CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Security Vulnerabilities (CVSS score between 3 and 3.99)

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
501 CVE-2018-16164 79 XSS 2019-01-09 2019-01-16
3.5
None Remote Medium Single system None Partial None
Cross-site scripting vulnerability in Event Calendar WD version 1.1.21 and earlier allows remote authenticated attackers to inject arbitrary web script or HTML via unspecified vectors.
502 CVE-2018-16138 79 XSS 2019-05-13 2019-05-15
3.5
None Remote Medium Single system None Partial None
An issue was discovered in the administration page in IPBRICK OS 6.3. There are multiple XSS vulnerabilities.
503 CVE-2018-15917 79 XSS 2018-09-05 2018-10-24
3.5
None Remote Medium Single system None Partial None
Persistent cross-site scripting (XSS) issues in Jorani 0.6.5 allow remote attackers to inject arbitrary web script or HTML via the language parameter to session/language.
504 CVE-2018-15903 79 XSS 2018-10-08 2018-11-26
3.5
None Remote Medium Single system None Partial None
The Discuss v1.2.1 module in Claromentis 8.2.2 is vulnerable to stored Cross Site Scripting (XSS). An authenticated attacker will be able to place malicious JavaScript in the discussion forum, which is present in the login landing page. A low privilege user can use this to steal the session cookies from high privilege accounts and hijack these, enabling them to hijack the elevated session and perform actions in their security context.
505 CVE-2018-15896 79 XSS 2018-08-28 2018-10-31
3.5
None Remote Medium Single system None Partial None
PHP Scripts Mall Website Seller Script 2.0.5 has XSS via Personal Address or Company Name.
506 CVE-2018-15891 79 XSS 2019-06-20 2019-06-27
3.5
None Remote Medium Single system None Partial None
An issue was discovered in FreePBX core before 3.0.122.43, 14.0.18.34, and 5.0.1beta4. By crafting a request for adding Asterisk modules, an attacker is able to store JavaScript commands in a module name.
507 CVE-2018-15880 79 XSS 2018-08-28 2018-11-02
3.5
None Remote Medium Single system None Partial None
An issue was discovered in Joomla! before 3.8.12. Inadequate output filtering on the user profile page could lead to a stored XSS attack.
508 CVE-2018-15843 79 XSS 2018-08-25 2018-10-17
3.5
None Remote Medium Single system None Partial None
GetSimple CMS 3.3.14 has XSS via the admin/edit.php "Add New Page" field.
509 CVE-2018-15842 79 XSS 2018-08-25 2018-10-17
3.5
None Remote Medium Single system None Partial None
WolfCMS 0.8.3.1 has XSS via the /?/admin/page/add slug parameter.
510 CVE-2018-15800 200 +Info 2018-12-10 2019-04-01
3.5
None Remote Medium Single system Partial None None
Cloud Foundry Bits Service, versions prior to 2.18.0, includes an information disclosure vulnerability. A remote malicious user may execute a timing attack to brute-force the signing key, allowing them complete read and write access to the the Bits Service storage.
511 CVE-2018-15713 79 XSS 2018-11-14 2018-12-06
3.5
None Remote Medium Single system None Partial None
Nagios XI 5.5.6 allows persistent cross site scripting from remote authenticated attackers via the stored email address in admin/users.php.
512 CVE-2018-15707 79 XSS 2018-10-31 2018-12-12
3.5
None Remote Medium Single system None Partial None
Advantech WebAccess 8.3.1 and 8.3.2 are vulnerable to cross-site scripting in the Bwmainleft.asp page. An attacker could leverage this vulnerability to disclose credentials amongst other things.
513 CVE-2018-15701 20 DoS 2018-10-01 2018-11-27
3.3
None Local Network Low Not required None None Partial
The web interface in TP-Link TL-WRN841N 0.9.1 4.16 v0348.0 is vulnerable to a denial of service when an unauthenticated LAN user sends a crafted HTTP header containing an unexpected Cookie field.
514 CVE-2018-15693 285 Bypass 2018-11-16 2018-12-19
3.5
None Remote Medium Single system None Partial None
Inova Partner 5.0.5-RELEASE, Build 0510-0906 and earlier allows authenticated users authorization bypass via insecure direct object reference.
