| # |
CVE ID
|
CWE ID
|
# of Exploits
|
Vulnerability Type(s)
|
Publish Date
|
Update Date
|
Score
|
Gained Access Level
|
Access
|
Complexity
|
Authentication
|
Conf.
|
Integ.
|
Avail.
|
|
1 |
CVE-2018-1999029 |
|
|
XSS |
2018-08-01 |
2018-08-01 |
0.0 |
None |
??? |
??? |
??? |
??? |
??? |
??? |
|
A cross-site scripting vulnerability exists in Jenkins Shelve Project Plugin 1.5 and earlier in ShelveProjectAction/index.jelly, ShelvedProjectsAction/index.jelly that allows attackers with Job/Configure permission to define JavaScript that would be executed in another user's browser when that other user performs some UI actions. |
|
2 |
CVE-2018-1999024 |
|
|
XSS |
2018-07-23 |
2018-07-23 |
0.0 |
None |
??? |
??? |
??? |
??? |
??? |
??? |
|
MathJax version prior to version 2.7.4 contains a Cross Site Scripting (XSS) vulnerability in the \unicode{} macro that can result in Potentially untrusted Javascript running within a web browser. This attack appear to be exploitable via The victim must view a page where untrusted content is processed using Mathjax. This vulnerability appears to have been fixed in 2.7.4 and later. |
|
3 |
CVE-2018-1999021 |
|
|
XSS |
2018-07-23 |
2018-07-23 |
0.0 |
None |
??? |
??? |
??? |
??? |
??? |
??? |
|
Gleezcms Gleez Cms version 1.3.0 contains a Cross Site Scripting (XSS) vulnerability in Profile page that can result in Inject arbitrary web script or HTML via the profile page editor. This attack appear to be exploitable via The victim must navigate to the attacker's profile page. |
|
4 |
CVE-2018-1999020 |
|
|
Dir. Trav. |
2018-07-23 |
2018-07-23 |
0.0 |
None |
??? |
??? |
??? |
??? |
??? |
??? |
|
Open Networking Foundation (ONF) ONOS version 1.13.2 and earlier version contains a Directory Traversal vulnerability in core/common/src/main/java/org/onosproject/common/app/ApplicationArchive.java line 35 that can result in arbitrary file deletion (overwrite). This attack appear to be exploitable via a specially crafted zip file should be uploaded. |
|
5 |
CVE-2018-1999016 |
|
|
Sql XSS |
2018-07-23 |
2018-07-23 |
0.0 |
None |
??? |
??? |
??? |
??? |
??? |
??? |
|
Pydio version 8.2.0 and earlier contains a Cross Site Scripting (XSS) vulnerability in ./core/vendor/meenie/javascript-packer/example-inline.php line 48; ./core/vendor/dapphp/securimage/examples/test.mysql.static.php lines: 114,118 that can result in an unauthenticated remote attacker manipulating the web client via XSS code injection. This attack appear to be exploitable via the victim openning a specially crafted URL. This vulnerability appears to have been fixed in version 8.2.1. |
|
6 |
CVE-2018-1999008 |
|
|
XSS |
2018-07-23 |
2018-07-23 |
0.0 |
None |
??? |
??? |
??? |
??? |
??? |
??? |
|
October CMS version prior to build 437 contains a Cross Site Scripting (XSS) vulnerability in the Media module and create folder functionality that can result in an Authenticated user with media module permission creating arbitrary folder name with XSS content. This attack appear to be exploitable via an Authenticated user with media module permission who can create arbitrary folder name (XSS). This vulnerability appears to have been fixed in build 437. |
|
7 |
CVE-2018-1999007 |
|
|
XSS |
2018-07-23 |
2018-07-23 |
0.0 |
None |
??? |
??? |
??? |
??? |
??? |
??? |
|
A cross-site scripting vulnerability exists in Jenkins 2.132 and earlier, 2.121.1 and earlier in the Stapler web framework's org/kohsuke/stapler/Stapler.java that allows attackers with the ability to control the existence of some URLs in Jenkins to define JavaScript that would be executed in another user's browser when that other user views HTTP 404 error pages while Stapler debug mode is enabled. |
|
8 |
CVE-2018-1999005 |
|
|
XSS |
2018-07-23 |
2018-07-23 |
0.0 |
None |
??? |
??? |
??? |
??? |
??? |
??? |
|
