CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
  What's the CVSS score of your company?
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Security Vulnerabilities Published In February 2018

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
201 CVE-2018-7050 476 2018-02-15 2019-02-28
5.0
None Remote Low Not required None None Partial
An issue was discovered in Irssi before 1.0.7 and 1.1.x before 1.1.1. A NULL pointer dereference occurs for an "empty" nick.
202 CVE-2018-7046 78 Exec Code 2018-02-20 2019-02-28
9.0
None Remote Low ??? Complete Complete Complete
** DISPUTED ** Arbitrary code execution vulnerability in Kentico 9 through 11 allows remote authenticated users to execute arbitrary operating system commands in a dynamic .NET code evaluation context via C# code in a "Pages -> Edit -> Template -> Edit template properties -> Layout" box. NOTE: the vendor has responded that there is intended functionality for authorized users to edit and update ascx code layout.
203 CVE-2018-7039 119 DoS Overflow 2018-02-14 2018-03-15
7.5
None Remote Low Not required Partial Partial Partial
CCN-lite 2.0.0 Beta allows remote attackers to cause a denial of service (buffer overflow) or possibly have unspecified other impact because the ccnl_ndntlv_prependBlob function in ccnl-pkt-ndntlv.c can be called with wrong arguments. Specifically, there is an incorrect integer data type causing a negative third argument in some cases of crafted TLV data with inconsistent length information.
204 CVE-2018-7034 287 Bypass 2018-02-14 2020-08-24
5.0
None Remote Low Not required Partial None None
TRENDnet TEW-751DR v1.03B03, TEW-752DRU v1.03B01, and TEW733GR v1.03B01 devices allow authentication bypass via an AUTHORIZED_GROUP=1 value, as demonstrated by a request for getcfg.php.
205 CVE-2018-7032 74 Exec Code 2018-02-14 2020-08-24
5.1
None Remote High Not required Partial Partial Partial
webcheckout in myrepos through 1.20171231 does not sanitize URLs that are passed to git clone, allowing a malicious website operator or a MitM attacker to take advantage of it for arbitrary code execution, as demonstrated by an "ext::sh -c" attack or an option injection attack.
206 CVE-2018-6954 2018-02-13 2021-06-29
7.2
None Local Low Not required Complete Complete Complete
systemd-tmpfiles in systemd through 237 mishandles symlinks present in non-terminal path components, which allows local users to obtain ownership of arbitrary files via vectors involving creation of a directory and a file under that directory, and later replacing that directory with a symlink. This occurs even if the fs.protected_symlinks sysctl is turned on.
207 CVE-2018-6953 119 Overflow 2018-02-13 2018-03-16
7.5
None Remote Low Not required Partial Partial Partial
In CCN-lite 2, the Parser of NDNTLV does not verify whether a certain component's length field matches the actual component length, which has a resultant buffer overflow and out-of-bounds memory accesses.
208 CVE-2018-6952 415 2018-02-13 2019-04-17
5.0
None Remote Low Not required None None Partial
A double free exists in the another_hunk function in pch.c in GNU patch through 2.7.6.
209 CVE-2018-6951 476 DoS 2018-02-13 2019-04-17
5.0
None Remote Low Not required None None Partial
An issue was discovered in GNU patch through 2.7.6. There is a segmentation fault, associated with a NULL pointer dereference, leading to a denial of service in the intuit_diff_type function in pch.c, aka a "mangled rename" issue.
210 CVE-2018-6948 119 Overflow 2018-02-13 2018-03-16
7.5
None Remote Low Not required Partial Partial Partial
In CCN-lite 2, the function ccnl_prefix_to_str_detailed can cause a buffer overflow, when writing a prefix to the buffer buf. The maximal size of the prefix is CCNL_MAX_PREFIX_SIZE; the buffer has the size CCNL_MAX_PREFIX_SIZE. However, when NFN is enabled, additional characters are written to the buffer (e.g., the "NFN" and "R2C" tags). Therefore, sending an NFN-R2C packet with a prefix of size CCNL_MAX_PREFIX_SIZE can cause an overflow of buf inside ccnl_prefix_to_str_detailed.
