# |
CVE ID
|
CWE ID
|
# of Exploits
|
Vulnerability Type(s)
|
Publish Date
|
Update Date
|
Score
|
Gained Access Level
|
Access
|
Complexity
|
Authentication
|
Conf.
|
Integ.
|
Avail.
|
13101 |
CVE-2018-7740 |
119 |
|
DoS Overflow |
2018-03-07 |
2018-10-31 |
4.9 |
None |
Local |
Low |
Not required |
None |
None |
Complete |
The resv_map_release function in mm/hugetlb.c in the Linux kernel through 4.15.7 allows local users to cause a denial of service (BUG) via a crafted application that makes mmap system calls and has a large pgoff argument to the remap_file_pages system call. |
13102 |
CVE-2018-7737 |
200 |
|
+Info |
2018-03-06 |
2019-04-16 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
** DISPUTED ** In Z-BlogPHP 1.5.1.1740, there is Web Site physical path leakage, as demonstrated by admin_footer.php or admin_footer.php. NOTE: the software maintainer disputes that this is a vulnerability. |
13103 |
CVE-2018-7736 |
79 |
|
XSS |
2018-03-06 |
2019-04-16 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
** DISPUTED ** In Z-BlogPHP 1.5.1.1740, cmd.php has XSS via the ZC_BLOG_SUBNAME parameter or ZC_UPLOAD_FILETYPE parameter. NOTE: the software maintainer disputes that this is a vulnerability. |
13104 |
CVE-2018-7735 |
89 |
|
Sql |
2018-03-06 |
2018-03-26 |
6.5 |
None |
Remote |
Low |
Single system |
Partial |
Partial |
Partial |
Afian FileRun (before 2018.02.13) suffers from a remote SQL injection vulnerability, when logged in as superuser, via the search parameter in a /?module=metadata§ion=cpanel&page=list_filetypes request. |
13105 |
CVE-2018-7734 |
89 |
|
Sql |
2018-03-06 |
2018-03-26 |
6.5 |
None |
Remote |
Low |
Single system |
Partial |
Partial |
Partial |
Afian FileRun (before 2018.02.13) suffers from a remote SQL injection vulnerability, when logged in as superuser, via the search parameter in a /?module=users§ion=cpanel&page=list request. |
13106 |
CVE-2018-7733 |
352 |
|
CSRF |
2018-03-06 |
2018-03-26 |
6.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
Partial |
An issue was discovered in YxtCMF 3.1. RbacController.class.php has CSRF, as demonstrated by modifying an administrator account via index.php/admin/user/add_post.html. |
13107 |
CVE-2018-7731 |
476 |
|
|
2018-03-06 |
2018-06-05 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
None |
Partial |
An issue was discovered in Exempi through 2.4.4. XMPFiles/source/FormatSupport/WEBP_Support.cpp does not check whether a bitstream has a NULL value, leading to a NULL pointer dereference in the WEBP::VP8XChunk class. |
13108 |
CVE-2018-7730 |
125 |
|
|
2018-03-06 |
2019-08-06 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
None |
Partial |
An issue was discovered in Exempi through 2.4.4. A certain case of a 0xffffffff length is mishandled in XMPFiles/source/FormatSupport/PSIR_FileWriter.cpp, leading to a heap-based buffer over-read in the PSD_MetaHandler::CacheFileData() function. |
13109 |
CVE-2018-7729 |
125 |
|
|
2018-03-06 |
2018-06-05 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
None |
Partial |
An issue was discovered in Exempi through 2.4.4. There is a stack-based buffer over-read in the PostScript_MetaHandler::ParsePSFile() function in XMPFiles/source/FileHandlers/PostScript_Handler.cpp. |
13110 |
CVE-2018-7728 |
125 |
|
|
2018-03-06 |
2018-06-05 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
None |
Partial |
An issue was discovered in Exempi through 2.4.4. XMPFiles/source/FileHandlers/TIFF_Handler.cpp mishandles a case of a zero length, leading to a heap-based buffer over-read in the MD5Update() function in third-party/zuid/interfaces/MD5.cpp. |
13111 |
CVE-2018-7727 |
772 |
|
DoS |
2018-03-06 |
2019-10-02 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
None |
Partial |
An issue was discovered in ZZIPlib 0.13.68. There is a memory leak triggered in the function zzip_mem_disk_new in memdisk.c, which will lead to a denial of service attack. |
13112 |
CVE-2018-7726 |
119 |
|
DoS Overflow |
2018-03-06 |
2018-10-31 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
None |
Partial |
An issue was discovered in ZZIPlib 0.13.68. There is a bus error caused by the __zzip_parse_root_directory function of zip.c. Attackers could leverage this vulnerability to cause a denial of service via a crafted zip file. |
13113 |
CVE-2018-7725 |
119 |
|
DoS Overflow |
2018-03-06 |
