Search
Search Results (327113 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2018-21012 | 1 Vsourz | 1 Cf7 Invisible Recaptcha | 2024-11-21 | 6.1 Medium |
| The cf7-invisible-recaptcha plugin before 1.3.2 for WordPress has XSS. | ||||
| CVE-2018-21011 | 1 Wpcharitable | 1 Charitable | 2024-11-21 | 7.5 High |
| The charitable plugin before 1.5.14 for WordPress has unauthorized access to user and donation details. | ||||
| CVE-2018-21010 | 2 Debian, Uclouvain | 2 Debian Linux, Openjpeg | 2024-11-21 | 8.8 High |
| OpenJPEG before 2.3.1 has a heap buffer overflow in color_apply_icc_profile in bin/common/color.c. | ||||
| CVE-2018-21009 | 2 Freedesktop, Redhat | 2 Poppler, Enterprise Linux | 2024-11-21 | N/A |
| Poppler before 0.66.0 has an integer overflow in Parser::makeStream in Parser.cc. | ||||
| CVE-2018-21008 | 1 Linux | 1 Linux Kernel | 2024-11-21 | N/A |
| An issue was discovered in the Linux kernel before 4.16.7. A use-after-free can be caused by the function rsi_mac80211_detach in the file drivers/net/wireless/rsi/rsi_91x_mac80211.c. | ||||
| CVE-2018-21007 | 1 Wisetr | 1 User Email Verification For Woocommerce | 2024-11-21 | N/A |
| The woo-confirmation-email plugin before 3.2.0 for WordPress has no blocking of direct access to supportive xl folders inside uploads. | ||||
| CVE-2018-21006 | 1 Bbpress Move Topics Project | 1 Bbpress Move Topics | 2024-11-21 | N/A |
| The bbp-move-topics plugin before 1.1.6 for WordPress has CSRF. | ||||
| CVE-2018-21005 | 1 Bbpress Move Topics Project | 1 Bbpress Move Topics | 2024-11-21 | N/A |
| The bbp-move-topics plugin before 1.1.6 for WordPress has code injection. | ||||
| CVE-2018-21004 | 1 Carrcommunications | 1 Rsvpmaker | 2024-11-21 | N/A |
| The rsvpmaker plugin before 5.6.4 for WordPress has SQL injection. | ||||
| CVE-2018-21003 | 1 Themekraft | 1 Buddyforms | 2024-11-21 | N/A |
| The buddyforms plugin before 2.2.8 for WordPress has SQL injection. | ||||
| CVE-2018-21002 | 1 Joomsky | 1 Js Help Desk | 2024-11-21 | N/A |
| The js-support-ticket plugin before 2.0.6 for WordPress has CSRF. | ||||
| CVE-2018-21001 | 1 Bologer | 1 Anycomment | 2024-11-21 | N/A |
| The anycomment plugin before 0.0.33 for WordPress has XSS. | ||||
| CVE-2018-21000 | 1 Safe-transmute Project | 1 Safe-transmute | 2024-11-21 | N/A |
| An issue was discovered in the safe-transmute crate before 0.10.1 for Rust. A constructor's arguments are in the wrong order, causing heap memory corruption. | ||||
| CVE-2018-20999 | 1 Orion Project | 1 Orion | 2024-11-21 | N/A |
| An issue was discovered in the orion crate before 0.11.2 for Rust. reset() calls cause incorrect results. | ||||
| CVE-2018-20998 | 1 Arrayfire | 1 Arrayfire | 2024-11-21 | N/A |
| An issue was discovered in the arrayfire crate before 3.6.0 for Rust. Addition of the repr() attribute to an enum is mishandled, leading to memory corruption. | ||||
| CVE-2018-20997 | 1 Rust-openssl Project | 1 Rust-openssl | 2024-11-21 | N/A |
| An issue was discovered in the openssl crate before 0.10.9 for Rust. A use-after-free occurs in CMS Signing. | ||||
| CVE-2018-20996 | 1 Crossbeam Project | 1 Crossbeam | 2024-11-21 | N/A |
| An issue was discovered in the crossbeam crate before 0.4.1 for Rust. There is a double free because of destructor mishandling. | ||||
| CVE-2018-20995 | 1 Slice-deque Project | 1 Slice-deque | 2024-11-21 | N/A |
| An issue was discovered in the slice-deque crate before 0.1.16 for Rust. move_head_unchecked allows memory corruption because deque updates are mishandled. | ||||
| CVE-2018-20994 | 1 Trust-dns-proto Project | 1 Trust-dns-proto | 2024-11-21 | N/A |
| An issue was discovered in the trust-dns-proto crate before 0.5.0-alpha.3 for Rust. There is infinite recursion because DNS message compression is mishandled. | ||||
| CVE-2018-20993 | 1 Yaml-rust Project | 1 Yaml-rust | 2024-11-21 | N/A |
| An issue was discovered in the yaml-rust crate before 0.4.1 for Rust. There is uncontrolled recursion during deserialization. | ||||