211 CVE-2018-6947 665 DoS +Priv 2018-02-28 2019-10-03
7.2
None Local Low Not required Complete Complete Complete
An uninitialised stack variable in the nxfuse component that is part of the Open Source DokanFS library shipped with NoMachine 6.0.66_2 and earlier allows a local low privileged user to gain elevation of privileges on Windows 7 (32 and 64bit), and denial of service for Windows 8 and 10.
212 CVE-2018-6944 79 XSS 2018-02-16 2019-08-28
4.3
None Remote Medium Not required None Partial None
core/lib/upload/um-file-upload.php in the UltimateMember plugin 2.0 for WordPress has a cross-site scripting vulnerability because it fails to properly sanitize user input passed to the $temp variable.
213 CVE-2018-6943 79 XSS 2018-02-16 2019-08-28
4.3
None Remote Medium Not required None Partial None
core/lib/upload/um-image-upload.php in the UltimateMember plugin 2.0 for WordPress has a cross-site scripting vulnerability because it fails to properly sanitize user input passed to the $temp variable.
214 CVE-2018-6942 476 2018-02-13 2021-01-26
4.3
None Remote Medium Not required None None Partial
An issue was discovered in FreeType 2 through 2.9. A NULL pointer dereference in the Ins_GETVARIATION() function within ttinterp.c could lead to DoS via a crafted font file.
215 CVE-2018-6941 352 Exec Code XSS CSRF 2018-02-20 2018-03-13
6.8
None Remote Medium Not required Partial Partial Partial
A /shell?cmd= CSRF issue exists in the HTTPD component of NAT32 v2.2 Build 22284 devices that can be exploited for Remote Code Execution in conjunction with XSS.
216 CVE-2018-6940 352 Exec Code XSS CSRF 2018-02-20 2020-08-24
4.3
None Remote Medium Not required None Partial None
A /shell?cmd= XSS issue exists in the HTTPD component of NAT32 v2.2 Build 22284 devices that can be exploited for Remote Code Execution in conjunction with CSRF.
217 CVE-2018-6936 79 XSS 2018-02-21 2018-03-13
3.5
None Remote Medium ??? None Partial None
Cross Site Scripting (XSS) exists on the D-Link DIR-600M C1 3.01 via the SSID or the name of a user account.
218 CVE-2018-6930 125 DoS 2018-02-13 2019-10-03
4.3
None Remote Medium Not required None None Partial
A stack-based buffer over-read in the ComputeResizeImage function in the MagickCore/accelerate.c file of ImageMagick 7.0.7-22 allows a remote attacker to cause a denial of service (application crash) via a maliciously crafted pict file.
219 CVE-2018-6928 89 Sql 2018-02-13 2018-03-07
7.5
None Remote Low Not required Partial Partial Partial
PHP Scripts Mall News Website Script 2.0.4 has SQL Injection via a search term.
220 CVE-2018-6927 190 DoS Overflow 2018-02-12 2019-03-06
4.6
None Local Low Not required Partial Partial Partial
The futex_requeue function in kernel/futex.c in the Linux kernel before 4.14.15 might allow attackers to cause a denial of service (integer overflow) or possibly have unspecified other impact by triggering a negative wake or requeue value.
221 CVE-2018-6926 78 2018-02-12 2018-03-16
9.0
None Remote Low ??? Complete Complete Complete
In app/Controller/ServersController.php in MISP 2.4.87, a server setting permitted the override of a path variable on certain Red Hed Enterprise Linux and CentOS systems (where rh_shell_fix was enabled), and consequently allowed site admins to inject arbitrary OS commands. The impact is limited by the setting being only accessible to the site administrator.
222 CVE-2018-6912 125 DoS 2018-02-12 2020-03-30
4.3
None Remote Medium Not required None None Partial
The decode_plane function in libavcodec/utvideodec.c in FFmpeg through 3.4.2 allows remote attackers to cause a denial of service (out of array read) via a crafted AVI file.
223 CVE-2018-6911 78 Exec Code 2018-02-13 2019-08-02
10.0
None Remote Low Not required Complete Complete Complete
The VBWinExec function in Node\AspVBObj.dll in Advantech WebAccess 8.3.0 allows remote attackers to execute arbitrary OS commands via a single argument (aka the command parameter).
224 CVE-2018-6910 200 +Info 2018-02-13 2022-01-12
5.0
None Remote Low Not required Partial None None
DedeCMS 5.7 allows remote attackers to discover the full path via a direct request for include/downmix.inc.php or inc/inc_archives_functions.php.
225 CVE-2018-6893 89 Sql 2018-02-12 2018-03-06
7.5
None Remote Low Not required Partial Partial Partial
controllers/member/Api.php in dayrui FineCms 5.2.0 has SQL Injection: a request with s=member,c=api,m=checktitle, and the parameter 'module' with a SQL statement, lacks effective filtering.
226 CVE-2018-6892 119 Exec Code Overflow 2018-02-11 2020-10-06
7.5
None Remote Low Not required Partial Partial Partial
An issue was discovered in CloudMe before 1.11.0. An unauthenticated remote attacker that can connect to the "CloudMe Sync" client application listening on port 8888 can send a malicious payload causing a buffer overflow condition. This will result in an attacker controlling the program's execution flow and allowing arbitrary code execution.
227 CVE-2018-6891 79 XSS 2018-02-11 2018-02-27
4.3
None Remote Medium Not required None Partial None
Bookly #1 WordPress Booking Plugin Lite before 14.5 has XSS via a jQuery.ajax request to ng-payment_details_dialog.js.
228 CVE-2018-6890 79 XSS 2018-02-22 2018-03-06
3.5
None Remote Medium ??? None Partial None
Cross-site scripting (XSS) vulnerability in Wolf CMS 0.8.3.1 via the page editing feature, as demonstrated by /?/admin/page/edit/3.
229 CVE-2018-6889 94 2018-02-12 2018-03-06
6.5
None Remote Low ??? Partial Partial Partial
An issue was discovered in Typesetter 5.1. It suffers from a Host header injection vulnerability, Using this attack, a malicious user can poison the web cache or perform advanced password reset attacks or even trigger arbitrary user re-direction.
230 CVE-2018-6888 352 CSRF 2018-02-12 2018-03-06
6.0
None Remote Medium ??? Partial Partial Partial
An issue was discovered in Typesetter 5.1. The User Permissions page (aka Admin/Users) suffers from critical flaw of Cross Site Request forgery: using a forged HTTP request, a malicious user can lead a user to unknowingly create / delete or modify a user account due to the lack of an anti-CSRF token.
231 CVE-2018-6883 89 Sql 2018-02-24 2018-03-17
4.0
None Remote Low ??? Partial None None
Piwigo before 2.9.3 has SQL injection in admin/tags.php in the administration panel, via the tags array parameter in an admin.php?page=tags request. The attacker must be an administrator.
232 CVE-2018-6881 200 +Info 2018-02-12 2022-01-12
5.0
None Remote Low Not required Partial None None
EmpireCMS 6.6 allows remote attackers to discover the full path via an array value for a parameter to admin/tool/ShowPic.php.
233 CVE-2018-6880 200 +Info 2018-02-12 2022-01-12
5.0
None Remote Low Not required Partial None None
EmpireCMS 6.6 through 7.2 allows remote attackers to discover the full path via an array value for a parameter to class/connect.php.
234 CVE-2018-6878 79 XSS 2018-02-09 2018-03-01
3.5
None Remote Medium ??? None Partial None
Cross Site Scripting (XSS) exists in the review section in PHP Scripts Mall Hot Scripts Clone Script Classified 3.1 via the title or description field.
235 CVE-2018-6876 119 DoS Overflow 2018-02-09 2018-03-08
4.3
None Remote Medium Not required None None Partial
The OLEProperty class in ole/oleprop.cpp in libfpx 1.3.1-10, as used in ImageMagick 7.0.7-22 Q16 and other products, allows remote attackers to cause a denial of service (stack-based buffer under-read) via a crafted bmp image.
