CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
  Take a third party risk management course for FREE
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Security Vulnerabilities Published In April 2018

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
101 CVE-2018-10311 79 XSS 2018-04-24 2018-05-24
4.3
None Remote Medium Not required None Partial None
A vulnerability was discovered in WUZHI CMS 4.1.0. There is persistent XSS that allows remote attackers to inject arbitrary web script or HTML via the tag[pinyin] parameter to the /index.php?m=tags&f=index&v=add URI.
102 CVE-2018-10310 79 Exec Code XSS 2018-04-25 2018-06-13
3.5
None Remote Medium ??? None Partial None
A persistent cross-site scripting vulnerability has been identified in the web interface of the Catapult UK Cookie Consent plugin before 2.3.10 for WordPress that allows the execution of arbitrary HTML/script code in the context of a victim's browser.
103 CVE-2018-10309 79 XSS 2018-04-24 2018-06-06
3.5
None Remote Medium ??? None Partial None
The Responsive Cookie Consent plugin before 1.8 for WordPress mishandles number fields, leading to XSS.
104 CVE-2018-10305 Bypass 2018-04-24 2019-10-03
7.5
None Remote Low Not required Partial Partial Partial
The MessageSearch2 function in PersonalMessage.php in Simple Machines Forum (SMF) before 2.0.15 does not properly use the possible_users variable in a query, which might allow attackers to bypass intended access restrictions.
105 CVE-2018-10303 416 Exec Code 2018-04-23 2018-05-25
6.8
None Remote Medium Not required Partial Partial Partial
A use-after-free in Foxit Reader before 9.1 and PhantomPDF before 9.1 allows remote attackers to execute arbitrary code, aka iDefense ID V-y0nqfutlf3.
106 CVE-2018-10302 416 Exec Code 2018-04-23 2018-05-25
6.8
None Remote Medium Not required Partial Partial Partial
A use-after-free in Foxit Reader before 9.1 and PhantomPDF before 9.1 allows remote attackers to execute arbitrary code, aka iDefense ID V-jyb51g3mv9.
107 CVE-2018-10301 79 XSS Bypass 2018-04-23 2019-06-26
4.3
None Remote Medium Not required None Partial None
Cross-site scripting (XSS) vulnerability in the Web-Dorado Instagram Feed WD plugin before 1.3.1 Premium for WordPress allows remote attackers to inject arbitrary web script or HTML by passing payloads in a comment on an Instagram post.
108 CVE-2018-10300 79 XSS Bypass 2018-04-23 2019-06-26
4.3
None Remote Medium Not required None Partial None
Cross-site scripting (XSS) vulnerability in the Web-Dorado Instagram Feed WD plugin before 1.3.1 for WordPress allows remote attackers to inject arbitrary web script or HTML by passing payloads in an Instagram profile's bio.
109 CVE-2018-10299 190 Overflow 2018-04-23 2018-08-29
5.0
None Remote Low Not required None Partial None
An integer overflow in the batchTransfer function of a smart contract implementation for Beauty Ecosystem Coin (BEC), the Ethereum ERC20 token used in the Beauty Chain economic system, allows attackers to accomplish an unauthorized increase of digital assets by providing two _receivers arguments in conjunction with a large _value argument, as exploited in the wild in April 2018, aka the "batchOverflow" issue.
110 CVE-2018-10298 79 XSS 2018-04-22 2018-05-18
3.5
None Remote Medium ??? None Partial None
Discuz! DiscuzX through X3.4 has reflected XSS via forum.php?mod=post&action=newthread because data/template/1_diy_portal_view.tpl.php does not restrict the content.
111 CVE-2018-10297 79 XSS 2018-04-22 2018-05-18
3.5
None Remote Medium ??? None Partial None
Discuz! DiscuzX through X3.4 has stored XSS via the portal.php?mod=portalcp&ac=article URI, related to mishandling of IMG elements associated with remote images.
112 CVE-2018-10296 79 XSS 2018-04-22 2018-10-30
4.3
None Remote Medium Not required None Partial None
MiniCMS V1.10 has XSS via the mc-admin/post-edit.php title parameter.
