Search
Total
49350 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2018-13590 | 1 Sipcoin | 1 Sipcoin | 2018-09-04 | 5.0 MEDIUM | 7.5 HIGH |
| The mintToken function of a smart contract implementation for SIPCOIN, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2018-13591 | 1 Kapcoin Project | 1 Kapcoin | 2018-09-04 | 5.0 MEDIUM | 7.5 HIGH |
| The mintToken function of a smart contract implementation for KAPcoin, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2018-13067 | 1 Opencart | 1 Opencart | 2018-09-04 | 6.8 MEDIUM | 8.8 HIGH |
| /upload/catalog/controller/account/password.php in OpenCart through 3.0.2.0 has CSRF via the index.php?route=account/password URI to change a user's password. | |||||
| CVE-2018-13592 | 1 Rajtestico Project | 1 Rajtestico | 2018-09-04 | 5.0 MEDIUM | 7.5 HIGH |
| The mintToken function of a smart contract implementation for RajTest, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2018-3754 | 1 Query-mysql Project | 1 Query-mysql | 2018-09-04 | 6.5 MEDIUM | 8.8 HIGH |
| Node.js third-party module query-mysql versions 0.0.0, 0.0.1, and 0.0.2 are vulnerable to an SQL injection vulnerability due to lack of user input sanitization. This may allow an attacker to run arbitrary SQL queries when fetching data from database. | |||||
| CVE-2018-13223 | 1 Rtokenmain Project | 1 Rtokenmain | 2018-09-02 | 5.0 MEDIUM | 7.5 HIGH |
| The sell function of a smart contract implementation for R Time Token v3 (RS) (Contract Name: RTokenMain), an Ethereum token, has an integer overflow in which "amount * sellPrice" can be zero, consequently reducing a seller's assets. | |||||
| CVE-2018-11636 | 1 Dialogic | 1 Powermedia Xms | 2018-08-31 | 6.8 MEDIUM | 8.8 HIGH |
| Cross-site request forgery (CSRF) vulnerability in the administrative console in Dialogic PowerMedia XMS through 3.5 allows remote attackers to execute malicious and unauthorized actions. | |||||
| CVE-2018-13032 | 1 Ecessa | 2 Shieldlink Sl175ehq, Shieldlink Sl175ehq Firmware | 2018-08-31 | 6.8 MEDIUM | 8.8 HIGH |
| ECESSA ShieldLink SL175EHQ 10.7.4 devices have CSRF to add superuser accounts via the cgi-bin/pl_web.cgi/util_configlogin_act URI. | |||||
| CVE-2018-11643 | 1 Dialogic | 1 Powermedia Xms | 2018-08-31 | 6.5 MEDIUM | 8.8 HIGH |
| SQL injection vulnerability in the administrative console in Dialogic PowerMedia XMS through 3.5 allows remote authenticated users to execute arbitrary SQL commands via the filterPattern parameter. | |||||
| CVE-2018-12907 | 1 Rclone | 1 Rclone | 2018-08-31 | 5.0 MEDIUM | 7.5 HIGH |
| In Rclone 1.42, use of "rclone sync" to migrate data between two Google Cloud Storage buckets might allow attackers to trigger the transmission of any URL's content to Google, because there is no validation of a URL field received from the Google Cloud Storage API server, aka a "RESTLESS" issue. | |||||
| CVE-2018-13472 | 1 Clouttoken Project | 1 Clouttoken | 2018-08-31 | 5.0 MEDIUM | 7.5 HIGH |
| The mint function of a smart contract implementation for CloutToken, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2018-13544 | 1 Numisma | 1 Numisma | 2018-08-31 | 5.0 MEDIUM | 7.5 HIGH |
| The mintToken function of a smart contract implementation for Numisma, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2018-13476 | 1 Philcoin | 1 Philcoin | 2018-08-31 | 5.0 MEDIUM | 7.5 HIGH |
| The mintToken function of a smart contract implementation for PhilCoin, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2018-13496 | 1 Rajtestico Project | 1 Rajtestico | 2018-08-31 | 5.0 MEDIUM | 7.5 HIGH |
| The mintToken function of a smart contract implementation for RajTestICO, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2018-13541 | 1 Cryptoleu Project | 1 Cryptoleu | 2018-08-31 | 5.0 MEDIUM | 7.5 HIGH |
| The mintToken function of a smart contract implementation for CryptoLeu, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2018-13542 | 1 Zibtoken | 1 Zibtoken | 2018-08-31 | 5.0 MEDIUM | 7.5 HIGH |
| The mintToken function of a smart contract implementation for ZIBToken, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2018-3840 | 1 Pixar | 1 Renderman | 2018-08-31 | 5.0 MEDIUM | 7.5 HIGH |
