CWE:
 

Topic
Date
Author
Med.
GIU Gallery Image Upload 0.3.1 SQL Injection
17.10.2018
Ihsan Sencan
Med.
Webmaster Atom Computer Software Counselling Improper Access Control Vulnerability
16.10.2018
KingSkrupellos
Med.
Solaris RSH Stack Clash Privilege Escalation
16.10.2018
Brendan Coles
High
HaPe PKH 1.1 Shell Upload
13.10.2018
Ihsan Sencan
Med.
ifwatchd Privilege Escalation
09.10.2018
Tim Brown
Med.
Ivanti Workspace Control Named Pipe Privilege Escalation
02.10.2018
Yorick Koster
Med.
Intel Extreme Tuning Utility 6.4.1.23 Code Execution / Privilege Escalation
29.09.2018
Stefan Kanthak
Med.
Joomla Com_BibleStudy Proclaim MediaFileForm Remote File Upload Vulnerability
28.09.2018
KingSkrupellos
Med.
PCProtect 4 8.35 Privilege Escalation
28.09.2018
Hashim Jawad
Med.
EE 4GEE Mini EE40_00_02.00_44 Privilege Escalation
27.09.2018
Osanda Malith Jayathis...
High
WordPress WP Insert 2.4.2 Arbitrary File Upload
27.09.2018
Mostafa Gharzi
Med.
Solaris EXTREMEPARR dtappgather Privilege Escalation
25.09.2018
Brendan Coles
Med.
EE 4GEE Mini Local Privilege Escalation
25.09.2018
Osanda Malith
Med.
Solaris libnspr NSPR_LOG_FILE Privilege Escalation
18.09.2018
Marco Ivaldi
Med.
STOPzilla AntiMalware 6.5.2.59 Privilege Escalation
15.09.2018
Parvez Anwar
Med.
Cisco Umbrella Roaming Client 2.0.168 Privilege Escalation
06.09.2018
ParagonSec
Med.
Go Pro Fusion Studio 1.2 Privilege Escalation
05.09.2018
Humberto Cabrera
Med.
Design & Developed by SoftBd Ltd. Bangladesh Education Portals Multiple Vulnerabilities
04.09.2018
KingSkrupellos
Med.
Argus Surveillance DVR 4.0.0.0 SYSTEM Privilege Escalation
30.08.2018
hyp3rlinx
Med.
Argus Surveillance DVR 4.0.0.0 Privilege Escalation
29.08.2018
hyp3rlinx
High
LiteCart 2.1.2 Arbitrary File Upload
28.08.2018
Haboob Team
Med.
PostgreSQL 9.4-0.5.3 Privilege Escalation
14.08.2018
Johannes Segitz
Med.
Rufus 3.0 / 3.1 Privilege Escalation
07.08.2018
Stefan Kanthak
Med.
Fortinet FortiClient 5.2.3 (Windows 10 x64 Creators) Local Privilege Escalation
05.08.2018
sickness and mschenk
Med.
Linux Kernel UDP Fragmentation Offset (UFO) Privilege Escalation
03.08.2018
h00die
Med.
VMWare Player 12.5.9 Privilege Escalation / Denial Of Service
03.08.2018
Stefan Kanthak
Med.
Imperva SecureSphere 11.5 / 12.0 / 13.0 Privilege Escalation
03.08.2018
0x09AL
Med.
Charles Proxy 4.2 Local Privilege Escalation
31.07.2018
Mark Wadham
High
WordPress Plugin Responsive Thumbnail Slider Arbitrary File Upload (Metasploit)
28.07.2018
Metasploit
High
Super CMS Blog Pro PHP Script 1.0 SQL Injection / Shell Upload
27.07.2018
ShanoWeb
Med.
CleanMyMac3 Local Privilege Escalation
27.07.2018
Chi Chou
Med.
Inteno’s IOPSYS (Authenticated) Local Privilege Escalation
26.07.2018
neonsea
Med.
Network Manager VPNC 1.2.4 Privilege Escalation
25.07.2018
Denis Andzakovic
Med.
PrestaShop < 1.6.1.19 AES CBC Privilege Escalation
20.07.2018
Charles Fol
Med.
Linux BPF Sign Extension Local Privilege Escalation