2018-10-31 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
None |
Partial |
An issue was discovered in ZZIPlib 0.13.68. An invalid memory address dereference was discovered in zzip_disk_fread in mmapped.c. The vulnerability causes an application crash, which leads to denial of service. |
13114 |
CVE-2018-7724 |
79 |
|
XSS CSRF |
2018-03-06 |
2018-03-26 |
3.5 |
None |
Remote |
Medium |
Single system |
None |
Partial |
None |
The management panel in Piwigo 2.9.3 has stored XSS via the name parameter in a /admin.php?page=photo-${photo_number} request. CSRF exploitation, related to CVE-2017-10681, may be possible. |
13115 |
CVE-2018-7723 |
79 |
|
XSS CSRF |
2018-03-06 |
2018-03-26 |
3.5 |
None |
Remote |
Medium |
Single system |
None |
Partial |
None |
The management panel in Piwigo 2.9.3 has stored XSS via the virtual_name parameter in a /admin.php?page=cat_list request, a different issue than CVE-2017-9836. CSRF exploitation, related to CVE-2017-10681, may be possible. |
13116 |
CVE-2018-7722 |
79 |
|
XSS CSRF |
2018-03-06 |
2018-03-26 |
3.5 |
None |
Remote |
Medium |
Single system |
None |
Partial |
None |
The management panel in Piwigo 2.9.3 has stored XSS via the name parameter in a /ws.php?format=json request. CSRF exploitation, related to CVE-2017-10681, may be possible. |
13117 |
CVE-2018-7721 |
79 |
|
XSS |
2018-03-07 |
2018-03-26 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
Cross Site Scripting (XSS) exists in MetInfo 6.0.0 via /feedback/index.php because app/system/feedback/web/feedback.class.php mishandles input data. |
13118 |
CVE-2018-7720 |
352 |
|
CSRF |
2018-03-07 |
2018-03-28 |
6.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
Partial |
A cross-site request forgery (CSRF) vulnerability exists in Western Bridge Cobub Razor 0.7.2 via /index.php?/user/createNewUser/, resulting in account creation. |
13119 |
CVE-2018-7719 |
22 |
|
Dir. Trav. |
2018-03-25 |
2018-04-18 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
Acrolinx Server before 5.2.5 on Windows allows Directory Traversal. |
13120 |
CVE-2018-7718 |
|
|
|
2018-11-08 |
2019-10-02 |
4.0 |
None |
Remote |
Low |
Single system |
None |
Partial |
None |
An issue was discovered in Telexy QPath 5.4.462. A low privileged authenticated user supplying a specially crafted serialized request to AdanitDataService.svc may modify user information, including but not limited to email address, username, and password, of other user accounts. The simplest attack approach is for the attacker to intercept their own password-change request and modify the username before the request reaches the server. Also, changing a victim's email address can have a similar account-takeover consequence. |
13121 |
CVE-2018-7717 |
79 |
|
XSS |
2018-03-05 |
2018-03-27 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
The htmlImageAddTitleAttribute function in sige.php in the Kubik-Rubik Simple Image Gallery Extended (SIGE) extension 3.2.3 for Joomla! has XSS via a crafted image header, as demonstrated by the Caption-Abstract header object in a JPEG file. This is fixed in 3.3.1. |
13122 |
CVE-2018-7714 |
617 |
|
DoS |
2018-03-05 |
2019-10-02 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
The validateInputImageSize function in modules/imgcodecs/src/loadsave.cpp in OpenCV 3.4.1 allows remote attackers to cause a denial of service (assertion failure) because (pixels <= (1<<30)) may be false. |
13123 |
CVE-2018-7713 |
617 |
|
DoS |
2018-03-05 |
2019-10-02 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
The validateInputImageSize function in modules/imgcodecs/src/loadsave.cpp in OpenCV 3.4.1 allows remote attackers to cause a denial of service (assertion failure) because (size.width <= (1<<20)) may be false. |
13124 |
CVE-2018-7712 |
617 |
|
DoS |
2018-03-05 |
2019-10-02 |
5.0 |
None |
Remote |
Low |
Not required |
None |
None |
Partial |
The validateInputImageSize function in modules/imgcodecs/src/loadsave.cpp in OpenCV 3.4.1 allows remote attackers to cause a denial of service (assertion failure) because (size.height <= (1<<20)) may be false. |
13125 |
CVE-2018-7711 |
347 |
|
|
2018-03-05 |
2018-03-29 |
6.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
Partial |