| A denial-of-service vulnerability exists in the Pixar Renderman IT Display Service 21.6 (0x67). The vulnerability is present in the parsing of a network packet without proper validation of the packet. The data read by the application is not validated, and its use can lead to a null pointer dereference. The IT application is opened by a user and then listens for a connection on port 4001. An attacker can deliver an attack once the application has been opened. | |||||
| CVE-2018-12921 | 1 Electroind | 2 Gaugetech Nexus, Gaugetech Nexus Firmware | 2018-08-31 | 5.0 MEDIUM | 7.5 HIGH |
| Electro Industries GaugeTech Nexus devices allow remote attackers to obtain potentially sensitive information via a direct request for the meter_information.htm, diag_system.htm, or diag_dnp_lan_wan.htm URI. | |||||
| CVE-2018-1000531 | 1 Inversoft | 1 Prime-jwt | 2018-08-30 | 5.0 MEDIUM | 7.5 HIGH |
| inversoft prime-jwt version prior to commit abb0d479389a2509f939452a6767dc424bb5e6ba contains a CWE-20 vulnerability in JWTDecoder.decode that can result in an incorrect signature validation of a JWT token. This attack can be exploitable when an attacker crafts a JWT token with a valid header using 'none' as algorithm and a body to requests it be validated. This vulnerability was fixed after commit abb0d479389a2509f939452a6767dc424bb5e6ba. | |||||
| CVE-2018-13049 | 1 Glpi-project | 1 Glpi | 2018-08-30 | 6.5 MEDIUM | 8.8 HIGH |
| The constructSQL function in inc/search.class.php in GLPI 9.2.x through 9.3.0 allows SQL Injection, as demonstrated by triggering a crafted LIMIT clause to front/computer.php. | |||||
| CVE-2018-13628 | 1 Momentumprotocol | 1 Momentumtoken | 2018-08-30 | 5.0 MEDIUM | 7.5 HIGH |
| The mintToken function of a smart contract implementation for MomentumToken, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2018-13633 | 1 Martcoin | 1 Martcoin | 2018-08-30 | 5.0 MEDIUM | 7.5 HIGH |
| The mintToken function of a smart contract implementation for Martcoin, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2018-13634 | 1 Mct | 1 Mediacubetoken | 2018-08-30 | 5.0 MEDIUM | 7.5 HIGH |
| The mintToken function of a smart contract implementation for MediaCubeToken, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2018-13629 | 1 Crimsonshilling Project | 1 Crimsonshilling | 2018-08-30 | 5.0 MEDIUM | 7.5 HIGH |
| The mintToken function of a smart contract implementation for CrimsonShilling, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2018-13631 | 1 Doc-coin | 1 Doccoin | 2018-08-30 | 5.0 MEDIUM | 7.5 HIGH |
| The mintToken function of a smart contract implementation for doccoin, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2018-13632 | 1 Nexpara Project | 1 Nexpara | 2018-08-30 | 5.0 MEDIUM | 7.5 HIGH |
| The mintToken function of a smart contract implementation for NEXPARA, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2018-13635 | 1 Hbcm Project | 1 Hbcm | 2018-08-30 | 5.0 MEDIUM | 7.5 HIGH |
| The mintToken function of a smart contract implementation for HBCM, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2018-13630 | 1 Doccoinpreico Project | 1 Doccoinpreico | 2018-08-30 | 5.0 MEDIUM | 7.5 HIGH |
| The mintToken function of a smart contract implementation for DoccoinPreICO, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2018-13621 | 1 Soundtribetoken Project | 1 Soundtribetoken | 2018-08-30 | 5.0 MEDIUM | 7.5 HIGH |
| The mintToken function of a smart contract implementation for SoundTribeToken, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2018-13622 | 1 Objectledger | 1 Objecttoken | 2018-08-30 | 5.0 MEDIUM | 7.5 HIGH |
| The mintToken function of a smart contract implementation for ObjectToken (OBJ), an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2018-13620 | 1 Tripcash Project | 1 Tripcash | 2018-08-30 | 5.0 MEDIUM | 7.5 HIGH |
| The mintToken function of a smart contract implementation for TripCash, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2018-13623 | 1 Cryptics | 1 Airdroppercryptics | 2018-08-30 | 5.0 MEDIUM | 7.5 HIGH |
