The Common Vulnerabilities and Exposures (CVE) project, maintained by the MITRE Corporation, is a list of all standardized names for vulnerabilities and security exposures.
| ID | Description | Priority | Modified date |
|---|---|---|---|
| CVE-2017-16876 | Cross-site scripting (XSS) vulnerability in the _keyify function in mistune.py in Mistune before 0.8.1 allows remote attackers to inject arbitrary web script or HTML by leveraging failure to escape the key argument. | MEDIUM | Dec 29, 2017 |
| CVE-2017-17991 | Biometric Shift Employee Management System has XSS via the expense_name parameter in an index.php?user=expenses request. | LOW | Dec 29, 2017 |
| CVE-2017-17990 | Biometric Shift Employee Management System has CSRF via index.php in an edit_holiday action. | MEDIUM | Dec 29, 2017 |
| CVE-2013-4578 | jarsigner in OpenJDK and Oracle Java SE before 7u51 allows remote attackers to bypass a code-signing protection mechanism and inject unsigned bytecode into a signed JAR file by leveraging improper file validation. | -- | Dec 29, 2017 |
| CVE-2017-17974 | BA SYSTEMS BAS Web on BAS920 devices (with Firmware 01.01.00*, HTTPserv 00002, and Script 02.*) and ISC2000 devices allows remote attackers to obtain sensitive information via a request for isc/get_sid_js.aspx or isc/get_sid.aspx, as demonstrated by obtaining administrative access by subsequently using the credential information for the Supervisor/Administrator account. | MEDIUM | Dec 29, 2017 |
| CVE-2014-4978 | The rs_filter_graph function in librawstudio/rs-filter.c in rawstudio might allow local users to truncate arbitrary files via a symlink attack on (1) /tmp/rs-filter-graph.png or (2) /tmp/rs-filter-graph. | -- | Dec 29, 2017 |
| CVE-2015-8008 | The OAuth extension for MediaWiki improperly negotiates a new client token only over Special:OAuth/initiate, which allows attackers to bypass intended IP address access restrictions by making an API request with an existing token. | -- | Dec 29, 2017 |
| CVE-2017-17993 | Biometric Shift Employee Management System has XSS via the amount parameter in an index.php?user=addition_deduction request. | LOW | Dec 29, 2017 |
| CVE-2017-17983 | PHP Scripts Mall Muslim Matrimonial Script has SQL injection via the view-profile.php mem_id parameter. | MEDIUM | Dec 29, 2017 |
| CVE-2017-17520 | ** DISPUTED ** tools/url_handler.pl in TIN 2.4.1 does not validate strings before launching the program specified by the BROWSER environment variable, which might allow remote attackers to conduct argument-injection attacks via a crafted URL. NOTE: a third party has reported that this is intentional behavior, because the documentation states url_handler.pl was designed to work together with tin which only issues shell escaped absolute URLs. | MEDIUM | Dec 28, 2017 |
| CVE-2017-15667 | In Flexense SysGauge Server 3.6.18, the Control Protocol suffers from a denial of service. The attack vector is a crafted SERVER_GET_INFO packet sent to control port 9221. | MEDIUM | Dec 28, 2017 |
| CVE-2017-15886 | Server-side request forgery (SSRF) vulnerability in Link Preview in Synology Chat before 2.0.0-1124 allows remote authenticated users to download arbitrary local files via a crafted URI. | MEDIUM | Dec 28, 2017 |
| CVE-2017-15892 | Multiple cross-site scripting (XSS) vulnerabilities in Slash Command Creator in Synology Chat before 2.0.0-1124 allow remote authenticated users to inject arbitrary web script or HTML via (1) COMMAND, (2) COMMANDS INSTRUCTION, or (3) DESCRIPTION parameter. | LOW | Dec 28, 2017 |
| CVE-2017-17932 | A buffer overflow vulnerability exists in MediaServer.exe in ALLPlayer ALLMediaServer 0.95 and earlier that could allow remote attackers to execute arbitrary code and/or cause denial of service on the victim machine/computer via a long string to TCP port 888. | HIGH | Dec 28, 2017 |