19.07.2018
h00die
High
Linux Kernel < 4.13.9 (Ubuntu 16.04/Fedora 27) Local Privilege Escalation
12.07.2018
ricklarabee
High
WAGO e!DISPLAY 7300T XSS / File Upload / Code Execution
12.07.2018
T. Weber
High
ShopNx Arbitrary File Upload
04.07.2018
L0RD
Med.
Copyright © 2008 - 2018 by DaMa SOFT WebSiteX5 İwGallery Manager Privilege Escalation Vulnerability
30.06.2018
KingSkrupellos
Med.
Powered by Quick.Cart & HOST[24] Fckeditor Arbitrary File Upload Vulnerability
26.06.2018
KingSkrupellos
Med.
KVM Nest Virtualization L1 Guest Privilege Escalation
26.06.2018
Felix Wilhelm
High
Intex Router N-150 Arbitrary File Upload
26.06.2018
Samrat Das
High
LaraChurch 1.0 Shell Upload
25.06.2018
ShanoWeb
Med.
Projekt i wykonanie Pro-Link strony internetowe FCKEditor Exploit
23.06.2018
KingSkrupellos
Med.
WordPress Design By SmartCat.Net ImageManager Plugin Remote File Upload Vulnerability
23.06.2018
KingSkrupellos
Med.
WordPress Design By SmartCatDesign.Net ImageManager Plugin Remote File Upload Vulnerability
23.06.2018
KingSkrupellos
Med.
Developed by Rate it Services Business Solutions Mājas lapu izstrāde FCKeditor Remote File Upload Vulnerability
23.06.2018
KingSkrupellos
Med.
WebArisi Hosting Htaccess File Admin Bypass Exploit
21.06.2018
KingSkrupellos
Med.
RSLinx Classic and FactoryTalk Linx Gateway Privilege Escalation
14.06.2018
LiquidWorm
Med.
Rockwell Automation RSLinx Classic / FactoryTalk Linx Gateway Privilege Escalation
14.06.2018
LiquidWorm
High
Redaxo CMS Mediapool Arbitrary File Upload
14.06.2018
h0n1gsp3cht
Med.
glibc realpath() Privilege Escalation
13.06.2018
halfdog
Med.
Gardenoma Remote File Upload Vulnerability
11.06.2018
Mr.T959
Med.
WordPress Theme Sydney by aThemes 2018 GravityForms Input Remote File Upload Vulnerability
08.06.2018
KingSkrupellos
Med.
Copyright © 2014 Indian Performing Art Center Admin Control Panel ByPass Vulnerability
08.06.2018
KingSkrupellos
High
NUUO NVRmini2 / NVRsolo Arbitrary File Upload
31.05.2018
M3@Pandas
High
Appnitro MachForm SQL Injection / Traversal / File Upload
31.05.2018
Amine Taouirsa
High
WordPress Peugeot Music 1.0 Shell Upload / Cross Site Request Forgery
25.05.2018
Mr.7z
High
PHP Login And User Management 4.1.0 Shell Upload
25.05.2018
Reginald Dodd
Med.
MySQL Blob Uploader 1.7 Cross Site Scripting / SQL Injection
24.05.2018
AkkuS
High
WordPress Plugin Peugeot Music Arbitrary File Upload
24.05.2018
Mr.7z
Med.
Easy File Uploader 1.7 SQL Injection / Cross-Site Scripting
23.05.2018
AkkuS
Med.
Reliable Datagram Sockets (RDS) Privilege Escalation
21.05.2018
Dan Rosenberg
Med.
Microsoft Windows Token Process Trust SID Access Check Bypass Privilege Escalation
18.05.2018
Google Security Resear...
Med.
AF_PACKET packet_set_ring Privilege Escalation
18.05.2018
Brendan Coles
High
MyBiz MyProcureNet 5.0.0 File Upload / Cross Site Scripting
15.05.2018
Fikri Fadzil
Med.
Libuser roothelper Privilege Escalation
14.05.2018