515 CVE-2018-15692 285 Bypass 2018-11-16 2018-12-19
3.5
None Remote Medium Single system None Partial None
Inova Partner 5.0.5-RELEASE, Build 0510-0906 and earlier allows authenticated users authorization bypass and data manipulation in certain functions.
516 CVE-2018-15570 79 XSS 2018-08-19 2018-10-19
3.5
None Remote Medium Single system None Partial None
In waimai Super Cms 20150505, there is stored XSS via the /admin.php/Foodcat/editsave fcname parameter.
517 CVE-2018-15451 79 Exec Code XSS 2018-11-08 2018-11-20
3.5
None Remote Medium Single system None Partial None
A vulnerability in the web-based management interface of Cisco Prime Service Catalog could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web-based management interface. The vulnerability is due to insufficient validation of user-supplied input that is processed by the web-based management interface. An attacker could exploit this vulnerability by persuading a user of the interface to click a maliciously crafted link. A successful exploit could allow the attacker to execute arbitrary script code in the context of the interface or access sensitive browser-based information.
518 CVE-2018-15426 79 Exec Code XSS 2018-10-05 2018-11-26
3.5
None Remote Medium Single system None Partial None
A vulnerability in the web-based interface of Cisco Unity Connection could allow an authenticated, remote attacker to conduct a stored cross-site scripting (XSS) attack against a user of the web-based interface of the affected software. The vulnerability is due to insufficient validation of user-supplied input that is processed by the web-based interface of the affected software. An attacker could exploit this vulnerability by persuading a user of the web-based interface to click a malicious link. A successful exploit could allow the attacker to execute arbitrary script code in the context of the interface or access sensitive, browser-based information.
519 CVE-2018-15392 399 DoS 2018-10-05 2019-01-11
3.3
None Local Network Low Not required None None Partial
A vulnerability in the DHCP service of Cisco Industrial Network Director could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition. The vulnerability is due to improper handling of DHCP lease requests. An attacker could exploit this vulnerability by sending malicious DHCP lease requests to an affected application. A successful exploit could allow the attacker to cause the DHCP service to terminate, resulting in a DoS condition.
520 CVE-2018-15365 79 XSS Bypass CSRF 2018-09-28 2018-11-16
3.5
None Remote Medium Single system None Partial None
A Reflected Cross-Site Scripting (XSS) vulnerability in Trend Micro Deep Discovery Inspector 3.85 and below could allow an attacker to bypass CSRF protection and conduct an attack on vulnerable installations. An attacker must be an authenticated user in order to exploit the vulnerability.
521 CVE-2018-15199 79 XSS 2018-08-07 2018-10-04
3.5
None Remote Medium Single system None Partial None
AuraCMS 2.3 allows XSS via a Bukutamu -> AddGuestbook action.
522 CVE-2018-15190 79 XSS 2018-08-10 2018-10-06
3.5
None Remote Medium Single system None Partial None
PHP Scripts Mall hotel-booking-script 2.0.4 allows XSS via the First Name, Last Name, or Address field.
523 CVE-2018-15189 79 XSS 2018-08-10 2018-10-05
3.5
None Remote Medium Single system None Partial None
PHP Scripts Mall advanced-real-estate-script has XSS via the Name field of a profile.
524 CVE-2018-15184 79 XSS 2018-08-09 2018-10-09
3.5
None Remote Medium Single system None Partial None
PHP Scripts Mall Naukri / Shine / Jobsite Clone Script 3.0.4 has Stored XSS via the USERNAME field, a related issue to CVE-2018-6795.
525 CVE-2018-15182 79 XSS 2018-08-09 2018-10-05
3.5
None Remote Medium Single system None Partial None
PHP Scripts Mall Car Rental Script 2.0.8 has XSS via the FirstName and LastName fields.
526 CVE-2018-15130 79 XSS 2018-08-07 2018-10-05
3.5
None Remote Medium Single system None Partial None
ThinkSAAS through 2018-07-25 has XSS via the index.php?app=group&ac=create&ts=do groupdesc parameter.
