Weekly Update: a new vulnerability is published on the National Vulnerability Database (40 items)

New vulnerabilities from the NVD: CVE-2020-18735 A heap buffer overflow in /src/dds_stream.c of Eclipse IOT Cyclone DDS Project v0.1.0 causes the DDS subscriber server to crash. Published at: August 24, 2021 at 12:15AM View on website August 24, 2021 at 01:33AM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-18734 A stack buffer overflow in /ddsi/q_bitset.h of Eclipse IOT Cyclone DDS Project v0.1.0 causes the DDS subscriber server to crash. Published at: August 24, 2021 at 12:15AM View on website August 24, 2021 at 01:33AM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-18731 A segmentation violation in the Iec104_Deal_FirmUpdate function of IEC104 v1.0 allows attackers to cause a denial of service (DOS). Published at: August 24, 2021 at 12:15AM View on website August 24, 2021 at 01:33AM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-18730 A segmentation violation in the Iec104_Deal_I function of IEC104 v1.0 allows attackers to cause a denial of service (DOS). Published at: August 24, 2021 at 12:15AM View on website August 24, 2021 at 01:33AM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-18778 In Libav 12.3, there is a heap-based buffer over-read in vc1_decode_p_mb_intfi in vc1_block.c that allows an attacker to cause denial-of-service via a crafted file. Published at: August 24, 2021 at 01:15AM View on website August 24, 2021 at 03:33AM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-18776 In Libav 12.3, there is a segmentation fault in vc1_decode_b_mb_intfr in vc1_block.c that allows an attacker to cause denial-of-service via a crafted file. Published at: August 24, 2021 at 01:15AM View on website August 24, 2021 at 03:33AM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-18775 In Libav 12.3, there is a heap-based buffer over-read in vc1_decode_b_mb_intfi in vc1_block.c that allows an attacker to cause denial-of-service via a crafted file. Published at: August 24, 2021 at 01:15AM View on website August 24, 2021 at 03:33AM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-18774 A float point exception in the printLong function in tags_int.cpp of Exiv2 0.27.99.0 allows attackers to cause a denial of service (DOS) via a crafted tif file. Published at: August 24, 2021 at 01:15AM View on website August 24, 2021 at 03:33AM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-18773 An invalid memory access in the decode function in iptc.cpp of Exiv2 0.27.99.0 allows attackers to cause a denial of service (DOS) via a crafted tif file. Published at: August 24, 2021 at 01:15AM View on website August 24, 2021 at 03:33AM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-18771 Exiv2 0.27.99.0 has a global buffer over-read in Exiv2::Internal::Nikon1MakerNote::print0x0088 in nikonmn_int.cpp which can result in an information leak. Published at: August 24, 2021 at 01:15AM View on website August 24, 2021 at 03:33AM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-18917 The plus/search.php component in DedeCMS 5.7 SP2 allows remote attackers to execute arbitrary PHP code via the typename parameter because the contents of typename.inc are under an attacker's control. Published at: August 24, 2021 at 11:15PM View on website August 25, 2021 at 01:33AM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-18913 EARCLINK ESPCMS-P8 was discovered to contain a SQL injection vulnerability in the espcms_web/Search.php component via the attr_array parameter. This vulnerability allows attackers to access sensitive database information. Published at: August 24, 2021 at 11:15PM View on website August 25, 2021 at 01:33AM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2018-10790 The AP4_CttsAtom class in Core/Ap4CttsAtom.cpp in Bento4 1.5.1.0 allows remote attackers to cause a denial of service (application crash), related to a memory allocation failure, as demonstrated by mp2aac. Published at: August 25, 2021 at 05:15PM View on website August 25, 2021 at 07:35PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-18976 Buffer Overflow in Tcpreplay v4.3.2 allows attackers to cause a Denial of Service via the 'do_checksum' function in 'checksum.c'. It can be triggered by sending a crafted pcap file to the 'tcpreplay-edit' binary. This issue is different than CVE-2019-8381. Published at: August 25, 2021 at 07:15PM View on website August 25, 2021 at 09:33PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-18974 Buffer Overflow in Netwide Assembler (NASM) v2.15.xx allows attackers to cause a denial of service via 'crc64i' in the component 'nasmlib/crc64'. This issue is different than CVE-2019-7147. Published at: August 25, 2021 at 07:15PM View on website August 25, 2021 at 09:33PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-18972 Exposure of Sensitive Information to an Unauthorized Actor in PoDoFo v0.9.6 allows attackers to obtain sensitive information via 'IsNextToken' in the component 'src/base/PdfToenizer.cpp'. Published at: August 25, 2021 at 07:15PM View on website August 25, 2021 at 09:33PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-18971 Stack-based Buffer Overflow in PoDoFo v0.9.6 allows attackers to cause a denial of service via the component 'src/base/PdfDictionary.cpp:65'. Published at: August 25, 2021 at 07:15PM View on website August 25, 2021 at 09:33PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-19547 Directory Traversal vulnerability exists in PopojiCMS 2.0.1 via the id parameter in admin.php. Published at: August 25, 2021 at 11:15PM View on website August 26, 2021 at 01:33AM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-18065 Cross Site Scripting (XSS) vulnerability exists in PopojiCMS 2.0.1 in admin.php?mod=menumanager--------- edit menu. Published at: August 25, 2021 at 11:15PM View on website August 26, 2021 at 01:33AM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-19822 A remote code execution (RCE) vulnerability in template_user.php of ZZCMS version 2018 allows attackers to execute arbitrary PHP code via the "ml" and "title" parameters. Published at: August 26, 2021 at 06:15AM View on website August 26, 2021 at 08:33AM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-19821 A SQL injection vulnerability in admin.php of DOYOCMS 2.3 allows