236 CVE-2018-6872 125 DoS 2018-02-09 2019-10-31
4.3
None Remote Medium Not required None None Partial
The elf_parse_notes function in elf.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.30, allows remote attackers to cause a denial of service (out-of-bounds read and segmentation violation) via a note with a large alignment.
237 CVE-2018-6871 2018-02-09 2019-10-03
5.0
None Remote Low Not required Partial None None
LibreOffice before 5.4.5 and 6.x before 6.0.1 allows remote attackers to read arbitrary files via =WEBSERVICE calls in a document, which use the COM.MICROSOFT.WEBSERVICE function.
238 CVE-2018-6869 770 DoS 2018-02-09 2020-06-28
4.3
None Remote Medium Not required None None Partial
In ZZIPlib 0.13.68, there is an uncontrolled memory allocation and a crash in the __zzip_parse_root_directory function of zzip/zip.c. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted zip file.
239 CVE-2018-6868 79 XSS 2018-02-23 2018-03-01
3.5
None Remote Medium ??? None Partial None
Cross Site Scripting (XSS) exists in PHP Scripts Mall Slickdeals / DealNews / Groupon Clone Script 3.0.2 via a User Profile Field parameter.
240 CVE-2018-6867 79 XSS 2018-02-23 2018-03-01
3.5
None Remote Medium ??? None Partial None
Cross Site Scripting (XSS) exists in PHP Scripts Mall Alibaba Clone Script 1.0.2 via a profile parameter.
241 CVE-2018-6866 79 XSS 2018-02-23 2018-03-01
3.5
None Remote Medium ??? None Partial None
Cross Site Scripting (XSS) exists in PHP Scripts Mall Learning and Examination Management System Script 2.3.1 via a crafted message.
242 CVE-2018-6864 79 XSS 2018-02-12 2018-02-26
3.5
None Remote Medium ??? None Partial None
Cross Site Scripting (XSS) exists in PHP Scripts Mall Multi religion Responsive Matrimonial 4.7.2 via a user profile update parameter.
243 CVE-2018-6863 89 Sql 2018-02-12 2018-02-28
7.5
None Remote Low Not required Partial Partial Partial
SQL Injection exists in PHP Scripts Mall Select Your College Script 2.0.2 via a Login Parameter.
244 CVE-2018-6862 79 XSS 2018-02-12 2018-02-26
3.5
None Remote Medium ??? None Partial None
Cross Site Scripting (XSS) exists in PHP Scripts Mall Bitcoin MLM Software 1.0.2 via a profile field.
245 CVE-2018-6861 79 XSS 2018-02-12 2020-03-11
3.5
None Remote Medium ??? None Partial None
Cross Site Scripting (XSS) exists in PHP Scripts Mall Lawyer Search Script 1.0.2 via a profile update parameter.
246 CVE-2018-6860 434 Exec Code 2018-02-12 2020-03-11
6.5
None Remote Low ??? Partial Partial Partial
Arbitrary File Upload and Remote Code Execution exist in PHP Scripts Mall Schools Alert Management Script 2.0.2 via a profile picture.
247 CVE-2018-6859 89 Sql 2018-02-23 2018-03-12
7.5
None Remote Low Not required Partial Partial Partial
SQL Injection exists in PHP Scripts Mall Schools Alert Management Script 2.0.2 via the Login Parameter.
248 CVE-2018-6858 79 XSS 2018-02-12 2020-03-11
3.5
None Remote Medium ??? None Partial None
Cross Site Scripting (XSS) exists in PHP Scripts Mall Facebook Clone Script.
249 CVE-2018-6846 200 +Info 2018-02-08 2018-03-08
5.0
None Remote Low Not required Partial None None
Z-BlogPHP 1.5.1 allows remote attackers to discover the full path via a direct request to zb_system/function/lib/upload.php.
250 CVE-2018-6845 79 XSS 2018-02-12 2020-03-11
4.3
None Remote Medium Not required None Partial None
PHP Scripts Mall Multi Language Olx Clone Script 2.0.6 has XSS via the Leave Comment field.
Total number of vulnerabilities : 1328   Page : 1 2 3 4 5 (This Page)6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.