Search
Total
49350 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2018-10966 | 1 Gamerpolls | 1 Gamerpolls | 2018-07-20 | 7.5 HIGH | 7.3 HIGH |
| An issue was discovered in GamerPolls 0.4.6, related to config/environments/all.js and config/initializers/02_passport.js. An attacker can edit the Passport.js contents of the session cookie to contain the ID number of the account they wish to take over, and re-sign it using the hard coded secret. | |||||
| CVE-2017-16038 | 1 F2e-server Project | 1 F2e-server | 2018-07-19 | 5.0 MEDIUM | 7.5 HIGH |
| `f2e-server` 1.12.11 and earlier is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url. This is compounded by `f2e-server` requiring elevated privileges to run. | |||||
| CVE-2018-13668 | 1 Btpcoin Project | 1 Btpcoin | 2018-07-19 | 5.0 MEDIUM | 7.5 HIGH |
| The mintToken function of a smart contract implementation for BTPCoin, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2018-13671 | 1 Dinsteincoin Project | 1 Dinsteincoin | 2018-07-19 | 5.0 MEDIUM | 7.5 HIGH |
| The mintToken function of a smart contract implementation for DinsteinCoin, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2018-13669 | 1 Ncu Project | 1 Ncu | 2018-07-19 | 5.0 MEDIUM | 7.5 HIGH |
| The mintToken function of a smart contract implementation for NCU, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2018-13674 | 1 Combilladvancedtoken Project | 1 Combilladvancedtoken | 2018-07-19 | 5.0 MEDIUM | 7.5 HIGH |
| The mintToken function of a smart contract implementation for ComBillAdvancedToken, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2018-13672 | 1 Obtcoin Project | 1 Obtcoin | 2018-07-19 | 5.0 MEDIUM | 7.5 HIGH |
| The mintToken function of a smart contract implementation for OBTCoin, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2018-13673 | 1 Goldtokenerc20 Project | 1 Goldtokenerc20 | 2018-07-19 | 5.0 MEDIUM | 7.5 HIGH |
| The mintToken function of a smart contract implementation for GoldTokenERC20, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2018-13684 | 1 Zip Project | 1 Zip | 2018-07-19 | 5.0 MEDIUM | 7.5 HIGH |
| The mintToken function of a smart contract implementation for ZIP, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2018-13685 | 1 Vornoxcointoken Project | 1 Vornoxcointoken | 2018-07-19 | 5.0 MEDIUM | 7.5 HIGH |
| The mintToken function of a smart contract implementation for Vornox (VRX) (Contract Name: VornoxCoinToken), an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2018-13675 | 1 Yambyo Project | 1 Yambyo | 2018-07-19 | 5.0 MEDIUM | 7.5 HIGH |
| The mintToken function of a smart contract implementation for YAMBYO, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2018-13678 | 1 Lottery Project | 1 Lottery | 2018-07-19 | 5.0 MEDIUM | 7.5 HIGH |
| The mintToken function of a smart contract implementation for Lottery, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2018-13679 | 1 Zpecoin Project | 1 Zpecoin | 2018-07-19 | 5.0 MEDIUM | 7.5 HIGH |
| The mintToken function of a smart contract implementation for ZPEcoin, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2018-13677 | 1 Goochain Project | 1 Goochain | 2018-07-19 | 5.0 MEDIUM | 7.5 HIGH |
| The mintToken function of a smart contract implementation for Goochain, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2018-13680 | 1 Lexittoken Project | 1 Lexittoken | 2018-07-19 | 5.0 MEDIUM | 7.5 HIGH |
| The mintToken function of a smart contract implementation for LexitToken, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2018-13683 | 1 Exsulcoin Project | 1 Exsulcoin | 2018-07-19 | 5.0 MEDIUM | 7.5 HIGH |
| The mintToken function of a smart contract implementation for exsulcoin, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2018-13681 | 1 Soscoin Project | 1 Soscoin | 2018-07-19 | 5.0 MEDIUM | 7.5 HIGH |
| The mintToken function of a smart contract implementation for SOSCoin, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2018-13688 | 1 Malltoken Project | 1 Malltoken | 2018-07-19 | 5.0 MEDIUM | 7.5 HIGH |
