13538 matches found
Apache ActiveMQ QueueFilter Cross-Site Scripting (CVE-2018-8006)
A cross-site scripting vulnerability exists in Apache ActiveMQ in QueueFilter parameter. Successful exploitation of this vulnerability would allow remote attackers to inject arbitrary web script into the affected system...
WordPress Ninja Forms Plugin Remote Code Execution
A Remote Code Execution vulnerability exists in the WordPress Ninja Forms Plugin. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
WordPress Popuplink.js Website Redirection
A number of malicious plugins exist in Wordpress. Websites incorporating those plugins may redirect users to malicious websites...
Microsoft Windows VBScript Engine Remote Code Execution (CVE-2018-8373)
A remote code execution vulnerability exists in Microsoft Internet Explorer. The vulnerability is due to an improper handling of objects in memory. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
WordPress Core Phar Insecure Deserialization
An insecure deserialization vulnerability exists in WordPress core. The vulnerability is due to the lack of input validation in PHP phar stream wrapper. Successful exploitation of this vulnerability could allow a remote authenticated attacker with at least author-level privileges to execute...
Zyxel EMG2926 Router OS Command Injection (CVE-2017-6884)
A command injection vulnerability exists in Zyxel EMG2926. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the router...
Network Weathermap Persistent Cross-Site Scripting (CVE-2013-2618)
A cross-site scripting vulnerability has been reported in Network Weathermap. Successful exploitation of this vulnerability would allow remote attackers to inject arbitrary web script into the affected system...
Microsoft Windows Shell Remote Code Execution (CVE-2018-8414)
A remote code execution vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Microsoft DirectX Graphics Kernel Elevation of Privilege (CVE-2018-8406)
An elevation of privilege vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Microsoft DirectX Graphics Kernel Elevation of Privilege (CVE-2018-8405)
An elevation of privilege vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Microsoft Win32k Elevation of Privilege (CVE-2018-8404)
An elevation of privilege vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Microsoft Edge Chakra Scripting Engine Memory Corruption (CVE-2018-8355)
A memory corruption vulnerability exists in Microsoft Edge. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Microsoft Browser Scripting Engine Memory Corruption (CVE-2018-8372)
A memory corruption vulnerability exists in Microsoft Browser. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Microsoft Edge Memory Corruption (CVE-2018-8387)
A memory corruption vulnerability exists in Microsoft Edge. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Microsoft Internet Explorer Scripting Engine Memory Corruption (CVE-2018-8389)
A memory corruption vulnerability exists in Microsoft Internet Explorer. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Microsoft Graphics Remote Code Execution (CVE-2018-8344)
A remote code execution vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Microsoft PowerPoint Remote Code Execution (CVE-2018-8376)
A remote code execution vulnerability exists in Microsoft PowerPoint. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Microsoft Internet Explorer Scripting Engine Memory Corruption (CVE-2018-8371)
A memory corruption vulnerability exists in Microsoft Internet Explorer. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Microsoft Browser Memory Corruption (CVE-2018-8403)
A memory corruption vulnerability exists in Microsoft Browser. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Microsoft LNK Remote Code Execution (CVE-2018-8345)
A remote code execution vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Adobe Flash Player Out-of-bounds read (APSB18-25: CVE-2018-12827)
A out of bounds read vulnerability exists in Adobe Flash Player. Successful exploitation of this vulnerability could allow a remote attacker to obtain sensitive information...
Microsoft Excel Remote Code Execution (CVE-2018-8379)
A remote code execution vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Adobe Flash Player Out-of-bounds read (APSB18-25: CVE-2018-12824)
A out of bounds read vulnerability exists in Adobe Flash Player. Successful exploitation of this vulnerability could allow a remote attacker to obtain sensitive information...
Microsoft Internet Explorer Scripting Engine Memory Corruption (CVE-2018-8353)
A memory corruption vulnerability exists in Microsoft Internet Explorer. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Microsoft Chakra Scripting Engine Memory Corruption (CVE-2018-8384)
A memory corruption vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Adobe Flash Player Security bypass (APSB18-25: CVE-2018-12825)
A security bypass vulnerability exists in Adobe Flash Player. Successful exploitation of this vulnerability would allow remote attackers to bypass security tests and protocols on the affected system...
Microsoft DirectX Graphics Kernel Elevation of Privilege (CVE-2018-8401)
An elevation of privilege vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Adobe Flash Player Out-of-bounds read (APSB18-25: CVE-2018-12826)
A out of bounds read vulnerability exists in Adobe Flash Player. Successful exploitation of this vulnerability could allow a remote attacker to obtain sensitive information...
