CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
  What's the CVSS score of your company?
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Security Vulnerabilities (CVSS score between 3 and 3.99)

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
4201 CVE-2018-15800 200 +Info 2018-12-10 2019-10-09
3.5
None Remote Medium ??? Partial None None
Cloud Foundry Bits Service, versions prior to 2.18.0, includes an information disclosure vulnerability. A remote malicious user may execute a timing attack to brute-force the signing key, allowing them complete read and write access to the the Bits Service storage.
4202 CVE-2018-15772 400 2018-11-13 2019-02-04
3.6
None Local Low Not required Partial None Partial
Dell EMC RecoverPoint versions prior to 5.1.2.1 and RecoverPoint for VMs versions prior to 5.2.0.2 contain an uncontrolled resource consumption vulnerability. A malicious boxmgmt user may potentially be able to consume large amount of CPU bandwidth to make the system slow or to determine the existence of any system file via Boxmgmt CLI.
4203 CVE-2018-15713 79 XSS 2018-11-14 2018-12-06
3.5
None Remote Medium ??? None Partial None
Nagios XI 5.5.6 allows persistent cross site scripting from remote authenticated attackers via the stored email address in admin/users.php.
4204 CVE-2018-15707 79 XSS 2018-10-31 2018-12-12
3.5
None Remote Medium ??? None Partial None
Advantech WebAccess 8.3.1 and 8.3.2 are vulnerable to cross-site scripting in the Bwmainleft.asp page. An attacker could leverage this vulnerability to disclose credentials amongst other things.
4205 CVE-2018-15701 20 DoS 2018-10-01 2018-11-27
3.3
None Local Network Low Not required None None Partial
The web interface in TP-Link TL-WRN841N 0.9.1 4.16 v0348.0 is vulnerable to a denial of service when an unauthenticated LAN user sends a crafted HTTP header containing an unexpected Cookie field.
4206 CVE-2018-15693 863 Bypass 2018-11-16 2019-10-03
3.5
None Remote Medium ??? None Partial None
Inova Partner 5.0.5-RELEASE, Build 0510-0906 and earlier allows authenticated users authorization bypass via insecure direct object reference.
4207 CVE-2018-15692 863 Bypass 2018-11-16 2019-10-03
3.5
None Remote Medium ??? None Partial None
Inova Partner 5.0.5-RELEASE, Build 0510-0906 and earlier allows authenticated users authorization bypass and data manipulation in certain functions.
4208 CVE-2018-15641 79 XSS 2020-12-22 2020-12-22
3.5
None Remote Medium ??? None Partial None
Cross-site scripting (XSS) issue in web module in Odoo Community 11.0 through 14.0 and Odoo Enterprise 11.0 through 14.0, allows remote authenticated internal users to inject arbitrary web script in the browser of a victim via crafted calendar event attributes.
4209 CVE-2018-15638 79 XSS 2020-12-22 2020-12-22
3.5
None Remote Medium ??? None Partial None
Cross-site scripting (XSS) issue in mail module in Odoo Community 13.0 and earlier and Odoo Enterprise 13.0 and earlier, allows remote attackers to inject arbitrary web script in the browser of a victim via crafted channel names.
4210 CVE-2018-15614 79 XSS 2019-01-23 2019-10-09
3.5
None Remote Medium ??? None Partial None
A vulnerability in the one-x Portal component of IP Office could allow an authenticated user to perform stored cross site scripting attacks via fields in the Conference Scheduler Service that could affect other application users. Affected versions of IP Office include 10.0 through 10.1 SP3 and 11.0 versions prior to 11.0 SP1.
4211 CVE-2018-15570 79 XSS 2018-08-20 2018-10-19
3.5
None Remote Medium ??? None Partial None
In waimai Super Cms 20150505, there is stored XSS via the /admin.php/Foodcat/editsave fcname parameter.
4212 CVE-2018-15516 918 2019-01-31 2019-02-22
3.5
None Remote Medium ??? Partial None None
The FTP service on D-Link Central WiFiManager CWM-100 1.03 r0098 devices allows remote attackers to conduct a PORT command bounce scan via port 8000, resulting in SSRF.