HTTPRedirect.php in the saml2 library in SimpleSAMLphp before 1.15.4 has an incorrect check of return values in the signature validation utilities, allowing an attacker to get invalid signatures accepted as valid by forcing an error during validation. This occurs because of a dependency on PHP functionality that interprets a -1 error code as a true boolean value. |
13126 |
CVE-2018-7707 |
79 |
|
XSS |
2018-03-14 |
2018-04-06 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
Cross-site scripting (XSS) vulnerability in SecurEnvoy SecurMail before 9.2.501 allows remote attackers to inject arbitrary web script or HTML via an HTML-formatted e-mail message. |
13127 |
CVE-2018-7706 |
22 |
|
Dir. Trav. |
2018-03-14 |
2018-04-06 |
4.0 |
None |
Remote |
Low |
Single system |
Partial |
None |
None |
Directory traversal vulnerability in SecurEnvoy SecurMail before 9.2.501 allows remote authenticated users to read arbitrary e-mail messages via a .. (dot dot) in the option2 parameter in an attachment action to secmail/getmessage.exe. |
13128 |
CVE-2018-7705 |
22 |
|
Dir. Trav. |
2018-03-14 |
2018-04-06 |
5.5 |
None |
Remote |
Low |
Single system |
Partial |
Partial |
None |
Directory traversal vulnerability in SecurEnvoy SecurMail before 9.2.501 allows remote authenticated users to read e-mail messages to arbitrary recipients via a .. (dot dot) in the filename parameter to secupload2/upload.aspx. |
13129 |
CVE-2018-7704 |
200 |
|
+Info |
2018-03-14 |
2018-04-06 |
4.0 |
None |
Remote |
Low |
Single system |
Partial |
None |
None |
SecurEnvoy SecurMail before 9.2.501 allows remote authenticated users to read arbitrary e-mail messages via the option1 parameter in a reply action to secmail/getmessage.exe. |
13130 |
CVE-2018-7703 |
79 |
|
XSS |
2018-03-14 |
2018-04-06 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
Cross-site scripting (XSS) vulnerability in SecurEnvoy SecurMail before 9.2.501 allows remote attackers to inject arbitrary web script or HTML via the mailboxid parameter to secmail/getmessage.exe. |
13131 |
CVE-2018-7702 |
862 |
|
|
2018-03-14 |
2019-10-02 |
6.4 |
None |
Remote |
Low |
Not required |
Partial |
Partial |
None |
SecurEnvoy SecurMail before 9.2.501 allows remote attackers to spoof transmission of arbitrary e-mail messages, resend e-mail messages to arbitrary recipients, or modify arbitrary message bodies and attachments by leveraging missing authentication and authorization. |
13132 |
CVE-2018-7701 |
352 |
|
CSRF |
2018-03-14 |
2018-04-06 |
5.8 |
None |
Remote |
Medium |
Not required |
None |
Partial |
Partial |
Multiple cross-site request forgery (CSRF) vulnerabilities in SecurEnvoy SecurMail before 9.2.501 allow remote attackers to hijack the authentication of arbitrary users for requests that (1) delete e-mail messages via a delete action in a request to secmail/getmessage.exe or (2) spoof arbitrary users and reply to their messages via a request to secserver/securectrl.exe. |
13133 |
CVE-2018-7700 |
352 |
|
Exec Code CSRF |
2018-03-27 |
2018-04-19 |
6.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
Partial |
DedeCMS 5.7 has CSRF with an impact of arbitrary code execution, because the partcode parameter in a tag_test_action.php request can specify a runphp field in conjunction with PHP code. |
13134 |
CVE-2018-7698 |
522 |
|
|
2018-03-05 |
2019-10-02 |
4.3 |
None |
Remote |
Medium |
Not required |
Partial |
None |
None |
An issue was discovered in D-Link mydlink+ 3.8.5 build 259 for DCS-933L 1.05.04 and DCS-934L 1.05.04 devices. The mydlink+ app sends the username and password for connected D-Link cameras (such as DCS-933L and DCS-934L) unencrypted from the app to the camera, allowing attackers to obtain these credentials and gain control of the camera including the ability to view the camera's stream and make changes without the user's knowledge. |
13135 |
CVE-2018-7692 |
601 |
|
|
2018-08-09 |
2018-10-05 |
5.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
None |
Unvalidated redirect vulnerability in in NetIQ eDirectory before 9.1.1 HF1. |
13136 |
CVE-2018-7691 |
|
|
|
2018-12-13 |
2019-10-09 |
4.0 |
None |
Remote |
Low |
Single system |
Partial |
None |
None |
A potential Remote Unauthorized Access in Micro Focus Fortify Software Security Center (SSC), versions 17.10, 17.20, 18.10 this exploitation could allow Remote Unauthorized Access |
13137 |
CVE-2018-7690 |
|
|
|
2018-12-13 |
2019-10-09 |
4.0 |
None |
Remote |
Low |
Single system |
Partial |
None |
None |
