Lista CVE - 2018 / Ottobre
Visualizzazione 1401 - 1468 di 1468 CVE per Ottobre 2018 (Pagina 15 di 15)
| ID CVE | Data | Titolo |
|---|---|---|
| CVE-2018-18840 | 2018-10-30 | XSS was discovered in SEMCMS PHP V3.4 via the SEMCMS_SeoAndTag.php?Class=edit&CF=SeoAndTag... |
| CVE-2018-18841 | 2018-10-30 | XSS was discovered in SEMCMS PHP V3.4 via the SEMCMS_SeoAndTag.php?Class=edit&CF=SeoAndTag... |
| CVE-2018-18842 | 2018-10-30 | CSRF exists in zb_users/plugin/AppCentre/theme.js.php in Z-BlogPHP 1.5.2.1935 (Zero), which allows... |
| CVE-2018-0734 | 2018-10-30 | Timing attack against DSA |
| CVE-2015-7266 | 2018-10-30 | The Interactive Advertising Bureau (IAB) OpenRTB 2.3 protocol implementation might... |
| CVE-2015-5159 | 2018-10-30 | python-kdcproxy before 0.3.2 allows remote attackers to cause a denial... |
| CVE-2018-10532 | 2018-10-30 | An issue was discovered on EE 4GEE HH70VB-2BE8GB3 HH70_E1_02.00_19 devices.... |
| CVE-2018-10709 | 2018-10-30 | The AsrDrv101.sys and AsrDrv102.sys low-level drivers in ASRock RGBLED before... |
| CVE-2018-10710 | 2018-10-30 | The AsrDrv101.sys and AsrDrv102.sys low-level drivers in ASRock RGBLED before... |
| CVE-2018-10711 | 2018-10-30 | The AsrDrv101.sys and AsrDrv102.sys low-level drivers in ASRock RGBLED before... |
| CVE-2018-10712 | 2018-10-30 | The AsrDrv101.sys and AsrDrv102.sys low-level drivers in ASRock RGBLED before... |
| CVE-2018-17782 | 2018-10-30 | A cross-site scripting (XSS) vulnerability in the Manage Filters page... |
| CVE-2018-17783 | 2018-10-30 | A cross-site scripting (XSS) vulnerability in the Edit Filter page... |
| CVE-2018-18281 | 2018-10-30 | Since Linux kernel version 3.2, the mremap() syscall performs TLB... |
| CVE-2018-14558 | 2018-10-30 | An issue was discovered on Tenda AC7 devices with firmware... |
| CVE-2017-8931 | 2018-10-30 | Bitdefender GravityZone VMware appliance before 6.2.1-35 might allow attackers to... |
| CVE-2018-16461 | 2018-10-30 | A command injection vulnerability in libnmapp package for versions <0.4.16... |
| CVE-2018-16462 | 2018-10-30 | A command injection vulnerability in the apex-publish-static-files npm module version... |
| CVE-2018-16463 | 2018-10-30 | A bug causing session fixation in Nextcloud Server prior to... |
| CVE-2018-16464 | 2018-10-30 | A missing access check in Nextcloud Server prior to 14.0.0... |
| CVE-2018-16465 | 2018-10-30 | Missing state in Nextcloud Server prior to 14.0.0 would not... |
| CVE-2018-16466 | 2018-10-30 | Improper revalidation of permissions in Nextcloud Server prior to 14.0.0,... |
| CVE-2018-16467 | 2018-10-30 | A missing check in Nextcloud Server prior to 14.0.0 could... |
| CVE-2018-16468 | 2018-10-30 | In the Loofah gem for Ruby, through v2.2.2, unsanitized JavaScript... |
| CVE-2018-16469 | 2018-10-30 | The merge.recursive function in the merge package <1.2.1 can be... |
| CVE-2018-17931 | 2018-10-30 | If an attacker has physical access to the VGo Robot... |
| CVE-2018-17933 | 2018-10-30 | VGo Robot (Versions 3.0.3.52164 and 3.0.3.53662. Prior versions may also... |
| CVE-2018-8858 | 2018-10-30 | If an attacker has access to the firmware from the... |
| CVE-2018-18850 | 2018-10-31 | In Octopus Deploy 2018.8.0 through 2018.9.x before 2018.9.1, an authenticated... |
| CVE-2018-18853 | 2018-10-31 | Lightbend Spray spray-json through 1.3.4 allows remote attackers to cause... |
| CVE-2018-18854 | 2018-10-31 | Lightbend Spray spray-json through 1.3.4 allows remote attackers to cause... |
| CVE-2018-18867 | 2018-10-31 | An SSRF issue was discovered in tecrail Responsive FileManager 9.13.4... |
| CVE-2018-18868 | 2018-10-31 | No-CMS 1.1.3 is prone to Persistent XSS via a contact_us... |
| CVE-2018-18869 | 2018-10-31 | EmpireCMS V7.5 allows remote attackers to upload and execute arbitrary... |
