CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Security Vulnerabilities (CVSS score between 4 and 4.99)

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
1 CVE-2017-1000377 119 Overflow Bypass 2017-06-19 2017-07-05
4.6
None Local Low Not required Partial Partial Partial
An issue was discovered in the size of the default stack guard page on PAX Linux (originally from GRSecurity but shipped by other Linux vendors), specifically the default stack guard page is not sufficiently large and can be "jumped" over (the stack guard page is bypassed), this affects PAX Linux Kernel versions as of June 19, 2017 (specific version information is not available at this time).
2 CVE-2017-1000358 399 2017-04-24 2017-04-27
4.0
None Remote Low Single system None None Partial
Controller throws an exception and does not allow user to add subsequent flow for a particular switch. Component: OpenDaylight odl-restconf feature contains this flaw. Version: OpenDaylight 4.0 is affected by this flaw.
3 CVE-2017-1000078 79 XSS 2017-07-17 2017-07-19
4.3
None Remote Medium Not required None Partial None
Linux foundation ONOS 1.9 is vulnerable to XSS in the device registration
4 CVE-2017-1000063 79 XSS 2017-07-17 2017-07-19
4.3
None Remote Medium Not required None Partial None
kittoframework kitto version 0.5.1 is vulnerable to an XSS in the 404 page resulting in information disclosure
5 CVE-2017-1000054 79 XSS 2017-07-17 2017-07-19
4.3
None Remote Medium Not required None Partial None
Rocket.Chat version 0.8.0 and newer is vulnerable to XSS in the markdown link parsing code for messages.
6 CVE-2017-1000049 79 XSS 2017-07-17 2017-07-19
4.3
None Remote Medium Not required None Partial None
Roundcube Webmail 1.1.5 is vulnerable to Persistent Xss
7 CVE-2017-1000032 79 XSS 2017-07-17 2017-07-19
4.3
None Remote Medium Not required None Partial None
Cross-Site scripting (XSS) vulnerabilities in Cacti 0.8.8b allow remote attackers to inject arbitrary web script or HTML via the parent_id parameter to tree.php and drp_action parameter to data_sources.php.
8 CVE-2017-1000015 79 XSS 2017-07-17 2017-07-19
4.3
None Remote Medium Not required None Partial None
phpMyAdmin 4.0, 4.4, and 4.6 are vulnerable to a CSS injection attack through crafted cookie parameters
9 CVE-2017-11405 264 2017-07-17 2017-07-19
4.0
None Remote Low Single system None Partial None
In CMS Made Simple (CMSMS) 2.2.2, remote authenticated administrators can upload a .php file via a CMSContentManager action to admin/moduleinterface.php, followed by a FilePicker action to admin/moduleinterface.php in which type=image is changed to type=file.
10 CVE-2017-11404 264 2017-07-17 2017-07-19
4.0
None Remote Low Single system None Partial None
In CMS Made Simple (CMSMS) 2.2.2, remote authenticated administrators can upload a .php file via a FileManager action to admin/moduleinterface.php.
11 CVE-2017-11360 20 2017-07-17 2017-07-19
4.3
None Remote Medium Not required None None Partial
The ReadRLEImage function in coders\rle.c in ImageMagick 7.0.6-1 has a large loop vulnerability via a crafted rle file that triggers a huge number_pixels value.
12 CVE-2017-11352 20 2017-07-17 2017-07-19
4.3
None Remote Medium Not required None None Partial
In ImageMagick before 7.0.5-10, a crafted RLE image can trigger a crash because of incorrect EOF handling in coders/rle.c. NOTE: this vulnerability exists because of an incomplete fix for CVE-2017-9144.
13 CVE-2017-11202 79 XSS 2017-07-12 2017-07-16
4.3
None Remote Medium Not required None Partial None
FineCMS through 2017-07-12 allows XSS in visitors.php because JavaScript in visited URLs is not restricted either during logging or during the reading of logs, a different vulnerability than CVE-2017-11180.