113 CVE-2018-10295 352 CSRF 2018-04-22 2018-05-25
6.8
None Remote Medium Not required Partial Partial Partial
ChemCMS v1.0.6 has CSRF by using public/admin/user/addpost.html to add an administrator account.
114 CVE-2018-10289 835 DoS 2018-04-22 2021-12-14
4.3
None Remote Medium Not required None None Partial
In MuPDF 1.13.0, there is an infinite loop in the fz_skip_space function of the pdf/pdf-xref.c file. A remote adversary could leverage this vulnerability to cause a denial of service via a crafted pdf file.
115 CVE-2018-10286 522 2018-04-22 2019-10-03
4.0
None Remote Low ??? Partial None None
The Ericsson-LG iPECS NMS A.1Ac web application discloses sensitive information such as the NMS admin credentials and the PostgreSQL database credentials to logged-in users via the responses to certain HTTP POST requests. In order to be able to see the credentials in cleartext, an attacker needs to be authenticated.
116 CVE-2018-10285 732 Bypass 2018-04-22 2019-10-03
7.5
None Remote Low Not required Partial Partial Partial
The Ericsson-LG iPECS NMS A.1Ac web application uses incorrect access control mechanisms. Since the app does not use any sort of session ID, an attacker might bypass authentication.
117 CVE-2018-10284 89 Sql 2018-04-21 2018-06-13
7.5
None Remote Low Not required Partial Partial Partial
Adaltech G-Ticket v70 EME104 has SQL Injection via the mobile-loja/mensagem.asp eve_cod parameter.
118 CVE-2018-10283 89 Sql 2018-04-21 2018-06-13
7.5
None Remote Low Not required Partial Partial Partial
CliqueMania loja virtual 14 has SQL Injection via the patch/remote.php id parameter in a recomendar action.
119 CVE-2018-10268 79 XSS 2018-04-22 2018-05-25
3.5
None Remote Medium ??? None Partial None
An issue was discovered in FastAdmin V1.0.0.20180417_beta. There is XSS via the application\api\controller\User.php avatar parameter.
120 CVE-2018-10267 352 CSRF 2018-04-22 2018-05-25
6.8
None Remote Medium Not required Partial Partial Partial
WTCMS 1.0 has a CSRF vulnerability to add an administrator account via the index.php?admin&m=user&a=add_post URI.
121 CVE-2018-10266 352 CSRF 2018-04-22 2018-05-25
6.8
None Remote Medium Not required Partial Partial Partial
BEESCMS 4.0 has a CSRF vulnerability to add an administrator account via the admin/admin_admin.php?nav=list_admin_user&admin_p_nav=user URI.
122 CVE-2018-10265 352 CSRF 2018-04-22 2018-05-25
6.8
None Remote Medium Not required Partial Partial Partial
An issue was discovered in HongCMS v3.0.0. There is a CSRF vulnerability that can add an administrator account via the admin/index.php/users/save URI.
123 CVE-2018-10254 125 DoS 2018-04-21 2020-07-13
6.8
None Remote Medium Not required Partial Partial Partial
Netwide Assembler (NASM) 2.13 has a stack-based buffer over-read in the disasm function of the disasm/disasm.c file. Remote attackers could leverage this vulnerability to cause a denial of service or possibly have unspecified other impact via a crafted ELF file.
124 CVE-2018-10253 119 Overflow 2018-04-21 2018-05-22
5.0
None Remote Low Not required None None Partial
Paessler PRTG Network Monitor before 18.1.39.1648 mishandles stack memory during unspecified API calls.
125 CVE-2018-10250 79 XSS 2018-04-20 2018-05-21
3.5
None Remote Medium ??? None Partial None
iCMS V7.0.8 has XSS via the admincp.php keywords parameter in a weixin_category action, aka a WeChat Classified Management keyword search.
126 CVE-2018-10249 352 CSRF 2018-04-20 2018-05-22
6.8
None Remote Medium Not required Partial Partial Partial
baijiacms V3 has CSRF via index.php?mod=site&op=edituser&name=manager&do=user to add an administrator account.