A cross-site scripting vulnerability exists in Jenkins 2.132 and earlier, 2.121.1 and earlier in BuildTimelineWidget.java, BuildTimelineWidget/control.jelly that allows attackers with Job/Configure permission to define JavaScript that would be executed in another user's browser when that other user performs some UI actions. |
|
9 |
CVE-2018-1002209 |
|
|
Dir. Trav. |
2018-07-25 |
2018-07-25 |
0.0 |
None |
??? |
??? |
??? |
??? |
??? |
??? |
|
QuaZIP before 0.7.6 is vulnerable to directory traversal, allowing attackers to write to arbitrary files via a ../ (dot dot slash) in a Zip archive entry that is mishandled during extraction. This vulnerability is also known as 'Zip-Slip'. |
|
10 |
CVE-2018-1002208 |
|
|
Dir. Trav. |
2018-07-25 |
2018-07-25 |
0.0 |
None |
??? |
??? |
??? |
??? |
??? |
??? |
|
sharplibzip before 1.0 RC1 is vulnerable to directory traversal, allowing attackers to write to arbitrary files via a ../ (dot dot slash) in a Zip archive entry that is mishandled during extraction. This vulnerability is also known as 'Zip-Slip'. |
|
11 |
CVE-2018-1002207 |
|
|
Dir. Trav. |
2018-07-25 |
2018-07-25 |
0.0 |
None |
??? |
??? |
??? |
??? |
??? |
??? |
|
mholt/archiver golang package before e4ef56d48eb029648b0e895bb0b6a393ef0829c3 is vulnerable to directory traversal, allowing attackers to write to arbitrary files via a ../ (dot dot slash) in an archive entry that is mishandled during extraction. This vulnerability is also known as 'Zip-Slip'. |
|
12 |
CVE-2018-1002206 |
|
|
Dir. Trav. |
2018-07-25 |
2018-07-25 |
0.0 |
None |
??? |
??? |
??? |
??? |
??? |
??? |
|
SharpCompress before 0.21.0 is vulnerable to directory traversal, allowing attackers to write to arbitrary files via a ../ (dot dot slash) in a Zip archive entry that is mishandled during extraction. This vulnerability is also known as 'Zip-Slip'. |
|
13 |
CVE-2018-1002205 |
|
|
Dir. Trav. |
2018-07-25 |
2018-07-25 |
0.0 |
None |
??? |
??? |
??? |
??? |
??? |
??? |
|
DotNetZip.Semvered before 1.11.0 is vulnerable to directory traversal, allowing attackers to write to arbitrary files via a ../ (dot dot slash) in a Zip archive entry that is mishandled during extraction. This vulnerability is also known as 'Zip-Slip'. |
|
14 |
CVE-2018-1002204 |
|
|
Dir. Trav. |
2018-07-25 |
2018-07-25 |
0.0 |
None |
??? |
??? |
??? |
??? |
??? |
??? |
|
adm-zip npm library before 0.4.9 is vulnerable to directory traversal, allowing attackers to write to arbitrary files via a ../ (dot dot slash) in a Zip archive entry that is mishandled during extraction. This vulnerability is also known as 'Zip-Slip'. |
|
15 |
CVE-2018-1002203 |
|
|
Dir. Trav. |
2018-07-25 |
2018-07-25 |
0.0 |
None |
??? |
??? |
??? |
??? |
??? |
??? |
|
unzipper npm library before 0.8.13 is vulnerable to directory traversal, allowing attackers to write to arbitrary files via a ../ (dot dot slash) in a Zip archive entry that is mishandled during extraction. This vulnerability is also known as 'Zip-Slip'. |
|
16 |
CVE-2018-1002202 |
|
|
Dir. Trav. |
2018-07-25 |
2018-07-25 |
0.0 |
None |
??? |
??? |
??? |
??? |
??? |
??? |
|
zip4j before 1.3.3 is vulnerable to directory traversal, allowing attackers to write to arbitrary files via a ../ (dot dot slash) in a Zip archive entry that is mishandled during extraction. This vulnerability is also known as 'Zip-Slip'. |
|
17 |
CVE-2018-1002201 |
|
|
Dir. Trav. |
2018-07-25 |
2018-07-25 |
0.0 |
None |
??? |
??? |
??? |
??? |
??? |
??? |
|
zt-zip before 1.13 is vulnerable to directory traversal, allowing attackers to write to arbitrary files via a ../ (dot dot slash) in a Zip archive entry that is mishandled during extraction. This vulnerability is also known as 'Zip-Slip'. |
|
18 |
CVE-2018-1002200 |
|
|
Dir. Trav. |
2018-07-25 |
2018-07-26 |
0.0 |
None |
??? |
??? |
??? |
??? |
??? |
??? |
|
plexus-archiver before 3.6.0 is vulnerable to directory traversal, allowing attackers to write to arbitrary files via a ../ (dot dot slash) in an archive entry that is mishandled during extraction. This vulnerability is also known as 'Zip-Slip'. |
