National Vulnerability Database

Subscribe to National Vulnerability Database feed
This feed contains the most recent CVE cyber vulnerabilities published within the National Vulnerability Database.
Updated: 13 hours 54 min ago

CVE-2018-19198

Mon, 11/12/2018 - 10:29
An issue was discovered in uriparser before 0.9.0. UriQuery.c allows an out-of-bounds write via a uriComposeQuery* or uriComposeQueryEx* function because the '&' character is mishandled in certain contexts.
Categories: Security News

CVE-2018-19199

Mon, 11/12/2018 - 10:29
An issue was discovered in uriparser before 0.9.0. UriQuery.c allows an integer overflow via a uriComposeQuery* or uriComposeQueryEx* function because of an unchecked multiplication.
Categories: Security News

CVE-2018-19200

Mon, 11/12/2018 - 10:29
An issue was discovered in uriparser before 0.9.0. UriCommon.c allows attempted operations on NULL input via a uriResetUri* function.
Categories: Security News

CVE-2018-19185

Mon, 11/12/2018 - 00:29
An issue has been found in libIEC61850 v1.3. It is a heap-based buffer overflow in BerEncoder_encodeOctetString in mms/asn1/ber_encoder.c. This is exploitable even after CVE-2018-18834 has been patched, with a different dataSetValue sequence than the CVE-2018-18834 attack vector.
Categories: Security News

CVE-2018-19192

Mon, 11/12/2018 - 00:29
An issue was discovered in XiaoCms 20141229. admin/index.php?c=content&a=add&catid=3 has CSRF, as demonstrated by entering news via the data[content] parameter.
Categories: Security News

CVE-2018-19193

Mon, 11/12/2018 - 00:29
An issue was discovered in XiaoCms 20141229. There is XSS via the largest input box on the "New news" screen.
Categories: Security News

CVE-2018-19194

Mon, 11/12/2018 - 00:29
An issue was discovered in XiaoCms 20141229. /admin/index.php?c=database allows full path disclosure in a "failed to open stream" error message.
Categories: Security News

CVE-2018-19195

Mon, 11/12/2018 - 00:29
An issue was discovered in XiaoCms 20141229. There is XSS related to the template\default\show_product.html file.
Categories: Security News

CVE-2018-19196

Mon, 11/12/2018 - 00:29
An issue was discovered in XiaoCms 20141229. It allows remote attackers to execute arbitrary code by using the type parameter to bypass the standard admin\controller\uploadfile.php restrictions on uploaded file types (jpg, jpeg, bmp, png, gif), as demonstrated by an admin/index.php?c=uploadfile&a=uploadify_upload&type=php URI.
Categories: Security News

CVE-2018-19197

Mon, 11/12/2018 - 00:29
An issue was discovered in XiaoCms 20141229. admin\controller\database.php allows arbitrary directory deletion via admin/index.php?c=database&a=import&paths[]=../ directory traversal.
Categories: Security News

CVE-2018-18920

Sun, 11/11/2018 - 21:29
Py-EVM v0.2.0-alpha.33 allows attackers to make a vm.execute_bytecode call that triggers computation._stack.values with '"stack": [100, 100, 0]' where b'\x' was expected, resulting in an execution failure because of an invalid opcode. This is reportedly related to "smart contracts can be executed indefinitely without gas being paid."
Categories: Security News

CVE-2018-19183

Sun, 11/11/2018 - 21:29
ethereumjs-vm 2.4.0 allows attackers to cause a denial of service (vm.runCode failure and REVERT) via a "code: Buffer.from(my_code, 'hex')" attribute.
Categories: Security News

CVE-2018-19184

Sun, 11/11/2018 - 21:29
cmd/evm/runner.go in Go Ethereum (aka geth) 1.8.17 allows attackers to cause a denial of service (SEGV) via crafted bytecode.
Categories: Security News

CVE-2018-19180

Sun, 11/11/2018 - 12:29
statics/app/index/controller/Install.php in YUNUCMS 1.1.5 (if install.lock is not present) allows remote attackers to execute arbitrary PHP code by placing this code in the index.php?s=index/install/setup2 DB_PREFIX field, which is written to database.php.
Categories: Security News

CVE-2018-19181

Sun, 11/11/2018 - 12:29
statics/ueditor/php/vendor/Local.class.php in YUNUCMS 1.1.5 allows arbitrary file deletion via the statics/ueditor/php/controller.php?action=remove key parameter, as demonstrated by using directory traversal to delete the install.lock file.
Categories: Security News

CVE-2018-19178

Sun, 11/11/2018 - 11:29
In JEESNS 1.3, com/lxinet/jeesns/core/utils/XssHttpServletRequestWrapper.java allows stored XSS via an HTML EMBED element, a different vulnerability than CVE-2018-17886.
Categories: Security News

CVE-2018-19141

Sun, 11/11/2018 - 00:29
Open Ticket Request System (OTRS) 4.0.x before 4.0.33 and 5.0.x before 5.0.31 allows an admin to conduct an XSS attack via a modified URL because user and customer preferences are mishandled.
Categories: Security News

CVE-2018-19142

Sun, 11/11/2018 - 00:29
Open Ticket Request System (OTRS) 6.0.x before 6.0.13 allows an admin to conduct an XSS attack via a modified URL.
Categories: Security News

CVE-2018-19143

Sun, 11/11/2018 - 00:29
Open Ticket Request System (OTRS) 4.0.x before 4.0.33, 5.0.x before 5.0.31, and 6.0.x before 6.0.13 allows an authenticated user to delete files via a modified submission form because upload caching is mishandled.
Categories: Security News

CVE-2018-19170

Sun, 11/11/2018 - 00:29
In JPress v1.0-rc.5, there is stored XSS via each of the first three input fields to the starter-tomcat-1.0/admin/setting URI, as demonstrated by the web_name parameter.
Categories: Security News

Pages