14 CVE-2017-11198 79 XSS 2017-07-12 2017-07-16
4.3
None Remote Medium Not required None Partial None
Cross-site scripting (XSS) vulnerability in /application/lib/ajax/get_image.php in FineCMS through 2017-07-12 allows remote attackers to inject arbitrary web script or HTML via the folder, id, or name parameter.
15 CVE-2017-11195 79 XSS 2017-07-12 2017-07-18
4.3
None Remote Medium Not required None Partial None
Pulse Connect Secure 8.3R1 has Reflected XSS in launchHelp.cgi. The helpLaunchPage parameter is reflected in an IFRAME element, if the value contains two quotes. It properly sanitizes quotes and tags, so one cannot simply close the src with a quote and inject after that. However, an attacker can use javascript: or data: to abuse this.
16 CVE-2017-11194 79 XSS 2017-07-12 2017-07-17
4.3
None Remote Medium Not required None Partial None
Pulse Connect Secure 8.3R1 has Reflected XSS in adminservercacertdetails.cgi. In the admin panel, the certid parameter of adminservercacertdetails.cgi is reflected in the application's response and is not properly sanitized, allowing an attacker to inject tags. An attacker could come up with clever payloads to make the system run commands such as ping, ping6, traceroute, nslookup, arp, etc.
17 CVE-2017-11180 79 XSS 2017-07-11 2017-07-16
4.3
None Remote Medium Not required None Partial None
FineCMS through 2017-07-11 has stored XSS in the logging functionality, as demonstrated by an XSS payload in (1) the User-Agent header of an HTTP request or (2) the username entered on the login screen.
18 CVE-2017-11179 79 XSS 2017-07-11 2017-07-16
4.3
None Remote Medium Not required None Partial None
FineCMS through 2017-07-11 has stored XSS in route=admin when modifying user information, and in route=register when registering a user account.
19 CVE-2017-11126 119 DoS Overflow 2017-07-09 2017-07-13
4.3
None Remote Medium Not required None None Partial
The III_i_stereo function in libmpg123/layer3.c in mpg123 through 1.25.1 allows remote attackers to cause a denial of service (buffer over-read and application crash) via a crafted audio file that is mishandled in the code for the "block_type != 2" case, a similar issue to CVE-2017-9870.
20 CVE-2017-11107 79 XSS 2017-07-08 2017-07-13
4.3
None Remote Medium Not required None Partial None
phpLDAPadmin through 1.2.3 has XSS in htdocs/entry_chooser.php via the form, element, rdn, or container parameter.
21 CVE-2017-11104 284 Bypass 2017-07-08 2017-07-18
4.3
None Remote Medium Not required None Partial None
Knot DNS before 2.4.5 and 2.5.x before 2.5.2 contains a flaw within the TSIG protocol implementation that would allow an attacker with a valid key name and algorithm to bypass TSIG authentication if no additional ACL restrictions are set, because of an improper TSIG validity period check.
22 CVE-2017-10995 119 DoS Overflow 2017-07-07 2017-07-12
4.3
None Remote Medium Not required None None Partial
The mng_get_long function in coders/png.c in ImageMagick 7.0.6-0 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted MNG image.
23 CVE-2017-10991 79 XSS 2017-07-07 2017-07-13
4.3
None Remote Medium Not required None Partial None
The WP Statistics plugin through 12.0.9 for WordPress has XSS in the rangestart and rangeend parameters on the wps_referrers_page page.
24 CVE-2017-10975 79 XSS 2017-07-06 2017-07-17
4.3
None Remote Medium Not required None Partial None
Cross-site scripting (XSS) vulnerability in Lutim before 0.8 might allow remote attackers to inject arbitrary web script or HTML via a crafted filename that is mishandled in an upload notification and in the myfiles component, if the attacker can convince the victim to proceed with an upload despite the appearance of an XSS payload in the filename.
25 CVE-2017-10973 918 2017-07-06 2017-07-17
4.3
None Remote Medium Not required None Partial None
In FineCMS before 2017-07-06, application/lib/ajax/get_image_data.php has SSRF, related to requests for non-image files with a modified HTTP Host header.