| The mintToken function of a smart contract implementation for MallToken, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2018-13689 | 1 Cjxtoken Project | 1 Cjxtoken | 2018-07-19 | 5.0 MEDIUM | 7.5 HIGH |
| The mintToken function of a smart contract implementation for CJXToken, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2018-13690 | 1 Instacocoa Project | 1 Instacocoa | 2018-07-19 | 5.0 MEDIUM | 7.5 HIGH |
| The mintToken function of a smart contract implementation for Instacocoa, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2018-13687 | 1 Normikaivo Project | 1 Normikaivo | 2018-07-19 | 5.0 MEDIUM | 7.5 HIGH |
| The mintToken function of a smart contract implementation for normikaivo, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2018-13691 | 1 Rtokenmain Project | 1 Rtokenmain | 2018-07-19 | 5.0 MEDIUM | 7.5 HIGH |
| The mintToken function of a smart contract implementation for R Time Token v3 (RS) (Contract Name: RTokenMain), an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2018-13694 | 1 Gmile Project | 1 Gmile | 2018-07-19 | 5.0 MEDIUM | 7.5 HIGH |
| The mintToken function of a smart contract implementation for GMile, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2018-13692 | 1 Mehditazitoken Project | 1 Mehditazitoken | 2018-07-19 | 5.0 MEDIUM | 7.5 HIGH |
| The mintToken function of a smart contract implementation for MehdiTAZIToken, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2018-13693 | 1 Greenenergytoken Project | 1 Greenenergytoken | 2018-07-19 | 5.0 MEDIUM | 7.5 HIGH |
| The mintToken function of a smart contract implementation for GreenEnergyToken, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2018-13695 | 1 Ctest7 Project | 1 Ctest7 | 2018-07-19 | 5.0 MEDIUM | 7.5 HIGH |
| The mint function of a smart contract implementation for CTest7, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2018-13700 | 1 Ipmcoin Project | 1 Ipmcoin | 2018-07-19 | 5.0 MEDIUM | 7.5 HIGH |
| The mintToken function of a smart contract implementation for IPMCoin, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2018-13697 | 1 Robotbtc Project | 1 Robotbtc | 2018-07-19 | 5.0 MEDIUM | 7.5 HIGH |
| The mintToken function of a smart contract implementation for RobotBTC, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2018-13696 | 1 Redticket Project | 1 Redticket | 2018-07-19 | 5.0 MEDIUM | 7.5 HIGH |
| The mintToken function of a smart contract implementation for RedTicket, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2018-13698 | 1 Play2livepromo Project | 1 Play2livepromo | 2018-07-19 | 5.0 MEDIUM | 7.5 HIGH |
| The mintTokens function of a smart contract implementation for Play2LivePromo, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2018-13682 | 1 Vitemoneycoin Project | 1 Vitemoneycoin | 2018-07-19 | 5.0 MEDIUM | 7.5 HIGH |
| The mintToken function of a smart contract implementation for ViteMoneyCoin, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2017-16198 | 1 Ritp Project | 1 Ritp | 2018-07-19 | 5.0 MEDIUM | 7.5 HIGH |
| ritp is a static web server. ritp is vulnerable to a directory traversal issue whereby an attacker can gain access to the file system by placing ../ in the URL. Access is restricted to files with a file extension, so files such as /etc/passwd are not accessible. | |||||
| CVE-2016-9878 | 1 Pivotal Software | 1 Spring Framework | 2018-07-19 | 5.0 MEDIUM | 7.5 HIGH |
| An issue was discovered in Pivotal Spring Framework before 3.2.18, 4.2.x before 4.2.9, and 4.3.x before 4.3.5. Paths provided to the ResourceServlet were not properly sanitized and as a result exposed to directory traversal attacks. | |||||
| CVE-2017-6074 | 1 Linux | 1 Linux Kernel | 2018-07-19 | 7.2 HIGH | 7.8 HIGH |
| The dccp_rcv_state_process function in net/dccp/input.c in the Linux kernel through 4.9.11 mishandles DCCP_PKT_REQUEST packet data structures in the LISTEN state, which allows local users to obtain root privileges or cause a denial of service (double free) via an application that makes an IPV6_RECVPKTINFO setsockopt system call. | |||||
| CVE-2016-2176 | 1 Openssl | 1 Openssl | 2018-07-19 | 6.4 MEDIUM | 8.2 HIGH |