| CVE-2016-2121 | 2018-10-31 | A permissions flaw was found in redis, which sets weak... |
| CVE-2016-5402 | 2018-10-31 | A code injection flaw was found in the way capacity... |
| CVE-2016-6343 | 2018-10-31 | JBoss BPM Suite 6 is vulnerable to a reflected XSS... |
| CVE-2018-1851 | 2018-10-31 | IBM WebSphere Application Server Liberty OpenID Connect could allow a... |
| CVE-2018-15317 | 2018-10-31 | In BIG-IP 14.0.0-14.0.0.2, 13.0.0-13.1.1.5, 12.1.0-12.1.4.1, and 11.2.1-11.6.3.2, an attacker sending... |
| CVE-2018-15318 | 2018-10-31 | In BIG-IP 14.0.0-14.0.0.2, 13.1.0.4-13.1.1.1, or 12.1.3.4-12.1.3.6, If an MPTCP connection... |
| CVE-2018-15319 | 2018-10-31 | On BIG-IP 14.0.0-14.0.0.2, 13.0.0-13.1.1.1, or 12.1.0-12.1.3.6, malicious requests made to... |
| CVE-2018-15320 | 2018-10-31 | On BIG-IP 14.0.0-14.0.0.2 or 13.0.0-13.1.1.1, undisclosed traffic patterns may lead... |
| CVE-2018-15321 | 2018-10-31 | When BIG-IP 14.0.0-14.0.0.2, 13.0.0-13.1.0.5, 12.1.0-12.1.3.5, 11.6.0-11.6.3.2, or 11.2.1-11.5.6, BIG-IQ Centralized... |
| CVE-2018-15322 | 2018-10-31 | On BIG-IP 14.0.0-14.0.0.2, 13.0.0-13.1.0.7, 12.1.0-12.1.3.5, 11.6.0-11.6.3.2, or 11.2.1-11.5.6, BIG-IQ Centralized... |
| CVE-2018-15323 | 2018-10-31 | On BIG-IP 14.0.0-14.0.0.2 or 13.0.0-13.1.1.1, in certain circumstances, when processing... |
| CVE-2018-15324 | 2018-10-31 | On BIG-IP APM 14.0.0-14.0.0.2 or 13.0.0-13.1.1.1, TMM may restart when... |
| CVE-2018-15325 | 2018-10-31 | In BIG-IP 14.0.0-14.0.0.2 or 13.0.0-13.1.1.1, iControl and TMSH usage by... |
| CVE-2018-15326 | 2018-10-31 | In some situations on BIG-IP APM 14.0.0-14.0.0.2, 13.0.0-13.1.0.7, 12.1.0-12.1.3.5, or... |
| CVE-2018-15327 | 2018-10-31 | In BIG-IP 14.0.0-14.0.0.2 or 13.0.0-13.1.1.1 or Enterprise Manager 3.1.1, when... |
| CVE-2018-18873 | 2018-10-31 | An issue was discovered in JasPer 2.0.14. There is a... |
| CVE-2018-13281 | 2018-10-31 | Information exposure vulnerability in SYNO.Core.ACL in Synology DiskStation Manager (DSM)... |
| CVE-2018-13282 | 2018-10-31 | Session fixation vulnerability in SYNO.PhotoStation.Auth in Synology Photo Station before... |
| CVE-2018-18874 | 2018-10-31 | nc-cms through 2017-03-10 allows remote attackers to execute arbitrary PHP... |
| CVE-2018-16839 | 2018-10-31 | Curl versions 7.33.0 through 7.61.1 are vulnerable to a buffer... |
| CVE-2018-16840 | 2018-10-31 | A heap use-after-free flaw was found in curl versions from... |
| CVE-2018-14652 | 2018-10-31 | The Gluster file system through versions 3.12 and 4.1.4 is... |
| CVE-2018-14653 | 2018-10-31 | The Gluster file system through versions 4.1.4 and 3.12 is... |
| CVE-2018-14654 | 2018-10-31 | The Gluster file system through version 4.1.4 is vulnerable to... |
| CVE-2018-14659 | 2018-10-31 | The Gluster file system through versions 4.1.4 and 3.1.2 is... |
| CVE-2018-16842 | 2018-10-31 | Curl versions 7.14.1 through 7.61.1 are vulnerable to a heap-based... |
| CVE-2016-2125 | 2018-10-31 | It was found that Samba before versions 4.5.3, 4.4.8, 4.3.13... |
| CVE-2018-11759 | 2018-10-31 | The Apache Web Server (httpd) specific code that normalised the... |
| CVE-2018-14661 | 2018-10-31 | It was found that usage of snprintf function in feature/locks... |
| CVE-2016-6328 | 2018-10-31 | A vulnerability was found in libexif. An integer overflow when... |
| CVE-2018-14651 | 2018-10-31 | It was found that the fix for CVE-2018-10927, CVE-2018-10928, CVE-2018-10929,... |
| CVE-2018-15705 | 2018-10-31 | WADashboard API in Advantech WebAccess 8.3.1 and 8.3.2 allows remote... |
| CVE-2018-15706 | 2018-10-31 | WADashboard API in Advantech WebAccess 8.3.1 and 8.3.2 allows remote... |
| CVE-2018-15707 | 2018-10-31 | Advantech WebAccess 8.3.1 and 8.3.2 are vulnerable to cross-site scripting... |