Niedawny Styczeń 2018

StworzonoBaseTempVulnerability0dayTodayExpPrzCVE
2018-01-316.25.9Mozilla Firefox Chrome Privileged Document privilege escalation$25k-$100k$5k-$25kNot DefinedOfficial FixCVE-2018-5124
2018-01-316.56.5Conceptronic CIPCAMPTIWL user.cgi cross site request forgery$0-$5k$0-$5kNot DefinedNot DefinedCVE-2018-6408
2018-01-317.57.5Conceptronic CIPCAMPTIWL devices.cgi denial of service$0-$5k$0-$5kNot DefinedNot DefinedCVE-2018-6407
2018-01-318.08.0libwebm webm File libwebm_util.cc ParseVP9SuperFrameIndex memory corruption$0-$5k$0-$5kNot DefinedOfficial FixCVE-2018-6406
2018-01-315.95.2ImageMagick dcm.c ReadDCMImage denial of service$0-$5k$0-$5kNot DefinedOfficial FixCVE-2018-6405
2018-01-318.57.7CP Event Calendar sql injection$0-$5k$0-$5kProof-of-ConceptNot DefinedCVE-2018-6398
2018-01-317.06.3Picture Calendar list.php directory traversal$0-$5k$0-$5kProof-of-ConceptNot DefinedCVE-2018-6397
2018-01-318.57.7Visual Calendar sql injection$0-$5k$0-$5kProof-of-ConceptNot DefinedCVE-2018-6395
2018-01-315.24.9Joomla CMS Chromes cross site scripting$5k-$25k$0-$5kNot DefinedOfficial FixCVE-2018-6380
2018-01-315.24.9Joomla CMS Uri Class cross site scripting$5k-$25k$0-$5kNot DefinedOfficial FixCVE-2018-6379
2018-01-315.24.9Joomla CMS com_fields cross site scripting$5k-$25k$0-$5kNot DefinedOfficial FixCVE-2018-6377
2018-01-318.58.2Joomla CMS Hathor postinstall Message sql injection$5k-$25k$0-$5kNot DefinedOfficial FixCVE-2018-6376
2018-01-315.25.2iBall 300M setLang cross site scripting$0-$5k$0-$5kNot DefinedNot DefinedCVE-2018-6355
2018-01-315.95.7Splashing Images Plugin wp-splashing-admin-main.php privilege escalation$0-$5k$0-$5kNot DefinedOfficial FixCVE-2018-6195
2018-01-313.63.4Splashing Images Plugin wp-splashing-admin-sidebar.php cross site scripting$0-$5k$0-$5kNot DefinedOfficial FixCVE-2018-6194
2018-01-316.56.5Phoenix Contact mGuard Integrity Check Firmware privilege escalation$0-$5k$0-$5kNot DefinedNot DefinedCVE-2018-5441
2018-01-317.57.27-zip/p7zip ZIP Archive CodeReal memory corruption$0-$5k$0-$5kNot DefinedOfficial FixCVE-2017-17969
2018-01-317.57.5IBM WebSphere Application Server Administrative Console privilege escalation$25k-$100k$5k-$25kNot DefinedOfficial FixCVE-2017-1731
2018-01-317.56.8BMC Track-It! ConfigurationService Credentials information disclosure$0-$5k$0-$5kProof-of-ConceptOfficial FixCVE-2016-6599
2018-01-318.57.7BMC Track-It! FileStorageService privilege escalation$0-$5k$0-$5kProof-of-ConceptOfficial FixCVE-2016-6598
2018-01-317.57.5Huawei Campus Sxxxx/ARxxxx/SRGxxxx eSap Memory Consumption memory corruption$5k-$25k$5k-$25kNot DefinedOfficial FixCVE-2014-4705
2018-01-315.85.6Foo Labs Xpdf zxpdf Temporary privilege escalation$0-$5k$0-$5kNot DefinedOfficial FixCVE-2011-2902
2018-01-304.34.3MantisBT server.php sql injection$0-$5k$0-$5kNot DefinedNot DefinedCVE-2018-6382
2018-01-306.76.7FreePBX sql injection$0-$5k$0-$5kNot DefinedNot DefinedCVE-2018-6393
2018-01-305.95.6FFmpeg MP4 File vf_transpose.c filter_slice denial of service$0-$5k$0-$5kNot DefinedOfficial FixCVE-2018-6392
2018-01-306.55.9Netis WF2419 Address Reservation List cross site request forgery$0-$5k$0-$5kProof-of-ConceptNot DefinedCVE-2018-6391
2018-01-305.95.9Kingsoft WPS Office kso.dll assign denial of service$0-$5k$0-$5kNot DefinedNot DefinedCVE-2018-6390
2018-01-307.57.1iBall iB-WRA150N Ping Test privilege escalation$0-$5k$0-$5kProof-of-ConceptNot DefinedCVE-2018-6388
2018-01-308.58.5iBall iB-WRA150N Default Credentials weak authentication$0-$5k$0-$5kNot DefinedNot DefinedCVE-2018-6387
2018-01-305.95.9Monstra CMS Extension PHP Code Execution privilege escalation$0-$5k$0-$5kNot DefinedNot DefinedCVE-2018-6383

Interested in the pricing of exploits?

See the underground prices here!