CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Security Vulnerabilities (CVSS score between 3 and 3.99)

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
3101 CVE-2018-16729 79 XSS 2018-09-12 2018-11-09
3.5
None Remote Medium ??? None Partial None
Pluck 4.7.7 allows XSS via an SVG file that contains Javascript in a SCRIPT element, and is uploaded via pages->manage under admin.php?action=files.
3102 CVE-2018-16728 79 XSS 2018-09-12 2018-11-02
3.5
None Remote Medium ??? None Partial None
feindura 2.0.7 allows XSS via the tags field of a new page created at index.php?category=0&page=new.
3103 CVE-2018-16727 79 XSS 2018-09-12 2018-11-02
3.5
None Remote Medium ??? None Partial None
razorCMS 3.4.7 allows Stored XSS via the keywords of the homepage within the settings component.
3104 CVE-2018-16726 79 XSS 2018-09-12 2018-11-02
3.5
None Remote Medium ??? None Partial None
razorCMS 3.4.7 allows HTML injection via the description of the homepage within the settings component.
3105 CVE-2018-16665 119 Overflow 2018-09-07 2018-10-26
3.6
None Local Low Not required None Partial Partial
An issue was discovered in Contiki-NG through 4.1. There is a buffer overflow while parsing AQL in lvm_shift_for_operator in os/storage/antelope/lvm.c.
3106 CVE-2018-16658 200 +Info 2018-09-07 2019-08-06
3.6
None Local Low Not required Partial None Partial
An issue was discovered in the Linux kernel before 4.18.6. An information leak in cdrom_ioctl_drive_status in drivers/cdrom/cdrom.c could be used by local attackers to read kernel memory because a cast from unsigned long to int interferes with bounds checking. This is similar to CVE-2018-10940.
3107 CVE-2018-16639 79 XSS 2019-05-13 2019-05-13
3.5
None Remote Medium ??? None Partial None
Typesetter 5.1 allows XSS via the index.php/Admin LABEL parameter during new page creation.
3108 CVE-2018-16638 79 XSS 2018-12-28 2019-02-26
3.5
None Remote Medium ??? None Partial None
Evolution CMS 1.4.x allows XSS via the manager/ search parameter.
3109 CVE-2018-16637 79 XSS 2018-12-28 2019-02-26
3.5
None Remote Medium ??? None Partial None
Evolution CMS 1.4.x allows XSS via the page weblink title parameter to the manager/ URI.
3110 CVE-2018-16635 79 XSS 2018-12-10 2019-02-26
3.5
None Remote Medium ??? None Partial None
Blackcat CMS 1.3.2 allows XSS via the willkommen.php?lang=DE page title at backend/pages/modify.php.
3111 CVE-2018-16633 79 XSS 2018-12-04 2019-02-26
3.5
None Remote Medium ??? None Partial None
Pluck v4.7.7 allows XSS via the admin.php?action=editpage&page= page title.
3112 CVE-2018-16632 79 XSS 2018-12-28 2019-02-26
3.5
None Remote Medium ??? None Partial None
Mezzanine CMS v4.3.1 allows XSS via the /admin/blog/blogcategory/add/?_to_field=id&_popup=1 title parameter at admin/blog/blogpost/add/.
3113 CVE-2018-16631 79 XSS 2018-12-04 2019-02-26
3.5
None Remote Medium ??? None Partial None
Subrion CMS v4.2.1 allows XSS via the panel/configuration/general/ SITE TITLE parameter.
3114 CVE-2018-16630 79 XSS 2018-12-28 2019-02-26
3.5
None Remote Medium ??? None Partial None
Kirby v2.5.12 allows XSS by using the "site files" Add option to upload an SVG file.
3115 CVE-2018-16629 79 XSS 2018-12-04 2019-02-26
3.5
None Remote Medium ??? None Partial None
panel/uploads/#elf_l1_XA in Subrion CMS v4.2.1 allows XSS via an SVG file with JavaScript in a SCRIPT element.
3116 CVE-2018-16628 79 XSS 2018-12-04 2019-02-26
3.5
None Remote Medium ??? None Partial None
panel/login in Kirby v2.5.12 allows XSS via a blog name.
3117 CVE-2018-16626 79 XSS 2019-05-13 2019-05-13
3.5
None Remote Medium ??? None Partial None
index.php/Admin/Classes in Typesetter 5.1 allows XSS via the description of a new class name.
3118 CVE-2018-16625 79 XSS 2019-05-13 2019-05-13
3.5
None Remote Medium ??? None Partial None
index.php/Admin/Uploaded in Typesetter 5.1 allows XSS via an SVG file with JavaScript in a SCRIPT element.
3119 CVE-2018-16624 79 XSS 2019-05-13 2019-05-13
3.5
None Remote Medium ??? None Partial None
panel/pages/home/edit in Kirby v2.5.12 allows XSS via the title of a new page.
