Lucene search
K

17 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 10:17 a.m.8 views

CVE-2019-18834

Persistent XSS in the WooCommerce Subscriptions plugin before 2.6.3 for WordPress allows remote attackers to execute arbitrary JavaScript because Billing Details are mishandled in WCSAdminPostTypes in class-wcs-admin-post-types.php...

6.1CVSS6.8AI score0.01628EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2018-10894

Malware in sbrugna...

9.8CVSS9.5AI score0.02116EPSS
Exploits1References3
NVD
NVD
added 2024/05/03 3:15 a.m.28 views

CVE-2023-41208

D-Link DAP-1325 SetHostIPv6StaticSettings StaticDefaultGateway Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1325 routers. Authentication is not required to...

8.8CVSS9.1AI score0.00855EPSS
Exploits0References2
CVE
CVE
added 2024/05/03 2:12 a.m.67 views

CVE-2023-41208

The CVE concerns D-Link DAP-1325 devices exposing a SetHostIPv6StaticSettings StaticDefaultGateway stack-based buffer overflow in the HNAP1 SOAP endpoint. The root cause is improper validation of the length of user-supplied XML data before copying it into a fixed-size stack buffer, enabling netwo...

8.8CVSS9AI score0.00855EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2024/05/03 2:12 a.m.37 views

CVE-2023-41208 D-Link DAP-1325 SetHostIPv6StaticSettings StaticDefaultGateway Stack-based Buffer Overflow Remote Code Execution Vulnerability

D-Link DAP-1325 SetHostIPv6StaticSettings StaticDefaultGateway Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1325 routers. Authentication is not required to...

8.8CVSS9.2AI score0.00855EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/05/03 2:12 a.m.29 views

CVE-2023-41208 D-Link DAP-1325 SetHostIPv6StaticSettings StaticDefaultGateway Stack-based Buffer Overflow Remote Code Execution Vulnerability

D-Link DAP-1325 SetHostIPv6StaticSettings StaticDefaultGateway Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1325 routers. Authentication is not required to...

8.8CVSS7.8AI score0.00855EPSS
Exploits0References2
CVE
CVE
added 2020/07/23 7:42 p.m.51 views

CVE-2019-18834

CVE-2019-18834 affects the WordPress plugin WooCommerce Subscriptions (pre-2.6.3). The vulnerability is a persistent cross-site scripting (XSS) flaw caused by mishandling of Billing Details in WCS_Admin_Post_Types (class-wcs-admin-post-types.php), allowing remote attackers to execute arbitrary Ja...

6.1CVSS6.3AI score0.01628EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2020/07/23 7:42 p.m.30 views

CVE-2019-18834

Persistent XSS in the WooCommerce Subscriptions plugin before 2.6.3 for WordPress allows remote attackers to execute arbitrary JavaScript because Billing Details are mishandled in WCSAdminPostTypes in class-wcs-admin-post-types.php...

6.4AI score0.01628EPSS
Exploits1References3
Circl
Circl
added 2020/04/21 12:29 a.m.6 views

CVE-2017-18834

creationtimestamp| type| source ---|---|--- 2020-04-21 00:29:12+00:00| seen| https://t.me/cibsecurity/11424...

6.1CVSS6AI score0.00508EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/04/20 4:24 p.m.32 views

CVE-2017-18834

Certain NETGEAR devices are affected by reflected XSS. This affects M4300-28G before 12.0.2.15, M4300-52G before 12.0.2.15, M4300-28G-POE+ before 12.0.2.15, M4300-52G-POE+ before 12.0.2.15, M4300-8X8F before 12.0.2.15, M4300-12X12F before 12.0.2.15, M4300-24X24F before 12.0.2.15, M4300-24X before...

6.1CVSS6.4AI score0.00508EPSS
Exploits0References1
CVE
CVE
added 2020/04/20 4:24 p.m.48 views

CVE-2017-18834

CVE-2017-18834 affects NETGEAR M4300 and M4200 series: reflected XSS in firmware before 12.0.2.15 across multiple models (M4300-28G/52G, M4300-28G-POE+, M4300-52G-POE+, M4300-8X8F, M4300-12X12F, M4300-24X24F, M4300-24X, M4300-48X, M4200). Root cause is reflected XSS; no exploitation details are p...

6.1CVSS6.3AI score0.00508EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2018/11/12 5:29 a.m.17 views

Heap overflow

An issue has been found in libIEC61850 v1.3. It is a heap-based buffer overflow in BerEncoderencodeOctetString in mms/asn1/berencoder.c. This is exploitable even after CVE-2018-18834 has been patched, with a different dataSetValue sequence than the CVE-2018-18834 attack vector...

7.5CVSS9.7AI score0.02116EPSS
Exploits2References2Affected Software1
OSV
OSV
added 2018/11/12 5:29 a.m.20 views

CVE-2018-19185

An issue has been found in libIEC61850 v1.3. It is a heap-based buffer overflow in BerEncoderencodeOctetString in mms/asn1/berencoder.c. This is exploitable even after CVE-2018-18834 has been patched, with a different dataSetValue sequence than the CVE-2018-18834 attack vector...

9.8CVSS7.4AI score
Exploits0References2
NVD
NVD
added 2018/10/30 6:29 a.m.20 views

CVE-2018-18834

An issue has been found in libIEC61850 v1.3. It is a heap-based buffer overflow in BerEncoderencodeOctetString in mms/asn1/berencoder.c...

9.8CVSS9.8AI score0.02116EPSS
Exploits1References2
OSV
OSV
added 2018/10/30 6:29 a.m.16 views

CVE-2018-18834

An issue has been found in libIEC61850 v1.3. It is a heap-based buffer overflow in BerEncoderencodeOctetString in mms/asn1/berencoder.c...

9.8CVSS9.8AI score
Exploits0References2
Cvelist
Cvelist
added 2018/10/30 6:0 a.m.23 views

CVE-2018-18834

An issue has been found in libIEC61850 v1.3. It is a heap-based buffer overflow in BerEncoderencodeOctetString in mms/asn1/berencoder.c...

9.8AI score0.02116EPSS
Exploits1References2
CVE
CVE
added 2018/10/30 6:0 a.m.48 views

CVE-2018-18834

CVE-2018-18834 affects libIEC61850 v1.3. It is a heap-based buffer overflow in BerEncoder_encodeOctetString (mms/asn1/ber_encoder.c). Impacted component: libIEC61850 1.3. Reported in multiple sources; CNVD/CVE records indicate potential arbitrary code execution or DoS. CVSS metrics from NVD: AV:N...

9.8CVSS9.6AI score0.02116EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder