) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.
Search Results (Refine Search)
| Vuln ID | Summary | CVSS Severity |
|---|---|---|
| CVE-2016-4392 |
A remote cross site scripting vulnerability has been identified in HP Business Service Management software v9.1x, v9.20 - v9.25IP1. Published: August 06, 2018; 4:29:00 PM -0400 |
V3.0: 5.4 MEDIUM V2.0: 3.5 LOW |
| CVE-2016-4391 |
A remote code execution security vulnerability has been identified in all versions of the HP ArcSight WINC Connector prior to v7.3.0. Published: August 06, 2018; 4:29:00 PM -0400 |
V3.0: 9.8 CRITICAL V2.0: 7.5 HIGH |
| CVE-2017-14447 |
An exploitable buffer overflow vulnerability exists in the PubNub message handler for the 'ad' channel of Insteon Hub running firmware version 1012. Specially crafted commands sent through the PubNub service can cause a stack-based buffer overflow overwriting arbitrary data. An attacker should send an authenticated HTTP request to trigger this vulnerability. Published: August 06, 2018; 1:29:01 PM -0400 |
V3.0: 7.7 HIGH V2.0: 5.5 MEDIUM |
| CVE-2018-14978 |
An issue was discovered in QCMS 3.0.1. CSRF exists via the backend/user/admin/add.html URI. Published: August 06, 2018; 11:29:01 AM -0400 |
V3.0: 8.8 HIGH V2.0: 6.8 MEDIUM |
| CVE-2018-14977 |
An issue was discovered in QCMS 3.0.1. upload/System/Controller/guest.php has XSS, as demonstrated by the name parameter, a different vulnerability than CVE-2018-8070. Published: August 06, 2018; 11:29:01 AM -0400 |
V3.0: 6.1 MEDIUM V2.0: 4.3 MEDIUM |
| CVE-2018-14976 |
An issue was discovered in QCMS 3.0.1. upload/System/Controller/backend/category.php has XSS. Published: August 06, 2018; 11:29:01 AM -0400 |
V3.0: 4.8 MEDIUM V2.0: 3.5 LOW |
| CVE-2018-14975 |
An issue was discovered in QCMS 3.0.1. upload/System/Controller/backend/album.php has XSS. Published: August 06, 2018; 11:29:01 AM -0400 |
V3.0: 4.8 MEDIUM V2.0: 3.5 LOW |
| CVE-2018-14974 |
An issue was discovered in QCMS 3.0.1. upload/System/Controller/backend/news.php has XSS. Published: August 06, 2018; 11:29:01 AM -0400 |
V3.0: 4.8 MEDIUM V2.0: 3.5 LOW |
| CVE-2018-14973 |
An issue was discovered in QCMS 3.0.1. upload/System/Controller/backend/product.php has XSS. Published: August 06, 2018; 11:29:00 AM -0400 |
V3.0: 4.8 MEDIUM V2.0: 3.5 LOW |
| CVE-2018-14972 |
An issue was discovered in QCMS 3.0.1. upload/System/Controller/backend/down.php has XSS. Published: August 06, 2018; 11:29:00 AM -0400 |
V3.0: 4.8 MEDIUM V2.0: 3.5 LOW |
| CVE-2018-14971 |
An issue was discovered in QCMS 3.0.1. upload/System/Controller/backend/user.php has XSS. Published: August 06, 2018; 11:29:00 AM -0400 |
V3.0: 4.8 MEDIUM V2.0: 3.5 LOW |
| CVE-2018-14970 |
An issue was discovered in QCMS 3.0.1. upload/System/Controller/backend/slideshow.php has XSS. Published: August 06, 2018; 11:29:00 AM -0400 |
V3.0: 4.8 MEDIUM V2.0: 3.5 LOW |
| CVE-2018-14969 |
An issue was discovered in QCMS 3.0.1. upload/System/Controller/backend/system.php has XSS. Published: August 06, 2018; 11:29:00 AM -0400 |
V3.0: 4.8 MEDIUM V2.0: 3.5 LOW |
| CVE-2018-14968 |
An issue was discovered in EMLsoft 5.4.5. upload\eml\action\action.address.php has SQL Injection via the numPerPage parameter. Published: August 06, 2018; 11:29:00 AM -0400 |
V3.0: 9.8 CRITICAL V2.0: 7.5 HIGH |
| CVE-2018-14967 |
An issue was discovered in EMLsoft 5.4.5. upload\eml\action\action.user.php has SQL Injection via the numPerPage parameter. Published: August 06, 2018; 11:29:00 AM -0400 |
V3.0: 8.8 HIGH V2.0: 6.5 MEDIUM |
| CVE-2018-14966 |
An issue was discovered in EMLsoft 5.4.5. The eml/upload/eml/?action=user&do=add page allows CSRF. Published: August 06, 2018; 11:29:00 AM -0400 |
V3.0: 8.8 HIGH V2.0: 6.8 MEDIUM |
| CVE-2018-14965 |
An issue was discovered in EMLsoft 5.4.5. The eml/upload/eml/?action=address&do=add page allows CSRF. Published: August 06, 2018; 11:29:00 AM -0400 |
V3.0: 8.8 HIGH V2.0: 6.8 MEDIUM |
| CVE-2018-14964 |
An issue was discovered in EMLsoft 5.4.5. XSS exists via the eml/upload/eml/?action=address&do=edit page. Published: August 06, 2018; 11:29:00 AM -0400 |
V3.0: 5.4 MEDIUM V2.0: 3.5 LOW |
| CVE-2018-14963 |
zzcms 8.3 has CSRF via the admin/adminadd.php?action=add URI. Published: August 06, 2018; 11:29:00 AM -0400 |
V3.0: 8.8 HIGH V2.0: 6.8 MEDIUM |
| CVE-2018-14962 |
zzcms 8.3 has stored XSS related to the content variable in user/manage.php and zt/show.php. Published: August 06, 2018; 11:29:00 AM -0400 |
V3.0: 5.4 MEDIUM V2.0: 3.5 LOW |