527 CVE-2018-15129 79 XSS 2018-08-07 2018-10-05
3.5
None Remote Medium Single system None Partial None
ThinkSAAS through 2018-07-25 has XSS via the index.php?app=article&ac=comment&ts=do content parameter.
528 CVE-2018-15000 264 2019-04-25 2019-05-02
3.3
None Local Medium Not required Partial Partial None
The Vivo V7 Android device with a build fingerprint of vivo/1718/1718:7.1.2/N2G47H/compil11021857:user/release-keys contains a platform app with a package name of com.vivo.smartshot (versionCode=1, versionName=3.0.0). This app contains an exported service named com.vivo.smartshot.ui.service.ScreenRecordService that will record the screen for 60 minutes and write the mp4 file to a location of the user's choosing. Normally, a recording notification will be visible to the user, but we discovered an approach to make it mostly transparent to the user by quickly removing a notification and floating icon. The user can see a floating icon and notification appear and disappear quickly due to quickly stopping and restarting the service with different parameters that do not interfere with the ongoing screen recording. The screen recording lasts for 60 minutes and can be written directly to the attacking app's private directory.
529 CVE-2018-14980 77 DoS 2019-04-25 2019-05-02
3.6
None Local Low Not required Partial Partial None
The ASUS ZenFone 3 Max Android device with a build fingerprint of asus/US_Phone/ASUS_X008_1:7.0/NRD90M/US_Phone-14.14.1711.92-20171208:user/release-keys contains the android framework (i.e., system_server) with a package name of android (versionCode=24, versionName=7.0) that has been modified by ASUS or another entity in the supply chain. The system_server process in the core android package has an exported broadcast receiver that allows any app co-located on the device to programmatically initiate the taking of a screenshot and have the resulting screenshot be written to external storage (i.e., sdcard). The taking of a screenshot is not transparent to the user; the device has a screen animation as the screenshot is taken and there is a notification indicating that a screenshot occurred. If the attacking app also requests the EXPAND_STATUS_BAR permission, it can wake the device up using certain techniques and expand the status bar to take a screenshot of the user's notifications even if the device has an active screen lock. The notifications may contain sensitive data such as text messages used in two-factor authentication. The system_server process that provides this capability cannot be disabled, as it is part of the Android framework. The notification can be removed by a local Denial of Service (DoS) attack to reboot the device.
530 CVE-2018-14976 79 XSS 2018-08-06 2018-10-03
3.5
None Remote Medium Single system None Partial None
An issue was discovered in QCMS 3.0.1. upload/System/Controller/backend/category.php has XSS.
531 CVE-2018-14975 79 XSS 2018-08-06 2018-10-03
3.5
None Remote Medium Single system None Partial None
An issue was discovered in QCMS 3.0.1. upload/System/Controller/backend/album.php has XSS.
532 CVE-2018-14974 79 XSS 2018-08-06 2018-10-03
3.5
None Remote Medium Single system None Partial None
An issue was discovered in QCMS 3.0.1. upload/System/Controller/backend/news.php has XSS.
533 CVE-2018-14973 79 XSS 2018-08-06 2018-10-03
3.5
None Remote Medium Single system None Partial None
An issue was discovered in QCMS 3.0.1. upload/System/Controller/backend/product.php has XSS.
534 CVE-2018-14972 79 XSS 2018-08-06 2018-10-03
3.5
None Remote Medium Single system None Partial None
An issue was discovered in QCMS 3.0.1. upload/System/Controller/backend/down.php has XSS.
535 CVE-2018-14971 79 XSS 2018-08-06 2018-10-03
3.5
None Remote Medium Single system None Partial None
An issue was discovered in QCMS 3.0.1. upload/System/Controller/backend/user.php has XSS.
536 CVE-2018-14970 79 XSS 2018-08-06 2018-10-03
3.5
None Remote Medium Single system None Partial None
An issue was discovered in QCMS 3.0.1. upload/System/Controller/backend/slideshow.php has XSS.
