Skip to main content
CVE-2018-19222 CRITICAL POC Act Now

An issue was discovered in LAOBANCMS 2.0. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS PHP Laobancms
NVD GitHub
CVSS 3.0
9.8
EPSS
1.4%
CVE-2018-19221 CRITICAL POC Act Now

An issue was discovered in LAOBANCMS 2.0. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi PHP Laobancms
NVD GitHub
CVSS 3.0
9.8
EPSS
1.2%
CVE-2018-19220 CRITICAL POC Act Now

An issue was discovered in LAOBANCMS 2.0. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Code Injection RCE PHP Laobancms
NVD GitHub
CVSS 3.0
9.8
EPSS
1.7%
CVE-2018-19207 CRITICAL POC THREAT Act Now

The Van Ons WP GDPR Compliance (aka wp-gdpr-compliance) plugin before 1.4.3 for WordPress allows remote attackers to execute arbitrary code because $wpdb->prepare() input is mishandled, as exploited. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

WordPress RCE Wp Gdpr Compliance
NVD
CVSS 3.0
9.8
EPSS
87.3%
CVE-2018-19196 CRITICAL POC Act Now

An issue was discovered in XiaoCms 20141229. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Code Injection RCE PHP Xiaocms
NVD GitHub
CVSS 3.0
9.8
EPSS
3.3%
CVE-2018-19185 CRITICAL POC Act Now

An issue has been found in libIEC61850 v1.3. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Memory Corruption Buffer Overflow Libiec61850
NVD GitHub
CVSS 3.0
9.8
EPSS
2.1%
CVE-2018-19199 CRITICAL PATCH Act Now

An issue was discovered in uriparser before 0.9.0. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Integer Overflow vulnerability could allow attackers to cause unexpected behavior through arithmetic overflow.

Integer Overflow Buffer Overflow Uriparser Debian Linux
NVD GitHub
CVSS 3.0
9.8
EPSS
2.3%
CVE-2018-19198 CRITICAL PATCH Act Now

An issue was discovered in uriparser before 0.9.0. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Out-of-bounds Write vulnerability could allow attackers to write data beyond allocated buffer boundaries leading to code execution or crashes.

Memory Corruption Buffer Overflow Uriparser Debian Linux
NVD GitHub
CVSS 3.0
9.8
EPSS
2.4%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy