Trovebox version <= 4.0.0-rc6 contains a Unsafe password reset token generation vulnerability in user component that can result in Password reset. This attack appear to be exploitable via HTTP request. This vulnerability appears to have been fixed in after commit 742b8ed.
Max CVSS
9.8
EPSS Score
0.66%
Published
2018-06-26
Updated
2018-08-17
The Sympa Community Sympa version prior to version 6.2.32 contains a Directory Traversal vulnerability in wwsympa.fcgi template editing function that can result in Possibility to create or modify files on the server filesystem. This attack appear to be exploitable via HTTP GET/POST request. This vulnerability appears to have been fixed in 6.2.32.
Max CVSS
9.8
EPSS Score
0.41%
Published
2018-06-26
Updated
2020-08-04
rubyzip gem rubyzip version 1.2.1 and earlier contains a Directory Traversal vulnerability in Zip::File component that can result in write arbitrary files to the filesystem. This attack appear to be exploitable via If a site allows uploading of .zip files , an attacker can upload a malicious file that contains symlinks or files with absolute pathnames "../" to write arbitrary files to the filesystem..
Max CVSS
9.8
EPSS Score
0.22%
Published
2018-06-26
Updated
2020-08-24
Marlin Firmware Marlin version 1.1.x and earlier contains a Buffer Overflow vulnerability in cardreader.cpp (Depending on branch/version) that can result in Arbitrary code execution. This attack appear to be exploitable via Crafted G-Code instruction/file is sent to the printer.
Max CVSS
9.8
EPSS Score
0.47%
Published
2018-06-26
Updated
2018-08-31

CVE-2018-1000533

Public exploit
klaussilveira GitList version <= 0.6 contains a Passing incorrectly sanitized input to system function vulnerability in `searchTree` function that can result in Execute any code as PHP user. This attack appear to be exploitable via Send POST request using search form. This vulnerability appears to have been fixed in 0.7 after commit 87b8c26b023c3fc37f0796b14bb13710f397b322.
Max CVSS
9.8
EPSS Score
97.24%
Published
2018-06-26
Updated
2021-09-09
openpsa contains a PHP Object Injection vulnerability in Form data passed as GET request variables that can result in Possible information disclosure and remote code execution. This attack appear to be exploitable via Specially crafted GET request variable containing serialised PHP object. This vulnerability appears to have been fixed in after commit 097eae0.
Max CVSS
9.8
EPSS Score
0.96%
Published
2018-06-26
Updated
2020-08-24
BusyBox project BusyBox wget version prior to commit 8e2174e9bd836e53c8b9c6e00d1bc6e2a718686e contains a Buffer Overflow vulnerability in Busybox wget that can result in heap buffer overflow. This attack appear to be exploitable via network connectivity. This vulnerability appears to have been fixed in after commit 8e2174e9bd836e53c8b9c6e00d1bc6e2a718686e.
Max CVSS
9.8
EPSS Score
0.28%
Published
2018-06-26
Updated
2021-02-18
Redirection version 2.7.3 contains a ACE via file inclusion vulnerability in Pass-through mode that can result in allows admins to execute any PHP file in the filesystem. This attack appear to be exploitable via Attacker must be have access to an admin account on the target site. This vulnerability appears to have been fixed in 2.8.
Max CVSS
9.0
EPSS Score
0.11%
Published
2018-06-26
Updated
2018-09-04
Instant Update CMS contains a Password Reset Vulnerability vulnerability in /iu-application/controllers/administration/auth.php that can result in Account Tackover. This attack appear to be exploitable via network connectivity. This vulnerability appears to have been fixed in v0.3.3.
Max CVSS
9.8
EPSS Score
0.24%
Published
2018-06-26
Updated
2018-08-30
An issue was discovered in gpmf-parser 1.1.2. There is a heap-based buffer over-read in GPMF_parser.c in the function GPMF_Type.
Max CVSS
9.8
EPSS Score
0.19%
Published
2018-06-30
Updated
2019-10-03
An issue was discovered in HongCMS 3.0.0. There is an Arbitrary Script File Upload issue that can result in PHP code execution via the admin/index.php/template/upload URI.
