News aggregator

CVE-2018-14929

National Vulnerability Database - Fri, 08/03/2018 - 17:29
Matera Banco 1.0.0 is vulnerable to multiple reflected XSS, as demonstrated by the /contingency/web/index.jsp (aka home page) url parameter.
Categories: Security News

CVE-2018-14923

National Vulnerability Database - Fri, 08/03/2018 - 16:29
A vulnerability in uniview EZPlayer 1.0.6 could allow an attacker to execute arbitrary code on a targeted system via video playback.
Categories: Security News

CVE-2018-3777

National Vulnerability Database - Fri, 08/03/2018 - 16:29
Insufficient URI encoding in restforce before 3.0.0 allows attacker to inject arbitrary parameters into Salesforce API requests.
Categories: Security News

CVE-2018-9866

National Vulnerability Database - Fri, 08/03/2018 - 16:29
A vulnerability in lack of validation of user-supplied parameters pass to XML-RPC calls on SonicWall Global Management System (GMS) virtual appliance's, allow remote user to execute arbitrary code. This vulnerability affected GMS version 8.1 and earlier.
Categories: Security News

CVE-2018-14910

National Vulnerability Database - Fri, 08/03/2018 - 15:29
SeaCMS v6.61 allows Remote Code execution by placing PHP code in an allowed IP address (aka ip) to /admin/admin_ip.php (aka /adm1n/admin_ip.php). The code is executed by visiting adm1n/admin_ip.php or data/admin/ip.php. This can also be exploited through CSRF.
Categories: Security News

CVE-2018-14911

National Vulnerability Database - Fri, 08/03/2018 - 15:29
A file upload vulnerability exists in ukcms v1.1.7 and earlier. The vulnerability is due to the system not strictly filtering the file upload type. An attacker can exploit the vulnerability to upload a script Trojan to admin.php/admin/configset/index/group/upload.html to gain server control by composing a request for a .txt upload and then changing it to a .php upload. The attacker must have admin access to change the upload_file_ext (aka "Allow upload file suffix") setting, and must use "php,php" in this setting to bypass the "php" restriction.
Categories: Security News

CVE-2018-14912

National Vulnerability Database - Fri, 08/03/2018 - 15:29
cgit_clone_objects in CGit before 1.2.1 has a directory traversal vulnerability when `enable-http-clone=1` is not turned off, as demonstrated by a cgit/cgit.cgi/git/objects/?path=../ request.
Categories: Security News

CVE-2018-5490

National Vulnerability Database - Fri, 08/03/2018 - 15:29
Read-Only export policy rules are not correctly enforced in Clustered Data ONTAP 8.3 Release Candidate versions and therefore may allow more than "read-only" access from authenticated SMBv2 and SMBv3 clients. This behavior has been resolved in the GA release. Customers running prior release candidates (RCs) are requested to update their systems to the NetApp Data ONTAP 8.3 GA release.
Categories: Security News

CVE-2017-15358

National Vulnerability Database - Fri, 08/03/2018 - 14:29
Race condition in the Charles Proxy Settings suid binary in Charles Proxy before 4.2.1 allows local users to gain privileges via vectors involving the --self-repair option.
Categories: Security News

CVE-2018-12605

National Vulnerability Database - Fri, 08/03/2018 - 14:29
An issue was discovered in GitLab Community Edition and Enterprise Edition 10.7.x before 10.7.6. The usage of 'url_for' contained a XSS issue due to it allowing arbitrary protocols as a parameter.
Categories: Security News

CVE-2018-12606

National Vulnerability Database - Fri, 08/03/2018 - 14:29
An issue was discovered in GitLab Community Edition and Enterprise Edition before 10.7.6, 10.8.x before 10.8.5, and 11.x before 11.0.1. The wiki contains a persistent XSS issue due to a lack of output encoding affecting a specific markdown feature.
Categories: Security News

CVE-2018-12607

National Vulnerability Database - Fri, 08/03/2018 - 14:29
An issue was discovered in GitLab Community Edition and Enterprise Edition before 10.7.6, 10.8.x before 10.8.5, and 11.x before 11.0.1. The charts feature contained a persistent XSS issue due to a lack of output encoding.
Categories: Security News

CVE-2018-12989

National Vulnerability Database - Fri, 08/03/2018 - 14:29
The report-viewing feature in Pearson VUE Certiport Console 8 and IQSystem 7 before 2018-06-26 mishandles child processes and consequently launches Internet Explorer or Microsoft Edge as Administrator, which allows local users to gain privileges.
Categories: Security News

CVE-2018-13055

National Vulnerability Database - Fri, 08/03/2018 - 14:29
A cross-site scripting (XSS) vulnerability in the View Filters page (view_filters_page.php) in MantisBT 2.1.0 through 2.15.0 allows remote attackers to inject arbitrary code (if CSP settings permit it) through a crafted PATH_INFO.
Categories: Security News

CVE-2018-14504

National Vulnerability Database - Fri, 08/03/2018 - 14:29
An issue was discovered in manage_filter_edit_page.php in MantisBT 2.x through 2.15.0. A cross-site scripting (XSS) vulnerability in the Edit Filter page allows execution of arbitrary code (if CSP settings permit it) when displaying a filter with a crafted name (e.g., 'foobar" onclick="alert(1)').
Categories: Security News

CVE-2018-14576

National Vulnerability Database - Fri, 08/03/2018 - 14:29
The mintToken function of a smart contract implementation for SunContract, an Ethereum token, has an integer overflow via the _amount variable.
Categories: Security News

CVE-2018-14715

National Vulnerability Database - Fri, 08/03/2018 - 14:29
The endCoinFlip function and throwSlammer function of the smart contract implementations for Cryptogs, an Ethereum game, generate random numbers with an old block's hash. Therefore, attackers can predict the random number and always win the game.
Categories: Security News

CVE-2018-14728

National Vulnerability Database - Fri, 08/03/2018 - 14:29
upload.php in Responsive FileManager 9.13.1 allows SSRF via the url parameter.
Categories: Security News

CVE-2018-14904

National Vulnerability Database - Fri, 08/03/2018 - 14:29
Samsung Syncthru Web Service V4.05.61 is vulnerable to Multiple unauthenticated XSS attacks on several parameters, as demonstrated by ruiFw_pid.
Categories: Security News

CVE-2018-14905

National Vulnerability Database - Fri, 08/03/2018 - 14:29
The Web server in 3CX version 15.5.8801.3 is vulnerable to Reflected XSS on the api/CallLog TimeZoneName parameter.
Categories: Security News

Pages