4213 CVE-2018-15451 79 Exec Code XSS 2018-11-08 2019-10-09
3.5
None Remote Medium ??? None Partial None
A vulnerability in the web-based management interface of Cisco Prime Service Catalog could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web-based management interface. The vulnerability is due to insufficient validation of user-supplied input that is processed by the web-based management interface. An attacker could exploit this vulnerability by persuading a user of the interface to click a maliciously crafted link. A successful exploit could allow the attacker to execute arbitrary script code in the context of the interface or access sensitive browser-based information.
4214 CVE-2018-15426 79 Exec Code XSS 2018-10-05 2019-10-09
3.5
None Remote Medium ??? None Partial None
A vulnerability in the web-based interface of Cisco Unity Connection could allow an authenticated, remote attacker to conduct a stored cross-site scripting (XSS) attack against a user of the web-based interface of the affected software. The vulnerability is due to insufficient validation of user-supplied input that is processed by the web-based interface of the affected software. An attacker could exploit this vulnerability by persuading a user of the web-based interface to click a malicious link. A successful exploit could allow the attacker to execute arbitrary script code in the context of the interface or access sensitive, browser-based information.
4215 CVE-2018-15392 DoS 2018-10-05 2019-10-09
3.3
None Local Network Low Not required None None Partial
A vulnerability in the DHCP service of Cisco Industrial Network Director could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition. The vulnerability is due to improper handling of DHCP lease requests. An attacker could exploit this vulnerability by sending malicious DHCP lease requests to an affected application. A successful exploit could allow the attacker to cause the DHCP service to terminate, resulting in a DoS condition.
4216 CVE-2018-15365 79 XSS Bypass CSRF 2018-09-28 2018-11-16
3.5
None Remote Medium ??? None Partial None
A Reflected Cross-Site Scripting (XSS) vulnerability in Trend Micro Deep Discovery Inspector 3.85 and below could allow an attacker to bypass CSRF protection and conduct an attack on vulnerable installations. An attacker must be an authenticated user in order to exploit the vulnerability.
4217 CVE-2018-15199 79 XSS 2018-08-08 2018-10-04
3.5
None Remote Medium ??? None Partial None
AuraCMS 2.3 allows XSS via a Bukutamu -> AddGuestbook action.
4218 CVE-2018-15190 79 XSS 2018-08-10 2018-10-06
3.5
None Remote Medium ??? None Partial None
PHP Scripts Mall hotel-booking-script 2.0.4 allows XSS via the First Name, Last Name, or Address field.
4219 CVE-2018-15189 79 XSS 2018-08-10 2018-10-05
3.5
None Remote Medium ??? None Partial None
PHP Scripts Mall advanced-real-estate-script has XSS via the Name field of a profile.
4220 CVE-2018-15184 79 XSS 2018-08-09 2018-10-09
3.5
None Remote Medium ??? None Partial None
PHP Scripts Mall Naukri / Shine / Jobsite Clone Script 3.0.4 has Stored XSS via the USERNAME field, a related issue to CVE-2018-6795.
4221 CVE-2018-15182 79 XSS 2018-08-09 2018-10-05
3.5
None Remote Medium ??? None Partial None
PHP Scripts Mall Car Rental Script 2.0.8 has XSS via the FirstName and LastName fields.
4222 CVE-2018-15130 79 XSS 2018-08-07 2018-10-05
3.5
None Remote Medium ??? None Partial None
ThinkSAAS through 2018-07-25 has XSS via the index.php?app=group&ac=create&ts=do groupdesc parameter.
4223 CVE-2018-15129 79 XSS 2018-08-07 2018-10-05
3.5
None Remote Medium ??? None Partial None
ThinkSAAS through 2018-07-25 has XSS via the index.php?app=article&ac=comment&ts=do content parameter.
4224 CVE-2018-15000 2019-04-25 2019-10-03
3.3
None Local Medium Not required Partial Partial None
The Vivo V7 Android device with a build fingerprint of vivo/1718/1718:7.1.2/N2G47H/compil11021857:user/release-keys contains a platform app with a package name of com.vivo.smartshot (versionCode=1, versionName=3.0.0). This app contains an exported service named com.vivo.smartshot.ui.service.ScreenRecordService that will record the screen for 60 minutes and write the mp4 file to a location of the user's choosing. Normally, a recording notification will be visible to the user, but we discovered an approach to make it mostly transparent to the user by quickly removing a notification and floating icon. The user can see a floating icon and notification appear and disappear quickly due to quickly stopping and restarting the service with different parameters that do not interfere with the ongoing screen recording. The screen recording lasts for 60 minutes and can be written directly to the attacking app's private directory.
