CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Security Vulnerabilities (CVSS score between 3 and 3.99)

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
701 CVE-2018-18381 79 XSS 2018-10-16 2019-09-23
3.5
None Remote Medium Single system None Partial None
Z-BlogPHP 1.5.2.1935 (Zero) has a stored XSS Vulnerability in zb_system/function/c_system_admin.php via the Content-Type header during the uploading of image attachments.
702 CVE-2018-18374 79 XSS 2018-10-15 2018-11-27
3.5
None Remote Medium Single system None Partial None
XSS exists in the MetInfo 6.1.2 admin/index.php page via the anyid parameter.
703 CVE-2018-18373 79 XSS 2018-10-17 2019-09-09
3.5
None Remote Medium Single system None Partial None
In the Schiocco "Support Board - Chat And Help Desk" plugin 1.2.3 for WordPress, a Stored XSS vulnerability has been discovered in file upload areas in the Chat and Help Desk sections via the msg parameter in a /wp-admin/admin-ajax.php sb_ajax_add_message action.
704 CVE-2018-18290 79 XSS 2018-10-14 2018-12-04
3.5
None Remote Medium Single system None Partial None
** DISPUTED ** An issue was discovered in nc-cms through 2017-03-10. index.php?action=edit_html&name=home_content allows XSS via the HTML Source Editor. NOTE: the vendor disputes this because the form requires administrator privileges, and entering JavaScript is supported functionality.
705 CVE-2018-18276 79 XSS 2019-04-26 2019-04-27
3.5
None Remote Medium Single system None Partial None
XSS exists in the ProFiles 1.5 component for Joomla! via the name or path parameter when creating a new folder in the administrative panel.
706 CVE-2018-18247 79 XSS 2018-12-17 2019-01-04
3.5
None Remote Medium Single system None Partial None
Icinga Web 2 before 2.6.2 has XSS via the /icingaweb2/navigation/add icon parameter.
707 CVE-2018-18245 79 XSS 2018-12-17 2019-01-04
3.5
None Remote Medium Single system None Partial None
Nagios Core 4.4.2 has XSS via the alert summary reports of plugin results, as demonstrated by a SCRIPT element delivered by a modified check_load plugin to NRPE.
708 CVE-2018-18087 79 XSS 2018-10-09 2018-11-23
3.5
None Remote Medium Single system None Partial None
The Bixie Portfolio plugin 1.2.0 for Pagekit has XSS: a logged-in user who has the "Manage portfolio" privilege can inject arbitrary web script or HTML via the Image URL field in the portfolio editor. The vulnerability is triggered by visiting /portfolio/${project_title}.
709 CVE-2018-18029 79 XSS 2018-10-09 2018-11-23
3.5
None Remote Medium Single system None Partial None
Navigate CMS has Stored XSS via the navigate.php Title field in an edit action.
710 CVE-2018-18021 20 DoS 2018-10-07 2019-04-02
3.6
None Local Low Not required None Partial Partial
arch/arm64/kvm/guest.c in KVM in the Linux kernel before 4.18.12 on the arm64 platform mishandles the KVM_SET_ON_REG ioctl. This is exploitable by attackers who can create virtual machines. An attacker can arbitrarily redirect the hypervisor flow of control (with full register control). An attacker can also cause a denial of service (hypervisor panic) via an illegal exception return. This occurs because of insufficient restrictions on userspace access to the core register file, and because PSTATE.M validation does not prevent unintended execution modes.
711 CVE-2018-17989 79 XSS 2019-04-01 2019-04-02
3.5
None Remote Medium Single system None Partial None
A stored XSS vulnerability exists in the web interface on D-Link DSL-3782 devices with firmware 1.01 that allows authenticated attackers to inject a JavaScript or HTML payload inside the ACL page. The injected payload would be executed in a user's browser when "/cgi-bin/New_GUI/Acl.asp" is requested.