Max CVSS
9.0
EPSS Score
0.13%
Published
2018-06-29
Updated
2018-08-21
An issue was discovered in gpmf-parser 1.1.2. There is a heap-based buffer over-read in GPMF_parser.c in the function GPMF_Validate.
Max CVSS
9.8
EPSS Score
0.66%
Published
2018-06-29
Updated
2018-08-21
An issue was discovered in gpmf-parser 1.1.2. There is a heap-based buffer over-read in GPMF_parser.c in the function GPMF_Next, related to certain checks for GPMF_KEY_END and nest_level (conditional on a buffer_size_longs check).
Max CVSS
9.8
EPSS Score
0.25%
Published
2018-06-29
Updated
2018-08-21
An issue was discovered in gpmf-parser 1.1.2. There is a heap-based buffer over-read in GPMF_parser.c in the function GPMF_Next, related to certain checks for a positive nest_level.
Max CVSS
9.8
EPSS Score
0.25%
Published
2018-06-29
Updated
2018-08-21
An issue was discovered in gpmf-parser 1.1.2. There is a heap-based buffer over-read in GPMF_parser.c in the function GPMF_Next, related to certain checks for GPMF_KEY_END and nest_level (not conditional on a buffer_size_longs check).
Max CVSS
9.8
EPSS Score
0.25%
Published
2018-06-29
Updated
2018-08-21
An issue was discovered in MP4Box in GPAC 0.7.1. There is a heap-based buffer over-read in the isomedia/box_dump.c function hdlr_dump.
Max CVSS
9.8
EPSS Score
0.33%
Published
2018-06-29
Updated
2019-03-29
An issue was discovered in MP4Box in GPAC 0.7.1. The function urn_Read in isomedia/box_code_base.c has a heap-based buffer over-read.
Max CVSS
9.8
EPSS Score
0.52%
Published
2018-06-29
Updated
2019-03-29
onefilecms.php in OneFileCMS through 2012-04-14 might allow attackers to conduct brute-force attacks via the onefilecms_username and onefilecms_password fields.
Max CVSS
9.8
EPSS Score
0.66%
Published
2018-06-29
Updated
2019-10-03
Hycus CMS 1.0.4 allows Authentication Bypass via "'=' 'OR'" credentials.
Max CVSS
9.8
EPSS Score
5.16%
Published
2018-06-29
Updated
2018-08-20
An issue was discovered in OpenTSDB 2.3.0. Many parameters to the /q URI can execute commands, including o, key, style, and yrange and y2range and their JSON input.
Max CVSS
9.8
EPSS Score
0.19%
Published
2018-06-29
Updated
2019-10-03
PlayEnhMetaFileRecord in enhmetafile.c in Wine 3.7 allows attackers to cause a denial of service (out-of-bounds write) or possibly have unspecified other impact because the attacker controls the pCreatePen->ihPen array index.
Max CVSS
9.8
EPSS Score
0.18%
Published
2018-06-28
Updated
2018-08-17
PlayEnhMetaFileRecord in enhmetafile.c in Wine 3.7 allows attackers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact by triggering a large pAlphaBlend->cbBitsSrc value.
Max CVSS
9.8
EPSS Score
0.19%
Published
2018-06-28
Updated
2020-08-24
Baseon Lantronix MSS devices do not require a password for TELNET access.
Max CVSS
10.0
EPSS Score
0.22%
Published
2018-06-28
Updated
2019-10-03
Sollae Serial-Ethernet-Module and Remote-I/O-Device-Server devices have a default password of sollae for the TELNET service.
Max CVSS
10.0
EPSS Score
0.22%
Published
2018-06-28
Updated
2018-08-24
In libpbc.a in PBC through 2017-03-02, there is a Segmentation fault in _pbcB_register_fields in bootstrap.c.
Max CVSS
9.8
EPSS Score
0.16%
Published
2018-06-27
Updated
2020-03-16
440 vulnerabilities found
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!