Skip to main content
CVE-2018-18955 HIGH POC PATCH Act Now

In the Linux kernel 4.15.x through 4.19.x before 4.19.2, map_write() in kernel/user_namespace.c allows privilege escalation because it mishandles nested user namespaces with more than 5 UID or GID. Rated high severity (CVSS 7.0). Public exploit code available.

Authentication Bypass Privilege Escalation Linux Linux Kernel Ubuntu Linux
NVD GitHub Exploit-DB
CVSS 3.0
7.0
EPSS
7.6%
CVE-2018-18806 CRITICAL POC Act Now

School Equipment Monitoring System 1.0 allows SQL injection via the login screen, related to include/user.vb. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi School Equipment Monitoring System
NVD
CVSS 3.0
9.8
EPSS
1.6%
CVE-2018-18805 CRITICAL POC Act Now

Point Of Sales 1.0 allows SQL injection via the login screen, related to LoginForm1.vb. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi Pointofsales
NVD Exploit-DB
CVSS 3.1
9.8
EPSS
5.2%
CVE-2018-18804 CRITICAL POC Act Now

Bakeshop Inventory System 1.0 has SQL injection via the login screen, related to include/publicfunction.vb. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi Bakeshop Inventory System
NVD Exploit-DB
CVSS 3.0
9.8
EPSS
3.2%
CVE-2018-18803 CRITICAL POC Act Now

Curriculum Evaluation System 1.0 allows SQL Injection via the login screen, related to frmCourse.vb and includes/user.vb. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi Curriculum Evaluation System
NVD Exploit-DB
CVSS 3.0
9.8
EPSS
3.2%
CVE-2018-18801 CRITICAL POC Act Now

The BSEN Ordering software 1.0 has SQL Injection via student/index.php?view=view&id=[SQL] or index.php?q=single-item&id=[SQL]. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi PHP Bsen Ordering Software
NVD Exploit-DB
CVSS 3.0
9.8
EPSS
3.2%
CVE-2018-18796 CRITICAL POC Act Now

Library Management System 1.0 has SQL Injection via the "Search for Books" screen. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi Library Management System
NVD
CVSS 3.0
9.8
EPSS
1.6%
CVE-2018-18795 CRITICAL POC Act Now

School Event Management System 1.0 has SQL Injection via the student/index.php or event/index.php id parameter. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi PHP School Event Management System
NVD Exploit-DB
CVSS 3.0
9.8
EPSS
3.2%
CVE-2018-18793 CRITICAL POC Act Now

School Event Management System 1.0 allows Arbitrary File Upload via event/controller.php?action=photos. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

File Upload PHP School Event Management System
NVD Exploit-DB
CVSS 3.0
9.8
EPSS
9.5%
CVE-2018-18763 CRITICAL POC Act Now

SaltOS 3.1 r8126 allows action=ajax&query=numbers&page=usuarios&action2=[SQL] SQL Injection. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi Saltos
NVD Exploit-DB
CVSS 3.0
9.8
EPSS
3.2%
CVE-2018-18761 CRITICAL POC THREAT Act Now

SaltOS 3.1 r8126 allows action=login&querystring=&user=[SQL] SQL Injection. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi Saltos
NVD Exploit-DB
CVSS 3.1
9.8
EPSS
16.5%
CVE-2018-18755 CRITICAL POC Act Now

K-iwi Framework 1775 has SQL Injection via the admin/user/group/update user_group_id parameter or the admin/user/user/update user_id parameter. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi K Iwi
NVD Exploit-DB
CVSS 3.1
9.8
EPSS
3.1%
CVE-2018-19318 HIGH POC This Week

SRCMS 3.0.0 allows CSRF via admin.php?m=Admin&c=manager&a=update to change the username and password of the super administrator account. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

CSRF PHP Srcms
NVD GitHub
CVSS 3.0
8.8
EPSS
0.5%
CVE-2018-19312 HIGH POC PATCH This Week

Centreon 3.4.x (fixed in Centreon 18.10.0 and Centreon web 2.8.24) allows SQL Injection via the searchVM parameter to the main.php?p=20408 URI. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

SQLi PHP Centreon
NVD GitHub
CVSS 3.0
8.8
EPSS
1.9%
CVE-2018-18799 HIGH POC This Week

School Attendance Monitoring System 1.0 has CSRF via event/controller.php?action=photos. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

CSRF PHP School Attendance Monitoring System
NVD Exploit-DB
CVSS 3.0
8.8
EPSS
2.4%
CVE-2018-18797 HIGH POC This Week

School Attendance Monitoring System 1.0 has CSRF via /user/user/edit.php. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

CSRF PHP School Attendance Monitoring System
NVD Exploit-DB
CVSS 3.0
8.8
EPSS
2.4%
CVE-2018-18794 HIGH POC This Week

School Event Management System 1.0 allows CSRF via user/controller.php?action=edit. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

CSRF PHP School Event Management System
NVD Exploit-DB
CVSS 3.0
8.8
EPSS
2.4%
CVE-2018-18759 HIGH POC This Week

Modbus Slave 7.0.0 in modbus tools has a Buffer Overflow. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Modbus Slave
NVD Exploit-DB
CVSS 3.0
7.5
EPSS
8.8%
CVE-2018-18756 HIGH POC This Week

Local Server 1.0.9 has a Buffer Overflow via crafted data on Port 4008. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Local Server
NVD
CVSS 3.0
7.5
EPSS
1.5%
CVE-2018-19319 MEDIUM POC This Month

SRCMS 3.0.0 allows CSRF via admin.php?m=Admin&c=gifts&a=update to change goods prices with the super administrator's privileges. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

CSRF PHP Srcms
NVD GitHub
CVSS 3.0
6.5
EPSS
0.4%
CVE-2018-18760 MEDIUM POC This Month

RhinOS 3.0 build 1190 allows CSRF. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

CSRF Rhinos
NVD Exploit-DB
CVSS 3.0
6.5
EPSS
2.6%
CVE-2018-15693 MEDIUM POC This Month

Inova Partner 5.0.5-RELEASE, Build 0510-0906 and earlier allows authenticated users authorization bypass via insecure direct object reference. Rated medium severity (CVSS 6.4), this vulnerability is remotely exploitable. Public exploit code available and no vendor patch available.

Authentication Bypass Inova Partner
NVD
CVSS 3.0
6.4
EPSS
0.6%
CVE-2018-16395 CRITICAL PATCH Act Now

An issue was discovered in the OpenSSL library in Ruby before 2.3.8, 2.4.x before 2.4.5, 2.5.x before 2.5.2, and 2.6.x before 2.6.0-preview3. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

OpenSSL Information Disclosure Ruby Ubuntu Linux Debian Linux +1
NVD
CVSS 3.0
9.8
EPSS
10.7%
CVE-2018-7359 CRITICAL Act Now

All versions up to V1.1.10P3T18 of ZTE ZXHN F670 product are impacted by heap-based buffer overflow vulnerability, which may allow an attacker to execute arbitrary code. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Memory Corruption Zte Buffer Overflow RCE Zxhn F670 Firmware
NVD
CVSS 3.0
9.8
EPSS
1.9%
CVE-2018-19311 MEDIUM POC PATCH This Month

Centreon 3.4.x (fixed in Centreon 18.10.0) allows XSS via the Service field to the main.php?p=20201 URI, as demonstrated by the "Monitoring > Status Details > Services" screen. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS PHP Centreon
NVD GitHub
CVSS 3.0
5.4
EPSS
1.2%
CVE-2018-7363 HIGH This Week

All versions up to V1.1.10P3T18 of ZTE ZXHN F670 product are impacted by improper authorization vulnerability. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Zte Zxhn F670 Firmware
NVD
CVSS 3.0
8.8
EPSS
0.9%
CVE-2018-7362 HIGH This Week

All versions up to V1.1.10P3T18 of ZTE ZXHN F670 product are impacted by improper access control vulnerability, which may allows an unauthorized user to perform unauthorized operations on the router. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Authentication Bypass Zte Zxhn F670 Firmware
NVD
CVSS 3.0
8.8
EPSS
1.2%
CVE-2018-19296 HIGH PATCH This Week

PHPMailer before 5.2.27 and 6.x before 6.0.6 is vulnerable to an object injection attack. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Deserialization Phpmailer Debian Linux Fedora WordPress
NVD GitHub
CVSS 3.1
8.8
EPSS
2.2%
CVE-2018-16396 HIGH This Week

