Skip to main content
CVE-2018-1770 MEDIUM POC PATCH This Month

IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 could allow a remote attacker to traverse directories on the system. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

IBM Path Traversal Websphere Application Server
NVD
CVSS 3.0
6.5
EPSS
3.5%
CVE-2018-10141 MEDIUM POC This Month

GlobalProtect Portal Login page in Palo Alto Networks PAN-OS before 8.1.4 allows an unauthenticated attacker to inject arbitrary JavaScript or HTML. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Paloalto Pan Os
NVD
CVSS 3.0
6.1
EPSS
3.9%
CVE-2018-16210 MEDIUM POC This Month

WAGO 750-88X and WAGO 750-89X Ethernet Controller devices, versions 01.09.18(13) and before, have XSS in the SNMP configuration via the webserv/cplcfg/snmp.ssi SNMP_DESC or SNMP_LOC_SNMP_CONT field. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS 750 362 Firmware 750 363 Firmware 750 823 Firmware 750 832 Firmware +10
NVD Exploit-DB
CVSS 3.1
6.1
EPSS
1.0%
CVE-2018-18271 MEDIUM POC This Month

XSS exists in CMS Made Simple version 2.2.7 via the m1_extra parameter in an admin/moduleinterface.php "Content-->News-->Add Article" action. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS PHP Cms Made Simple
NVD GitHub
CVSS 3.0
6.1
EPSS
0.8%
CVE-2018-18270 MEDIUM POC This Month

XSS exists in CMS Made Simple version 2.2.7 via the m1_news_url parameter in an admin/moduleinterface.php "Content-->News-->Add Article" action. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS PHP Cms Made Simple
NVD GitHub
CVSS 3.0
6.1
EPSS
0.8%
CVE-2018-12856 MEDIUM PATCH This Month

Adobe Acrobat and Reader versions 2018.011.20063 and earlier, 2017.011.30102 and earlier, and 2015.006.30452 and earlier have an out-of-bounds read vulnerability. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Adobe Information Disclosure Buffer Overflow Acrobat Dc Acrobat Reader Dc
NVD
CVSS 3.0
6.5
EPSS
6.2%
CVE-2018-1838 MEDIUM This Month

IBM WebSphere Application Server 8.5 and 9.0 in IBM Cloud could allow a remote attacker to obtain sensitive information caused by improper handling of passwords. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

IBM Information Disclosure Websphere Application Server
NVD
CVSS 3.0
6.5
EPSS
1.6%
CVE-2018-18282 MEDIUM PATCH This Month

Next.js 7.0.0 and 7.0.1 has XSS via the 404 or 500 /_error page. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Next Js
NVD GitHub
CVSS 3.0
6.1
EPSS
1.0%
CVE-2018-1673 MEDIUM PATCH This Month

IBM WebSphere Portal 7.0, 8.0, 8.5, and 9.0 is vulnerable to cross-site scripting. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Cross-Site Scripting (XSS) vulnerability could allow attackers to inject malicious scripts into web pages viewed by other users.

XSS IBM Websphere Portal
NVD
CVSS 3.0
6.1
EPSS
1.3%
CVE-2018-15968 MEDIUM This Month

Adobe Acrobat and Reader versions 2018.011.20063 and earlier, 2017.011.30102 and earlier, and 2015.006.30452 and earlier have an out-of-bounds read vulnerability. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Adobe Information Disclosure Buffer Overflow Acrobat Dc Acrobat Reader Dc
NVD
CVSS 3.0
5.5
EPSS
5.0%
CVE-2018-15956 MEDIUM This Month

Adobe Acrobat and Reader versions 2018.011.20063 and earlier, 2017.011.30102 and earlier, and 2015.006.30452 and earlier have an out-of-bounds read vulnerability. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Adobe Information Disclosure Buffer Overflow Acrobat Dc Acrobat Reader Dc
NVD
CVSS 3.0
5.5
EPSS
16.5%
CVE-2018-15953 MEDIUM This Month

