News aggregator

Vuln: Linux Kernel CVE-2018-10879 Local Denial of Service Vulnerability

SecurityFocus Vulnerabilities - Thu, 07/26/2018 - 00:00
Linux Kernel CVE-2018-10879 Local Denial of Service Vulnerability
Categories: Security News

Vuln: Linux Kernel CVE-2018-10881 Local Denial of Service Vulnerability

SecurityFocus Vulnerabilities - Thu, 07/26/2018 - 00:00
Linux Kernel CVE-2018-10881 Local Denial of Service Vulnerability
Categories: Security News

CVE-2018-13988

National Vulnerability Database - Wed, 07/25/2018 - 19:29
Poppler through 0.62 contains a Buffer Overflow vulnerability due to an incorrect memory access that is not mapped in its memory space, as demonstrated by pdfunite. This can result in memory corruption and denial of service. This may be exploitable when a victim opens a specially crafted PDF file.
Categories: Security News

CVE-2018-14083

National Vulnerability Database - Wed, 07/25/2018 - 19:29
LICA miniCMTS E8K(u/i/...) devices allow remote attackers to obtain sensitive information via a direct POST request for the inc/user.ini file, leading to discovery of a password hash.
Categories: Security News

CVE-2018-14430

National Vulnerability Database - Wed, 07/25/2018 - 19:29
The Mondula Multi Step Form plugin through 1.2.5 for WordPress allows XSS via the fw_data [id][1], fw_data [id][2], fw_data [id][3], fw_data [id][4], or email field of the contact form, exploitable with an fw_send_email action to wp-admin/admin-ajax.php.
Categories: Security News

CVE-2018-14493

National Vulnerability Database - Wed, 07/25/2018 - 19:29
Cross-site scripting (XSS) vulnerability in the Groups Page in Open-Audit Community 2.2.6 allows remote attackers to inject arbitrary web script or HTML via the group name.
Categories: Security News

CVE-2018-8090

National Vulnerability Database - Wed, 07/25/2018 - 19:29
Quick Heal Total Security 64 bit 17.00 (QHTS64.exe), (QHTSFT64.exe) - Version 10.0.1.38; Quick Heal Total Security 32 bit 17.00 (QHTS32.exe), (QHTSFT32.exe) - Version 10.0.1.38; Quick Heal Internet Security 64 bit 17.00 (QHIS64.exe), (QHISFT64.exe) - Version 10.0.0.37; Quick Heal Internet Security 32 bit 17.00 (QHIS32.exe), (QHISFT32.exe) - Version 10.0.0.37; Quick Heal AntiVirus Pro 64 bit 17.00 (QHAV64.exe), (QHAVFT64.exe) - Version 10.0.0.37; and Quick Heal AntiVirus Pro 32 bit 17.00 (QHAV32.exe), (QHAVFT32.exe) - Version 10.0.0.37 allow DLL Hijacking because of Insecure Library Loading.
Categories: Security News

Pages