Security Vulnerabilities - CVEs Published In September 2017
Vulnerability in wordpress plugin eventr v1.02.2, The edit.php form and attendees.php code do not sanitize input, this allows for blind SQL injection via the event parameter.
CVSS Score
9.8
EPSS Score
0.06
Published
2017-09-14
Vulnerability in wordpress plugin eventr v1.02.2, The edit.php form and event_form.php code do not sanitize input, this allows for blind SQL injection via the event parameter.
CVSS Score
9.8
EPSS Score
0.06
Published
2017-09-14
Vulnerability in wordpress plugin surveys v1.01.8, The code in survey_form.php does not sanitize the action variable before placing it inside of an SQL query.
CVSS Score
9.8
EPSS Score
0.109
Published
2017-09-14
Vulnerability in wordpress plugin surveys v1.01.8, The code in individual_responses.php does not sanitize the survey_id variable before placing it inside of an SQL query.
CVSS Score
9.8
EPSS Score
0.109
Published
2017-09-14
The Rx protocol parser in tcpdump before 4.9.2 has a buffer over-read in print-rx.c:ubik_print().
CVSS Score
9.8
EPSS Score
0.006
Published
2017-09-14
The RPKI-Router parser in tcpdump before 4.9.2 has a buffer over-read in print-rpki-rtr.c:rpki_rtr_pdu_print().
CVSS Score
9.8
EPSS Score
0.026
Published
2017-09-14
The RSVP parser in tcpdump before 4.9.2 has a buffer over-read in print-rsvp.c:rsvp_obj_print().
CVSS Score
9.8
EPSS Score
0.006
Published
2017-09-14
The CFM parser in tcpdump before 4.9.2 has a buffer over-read in print-cfm.c:cfm_print().
CVSS Score
9.8
EPSS Score
0.014
Published
2017-09-14
The BGP parser in tcpdump before 4.9.2 has a buffer over-read in print-bgp.c:decode_rt_routing_info().
CVSS Score
9.8
EPSS Score
0.006
Published
2017-09-14
The LLDP parser in tcpdump before 4.9.2 has a buffer over-read in print-lldp.c:lldp_private_8023_print().
CVSS Score
9.8
EPSS Score
0.006
Published
2017-09-14