Latest CVE Feed

Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.

Latest Critical Actively Exploited Remotely Exploitable

8.0

HIGH

CVE-2018-11474

Monstra CMS 3.0.4 has a Session Management Issue in the Administrations Tab. A password change at admin/index.php?id=users&action=edit&user_id=1 does not invalidate a session that is open in a different browser....

Affected Products : monstra
Published: May. 25, 2018

Modified: Nov. 21, 2024
6.1

MEDIUM

CVE-2018-11473

Monstra CMS 3.0.4 has XSS in the registration Form (i.e., the login parameter to users/registration)....

Affected Products : monstra
Published: May. 25, 2018

Modified: Nov. 21, 2024
6.1

MEDIUM

CVE-2018-11472

Monstra CMS 3.0.4 has Reflected XSS during Login (i.e., the login parameter to admin/index.php)....

Affected Products : monstra
Published: May. 25, 2018

Modified: Nov. 21, 2024
5.4

MEDIUM

CVE-2018-11471

Cockpit 0.5.5 has XSS via a collection, form, or region....

Affected Products : cockpit
Published: May. 25, 2018

Modified: Nov. 21, 2024
8.8

HIGH

CVE-2018-11470

iScripts eSwap v2.4 has SQL injection via the "search.php" 'Told' parameter in the User Panel....

Affected Products : eswap
Published: May. 25, 2018

Modified: Nov. 21, 2024
5.9

MEDIUM

CVE-2018-11469

Incorrect caching of responses to requests including an Authorization header in HAProxy 1.8.0 through 1.8.9 (if cache enabled) allows attackers to achieve information disclosure via an unauthenticated remote request, related to the proto_http.c check_requ...

Affected Products : ubuntu_linux haproxy
Published: May. 25, 2018

Modified: Nov. 21, 2024
5.5

MEDIUM

CVE-2018-11468

The __mkd_trim_line function in mkdio.c in libmarkdown.a in DISCOUNT 2.2.3a allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted file, as demonstrated by mkd2html....

Affected Products : debian_linux discount
Published: May. 25, 2018

Modified: Nov. 21, 2024
9.8

CRITICAL

CVE-2018-11466

A vulnerability has been identified in SINUMERIK 808D V4.7 (All versions), SINUMERIK 808D V4.8 (All versions), SINUMERIK 828D V4.7 (All versions < V4.7 SP6 HF1), SINUMERIK 840D sl V4.7 (All versions < V4.7 SP6 HF5), SINUMERIK 840D sl V4.8 (All versions < ...

Affected Products : sinumerik_828d_v4.7_firmware sinumerik_840d_sl_v4.7_firmware sinumerik_840d_sl_v4.8_firmware sinumerik_808d_v4.7_firmware sinumerik_808d_v4.8_firmware sinumerik_828d_v4.7 sinumerik_840d_sl_v4.7 sinumerik_840d_sl_v4.8 sinumerik_808d_v4.7 sinumerik_808d_v4.8
Published: Dec. 12, 2018

Modified: Nov. 21, 2024
7.8

HIGH

CVE-2018-11465

A vulnerability has been identified in SINUMERIK 808D V4.7 (All versions), SINUMERIK 808D V4.8 (All versions), SINUMERIK 828D V4.7 (All versions < V4.7 SP6 HF1), SINUMERIK 840D sl V4.7 (All versions < V4.7 SP6 HF5), SINUMERIK 840D sl V4.8 (All versions < ...

Affected Products : sinumerik_828d_v4.7_firmware sinumerik_840d_sl_v4.7_firmware sinumerik_840d_sl_v4.8_firmware sinumerik_808d_v4.7_firmware sinumerik_808d_v4.8_firmware sinumerik_828d_v4.7 sinumerik_840d_sl_v4.7 sinumerik_840d_sl_v4.8 sinumerik_808d_v4.7 sinumerik_808d_v4.8
Published: Dec. 12, 2018

Modified: Nov. 21, 2024
4.3

MEDIUM

CVE-2018-11464

A vulnerability has been identified in SINUMERIK 828D V4.7 (All versions < V4.7 SP6 HF1), SINUMERIK 840D sl V4.7 (All versions < V4.7 SP6 HF5), SINUMERIK 840D sl V4.8 (All versions < V4.8 SP3). The integrated VNC server on port 5900/tcp of the affected pr...

