CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Security Vulnerabilities Published In November 2018

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
1 CVE-2018-19785 XSS 2018-11-30 2018-11-30
0.0
None ??? ??? ??? ??? ??? ???
PHP-Proxy through 5.1.0 has Cross-Site Scripting (XSS) via the URL field in index.php.
2 CVE-2018-19784 File Inclusion 2018-11-30 2018-11-30
0.0
None ??? ??? ??? ??? ??? ???
The str_rot_pass function in vendor/atholn1600/php-proxy/src/helpers.php in PHP-Proxy 5.1.0 uses weak cryptography, which makes it easier for attackers to calculate the authorization data needed for local file inclusion.
3 CVE-2018-19777 2018-11-30 2018-11-30
0.0
None ??? ??? ??? ??? ??? ???
In Artifex MuPDF 1.14.0, there is an infinite loop in the function svg_dev_end_tile in fitz/svg-device.c, as demonstrated by mutool.
4 CVE-2018-19763 DoS 2018-11-29 2018-11-29
0.0
None ??? ??? ??? ??? ??? ???
There is a heap-based buffer over-read at writer.c (function: write_png_to_file) in libsixel 1.8.2 that will cause a denial of service.
5 CVE-2018-19762 DoS Overflow 2018-11-29 2018-11-29
0.0
None ??? ??? ??? ??? ??? ???
There is a heap-based buffer overflow at fromsixel.c (function: image_buffer_resize) in libsixel 1.8.2 that will cause a denial of service or possibly unspecified other impact.
6 CVE-2018-19761 DoS 2018-11-29 2018-11-29
0.0
None ??? ??? ??? ??? ??? ???
There is an illegal address access at fromsixel.c (function: sixel_decode_raw_impl) in libsixel 1.8.2 that will cause a denial of service.
7 CVE-2018-19760 2018-11-29 2018-11-29
0.0
None ??? ??? ??? ??? ??? ???
cfg_init in confuse.c in libConfuse 3.2.2 has a memory leak.
8 CVE-2018-19759 DoS 2018-11-29 2018-11-29
0.0
None ??? ??? ??? ??? ??? ???
There is a heap-based buffer over-read at stb_image_write.h (function: stbi_write_png_to_mem) in libsixel 1.8.2 that will cause a denial of service.
9 CVE-2018-19758 DoS 2018-11-29 2018-11-29
0.0
None ??? ??? ??? ??? ??? ???
There is a heap-based buffer over-read at wav.c in wav_write_header in libsndfile 1.0.28 that will cause a denial of service.
10 CVE-2018-19757 DoS 2018-11-29 2018-11-29
0.0
None ??? ??? ??? ??? ??? ???
There is a NULL pointer dereference at function sixel_helper_set_additional_message (status.c) in libsixel 1.8.2 that will cause a denial of service.
11 CVE-2018-19756 DoS 2018-11-29 2018-11-29
0.0
None ??? ??? ??? ??? ??? ???
There is a heap-based buffer over-read at stb_image.h (function: stbi__tga_load) in libsixel 1.8.2 that will cause a denial of service.
12 CVE-2018-19755 DoS 2018-11-29 2018-11-29
0.0
None ??? ??? ??? ??? ??? ???
There is an illegal address access at asm/preproc.c (function: is_mmacro) in Netwide Assembler (NASM) 2.14rc16 that will cause a denial of service (out-of-bounds array access) because a certain conversion can result in a negative integer.
13 CVE-2018-19752 XSS 2018-11-29 2018-12-05
0.0
None ??? ??? ??? ??? ??? ???
DomainMOD through 4.11.01 has XSS via the assets/add/registrar.php notes field for the Registrar.
14 CVE-2018-19751 XSS 2018-11-29 2018-12-05
0.0
None ??? ??? ??? ??? ??? ???
DomainMOD through 4.11.01 has XSS via the admin/ssl-fields/add.php notes field for Custom SSL Fields.
15 CVE-2018-19750 XSS 2018-11-29 2018-12-05
0.0
None ??? ??? ??? ??? ??? ???
DomainMOD through 4.11.01 has XSS via the admin/domain-fields/ notes field in an Add Custom Field action for Custom Domain Fields.
16 CVE-2018-19749 XSS 2018-11-29 2018-12-05
0.0
None ??? ??? ??? ??? ??? ???
DomainMOD through 4.11.01 has XSS via the assets/add/account-owner.php Owner name field.
17 CVE-2018-19748 Dir. Trav. 2018-11-29 2018-11-29
0.0
None ??? ??? ??? ??? ??? ???
app/plug/attachment/controller/admincontroller.php in SDCMS 1.6 allows reading arbitrary files via a /?m=plug&c=admin&a=index&p=attachment&root= directory traversal. The value of the root parameter must be base64 encoded (note that base64 encoding, instead of URL encoding, is very rare in a directory traversal attack vector).
18 CVE-2018-19693 XSS 2018-11-29 2018-11-29
0.0
None ??? ??? ??? ??? ??? ???
