Vulnerabilities > High

DATE CVE VULNERABILITY TITLE RISK
2018-06-19 CVE-2018-10811 Missing Initialization of Resource vulnerability in multiple products
strongSwan 5.6.0 and older allows Remote Denial of Service because of Missing Initialization of a Variable. 		7.5
7.5
2018-06-19 CVE-2018-8727 Path Traversal vulnerability in Mirasys Dvms Workstation 5.12.6
Path Traversal in Gateway in Mirasys DVMS Workstation 5.12.6 and earlier allows an attacker to traverse the file system to access files or directories via the Web Client webserver.
network
low complexity
mirasys CWE-22
7.5
7.5
2018-06-19 CVE-2018-11526 Improper Neutralization of Formula Elements in a CSV File vulnerability in Webtoffee Wordpress Comments Import and Export
The plugin "WordPress Comments Import & Export" for WordPress (v2.0.4 and before) is vulnerable to CSV Injection.
local
low complexity
webtoffee CWE-1236
7.8
7.8
2018-06-19 CVE-2018-11525 Improper Neutralization of Formula Elements in a CSV File vulnerability in Algolplus Advanced Order Export for Woocommerce
The plugin "Advanced Order Export For WooCommerce" for WordPress (v1.5.4 and before) is vulnerable to CSV Injection.
local
low complexity
algolplus CWE-1236
7.8
7.8
2018-06-19 CVE-2018-12582 Cross-Site Request Forgery (CSRF) vulnerability in Akcms Project Akcms 6.1
An issue was discovered in AKCMS 6.1.
network
low complexity
akcms-project CWE-352
8.8
8.8
2018-06-19 CVE-2018-1061 python before versions 2.7.15, 3.4.9, 3.5.6rc1, 3.6.5rc1 and 3.7.0 is vulnerable to catastrophic backtracking in the difflib.IS_LINE_JUNK method.
network
low complexity
python debian redhat canonical fedoraproject
7.5
7.5
2018-06-19 CVE-2018-12565 Improper Input Validation vulnerability in multiple products
An issue was discovered in Linaro LAVA before 2018.5.post1.
network
low complexity
linaro debian CWE-20
8.8
8.8
2018-06-19 CVE-2018-12561 Improper Input Validation vulnerability in Cantata Project Cantata
An issue was discovered in the cantata-mounter D-Bus service in Cantata through 2.3.1.
network
low complexity
cantata-project CWE-20
8.8
8.8
2018-06-19 CVE-2018-12559 Path Traversal vulnerability in Cantata Project Cantata
An issue was discovered in the cantata-mounter D-Bus service in Cantata through 2.3.1.
network
low complexity
cantata-project CWE-22
8.8
8.8
2018-06-18 CVE-2018-9028 Inadequate Encryption Strength vulnerability in Broadcom Privileged Access Manager
Weak cryptography used for passwords in CA Privileged Access Manager 2.x reduces the complexity for password cracking.
network
low complexity
broadcom CWE-326
7.5
7.5