127 CVE-2018-10248 352 CSRF 2018-04-20 2018-05-21
5.8
None Remote Medium Not required None Partial Partial
An issue was discovered in WUZHI CMS 4.1.0. There is a CSRF vulnerability that can delete any article via index.php?m=content&f=content&v=recycle_delete.
128 CVE-2018-10245 200 +Info 2018-04-20 2018-05-18
5.0
None Remote Low Not required Partial None None
A Full Path Disclosure vulnerability in AWStats through 7.6 allows remote attackers to know where the config file is allocated, obtaining the full path of the server, a similar issue to CVE-2006-3682. The attack can, for example, use the awstats.pl framename and update parameters.
129 CVE-2018-10238 119 Overflow 2018-04-20 2019-10-07
7.5
None Remote Low Not required Partial Partial Partial
bvlc.c in skarg BACnet Protocol Stack bacserv 0.9.1 and 0.8.5 is affected by a Buffer Overflow because of a lack of packet-size validation. The affected component is bacserv BACnet/IP BVLC forwarded NPDU. The function bvlc_bdt_forward_npdu() calls bvlc_encode_forwarded_npdu() which copies the content from the request into a local in the bvlc_bdt_forward_npdu() stack frame and clobbers the canary. The attack vector is: A BACnet/IP device with BBMD enabled based on this library connected to IP network. The fixed version is: 0.8.6.
130 CVE-2018-10237 770 DoS 2018-04-26 2022-04-06
4.3
None Remote Medium Not required None None Partial
Unbounded memory allocation in Google Guava 11.0 through 24.x before 24.1.1 allows remote attackers to conduct denial of service attacks against servers that depend on this library and deserialize attacker-provided data, because the AtomicDoubleArray class (when serialized with Java serialization) and the CompoundOrdering class (when serialized with GWT serialization) perform eager allocation without appropriate checks on what a client has sent and whether the data size is reasonable.
131 CVE-2018-10236 94 Exec Code 2018-04-19 2018-05-22
6.5
None Remote Low ??? Partial Partial Partial
POSCMS 3.2.18 allows remote attackers to execute arbitrary PHP code via the diy\dayrui\controllers\admin\Syscontroller.php 'add' function because an attacker can control the value of $data['name'] with no restrictions, and this value is written to the FCPATH.$file file.
132 CVE-2018-10235 94 Exec Code 2018-04-19 2018-05-22
6.5
None Remote Low ??? Partial Partial Partial
POSCMS 3.2.10 allows remote attackers to execute arbitrary PHP code via the diy\module\member\controllers\admin\Setting.php 'index' function because an attacker can control the value of $cache['setting']['ucssocfg'] in diy\module\member\models\Member_model.php and write this code into the api/ucsso/config.php file.
133 CVE-2018-10234 79 XSS 2018-04-23 2018-05-24
3.5
None Remote Medium ??? None Partial None
Authenticated Cross site Scripting exists in the User Profile & Membership plugin before 2.0.11 for WordPress via the "Account Deletion Custom Text" input field on the wp-admin/admin.php?page=um_options&section=account page.
134 CVE-2018-10233 352 CSRF 2018-04-23 2019-10-06
6.8
None Remote Medium Not required Partial Partial Partial
The User Profile & Membership plugin before 2.0.7 for WordPress has no mitigations implemented against cross site request forgery attacks. This is a structural finding throughout the entire plugin.
135 CVE-2018-10230 79 XSS 2018-04-19 2018-05-21
4.3
None Remote Medium Not required None Partial None
Zend Debugger in Zend Server before 9.1.3 has XSS, aka ZSR-2455.
136 CVE-2018-10227 79 XSS 2018-04-19 2018-10-30
3.5
None Remote Medium ??? None Partial None
MiniCMS v1.10 has XSS via the mc-admin/conf.php site_link parameter.
137 CVE-2018-10225 89 Sql 2018-04-19 2018-05-17
7.5
None Remote Low Not required Partial Partial Partial
thinkphp 3.1.3 has SQL Injection via the index.php s parameter.