| CVE-2017-17936 | Vanguard Marketplace Digital Products PHP has CSRF via /search. | MEDIUM | Dec 28, 2017 |
| CVE-2017-17937 | Vanguard Marketplace Digital Products PHP has XSS via the phps_query parameter to /search. | MEDIUM | Dec 28, 2017 |
| CVE-2017-17938 | PHP Scripts Mall Single Theater Booking has XSS via the admin/viewtheatre.php theatreid parameter. | LOW | Dec 28, 2017 |
| CVE-2017-17939 | PHP Scripts Mall Single Theater Booking has CSRF via admin/sitesettings.php. | MEDIUM | Dec 28, 2017 |
| CVE-2017-17940 | PHP Scripts Mall Single Theater Booking has XSS via the title parameter to admin/sitesettings.php. | LOW | Dec 28, 2017 |
| CVE-2017-17941 | PHP Scripts Mall Single Theater Booking has SQL Injection via the admin/movieview.php movieid parameter. | MEDIUM | Dec 28, 2017 |
| CVE-2017-17942 | In LibTIFF 4.0.9, there is a heap-based buffer over-read in the function PackBitsEncode in tif_packbits.c. | MEDIUM | Dec 28, 2017 |
| CVE-2017-17948 | Cells Blog 3.5 has XSS via the jfdname parameter in an act=showpic request. | MEDIUM | Dec 28, 2017 |
| CVE-2017-17949 | Cells Blog 3.5 has XSS via the pub_readpost.php fmid parameter. | MEDIUM | Dec 28, 2017 |
| CVE-2017-17950 | Cells Blog 3.5 has SQL Injection via the pub_readpost.php ptid parameter. | MEDIUM | Dec 28, 2017 |
| CVE-2017-17951 | PHP Scripts Mall PHP Multivendor Ecommerce has SQL Injection via the shopping-cart.php cusid parameter. | HIGH | Dec 28, 2017 |
| CVE-2017-17952 | PHP Scripts Mall PHP Multivendor Ecommerce has a predicable registration URL, which makes it easier for remote attackers to register with an invalid or spoofed e-mail address. | MEDIUM | Dec 28, 2017 |
| CVE-2017-17953 | PHP Scripts Mall PHP Multivendor Ecommerce has XSS via the category.php chid1 parameter. | MEDIUM | Dec 28, 2017 |
| CVE-2017-17954 | PHP Scripts Mall PHP Multivendor Ecommerce has XSS via the seller-view.php usid parameter. | MEDIUM | Dec 28, 2017 |
| CVE-2017-17955 | PHP Scripts Mall PHP Multivendor Ecommerce has XSS via the shopping-cart.php cusid parameter. | MEDIUM | Dec 28, 2017 |
| CVE-2017-17956 | PHP Scripts Mall PHP Multivendor Ecommerce has XSS via the admin/sellerupd.php companyname parameter. | MEDIUM | Dec 28, 2017 |
| CVE-2017-17957 | PHP Scripts Mall PHP Multivendor Ecommerce has SQL Injection via the my_wishlist.php fid parameter. | HIGH | Dec 28, 2017 |
| CVE-2017-17958 | PHP Scripts Mall PHP Multivendor Ecommerce has XSS via the my_wishlist.php fid parameter. | MEDIUM | Dec 28, 2017 |
| CVE-2017-17959 | PHP Scripts Mall PHP Multivendor Ecommerce has SQL Injection via the seller-view.php usid parameter. | HIGH | Dec 28, 2017 |
| CVE-2017-17960 | PHP Scripts Mall PHP Multivendor Ecommerce has CSRF via admin/sellerupd.php. | MEDIUM | Dec 28, 2017 |
| CVE-2017-17967 | pptreader.dll in Kingsoft WPS Office 10.1.0.6930 allows remote attackers to cause a denial of service via a crafted PPT file, aka CNVD-2017-35482. | MEDIUM | Dec 28, 2017 |
| CVE-2017-5641 | Previous versions of Apache Flex BlazeDS (4.7.2 and earlier) did not restrict which types were allowed for AMF(X) object deserialization by default. During the deserialization process code is executed that for several known types has undesired side-effects. Other, unknown types may also exhibit such behaviors. One vector in the Java standard library exists that allows an attacker to trigger possibly further exploitable Java deserialization of untrusted data. Other known vectors in third party libraries can be used to trigger remote code execution. | HIGH | Dec 28, 2017 |
| CVE-2014-8389 | cgi-bin/mft/wireless_mft.cgi in AirLive BU-2015 with firmware 1.03.18 16.06.2014, AirLive BU-3026 with firmware 1.43 21.08.2014, AirLive MD-3025 with firmware 1.81 21.08.2014, AirLive WL-2000CAM with firmware LM.1.6.18 14.10.2011, and AirLive POE-200CAM v2 with firmware LM.1.6.17.01 uses hard-coded credentials in the embedded Boa web server, which allows remote attackers to obtain user credentials via crafted HTTP requests. | -- | Dec 27, 2017 |