Adobe Acrobat and Reader versions 2018.011.20063 and earlier, 2017.011.30102 and earlier, and 2015.006.30452 and earlier have an out-of-bounds read vulnerability. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Adobe Information Disclosure Buffer Overflow Acrobat Dc Acrobat Reader Dc
NVD
CVSS 3.0
5.5
EPSS
19.8%
CVE-2018-15950 MEDIUM This Month

Adobe Acrobat and Reader versions 2018.011.20063 and earlier, 2017.011.30102 and earlier, and 2015.006.30452 and earlier have an out-of-bounds read vulnerability. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Adobe Information Disclosure Buffer Overflow Acrobat Dc Acrobat Reader Dc
NVD
CVSS 3.0
5.5
EPSS
4.4%
CVE-2018-15949 MEDIUM This Month

Adobe Acrobat and Reader versions 2018.011.20063 and earlier, 2017.011.30102 and earlier, and 2015.006.30452 and earlier have an out-of-bounds read vulnerability. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Adobe Information Disclosure Buffer Overflow Acrobat Dc Acrobat Reader Dc
NVD
CVSS 3.0
5.5
EPSS
5.0%
CVE-2018-15948 MEDIUM This Month

Adobe Acrobat and Reader versions 2018.011.20063 and earlier, 2017.011.30102 and earlier, and 2015.006.30452 and earlier have an out-of-bounds read vulnerability. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Adobe Information Disclosure Buffer Overflow Acrobat Dc Acrobat Reader Dc
NVD
CVSS 3.0
5.5
EPSS
5.5%
CVE-2018-15947 MEDIUM This Month

Adobe Acrobat and Reader versions 2018.011.20063 and earlier, 2017.011.30102 and earlier, and 2015.006.30452 and earlier have an out-of-bounds read vulnerability. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Adobe Information Disclosure Buffer Overflow Acrobat Dc Acrobat Reader Dc
NVD
CVSS 3.0
5.5
EPSS
5.5%
CVE-2018-15946 MEDIUM This Month

Adobe Acrobat and Reader versions 2018.011.20063 and earlier, 2017.011.30102 and earlier, and 2015.006.30452 and earlier have an out-of-bounds read vulnerability. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Adobe Information Disclosure Buffer Overflow Acrobat Dc Acrobat Reader Dc
NVD
CVSS 3.0
5.5
EPSS
5.5%
CVE-2018-15943 MEDIUM This Month

Adobe Acrobat and Reader versions 2018.011.20063 and earlier, 2017.011.30102 and earlier, and 2015.006.30452 and earlier have an out-of-bounds read vulnerability. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Adobe Information Disclosure Buffer Overflow Acrobat Dc Acrobat Reader Dc
NVD
CVSS 3.0
5.5
EPSS
5.5%
CVE-2018-15942 MEDIUM This Month

Adobe Acrobat and Reader versions 2018.011.20063 and earlier, 2017.011.30102 and earlier, and 2015.006.30452 and earlier have an out-of-bounds read vulnerability. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Adobe Information Disclosure Buffer Overflow Acrobat Dc Acrobat Reader Dc
NVD
CVSS 3.0
5.5
EPSS
5.5%
CVE-2018-15932 MEDIUM PATCH This Month

Adobe Acrobat and Reader versions 2018.011.20063 and earlier, 2017.011.30102 and earlier, and 2015.006.30452 and earlier have an out-of-bounds read vulnerability. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity.

Adobe Information Disclosure Buffer Overflow Acrobat Dc Acrobat Reader Dc
NVD
CVSS 3.0
5.5
EPSS
18.9%
CVE-2018-15927 MEDIUM PATCH This Month

Adobe Acrobat and Reader versions 2018.011.20063 and earlier, 2017.011.30102 and earlier, and 2015.006.30452 and earlier have an out-of-bounds read vulnerability. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity.