537 CVE-2018-14969 79 XSS 2018-08-06 2018-10-03
3.5
None Remote Medium Single system None Partial None
An issue was discovered in QCMS 3.0.1. upload/System/Controller/backend/system.php has XSS.
538 CVE-2018-14964 79 XSS 2018-08-06 2018-10-04
3.5
None Remote Medium Single system None Partial None
An issue was discovered in EMLsoft 5.4.5. XSS exists via the eml/upload/eml/?action=address&do=edit page.
539 CVE-2018-14962 79 XSS 2018-08-06 2018-10-04
3.5
None Remote Medium Single system None Partial None
zzcms 8.3 has stored XSS related to the content variable in user/manage.php and zt/show.php.
540 CVE-2018-14937 79 XSS 2018-08-04 2018-09-27
3.5
None Remote Medium Single system None Partial None
The Add page option in my little forum 2.4.12 allows XSS via the Menu Link field.
541 CVE-2018-14936 79 XSS 2018-08-04 2018-09-27
3.5
None Remote Medium Single system None Partial None
The Add page option in my little forum 2.4.12 allows XSS via the Title field.
542 CVE-2018-14934 284 2018-11-15 2018-12-19
3.3
None Local Network Low Not required Partial None None
The Bluetooth subsystem on Polycom Trio devices with software before 5.5.4 has Incorrect Access Control. An attacker can connect without authentication and subsequently record audio from the device microphone.
543 CVE-2018-14890 79 XSS 2018-09-21 2018-11-07
3.5
None Remote Medium Single system None Partial None
Vectra Networks Cognito Brain and Sensor before 4.2 contains a cross-site scripting (XSS) vulnerability in the Web Management Console.
544 CVE-2018-14877 79 XSS 2018-08-02 2018-09-27
3.5
None Remote Medium Single system None Partial None
An issue was discovered in WeaselCMS v0.3.5. XSS exists via Site Language, Site Title, Site Description, and Site Keywords on the SETTINGS page.
545 CVE-2018-14875 79 XSS 2019-04-30 2019-05-03
3.5
None Remote Medium Single system None Partial None
An issue was discovered in the Core and Portal modules in Polaris FT Intellect Core Banking 9.7.1. Reflected XSS exists with an authenticated session via the Customerid, formName, FrameId, or MODE parameter.
546 CVE-2018-14873 79 XSS 2018-08-02 2018-09-27
3.5
None Remote Medium Single system None Partial None
An issue was discovered in Rincewind 0.1. There is a cross-site scripting (XSS) vulnerability involving a p=account request to index.php and another file named commonPages.php.
547 CVE-2018-14869 79 XSS 2018-08-06 2018-10-04
3.5
None Remote Medium Single system None Partial None
PHP Template Store Script 3.0.6 allows XSS via the Address line 1, Address Line 2, Bank name, or A/C Holder name field in a profile.
548 CVE-2018-14853 476 Exec Code 2018-12-17 2019-01-08
3.3
None Local Network Low Not required None None Partial
A NULL pointer dereference in dhd_prot_txdata_write_flush in drivers/net/wireless/bcmdhd4358/dhd_msgbuf.c in the bcmdhd4358 Wi-Fi driver on the Samsung Galaxy S6 SM-G920F G920FXXU5EQH7 allows an attacker (who has obtained code execution on the Wi-Fi chip) to cause the device to reboot. The Samsung ID is SVE-2018-11783.
549 CVE-2018-14850 79 +Priv XSS 2018-08-13 2018-10-10
3.5
None Remote Medium Single system None Partial None
Stored XSS vulnerabilities in Tiki before 18.2, 15.7 and 12.14 allow an authenticated user injecting JavaScript to gain administrator privileges if an administrator opens a wiki page and moves the mouse pointer over a modified link or thumb image.
550 CVE-2018-14849 79 XSS 2018-08-13 2018-10-10
3.5
None Remote Medium Single system None Partial None
Tiki before 18.2, 15.7 and 12.14 has XSS via link attributes, related to lib/core/WikiParser/OutputLink.php and lib/parser/parserlib.php.
Total number of vulnerabilities : 4150   Page : 1 2 3 4 5 6 7 8 9 10 11 (This Page)12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.