An issue was discovered in tp5cms through 2017-05-25. admin.php/system/set.html has XSS via the title parameter.
19 CVE-2018-19692 Exec Code 2018-11-29 2018-11-29
0.0
None ??? ??? ??? ??? ??? ???
An issue was discovered in tp5cms through 2017-05-25. admin.php/upload/picture.html allows remote attackers to execute arbitrary PHP code by uploading a .php file with the image/jpeg content type.
20 CVE-2018-19666 Dir. Trav. 2018-11-29 2018-11-29
0.0
None ??? ??? ??? ??? ??? ???
The agent in OSSEC through 3.1.0 on Windows allows local users to gain NT AUTHORITY\SYSTEM access via Directory Traversal by leveraging full access to the associated OSSEC server.
21 CVE-2018-19664 2018-11-29 2018-11-29
0.0
None ??? ??? ??? ??? ??? ???
libjpeg-turbo 2.0.1 has a heap-based buffer over-read in the put_pixel_rows function in wrbmp.c, as demonstrated by djpeg.
22 CVE-2018-19662 DoS 2018-11-29 2018-11-29
0.0
None ??? ??? ??? ??? ??? ???
An issue was discovered in libsndfile 1.0.28. There is a buffer over-read in the function i2alaw_array in alaw.c that will lead to a denial of service.
23 CVE-2018-19661 DoS 2018-11-29 2018-11-29
0.0
None ??? ??? ??? ??? ??? ???
An issue was discovered in libsndfile 1.0.28. There is a buffer over-read in the function i2ulaw_array in ulaw.c that will lead to a denial of service.
24 CVE-2018-19655 Overflow 2018-11-29 2018-11-29
0.0
None ??? ??? ??? ??? ??? ???
A stack-based buffer overflow in the find_green() function of dcraw through 9.28, as used in ufraw-batch and many other products, may allow a remote attacker to cause a control-flow hijack, denial-of-service, or unspecified other impact via a maliciously crafted raw photo file.
25 CVE-2018-19654 2018-11-29 2018-11-29
0.0
None ??? ??? ??? ??? ??? ???
An issue was discovered in Sales & Company Management System (SCMS) through 2018-06-06. There is a discrepancy in username checking between a component that does string validation, and a component that is supposed to query a MySQL database. Thus, it is possible to register a new account with a duplicate username, as demonstrated by use of the test%c2 string when a test account already exists.
26 CVE-2018-19651 2018-11-28 2018-11-28
0.0
None ??? ??? ??? ??? ??? ???
admin/functions/remote.php in Interspire Email Marketer through 6.1.6 has Server Side Request Forgery (SSRF) via a what=importurl&url= request with an http or https URL. This also allows reading local files with a file: URL.
27 CVE-2018-19646 Exec Code 2018-11-28 2018-11-28
0.0
None ??? ??? ??? ??? ??? ???
The Python CGI scripts in PWS in Imperva SecureSphere 13.0.10, 13.1.10, and 13.2.10 allow remote attackers to execute arbitrary OS commands because command-line arguments are mishandled.
28 CVE-2018-19630 XSS 2018-11-28 2018-11-28
0.0
None ??? ??? ??? ??? ??? ???
cgi_handle_request in uhttpd in OpenWrt through 18.06.1 and LEDE through 17.01 has unauthenticated reflected XSS via the URI, as demonstrated by a cgi-bin/?[XSS] URI.
29 CVE-2018-19628 2018-11-28 2018-12-01
0.0
None ??? ??? ??? ??? ??? ???
In Wireshark 2.6.0 to 2.6.4, the ZigBee ZCL dissector could crash. This was addressed in epan/dissectors/packet-zbee-zcl-lighting.c by preventing a divide-by-zero error.
30 CVE-2018-19627 2018-11-28 2018-12-05
0.0
None ??? ??? ??? ??? ??? ???
In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the IxVeriWave file parser could crash. This was addressed in wiretap/vwr.c by adjusting a buffer boundary.
31 CVE-2018-19626 2018-11-28 2018-12-01
0.0
None ??? ??? ??? ??? ??? ???
In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the DCOM dissector could crash. This was addressed in epan/dissectors/packet-dcom.c by adding '\0' termination.
32 CVE-2018-19625 2018-11-28 2018-12-01
0.0
None ??? ??? ??? ??? ??? ???
In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the dissection engine could crash. This was addressed in epan/tvbuff_composite.c by preventing a heap-based buffer over-read.
33 CVE-2018-19624 2018-11-28 2018-12-01
0.0
None ??? ??? ??? ??? ??? ???
In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the PVFS dissector could crash. This was addressed in epan/dissectors/packet-pvfs2.c by preventing a NULL pointer dereference.
34 CVE-2018-19623 2018-11-28 2018-12-01
0.0
None ??? ??? ??? ??? ??? ???