A potential Remote Unauthorized Access in Micro Focus Fortify Software Security Center (SSC), versions 17.10, 17.20, 18.10 this exploitation could allow Remote Unauthorized Access |
13138 |
CVE-2018-7689 |
862 |
|
|
2018-06-07 |
2019-10-09 |
4.0 |
None |
Remote |
Low |
Single system |
None |
Partial |
None |
Lack of permission checks in the InitializeDevelPackage function in openSUSE Open Build Service before 2.9.3 allowed authenticated users to modify packages where they do not have write permissions. |
13139 |
CVE-2018-7688 |
862 |
|
|
2018-06-07 |
2019-10-09 |
4.0 |
None |
Remote |
Low |
Single system |
None |
Partial |
None |
A missing permission check in the review handling of openSUSE Open Build Service before 2.9.3 allowed all authenticated users to modify sources in projects where they do not have write permissions. |
13140 |
CVE-2018-7687 |
119 |
|
Overflow |
2018-05-21 |
2019-10-09 |
4.6 |
None |
Local |
Low |
Not required |
Partial |
Partial |
Partial |
The Micro Focus Client for OES before version 2 SP4 IR8a has a vulnerability that could allow a local attacker to elevate privileges via a buffer overflow in ncfsd.sys. |
13141 |
CVE-2018-7686 |
200 |
|
+Info |
2018-08-09 |
2018-10-05 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
Information leakage vulnerability in NetIQ eDirectory before 9.1.1 HF1 due to shared memory usage. |
13142 |
CVE-2018-7685 |
347 |
|
|
2018-08-31 |
2019-10-09 |
4.6 |
None |
Local |
Low |
Not required |
Partial |
Partial |
Partial |
The decoupled download and installation steps in libzypp before 17.5.0 could lead to a corrupted RPM being left in the cache, where a later call would not display the corrupted RPM warning and allow installation, a problem caused by malicious warnings only displayed during download. |
13143 |
CVE-2018-7683 |
532 |
|
|
2018-06-21 |
2018-08-10 |
5.0 |
None |
Remote |
Low |
Not required |
Partial |
None |
None |
Micro Focus Solutions Business Manager versions prior to 11.4 might reveal certain sensitive information in server log files. |
13144 |
CVE-2018-7682 |
532 |
|
|
2018-06-22 |
2018-08-10 |
4.0 |
None |
Remote |
Low |
Single system |
Partial |
None |
None |
Micro Focus Solutions Business Manager versions prior to 11.4 allows a user to invoke SBM RESTful services across domains. |
13145 |
CVE-2018-7681 |
79 |
|
XSS |
2018-06-21 |
2018-08-10 |
3.5 |
None |
Remote |
Medium |
Single system |
None |
Partial |
None |
Micro Focus Solutions Business Manager versions prior to 11.4 allows JavaScript to be embedded in URLs placed in "Favorites" folder. If the user has certain administrative privileges then this vulnerability can impact other users in the system. |
13146 |
CVE-2018-7680 |
79 |
|
XSS |
2018-06-21 |
2018-08-10 |
4.3 |
None |
Remote |
Medium |
Not required |
None |
Partial |
None |
Micro Focus Solutions Business Manager versions prior to 11.4 can reflect back HTTP header values. |
13147 |
CVE-2018-7678 |
79 |
|
XSS |
2018-03-14 |
2019-10-09 |
3.5 |
None |
Remote |
Medium |
Single system |
None |
Partial |
None |
A cross site scripting vulnerability exist in the Administration Console in NetIQ Access Manager (NAM) 4.3 and 4.4. |
13148 |
CVE-2018-7677 |
352 |
|
CSRF |
2018-03-14 |
2019-10-09 |
6.8 |
None |
Remote |
Medium |
Not required |
Partial |
Partial |
Partial |
A CSRF exposure exists in NetIQ Access Manager (NAM) 4.4 Identity Server component. |
13149 |
CVE-2018-7676 |
200 |
|
+Info |
2018-03-28 |
2019-10-09 |
4.3 |
None |
Remote |
Medium |
Not required |
Partial |
None |
None |
The NetIQ Identity Manager, in versions prior to 4.7, userapp with log / trace enabled may leak sensitive information. |
13150 |
CVE-2018-7675 |
200 |
|
+Info |
2018-03-07 |
2019-10-09 |
3.5 |
None |
Remote |
Medium |
Single system |
Partial |
None |
None |
In NetIQ Sentinel before 8.1.x, a Sentinel user is logged into the Sentinel Web Interface. After performing some tasks within Sentinel the user does not log out but does go idle for a period of time. This in turn causes the interface to timeout so that it requires the user to re-authenticate. If another user is passing by and decides to login, their credentials are accepted. While The user does not inherit any of the other users privileges, they are able to view the previous screen. In this case it is possible that the user can see another users events or configuration information for whatever view is currently showing. |