3120 CVE-2018-16623 79 XSS 2019-05-13 2019-05-13
3.5
None Remote Medium ??? None Partial None
Kirby V2.5.12 is prone to a Persistent XSS attack via the Title of the "Site options" in the admin panel dashboard dropdown.
3121 CVE-2018-16622 79 XSS 2018-09-06 2018-11-02
3.5
None Remote Medium ??? None Partial None
Multiple cross-site scripting (XSS) vulnerabilities in /api/content/addOne in DoraCMS v2.0.3 allow remote attackers to inject arbitrary web script or HTML via the (1) discription or (2) comments field, related to users/userAddContent.
3122 CVE-2018-16607 79 XSS 2018-09-19 2018-11-07
3.5
None Remote Medium ??? None Partial None
Cross-site scripting (XSS) vulnerability in the Orgs Page in Open-AudIT Professional edition in 2.2.7 allows remote attackers to inject arbitrary web script via the Orgs name field.
3123 CVE-2018-16605 79 XSS 2018-09-12 2021-04-23
3.5
None Remote Medium ??? None Partial None
D-Link DIR-600M devices allow XSS via the Hostname and Username fields in the Dynamic DNS Configuration page.
3124 CVE-2018-16595 119 Overflow 2019-06-19 2019-06-24
3.3
None Local Network Low Not required None None Partial
The Photo Sharing Plus component on Sony Bravia TV through 8.587 devices has a Buffer Overflow.
3125 CVE-2018-16555 79 XSS 2018-12-13 2019-10-09
3.5
None Remote Medium ??? None Partial None
A vulnerability has been identified in SCALANCE S602 (All versions < V4.0.1.1), SCALANCE S612 (All versions < V4.0.1.1), SCALANCE S623 (All versions < V4.0.1.1), SCALANCE S627-2M (All versions < V4.0.1.1). The integrated web server could allow Cross-Site Scripting (XSS) attacks if unsuspecting users are tricked into accessing a malicious link. User interaction is required for a successful exploitation. The user must be logged into the web interface in order for the exploitation to succeed. At the stage of publishing this security advisory no public exploitation is known.
3126 CVE-2018-16551 79 XSS 2018-09-05 2019-10-15
3.5
None Remote Medium ??? None Partial None
LavaLite 5.5 has XSS via a /edit URI, as demonstrated by client/job/job/Zy8PWBekrJ/edit.
3127 CVE-2018-16484 79 Exec Code XSS 2019-02-01 2019-10-09
3.5
None Remote Medium ??? None Partial None
A XSS vulnerability was found in module m-server <1.4.2 that allows malicious Javascript code or HTML to be executed, due to the lack of escaping for special characters in folder names.
3128 CVE-2018-16468 79 XSS 2018-10-30 2019-10-09
3.5
None Remote Medium ??? None Partial None
In the Loofah gem for Ruby, through v2.2.2, unsanitized JavaScript may occur in sanitized output when a crafted SVG element is republished.
3129 CVE-2018-16464 287 2018-10-30 2019-10-09
3.5
None Remote Medium ??? Partial None None
A missing access check in Nextcloud Server prior to 14.0.0 could lead to continued access to password protected link shares when the owner had changed the password.
3130 CVE-2018-16463 384 2018-10-30 2019-10-09
3.6
None Remote High ??? Partial Partial None
A bug causing session fixation in Nextcloud Server prior to 14.0.0, 13.0.3 and 12.0.8 could potentially allow an attacker to obtain access to password protected shares.
3131 CVE-2018-16379 79 XSS 2018-09-03 2019-09-23
3.5
None Remote Medium ??? None Partial None
Ogma CMS 0.4 Beta has XSS via the "Footer Text footer" field on the "Theme/Theme Options" screen.
3132 CVE-2018-16374 79 XSS 2018-09-03 2018-10-24
3.5
None Remote Medium ??? None Partial None
Frog CMS 0.9.5 has stored XSS via /admin/?/plugin/comment/settings.
3133 CVE-2018-16363 79 XSS 2018-09-07 2018-11-06
3.5
None Remote Medium ??? None Partial None
The mndpsingh287 File Manager plugin V2.9 for WordPress has XSS via the lang parameter in a wp-admin/admin.php?page=wp_file_manager request because set_transient is used in file_folder_manager.php and there is an echo of lang in lib\wpfilemanager.php.
3134 CVE-2018-16358 79 XSS 2018-09-02 2018-10-24
3.5
None Remote Medium ??? None Partial None
A cross-site scripting (XSS) vulnerability in inc/core/class.dc.core.php in the media manager in Dotclear through 2.14.1 allows remote authenticated users to upload HTML content containing an XSS payload with the file extension .ahtml.
3135 CVE-2018-16348 79 XSS 2018-09-02 2018-10-25
3.5
None Remote Medium ??? None Partial None
SeaCMS V6.61 has XSS via the admin_video.php v_content parameter, related to the site name.