4225 CVE-2018-14980 732 DoS 2019-04-25 2019-10-03
3.6
None Local Low Not required Partial Partial None
The ASUS ZenFone 3 Max Android device with a build fingerprint of asus/US_Phone/ASUS_X008_1:7.0/NRD90M/US_Phone-14.14.1711.92-20171208:user/release-keys contains the android framework (i.e., system_server) with a package name of android (versionCode=24, versionName=7.0) that has been modified by ASUS or another entity in the supply chain. The system_server process in the core android package has an exported broadcast receiver that allows any app co-located on the device to programmatically initiate the taking of a screenshot and have the resulting screenshot be written to external storage (i.e., sdcard). The taking of a screenshot is not transparent to the user; the device has a screen animation as the screenshot is taken and there is a notification indicating that a screenshot occurred. If the attacking app also requests the EXPAND_STATUS_BAR permission, it can wake the device up using certain techniques and expand the status bar to take a screenshot of the user's notifications even if the device has an active screen lock. The notifications may contain sensitive data such as text messages used in two-factor authentication. The system_server process that provides this capability cannot be disabled, as it is part of the Android framework. The notification can be removed by a local Denial of Service (DoS) attack to reboot the device.
4226 CVE-2018-14976 79 XSS 2018-08-06 2018-10-03
3.5
None Remote Medium ??? None Partial None
An issue was discovered in QCMS 3.0.1. upload/System/Controller/backend/category.php has XSS.
4227 CVE-2018-14975 79 XSS 2018-08-06 2018-10-03
3.5
None Remote Medium ??? None Partial None
An issue was discovered in QCMS 3.0.1. upload/System/Controller/backend/album.php has XSS.
4228 CVE-2018-14974 79 XSS 2018-08-06 2018-10-03
3.5
None Remote Medium ??? None Partial None
An issue was discovered in QCMS 3.0.1. upload/System/Controller/backend/news.php has XSS.
4229 CVE-2018-14973 79 XSS 2018-08-06 2018-10-03
3.5
None Remote Medium ??? None Partial None
An issue was discovered in QCMS 3.0.1. upload/System/Controller/backend/product.php has XSS.
4230 CVE-2018-14972 79 XSS 2018-08-06 2018-10-03
3.5
None Remote Medium ??? None Partial None
An issue was discovered in QCMS 3.0.1. upload/System/Controller/backend/down.php has XSS.
4231 CVE-2018-14971 79 XSS 2018-08-06 2018-10-03
3.5
None Remote Medium ??? None Partial None
An issue was discovered in QCMS 3.0.1. upload/System/Controller/backend/user.php has XSS.
4232 CVE-2018-14970 79 XSS 2018-08-06 2018-10-03
3.5
None Remote Medium ??? None Partial None
An issue was discovered in QCMS 3.0.1. upload/System/Controller/backend/slideshow.php has XSS.
4233 CVE-2018-14969 79 XSS 2018-08-06 2018-10-03
3.5
None Remote Medium ??? None Partial None
An issue was discovered in QCMS 3.0.1. upload/System/Controller/backend/system.php has XSS.
4234 CVE-2018-14964 79 XSS 2018-08-06 2018-10-04
3.5
None Remote Medium ??? None Partial None
An issue was discovered in EMLsoft 5.4.5. XSS exists via the eml/upload/eml/?action=address&do=edit page.
4235 CVE-2018-14962 79 XSS 2018-08-06 2018-10-04
3.5
None Remote Medium ??? None Partial None
zzcms 8.3 has stored XSS related to the content variable in user/manage.php and zt/show.php.
4236 CVE-2018-14937 79 XSS 2018-08-05 2018-09-27
3.5
None Remote Medium ??? None Partial None
The Add page option in my little forum 2.4.12 allows XSS via the Menu Link field.
4237 CVE-2018-14936 79 XSS 2018-08-05 2018-09-27
3.5
None Remote Medium ??? None Partial None
The Add page option in my little forum 2.4.12 allows XSS via the Title field.