Adobe Information Disclosure Buffer Overflow Acrobat Dc Acrobat Reader Dc
NVD
CVSS 3.0
5.5
EPSS
16.4%
CVE-2018-15926 MEDIUM PATCH This Month

Adobe Acrobat and Reader versions 2018.011.20063 and earlier, 2017.011.30102 and earlier, and 2015.006.30452 and earlier have an out-of-bounds read vulnerability. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity.

Adobe Information Disclosure Buffer Overflow Acrobat Dc Acrobat Reader Dc
NVD
CVSS 3.0
5.5
EPSS
5.5%
CVE-2018-15925 MEDIUM PATCH This Month

Adobe Acrobat and Reader versions 2018.011.20063 and earlier, 2017.011.30102 and earlier, and 2015.006.30452 and earlier have an out-of-bounds read vulnerability. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity.

Adobe Information Disclosure Buffer Overflow Acrobat Dc Acrobat Reader Dc
NVD
CVSS 3.0
5.5
EPSS
5.5%
CVE-2018-15923 MEDIUM PATCH This Month

Adobe Acrobat and Reader versions 2018.011.20063 and earlier, 2017.011.30102 and earlier, and 2015.006.30452 and earlier have an out-of-bounds read vulnerability. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity.

Adobe Information Disclosure Buffer Overflow Acrobat Dc Acrobat Reader Dc
NVD
CVSS 3.0
5.5
EPSS
5.5%
CVE-2018-15922 MEDIUM PATCH This Month

Adobe Acrobat and Reader versions 2018.011.20063 and earlier, 2017.011.30102 and earlier, and 2015.006.30452 and earlier have an out-of-bounds read vulnerability. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity.

Adobe Information Disclosure Buffer Overflow Acrobat Dc Acrobat Reader Dc
NVD
CVSS 3.0
5.5
EPSS
5.5%
CVE-2018-12881 MEDIUM PATCH This Month

Adobe Acrobat and Reader versions 2018.011.20063 and earlier, 2017.011.30102 and earlier, and 2015.006.30452 and earlier have an integer overflow vulnerability. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity.

Integer Overflow Adobe Information Disclosure Acrobat Dc Acrobat Reader Dc
NVD
CVSS 3.0
5.5
EPSS
5.3%
CVE-2018-12880 MEDIUM PATCH This Month

Adobe Acrobat and Reader versions 2018.011.20063 and earlier, 2017.011.30102 and earlier, and 2015.006.30452 and earlier have an out-of-bounds read vulnerability. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity.

Adobe Information Disclosure Buffer Overflow Acrobat Dc Acrobat Reader Dc
NVD
CVSS 3.0
5.5
EPSS
5.5%
CVE-2018-12879 MEDIUM PATCH This Month

Adobe Acrobat and Reader versions 2018.011.20063 and earlier, 2017.011.30102 and earlier, and 2015.006.30452 and earlier have an out-of-bounds read vulnerability. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity.

Adobe Information Disclosure Buffer Overflow Acrobat Dc Acrobat Reader Dc
NVD
CVSS 3.0
5.5
EPSS
5.5%
CVE-2018-12878 MEDIUM PATCH This Month

Adobe Acrobat and Reader versions 2018.011.20063 and earlier, 2017.011.30102 and earlier, and 2015.006.30452 and earlier have an out-of-bounds read vulnerability. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity.

Adobe Information Disclosure Buffer Overflow Acrobat Dc Acrobat Reader Dc
NVD
CVSS 3.0
5.5
EPSS
5.5%
CVE-2018-12875 MEDIUM PATCH This Month

Adobe Acrobat and Reader versions 2018.011.20063 and earlier, 2017.011.30102 and earlier, and 2015.006.30452 and earlier have an out-of-bounds read vulnerability. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity.

Adobe Information Disclosure Buffer Overflow Acrobat Dc Acrobat Reader Dc
NVD
CVSS 3.0
5.5
EPSS
16.4%
CVE-2018-12874 MEDIUM PATCH This Month

Adobe Acrobat and Reader versions 2018.011.20063 and earlier, 2017.011.30102 and earlier, and 2015.006.30452 and earlier have an out-of-bounds read vulnerability. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity.

