National Vulnerability Database

Subscribe to National Vulnerability Database feed
This feed contains the most recent CVE cyber vulnerabilities published within the National Vulnerability Database.
Updated: 13 min 13 sec ago

CVE-2018-7204

Wed, 03/07/2018 - 15:29
inc/logger.php in the Giribaz File Manager plugin before 5.0.2 for WordPress logged activity related to the plugin in /wp-content/uploads/file-manager/log.txt. If a user edits the wp-config.php file using this plugin, the wp-config.php contents get added to log.txt, which is not protected and contains database credentials, salts, etc. These files have been indexed by Google and a simple dork will find affected sites.
Categories: Security News

CVE-2018-7564

Wed, 03/07/2018 - 15:29
Stored XSS exists on Polycom QDX 6000 devices.
Categories: Security News

CVE-2018-7565

Wed, 03/07/2018 - 15:29
CSRF exists on Polycom QDX 6000 devices.
Categories: Security News

CVE-2018-5452

Wed, 03/07/2018 - 13:29
A Stack-based Buffer Overflow issue was discovered in Emerson Process Management ControlWave Micro Process Automation Controller: ControlWave Micro [ProConOS v.4.01.280] firmware: CWM v.05.78.00 and prior. A stack-based buffer overflow vulnerability caused by sending crafted packets on Port 20547 could force the PLC to change its state into halt mode.
Categories: Security News

CVE-2018-7745

Wed, 03/07/2018 - 12:29
An issue was discovered in Western Bridge Cobub Razor 0.7.2. Authentication is not required for /index.php?/install/installation/createuserinfo requests, resulting in account creation.
Categories: Security News

CVE-2018-7746

Wed, 03/07/2018 - 12:29
An issue was discovered in Western Bridge Cobub Razor 0.7.2. Authentication is not required for /index.php?/manage/channel/modifychannel. For example, with a crafted channel name, stored XSS is triggered during a later /index.php?/manage/channel request by an admin.
Categories: Security News

CVE-2014-5044

Wed, 03/07/2018 - 10:29
Multiple integer overflows in libgfortran might allow remote attackers to execute arbitrary code or cause a denial of service (Fortran application crash) via vectors related to array allocation.
Categories: Security News

CVE-2014-8780

Wed, 03/07/2018 - 10:29
Cross-site scripting (XSS) vulnerability in Jease 2.11 allows remote authenticated users to inject arbitrary web script or HTML via a content section note.
Categories: Security News

CVE-2018-7473

Wed, 03/07/2018 - 10:29
Open redirect vulnerability in the SO Connect SO WIFI hotspot web interface, prior to version 140, allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL.
Categories: Security News

CVE-2018-1000116

Wed, 03/07/2018 - 09:29
NET-SNMP version 5.7.2 contains a heap corruption vulnerability in the UDP protocol handler that can result in command execution.
Categories: Security News

CVE-2018-1000117

Wed, 03/07/2018 - 09:29
Python Software Foundation CPython version From 3.2 until 3.6.4 on Windows contains a Buffer Overflow vulnerability in os.symlink() function on Windows that can result in Arbitrary code execution, likely escalation of privilege. This attack appears to be exploitable via a python script that creates a symlink with an attacker controlled name or location. This vulnerability appears to have been fixed in 3.7.0 and 3.6.5.
Categories: Security News

CVE-2018-1000118

Wed, 03/07/2018 - 09:29
Github Electron version Electron 1.8.2-beta.4 and earlier contains a Command Injection vulnerability in Protocol Handler that can result in command execute. This attack appear to be exploitable via the victim opening an electron protocol handler in their browser. This vulnerability appears to have been fixed in Electron 1.8.2-beta.5. This issue is due to an incomplete fix for CVE-2018-1000006, specifically the black list used was not case insensitive allowing an attacker to potentially bypass it.
Categories: Security News

CVE-2018-1000119

Wed, 03/07/2018 - 09:29
Sinatra rack-protection version 2.0.0.rc3 and earlier contains a timing attack vulnerability in the CSRF token checking that can result in signatures can be exposed. This attack appear to be exploitable via network connectivity to the ruby application. This vulnerability appears to have been fixed in 2.0.0.
Categories: Security News

CVE-2018-1054

Wed, 03/07/2018 - 08:29
An out-of-bounds memory read flaw was found in the way 389-ds-base handled certain LDAP search filters, affecting all versions including 1.4.x. A remote, unauthenticated attacker could potentially use this flaw to make ns-slapd crash via a specially crafted LDAP request, thus resulting in denial of service.
Categories: Security News

CVE-2018-7741

Wed, 03/07/2018 - 04:29
Eramba e1.0.6.033 has Reflected XSS in the Date Filter via the created parameter to the /crons URI.
Categories: Security News

CVE-2017-18221

Wed, 03/07/2018 - 03:29
The __munlock_pagevec function in mm/mlock.c in the Linux kernel before 4.11.4 allows local users to cause a denial of service (NR_MLOCK accounting corruption) via crafted use of mlockall and munlockall system calls.
Categories: Security News

CVE-2018-7720

Wed, 03/07/2018 - 03:29
A cross-site request forgery (CSRF) vulnerability exists in Western Bridge Cobub Razor 0.7.2 via /index.php?/user/createNewUser/, resulting in account creation.
Categories: Security News

CVE-2018-7721

Wed, 03/07/2018 - 03:29
Cross Site Scripting (XSS) exists in MetInfo 6.0.0 via /feedback/index.php because app/system/feedback/web/feedback.class.php mishandles input data.
Categories: Security News

CVE-2018-7740

Wed, 03/07/2018 - 03:29
The resv_map_release function in mm/hugetlb.c in the Linux kernel through 4.15.7 allows local users to cause a denial of service (BUG) via a crafted application that makes mmap system calls and has a large pgoff argument to the remap_file_pages system call.
Categories: Security News

CVE-2018-7738

Tue, 03/06/2018 - 21:29
In util-linux before 2.32-rc1, bash-completion/umount allows local users to gain privileges by embedding shell commands in a mountpoint name, which is mishandled during a umount command (within Bash) by a different user, as demonstrated by logging in as root and entering umount followed by a tab character for autocompletion.
Categories: Security News

Pages