4238 CVE-2018-14934 732 2018-11-15 2019-10-03
3.3
None Local Network Low Not required Partial None None
The Bluetooth subsystem on Polycom Trio devices with software before 5.5.4 has Incorrect Access Control. An attacker can connect without authentication and subsequently record audio from the device microphone.
4239 CVE-2018-14890 79 XSS 2018-09-21 2018-11-07
3.5
None Remote Medium ??? None Partial None
Vectra Networks Cognito Brain and Sensor before 4.2 contains a cross-site scripting (XSS) vulnerability in the Web Management Console.
4240 CVE-2018-14877 79 XSS 2018-08-03 2018-09-27
3.5
None Remote Medium ??? None Partial None
An issue was discovered in WeaselCMS v0.3.5. XSS exists via Site Language, Site Title, Site Description, and Site Keywords on the SETTINGS page.
4241 CVE-2018-14875 79 XSS 2019-04-30 2019-05-03
3.5
None Remote Medium ??? None Partial None
An issue was discovered in the Core and Portal modules in Polaris FT Intellect Core Banking 9.7.1. Reflected XSS exists with an authenticated session via the Customerid, formName, FrameId, or MODE parameter.
4242 CVE-2018-14873 79 XSS 2018-08-03 2018-09-27
3.5
None Remote Medium ??? None Partial None
An issue was discovered in Rincewind 0.1. There is a cross-site scripting (XSS) vulnerability involving a p=account request to index.php and another file named commonPages.php.
4243 CVE-2018-14869 79 XSS 2018-08-06 2018-10-04
3.5
None Remote Medium ??? None Partial None
PHP Template Store Script 3.0.6 allows XSS via the Address line 1, Address Line 2, Bank name, or A/C Holder name field in a profile.
4244 CVE-2018-14853 476 Exec Code 2018-12-17 2019-01-08
3.3
None Local Network Low Not required None None Partial
A NULL pointer dereference in dhd_prot_txdata_write_flush in drivers/net/wireless/bcmdhd4358/dhd_msgbuf.c in the bcmdhd4358 Wi-Fi driver on the Samsung Galaxy S6 SM-G920F G920FXXU5EQH7 allows an attacker (who has obtained code execution on the Wi-Fi chip) to cause the device to reboot. The Samsung ID is SVE-2018-11783.
4245 CVE-2018-14850 79 +Priv XSS 2018-08-13 2018-10-10
3.5
None Remote Medium ??? None Partial None
Stored XSS vulnerabilities in Tiki before 18.2, 15.7 and 12.14 allow an authenticated user injecting JavaScript to gain administrator privileges if an administrator opens a wiki page and moves the mouse pointer over a modified link or thumb image.
4246 CVE-2018-14849 79 XSS 2018-08-13 2018-10-10
3.5
None Remote Medium ??? None Partial None
Tiki before 18.2, 15.7 and 12.14 has XSS via link attributes, related to lib/core/WikiParser/OutputLink.php and lib/parser/parserlib.php.
4247 CVE-2018-14846 79 XSS 2018-12-20 2019-01-24
3.5
None Remote Medium ??? None Partial None
The Mondula Multi Step Form plugin before 1.2.8 for WordPress has multiple stored XSS via wp-admin/admin-ajax.php.
4248 CVE-2018-14837 79 XSS 2018-08-10 2018-10-05
3.5
None Remote Medium ??? None Partial None
Wolf CMS 0.8.3.1 has XSS in the Snippets tab, as demonstrated by a ?/admin/snippet/edit/1 URI.
4249 CVE-2018-14835 79 XSS 2018-08-02 2018-09-28
3.5
None Remote Medium ??? None Partial None
Subrion CMS v4.2.1 is vulnerable to Stored XSS because of no escaping added to the tooltip information being displayed in multiple areas.
4250 CVE-2018-14777 79 XSS 2018-08-01 2018-10-02
3.5
None Remote Medium ??? None Partial None
An issue was discovered in DataLife Engine (DLE) through 13.0. An attacker can use XSS (related to the /addnews.html and /index.php?do=addnews URIs) to send a malicious script to unsuspecting Admins or users.
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.