CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Security Vulnerabilities (CVSS score between 4 and 4.99)

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
1 CVE-2017-7224 787 2017-03-22 2017-03-24
4.3
None Remote Medium Not required None None Partial
The find_nearest_line function in objdump in GNU Binutils 2.28 is vulnerable to an invalid write (of size 1) while disassembling a corrupt binary that contains an empty function name, leading to a program crash.
2 CVE-2017-7222 79 XSS 2017-03-22 2017-03-23
4.3
None Remote Medium Not required None Partial None
A cross-site scripting (XSS) vulnerability in MantisBT before 2.1.1 allows remote attackers to inject arbitrary HTML or JavaScript (if MantisBT's CSP settings permit it) by modifying 'window_title' in the application configuration. This requires privileged access to MantisBT configuration management pages (i.e., administrator access rights) or altering the system configuration file (config_inc.php).
3 CVE-2017-7215 79 XSS 2017-03-21 2017-03-23
4.3
None Remote Medium Not required None Partial None
Cross site scripting in some view elements in the index filter tool in app/webroot/js/misp2.4.68.js and the organisation landing page in app/View/Organisations/ajax/landingpage.ctp of MISP before 2.4.69 allows remote attackers to inject arbitrary web script or HTML.
4 CVE-2017-7210 119 Overflow 2017-03-21 2017-03-22
4.3
None Remote Medium Not required None None Partial
objdump in GNU Binutils 2.28 is vulnerable to multiple heap-based buffer over-reads (of size 1 and size 8) while handling corrupt STABS enum type strings in a crafted object file, leading to program crash.
5 CVE-2017-7209 476 2017-03-21 2017-03-22
4.3
None Remote Medium Not required None None Partial
The dump_section_as_bytes function in readelf in GNU Binutils 2.28 accesses a NULL pointer while reading section contents in a corrupt binary, leading to a program crash.
6 CVE-2017-7207 476 DoS 2017-03-21 2017-03-23
4.3
None Remote Medium Not required None None Partial
The mem_get_bits_rectangle function in Artifex Software, Inc. Ghostscript 9.20 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted PostScript document.
7 CVE-2017-7205 79 Exec Code XSS 2017-03-21 2017-03-23
4.3
None Remote Medium Not required None Partial None
A Cross-Site Scripting (XSS) was discovered in GamePanelX-V3 3.0.12. The vulnerability exists due to insufficient filtration of user-supplied data (a) passed to the "GamePanelX-V3-master/ajax/ajax.php" URL. An attacker could execute arbitrary HTML and script code in a browser in the context of the vulnerable website.
8 CVE-2017-7204 79 Exec Code XSS 2017-03-21 2017-03-23
4.3
None Remote Medium Not required None Partial None
A Cross-Site Scripting (XSS) was discovered in imdbphp 5.1.1. The vulnerability exists due to insufficient filtration of user-supplied data (name) passed to the "imdbphp-master/demo/search.php" URL. An attacker could execute arbitrary HTML and script code in a browser in the context of the vulnerable website.
9 CVE-2017-7203 79 Exec Code XSS 2017-03-21 2017-03-23
4.3
None Remote Medium Not required None Partial None
A Cross-Site Scripting (XSS) was discovered in ZoneMinder 1.30.2. The vulnerability exists due to insufficient filtration of user-supplied data (postLoginQuery) passed to the "ZoneMinder-master/web/skins/classic/views/js/postlogin.js.php" URL. An attacker could execute arbitrary HTML and script code in a browser in the context of the vulnerable website.
10 CVE-2017-7202 79 Exec Code XSS 2017-03-21 2017-03-23
4.3
None Remote Medium Not required None Partial None
Multiple Cross-Site Scripting (XSS) were discovered in SLiMS 7 Cendana before 2017-03-16. The vulnerabilities exist due to insufficient filtration of user-supplied data (id) passed to the 'slims7_cendana-master/template/default/detail_template.php' and 'slims7_cendana-master/template/default-rtl/detail_template.php' URLs. An attacker could execute arbitrary HTML and script code in a browser in the context of the vulnerable website.
