Archive 03/09/2018

IDBaseTempVulnerability0dayTodayExpRemCTICVE
1143507.06.6PoDoFo PDF File PdfParserObject.cpp ParseFileComplete memory corruption$0-$5k$0-$5kProof-of-ConceptNot Defined0.00CVE-2018-8002
1143497.57.2PoDoFo PDF File PdfName.cpp UnescapeName out-of-bounds read$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2018-8001
1143488.07.7PoDoFo PDF File PdfTokenizer.cpp GetNextToken memory corruption$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2018-8000
1143476.56.2graphite2 libgraphite2 Segment.cpp null pointer dereference$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2018-7999
1143465.65.4libvips region.c vips_region_generate race condition$0-$5k$0-$5kNot DefinedOfficial Fix0.01CVE-2018-7998
1143455.25.2Eramba Error Page preview Reflected cross site scripting$0-$5k$0-$5kNot DefinedNot Defined0.05CVE-2018-7997
1143445.25.2Eramba Tooltip Box programScopes Stored cross site scripting$0-$5k$0-$5kNot DefinedNot Defined0.06CVE-2018-7996
1143433.63.4Linux Kernel mce.c store_int_with_restart race condition$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2018-7995
1143425.25.2Eramba ThirdPartyRiskReview Reflected cross site scripting$0-$5k$0-$5kNot DefinedNot Defined0.01CVE-2018-7894
1143416.45.9WebLog Expert Web Server Enterprise Service Port 9991 data processing$0-$5k$0-$5kProof-of-ConceptWorkaround0.04CVE-2018-7582
1143406.56.2WebLog Expert Web Server Enterprise Permission WebServer.cfg access control$0-$5k$0-$5kProof-of-ConceptNot Defined0.00CVE-2018-7581
1143395.35.1Django Regex Backtracking incorrect regex$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2018-7537
1143385.35.1Django Regex Backtracking incorrect regex$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2018-7536
1143374.44.3Tiki cross site scripting$0-$5k$0-$5kNot DefinedOfficial Fix0.01CVE-2018-7290
1143366.56.3Schneider Electric SoMove Software DLL untrusted search path$0-$5k$0-$5kNot DefinedOfficial Fix0.03CVE-2018-7239
1143358.58.2Schneider Electric Pelco Sarix Professional Web-based GUI memory corruption$0-$5k$0-$5kNot DefinedOfficial Fix0.06CVE-2018-7238
1143346.46.1Schneider Electric Pelco Sarix Professional set_param input validation$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2018-7237
1143337.26.8Schneider Electric Pelco Sarix Professional SSH Service set_param improper authentication$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2018-7236
1143326.46.1Schneider Electric Pelco Sarix Professional input validation$0-$5k$0-$5kNot DefinedOfficial Fix0.05CVE-2018-7235
1143317.47.1Schneider Electric Pelco Sarix Professional SSL Certificate certificate validation$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2018-7234

Interested in the pricing of exploits?

See the underground prices here!