attackers to execute arbitrary SQL commands via the orders[] parameter. Published at: August 26, 2021 at 06:15AM View on website August 26, 2021 at 08:33AM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-19709 Insufficient filtering of the tag parameters in feehicms 0.1.3 allows attackers to execute arbitrary web or HTML via a crafted payload. Published at: August 26, 2021 at 06:15AM View on website August 26, 2021 at 08:33AM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-19705 thinkphp-zcms as of 20190715 allows SQL injection via index.php?m=home&c=message&a=add. Published at: August 26, 2021 at 06:15AM View on website August 26, 2021 at 08:33AM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-19704 A stored cross-site scripting (XSS) vulnerability via ResourceController.java in spring-boot-admin as of 20190710 allows attackers to execute arbitrary web scripts or HTML. Published at: August 26, 2021 at 06:15AM View on website August 26, 2021 at 08:33AM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-19703 A cross-site scripting (XSS) vulnerability in the referer parameter of Dzzoffice 2.02 allows attackers to execute arbitrary web scripts or HTML via a crafted payload. Published at: August 26, 2021 at 06:15AM View on website August 26, 2021 at 08:33AM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-14161 It is possible to inject HTML and/or JavaScript in the HTML to PDF conversion in Gotenberg through 6.2.1 via the /convert/html endpoint. Published at: August 26, 2021 at 02:15PM View on website August 26, 2021 at 03:33PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-14160 An SSRF vulnerability in Gotenberg through 6.2.1 exists in the remote URL to PDF conversion, which results in a remote attacker being able to read local files or fetch intranet resources. Published at: August 26, 2021 at 02:15PM View on website August 26, 2021 at 03:33PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-18477 SQL Injection vulnerability in Hucart CMS 5.7.4 via the purchase enquiry field found in the Message con_content field. Published at: August 26, 2021 at 09:15PM View on website August 26, 2021 at 11:34PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-18476 SQL Injection vulnerability in Hucart CMS 5.7.4 via the basic information field found in the avatar usd_image field. Published at: August 26, 2021 at 09:15PM View on website August 26, 2021 at 11:34PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-18475 Cross Site Scripting (XSS) vulnerabilty exists in Hucart CMS 5.7.4 is via the mes_title field. The first user inserts a malicious script into the header field of the outbox and sends it to other users. When other users open the email, the malicious code will be executed. Published at: August 26, 2021 at 09:15PM View on website August 26, 2021 at 11:34PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-18470 Stored cross-site scripting (XSS) vulnerability in the Name of application field found in the General Configuration page in Rukovoditel 2.4.1 allows remote attackers to inject arbitrary web script or HTML via a crafted website name by doing an authenticated POST HTTP request to rukovoditel_2.4.1/install/index.php. Published at: August 26, 2021 at 09:15PM View on website August 26, 2021 at 11:34PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-18469 Stored cross-site scripting (XSS) vulnerability in the Copyright Text field found in the Application page under the Configuration menu in Rukovoditel 2.4.1 allows remote attackers to inject arbitrary web script or HTML via a crafted website name by doing an authenticated POST HTTP request to /rukovoditel_2.4.1/index.php?module=configuration/save&redirect_to=configuration/application. Published at: August 26, 2021 at 09:15PM View on website August 26, 2021 at 11:34PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-18468 Cross Site Scripting (XSS) vulnerability exists in qdPM 9.1 in the Heading field found in the Login Page page under the General menu via a crafted website name by doing an authenticated POST HTTP request to /qdPM_9.1/index.php/configuration. Published at: August 26, 2021 at 09:15PM View on website August 26, 2021 at 11:34PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-18467 Cross Site Scripting (XSS) vulnerabilty exists in BigTree-CMS 4.4.3 in the tag name field found in the Tags page under the General menu via a crafted website name by doing an authenticated POST HTTP request to admin/tags/create. Published at: August 26, 2021 at 09:15PM View on website August 26, 2021 at 11:34PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-19000 Cross Site Scripting (XSS) in Simiki v1.6.2.1 and prior allows remote attackers to execute arbitrary code via line 54 of the component 'simiki/blob/master/simiki/generators.py'. Published at: August 27, 2021 at 10:15PM View on website August 27, 2021 at 11:33PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-18999 Cross Site Scripting (XSS) in Blog_mini v1.0 allows remote attackers to execute arbitrary code via the component '/admin/submit-articles'. Published at: August 27, 2021 at 10:15PM View on website August 27, 2021 at 11:33PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-18998 Cross Site Scripting (XSS) in Blog_mini v1.0 allows remote attackers to execute arbitrary code via the component '/admin/custom/blog-plugin/add'. Published at: August 27, 2021 at 10:15PM View on website August 27, 2021 at 11:33PM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-18116 A lack of filtering for searched keywords in the search bar of YouDianCMS 8.0 allows attackers to perform SQL injection. Published at: August 28, 2021 at 12:15AM View on website August 28, 2021 at 01:33AM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-18114 An arbitrary file upload vulnerability in the /uploads/dede component of DedeCMS V5.7SP2 allows attackers to upload a webshell in HTM format. Published at: August 28, 2021 at 12:15AM View on website August 28, 2021 at 01:33AM via National Vulnerability Database New vulnerabilities from the NVD: CVE-2020-18106 The GET parameter "id" in WMS v1.0 is passed without filtering, which allows attackers to perform SQL injection. Published at: August 27, 2021 at 11:15PM View on website August 28, 2021 at 01:33AM via National Vulnerability Database