26 CVE-2017-10970 79 XSS 2017-07-06 2017-07-17
4.3
None Remote Medium Not required None Partial None
Cross-site scripting (XSS) vulnerability in link.php in Cacti 1.1.12 allows remote anonymous users to inject arbitrary web script or HTML via the id parameter, related to the die_html_input_error function in lib/html_validate.php.
27 CVE-2017-10967 79 XSS 2017-07-06 2017-07-13
4.3
None Remote Medium Not required None Partial None
In FineCMS before 2017-07-06, application\core\controller\config.php allows XSS in the (1) key_name, (2) key_value, and (3) meaning parameters.
28 CVE-2017-10911 200 +Info 2017-07-04 2017-07-14
4.9
None Local Low Not required Complete None None
The make_response function in drivers/block/xen-blkback/blkback.c in the Linux kernel before 4.11.8 allows guest OS users to obtain sensitive information from host OS (or other guest OS) kernel memory by leveraging the copying of uninitialized padding fields in Xen block-interface response structures, aka XSA-216.
29 CVE-2017-10800 400 DoS 2017-07-02 2017-07-05
4.3
None Remote Medium Not required None None Partial
When GraphicsMagick 1.3.25 processes a MATLAB image in coders/mat.c, it can lead to a denial of service (OOM) in ReadMATImage() if the size specified for a MAT Object is larger than the actual amount of data.
30 CVE-2017-10799 400 DoS 2017-07-02 2017-07-05
4.3
None Remote Medium Not required None None Partial
When GraphicsMagick 1.3.25 processes a DPX image (with metadata indicating a large width) in coders/dpx.c, a denial of service (OOM) can occur in ReadDPXImage().
31 CVE-2017-10798 79 XSS 2017-07-02 2017-07-05
4.3
None Remote Medium Not required None Partial None
In ObjectPlanet Opinio before 7.6.4, there is XSS.
32 CVE-2017-10795 79 XSS 2017-07-02 2017-07-05
4.3
None Remote Medium Not required None Partial None
Cross-site scripting (XSS) vulnerability in Subrion CMS 4.1.4 allows remote attackers to inject arbitrary web script or HTML via the body to blog/add/, a different vulnerability than CVE-2017-6069.
33 CVE-2017-10794 119 Overflow 2017-07-02 2017-07-05
4.3
None Remote Medium Not required None None Partial
When GraphicsMagick 1.3.25 processes an RGB TIFF picture (with metadata indicating a single sample per pixel) in coders/tiff.c, a buffer overflow occurs, related to QuantumTransferMode.
34 CVE-2017-10792 476 DoS 2017-07-01 2017-07-11
4.3
None Remote Medium Not required None None Partial
There is a NULL Pointer Dereference in the function ll_insert() of the libpspp library in GNU PSPP 0.10.5-pre2. For example, a crash was observed within the library code when attempting to convert invalid SPSS data into CSV format. A crafted input will lead to a remote denial of service attack.
35 CVE-2017-10791 190 DoS Overflow 2017-07-01 2017-07-11
4.3
None Remote Medium Not required None None Partial
There is an Integer overflow in the hash_int function of the libpspp library in GNU PSPP 0.10.5-pre2. For example, a crash was observed within the library code when attempting to convert invalid SPSS data into CSV format. A crafted input will lead to a remote denial of service attack.
36 CVE-2017-10789 254 2017-07-01 2017-07-12
4.3
None Remote Medium Not required None Partial None
The DBD::mysql module through 4.043 for Perl uses the mysql_ssl=1 setting to mean that SSL is optional (even though this setting's documentation has a "your communication with the server will be encrypted" statement), which allows man-in-the-middle attackers to spoof servers via a cleartext-downgrade attack, a related issue to CVE-2015-3152.
37 CVE-2017-10783 119 DoS Overflow 2017-07-05 2017-07-10
4.6
None Local Low Not required Partial Partial Partial
XnView Classic for Windows Version 2.40 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to "Data from Faulting Address controls Branch Selection starting at ntdll_77df0000!RtlpFreeHeap+0x0000000000000393."