Microsoft Edge Spoofing (CVE-2018-8383)
A spoofing vulnerability exists in Microsoft Edge. Successful exploitation of this vulnerability would allow a remote attacker to impersonate and present itself as a legitimate host...
Adobe Acrobat and Reader Out-of-bounds write (APSB18-29: CVE-2018-12808)
A out of bounds write vulnerability exists in Adobe Acrobat and Reader. Successful exploitation of this vulnerability could allow a remote attacker to obtain sensitive information...
Microsoft Edge Chakra Scripting Engine Memory Corruption (CVE-2018-8266)
A memory corruption vulnerability exists in Microsoft Edge. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Apple WebKit WebAssembly Parsing Type Confusion
A vulnerability exists in Apple WebKit. Successful exploitation of this vulnerability could allow a remote attacker to damage users system. This leads to a number of possible overflows and type confusion bugs...
Google Chrome Video Downloader Extension XSS
A cross-site scripting vulnerability exists in Google Chrome Video Downloader Extension. Successful exploitation of this vulnerability would allow remote attackers to inject arbitrary web script into the affected system...
Google Chrome Integer Overflow Memory Corruption (CVE-2018-6092)
A memory corruption vulnerability exists in Google Chrome. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
MikroTik RouterOS Winbox Authentication Bypass (CVE-2018-14847)
An authentication bypass vulnerability exists in the Winbox component of Mikrotik RouterOS. A remote attacker could exploit this flaw by sending specially crafted packets to the affected server. Successful exploitation of this vulnerability would allow a remote attacker to hijack a user's session...
Samsung SmartThings Hub SQL Injection (CVE-2018-3879)
An SQL injection vulnerability exists in Samsung SmartThings Hub. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQL commands on the affected system...
UnderMiner Exploit Kit Landing Page
UnderMiner exploit kit is a web exploit kit that operates by delivering malicious payload to the victim's computer. Successful infection will allow the attacker to download additional malware to the target...
FTPShell Client Buffer Overflow (CVE-2009-3364; CVE-2017-6465; CVE-2018-7573)
A remote code execution vulnerability exists in FTPShell Client. The vulnerability is due to incorrect handling of the FTP response command. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Google Chrome V8 kind confusion
A vulnerability exists in Google Chrome. Successful exploitation of this vulnerability could allow a remote attacker to damage users system...
Microsoft Internet Explorer JsErrorToString Use-after-free
A use-after-free vulnerability exists in Microsoft IE. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Apple WebKit Out Of Bounds Read (CVE-2018-4222)
A out of bounds read vulnerability exists in Apple WebKit. Successful exploitation of this vulnerability could allow a remote attacker to obtain sensitive information...
XiongMai uc-httpd Buffer Overflow (CVE-2018-10088)
A remote code execution vulnerability exists in XiongMai uc-httpd. The vulnerability is due to a buffer overflow. Successful exploitation would allow an attacker to execute arbitrary code on the target...
Adobe ColdFusion DataServicesCFProxy Insecure Deserialization (CVE-2018-4939)
An insecure deserialization vulnerability exists in the Flex integration service of Adobe ColdFusion. The vulnerability is due to the lack of input validation. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Apple WebKit Use-after-free (CVE-2018-4218)
A use-after-free vulnerability exists in Apple WebKit. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Oracle WebLogic WLS Server Component Arbitrary File Upload (CVE-2018-2894)
An arbitrary file upload vulnerability has been reported in Oracle WebLogic Server. This vulnerability is due to input validation of a keystore file. A remote, unauthenticated attacker could exploit this vulnerability by sending a crafted request to the remote service. Successful exploitation cou...
Unicorn Suspicious Evasion Technique
Known exploits could potentially bypass security products by using Unicorn tool obfuscation techniques. Successful exploitation of this issue may allow execution of arbitrary code on a vulnerable system...
PoshRat Command Control Attempt
PoshRat is an open source tool that uses evasions techniques for reverse interactive PowerShell. A remote attacker can send malicious file that triggers the vulnerability...
VBScript Malicious Obfuscation Technique
This protection will detect and block attempts to circumvent IPS using VBscript obfuscation schemes...
D-Link DIR601 Authentication Bypass
An authentication bypass vulnerability has been reported in D-Link routers. Successful exploitation of this vulnerability would allow remote attackers to gain access to sensitive information and gain unauthorized access into the affected system...
QNAP Qcenter Virtual Appliance Information Disclosure (CVE-2018-0706)
An Information disclosure vulnerability exists in QNAP Qcenter Virtual Appliance web console. Successful exploitation of this vulnerability would allow an authenticated user to obtain sensitive information...