Affected Products : sinumerik_828d_firmware sinumerik_840d_sl_firmware sinumerik_828d_v4.7_firmware sinumerik_840d_sl_v4.7_firmware sinumerik_840d_sl_v4.8_firmware sinumerik_808d_v4.7_firmware sinumerik_808d_v4.8_firmware sinumerik_828d sinumerik_840d_sl
Published: Dec. 12, 2018

Modified: Nov. 21, 2024
7.8

HIGH

CVE-2018-11463

A vulnerability has been identified in SINUMERIK 808D V4.7 (All versions), SINUMERIK 808D V4.8 (All versions), SINUMERIK 828D V4.7 (All versions < V4.7 SP6 HF1), SINUMERIK 840D sl V4.7 (All versions < V4.7 SP6 HF5), SINUMERIK 840D sl V4.8 (All versions < ...

Affected Products : sinumerik_828d_v4.7_firmware sinumerik_840d_sl_v4.7_firmware sinumerik_840d_sl_v4.8_firmware sinumerik_808d_v4.7_firmware sinumerik_808d_v4.8_firmware sinumerik_828d_v4.7 sinumerik_840d_sl_v4.7 sinumerik_840d_sl_v4.8 sinumerik_808d_v4.7 sinumerik_808d_v4.8
Published: Dec. 12, 2018

Modified: Nov. 21, 2024
9.8

CRITICAL

CVE-2018-11462

A vulnerability has been identified in SINUMERIK 808D V4.7 (All versions), SINUMERIK 808D V4.8 (All versions), SINUMERIK 828D V4.7 (All versions < V4.7 SP6 HF1), SINUMERIK 840D sl V4.7 (All versions < V4.7 SP6 HF5), SINUMERIK 840D sl V4.8 (All versions < ...

Affected Products : sinumerik_828d_v4.7_firmware sinumerik_840d_sl_v4.7_firmware sinumerik_840d_sl_v4.8_firmware sinumerik_808d_v4.7_firmware sinumerik_808d_v4.8_firmware sinumerik_828d_v4.7 sinumerik_840d_sl_v4.7 sinumerik_840d_sl_v4.8 sinumerik_808d_v4.7 sinumerik_808d_v4.8
Published: Dec. 12, 2018

Modified: Nov. 21, 2024
6.6

MEDIUM

CVE-2018-11461

A vulnerability has been identified in SINUMERIK 808D V4.7 (All versions), SINUMERIK 808D V4.8 (All versions), SINUMERIK 828D V4.7 (All versions < V4.7 SP6 HF1), SINUMERIK 840D sl V4.7 (All versions < V4.7 SP6 HF5), SINUMERIK 840D sl V4.8 (All versions < ...

Affected Products : sinumerik_828d_v4.7_firmware sinumerik_840d_sl_v4.7_firmware sinumerik_840d_sl_v4.8_firmware sinumerik_808d_v4.7_firmware sinumerik_808d_v4.8_firmware sinumerik_828d_v4.7 sinumerik_840d_sl_v4.7 sinumerik_840d_sl_v4.8 sinumerik_808d_v4.7 sinumerik_808d_v4.8
Published: Dec. 12, 2018

Modified: Nov. 21, 2024
7.8

HIGH

CVE-2018-11460

A vulnerability has been identified in SINUMERIK 808D V4.7 (All versions), SINUMERIK 808D V4.8 (All versions), SINUMERIK 828D V4.7 (All versions < V4.7 SP6 HF1), SINUMERIK 840D sl V4.7 (All versions < V4.7 SP6 HF5), SINUMERIK 840D sl V4.8 (All versions < ...

Affected Products : sinumerik_828d_v4.7_firmware sinumerik_840d_sl_v4.7_firmware sinumerik_840d_sl_v4.8_firmware sinumerik_808d_v4.7_firmware sinumerik_808d_v4.8_firmware sinumerik_828d_v4.7 sinumerik_840d_sl_v4.7 sinumerik_840d_sl_v4.8 sinumerik_808d_v4.7 sinumerik_808d_v4.8
Published: Dec. 12, 2018

Modified: Nov. 21, 2024
7.8

HIGH

CVE-2018-11459

A vulnerability has been identified in SINUMERIK 808D V4.7 (All versions), SINUMERIK 808D V4.8 (All versions), SINUMERIK 828D V4.7 (All versions < V4.7 SP6 HF1), SINUMERIK 840D sl V4.7 (All versions < V4.7 SP6 HF5), SINUMERIK 840D sl V4.8 (All versions < ...