Adobe Information Disclosure Buffer Overflow Acrobat Dc Acrobat Reader Dc
NVD
CVSS 3.0
5.5
EPSS
16.4%
CVE-2018-12873 MEDIUM PATCH This Month

Adobe Acrobat and Reader versions 2018.011.20063 and earlier, 2017.011.30102 and earlier, and 2015.006.30452 and earlier have an out-of-bounds read vulnerability. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity.

Adobe Information Disclosure Buffer Overflow Acrobat Dc Acrobat Reader Dc
NVD
CVSS 3.0
5.5
EPSS
16.4%
CVE-2018-12872 MEDIUM PATCH This Month

Adobe Acrobat and Reader versions 2018.011.20063 and earlier, 2017.011.30102 and earlier, and 2015.006.30452 and earlier have an out-of-bounds read vulnerability. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity.

Adobe Information Disclosure Buffer Overflow Acrobat Dc Acrobat Reader Dc
NVD
CVSS 3.0
5.5
EPSS
19.7%
CVE-2018-12871 MEDIUM PATCH This Month

Adobe Acrobat and Reader versions 2018.011.20063 and earlier, 2017.011.30102 and earlier, and 2015.006.30452 and earlier have an out-of-bounds read vulnerability. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity.

Adobe Information Disclosure Buffer Overflow Acrobat Dc Acrobat Reader Dc
NVD
CVSS 3.0
5.5
EPSS
19.7%
CVE-2018-12870 MEDIUM PATCH This Month

Adobe Acrobat and Reader versions 2018.011.20063 and earlier, 2017.011.30102 and earlier, and 2015.006.30452 and earlier have an out-of-bounds read vulnerability. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity.

Adobe Information Disclosure Buffer Overflow Acrobat Dc Acrobat Reader Dc
NVD
CVSS 3.0
5.5
EPSS
19.7%
CVE-2018-12869 MEDIUM PATCH This Month

Adobe Acrobat and Reader versions 2018.011.20063 and earlier, 2017.011.30102 and earlier, and 2015.006.30452 and earlier have an out-of-bounds read vulnerability. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity.

Adobe Information Disclosure Buffer Overflow Acrobat Dc Acrobat Reader Dc
NVD
CVSS 3.0
5.5
EPSS
19.7%
CVE-2018-12867 MEDIUM PATCH This Month

Adobe Acrobat and Reader versions 2018.011.20063 and earlier, 2017.011.30102 and earlier, and 2015.006.30452 and earlier have an out-of-bounds read vulnerability. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity.

Adobe Information Disclosure Buffer Overflow Acrobat Dc Acrobat Reader Dc
NVD
CVSS 3.0
5.5
EPSS
19.7%
CVE-2018-12866 MEDIUM PATCH This Month

Adobe Acrobat and Reader versions 2018.011.20063 and earlier, 2017.011.30102 and earlier, and 2015.006.30452 and earlier have an out-of-bounds read vulnerability. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity.

Adobe Information Disclosure Buffer Overflow Acrobat Dc Acrobat Reader Dc
NVD
CVSS 3.0
5.5
EPSS
16.4%
CVE-2018-12859 MEDIUM PATCH This Month

Adobe Acrobat and Reader versions 2018.011.20063 and earlier, 2017.011.30102 and earlier, and 2015.006.30452 and earlier have an out-of-bounds read vulnerability. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity.

Adobe Information Disclosure Buffer Overflow Acrobat Dc Acrobat Reader Dc
NVD
CVSS 3.0
5.5
EPSS
19.7%
CVE-2018-12857 MEDIUM PATCH This Month

Adobe Acrobat and Reader versions 2018.011.20063 and earlier, 2017.011.30102 and earlier, and 2015.006.30452 and earlier have an out-of-bounds read vulnerability. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity.