| The mintToken function of a smart contract implementation for AirdropperCryptics, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2018-13619 | 1 Micointoken Project | 1 Micointoken | 2018-08-30 | 5.0 MEDIUM | 7.5 HIGH |
| The mintToken function of a smart contract implementation for MicoinToken, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2018-13627 | 1 Myoffer Project | 1 Myoffer | 2018-08-30 | 5.0 MEDIUM | 7.5 HIGH |
| The mintToken function of a smart contract implementation for MyOffer, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2018-13626 | 1 Semaintoken Project | 1 Semaintoken | 2018-08-30 | 5.0 MEDIUM | 7.5 HIGH |
| The mintToken function of a smart contract implementation for SemainToken, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2018-13614 | 1 Mavcash Project | 1 Mavcash | 2018-08-30 | 5.0 MEDIUM | 7.5 HIGH |
| The mintToken function of a smart contract implementation for MAVCash, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2018-13615 | 1 Mjctoken Project | 1 Mjctoken | 2018-08-30 | 5.0 MEDIUM | 7.5 HIGH |
| The mintToken function of a smart contract implementation for MJCToken, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2018-13616 | 1 Ioct Coin Project | 1 Ioct Coin | 2018-08-30 | 5.0 MEDIUM | 7.5 HIGH |
| The mintToken function of a smart contract implementation for IOCT_Coin, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2018-13618 | 1 Vicetoken Ico Is A Scam Project | 1 Vicetoken Ico Is A Scam | 2018-08-30 | 5.0 MEDIUM | 7.5 HIGH |
| The mintToken function of a smart contract implementation for VICETOKEN_ICO_IS_A_SCAM, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2018-13612 | 1 Robincoin Project | 1 Robincoin | 2018-08-30 | 5.0 MEDIUM | 7.5 HIGH |
| The mintToken function of a smart contract implementation for Robincoin, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2018-13611 | 1 Ucoincorp | 1 Cdcurrency | 2018-08-30 | 5.0 MEDIUM | 7.5 HIGH |
| The mintToken function of a smart contract implementation for CDcurrency, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2018-13613 | 1 Con0217 Project | 1 Con0217 | 2018-08-30 | 5.0 MEDIUM | 7.5 HIGH |
| The mintToken function of a smart contract implementation for CON0217, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2018-13610 | 1 Medicayunlink | 1 Medicayunlink | 2018-08-30 | 5.0 MEDIUM | 7.5 HIGH |
| The mintToken function of a smart contract implementation for MedicayunLink, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2018-13607 | 1 Residualshare Project | 1 Residualshare | 2018-08-30 | 5.0 MEDIUM | 7.5 HIGH |
| The mintToken function of a smart contract implementation for ResidualShare, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2018-13608 | 1 Archercoin Project | 1 Archercoin | 2018-08-30 | 5.0 MEDIUM | 7.5 HIGH |
| The mintToken function of a smart contract implementation for archercoin, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2018-13609 | 1 Csa-estate | 1 Csatoken | 2018-08-30 | 5.0 MEDIUM | 7.5 HIGH |
| The mintToken function of a smart contract implementation for CSAToken, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2018-13606 | 1 Archain Project | 1 Archain | 2018-08-30 | 5.0 MEDIUM | 7.5 HIGH |
| The mintToken function of a smart contract implementation for ARChain, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2018-13553 | 1 Microbtc Project | 1 Microbtc | 2018-08-30 | 5.0 MEDIUM | 7.5 HIGH |
| The mintToken function of a smart contract implementation for Micro BTC (MBTC), an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2018-13599 | 1 Residualvalue Project | 1 Residualvalue | 2018-08-30 | 5.0 MEDIUM | 7.5 HIGH |
| The mintToken function of a smart contract implementation for ResidualValue, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2018-13604 | 1 Wellieat Project | 1 Wellieat | 2018-08-30 | 5.0 MEDIUM | 7.5 HIGH |
| The mintToken function of a smart contract implementation for wellieat, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||