CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Security Vulnerabilities (CVSS score between 6 and 6.99)

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
1551 CVE-2018-20972 352 CSRF 2019-08-16 2019-08-21
6.8
None Remote Medium Not required Partial Partial Partial
The companion-auto-update plugin before 3.2.1 for WordPress has CSRF.
1552 CVE-2018-20971 352 CSRF 2019-08-16 2019-08-21
6.8
None Remote Medium Not required Partial Partial Partial
The church-admin plugin before 1.2550 for WordPress has CSRF affecting the upload of a bible reading plan.
1553 CVE-2018-20968 352 CSRF 2019-08-14 2019-08-19
6.8
None Remote Medium Not required Partial Partial Partial
The wp-ultimate-exporter plugin before 1.4.2 for WordPress has CSRF.
1554 CVE-2018-20967 352 CSRF 2019-08-14 2019-08-19
6.8
None Remote Medium Not required Partial Partial Partial
The wp-ultimate-csv-importer plugin before 5.6.1 for WordPress has CSRF.
1555 CVE-2018-20964 352 CSRF 2019-08-13 2019-08-15
6.8
None Remote Medium Not required Partial Partial Partial
The contact-form-to-email plugin before 1.2.66 for WordPress has CSRF.
1556 CVE-2018-20934 358 2019-08-01 2019-08-12
6.4
None Remote Low Not required None Partial Partial
cPanel before 70.0.23 does not prevent e-mail account suspensions from being applied to unowned accounts (SEC-411).
1557 CVE-2018-20931 94 Exec Code 2019-08-01 2019-08-12
6.5
None Remote Low Single system Partial Partial Partial
cPanel before 70.0.23 allows demo accounts to execute code via the Landing Page (SEC-405).
1558 CVE-2018-20930 284 Bypass 2019-08-01 2019-08-12
6.4
None Remote Low Not required Partial Partial None
cPanel before 70.0.23 allows .htaccess restrictions bypass when Htaccess Optimization is enabled (SEC-401).
1559 CVE-2018-20912 20 Exec Code 2019-08-01 2019-08-02
6.5
None Remote Low Single system Partial Partial Partial
cPanel before 70.0.23 allows demo accounts to execute code via awstats (SEC-362).
1560 CVE-2018-20911 79 Exec Code XSS 2019-08-01 2019-08-02
6.5
None Remote Low Single system Partial Partial Partial
cPanel before 70.0.23 allows code execution because "." is in @INC during a Perl syntax check of cpaddonsup (SEC-359).
1561 CVE-2018-20895 20 2019-08-01 2019-08-07
6.5
None Remote Low Single system Partial Partial Partial
In cPanel before 71.9980.37, API tokens retain ACLs after those ACLs are removed from the corresponding accounts (SEC-393).
1562 CVE-2018-20882 20 2019-08-01 2019-08-08
6.6
None Local Medium Not required Partial Complete Complete
cPanel before 74.0.8 allows arbitrary file-write operations in the context of the root account during WHM Force Password Change (SEC-447).
1563 CVE-2018-20879 20 Exec Code 2019-08-01 2019-08-01
6.5
None Remote Low Single system Partial Partial Partial
cPanel before 74.0.8 allows demo accounts to execute arbitrary code via the Fileman::viewfile API (SEC-444).
1564 CVE-2018-20871 275 2019-07-30 2019-08-07
6.8
None Remote Medium Not required Partial Partial Partial
In Univa Grid Engine before 8.6.3, when configured for Docker jobs and execd spooling on root_squash, weak file permissions ("other" write access) occur in certain cases (GE-6890).
1565 CVE-2018-20864 20 2019-07-30 2019-07-31
6.4
None Remote Low Not required Partial Partial None
cPanel before 76.0.8 allows a persistent Virtual FTP accounts after removal of its associated domain (SEC-454).
1566 CVE-2018-20851 264 2019-07-10 2019-07-11
6.5
None Remote Low Single system Partial Partial Partial
Helpy before 2.2.0 allows agents to edit admins.
1567 CVE-2018-20848 352 XSS CSRF 2019-06-30 2019-07-02
6.8
None Remote Medium Not required Partial Partial Partial
Advisto PEEL SHOPPING 9.0.0 has CSRF via en/achat/caddie_ajout.php and en/achat/caddie_affichage.php, as demonstrated by an XSS payload in the couleurId[0] parameter to the latter.
1568 CVE-2018-20847 190 Overflow 2019-06-26 2019-06-28
6.8
None Remote Medium Not required Partial Partial Partial
An improper computation of p_tx0, p_tx1, p_ty0 and p_ty1 in the function opj_get_encoding_parameters in openjp2/pi.c in OpenJPEG through 2.3.0 can lead to an integer overflow.
1569 CVE-2018-20835 20 2019-04-30 2019-05-03
6.4
None Remote Low Not required None Partial Partial
A vulnerability was found in tar-fs before 1.16.2. An Arbitrary File Overwrite issue exists when extracting a tarball containing a hardlink to a file that already exists on the system, in conjunction with a later plain file with the same name as the hardlink. This plain file content replaces the existing file content.
