Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-01-14 | CVE-2018-5695 | SQL Injection vulnerability in Wpjobboard 4.4.4 The WpJobBoard plugin 4.4.4 for WordPress allows SQL injection via the order or sort parameter to the wpjb-job or wpjb-alerts module, with a request to wp-admin/admin.php. | 7.2 |
| 2018-01-14 | CVE-2018-5694 | Unspecified vulnerability in Fop2 Flash Operator Panel 2.31.03 The callforward module in User Control Panel (UCP) in Nicolas Gudino (aka Asternic) Flash Operator Panel (FOP) 2.31.03 allows remote authenticated users to execute arbitrary commands via the command parameter. | 8.8 |
| 2018-01-14 | CVE-2018-5684 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Libav In Libav through 12.2, there is an invalid memcpy call in the ff_mov_read_stsd_entries function of libavformat/mov.c. | 8.8 |
| 2018-01-14 | CVE-2018-5360 | Out-of-bounds Read vulnerability in multiple products LibTIFF before 4.0.6 mishandles the reading of TIFF files, as demonstrated by a heap-based buffer over-read in the ReadTIFFImage function in coders/tiff.c in GraphicsMagick 1.3.27. | 8.8 |
| 2018-01-13 | CVE-2018-5673 | Cross-Site Request Forgery (CSRF) vulnerability in Booking Calendar Project Booking Calendar 2.1.7 An issue was discovered in the booking-calendar plugin 2.1.7 for WordPress. | 8.8 |
| 2018-01-13 | CVE-2018-5669 | Cross-Site Request Forgery (CSRF) vulnerability in Read and Understood Project Read and Understood 2.1 An issue was discovered in the read-and-understood plugin 2.1 for WordPress. | 8.8 |
| 2018-01-13 | CVE-2018-5658 | Cross-Site Request Forgery (CSRF) vulnerability in Responsive Coming Soon Page Project Responsive Coming Soon Page 1.1.18 An issue was discovered in the responsive-coming-soon-page plugin 1.1.18 for WordPress. | 8.8 |
| 2018-01-13 | CVE-2018-5656 | Cross-Site Request Forgery (CSRF) vulnerability in Weblizar Pinterest-Feeds 1.1.1 An issue was discovered in the weblizar-pinterest-feeds plugin 1.1.1 for WordPress. | 8.8 |
| 2018-01-12 | CVE-2017-13226 | Unspecified vulnerability in Google Android An elevation of privilege vulnerability in the MediaTek mtk. | 7.8 |
| 2018-01-12 | CVE-2017-13225 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Google Android In libMtkOmxVdec.so there is a possible heap buffer overflow. | 7.8 |