CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

RedhatCVE•added 2026/01/09 10:33 a.m.•7 views

CVE-2017-18694

An issue was discovered on Samsung mobile devices with software through 2016-10-25 Exynos5 chipsets. Attackers can read kernel addresses in the log because an incorrect format specifier is used. The Samsung ID is SVE-2016-7551 January 2017...

5.3CVSS6.9AI score0.0034EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 3:16 p.m.•4 views

CVE-2020-18694

Cross Site Request Forgery CSRF in IgnitedCMS v1.0 allows remote attackers to obtain sensitive information and gain privilege via the component "/admin/profile/saveprofile"...

8.8CVSS7AI score0.00926EPSS

Exploits1

RedhatCVE•added 2025/05/22 3:26 a.m.•7 views

CVE-2018-18694

admin/index.php?id=filesmanager in Monstra CMS 3.0.4 allows remote authenticated administrators to trigger stored XSS via JavaScript content in a file whose name lacks an extension. Such a file is interpreted as text/html in certain cases...

4.8CVSS5.1AI score0.00888EPSS

Exploits1References1

Circl•added 2021/08/06 10:33 p.m.•3 views

CVE-2020-18694

creationtimestamp| type| source ---|---|--- 2021-08-06 22:33:07+00:00| seen| https://t.me/cibsecurity/26959...

8.8CVSS8.1AI score0.00926EPSS

Exploits1References1

Vulnrichment•added 2021/08/06 6:2 p.m.•9 views

CVE-2020-18694

Cross Site Request Forgery CSRF in IgnitedCMS v1.0 allows remote attackers to obtain sensitive information and gain privilege via the component "/admin/profile/saveprofile"...

7AI score0.00926EPSS

Exploits1References1

CVE•added 2021/08/06 6:2 p.m.•71 views

CVE-2020-18694

CVE-2020-18694 is a CSRF vulnerability in IgnitedCMS v1.0. The issue allows remote attackers to obtain sensitive information and gain privileges via the component “/admin/profile/save_profile.” Affected product: IgnitedCMS v1.0 (per multiple sources). The Red Hat/NVD/OSV/CNNVD entries confirm the...

8.8CVSS8.7AI score0.00926EPSS

Exploits1References1Affected Software1

CVE•added 2020/04/07 1:57 p.m.•58 views

CVE-2017-18694

CVE-2017-18694 affects Samsung mobile devices with Exynos5 software up to 2016-10-25. Root cause: an incorrect format specifier in the logging path allows reading kernel addresses from logs, enabling information disclosure. Impact per sources: kernel addresses disclosed; no exploitation details p...

5.3CVSS5.2AI score0.0034EPSS

Exploits0References1Affected Software1

CVE•added 2019/11/04 8:17 p.m.•41 views

CVE-2019-18694

CVE-2019-18694 is rejected and does not represent an active vulnerability entry.

7.4AI score

Exploits0

Cvelist•added 2019/11/04 8:17 p.m.•9 views

CVE-2019-18694

...

Exploits0

CVE•added 2018/10/26 8:0 p.m.•64 views

CVE-2018-18694

Monstra CMS 3.0.4 is affected by CVE-2018-18694. Remote authenticated administrators can trigger a stored XSS via JavaScript content in a file whose name lacks an extension, which is interpreted as text/html in some cases. Affected component: admin/filesmanager path on Monstra CMS. Vulnerability ...

4.8CVSS5.2AI score0.00888EPSS

Exploits1References1Affected Software1

Circl•added 2012/04/03 12:0 a.m.•1 views

CVE-2012-1978

creationtimestamp| type| source ---|---|--- 2012-04-03 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/18694...

6.8CVSS5.7AI score0.02284EPSS

Exploits6References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by