National Vulnerability Database

Subscribe to National Vulnerability Database feed
This feed contains the most recent CVE cyber vulnerabilities published within the National Vulnerability Database.
Updated: 45 min 53 sec ago

CVE-2014-10077

Tue, 11/06/2018 - 10:29
Hash#slice in lib/i18n/core_ext/hash.rb in the i18n gem before 0.8.0 for Ruby allows remote attackers to cause a denial of service (application crash) via a call in a situation where :some_key is present in keep_keys but not present in the hash.
Categories: Security News

CVE-2018-16986

Tue, 11/06/2018 - 10:29
Texas Instruments BLE-STACK v2.2.1 for SimpleLink CC2640 and CC2650 devices allows remote attackers to execute arbitrary code via a malformed packet that triggers a buffer overflow.
Categories: Security News

CVE-2018-18963

Tue, 11/06/2018 - 00:29
Busca.aspx.cs in Degrau Publicidade e Internet Plataforma de E-commerce allows SQL Injection via the busca/ URI.
Categories: Security News

CVE-2018-18964

Mon, 11/05/2018 - 23:29
osCommerce 2.3.4.1 has an incomplete '.htaccess' for blacklist filtering in the "product" page. The .htaccess file in catalog/images/ bans the html extension, but there are several extensions in which contained HTML can be executed, such as the svg extension.
Categories: Security News

CVE-2018-18965

Mon, 11/05/2018 - 23:29
osCommerce 2.3.4.1 has an incomplete '.htaccess' for blacklist filtering in the "product" page. The .htaccess file in catalog/images/ bans the html extension, but there are several alternative cases in which HTML can be executed, such as a file with no extension or an unrecognized extension (e.g., the test or test.asdf filename).
Categories: Security News

CVE-2018-18966

Mon, 11/05/2018 - 23:29
osCommerce 2.3.4.1 has an incomplete '.htaccess' for blacklist filtering in the "product" page. The .htaccess file in catalog/images/ bans the html extension, but Internet Explorer render HTML elements in a .eml file.
Categories: Security News

CVE-2018-18980

Mon, 11/05/2018 - 23:29
An XML External Entity injection (XXE) vulnerability exists in Zoho ManageEngine Network Configuration Manager and OpManager before 12.3.214 via the RequestXML parameter in a /devices/ProcessRequest.do GET request. For example, the attacker can trigger the transmission of local files to an arbitrary remote FTP server.
Categories: Security News

CVE-2018-17905

Mon, 11/05/2018 - 18:29
When processing project files in Omron CX-Supervisor Versions 3.4.1.0 and prior and tampering with a specific byte, memory corruption may occur within a specific object.
Categories: Security News

CVE-2018-17907

Mon, 11/05/2018 - 18:29
When processing project files in Omron CX-Supervisor Versions 3.4.1.0 and prior and tampering with the value of an offset, an attacker can force the application to read a value outside of an array.
Categories: Security News

CVE-2018-17909

Mon, 11/05/2018 - 18:29
When processing project files in Omron CX-Supervisor Versions 3.4.1.0 and prior, the application fails to check if it is referencing freed memory, which may allow an attacker to execute code under the context of the application.
Categories: Security News

CVE-2018-17913

Mon, 11/05/2018 - 18:29
A type confusion vulnerability exists when processing project files in Omron CX-Supervisor Versions 3.4.1.0 and prior, which may allow an attacker to execute code in the context of the application.
Categories: Security News

CVE-2018-13396

Mon, 11/05/2018 - 17:29
There was an argument injection vulnerability in Sourcetree for macOS from version 1.0b2 before version 3.0.0 via Git subrepositories in Mercurial repositories. An attacker with permission to commit to a Mercurial repository linked in Sourcetree for macOS is able to exploit this issue to gain code execution on the system.
Categories: Security News

CVE-2018-13397

Mon, 11/05/2018 - 17:29
There was an argument injection vulnerability in Sourcetree for Windows from version 0.5.1.0 before version 3.0.0 via Git subrepositories in Mercurial repositories. An attacker with permission to commit to a Mercurial repository linked in Sourcetree for Windows is able to exploit this issue to gain code execution on the system.
Categories: Security News

CVE-2018-18957

Mon, 11/05/2018 - 17:29
An issue has been found in libIEC61850 v1.3. It is a stack-based buffer overflow in prepareGooseBuffer in goose/goose_publisher.c.
Categories: Security News

CVE-2018-18956

Mon, 11/05/2018 - 16:29
The ProcessMimeEntity function in util-decode-mime.c in Suricata 4.x through 4.0.5 allows remote attackers to cause a denial of service (segfault and daemon crash) via crafted input to the SMTP parser, as exploited in the wild in November 2018.
Categories: Security News

CVE-2018-18820

Mon, 11/05/2018 - 14:29
A buffer overflow was discovered in the URL-authentication backend of the Icecast before 2.4.4. If the backend is enabled, then any malicious HTTP client can send a request for that specific resource including a crafted header, leading to denial of service and potentially remote code execution.
Categories: Security News

CVE-2018-9208

Mon, 11/05/2018 - 08:29
Unauthenticated arbitrary file upload vulnerability in jQuery Picture Cut <= v1.1Beta
Categories: Security News

CVE-2018-18933

Mon, 11/05/2018 - 04:29
The u3d plugin 9.3.0.10809 (aka plugins\U3DBrowser.fpi) in FoxitReader.exe in Foxit Reader 9.3.0.10826 allows remote attackers to cause a denial of service (out-of-bounds read) or obtain sensitive information via a U3D sample.
Categories: Security News

CVE-2018-18934

Mon, 11/05/2018 - 04:29
An issue was discovered in PopojiCMS v2.0.1. admin_component.php is exploitable via the po-admin/route.php?mod=component&act=addnew URI by using the fupload parameter to upload a ZIP file containing arbitrary PHP code (that is extracted and can be executed). This can also be exploited via CSRF.
Categories: Security News

CVE-2018-18935

Mon, 11/05/2018 - 04:29
An issue was discovered in PopojiCMS v2.0.1. It has CSRF via the po-admin/route.php?mod=component&act=addnew URI, as demonstrated by adding a level=1 account.
Categories: Security News

Pages