| The X509_NAME_oneline function in crypto/x509/x509_obj.c in OpenSSL before 1.0.1t and 1.0.2 before 1.0.2h allows remote attackers to obtain sensitive information from process stack memory or cause a denial of service (buffer over-read) via crafted EBCDIC ASN.1 data. | |||||
| CVE-2016-3506 | 1 Oracle | 1 Jdbc | 2018-07-19 | 6.8 MEDIUM | 8.1 HIGH |
| Unspecified vulnerability in the JDBC component in Oracle Database Server 11.2.0.4, 12.1.0.1, and 12.1.0.2; the Oracle Retail Xstore Point of Service 5.5, 6.0, 6.5, 7.0, 7.1, 15.0, and 16.0; the Oracle Retail Warehouse Management System 14.04, 14.1.3, and 15.0.1; the Oracle Retail Workforce Management 1.60.7, and 1.64.0; the Oracle Retail Clearance Optimization Engine 13.4; the Oracle Retail Markdown Optimization 13.4 and 14.0; and Oracle Retail Merchandising System 16.0 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. | |||||
| CVE-2016-2106 | 2 Openssl, Redhat | 8 Openssl, Enterprise Linux Desktop, Enterprise Linux Hpc Node and 5 more | 2018-07-19 | 5.0 MEDIUM | 7.5 HIGH |
| Integer overflow in the EVP_EncryptUpdate function in crypto/evp/evp_enc.c in OpenSSL before 1.0.1t and 1.0.2 before 1.0.2h allows remote attackers to cause a denial of service (heap memory corruption) via a large amount of data. | |||||
| CVE-2016-2109 | 2 Openssl, Redhat | 8 Openssl, Enterprise Linux Desktop, Enterprise Linux Hpc Node and 5 more | 2018-07-19 | 7.8 HIGH | 7.5 HIGH |
| The asn1_d2i_read_bio function in crypto/asn1/a_d2i_fp.c in the ASN.1 BIO implementation in OpenSSL before 1.0.1t and 1.0.2 before 1.0.2h allows remote attackers to cause a denial of service (memory consumption) via a short invalid encoding. | |||||
| CVE-2018-13714 | 1 Cm Project | 1 Cm | 2018-07-18 | 5.0 MEDIUM | 7.5 HIGH |
| The mintToken function of a smart contract implementation for CM, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2018-13713 | 1 Tradesman Project | 1 Tradesman | 2018-07-18 | 5.0 MEDIUM | 7.5 HIGH |
| The mintToken function of a smart contract implementation for Tradesman, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2018-13712 | 1 Pmet Project | 1 Pmet | 2018-07-18 | 5.0 MEDIUM | 7.5 HIGH |
| The mintToken function of a smart contract implementation for PMET, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2018-13710 | 1 Mjolnir Project | 1 Mjolnir | 2018-07-18 | 5.0 MEDIUM | 7.5 HIGH |
| The mintToken function of a smart contract implementation for Mjolnir, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2018-13708 | 1 Buytoken Project | 1 Buytoken | 2018-07-18 | 5.0 MEDIUM | 7.5 HIGH |
| The mintToken function of a smart contract implementation for Order (ETH) (Contract Name: BuyToken), an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2018-13711 | 1 Databits Project | 1 Databits | 2018-07-18 | 5.0 MEDIUM | 7.5 HIGH |
| The mintToken function of a smart contract implementation for Databits, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2018-13703 | 1 Cerb Coin Project | 1 Cerb Coin | 2018-07-18 | 5.0 MEDIUM | 7.5 HIGH |
| The mintToken function of a smart contract implementation for CERB_Coin, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2018-13707 | 1 Yss Project | 1 Yss | 2018-07-18 | 5.0 MEDIUM | 7.5 HIGH |
| The mintToken function of a smart contract implementation for YSS, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2018-13704 | 1 Eddtoken Project | 1 Eddtoken | 2018-07-18 | 5.0 MEDIUM | 7.5 HIGH |
| The mintToken function of a smart contract implementation for eddToken, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2018-13705 | 1 Pmhtoken Project | 1 Pmhtoken | 2018-07-18 | 5.0 MEDIUM | 7.5 HIGH |
| The mintToken function of a smart contract implementation for PMHToken, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2018-13706 | 1 Ideacoin Project | 1 Ideacoin | 2018-07-18 | 5.0 MEDIUM | 7.5 HIGH |
| The mintToken function of a smart contract implementation for IdeaCoin, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||
| CVE-2018-13701 | 1 Kissme Project | 1 Kissme | 2018-07-18 | 5.0 MEDIUM | 7.5 HIGH |
| The mintToken function of a smart contract implementation for KissMe, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value. | |||||