|
198231
|
9.8 |
CRITICAL
Network
|
joomlaextensions
|
component_appointment
|
https://www.joomlaextensions.co.in/ Joomla! Component Appointment 1.1 is affected by: SQL Injection. The impact is: Code execution (remote). The component is: com_appointment component.
|
CWE-89
SQL Injection
|
CVE-2017-12758
|
2024-11-21 12:10 |
2019-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198232
|
9.8 |
CRITICAL
Network
|
ambittechnologies
|
itech_b2b_script
itech_travel_script
itech_social_networking_script
itech_multi_vendor_script
itech_movie_script
itech_job_script
itech_image_sharing_script
itech_freelancer_scri…
|
Certain Ambit Technologies Pvt. Ltd products are affected by: SQL Injection. This affects iTech B2B Script 4.42i and Tech Business Networking Script 8.26i and Tech Caregiver Script 2.71i and Tech Cla…
|
CWE-89
SQL Injection
|
CVE-2017-12757
|
2024-11-21 12:10 |
2019-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198233
|
8.3 |
HIGH
Network
|
mpg123
|
mpg123
|
A heap-based buffer over-read in the getbits function in src/libmpg123/getbits.h in mpg123 through 1.25.5 allows remote attackers to cause a possible denial-of-service (out-of-bounds read) or possibl…
|
CWE-125
Out-of-bounds Read
|
CVE-2017-12839
|
2024-11-21 12:10 |
2019-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198234
|
6.5 |
MEDIUM
Network
|
metinfo
|
metinfo
|
Metinfo 5.3.18 is affected by: Cross Site Request Forgery (CSRF). The impact is: Information Disclosure (remote). The component is: admin/index.php. The attack vector is: The administrator clicks on …
|
CWE-352
Origin Validation Error
|
CVE-2017-12790
|
2024-11-21 12:10 |
2019-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198235
|
7.1 |
HIGH
Local
|
qbittorrent
|
qbittorrent
|
The UI Lock feature in qBittorrent version 3.3.15 is vulnerable to Authentication Bypass, which allows Attack to gain unauthorized access to qBittorrent functions by tampering the affected flag value…
|
CWE-287
Improper Authentication
|
CVE-2017-12778
|
2024-11-21 12:10 |
2019-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198236
|
7.5 |
HIGH
Network
|
imagemagick
|
imagemagick
|
In ImageMagick 7.0.6-6, a memory exhaustion vulnerability was found in the function format8BIM, which allows attackers to cause a denial of service.
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2017-12806
|
2024-11-21 12:10 |
2019-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198237
|
7.5 |
HIGH
Network
|
imagemagick
|
imagemagick
|
In ImageMagick 7.0.6-6, a memory exhaustion vulnerability was found in the function ReadTIFFImage, which allows attackers to cause a denial of service.
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2017-12805
|
2024-11-21 12:10 |
2019-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198238
|
6.5 |
MEDIUM
Network
|
entropymine
|
imageworsener
|
The iwgif_init_screen function in imagew-gif.c:510 in ImageWorsener 1.3.2 allows remote attackers to cause a denial of service (hmemory exhaustion) via a crafted file.
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2017-12804
|
2024-11-21 12:10 |
2019-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198239
|
6.1 |
MEDIUM
Network
|
metinfo
|
metinfo
|
Multiple cross-site scripting (XSS) vulnerabilities in admin/index.php in Metinfo 5.3.18 allows remote attackers to inject arbitrary web script or HTML via the (1) class1 parameter or the (2) anyid p…
|
CWE-79
Cross-site Scripting
|
CVE-2017-12788
|
2024-11-21 12:10 |
2019-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198240
|
7.5 |
HIGH
Network
|
psafe
|
dfndr_security
|
DFNDR Security Antivirus, Anti-hacking & Cleaner, 5.0.9, 2017-11-01, Android application uses a hard-coded key for encryption. Data stored using this key can be decrypted by anyone able to access thi…
|
CWE-798
Use of Hard-coded Credentials
|
CVE-2017-13108
|
2024-11-21 12:10 |
2018-08-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