712 CVE-2018-17955 59 2019-03-15 2019-10-09
3.6
None Local Low Not required None Partial Partial
In yast2-multipath before version 4.1.1 a static temporary filename allows local attackers to overwrite files on systems without symlink protection
713 CVE-2018-17928 287 Bypass 2019-01-31 2019-10-09
3.3
None Local Network Low Not required Partial None None
The product CMS-770 (Software Versions 1.7.1 and prior)is vulnerable that an attacker can read sensitive configuration files by bypassing the user authentication mechanism.
714 CVE-2018-17926 287 Bypass 2019-01-31 2019-10-09
3.3
None Local Network Low Not required None Partial None
The product M2M ETHERNET (FW Versions 2.22 and prior, ETH-FW Versions 1.01 and prior) is vulnerable in that an attacker can upload a malicious language file by bypassing the user authentication mechanism.
715 CVE-2018-17906 255 2018-11-19 2019-10-09
3.3
None Local Network Low Not required Partial None None
Philips iSite and IntelliSpace PACS, iSite PACS, all versions, and IntelliSpace PACS, all versions. Default credentials and no authentication within third party software may allow an attacker to compromise a component of the system.
716 CVE-2018-17886 79 XSS Bypass 2018-10-02 2018-11-16
3.5
None Remote Medium Single system None Partial None
An issue was discovered in JEESNS 1.3. The XSS filter in com.lxinet.jeesns.core.utils.XssHttpServletRequestWrapper.java could be bypassed, as demonstrated by a <svg/onLoad=confirm substring. NOTE: this vulnerability exists because of an incomplete fix for CVE-2018-12429.
717 CVE-2018-17868 79 XSS 2018-10-01 2018-11-16
3.5
None Remote Medium Single system None Partial None
DASAN H660GW devices have Stored XSS in the Port Forwarding functionality.
718 CVE-2018-17849 79 XSS 2018-10-04 2018-11-19
3.5
None Remote Medium Single system None Partial None
Navigate CMS 2.8 has Stored XSS via a navigate_upload.php (aka File Upload) request with a multipart/form-data JavaScript payload.
719 CVE-2018-17835 79 XSS 2018-10-01 2018-11-15
3.5
None Remote Medium Single system None Partial None
An issue was discovered in GetSimple CMS 3.3.15. An administrator can insert stored XSS via the admin/settings.php Custom Permalink Structure parameter, which injects the XSS payload into any page created at the admin/pages.php URI.
720 CVE-2018-17830 79 XSS 2018-10-01 2018-11-15
3.5
None Remote Medium Single system None Partial None
The $args variable in addons/mediapool/pages/index.php in REDAXO 5.6.2 is not effectively filtered, because names are not restricted (only values are restricted). The attacker can insert XSS payloads via an index.php?page=mediapool/media&opener_input_field=&args[ substring.
721 CVE-2018-17783 79 XSS 2018-10-30 2018-12-07
3.5
None Remote Medium Single system None Partial None
A cross-site scripting (XSS) vulnerability in the Edit Filter page (manage_filter_edit page.php) in MantisBT 2.1.0 through 2.17.1 allows remote attackers (if access rights permit it) to inject arbitrary code (if CSP settings permit it) through a crafted project name.
722 CVE-2018-17782 79 XSS 2018-10-30 2018-12-07
3.5
None Remote Medium Single system None Partial None
A cross-site scripting (XSS) vulnerability in the Manage Filters page (manage_filter_page.php) in MantisBT 2.1.0 through 2.17.1 allows remote attackers (if access rights permit it) to inject arbitrary code (if CSP settings permit it) through a crafted project name.
723 CVE-2018-17574 79 XSS 2018-09-28 2018-11-14
3.5
None Remote Medium Single system None Partial None
An issue was discovered in YMFE YApi 1.3.23. There is stored XSS in the name field of a project.
724 CVE-2018-17556 79 XSS 2018-09-26 2018-11-15
3.5
None Remote Medium Single system None Partial None
MODX Revolution v2.6.5-pl allows stored XSS via a Create New Media Source action.
725 CVE-2018-17490 269 DoS 2019-03-21 2019-10-09
3.6
None Local Low Not required None Partial Partial
EasyLobby Solo is vulnerable to a denial of service. By visiting the kiosk and accessing the task manager, a local attacker could exploit this vulnerability to kill the process or launch new processes at will.
726 CVE-2018-17486 254 Bypass 2019-03-21 2019-10-09
3.6
None Local Low Not required None Partial Partial
Lobby Track Desktop could allow a local attacker to bypass security restrictions, caused by an error in the find visitor function while in kiosk mode. By visiting the kiosk and selecting find visitor, an attacker could exploit this vulnerability to delete visitor records or remove a host.
727 CVE-2018-17484 200 +Info 2019-03-21 2019-10-09
3.6
None Local Low Not required Partial Partial None
Lobby Track Desktop could allow a local attacker to obtain sensitive information, caused by an error in Sample Database.mdb database while in kiosk mode. By using attack vectors outlined in kiosk breakout, an attacker could exploit this vulnerability to view and edit the database.
728 CVE-2018-17423 79 XSS 2019-06-19 2019-06-20
3.5
None Remote Medium Single system None Partial None
An issue was discovered in e107 v2.1.9. There is a XSS attack on e107_admin/comment.php.
729 CVE-2018-17369 79 XSS 2018-09-23 2018-11-15
3.5
None Remote Medium Single system None Partial None
An issue was discovered in springboot_authority through 2017-03-06. There is stored XSS via the admin/role/edit roleKey, name, or description parameter.
730 CVE-2018-17302 79 XSS 2018-09-21 2018-12-28
3.5
None Remote Medium Single system None Partial None
Stored XSS exists in views/fields/wysiwyg.js in EspoCRM 5.3.6 via a /#Email/view saved draft message.
731 CVE-2018-17301 79 XSS 2018-09-21 2018-12-28
3.5
None Remote Medium Single system None Partial None
Reflected XSS exists in client/res/templates/global-search/name-field.tpl in EspoCRM 5.3.6 via /#Account in the search panel.
732 CVE-2018-17300 79 XSS 2018-09-21 2019-09-16
3.5
None Remote Medium Single system None Partial None
Stored XSS exists in CuppaCMS through 2018-09-03 via an administrator/#/component/table_manager/view/cu_menus section name.
733 CVE-2018-17288 79 XSS 2019-04-18 2019-04-19
3.5
None Remote Medium Single system None Partial None
Kofax Front Office Server version 4.1.1.11.0.5212 (both Thin Client and Administration Console) suffers from multiple authenticated stored XSS vulnerabilities via the (1) "Filename" field in /Kofax/KFS/ThinClient/document/upload/ - (Thin Client) or (2) "DeviceName" field in /Kofax/KFS/Admin/DeviceService/device/ - (Administration Console).
734 CVE-2018-17256 79 XSS 2018-11-27 2018-12-31
3.5
None Remote Medium Single system None Partial None
Persistent cross-site scripting (XSS) vulnerability in Umbraco CMS 7.12.3 allows authenticated users to inject arbitrary web script via the Header Name of a content (Blog, Content Page, etc.). The vulnerability is exploited when updating or removing public access of a content.
735 CVE-2018-17218 79 XSS 2018-09-30 2019-09-26
3.5
None Remote Medium Single system None Partial None
An issue was discovered in PTC ThingWorx Platform 6.5 through 8.2. There is reflected XSS in the SQUEAL search function.
736 CVE-2018-17184 79 Exec Code XSS 2018-11-06 2018-12-13
3.5
None Remote Medium Single system None Partial None
A malicious user with enough administration entitlements can inject html-like elements containing JavaScript statements into Connector names, Report names, AnyTypeClass keys and Policy descriptions. When another user with enough administration entitlements edits one of the Entities above via Admin Console, the injected JavaScript code is executed.
737 CVE-2018-17147 79 XSS 2019-07-10 2019-07-11
3.5
None Remote Medium Single system None Partial None
Nagios XI before 5.5.4 has XSS in the auto login admin management page.
738 CVE-2018-17146 79 Exec Code XSS 2019-06-19 2019-06-23
3.5
None Remote Medium Single system None Partial None
A cross-site scripting vulnerability exists in Nagios XI before 5.5.4 via the 'name' parameter within the Account Information page. Exploitation of this vulnerability allows an attacker to execute arbitrary JavaScript code within the auto login admin management page.
