ReportizFlow
Filtered by vendor
Subscriptions
Total
322276 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2018-17389 | 1 Ranksol | 1 Live Call Support | 2024-11-21 | N/A |
| CSRF exists in server.php in Live Call Support Application 1.5 for adding an admin account. | ||||
| CVE-2018-17388 | 1 Ranksol | 1 Twilio Web To Fax Machine System | 2024-11-21 | N/A |
| SQL Injection exists in Twilio WEB To Fax Machine System 1.0 via the email or password parameter to login_check.php, or the id parameter to add_email.php or edit_content.php. | ||||
| CVE-2018-17387 | 1 Ranksol | 1 Nimble Professional | 2024-11-21 | N/A |
| CSRF exists in Nimble Messaging Bulk SMS Marketing Application 1.0 for adding an admin account. | ||||
| CVE-2018-17386 | 1 Thephpfactory | 1 Micro Deal Factory | 2024-11-21 | N/A |
| SQL Injection exists in the Micro Deal Factory 2.4.0 component for Joomla! via the id parameter, or the PATH_INFO to mydeals/ or listdeals/. | ||||
| CVE-2018-17385 | 1 Thephpfactory | 1 Social Factory | 2024-11-21 | N/A |
| SQL Injection exists in the Social Factory 3.8.3 component for Joomla! via the radius[lat], radius[lng], or radius[radius] parameter. | ||||
| CVE-2018-17384 | 1 Thephpfactory | 1 Swap Factory | 2024-11-21 | N/A |
| SQL Injection exists in the Swap Factory 2.2.1 component for Joomla! via the filter_order_Dir or filter_order parameter. | ||||
| CVE-2018-17383 | 1 Thephpfactory | 1 Collection Factory | 2024-11-21 | N/A |
| SQL Injection exists in the Collection Factory 4.1.9 component for Joomla! via the filter_order or filter_order_Dir parameter. | ||||
| CVE-2018-17382 | 1 Thephpfactory | 1 Jobs Factory | 2024-11-21 | N/A |
| SQL Injection exists in the Jobs Factory 2.0.4 component for Joomla! via the filter_letter parameter. | ||||
| CVE-2018-17381 | 1 Thephpfactory | 1 Dutch Auction Factory | 2024-11-21 | N/A |
| SQL Injection exists in the Dutch Auction Factory 2.0.2 component for Joomla! via the filter_order_Dir or filter_order parameter. | ||||
| CVE-2018-17380 | 1 Thephpfactory | 1 Article Factory Manager | 2024-11-21 | N/A |
| SQL Injection exists in the Article Factory Manager 4.3.9 component for Joomla! via the start_date, m_start_date, or m_end_date parameter. | ||||
| CVE-2018-17379 | 1 Thephpfactory | 1 Raffle Factory | 2024-11-21 | N/A |
| SQL Injection exists in the Raffle Factory 3.5.2 component for Joomla! via the filter_order_Dir or filter_order parameter. | ||||
| CVE-2018-17378 | 1 Thephpfactory | 1 Penny Auction Factory | 2024-11-21 | N/A |
| SQL Injection exists in the Penny Auction Factory 2.0.4 component for Joomla! via the filter_order_Dir or filter_order parameter. | ||||
| CVE-2018-17377 | 1 Extensiondeveloper | 1 Questions | 2024-11-21 | N/A |
| SQL Injection exists in the Questions 1.4.3 component for Joomla! via the term, userid, users, or groups parameter. | ||||
| CVE-2018-17376 | 1 Thephpfactory | 1 Reverse Auction Factory | 2024-11-21 | N/A |
| SQL Injection exists in the Reverse Auction Factory 4.3.8 component for Joomla! via the filter_order_Dir, cat, or filter_letter parameter. | ||||
| CVE-2018-17375 | 1 Joomlathat | 1 Music Collection | 2024-11-21 | N/A |
| SQL Injection exists in the Music Collection 3.0.3 component for Joomla! via the id parameter. | ||||
| CVE-2018-17374 | 1 Thephpfactory | 1 Auction Factory | 2024-11-21 | N/A |
| SQL Injection exists in the Auction Factory 4.5.5 component for Joomla! via the filter_order_Dir or filter_order parameter. | ||||
| CVE-2018-17369 | 1 Springboot Authority Project | 1 Springboot Authority | 2024-11-21 | N/A |
| An issue was discovered in springboot_authority through 2017-03-06. There is stored XSS via the admin/role/edit roleKey, name, or description parameter. | ||||
| CVE-2018-17368 | 1 Publiccms | 1 Publiccms | 2024-11-21 | N/A |
| An issue was discovered in PublicCMS V4.0.180825. For an invalid login attempt, the response length is different depending on whether the username is valid, which makes it easier to conduct brute-force attacks. | ||||
| CVE-2018-17366 | 1 Mcms Project | 1 Mcms | 2024-11-21 | N/A |
| An issue was discovered in MCMS 4.6.5. There is a CSRF vulnerability that can add an administrator account via ms/basic/manager/save.do. | ||||
| CVE-2018-17365 | 1 Seacms | 1 Seacms | 2024-11-21 | 7.5 High |
| SeaCMS 6.64 and 7.2 allows remote attackers to delete arbitrary files via the filedir parameter. | ||||