Export limit exceeded: 359385 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (359385 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2018-19830 | 1 Business Alliance Financial Circle Project | 1 Business Alliance Financial Circle | 2024-11-21 | 7.5 High |
| The UBSexToken() function of a smart contract implementation for Business Alliance Financial Circle (BAFC), an tradable Ethereum ERC20 token, allows attackers to change the owner of the contract, because the function is public (by default) and does not check the caller's identity. | ||||
| CVE-2018-19829 | 1 Artica | 1 Integria Ims | 2024-11-21 | N/A |
| Artica Integria IMS 5.0.83 has CSRF in godmode/usuarios/lista_usuarios, resulting in the ability to delete an arbitrary user when the ID number is known. | ||||
| CVE-2018-19828 | 1 Artica | 1 Integria Ims | 2024-11-21 | N/A |
| Artica Integria IMS 5.0.83 has XSS via the search_string parameter. | ||||
| CVE-2018-19827 | 1 Sass-lang | 1 Libsass | 2024-11-21 | N/A |
| In LibSass 3.5.5, a use-after-free vulnerability exists in the SharedPtr class in SharedPtr.cpp (or SharedPtr.hpp) that may cause a denial of service (application crash) or possibly have unspecified other impact. | ||||
| CVE-2018-19826 | 1 Sass-lang | 1 Libsass | 2024-11-21 | N/A |
| In inspect.cpp in LibSass 3.5.5, a high memory footprint caused by an endless loop (containing a Sass::Inspect::operator()(Sass::String_Quoted*) stack frame) may cause a Denial of Service via crafted sass input files with stray '&' or '/' characters. NOTE: Upstream comments indicate this issue is closed as "won't fix" and "works as intended" by design | ||||
| CVE-2018-19824 | 4 Canonical, Debian, Linux and 1 more | 4 Ubuntu Linux, Debian Linux, Linux Kernel and 1 more | 2024-11-21 | N/A |
| In the Linux kernel through 4.19.6, a local user could exploit a use-after-free in the ALSA driver by supplying a malicious USB Sound device (with zero interfaces) that is mishandled in usb_audio_probe in sound/usb/card.c. | ||||
| CVE-2018-19822 | 1 Infovista | 1 Vistaportal | 2024-11-21 | N/A |
| Cross Site Scripting exists in InfoVista VistaPortal SE Version 5.1 (build 51029). The page "/VPortal/mgtconsole/SharedCriteria.jsp" has reflected XSS via the ConnPoolName or GroupId parameter. | ||||
| CVE-2018-19821 | 1 Infovista | 1 Vistaportal | 2024-11-21 | N/A |
| Cross Site Scripting exists in InfoVista VistaPortal SE Version 5.1 (build 51029). The page "/VPortal/mgtconsole/SecurityPolicies.jsp" has reflected XSS via the ConnPoolName parameter. | ||||
| CVE-2018-19820 | 1 Infovista | 1 Vistaportal | 2024-11-21 | N/A |
| Cross Site Scripting exists in InfoVista VistaPortal SE Version 5.1 (build 51029). The page "/VPortal/mgtconsole/Roles.jsp" has reflected XSS via the ConnPoolName parameter. | ||||
| CVE-2018-19819 | 1 Infovista | 1 Vistaportal | 2024-11-21 | N/A |
| Cross Site Scripting exists in InfoVista VistaPortal SE Version 5.1 (build 51029). The page "/VPortal/mgtconsole/Rights.jsp" has reflected XSS via the ConnPoolName parameter. | ||||
| CVE-2018-19818 | 1 Infovista | 1 Vistaportal | 2024-11-21 | N/A |
| Cross Site Scripting exists in InfoVista VistaPortal SE Version 5.1 (build 51029). The page "/VPortal/mgtconsole/Contacts.jsp" has reflected XSS via the ConnPoolName parameter. | ||||
| CVE-2018-19817 | 1 Infovista | 1 Vistaportal | 2024-11-21 | N/A |
| Cross Site Scripting exists in InfoVista VistaPortal SE Version 5.1 (build 51029). The page "/VPortal/mgtconsole/AdminAuthorisationFrame.jsp" has reflected XSS via the ConnPoolName or GroupId parameter. | ||||
| CVE-2018-19816 | 1 Infovista | 1 Vistaportal | 2024-11-21 | N/A |
| Cross Site Scripting exists in InfoVista VistaPortal SE Version 5.1 (build 51029). The page "/VPortal/mgtconsole/categorytree/ChooseCategory.jsp" has reflected XSS via the ConnPoolName parameter. | ||||
| CVE-2018-19815 | 1 Infovista | 1 Vistaportal | 2024-11-21 | N/A |
| Cross Site Scripting exists in InfoVista VistaPortal SE Version 5.1 (build 51029). The page "/VPortal/mgtconsole/UserPopupAddNewProp.jsp" has reflected XSS via the ConnPoolName parameter. | ||||
| CVE-2018-19814 | 1 Infovista | 1 Vistaportal | 2024-11-21 | N/A |
| Cross Site Scripting exists in InfoVista VistaPortal SE Version 5.1 (build 51029). The page "/VPortal/mgtconsole/Subscriptions.jsp" has reflected XSS via the ConnPoolName or GroupId parameter. | ||||
| CVE-2018-19813 | 1 Infovista | 1 Vistaportal | 2024-11-21 | N/A |
| Cross Site Scripting exists in InfoVista VistaPortal SE Version 5.1 (build 51029). The page "/VPortal/mgtconsole/Subscribers.jsp" has reflected XSS via the ConnPoolName or GroupId parameter. | ||||
| CVE-2018-19812 | 1 Infovista | 1 Vistaportal | 2024-11-21 | N/A |
| Cross Site Scripting exists in InfoVista VistaPortal SE Version 5.1 (build 51029). The page "/VPortal/mgtconsole/SubFolderPackages.jsp" has reflected XSS via the GroupId parameter. | ||||
| CVE-2018-19811 | 1 Infovista | 1 Vistaportal | 2024-11-21 | N/A |
| Cross Site Scripting exists in InfoVista VistaPortal SE Version 5.1 (build 51029). The page "/VPortal/mgtconsole/Import.jsp" has reflected XSS via the ConnPoolName parameter. | ||||
| CVE-2018-19810 | 1 Infovista | 1 Vistaportal | 2024-11-21 | N/A |
| Cross Site Scripting exists in InfoVista VistaPortal SE Version 5.1 (build 51029). The page "/VPortal/mgtconsole/GroupMove.jsp" has reflected XSS via the ConnPoolName, GroupId, or type parameter. | ||||
| CVE-2018-19809 | 1 Infovista | 1 Vistaportal | 2024-11-21 | N/A |
| Cross Site Scripting exists in InfoVista VistaPortal SE Version 5.1 (build 51029). The page "/VPortal/mgtconsole/GroupCopy.jsp" has reflected XSS via the ConnPoolName, GroupId, or type parameter. | ||||