739 CVE-2018-17140 79 XSS 2018-09-17 2018-11-09
3.5
None Remote Medium Single system None Partial None
The Quizlord plugin through 2.0 for WordPress is prone to Stored XSS via the title parameter in a ql_insert action to wp-admin/admin.php.
740 CVE-2018-17138 79 XSS 2018-09-17 2018-11-08
3.5
None Remote Medium Single system None Partial None
The Jibu Pro plugin through 1.7 for WordPress is prone to Stored XSS via the wp-content/plugins/jibu-pro/quiz_action.php name (aka Quiz Name) field.
741 CVE-2018-17130 79 XSS 2018-09-17 2018-11-01
3.5
None Remote Medium Single system None Partial None
PHPMyWind 5.5 has XSS in member.php via an HTTP Referer header,
742 CVE-2018-17128 79 XSS 2018-09-17 2018-11-07
3.5
None Remote Medium Single system None Partial None
A Persistent XSS issue was discovered in the Visual Editor in MyBB before 1.8.19 via a Video MyCode.
743 CVE-2018-17090 79 XSS 2018-09-16 2018-11-01
3.5
None Remote Medium Single system None Partial None
An issue was discovered in DonLinkage 6.6.8. The modules /pages/bazy/bazy_adresow.php and /pages/proxy/add.php are vulnerable to stored XSS that can be triggered by closing <textarea> followed by <script></script> tags.
744 CVE-2018-17044 79 XSS 2018-09-14 2018-11-09
3.5
None Remote Medium Single system None Partial None
In YzmCMS 5.1, stored XSS exists via the admin/system_manage/user_config_add.html title parameter.
745 CVE-2018-17026 79 XSS 2018-09-13 2018-10-30
3.5
None Remote Medium Single system None Partial None
admin/index.php in Monstra CMS 3.0.4 allows XSS via the page_meta_title parameter in an edit_page&name=error404 action, a different vulnerability than CVE-2018-10121.
746 CVE-2018-17024 79 XSS 2018-09-13 2019-07-23
3.5
None Remote Medium Single system None Partial None
admin/index.php in Monstra CMS 3.0.4 allows XSS via the page_meta_title parameter in an add_page action.
747 CVE-2018-16968 22 Dir. Trav. 2018-09-26 2018-11-23
3.5
None Remote Medium Single system None Partial None
Citrix ShareFile StorageZones Controller before 5.4.2 allows Directory Traversal.
748 CVE-2018-16950 20 DoS 2018-09-11 2018-11-27
3.3
None Local Network Low Not required None None Partial
Inteno DG400 WU7U_ELION3.11.6-170614_1328 devices allow remote attackers to cause a denial of service (connectivity loss) via a series of packets with random MAC addresses, as demonstrated by macof.
749 CVE-2018-16887 79 Exec Code +Priv XSS CSRF 2019-01-12 2019-05-14
3.5
None Remote Medium Single system None Partial None
A cross-site scripting (XSS) flaw was found in the katello component of Satellite. An attacker with privilege to create/edit organizations and locations is able to execute a XSS attacks against other users through the Subscriptions or the Red Hat Repositories wizards. This can possibly lead to malicious code execution and extraction of the anti-CSRF token of higher privileged users. Versions before 3.9.0 are vulnerable.
750 CVE-2018-16872 20 2018-12-13 2019-05-31
3.5
None Remote Medium Single system Partial None None
A flaw was found in qemu Media Transfer Protocol (MTP). The code opening files in usb_mtp_get_object and usb_mtp_get_partial_object and directories in usb_mtp_object_readdir doesn't consider that the underlying filesystem may have changed since the time lstat(2) was called in usb_mtp_object_alloc, a classical TOCTTOU problem. An attacker with write access to the host filesystem shared with a guest can use this property to navigate the host filesystem in the context of the QEMU process and read any file the QEMU process has access to. Access to the filesystem may be local or via a network share protocol such as CIFS.
Total number of vulnerabilities : 4556   Page : 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 (This Page)16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.