Skip to main content
CVE-2018-17872 HIGH POC This Week

Verba Collaboration Compliance and Quality Management Platform before 9.2.1.5545 has Insecure Permissions. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Collaboration Compliance Quality Management Platform
NVD
CVSS 3.0
8.8
EPSS
2.2%
CVE-2018-17984 HIGH POC This Week

{2}/ regular expression in ISPConfig before 3.1.13 makes it possible to include arbitrary files, leading to code execution. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

RCE Ispconfig
NVD GitHub
CVSS 3.0
7.8
EPSS
3.4%
CVE-2018-1819 HIGH PATCH This Week

IBM Financial Transaction Manager for Digital Payments for Multi-Platform 3.0.2, 3.0.4, 3.0.6, and 3.2.0 is vulnerable to SQL injection. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity.

SQLi IBM Financial Transaction Manager
NVD
CVSS 3.0
8.8
EPSS
1.7%
CVE-2018-12471 HIGH This Week

A External Entity Reference ('XXE') vulnerability in SUSE Linux SMT allows remote attackers to read data from the server or cause DoS by referencing blocking elements. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XXE Subscription Management Tool
NVD
CVSS 3.0
8.1
EPSS
1.5%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy