CVE-2017-17900
SQL injection vulnerability in fourn/index.php in Dolibarr ERP/CRM version 6.0.4 allows remote attackers to execute arbitrary SQL commands via the socid parameter.
Source: CVE-2017-17900
[월:] 2017년 12월
CVE-2017-17926
CVE-2017-17926
PHP Scripts Mall Professional Service Script has a predicable registration URL, which makes it easier for remote attackers to register with an invalid or spoofed e-mail address.
Source: CVE-2017-17926
CVE-2017-17924
CVE-2017-17924
PHP Scripts Mall Professional Service Script allows remote attackers to obtain sensitive full-path information via the id parameter to admin/review_userwise.php.
Source: CVE-2017-17924
CVE-2017-17928
CVE-2017-17928
PHP Scripts Mall Professional Service Script has SQL injection via the admin/review.php id parameter.
Source: CVE-2017-17928
CVE-2017-17886 (imagemagick)
CVE-2017-17886 (imagemagick)
In ImageMagick 7.0.7-12 Q16, a memory leak vulnerability was found in the function ReadPSDChannelZip in coders/psd.c, which allows attackers to cause a denial of service via a crafted psd image file.
Source: CVE-2017-17886 (imagemagick)
CVE-2017-17885 (imagemagick)
CVE-2017-17885 (imagemagick)
In ImageMagick 7.0.7-12 Q16, a memory leak vulnerability was found in the function ReadPICTImage in coders/pict.c, which allows attackers to cause a denial of service via a crafted PICT image file.
Source: CVE-2017-17885 (imagemagick)
CVE-2017-17883 (imagemagick)
CVE-2017-17883 (imagemagick)
In ImageMagick 7.0.7-12 Q16, a memory leak vulnerability was found in the function ReadPGXImage in coders/pgx.c, which allows attackers to cause a denial of service via a crafted PGX image file.
Source: CVE-2017-17883 (imagemagick)
CVE-2017-17882 (imagemagick)
CVE-2017-17882 (imagemagick)
In ImageMagick 7.0.7-12 Q16, a memory leak vulnerability was found in the function ReadXPMImage in coders/xpm.c, which allows attackers to cause a denial of service via a crafted XPM image file.
Source: CVE-2017-17882 (imagemagick)
CVE-2017-17881 (imagemagick)
CVE-2017-17881 (imagemagick)
In ImageMagick 7.0.7-12 Q16, a memory leak vulnerability was found in the function ReadMATImage in coders/mat.c, which allows attackers to cause a denial of service via a crafted MAT image file.
Source: CVE-2017-17881 (imagemagick)
CVE-2017-17880 (imagemagick)
CVE-2017-17880 (imagemagick)
In ImageMagick 7.0.7-16 Q16 x86_64 2017-12-21, there is a stack-based buffer over-read in WriteWEBPImage in coders/webp.c, related to a WEBP_DECODER_ABI_VERSION check.
Source: CVE-2017-17880 (imagemagick)