1570 CVE-2018-20834 59 2019-04-30 2019-09-04
6.4
None Remote Low Not required None Partial Partial
A vulnerability was found in node-tar before version 4.4.2 (excluding version 2.2.2). An Arbitrary File Overwrite issue exists when extracting a tarball containing a hardlink to a file that already exists on the system, in conjunction with a later plain file with the same name as the hardlink. This plain file content replaces the existing file content. A patch has been applied to node-tar v2.2.2).
1571 CVE-2018-20819 119 DoS Overflow 2019-04-23 2019-04-30
6.8
None Remote Medium Not required Partial Partial Partial
io/ZlibCompression.cc in the decompression component in Dropbox Lepton 1.2.1 allows attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact by crafting a jpg image file. The root cause is a missing check of header payloads that may be (incorrectly) larger than the maximum file size.
1572 CVE-2018-20763 787 2019-02-06 2019-04-15
6.8
None Remote Medium Not required Partial Partial Partial
In GPAC 0.7.1 and earlier, gf_text_get_utf8_line in media_tools/text_import.c in libgpac_static.a allows an out-of-bounds write because of missing szLineConv bounds checking.
1573 CVE-2018-20762 119 Overflow 2019-02-06 2019-04-15
6.8
None Remote Medium Not required Partial Partial Partial
GPAC version 0.7.1 and earlier has a buffer overflow vulnerability in the cat_multiple_files function in applications/mp4box/fileimport.c when MP4Box is used for a local directory containing crafted filenames.
1574 CVE-2018-20761 119 Overflow 2019-02-06 2019-04-15
6.8
None Remote Medium Not required Partial Partial Partial
GPAC version 0.7.1 and earlier has a Buffer Overflow vulnerability in the gf_sm_load_init function in scene_manager.c in libgpac_static.a.
1575 CVE-2018-20760 787 2019-02-06 2019-04-15
6.8
None Remote Medium Not required Partial Partial Partial
In GPAC 0.7.1 and earlier, gf_text_get_utf8_line in media_tools/text_import.c in libgpac_static.a allows an out-of-bounds write because a certain -1 return value is mishandled.
1576 CVE-2018-20728 352 CSRF 2019-01-16 2019-01-22
6.8
None Remote Medium Not required Partial Partial Partial
A cross site request forgery (CSRF) vulnerability in NeDi before 1.7Cp3 allows remote attackers to escalate privileges via User-Management.php.
1577 CVE-2018-20727 78 Exec Code 2019-01-16 2019-10-02
6.5
None Remote Low Single system Partial Partial Partial
Multiple command injection vulnerabilities in NeDi before 1.7Cp3 allow authenticated users to execute code on the server side via the flt parameter to Nodes-Traffic.php, the dv parameter to Devices-Graph.php, or the tit parameter to drawmap.php.
1578 CVE-2018-20719 89 Sql 2019-01-15 2019-01-18
6.5
None Remote Low Single system Partial Partial Partial
In Tiki before 17.2, the user task component is vulnerable to a SQL Injection via the tiki-user_tasks.php show_history parameter.
1579 CVE-2018-20713 89 Sql 2019-01-15 2019-01-18
6.5
None Remote Low Single system Partial Partial Partial
Shopware before 5.4.3 allows SQL Injection by remote authenticated users, aka SW-21404.
1580 CVE-2018-20678 89 Sql 2019-03-28 2019-03-28
6.5
None Remote Low Single system Partial Partial Partial
LibreNMS through 1.47 allows SQL injection via the html/ajax_table.php sort[hostname] parameter, exploitable by authenticated users during a search.
1581 CVE-2018-20674 Exec Code 2019-01-08 2019-10-02
6.5
None Remote Low Single system Partial Partial Partial
D-Link DIR-822 C1 before v3.11B01Beta, DIR-822-US C1 before v3.11B01Beta, DIR-850L A* before v1.21B08Beta, DIR-850L B* before v2.22B03Beta, and DIR-880L A* before v1.20B02Beta devices allow authenticated remote command execution.
1582 CVE-2018-20618 125 2018-12-31 2019-10-02
6.8
None Remote Medium Not required Partial Partial Partial
ok-file-formats through 2018-10-16 has a heap-based buffer over-read in the ok_mo_decode2 function in ok_mo.c.
1583 CVE-2018-20617 119 Overflow 2018-12-31 2019-01-10
6.8
None Remote Medium Not required Partial Partial Partial
ok-file-formats through 2018-10-16 has a heap-based buffer overflow in the ok_csv_decode2 function in ok_csv.c.
1584 CVE-2018-20616 119 Overflow 2018-12-31 2019-01-10
6.8
None Remote Medium Not required Partial Partial Partial
ok-file-formats through 2018-10-16 has a heap-based buffer overflow in the ok_wav_decode_ms_adpcm_data function in ok_wav.c.