|
19 |
CVE-2018-1000623 |
|
|
Exec Code Dir. Trav. |
2018-07-09 |
2018-07-09 |
0.0 |
None |
??? |
??? |
??? |
??? |
??? |
??? |
|
JFrog JFrog Artifactory version Prior to version 6.0.3, since version 4.0.0 contains a Directory Traversal vulnerability in The "Import Repository from Zip" feature, available through the Admin menu -> Import & Export -> Repositories, triggers a vulnerable UI REST endpoint (/ui/artifactimport/upload) that can result in Directory traversal / file overwrite and remote code execution. This attack appear to be exploitable via An attacker with Admin privileges may use the aforementioned UI endpoint and exploit the publicly known "Zip Slip" vulnerability, to add/overwrite files outside the target directory. This vulnerability appears to have been fixed in 6.0.3. |
|
20 |
CVE-2018-1000611 |
|
|
XSS |
2018-07-09 |
2018-07-09 |
0.0 |
None |
??? |
??? |
??? |
??? |
??? |
??? |
|
SURFnet OpenConext EngineBlock version 5.7.0 to 5.7.3 contains a Cross Site Scripting (XSS) vulnerability that can result in Allows an attacker to inject arbitrary web scripts or HTML into help and login pages. This attack appear to be exploitable via the victim opening a specially crafted URL. |
|
21 |
CVE-2018-1000604 |
|
|
XSS |
2018-06-26 |
2018-06-26 |
0.0 |
None |
??? |
??? |
??? |
??? |
??? |
??? |
|
A persisted cross-site scripting vulnerability exists in Jenkins Badge Plugin 1.4 and earlier in BadgeSummaryAction.java, HtmlBadgeAction.java that allows attackers able to control build badge content to define JavaScript that would be executed in another user's browser when that other user performs some UI actions. |
|
22 |
CVE-2018-1000559 |
|
|
XSS |
2018-06-26 |
2018-06-26 |
0.0 |
None |
??? |
??? |
??? |
??? |
??? |
??? |
|
qutebrowser version introduced in v0.11.0 (1179ee7a937fb31414d77d9970bac21095358449) contains a Cross Site Scripting (XSS) vulnerability in history command, qute://history page that can result in Via injected JavaScript code, a website can steal the user's browsing history. This attack appear to be exploitable via the victim must open a page with a specially crafted <title> attribute, and then open the qute://history site via the :history command. This vulnerability appears to have been fixed in fixed in v1.3.3 (4c9360237f186681b1e3f2a0f30c45161cf405c7, to be released today) and v1.4.0 (5a7869f2feaa346853d2a85413d6527c87ef0d9f, released later this week). |
|
23 |
CVE-2018-1000558 |
|
|
Sql |
2018-06-26 |
2018-06-26 |
0.0 |
None |
??? |
??? |
??? |
??? |
??? |
??? |
|
OCS Inventory NG ocsreports 2.4 and ocsreports 2.3.1 version 2.4 and 2.3.1 contains a SQL Injection vulnerability in web search that can result in An authenticated attacker is able to gain full access to data stored within database. This attack appear to be exploitable via By sending crafted requests it is possible to gain database access. This vulnerability appears to have been fixed in 2.4.1. |
|
24 |
CVE-2018-1000557 |
|
|
Exec Code XSS |
2018-06-26 |
2018-06-26 |
0.0 |
None |
??? |
??? |
??? |
??? |
??? |
??? |
|
OCS Inventory OCS Inventory NG version ocsreports 2.4 contains a Cross Site Scripting (XSS) vulnerability in login form and search functionality that can result in An attacker is able to execute arbitrary (javascript) code within a victims' browser. This attack appear to be exploitable via Victim must open a crafted link to the application. This vulnerability appears to have been fixed in ocsreports 2.4.1. |
|
25 |
CVE-2018-1000556 |
|
|
XSS |
2018-06-26 |
2018-06-26 |
0.0 |
None |
??? |
??? |
??? |
??? |
??? |
??? |
|
WordPress version 4.8 + contains a Cross Site Scripting (XSS) vulnerability in plugins.php or core wordpress on delete function that can result in An attacker can perform client side attacks which could be from stealing a cookie to code injection. This attack appear to be exploitable via an attacker must craft an URL with payload and send to the user. Victim need to open the link to be affected by reflected XSS. . |
