Monthly Archive: December 2018

An issue was discovered in DouCo DouPHP 1.5 20181221. admin/article.php?rec=update has XSS via the title parameter. Date published : 2018-12-28 https://github.com/AvaterXXX/CVEs/blob/master/DouPHP.md#xss7

An issue was discovered in DouCo DouPHP 1.5 20181221. admin/show.php?rec=update has XSS via the show_name parameter. Date published : 2018-12-28 https://github.com/AvaterXXX/CVEs/blob/master/DouPHP.md#xss2

An issue was discovered in DouCo DouPHP 1.5 20181221. admin/product.php?rec=update has XSS via the name parameter. Date published : 2018-12-28 https://github.com/AvaterXXX/CVEs/blob/master/DouPHP.md#xss5

An issue was discovered in DouCo DouPHP 1.5 20181221. admin/system.php?rec=update has XSS via the site_name parameter. Date published : 2018-12-28 https://github.com/AvaterXXX/CVEs/blob/master/DouPHP.md#xss8

An issue was discovered in DouCo DouPHP 1.5 20181221. admin/page.php?rec=edit has XSS via the page_name parameter. Date published : 2018-12-28 https://github.com/AvaterXXX/CVEs/blob/master/DouPHP.md#xss3

Tcpreplay before 4.3.1 has a heap-based buffer over-read in get_l2len in common/get.c. Date published : 2018-12-28 https://github.com/appneta/tcpreplay/issues/530 https://github.com/appneta/tcpreplay/pull/532/commits/6b830a1640ca20528032c89a4fdd8291a4d2d8b2

Tcpreplay before 4.3.1 has a heap-based buffer over-read in packet2tree in tree.c. Date published : 2018-12-28 https://github.com/appneta/tcpreplay/issues/530 https://github.com/appneta/tcpreplay/pull/532/commits/6b830a1640ca20528032c89a4fdd8291a4d2d8b2

** DISPUTED ** main.aspx in Microstrategy Analytics 10.4.0026.0049 and earlier has CSRF. NOTE: The vendor claims that documentation for preventing a CSRF attack has been provided (https://community.microstrategy.com/s/article/KB37643-New-security-feature-introduced-in-MicroStrategy-Web-9-0?language=en_US) and disagrees that this issue is a...

The mintToken function of Pylon (PYLNT) aka PylonToken, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value, a...

The mintToken function of SwftCoin (SWFTC) aka SwftCoin, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. Date...

The mintToken function of Nexxus (NXX) aka NexxusToken, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. Date...

The BGP daemon (bgpd) in all IP Infusion ZebOS versions to 7.10.6 and all OcNOS versions to 1.3.3.145 allow remote attackers to cause a denial of service attack via an autonomous system (AS) path...

Evolution CMS 1.4.x allows XSS via the manager/ search parameter. Date published : 2018-12-28 https://github.com/security-breachlock/CVE-2018-16638/blob/master/evolution_xss_reflected.pdf

Evolution CMS 1.4.x allows XSS via the page weblink title parameter to the manager/ URI. Date published : 2018-12-28 https://github.com/security-breachlock/CVE-2018-16637/blob/master/evolution_xss_stored.pdf