1585 CVE-2018-20613 352 CSRF 2018-12-30 2019-01-10
6.8
None Remote Medium Not required Partial Partial Partial
TEMMOKU T1.09 Beta allows admin/user/add CSRF.
1586 CVE-2018-20612 352 CSRF 2018-12-30 2019-01-16
6.8
None Remote Medium Not required Partial Partial Partial
UWA 2.3.11 allows index.php?g=admin&c=admin&a=add_admin_do CSRF.
1587 CVE-2018-20603 352 CSRF 2018-12-30 2019-01-10
6.8
None Remote Medium Not required Partial Partial Partial
Lei Feng TV CMS (aka LFCMS) 3.8.6 allows admin.php?s=/Member/add.html CSRF.
1588 CVE-2018-20599 94 Exec Code 2018-12-30 2019-01-04
6.5
None Remote Low Single system Partial Partial Partial
UCMS 1.4.7 allows remote attackers to execute arbitrary PHP code by entering this code during an index.php sadmin_fileedit action.
1589 CVE-2018-20598 352 CSRF 2018-12-30 2019-01-04
6.8
None Remote Medium Not required Partial Partial Partial
UCMS 1.4.7 has ?do=user_addpost CSRF.
1590 CVE-2018-20595 352 CSRF 2018-12-30 2019-01-14
6.8
None Remote Medium Not required Partial Partial Partial
A CSRF issue was discovered in web/authorization/oauth2/controller/OAuth2ClientController.java in hsweb 3.0.4 because the state parameter in the request is not compared with the state parameter in the session after user authentication is successful.
1591 CVE-2018-20556 89 Exec Code Sql 2019-03-21 2019-05-09
6.5
None Remote Low Single system Partial Partial Partial
SQL injection vulnerability in Booking Calendar plugin 8.4.3 for WordPress allows remote attackers to execute arbitrary SQL commands via the booking_id parameter.
1592 CVE-2018-20553 125 2018-12-28 2019-01-06
6.8
None Remote Medium Not required Partial Partial Partial
Tcpreplay before 4.3.1 has a heap-based buffer over-read in get_l2len in common/get.c.
1593 CVE-2018-20552 125 2018-12-28 2019-01-06
6.8
None Remote Medium Not required Partial Partial Partial
Tcpreplay before 4.3.1 has a heap-based buffer over-read in packet2tree in tree.c.
1594 CVE-2018-20549 190 2018-12-28 2019-04-04
6.8
None Remote Medium Not required Partial Partial Partial
There is an illegal WRITE memory access at caca/file.c (function caca_file_read) in libcaca 0.99.beta19.
1595 CVE-2018-20548 190 2018-12-28 2019-04-04
6.8
None Remote Medium Not required Partial Partial Partial
There is an illegal WRITE memory access at common-image.c (function load_image) in libcaca 0.99.beta19 for 1bpp data.
1596 CVE-2018-20545 190 2018-12-28 2019-04-04
6.8
None Remote Medium Not required Partial Partial Partial
There is an illegal WRITE memory access at common-image.c (function load_image) in libcaca 0.99.beta19 for 4bpp data.
1597 CVE-2018-20542 119 Overflow 2018-12-28 2019-01-11
6.8
None Remote Medium Not required Partial Partial Partial
There is a heap-based buffer-overflow at generator_spgemm_csc_reader.c (function libxsmm_sparse_csc_reader) in LIBXSMM 1.10, a different vulnerability than CVE-2018-20541 (which is in a different part of the source code and is seen at a different address).
1598 CVE-2018-20541 119 Overflow 2018-12-28 2019-01-11
6.8
None Remote Medium Not required Partial Partial Partial
There is a heap-based buffer overflow in libxsmm_sparse_csc_reader at generator_spgemm_csc_reader.c in LIBXSMM 1.10, a different vulnerability than CVE-2018-20542 (which is in a different part of the source code and is seen at different addresses).
1599 CVE-2018-20506 190 Exec Code Overflow 2019-04-03 2019-06-19
6.8
None Remote Medium Not required Partial Partial Partial
SQLite before 3.25.3, when the FTS3 extension is enabled, encounters an integer overflow (and resultant buffer overflow) for FTS3 queries in a "merge" operation that occurs after crafted changes to FTS3 shadow tables, allowing remote attackers to execute arbitrary code by leveraging the ability to run arbitrary SQL statements (such as in certain WebSQL use cases). This is a different vulnerability than CVE-2018-20346.
1600 CVE-2018-20468 74 Exec Code 2019-06-17 2019-06-17
6.8
None Remote Medium Not required Partial Partial Partial
An issue was discovered in Tyto Sahi Pro through 7.x.x and 8.0.0. A web reports module has "export to excel features" that are vulnerable to CSV injection. An attacker can embed Excel formulas inside an automation script that, when exported after execution, results in code execution.
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.