133 matches found
Design/Logic Flaw
mixin-deep is vulnerable to Prototype Pollution in versions before 1.3.2 and version 2.0.0. The function mixin-deep could be tricked into adding or modifying properties of Object.prototype using a constructor payload...
CVE-2019-10747
set-value is vulnerable to Prototype Pollution in versions lower than 3.0.1. The function mixin-deep could be tricked into adding or modifying properties of Object.prototype using any of the constructor, prototype and proto payloads...
CVE-2019-12826
A Cross-Site-Request-Forgery CSRF vulnerability in widgetlogic.php in the 2by2host Widget Logic plugin before 5.10.2 for WordPress allows remote attackers to execute PHP code via snippets that are attached to widgets and then eval'd to dynamically determine their visibility by crafting a maliciou...
WordPress 5.1 CSRF to Remote Code Execution
Impact An attacker can take over any WordPress site that has comments enabled by tricking an administrator of a target blog to visit a website set up by the attacker. As soon as the victim administrator visits the malicious website, a cross-site request forgery CSRF exploit is run against the...
CVE-2018-16487
A prototype pollution vulnerability was found in lodash 4.17.11 where the functions merge, mergeWith, and defaultsDeep can be tricked into adding or modifying properties of Object.prototype...
CVE-2018-16172
Improper countermeasure against clickjacking attack in client certificates management screen was discovered in Cybozu Remote Service 3.0.0 to 3.1.8, that allows remote attackers to trick a user to delete the registered client certificate...
Input validation
Improper countermeasure against clickjacking attack in client certificates management screen was discovered in Cybozu Remote Service 3.0.0 to 3.1.8, that allows remote attackers to trick a user to delete the registered client certificate...
Microsoft Jet Database Engine Remote Code Execution Vulnerability
Microsoft Jet Database Engine is an underlying database engine. A remote code execution vulnerability exists in Microsoft Jet Database Engine, which arises from the failure of Jet Database Engine to properly handle objects in memory, and can be exploited to execute arbitrary code on a victim's...
Huawei Honor 7A and Honor 9 Lite Information Disclosure Vulnerability
The Huawei Honor 7A and Honor 9 Lite are both smartphone products from the Chinese company Huawei Huawei. An information disclosure vulnerability exists in Huawei Honor 7A prior to version 8.0.0.195C00 and Huawei Honor 9 Lite prior to version 8.0.0.182C01. The vulnerability can be exploited to...
CVE-2018-14398
An issue was discovered in Creme CRM 1.6.12. The value of the cancel button uses the content of the HTTP Referer header, and could be used to trick a user into visiting a fake login page in order to steal credentials...
libgig heap buffer overflow vulnerability (CNVD-2018-15174)
libgig is a C++ library for loading, modifying existing and creating new Gigasampler .gig files and DLS downloadable sound level 1/2 files, KORG sample-based instruments .KSF and .KMP files, SoundFont v2 .sf2 files and AKAI sampler data. A heap-based buffer overflow vulnerability exists in the...
CVE-2018-3850
An exploitable use-after-free vulnerability exists in the JavaScript engine Foxit Software Foxit PDF Reader version 9.0.1.1049. A specially crafted PDF document can trigger a previously freed object in memory to be reused, resulting in arbitrary code execution. An attacker needs to trick the user...
Cisco Identity Services Engine Cross-Site Scripting Vulnerability (CNVD-2018-05083)
Cisco Identity Services Engine ISE is an identity-based environment awareness platform ISE Identity Services Engine from Cisco. The platform collects real-time information from the network, users and devices, and develops and enforces policies to regulate the network. A cross-site request forgery...
Microsoft Edge Security Feature Bypass Vulnerability
A security feature bypass vulnerability exists in Microsoft Edge when the Edge Content Security Policy CSP fails to properly validate certain specially crafted documents. An attacker who exploited the bypass could trick a user into loading a page containing malicious content. To exploit the bypas...
Apple macOS Sierra WindowServer Memory Corruption Vulnerability
Apple macOS is an operating system that runs on Apple's Macintosh line of computers. A memory corruption vulnerability exists in Apple macOS Sierra WindowServer, which can be exploited by a remote attacker to submit a special application and trick the user into parsing it to execute arbitrary cod...
Google Chrome Blink Memory Misreference Vulnerability (CNVD-2017-07275)
Google Chrome is a web browser developed by Google Inc. in the United States. A memory misreference vulnerability exists in Google Chrome Blink, which allows remote attackers to exploit the vulnerability by submitting a special WEB page and tricking the user into parsing it, which can crash the...
concrete5 File Manager Thumbnail Editor Cross-Site Request Forgery Vulnerability
concrete5 is a free content management system CMS developed by Portland Labs in the United States. The system can be edited and typeset directly on the page.File Manager is a full-featured file manager.Thumbnail Editor is one of the thumbnail editors. A cross-site request forgery vulnerability...
CVE-2017-8082
concrete5 8.1.0 has CSRF in Thumbnail Editor in the File Manager, which allows remote attackers to disable the entire installation by merely tricking an admin into viewing a malicious page involving the /tools/required/files/importers/imageeditor?fID=1&imgData= URI. This results in a site-wide...
CVE-2016-9179
lynx: It was found that Lynx doesn't parse the authority component of the URL correctly when the host name part ends with '?', and could instead be tricked into connecting to a different host...
CVE-2016-4412
An issue was discovered in phpMyAdmin. A user can be tricked into following a link leading to phpMyAdmin, which after authentication redirects to another malicious site. The attacker must sniff the user's valid phpMyAdmin token. All 4.0.x versions prior to 4.0.10.16 are affected...