|
26 |
CVE-2018-1000552 |
|
|
Sql |
2018-06-26 |
2018-06-26 |
0.0 |
None |
??? |
??? |
??? |
??? |
??? |
??? |
|
Trovebox version <= 4.0.0-rc6 contains a SQL Injection vulnerability in album component that can result in SQL code injection. This attack appear to be exploitable via HTTP request. This vulnerability appears to have been fixed in after commit 742b8ed. |
|
27 |
CVE-2018-1000550 |
|
|
Dir. Trav. |
2018-06-26 |
2018-07-25 |
0.0 |
None |
??? |
??? |
??? |
??? |
??? |
??? |
|
The Sympa Community Sympa version prior to version 6.2.32 contains a Directory Traversal vulnerability in wwsympa.fcgi template editing function that can result in Possibility to create or modify files on the server filesystem. This attack appear to be exploitable via HTTP GET/POST request. This vulnerability appears to have been fixed in 6.2.32. |
|
28 |
CVE-2018-1000544 |
|
|
Dir. Trav. |
2018-06-26 |
2018-06-26 |
0.0 |
None |
??? |
??? |
??? |
??? |
??? |
??? |
|
rubyzip gem rubyzip version 1.2.1 and earlier contains a Directory Traversal vulnerability in Zip::File component that can result in write arbitrary files to the filesystem. This attack appear to be exploitable via If a site allows uploading of .zip files , an attacker can upload a malicious file that contains symlinks or files with absolute pathnames "../" to write arbitrary files to the filesystem.. |
|
29 |
CVE-2018-1000543 |
|
|
Exec Code XSS |
2018-06-26 |
2018-06-26 |
0.0 |
None |
??? |
??? |
??? |
??? |
??? |
??? |
|
Akiee version 0.0.3 contains a XSS leading to code execution due to the use of node integration vulnerability in "Details" of a task is not validated that can result in XSS leading to abritrary code execution. This attack appear to be exploitable via The attacker tricks the victim into opening a crafted markdown. |
|
30 |
CVE-2018-1000536 |
|
|
Exec Code XSS |
2018-06-26 |
2018-06-26 |
0.0 |
None |
??? |
??? |
??? |
??? |
??? |
??? |
|
Medis version 0.6.1 and earlier contains a XSS vulnerability evolving into code execution due to enabled nodeIntegration for the renderer process vulnerability in Key name parameter on new key creation that can result in Unauthorized code execution in the victim's machine, within the rights of the running application. This attack appear to be exploitable via Victim is synchronizing data from the redis server which contains malicious key value. |
|
31 |
CVE-2018-1000534 |
|
|
Exec Code XSS |
2018-06-26 |
2018-06-26 |
0.0 |
None |
??? |
??? |
??? |
??? |
??? |
??? |
|
Joplin version prior to 1.0.90 contains a XSS evolving into code execution due to enabled nodeIntegration for that particular BrowserWindow instance where XSS was identified from vulnerability in Note content field - information on the fix can be found here https://github.com/laurent22/joplin/commit/494e235e18659574f836f84fcf9f4d4fcdcfcf89 that can result in executing unauthorized code within the rights in which the application is running. This attack appear to be exploitable via Victim synchronizing notes from the cloud services or other note-keeping services which contain malicious code. This vulnerability appears to have been fixed in 1.0.90 and later. |
|
32 |
CVE-2018-1000529 |
|
|
XSS |
2018-06-26 |
2018-07-05 |
0.0 |
None |
??? |
??? |
??? |
??? |
??? |
??? |
|
Grails Fields plugin version 2.2.7 contains a Cross Site Scripting (XSS) vulnerability in Using the display tag that can result in XSS . This vulnerability appears to have been fixed in 2.2.8. |
|
33 |
CVE-2018-1000528 |
|
|
XSS |
2018-06-26 |
2018-07-21 |
0.0 |
None |
??? |
??? |
??? |
??? |
??? |
??? |
|
GONICUS GOsa version before commit 56070d6289d47ba3f5918885954dcceb75606001 contains a Cross Site Scripting (XSS) vulnerability in change password form (html/password.php, #308) that can result in injection of arbitrary web script or HTML. This attack appear to be exploitable via the victim must open a specially crafted web page. This vulnerability appears to have been fixed in after commit 56070d6289d47ba3f5918885954dcceb75606001. |
|
34 |
CVE-2018-1000521 |
|
|
XSS |
2018-06-26 |
2018-06-26 |
0.0 |
None |
??? |
??? |
??? |
??? |
??? |
??? |
|
BigTree-CMS contains a Cross Site Scripting (XSS) vulnerability in /users/create that can result in The low-privileged users can use this vulnerability to attack high-privileged(Developer) users.. This attack appear to be exploitable via no. This vulnerability appears to have been fixed in after commit b652cfdc14d0670c81ac4401ad5a04376745c279. |
|
35 |
CVE-2018-1000516 |
|
|
Exec Code XSS |
2018-06-26 |
2018-06-26 |
0.0 |
None |
??? |
??? |
??? |
??? |
??? |
??? |
|
The Galaxy Project Galaxy version v14.10 contains a CWE-79: Improper Neutralization of Input During Web Page Generation vulnerability in Many templates used in the Galaxy server did not properly sanitize user's input, which would allow for cross-site scripting (XSS) attacks. In this form of attack, a malicious person can create a URL which, when opened by a Galaxy user or administrator, would allow the malicious user to execute arbitrary Javascript. that can result in Arbitrary JavaScript code execution. This attack appear to be exploitable via The victim must interact with component on page witch contains injected JavaScript code.. This vulnerability appears to have been fixed in v14.10.1, v15.01. |
|
36 |
CVE-2018-1000514 |
|
|
CSRF |
2018-06-26 |
2018-06-26 |
0.0 |
None |
??? |
??? |
??? |
??? |
??? |
??? |
|
LimeSurvey version 3.0.0-beta.3+17110 contains a Cross ite Request Forgery (CSRF) vulnerability in Boxes that can result in CSRF admins to delete boxes. This vulnerability appears to have been fixed in 3.6.x. |
|
37 |
CVE-2018-1000513 |
|
|
Exec Code XSS |
2018-06-26 |
2018-06-26 |
0.0 |
None |
??? |
??? |
??? |
??? |
??? |
??? |
|
LimeSurvey version 3.0.0-beta.3+17110 contains a Cross Site Scripting (XSS) vulnerability in Boxes that can result in JS code execution against LimeSurvey admins. This vulnerability appears to have been fixed in 3.6.x. |
|
38 |
CVE-2018-1000512 |
|
|
XSS |
2018-06-26 |
2018-06-26 |
0.0 |
None |
??? |
??? |
??? |
??? |
??? |
??? |
|
Tooltipy Tooltipy (tooltips for WP) version 5 contains a Cross Site Scripting (XSS) vulnerability in Glossary shortcode that can result in could allow anybody to do almost anything an admin can. This attack appear to be exploitable via Admin must follow a link. This vulnerability appears to have been fixed in 5.1. |
|
39 |
CVE-2018-1000510 |
|
|
DoS CSRF |
2018-06-26 |
2018-06-26 |
0.0 |
None |
??? |
??? |
??? |
??? |
??? |
??? |
|
WP Image Zoom version 1.23 contains a Incorrect Access Control vulnerability in AJAX settings that can result in allows anybody to cause denial of service. This attack appear to be exploitable via Can be triggered intentionally (or unintentionally via CSRF) by any logged in user. This vulnerability appears to have been fixed in 1.24. |
|
40 |
CVE-2018-1000508 |
|
|
XSS |
2018-06-26 |
2018-06-26 |
0.0 |
None |
??? |
??? |
??? |
??? |
??? |
??? |
|
WP ULike version 2.8.1, 3.1 contains a Cross Site Scripting (XSS) vulnerability in Settings screen that can result in allows unauthorised users to do almost anything an admin can. This attack appear to be exploitable via Admin must visit logs page. This vulnerability appears to have been fixed in 3.2. |
|
41 |
CVE-2018-1000507 |
|
|
CSRF |
2018-06-26 |
2018-06-26 |
0.0 |
None |
??? |
??? |
??? |
??? |
??? |
??? |
|
WP User Groups version 2.0.0 contains a Cross ite Request Forgery (CSRF) vulnerability in Settings page that can result in allows anybody to modify user groups and types. This attack appear to be exploitable via Admin must click on link. This vulnerability appears to have been fixed in 2.1.1. |
|
42 |
CVE-2018-1000506 |
|
|
CSRF |
2018-06-26 |
2018-06-26 |
0.0 |
None |
??? |
??? |
??? |
??? |
??? |
??? |
|
Metronet Tag Manager version 1.2.7 contains a Cross ite Request Forgery (CSRF) vulnerability in Settings page /wp-admin/options-general.php?page=metronet-tag-manager that can result in allows anybody to do almost anything an admin can. This attack appear to be exploitable via Logged in user must follow a link. This vulnerability appears to have been fixed in 1.2.9. |
|
43 |
CVE-2018-1000505 |
|
|
CSRF |
2018-06-26 |
2018-06-26 |
0.0 |
None |
??? |
??? |
??? |
??? |
??? |
??? |
|
Tooltipy (tooltips for WP) version 5 contains a Cross ite Request Forgery (CSRF) vulnerability in Settings page that can result in could allow anybody to duplicate posts. This attack appear to be exploitable via Admin must follow a link. This vulnerability appears to have been fixed in 5.1. |
|
44 |
CVE-2018-1000208 |
|
|
Dir. Trav. |
2018-07-13 |
2018-07-13 |
0.0 |
None |
??? |
??? |
??? |
??? |
??? |
??? |
|
MODX Revolution version <=2.6.4 contains a Directory Traversal vulnerability in /core/model/modx/modmanagerrequest.class.php that can result in remove files. This attack appear to be exploitable via web request via security/login processor. This vulnerability appears to have been fixed in pull 13980. |
|
45 |
CVE-2018-1000206 |
|
|
CSRF |
2018-07-13 |
2018-07-13 |
0.0 |
None |
??? |
??? |
??? |
??? |
??? |
??? |
|
JFrog Artifactory version since 5.11 contains a Cross ite Request Forgery (CSRF) vulnerability in UI rest endpoints that can result in Classic CSRF attack allowing an attacker to perform actions as logged in user. This attack appear to be exploitable via The victim must run maliciously crafted flash component. This vulnerability appears to have been fixed in 6.1. |
|
46 |
CVE-2018-1000202 |
79 |
|
XSS |
2018-06-05 |
2018-07-18 |
3.5 |
None |
Remote |
Medium |
Single system |
None |
Partial |
None |
|
A persisted cross-site scripting vulnerability exists in Jenkins Groovy Postbuild Plugin 2.3.1 and older in various Jelly files that allows attackers able to control build badge content to define JavaScript that would be executed in another user's browser when that other user performs some UI actions. |
|
47 |
CVE-2018-1000194 |
22 |
|
Dir. Trav. Bypass |
2018-06-05 |
2018-07-27 |
5.5 |
None |
Remote |
Low |
Single system |
Partial |
Partial |
None |
|
A path traversal vulnerability exists in Jenkins 2.120 and older, LTS 2.107.2 and older in FilePath.java, SoloFilePathFilter.java that allows malicious agents to read and write arbitrary files on the Jenkins master, bypassing the agent-to-master security subsystem protection. |
|
48 |
CVE-2018-1000177 |
79 |
|
XSS |
2018-05-08 |
2018-06-13 |
3.5 |
None |
Remote |
Medium |
Single system |
None |
Partial |
None |
|
A cross-site scripting vulnerability exists in Jenkins S3 Plugin 0.10.12 and older in src/main/resources/hudson/plugins/s3/S3ArtifactsProjectAction/jobMain.jelly that allows attackers able to control file names of uploaded files to define file names containing JavaScript that would be executed in another user's browser when that user performs some UI actions. |
|
49 |
CVE-2018-1000175 |
22 |
|
Dir. Trav. |
2018-05-08 |
2018-06-13 |
4.0 |
None |
Remote |
Low |
Single system |
None |
Partial |
None |
|
A path traversal vulnerability exists in Jenkins HTML Publisher Plugin 1.15 and older in HtmlPublisherTarget.java that allows attackers able to configure the HTML Publisher build step to override arbitrary files on the Jenkins master. |
|
50 |
CVE-2018-1000172 |
79 |
|
XSS |
2018-04-30 |
2018-06-07 |
3.5 |
None |
Remote |
Medium |
Single system |
None |
Partial |
None |
|
Imagely NextGEN Gallery version 2.2.30 and earlier contains a Cross Site Scripting (XSS) vulnerability in Image Alt & Title Text. This attack appears to be exploitable via a victim viewing the image in the administrator page. This vulnerability appears to have been fixed in 2.2.45. |