11 CVE-2017-6966 416 2017-03-17 2017-03-20
4.3
None Remote Medium Not required None None Partial
readelf in GNU Binutils 2.28 has a use-after-free (specifically read-after-free) error while processing multiple, relocated sections in an MSP430 binary. This is caused by mishandling of an invalid symbol index, and mishandling of state across invocations.
12 CVE-2017-6965 119 Overflow 2017-03-17 2017-03-20
4.3
None Remote Medium Not required None None Partial
readelf in GNU Binutils 2.28 writes to illegal addresses while processing corrupt input files containing symbol-difference relocations, leading to a heap-based buffer overflow.
13 CVE-2017-6961 20 2017-03-17 2017-03-20
4.3
None Remote Medium Not required None None Partial
An issue was discovered in apng2gif 1.7. There is improper sanitization of user input causing huge memory allocations, resulting in a crash. This is related to the read_chunk function using the pChunk->size value (within the PNG file) to determine the amount of memory to allocate.
14 CVE-2017-6958 79 XSS 2017-03-17 2017-03-20
4.3
None Remote Medium Not required None Partial None
An XSS vulnerability in the MantisBT Source Integration Plugin (before 2.0.2) search result page allows an attacker to inject arbitrary HTML or JavaScript (if MantisBT's CSP settings permit it) by crafting any valid parameter.
15 CVE-2017-6954 264 2017-03-17 2017-03-21
4.0
None Remote Low Single system None Partial None
An issue was discovered in includes/component.php in the BuddyPress Docs plugin before 1.9.3 for WordPress. It is possible for authenticated users to edit documents of other users without proper permissions.
16 CVE-2017-6951 476 DoS 2017-03-16 2017-03-21
4.9
None Local Low Not required None None Complete
The keyring_search_aux function in security/keys/keyring.c in the Linux kernel through 3.14.79 allows local users to cause a denial of service (NULL pointer dereference and OOPS) via a request_key system call for the "dead" type.
17 CVE-2017-6918 352 CSRF 2017-03-15 2017-03-16
4.3
None Remote Medium Not required None Partial None
CSRF exists in BigTree CMS 4.2.16 with the value[#][*] parameter to the admin/settings/update/ page. The Navigation Social can be changed.
18 CVE-2017-6917 352 CSRF 2017-03-15 2017-03-16
4.3
None Remote Medium Not required None Partial None
CSRF exists in BigTree CMS 4.2.16 with the value parameter to the admin/settings/update/ page. The Colophon can be changed.
19 CVE-2017-6916 352 CSRF 2017-03-15 2017-03-16
4.3
None Remote Medium Not required None Partial None
CSRF exists in BigTree CMS 4.1.18 with the nav-social[#] parameter to the admin/settings/update/ page. The Navigation Social can be changed.
20 CVE-2017-6915 352 CSRF 2017-03-15 2017-03-16
4.3
None Remote Medium Not required None Partial None
CSRF exists in BigTree CMS 4.1.18 with the colophon parameter to the admin/settings/update/ page. The Colophon can be changed.
21 CVE-2017-6909 79 Exec Code XSS 2017-03-14 2017-03-23
4.3
None Remote Medium Not required None Partial None
An issue was discovered in Shimmie <= 2.5.1. The vulnerability exists due to insufficient filtration of user-supplied data (log) passed to the "shimmie2-master/ext/chatbox/history/index.php" URL. An attacker could execute arbitrary HTML and script code in a browser in the context of the vulnerable website.
22 CVE-2017-6908 79 Exec Code XSS 2017-03-14 2017-03-22
4.3
None Remote Medium Not required None Partial None
An issue was discovered in concrete5 <= 5.6.3.4. The vulnerability exists due to insufficient filtration of user-supplied data (fID) passed to the "concrete5-legacy-master/web/concrete/tools/files/selector_data.php" URL. An attacker could execute arbitrary HTML and script code in a browser in the context of the vulnerable website.
23 CVE-2017-6906 79 Exec Code XSS 2017-03-14 2017-03-23
4.3
None Remote Medium Not required None Partial None
An issue was discovered in SiberianCMS before 4.10.0. The vulnerability exists due to insufficient filtration of user-supplied data (log) passed to the the "SiberianCMS-master/errors/500.php" URL. An attacker could execute arbitrary HTML and script code in a browser in the context of the vulnerable website.