Adobe Information Disclosure Buffer Overflow Acrobat Dc Acrobat Reader Dc
NVD
CVSS 3.0
5.5
EPSS
16.4%
CVE-2018-12845 MEDIUM This Month

Adobe Acrobat and Reader versions 2018.011.20063 and earlier, 2017.011.30102 and earlier, and 2015.006.30452 and earlier have an out-of-bounds read vulnerability. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Adobe Information Disclosure Buffer Overflow Acrobat Dc Acrobat Reader Dc
NVD
CVSS 3.0
5.5
EPSS
5.5%
CVE-2018-12844 MEDIUM This Month

Adobe Acrobat and Reader versions 2018.011.20063 and earlier, 2017.011.30102 and earlier, and 2015.006.30452 and earlier have an out-of-bounds read vulnerability. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Adobe Information Disclosure Buffer Overflow Acrobat Dc Acrobat Reader Dc
NVD
CVSS 3.0
5.5
EPSS
5.5%
CVE-2018-12843 MEDIUM This Month

Adobe Acrobat and Reader versions 2018.011.20063 and earlier, 2017.011.30102 and earlier, and 2015.006.30452 and earlier have an out-of-bounds read vulnerability. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Adobe Information Disclosure Buffer Overflow Acrobat Dc Acrobat Reader Dc
NVD
CVSS 3.0
5.5
EPSS
5.5%
CVE-2018-12842 MEDIUM PATCH This Month

Adobe Acrobat and Reader versions 2018.011.20063 and earlier, 2017.011.30102 and earlier, and 2015.006.30452 and earlier have an integer overflow vulnerability. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity.

Integer Overflow Adobe Information Disclosure Acrobat Dc Acrobat Reader Dc
NVD
CVSS 3.0
5.5
EPSS
4.6%
CVE-2018-12839 MEDIUM This Month

Adobe Acrobat and Reader versions 2018.011.20063 and earlier, 2017.011.30102 and earlier, and 2015.006.30452 and earlier have an out-of-bounds read vulnerability. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Adobe Information Disclosure Buffer Overflow Acrobat Dc Acrobat Reader Dc
NVD
CVSS 3.0
5.5
EPSS
19.8%
CVE-2018-12838 MEDIUM This Month

Adobe Acrobat and Reader versions 2018.011.20063 and earlier, 2017.011.30102 and earlier, and 2015.006.30452 and earlier have a stack overflow vulnerability. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Adobe Information Disclosure Buffer Overflow Acrobat Dc Acrobat Reader Dc
NVD
CVSS 3.0
5.5
EPSS
11.8%
CVE-2018-12834 MEDIUM This Month

Adobe Acrobat and Reader versions 2018.011.20063 and earlier, 2017.011.30102 and earlier, and 2015.006.30452 and earlier have an out-of-bounds read vulnerability. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Adobe Information Disclosure Buffer Overflow Acrobat Dc Acrobat Reader Dc
NVD
CVSS 3.0
5.5
EPSS
4.4%
CVE-2018-14664 MEDIUM This Month

A flaw was found in foreman from versions 1.18. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

XSS Foreman
NVD
CVSS 3.0
5.4
EPSS
1.1%
CVE-2018-1534 MEDIUM PATCH This Month

IBM Rational Publishing Engine 6.0.5 and 6.0.6 is vulnerable to cross-site scripting. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. This Cross-Site Scripting (XSS) vulnerability could allow attackers to inject malicious scripts into web pages viewed by other users.

XSS IBM Engineering Lifecycle Optimization Publishing
NVD
CVSS 3.0
5.4
EPSS
0.7%
CVE-2018-1533 MEDIUM PATCH This Month

IBM Rational Publishing Engine 6.0.5 and 6.0.6 is vulnerable to cross-site scripting. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. This Cross-Site Scripting (XSS) vulnerability could allow attackers to inject malicious scripts into web pages viewed by other users.

XSS IBM Engineering Lifecycle Optimization Publishing
NVD
CVSS 3.0
5.4
EPSS
0.7%
Page 1 of 2 Next

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy