to execute arbitrary code via a request with a long HTTP Host header.
Categories: Security News

CVE-2018-10996

National Vulnerability Database - Sat, 05/12/2018 - 00:29
The weblogin_log function in /htdocs/cgibin on D-Link DIR-629-B1 devices allows attackers to execute arbitrary code or cause a denial of service (buffer overflow) via a session.cgi?ACTION=logout request involving a long REMOTE_ADDR environment variable.
Categories: Security News

CVE-2018-10998

National Vulnerability Database - Sat, 05/12/2018 - 00:29
An issue was discovered in Exiv2 0.26. readMetadata in jp2image.cpp allows remote attackers to cause a denial of service (SIGABRT) by triggering an incorrect Safe::add call.
Categories: Security News

CVE-2018-10999

National Vulnerability Database - Sat, 05/12/2018 - 00:29
An issue was discovered in Exiv2 0.26. The Exiv2::Internal::PngChunk::parseTXTChunk function has a heap-based buffer over-read.
Categories: Security News

CVE-2018-11003

National Vulnerability Database - Sat, 05/12/2018 - 00:29
An issue was discovered in YXcms 1.4.7. Cross-site request forgery (CSRF) vulnerability in protected/apps/admin/controller/adminController.php allows remote attackers to delete administrator accounts via index.php?r=admin/admin/admindel.
Categories: Security News

CVE-2018-11004

National Vulnerability Database - Sat, 05/12/2018 - 00:29
An issue was discovered in SDcms v1.5. Cross-site request forgery (CSRF) vulnerability in /WWW//app/admin/controller/admincontroller.php allows remote attackers to add administrator accounts via m=admin&c=admin&a=add.
Categories: Security News

CVE-2018-11011

National Vulnerability Database - Sat, 05/12/2018 - 00:29
ruibaby Halo 0.0.2 has stored XSS via the commentAuthor field to FrontCommentController.java.
Categories: Security News

CVE-2018-11012

National Vulnerability Database - Sat, 05/12/2018 - 00:29
ruibaby Halo 0.0.2 has stored XSS via the loginName and loginPwd parameters in a failed login attempt to AdminController.java.
Categories: Security News

CVE-2018-10992

National Vulnerability Database - Fri, 05/11/2018 - 18:29
lilypond-invoke-editor in LilyPond 2.19.80 does not validate strings before launching the program specified by the BROWSER environment variable, which allows remote attackers to conduct argument-injection attacks via a crafted URL, as demonstrated by a --proxy-pac-file argument, because the GNU Guile code uses the system Scheme procedure instead of the system* Scheme procedure. NOTE: this vulnerability exists because of an incomplete fix for CVE-2017-17523.
Categories: Security News

CVE-2018-10832

National Vulnerability Database - Fri, 05/11/2018 - 17:29
ModbusPal 1.6b is vulnerable to an XML External Entity (XXE) attack. Projects are saved as .xmpp files and automations can be exported as .xmpa files, both XML-based, which are vulnerable to XXE injection. Sending a crafted .xmpp or .xmpa file to a user, when opened/imported in ModbusPal, will return the contents of any local files to a remote attacker.
Categories: Security News

CVE-2018-5303

National Vulnerability Database - Fri, 05/11/2018 - 17:29
An issue was discovered on the Impinj Speedway Connect R420 RFID Reader before 2.2.2. The license key parameter of the web application is vulnerable to Cross Site Scripting; this vulnerability allows an attacker to send malicious code to another user.
Categories: Security News

Pages