Archive 04/03/2020

IDBaseTempVulnerability0dayTodayExpRemCTICVE
1528207.26.8Mozilla Firefox ReadableStream double free$25k-$100k$5k-$25kHighOfficial Fix0.08CVE-2020-6820
1528197.26.8Mozilla Firefox nsDocShell Destructor use after free$25k-$100k$5k-$25kHighOfficial Fix0.05CVE-2020-6819
1527677.56.9TestLink File Upload keywordsImport.php unrestricted upload$0-$5k$0-$5kNot DefinedNot Defined0.04CVE-2020-8639
1527668.57.9TestLink planUrgency.php sql injection$0-$5k$0-$5kNot DefinedNot Defined0.04CVE-2020-8638
1527658.57.9TestLink dragdroptreenodes.php sql injection$0-$5k$0-$5kNot DefinedNot Defined0.02CVE-2020-8637
1527648.58.5utils-extend modification of assumed-immutable data (maid)$0-$5k$0-$5kNot DefinedNot Defined0.04CVE-2020-8147
1527635.75.4Revive Adserver CSRF Protection redirect$0-$5k$0-$5kNot DefinedOfficial Fix0.03CVE-2020-8143
1527625.45.2Revive Adserver User Interface authorization$0-$5k$0-$5kNot DefinedOfficial Fix0.04CVE-2020-8142
1527616.46.4VISAM VBASE Editor/VBASE Web-Remote Module URL path traversal$0-$5k$0-$5kNot DefinedNot Defined0.05CVE-2020-7008
1527607.57.5VISAM VBASE Editor/VBASE Web-Remote Module default permission$0-$5k$0-$5kNot DefinedNot Defined0.04CVE-2020-7004
1527596.46.4VISAM VBASE Editor/VBASE Web-Remote Module Key insecure storage of sensitive information$0-$5k$0-$5kNot DefinedNot Defined0.05CVE-2020-7000
1527588.58.5Hirschmann Automation Control HiOS/HiSecOS URL Argument missing custom error page$0-$5k$0-$5kNot DefinedNot Defined0.14CVE-2020-6994
1527557.27.2IBM Spectrum Scale privileges management$5k-$25k$5k-$25kNot DefinedNot Defined0.03CVE-2020-4273
1527547.37.0GnuTLS DTLS risky encryption$0-$5k$0-$5kNot DefinedOfficial Fix0.07CVE-2020-11501
1527535.65.6Zoom Client for Meetings risky encryption$0-$5k$0-$5kNot DefinedNot Defined0.03CVE-2020-11500
1527524.84.6MediaWiki CSS escape output$0-$5k$0-$5kNot DefinedOfficial Fix0.03CVE-2020-10960
1527515.15.1Eclipse Che Workspace Pod authorization$0-$5k$0-$5kNot DefinedNot Defined0.04CVE-2020-10689
1527505.45.4VISAM VBASE Editor/VBASE Web-Remote Module Password Hash inadequate encryption$0-$5k$0-$5kNot DefinedNot Defined0.05CVE-2020-10601
1527498.58.5VISAM VBASE Editor/VBASE Web-Remote Module ActiveX stack-based overflow$0-$5k$0-$5kNot DefinedNot Defined0.02CVE-2020-10599
1527485.25.0SuSE Linux Enterprise Server autoyast2 data authenticity$5k-$25k$0-$5kNot DefinedOfficial Fix0.04CVE-2019-18905
1527475.45.1SuSE Linux Enterprise Server resource consumption$0-$5k$0-$5kNot DefinedOfficial Fix0.03CVE-2019-18904
1527465.25.2OneTone Theme theme-functions.php Stored cross site scripting$0-$5k$0-$5kNot DefinedNot Defined0.06CVE-2019-17231
1527456.36.3OneTone Theme Options theme-functions.php authorization$0-$5k$0-$5kNot DefinedNot Defined0.03CVE-2019-17230
1527447.87.4SuSE Openstack Cloud/OpenStack Cloud Crowbar least privilege violation$5k-$25k$0-$5kNot DefinedOfficial Fix0.03CVE-2018-17954
1527232.72.4ViewVC CVS show_subdir_lastmod cross site scripting$0-$5k$0-$5kNot DefinedOfficial Fix0.06CVE-2020-5283

Interested in the pricing of exploits?

See the underground prices here!