138 CVE-2018-10224 352 CSRF 2018-04-19 2018-05-17
6.0
None Remote Medium ??? Partial Partial Partial
An issue was discovered in YzmCMS 3.8. There is a CSRF vulnerability that can add a tag via /index.php/admin/tag/add.html.
139 CVE-2018-10223 352 CSRF 2018-04-19 2018-05-17
6.0
None Remote Medium ??? Partial Partial Partial
An issue was discovered in YzmCMS 3.8. There is a CSRF vulnerability that can add an admin account via /index.php/admin/admin_manage/add.html.
140 CVE-2018-10222 352 CSRF 2018-04-19 2018-05-22
6.8
None Remote Medium Not required Partial Partial Partial
An issue was discovered in idreamsoft iCMS V7.0. There is a CSRF vulnerability that can add a Column via /admincp.php?app=article_category&do=save&frame=iPHP.
141 CVE-2018-10221 79 XSS 2018-04-19 2018-05-21
3.5
None Remote Medium ??? None Partial None
An issue was discovered in WUZHI CMS V4.1.0. There is a persistent XSS vulnerability that can steal the administrator cookies via the tag[tag] parameter to the index.php?m=tags&f=index&v=add&&_su=wuzhicms URI. After a website editor (whose privilege is lower than the administrator) logs in, he can add a new TAGS with the XSS payload.
142 CVE-2018-10220 918 File Inclusion 2018-04-19 2018-05-24
6.8
None Remote Medium Not required Partial Partial Partial
** DISPUTED ** Glastopf 3.1.3-dev has SSRF, as demonstrated by the abc.php a parameter. NOTE: the vendor indicates that this is intentional behavior because the product is a web application honeypot, and modules/handlers/emulators/rfi.py supports Remote File Inclusion emulation.
143 CVE-2018-10219 200 +Info 2018-04-19 2018-05-22
5.0
None Remote Low Not required Partial None None
baijiacms V3 has physical path leakage via an index.php?mod=mobile&name=member&do=index request.
144 CVE-2018-10213 79 XSS 2018-04-25 2018-05-24
3.5
None Remote Medium ??? None Partial None
An issue was discovered in Vaultize Enterprise File Sharing 17.05.31. There is XSS in invitation mail received from a different user, who can modify the HTML in that mail before sending it.
145 CVE-2018-10212 863 2018-04-25 2019-10-03
5.5
None Remote Low ??? Partial Partial None
An issue was discovered in Vaultize Enterprise File Sharing 17.05.31. There is improper authorization leading to creation of folders within another account via a modified device value.
146 CVE-2018-10211 639 2018-04-25 2019-10-03
5.0
None Remote Low Not required Partial None None
An issue was discovered in Vaultize Enterprise File Sharing 17.05.31. There is improper authorization when listing the history of another user via a modified "vaultize_session_id" value in a cookie.
147 CVE-2018-10210 640 2018-04-25 2018-05-25
5.0
None Remote Low Not required Partial None None
An issue was discovered in Vaultize Enterprise File Sharing 17.05.31. Enumeration of users is possible through the password-reset feature.
148 CVE-2018-10209 79 XSS 2018-04-25 2018-05-24
3.5
None Remote Medium ??? None Partial None
An issue was discovered in Vaultize Enterprise File Sharing 17.05.31. There is Stored XSS on the file or folder download pop-up via a crafted file or folder name.
149 CVE-2018-10208 79 XSS 2018-04-25 2018-05-24
4.3
None Remote Medium Not required None Partial None
An issue was discovered in Vaultize Enterprise File Sharing 17.05.31. There is anonymous reflected XSS on the error page via a /share/error?message= URI.
150 CVE-2018-10207 862 2018-04-25 2019-10-03
5.0
None Remote Low Not required Partial None None
An issue was discovered in Vaultize Enterprise File Sharing 17.05.31. An attacker can exploit Missing Authorization on the FlexPaperViewer SWF reader, and export files that should have been restricted, via vectors involving page-by-page access to a document in SWF format.
Total number of vulnerabilities : 1672   Page : 1 2 3 (This Page)4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.