Brendan Coles
Med.
WordPress Plugin User Role Editor < 4.25 Privilege Escalation
07.05.2018
Tomislav Paskalev
Med.
Apache CouchDB 1.7.0 and 2.x before 2.1.1 Remote Privilege Escalation
24.04.2018
r4wd3r
High
Drupal Avatar Uploader 7.x-1.0-beta8 Arbitary File Download
23.04.2018
Larry W. Cashdollar
Med.
lastore-daemon D-Bus Privilege Escalation
23.04.2018
Brendan Coles
Med.
Microsoft Windows Kernel (Windows 7 x86) Local Privilege Escalation (MS16-039)
18.04.2018
xiaodaozhi
Med.
Microsoft Windows Kernel (Windows 7 x86) Local Privilege Escalation (MS17-017)
18.04.2018
xiaodaozhi
High
Sophos Cyberoam UTM CR25iNG 10.6.3 MR-5 Direct Object Reference
17.04.2018
Frogy
Med.
GNU Beep 1.3 HoleyBeep Local Privilege Escalation
13.04.2018
Pirhack
Low
WordPress Plugin WordPress File Upload 4.3.3 Stored XSS
11.04.2018
ManhNho
High
ProcessMaker Plugin Upload Exploit
04.04.2018
Brendan Coles
Med.
glibc LD_AUDIT libmemusage.so RHEL-Based Arbitrary DSO Load Privilege Escalation
31.03.2018
Marco Ivaldi
High
Vtiger CRM 6.3.0 Authenticated Arbitrary File Upload (Metasploit)
31.03.2018
Touhid M.Shaikh
High
ClipBucket < 4.0.0 - Release 4902 beats_uploader Unauthenticated Arbitrary File Upload
27.03.2018
Touhid M.Shaikh
Med.
LabF nfsAxe 3.7 Privilege Escalation
27.03.2018
bzyo
Med.
Kaseya Virtual System Administrator (VSA) Local Privilege Escalation
24.03.2018
Filip Palian
Med.
IBM Spectrum LSF Privilege Escalation
20.03.2018
John Fitzpatrick
Med.
Huawei Mate 7 /dev/hifi_misc Privilege Escalation
20.03.2018
pray3r
Med.
Linux Kernel 4.13 (Debian 9) Local Privilege Escalation
20.03.2018
anonymous
High
Linux Kernel < 4.4.0-21 (Ubuntu 16.04 x64) netfilter target_offset Local Privilege Escalation
20.03.2018
Vitaly Nikolenko
Med.
Linux Kernel < 3.5.0-23 (Ubuntu 12.04.2 x64) SOCK_DIAG SMEP Bypass Local Privilege Escalation
20.03.2018
Vitaly Nikolenko
Med.
Linux Kernel < 4.4.0-116 (Ubuntu 16.04.4) Local Privilege Escalation
20.03.2018
Bruce Leidl
Med.
Linux Kernel < 3.16.39 (Debian 8 x64) inotfiy Local Privilege Escalation
20.03.2018
Jeremy Huang
Med.
Sophos UTM 9.410 loginuser confd Service Privilege Escalation
06.03.2018
KoreLogic
High
Linux Kernel BadIRET Local Privilege Escalation
02.03.2018
Ren Kimura
Med.
NoMachine x86 < 6.0.80 nxfuse Privilege Escalation
23.02.2018
Fidus InfoSecurity
High
Joomla! Component Proclaim 9.1.1 Arbitrary File Upload
23.02.2018
Ihsan Sencan
Med.
MagniComp SysInfo mcsiwrapper Privilege Escalation
20.02.2018
Brendan Coles
High
Tejari Arbitrary File Upload
17.02.2018
Arvind Vishwakarma
Med.
ABRT raceabrt Privilege Escalation
16.02.2018
Brendan Coles
Med.
Juju-run Agent Privilege Escalation
12.02.2018
Brendan Coles
Med.
glibc LD_AUDIT Arbitrary DSO Load Privilege Escalation
11.02.2018
Brendan Coles
Med.
NetEx HyperIP 6.1.0 Privilege Escalation
11.02.2018
Matt Bergin
Med.
MalwareFox AntiMalware 2.74.0.150 Local Privilege Escalation
07.02.2018
Souhail Hammou


