| Max CVSS | 7.5 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2018-10054 | 6.5 |
H2 1.4.197, as used in Datomic before 0.9.5697 and other products, allows remote code execution because CREATE ALIAS can execute arbitrary Java code. NOTE: the vendor's position is "h2 is not designed to be run outside of a secure environment."
|
11-04-2024 - 00:59 | 11-04-2018 - 20:29 | |
| CVE-2018-4121 | 6.8 |
An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari before 11.1 is affected. iCloud before 7.4 on Windows is affected. iTunes before 12.7.4 on Windows is affected. tvOS before 11.3 is affected. watchOS before 4.3 is
|
08-03-2019 - 16:06 | 03-04-2018 - 06:29 | |
| CVE-2018-9843 | 7.5 |
The REST API in CyberArk Password Vault Web Access before 9.9.5 and 10.x before 10.1 allows remote attackers to execute arbitrary code via a serialized .NET object in an Authorization HTTP header.
|
27-02-2019 - 20:26 | 12-04-2018 - 15:29 | |
| CVE-2018-9842 | 5.0 |
CyberArk Password Vault before 9.7 allows remote attackers to obtain sensitive information from process memory by replaying a logon message.
|
27-02-2019 - 20:19 | 12-04-2018 - 15:29 | |
| CVE-2018-8813 | 4.9 |
Open redirect vulnerability in the login[redirect] parameter login functionality in WolfCMS 0.8.3.1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a malformed URL.
|
10-05-2018 - 13:36 | 04-04-2018 - 15:29 | |
| CVE-2018-9238 | 4.3 |
proberv.php in Yahei-PHP Proberv 0.4.7 has XSS via the funName parameter.
|
03-05-2018 - 15:06 | 04-04-2018 - 07:29 | |
| CVE-2007-5056 | 6.8 |
Eval injection vulnerability in adodb-perf-module.inc.php in ADOdb Lite 1.42 and earlier, as used in products including CMS Made Simple, SAPID CMF, Journalness, PacerCMS, and Open-Realty, allows remote attackers to execute arbitrary code via PHP sequ
|
29-09-2017 - 01:29 | 24-09-2007 - 22:17 |