Latest CVE Feed
-
6.1
MEDIUMCVE-2018-14013
Synacor Zimbra Collaboration Suite Collaboration before 8.8.11 has XSS in the AJAX and html web clients.... Read more
Affected Products : zimbra_collaboration_suite- Published: May. 29, 2019
- Modified: Nov. 21, 2024
-
9.8
CRITICALCVE-2018-14012
WolfSight CMS 3.2 allows SQL injection via the PATH_INFO to the default URI.... Read more
Affected Products : wolfsight_cms- Published: Jul. 12, 2018
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2018-14010
OS command injection in the guest Wi-Fi settings feature in /cgi-bin/luci on Xiaomi R3P before 2.14.5, R3C before 2.12.15, R3 before 2.22.15, and R3D before 2.26.4 devices allows an attacker to execute any command via crafted JSON data.... Read more
Affected Products : xiaomi_r3p_firmware xiaomi_r3c_firmware xiaomi_r3d_firmware xiaomi_r3 xiaomi_r3p xiaomi_r3c xiaomi_r3d xiaomi_r3- Published: Jul. 15, 2018
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2018-14009
Codiad through 2.8.4 allows Remote Code Execution, a different vulnerability than CVE-2017-11366 and CVE-2017-15689.... Read more
Affected Products : codiad- Published: Jul. 12, 2018
- Modified: Nov. 21, 2024
-
6.5
MEDIUMCVE-2018-14008
Arista EOS through 4.21.0F allows a crash because 802.1x authentication is mishandled.... Read more
Affected Products : eos- Published: Aug. 15, 2019
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2018-14007
Citrix XenServer 7.1 and newer allows Directory Traversal.... Read more
Affected Products : xenserver- Published: Aug. 15, 2018
- Modified: Nov. 21, 2024
-
7.5
HIGHCVE-2018-14006
An integer overflow vulnerability exists in the function multipleTransfer of Neo Genesis Token (NGT), an Ethereum token smart contract. An attacker could use it to set any user's balance.... Read more
Affected Products : ngtoken- Published: Jul. 12, 2018
- Modified: Nov. 21, 2024
-
7.5
HIGHCVE-2018-14005
An integer overflow vulnerability exists in the function transferAny of Malaysia coins (Xmc), an Ethereum token smart contract. An attacker could use it to set any user's balance.... Read more
Affected Products : malaysiancoin- Published: Jul. 12, 2018
- Modified: Nov. 21, 2024
-
7.5
HIGHCVE-2018-14004
An integer overflow vulnerability exists in the function transfer_tokens_after_ICO of GlobeCoin (GLB), an Ethereum token smart contract. An attacker could use it to set any user's balance.... Read more
Affected Products : globecoin- Published: Jul. 12, 2018
- Modified: Nov. 21, 2024
-
7.5
HIGHCVE-2018-14003
An integer overflow vulnerability exists in the function batchTransfer of WeMediaChain (WMC), an Ethereum token smart contract. An attacker could use it to set any user's balance.... Read more
Affected Products : wmctoken- Published: Jul. 12, 2018
- Modified: Nov. 21, 2024
-
7.5
HIGHCVE-2018-14002
An integer overflow vulnerability exists in the function distribute of MP3 Coin (MP3), an Ethereum token smart contract. An attacker could use it to set any user's balance.... Read more
Affected Products : mp3_coin- Published: Jul. 12, 2018
- Modified: Nov. 21, 2024
-
7.5
HIGHCVE-2018-14001
An integer overflow vulnerability exists in the function batchTransfer of SHARKTECH (SKT), an Ethereum token smart contract. An attacker could use it to set any user's balance.... Read more
Affected Products : sharktech- Published: Jul. 12, 2018
- Modified: Nov. 21, 2024
-
4.8
MEDIUMCVE-2018-13999
Catfish CMS v4.7.9 allows XSS via the admin/Index/write.html editorValue parameter (aka an article posted by an administrator).... Read more
- Published: Jul. 12, 2018
- Modified: Nov. 21, 2024
-
4.8
MEDIUMCVE-2018-13998
ClipperCMS 1.3.3 has stored XSS via the Full Name field of (1) Security -> Manager Users or (2) Security -> Web Users.... Read more
Affected Products : clippercms- Published: Jul. 12, 2018
- Modified: Nov. 21, 2024
-
7.5
HIGHCVE-2018-13997
Genann through 2018-07-08 has a SEGV in genann_run in genann.c.... Read more
Affected Products : genann- Published: Jul. 12, 2018
- Modified: Nov. 21, 2024
-
9.8
CRITICALCVE-2018-13996
Genann through 2018-07-08 has a stack-based buffer over-read in genann_train in genann.c.... Read more
Affected Products : genann- Published: Jul. 12, 2018
- Modified: Nov. 21, 2024
-
7.5
HIGHCVE-2018-13994
The WebUI of PHOENIX CONTACT FL SWITCH 3xxx, 4xxx, 48xx versions 1.0 to 1.34 is vulnerable to a denial-of-service attack by making more than 120 connections.... Read more
Affected Products : fl_switch_3005_firmware fl_switch_3005t_firmware fl_switch_3004t-fx_firmware fl_switch_3004t-fx_st_firmware fl_switch_3008_firmware fl_switch_3008t_firmware fl_switch_3006t-2fx_firmware fl_switch_3006t-2fx_st_firmware fl_switch_3012e-2sfx_firmware fl_switch_3016e_firmware +48 more products- Published: May. 07, 2019
- Modified: Nov. 21, 2024
-
8.8
HIGHCVE-2018-13993
The WebUI of PHOENIX CONTACT FL SWITCH 3xxx, 4xxx, 48xx versions 1.0 to 1.34 is prone to CSRF.... Read more
Affected Products : fl_switch_3005_firmware fl_switch_3005t_firmware fl_switch_3004t-fx_firmware fl_switch_3004t-fx_st_firmware fl_switch_3008_firmware fl_switch_3008t_firmware fl_switch_3006t-2fx_firmware fl_switch_3006t-2fx_st_firmware fl_switch_3012e-2sfx_firmware fl_switch_3016e_firmware +48 more products- Published: May. 07, 2019
- Modified: Nov. 21, 2024
-
9.8
CRITICALCVE-2018-13992
The WebUI of PHOENIX CONTACT FL SWITCH 3xxx, 4xxx, 48xx versions 1.0 to 1.34 allows for plaintext transmission (HTTP) of user credentials by default.... Read more
Affected Products : fl_switch_3005_firmware fl_switch_3005t_firmware fl_switch_3004t-fx_firmware fl_switch_3004t-fx_st_firmware fl_switch_3008_firmware fl_switch_3008t_firmware fl_switch_3006t-2fx_firmware fl_switch_3006t-2fx_st_firmware fl_switch_3012e-2sfx_firmware fl_switch_3016e_firmware +48 more products- Published: May. 07, 2019
- Modified: Nov. 21, 2024
-
5.3
MEDIUMCVE-2018-13991
The WebUI of PHOENIX CONTACT FL SWITCH 3xxx, 4xxx, 48xx versions 1.0 to 1.34 leaks private information in firmware images.... Read more
Affected Products : fl_switch_3005_firmware fl_switch_3005t_firmware fl_switch_3004t-fx_firmware fl_switch_3004t-fx_st_firmware fl_switch_3008_firmware fl_switch_3008t_firmware fl_switch_3006t-2fx_firmware fl_switch_3006t-2fx_st_firmware fl_switch_3012e-2sfx_firmware fl_switch_3016e_firmware +48 more products- Published: May. 07, 2019
- Modified: Nov. 21, 2024