CVEMAP Search Results

CVE
Details
Description
2018-09-12
Low
CVE-2018-3655

Updating...
 

 
A vulnerability in a subsystem in Intel CSME before version 11.21.55, Intel Server Platform Services before version 4.0 and Intel Trusted Execution Engine Firmware before version 3.1.55 may allow an unauthenticated user to potentially modify or disclose information via physical access.

 
2018-08-17
High
CVE-2018-15350

Vendor: Kraftway
Software: 24f2xg route...
 

 
Router Default Credentials in Kraftway 24F2XG Router firmware version 3.5.30.1118 allow remote attackers to get privileged access to the router.

 
Medium
CVE-2018-15359

Vendor: Eltex
Software: Esp-200 firmware
 

 
An authenticated attacker with low privileges can use insecure sudo configuration to expand attack surface in Eltex ESP-200 firmware version 1.2.0.

 
2018-08-15
Low
CVE-2018-8253

Vendor: Microsoft
Software: Windows 10
 

 
An elevation of privilege vulnerability exists when Microsoft Cortana allows arbitrary website browsing on the lockscreen, aka "Microsoft Cortana Elevation of Privilege Vulnerability." This affects Windows Server 2016, Windows 10.

 
Medium
CVE-2018-8339

Vendor: Microsoft
Software: Windows 10
 

 
An elevation of privilege vulnerability exists in the Windows Installer when the Windows Installer fails to properly sanitize input leading to an insecure library loading behavior, aka "Windows Installer Elevation of Privilege Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2008, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers.

 
Medium
CVE-2018-8343

Vendor: Microsoft
Software: Windows 10
 

 
An elevation of privilege vulnerability exists in the Network Driver Interface Specification (NDIS) when ndis.sys fails to check the length of a buffer prior to copying memory to it, aka "Windows NDIS Elevation of Privilege Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers. This CVE ID is unique from CVE-2018-8342.

 
Medium
CVE-2018-8347

Vendor: Microsoft
Software: Windows 10
 

 
An elevation of privilege vulnerability exists in Microsoft Windows when the Windows kernel fails to properly handle parsing of certain symbolic links, aka "Windows Kernel Elevation of Privilege Vulnerability." This affects Windows Server 2016, Windows 10, Windows 10 Servers.

 
Medium
CVE-2018-8357

Vendor: Microsoft
Software: EDGE
 

 
An elevation of privilege vulnerability exists in Microsoft browsers allowing sandbox escape, aka "Microsoft Browser Elevation of Privilege Vulnerability." This affects Internet Explorer 11, Microsoft Edge.

 
Medium
CVE-2018-8404

Vendor: Microsoft
Software: Windows 10
 

 
An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka "Win32k Elevation of Privilege Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows Server 2012, Windows 8.1, Windows Server 2016, Windows Server 2008 R2, Windows 10, Windows 10 Servers. This CVE ID is unique from CVE-2018-8399.

 
Medium
CVE-2018-8405

Vendor: Microsoft
Software: Windows 10
 

 
An elevation of privilege vulnerability exists when the DirectX Graphics Kernel (DXGKRNL) driver improperly handles objects in memory, aka "DirectX Graphics Kernel Elevation of Privilege Vulnerability." This affects Windows Server 2012 R2, Windows RT 8.1, Windows Server 2016, Windows 8.1, Windows 10, Windows 10 Servers. This CVE ID is unique from CVE-2018-8400, CVE-2018-8401, CVE-2018-8406.

 

 


Copyright 2018, cxsecurity.com

 

Back to Top