An issue was discovered in Ruby before 2.3.8, 2.4.x before 2.4.5, 2.5.x before 2.5.2, and 2.6.x before 2.6.0-preview3. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Information Disclosure Ruby Ubuntu Linux Debian Linux Enterprise Linux
NVD
CVSS 3.0
8.1
EPSS
8.0%
CVE-2018-15769 HIGH PATCH This Week

RSA BSAFE Micro Edition Suite versions prior to 4.0.11 (in 4.0.x series) and versions prior to 4.1.6.2 (in 4.1.x series) contain a key management error issue. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Denial Of Service Bsafe Application Testing Suite Communications Analytics Communications Ip Service Activator +8
NVD
CVSS 3.1
7.5
EPSS
2.6%
CVE-2018-9086 HIGH PATCH This Week

In some Lenovo ThinkServer-branded servers, a command injection vulnerability exists in the BMC firmware download command. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. This OS Command Injection vulnerability could allow attackers to execute arbitrary operating system commands on the host.

Lenovo RCE Command Injection Thinkserver Rd340 Firmware Thinkserver Rd440 Firmware +2
NVD
CVSS 3.0
7.2
EPSS
2.4%
CVE-2018-7361 MEDIUM This Month

All versions up to V1.1.10P3T18 of ZTE ZXHN F670 product are impacted by null pointer dereference vulnerability, which may allows an attacker to cause a denial of service via appviahttp service. Rated medium severity (CVSS 6.5), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Zte Null Pointer Dereference Denial Of Service Zxhn F670 Firmware
NVD
CVSS 3.0
6.5
EPSS
0.8%
CVE-2018-7360 MEDIUM This Month

All versions up to V1.1.10P3T18 of ZTE ZXHN F670 product are impacted by information exposure vulnerability, which may allow an unauthenticated attacker to get the GPON SN information via appviahttp. Rated medium severity (CVSS 6.5), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Zte Information Disclosure Zxhn F670 Firmware
NVD
CVSS 3.0
6.5
EPSS
1.0%
CVE-2018-1639 MEDIUM This Month

The Report Builder of Jazz Reporting Service 5.0 through 5.0.2 and 6.0 through 6.0.6 could allow an authenticated user to obtain sensitive information beyond its assigned privileges. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

IBM Information Disclosure Jazz Reporting Service
NVD
CVSS 3.0
6.5
EPSS
1.1%
CVE-2018-15692 MEDIUM This Month

Inova Partner 5.0.5-RELEASE, Build 0510-0906 and earlier allows authenticated users authorization bypass and data manipulation in certain functions. Rated medium severity (CVSS 6.4), this vulnerability is remotely exploitable. No vendor patch available.

Authentication Bypass Inova Partner
NVD
CVSS 3.0
6.4
EPSS
0.5%
CVE-2018-9073 MEDIUM This Month

Lenovo Chassis Management Module (CMM) prior to version 2.0.0 utilizes a hardcoded encryption key to protect certain secrets. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Lenovo Authentication Bypass Chassis Management Module Firmware
NVD
CVSS 3.0
5.9
EPSS
0.5%
CVE-2018-1797 MEDIUM PATCH This Month

IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 using Enterprise bundle Archives (EBA) could allow a local attacker to traverse directories on the system. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. This Path Traversal vulnerability could allow attackers to access files and directories outside the intended path.

IBM Path Traversal Websphere Application Server
NVD
CVSS 3.0
5.5
EPSS
2.0%
CVE-2018-9071 MEDIUM This Month

Lenovo Chassis Management Module (CMM) prior to version 2.0.0 allows unauthenticated users to retrieve information related to the current authentication configuration settings. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Lenovo Information Disclosure Chassis Management Module Firmware
NVD
CVSS 3.0
5.3
EPSS
1.0%
CVE-2018-9085 MEDIUM This Month

A write protection lock bit was left unset after boot on an older generation of Lenovo and IBM System x servers, potentially allowing an attacker with administrator access to modify the subset of. Rated medium severity (CVSS 4.9), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Lenovo Intel Privilege Escalation IBM Flex System X240 M4 Firmware +25
NVD
CVSS 3.0
4.9
EPSS
0.7%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy