Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-07-08 | CVE-2018-13444 | Cross-Site Request Forgery (CSRF) vulnerability in Seacms 6.61 An issue was discovered in SeaCMS 6.61. | 8.8 |
| 2018-07-08 | CVE-2018-13439 | XXE vulnerability in Tencent Wechat PAY WXPayUtil in WeChat Pay Java SDK allows XXE attacks involving a merchant notification URL. | 7.5 |
| 2018-07-07 | CVE-2018-13420 | Missing Release of Resource after Effective Lifetime vulnerability in Gperftools Project Gperftools 2.7 Google gperftools 2.7 has a memory leak in malloc_extension.cc, related to MallocExtension::Register and InitModule. | 7.5 |
| 2018-07-07 | CVE-2018-11349 | Cross-Site Request Forgery (CSRF) vulnerability in Jirafeau The administration panel of Jirafeau before 3.4.1 is vulnerable to three CSRF attacks on search functionalities: search_by_name, search_by_hash, and search_link. | 8.8 |
| 2018-07-06 | CVE-2016-6541 | Improper Authentication vulnerability in Thetrackr Trackr Bravo Firmware TrackR Bravo device allows unauthenticated pairing, which enables unauthenticated connected applications to write to various device attributes. | 8.8 |
| 2018-07-06 | CVE-2016-6538 | Information Exposure vulnerability in Thetrackr Trackr Bravo Firmware The TrackR Bravo mobile app stores the account password used to authenticate to the cloud API in cleartext in the cache.db file. | 8.8 |
| 2018-07-06 | CVE-2018-5907 | Integer Overflow or Wraparound vulnerability in Google Android Possible buffer overflow in msm_adsp_stream_callback_put due to lack of input validation of user-provided data that leads to integer overflow in all Android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the Linux kernel. | 7.8 |
| 2018-07-06 | CVE-2018-5886 | Out-of-bounds Read vulnerability in Google Android A pointer in an ADSPRPC command is not properly validated in all Android releases from CAF using the Linux kernel (Android for MSM, Firefox OS for MSM, QRD Android), which can lead to kernel memory being accessed. | 7.5 |
| 2018-07-06 | CVE-2018-5873 | Use After Free vulnerability in multiple products An issue was discovered in the __ns_get_path function in fs/nsfs.c in the Linux kernel before 4.11. | 7.0 |
| 2018-07-06 | CVE-2018-5872 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Google Android While parsing over-the-air information elements in all Android releases from CAF using the Linux kernel (Android for MSM, Firefox OS for MSM, QRD Android) before security patch level 2018-07-05, the use of an out-of-range pointer offset can occur. | 8.0 |