| CVE-2015-3637 | SQL injection vulnerability in phpMyBackupPro when run in multi-user mode before 2.5 allows remote attackers to execute arbitrary SQL commands via the username and password parameters. | -- | Dec 27, 2017 |
| CVE-2015-6237 | The RPC service in Tripwire (formerly nCircle) IP360 VnE Manager 7.2.2 before 7.2.6 allows remote attackers to bypass authentication and (1) enumerate users, (2) reset passwords, or (3) manipulate IP filter restrictions via crafted privileged commands. | -- | Dec 27, 2017 |
| CVE-2015-7324 | Multiple cross-site scripting (XSS) vulnerabilities in helpers/comment.php in the StackIdeas Komento (com_komento) component before 2.0.5 for Joomla! allow remote attackers to inject arbitrary web script or HTML via the (1) img or (2) url tag of a new comment. | -- | Dec 27, 2017 |
| CVE-2015-7666 | Multiple cross-site scripting (XSS) vulnerabilities in the (1) cp_updateMessageItem and (2) cp_deleteMessageItem functions in cp_ppp_admin_int_message_list.inc.php in the Payment Form for PayPal Pro plugin before 1.0.2 for WordPress allow remote attackers to inject arbitrary web script or HTML via the cal parameter. | -- | Dec 27, 2017 |
| CVE-2015-7667 | Multiple cross-site scripting (XSS) vulnerabilities in (1) templates/admanagement/admanagement.php and (2) templates/adspot/adspot.php in the ResAds plugin before 1.0.2 for WordPress allow remote attackers to inject arbitrary web script or HTML via the page parameter. | -- | Dec 27, 2017 |
| CVE-2015-7668 | Cross-site scripting (XSS) vulnerability in includes/MapPinImageSave.php in the Easy2Map plugin before 1.3.0 for WordPress allows remote attackers to inject arbitrary web script or HTML via the map_id parameter. | -- | Dec 27, 2017 |
| CVE-2015-7669 | Multiple directory traversal vulnerabilities in (1) includes/MapImportCSV2.php and (2) includes/MapImportCSV.php in the Easy2Map plugin before 1.3.0 for WordPress allow remote attackers to include and execute arbitrary files via the csvfile parameter related to upload file functionality. | -- | Dec 27, 2017 |
| CVE-2015-7889 | The SecEmailComposer/EmailComposer application in the Samsung S6 Edge before the October 2015 MR uses weak permissions for the com.samsung.android.email.intent.action.QUICK_REPLY_BACKGROUND service action, which might allow remote attackers with knowledge of the local email address to obtain sensitive information via a crafted application that sends a crafted intent. | -- | Dec 27, 2017 |
| CVE-2016-6914 | Ubiquiti UniFi Video before 3.8.0 for Windows uses weak permissions for the installation directory, which allows local users to gain SYSTEM privileges via a Trojan horse taskkill.exe file. | HIGH | Dec 27, 2017 |
| CVE-2017-10910 | MQTT.js 2.x.x prior to 2.15.0 issue in handling PUBLISH tickets may lead to an attacker causing a denial-of-service condition. | MEDIUM | Dec 27, 2017 |
| CVE-2017-11695 | Heap-based buffer overflow in the alloc_segs function in lib/dbm/src/hash.c in Mozilla Network Security Services (NSS) allows context-dependent attackers to have unspecified impact using a crafted cert8.db file. | MEDIUM | Dec 27, 2017 |
| CVE-2017-11696 | Heap-based buffer overflow in the __hash_open function in lib/dbm/src/hash.c in Mozilla Network Security Services (NSS) allows context-dependent attackers to have unspecified impact using a crafted cert8.db file. | MEDIUM | Dec 27, 2017 |
| CVE-2017-11697 | The __hash_open function in hash.c:229 in Mozilla Network Security Services (NSS) allows context-dependent attackers to cause a denial of service (floating point exception and crash) via a crafted cert8.db file. | MEDIUM | Dec 27, 2017 |