24 CVE-2017-6905 79 Exec Code XSS 2017-03-14 2017-03-23
4.3
None Remote Medium Not required None Partial None
An issue was discovered in concrete5 <= 5.6.3.4. The vulnerability exists due to insufficient filtration of user-supplied data (disable_choose) passed to the "concrete5-legacy-master/web/concrete/tools/files/search_dialog.php" URL. An attacker could execute arbitrary HTML and script code in a browser in the context of the vulnerable website.
25 CVE-2017-6877 79 XSS 2017-03-14 2017-03-15
4.3
None Remote Medium Not required None Partial None
Cross-site scripting (XSS) vulnerability in SVG file handling in Lutim 0.7.1 and earlier allows remote attackers to inject arbitrary web script.
26 CVE-2017-6851 125 DoS 2017-03-15 2017-03-16
4.3
None Remote Medium Not required None None Partial
The jas_matrix_bindsub function in jas_seq.c in JasPer 2.0.10 allows remote attackers to cause a denial of service (invalid read) via a crafted image.
27 CVE-2017-6850 476 DoS 2017-03-15 2017-03-16
4.3
None Remote Medium Not required None None Partial
The jp2_cdef_destroy function in jp2_cod.c in JasPer before 2.0.13 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted image.
28 CVE-2017-6849 476 DoS 2017-03-15 2017-03-16
4.3
None Remote Medium Not required None None Partial
The PoDoFo::PdfColorGray::~PdfColorGray function in PdfColor.cpp in PoDoFo 0.9.4 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted file.
29 CVE-2017-6848 476 DoS 2017-03-15 2017-03-16
4.3
None Remote Medium Not required None None Partial
The PoDoFo::PdfXObject::PdfXObject function in PdfXObject.cpp in PoDoFo 0.9.5 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted file.
30 CVE-2017-6847 476 DoS 2017-03-15 2017-03-16
4.3
None Remote Medium Not required None None Partial
The PoDoFo::PdfVariant::DelayedLoad function in PdfVariant.h in PoDoFo 0.9.4 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted file.
31 CVE-2017-6846 476 DoS 2017-03-15 2017-03-16
4.3
None Remote Medium Not required None None Partial
The GraphicsStack::TGraphicsStackElement::SetNonStrokingColorSpace function in graphicsstack.h in PoDoFo 0.9.4 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted file.
32 CVE-2017-6845 476 DoS 2017-03-15 2017-03-16
4.3
None Remote Medium Not required None None Partial
The PoDoFo::PdfColor::operator function in PdfColor.cpp in PoDoFo 0.9.4 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted file.
33 CVE-2017-6842 476 DoS 2017-03-15 2017-03-16
4.3
None Remote Medium Not required None None Partial
The ColorChanger::GetColorFromStack function in colorchanger.cpp in PoDoFo 0.9.5 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted file.
34 CVE-2017-6841 476 DoS 2017-03-15 2017-03-16
4.3
None Remote Medium Not required None None Partial
The GraphicsStack::TGraphicsStackElement::~TGraphicsStackElement function in graphicsstack.h in PoDoFo 0.9.5 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted file.
35 CVE-2017-6840 125 DoS 2017-03-15 2017-03-16
4.3
None Remote Medium Not required None None Partial
The ColorChanger::GetColorFromStack function in colorchanger.cpp in PoDoFo 0.9.5 allows remote attackers to cause a denial of service (invalid read) via a crafted file.
36 CVE-2017-6839 190 DoS Overflow 2017-03-20 2017-03-22
4.3
None Remote Medium Not required None None Partial
Integer overflow in modules/MSADPCM.cpp in Audio File Library (aka audiofile) 0.3.6 allows remote attackers to cause a denial of service (crash) via a crafted file.
37 CVE-2017-6838 190 DoS Overflow 2017-03-20 2017-03-22
4.3
None Remote Medium Not required None None Partial
Integer overflow in sfcommands/sfconvert.c in Audio File Library (aka audiofile) 0.3.6 allows remote attackers to cause a denial of service (crash) via a crafted file.