In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the LBMPDM dissector could crash. In addition, a remote attacker could write arbitrary data to any memory locations before the packet-scoped memory. This was addressed in epan/dissectors/packet-lbmpdm.c by disallowing certain negative values.
35 CVE-2018-19622 Overflow 2018-11-28 2018-12-01
0.0
None ??? ??? ??? ??? ??? ???
In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the MMSE dissector could go into an infinite loop. This was addressed in epan/dissectors/packet-mmse.c by preventing length overflows.
36 CVE-2018-19621 CSRF 2018-11-28 2018-11-28
0.0
None ??? ??? ??? ??? ??? ???
server/index.php?s=/api/teamMember/save in ShowDoc 2.4.2 has a CSRF that can add members to a team.
37 CVE-2018-19620 2018-11-28 2018-11-28
0.0
None ??? ??? ??? ??? ??? ???
ShowDoc 2.4.1 allows remote attackers to edit other users' notes by navigating with a modified page_id.
38 CVE-2018-19609 +Info 2018-11-27 2018-11-27
0.0
None ??? ??? ??? ??? ??? ???
ShowDoc 2.4.1 allows remote attackers to obtain sensitive information by navigating with a modified page_id, as demonstrated by reading note content, or discovering a username in the JSON data at a diff URL.
39 CVE-2018-19607 DoS 2018-11-27 2018-11-27
0.0
None ??? ??? ??? ??? ??? ???
Exiv2::isoSpeed in easyaccess.cpp in Exiv2 v0.27-RC2 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted file.
40 CVE-2018-19595 Exec Code 2018-11-27 2018-11-27
0.0
None ??? ??? ??? ??? ??? ???
PbootCMS V1.3.1 build 2018-11-14 allows remote attackers to execute arbitrary code via use of "eval" with mixed case, as demonstrated by an index.php/list/5/?current={pboot:if(evAl($_GET[a]))}1{/pboot:if}&a=phpinfo(); URI, because of an incorrect apps\home\controller\ParserController.php parserIfLabel protection mechanism.
41 CVE-2018-19587 2018-11-27 2018-11-27
0.0
None ??? ??? ??? ??? ??? ???
In Cesanta Mongoose 6.13, a SIGSEGV exists in the mongoose.c mg_mqtt_add_session() function.
42 CVE-2018-19568 2018-11-26 2018-11-26
0.0
None ??? ??? ??? ??? ??? ???
A floating point exception in kodak_radc_load_raw in dcraw through 9.28 could be used by attackers able to supply malicious files to crash an application that bundles the dcraw code.
43 CVE-2018-19567 2018-11-26 2018-11-26
0.0
None ??? ??? ??? ??? ??? ???
A floating point exception in parse_tiff_ifd in dcraw through 9.28 could be used by attackers able to supply malicious files to crash an application that bundles the dcraw code.
44 CVE-2018-19566 +Info 2018-11-26 2018-11-26
0.0
None ??? ??? ??? ??? ??? ???
A heap buffer over-read in parse_tiff_ifd in dcraw through 9.28 could be used by attackers able to supply malicious files to crash an application that bundles the dcraw code or leak private information.
45 CVE-2018-19565 +Info 2018-11-26 2018-11-26
0.0
None ??? ??? ??? ??? ??? ???
A buffer over-read in crop_masked_pixels in dcraw through 9.28 could be used by attackers able to supply malicious files to crash an application that bundles the dcraw code or leak private information.
46 CVE-2018-19564 XSS 2018-11-26 2018-11-26
0.0
None ??? ??? ??? ??? ??? ???
Stored XSS was discovered in the Easy Testimonials plugin 3.2 for WordPress. Three wp-admin/post.php parameters (_ikcf_client and _ikcf_position and _ikcf_other) have Cross-Site Scripting.
47 CVE-2018-19562 Exec Code 2018-11-26 2018-11-26
0.0
None ??? ??? ??? ??? ??? ???
An issue was discovered in PHPok 4.9.015. admin.php?c=update&f=unzip allows remote attackers to execute arbitrary code via a "Login Background > Program Upgrade > Compressed Packet Upgrade" action in which a .php file is inside a ZIP archive.
48 CVE-2018-19561 CSRF 2018-11-26 2018-11-26
0.0
None ??? ??? ??? ??? ??? ???
sikcms 1.1 has CSRF via admin.php?m=Admin&c=Users&a=userAdd to add an administrator account.
49 CVE-2018-19560 CSRF 2018-11-26 2018-11-26
0.0
None ??? ??? ??? ??? ??? ???
BageCMS 3.1.3 has CSRF via upload/index.php?r=admini/admin/ownerUpdate to modify a user account.
50 CVE-2018-19559 Sql 2018-11-26 2018-11-26
0.0
None ??? ??? ??? ??? ??? ???
CuppaCMS before 2018-11-12 has SQL Injection in administrator/classes/ajax/functions.php via the reference_id parameter.
Total number of vulnerabilities : 982   Page : 1 (This Page)2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.