Search

Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

Search Examples

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

Search Results (24238 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2018-20973 1 Codeermeneer 1 Companion Auto Update 2024-11-21 N/A
The companion-auto-update plugin before 3.2.1 for WordPress has local file inclusion.
CVE-2018-20958 1 Tapplock 2 Tapplock, Tapplock Firmware 2024-11-21 N/A
The Bluetooth Low Energy (BLE) subsystem on Tapplock devices before 2018-06-12 relies on Key1 and SerialNo for unlock operations; however, these are derived from the MAC address, which is broadcasted by the device.
CVE-2018-20952 1 Cpanel 1 Cpanel 2024-11-21 N/A
cPanel before 68.0.27 creates world-readable files during use of WHM Apache Includes Editor (SEC-388).
CVE-2018-20946 1 Cpanel 1 Cpanel 2024-11-21 N/A
cPanel before 68.0.27 allows attackers to read zone information because a world-readable archive is created by the archive_sync_zones script (SEC-355).
CVE-2018-20944 1 Cpanel 1 Cpanel 2024-11-21 N/A
cPanel before 68.0.27 allows attackers to read a copy of httpd.conf that is created during a syntax test (SEC-353).
CVE-2018-20943 1 Cpanel 1 Cpanel 2024-11-21 N/A
cPanel before 68.0.27 allows attackers to read root's crontab file during a short time interval upon a post-update task (SEC-352).
CVE-2018-20942 1 Cpanel 1 Cpanel 2024-11-21 N/A
cPanel before 68.0.27 allows attackers to read root's crontab file during a short time interval upon configuring crontab (SEC-351).
CVE-2018-20941 1 Cpanel 1 Cpanel 2024-11-21 N/A
cPanel before 68.0.27 allows arbitrary file-read operations via restore adminbin (SEC-349).
CVE-2018-20939 1 Cpanel 1 Cpanel 2024-11-21 N/A
cPanel before 68.0.27 allows a user to discover contents of directories (that are not owned by that user) by leveraging backups (SEC-339).
CVE-2018-20917 1 Cpanel 1 Cpanel 2024-11-21 N/A
cPanel before 70.0.23 allows any user to disable Solr (SEC-371).
CVE-2018-20913 1 Cpanel 1 Cpanel 2024-11-21 N/A
cPanel before 70.0.23 allows attackers to read the root accesshash via the WHM /cgi/trustclustermaster.cgi (SEC-364).
CVE-2018-20912 1 Cpanel 1 Cpanel 2024-11-21 N/A
cPanel before 70.0.23 allows demo accounts to execute code via awstats (SEC-362).
CVE-2018-20902 1 Cpanel 1 Cpanel 2024-11-21 N/A
cPanel before 71.9980.37 allows attackers to read root's crontab file by leveraging ClamAV installation (SEC-408).
CVE-2018-20897 1 Cpanel 1 Cpanel 2024-11-21 N/A
cPanel before 71.9980.37 allows arbitrary file-unlink operations via the cPAddons moderation system (SEC-395).
CVE-2018-20895 1 Cpanel 1 Cpanel 2024-11-21 N/A
In cPanel before 71.9980.37, API tokens retain ACLs after those ACLs are removed from the corresponding accounts (SEC-393).
CVE-2018-20894 1 Cpanel 1 Cpanel 2024-11-21 N/A
cPanel before 74.0.0 makes web-site contents accessible to other local users via Git repositories (SEC-443).
CVE-2018-20893 1 Cpanel 1 Cpanel 2024-11-21 N/A
cPanel before 74.0.0 allows file-rename operations during account renames (SEC-442).
CVE-2018-20891 1 Cpanel 1 Cpanel 2024-11-21 N/A
cPanel before 74.0.0 allows arbitrary file-read operations during File Restoration (SEC-436).
CVE-2018-20889 1 Cpanel 1 Cpanel 2024-11-21 N/A
cPanel before 74.0.0 allows certain file-read operations via password file caching (SEC-425).
CVE-2018-20883 1 Cpanel 1 Cpanel 2024-11-21 N/A
cPanel before 74.0.8 allows FTP access during account suspension (SEC-449).