38 CVE-2017-10782 119 DoS Overflow 2017-07-05 2017-07-10
4.6
None Local Low Not required Partial Partial Partial
XnView Classic for Windows Version 2.40 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to "Data from Faulting Address controls Branch Selection starting at ntdll_77df0000!RtlpFreeHeap+0x00000000000003ca."
39 CVE-2017-10781 119 DoS Overflow 2017-07-05 2017-07-10
4.6
None Local Low Not required Partial Partial Partial
XnView Classic for Windows Version 2.40 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to "Data from Faulting Address controls Branch Selection starting at ntdll_77df0000!LdrpFindLoadedDllByName+0x00000000000000a5."
40 CVE-2017-10780 119 DoS Overflow 2017-07-05 2017-07-10
4.6
None Local Low Not required Partial Partial Partial
XnView Classic for Windows Version 2.40 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to "Data from Faulting Address controls Branch Selection starting at xnview+0x0000000000372b4a."
41 CVE-2017-10779 119 DoS Overflow 2017-07-05 2017-07-10
4.6
None Local Low Not required Partial Partial Partial
XnView Classic for Windows Version 2.40 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to "Data from Faulting Address controls Branch Selection starting at xnview+0x0000000000013a20."
42 CVE-2017-10778 119 DoS Overflow 2017-07-05 2017-07-10
4.6
None Local Low Not required Partial Partial Partial
XnView Classic for Windows Version 2.40 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to "Data from Faulting Address controls Branch Selection starting at xnview+0x0000000000233125."
43 CVE-2017-10777 119 DoS Overflow 2017-07-05 2017-07-10
4.6
None Local Low Not required Partial Partial Partial
XnView Classic for Windows Version 2.40 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to "Data from Faulting Address controls Branch Selection starting at xnview+0x0000000000372b24."
44 CVE-2017-10776 119 DoS Overflow 2017-07-05 2017-07-13
4.6
None Local Low Not required Partial Partial Partial
XnView Classic for Windows Version 2.40 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to a "Read Access Violation starting at ntdll_77df0000!LdrShutdownProcess+0x0000000000000130."
45 CVE-2017-10775 119 DoS Overflow 2017-07-05 2017-07-13
4.6
None Local Low Not required Partial Partial Partial
XnView Classic for Windows Version 2.40 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to a "Read Access Violation starting at GDI32!ScriptGetCMapWithSurrogate+0x00000000000001cb."
46 CVE-2017-10774 119 DoS Overflow 2017-07-05 2017-07-10
4.6
None Local Low Not required Partial Partial Partial
XnView Classic for Windows Version 2.40 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to "Data from Faulting Address controls Branch Selection starting at KERNELBASE!FindSortHashNode+0x0000000000000040."
47 CVE-2017-10773 119 DoS Overflow 2017-07-05 2017-07-10
4.6
None Local Low Not required Partial Partial Partial
XnView Classic for Windows Version 2.40 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to "Data from Faulting Address controls Branch Selection starting at MSCTF!_CtfImeCreateThreadMgr+0x00000000000000a8."
48 CVE-2017-10772 119 DoS Overflow 2017-07-05 2017-07-10
4.6
None Local Low Not required Partial Partial Partial
XnView Classic for Windows Version 2.40 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to "Data from Faulting Address controls Branch Selection starting at ntdll_77df0000!memcmp+0x0000000000000018" (with RPC initialization).
49 CVE-2017-10771 119 DoS Overflow 2017-07-05 2017-07-10
4.6
None Local Low Not required Partial Partial Partial
XnView Classic for Windows Version 2.40 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to "Data from Faulting Address controls Branch Selection starting at ntdll_77df0000!RtlpCreateSplitBlock+0x0000000000000510."
50 CVE-2017-10770 119 DoS Overflow 2017-07-05 2017-07-10
4.6
None Local Low Not required Partial Partial Partial
XnView Classic for Windows Version 2.40 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to "Data from Faulting Address controls Branch Selection starting at ntdll_77df0000!RtlpCreateSplitBlock+0x000000000000053a."
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.