Affected Products : sinumerik_828d_v4.7_firmware sinumerik_840d_sl_v4.7_firmware sinumerik_840d_sl_v4.8_firmware sinumerik_808d_v4.7_firmware sinumerik_808d_v4.8_firmware sinumerik_828d_v4.7 sinumerik_840d_sl_v4.7 sinumerik_840d_sl_v4.8 sinumerik_808d_v4.7 sinumerik_808d_v4.8
Published: Dec. 12, 2018

Modified: Nov. 21, 2024
9.3

HIGH

CVE-2018-11458

A vulnerability has been identified in SINUMERIK 828D V4.7 (All versions < V4.7 SP6 HF1), SINUMERIK 840D sl V4.7 (All versions < V4.7 SP6 HF5), SINUMERIK 840D sl V4.8 (All versions < V4.8 SP3). The integrated VNC server on port 5900/tcp of the affected pr...

Affected Products : sinumerik_828d_v4.7_firmware sinumerik_840d_sl_v4.7_firmware sinumerik_840d_sl_v4.8_firmware sinumerik_808d_v4.7_firmware sinumerik_808d_v4.8_firmware sinumerik_828d_v4.7 sinumerik_840d_sl_v4.7 sinumerik_840d_sl_v4.8
Published: Dec. 12, 2018

Modified: Nov. 21, 2024
9.3

HIGH

CVE-2018-11457

A vulnerability has been identified in SINUMERIK 828D V4.7 (All versions < V4.7 SP6 HF1), SINUMERIK 840D sl V4.7 (All versions < V4.7 SP6 HF5), SINUMERIK 840D sl V4.8 (All versions < V4.8 SP3). The integrated web server on port 4842/tcp of the affected pr...

Affected Products : sinumerik_828d_v4.7_firmware sinumerik_840d_sl_v4.7_firmware sinumerik_840d_sl_v4.8_firmware sinumerik_808d_v4.7_firmware sinumerik_808d_v4.8_firmware sinumerik_828d_v4.7 sinumerik_840d_sl_v4.7 sinumerik_840d_sl_v4.8
Published: Dec. 12, 2018

Modified: Nov. 21, 2024
5.8

MEDIUM

CVE-2018-11456

A vulnerability has been identified in Automation License Manager 5 (All versions < 5.3.4.4). An attacker with network access to the device could send specially crafted network packets to determine whether or not a network port on another remote system is...

Affected Products : automation_license_manager
Published: Aug. 07, 2018

Modified: Nov. 21, 2024
8.8

HIGH

CVE-2018-11455

A vulnerability has been identified in Automation License Manager 5 (All versions < 5.3.4.4), Automation License Manager 6 (All versions < 6.0.1). A directory traversal vulnerability could allow a remote attacker to move arbitrary files, which can result ...

Affected Products : automation_license_manager
Published: Aug. 07, 2018

Modified: Nov. 21, 2024
8.6

HIGH

CVE-2018-11454

A vulnerability has been identified in SIMATIC STEP 7 (TIA Portal) and WinCC (TIA Portal) V10, V11, V12 (All versions), SIMATIC STEP 7 (TIA Portal) and WinCC (TIA Portal) V13 (All versions < V13 SP2 Update 2), SIMATIC STEP 7 (TIA Portal) and WinCC (TIA Po...

Affected Products : simatic_step_7_\(tia_portal\) simatic_wincc_\(tia_portal\)
Published: Aug. 07, 2018

Modified: Nov. 21, 2024

Showing 20 of 294071 Results

Browse by Apps

Latest CVE Feed

8.0

6.1

6.1

5.4

8.8

5.9

5.5

9.8

7.8

4.3

7.8

9.8

6.6

7.8

7.8

9.3

9.3

5.8

8.8

8.6

CVEFeed.io UI Customizer

Layout

Vertical

Horizontal

Two Column

Color Scheme

Light

Dark

Layout Width

Fluid

Boxed

Layout Position

Topbar Color

Light

Dark

Sidebar Size

Default

Compact

Small (Icon View)

Small Hover View

Sidebar View

Default

Detached

Sidebar Color

Light

Dark

Gradient

Preloader

Enable

Disable