38 CVE-2017-6837 20 DoS 2017-03-20 2017-03-22
4.3
None Remote Medium Not required None None Partial
WAVE.cpp in Audio File Library (aka audiofile) 0.3.6 allows remote attackers to cause a denial of service (crash) via vectors related to a large number of coefficients.
39 CVE-2017-6836 119 DoS Overflow 2017-03-20 2017-03-22
4.3
None Remote Medium Not required None None Partial
Heap-based buffer overflow in the Expand3To4Module::run function in libaudiofile/modules/SimpleModule.h in Audio File Library (aka audiofile) 0.3.6 allows remote attackers to cause a denial of service (crash) via a crafted file.
40 CVE-2017-6835 369 DoS 2017-03-20 2017-03-22
4.3
None Remote Medium Not required None None Partial
The reset1 function in libaudiofile/modules/BlockCodec.cpp in Audio File Library (aka audiofile) 0.3.6 allows remote attackers to cause a denial of service (divide-by-zero error and crash) via a crafted file.
41 CVE-2017-6834 119 DoS Overflow 2017-03-20 2017-03-22
4.3
None Remote Medium Not required None None Partial
Heap-based buffer overflow in the ulaw2linear_buf function in G711.cpp in Audio File Library (aka audiofile) 0.3.6 allows remote attackers to cause a denial of service (crash) via a crafted file.
42 CVE-2017-6833 369 DoS 2017-03-20 2017-03-22
4.3
None Remote Medium Not required None None Partial
The runPull function in libaudiofile/modules/BlockCodec.cpp in Audio File Library (aka audiofile) 0.3.6 allows remote attackers to cause a denial of service (divide-by-zero error and crash) via a crafted file.
43 CVE-2017-6832 119 DoS Overflow 2017-03-20 2017-03-22
4.3
None Remote Medium Not required None None Partial
Heap-based buffer overflow in the decodeBlock in MSADPCM.cpp in Audio File Library (aka audiofile) 0.3.6 allows remote attackers to cause a denial of service (crash) via a crafted file.
44 CVE-2017-6831 119 DoS Overflow 2017-03-20 2017-03-22
4.3
None Remote Medium Not required None None Partial
Heap-based buffer overflow in the decodeBlockWAVE function in IMA.cpp in Audio File Library (aka audiofile) 0.3.6 allows remote attackers to cause a denial of service (crash) via a crafted file.
45 CVE-2017-6830 119 DoS Overflow 2017-03-20 2017-03-22
4.3
None Remote Medium Not required None None Partial
Heap-based buffer overflow in the alaw2linear_buf function in G711.cpp in Audio File Library (aka audiofile) 0.3.6 allows remote attackers to cause a denial of service (crash) via a crafted file.
46 CVE-2017-6829 284 DoS 2017-03-20 2017-03-22
4.3
None Remote Medium Not required None None Partial
The decodeSample function in IMA.cpp in Audio File Library (aka audiofile) 0.3.6 allows remote attackers to cause a denial of service (crash) via a crafted file.
47 CVE-2017-6820 79 XSS 2017-03-12 2017-03-14
4.3
None Remote Medium Not required None Partial None
rcube_utils.php in Roundcube before 1.1.8 and 1.2.x before 1.2.4 is susceptible to a cross-site scripting vulnerability via a crafted Cascading Style Sheets (CSS) token sequence within an SVG element.
48 CVE-2017-6819 352 CSRF 2017-03-11 2017-03-14
4.3
None Remote Medium Not required None None Partial
In WordPress before 4.7.3, there is cross-site request forgery (CSRF) in Press This (wp-admin/includes/class-wp-press-this.php), leading to excessive use of server resources. The CSRF can trigger an outbound HTTP request for a large file that is then parsed by Press This.
49 CVE-2017-6818 79 XSS 2017-03-11 2017-03-14
4.3
None Remote Medium Not required None Partial None
In WordPress before 4.7.3 (wp-admin/js/tags-box.js), there is cross-site scripting (XSS) via taxonomy term names.
50 CVE-2017-6816 284 2017-03-11 2017-03-14
4.0
None Remote Low Single system None Partial None
In WordPress before 4.7.3 (wp-admin/plugins.php), unintended files can be deleted by administrators using the plugin deletion functionality.
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.