National Vulnerability Database

Subscribe to National Vulnerability Database feed
This feed contains the most recent CVE cyber vulnerabilities published within the National Vulnerability Database.
Updated: 2 hours 12 min ago

CVE-2018-16604

Thu, 09/06/2018 - 12:29
An issue was discovered in Nibbleblog v4.0.5. With an admin's username and password, an attacker can execute arbitrary PHP code by changing the username because the username is surrounded by double quotes (e.g., "${phpinfo()}").
Categories: Security News

CVE-2018-16606

Thu, 09/06/2018 - 12:29
In ProConf before 6.1, an Insecure Direct Object Reference (IDOR) allows any author to view and grab all submitted papers (Title and Abstract) and their authors' personal information (Name, Email, Organization, and Position) by changing the value of Paper ID (the pid parameter).
Categories: Security News

CVE-2018-11263

Thu, 09/06/2018 - 10:29
In all Android releases (Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the Linux kernel, radio_id is received from the FW and is used to access the buffer to copy the radio stats received for each radio from FW. If the radio_id received from the FW is greater than or equal to maximum, an OOB write will occur. On supported Google Pixel and Nexus devices, this has been addressed in security patch level 2018-08-05.
Categories: Security News

CVE-2018-14624

Thu, 09/06/2018 - 10:29
A vulnerability was discovered in 389-ds-base through versions 1.3.7.10, 1.3.8.8 and 1.4.0.16. The lock controlling the error log was not correctly used when re-opening the log file in log__error_emergency(). An attacker could send a flood of modifications to a very large DN, which would cause slapd to crash.
Categories: Security News

CVE-2018-14632

Thu, 09/06/2018 - 10:29
An out of bound write can occur when patching an Openshift object using the 'oc patch' functionality in OpenShift Container Platform before 3.7. An attacker can use this flaw to cause a denial of service attack on the Openshift master api service which provides cluster management.
Categories: Security News

CVE-2018-16585

Thu, 09/06/2018 - 10:29
An issue was discovered in Artifex Ghostscript before 9.24. The .setdistillerkeys PostScript command is accepted even though it is not intended for use during document processing (e.g., after the startup phase). This leads to memory corruption, allowing remote attackers able to supply crafted PostScript to crash the interpreter or possibly have unspecified other impact.
Categories: Security News

CVE-2018-1695

Thu, 09/06/2018 - 10:29
IBM WebSphere Application Server 7.0, 8.0, and 8.5.5 installations using Form Login could allow a remote attacker to conducts spoofing attacks. IBM X-Force ID: 145769.
Categories: Security News

CVE-2018-16459

Thu, 09/06/2018 - 09:29
An unescaped payload in exceljs <v1.6 allows a possible XSS via cell value when worksheet is displayed in browser.
Categories: Security News

CVE-2017-1000600

Thu, 09/06/2018 - 08:29
WordPress version <4.9 contains a CWE-20 Input Validation vulnerability in thumbnail processing that can result in remote code execution. This attack appears to be exploitable via thumbnail upload by an authenticated user and may require additional plugins in order to be exploited however this has not been confirmed at this time. This issue appears to have been partially, but not completely fixed in WordPress 4.9
Categories: Security News

CVE-2018-1000673

Thu, 09/06/2018 - 08:29
WordPress version 4.9.8 and earlier contains a CWE-20 Input Validation vulnerability in thumbnail processing that can result in remote code execution due to an incomplete fix for CVE-2017-1000600. This attack appears to be exploitable via thumbnail upload by an authenticated user and may require additional plugins in order to be exploited however this has not been confirmed at this time.
Categories: Security News

CVE-2018-16550

Wed, 09/05/2018 - 18:29
TeamViewer 10.x through 13.x allows remote attackers to bypass the brute-force authentication protection mechanism by skipping the "Cancel" step, which makes it easier to determine the correct value of the default 4-digit PIN.
Categories: Security News

CVE-2018-16551

Wed, 09/05/2018 - 18:29
LavaLite 5.5 has XSS via a /edit URI, as demonstrated by client/job/job/Zy8PWBekrJ/edit.
Categories: Security News

CVE-2018-16552

Wed, 09/05/2018 - 18:29
MicroPyramid Django-CRM 0.2 allows CSRF for /users/create/, /users/##/edit/, and /accounts/##/delete/ URIs.
Categories: Security News

CVE-2018-16148

Wed, 09/05/2018 - 17:29
The diagnosticsb2ksy parameter of the /rest endpoint in Opsview Monitor before 5.3.1 and 5.4.x before 5.4.2 is vulnerable to Cross-Site Scripting.
Categories: Security News

CVE-2018-16252

Wed, 09/05/2018 - 17:29
FsPro Labs Event Log Explorer 4.6.1.2115 has ".elx" FileType XML External Entity Injection.
Categories: Security News

CVE-2018-16307

Wed, 09/05/2018 - 17:29
An "Out-of-band resource load" issue was discovered on Xiaomi MIWiFi Xiaomi_55DD Version 2.8.50 devices. It is possible to induce the application to retrieve the contents of an arbitrary external URL and return those contents in its own response. If a domain name (containing a random string) is used in the HTTP Host header, the application performs an HTTP request to the specified domain. The response from that request is then included in the application's own response.
Categories: Security News

CVE-2018-16361

Wed, 09/05/2018 - 17:29
An issue was discovered in BTITeam XBTIT 2.5.4. news.php allows XSS via the id parameter.
Categories: Security News

CVE-2018-16381

Wed, 09/05/2018 - 17:29
e107 2.1.8 has XSS via the e107_admin/users.php?mode=main&action=list user_loginname parameter.
Categories: Security News

CVE-2018-16548

Wed, 09/05/2018 - 17:29
An issue was discovered in ZZIPlib through 0.13.69. There is a memory leak triggered in the function __zzip_parse_root_directory in zip.c, which will lead to a denial of service attack.
Categories: Security News

CVE-2018-16549

Wed, 09/05/2018 - 17:29
HScripts PHP File Browser Script v1.0 allows Directory Traversal via the index.php path parameter.
Categories: Security News

Pages