3136 CVE-2018-16346 79 XSS 2018-09-02 2018-11-09
3.5
None Remote Medium ??? None Partial None
ChemCMS 1.0.6 has XSS via the "setting -> website information" field.
3137 CVE-2018-16342 79 XSS 2018-09-02 2018-10-25
3.5
None Remote Medium ??? None Partial None
ShowDoc v1.8.0 has XSS via a new page.
3138 CVE-2018-16327 79 XSS 2018-09-01 2018-11-09
3.5
None Remote Medium ??? None Partial None
There is Stored XSS in Subrion 4.2.1 via the admin panel URL configuration.
3139 CVE-2018-16316 79 XSS 2018-09-01 2018-11-09
3.5
None Remote Medium ??? None Partial None
A stored Cross-site scripting (XSS) vulnerability in Portainer through 1.19.1 allows remote authenticated users to inject arbitrary JavaScript and/or HTML via the Team Name field.
3140 CVE-2018-16277 79 XSS 2018-09-28 2018-11-15
3.5
None Remote Medium ??? None Partial None
The Image Import function in XWiki through 10.7 has XSS.
3141 CVE-2018-16271 269 2020-01-22 2020-01-30
3.3
None Local Network Low Not required None Partial None
The wemail_consumer_service (from the built-in application wemail) in Samsung Galaxy Gear series allows an unprivileged process to manipulate a user's mailbox, due to improper D-Bus security policy configurations. An arbitrary email can also be sent from the mailbox via the paired smartphone. This affects Tizen-based firmwares including Samsung Galaxy Gear series before build RE2.
3142 CVE-2018-16268 269 2020-01-22 2020-02-03
3.3
None Local Network Low Not required None Partial None
The SoundServer/FocusServer system services in Tizen allow an unprivileged process to perform media-related system actions, due to improper D-Bus security policy configurations. Such actions include playing an arbitrary sound file or DTMF tones. This affects Tizen before 5.0 M1, and Tizen-based firmwares including Samsung Galaxy Gear series before build RE2.
3143 CVE-2018-16265 269 2020-01-22 2020-02-03
3.3
None Local Network Low Not required None Partial None
The bt/bt_core system service in Tizen allows an unprivileged process to create a system user interface and control the Bluetooth pairing process, due to improper D-Bus security policy configurations. This affects Tizen before 5.0 M1, and Tizen-based firmwares including Samsung Galaxy Gear series before build RE2.
3144 CVE-2018-16264 200 +Info 2020-01-22 2020-02-03
3.3
None Local Network Low Not required Partial None None
The BlueZ system service in Tizen allows an unprivileged process to partially control Bluetooth or acquire sensitive information, due to improper D-Bus security policy configurations. This affects Tizen before 5.0 M1, and Tizen-based firmwares including Samsung Galaxy Gear series before build RE2.
3145 CVE-2018-16250 79 XSS 2019-06-20 2019-06-21
3.5
None Remote Medium ??? None Partial None
The "utilisateur" menu in Creatiwity wityCMS 0.6.2 modifies the presence of XSS at two input points for user information, with the "first name" and "last name" parameters.
3146 CVE-2018-16249 79 XSS 2019-06-20 2019-06-21
3.5
None Remote Medium ??? None Partial None
In Symphony before 3.3.0, there is XSS in the Title under Post. The ID "articleTitle" of this is stored in the "articleTitle" JSON field, and executes a payload when accessing the /member/test/points URI, allowing remote attacks. Any Web script or HTML can be inserted by an admin-authenticated user via a crafted web site name.
3147 CVE-2018-16247 79 XSS 2019-06-20 2019-06-20
3.5
None Remote Medium ??? None Partial None
YzmCMS 5.1 has XSS via the admin/system_manage/user_config_add.html title parameter.
3148 CVE-2018-16243 79 XSS 2020-12-15 2020-12-17
3.5
None Remote Medium ??? None Partial None
SolarWinds Database Performance Analyzer (DPA) 11.1.468 and 12.0.3074 have several persistent XSS vulnerabilities, related to logViewer.iwc, centralManage.cen, userAdministration.iwc, database.iwc, alertManagement.iwc, eventAnnotations.iwc, and central.cen.
3149 CVE-2018-16219 287 2019-04-25 2019-04-26
3.3
None Local Network Low Not required None Partial None
A missing password verification in the web interface in AudioCodes 405HD VoIP phone with firmware 2.2.12 allows an remote attacker (in the same network as the device) to change the admin password without authentication via a POST request.
3150 CVE-2018-16205 79 XSS 2019-01-09 2019-01-16
3.5
None Remote Medium ??? None Partial None
Cross-site scripting vulnerability in GROWI v3.2.3 and earlier allows remote attackers to inject arbitrary web script or HTML via New Page modal.
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.