Vulnerability & Exploit Database

Cisco ASA: CVE-2018-0229: Cisco ASA Software, FTD Software, and AnyConnect Secure Mobility Client SAML Authentication Session Fixation Vulnerability

Cisco AnyConnect: CVE-2018-0229: Cisco ASA Software, FTD Software, and AnyConnect Secure Mobility Client SAML Authentication Session Fixation Vulnerability

Alpine Linux: CVE-2018-8831: Cross-site Scripting

Oracle WebLogic: CVE-2018-2628 : Remote Code Execution Vulnerability

Jenkins Advisory 2018-04-11: CVE-2018-1000170: Cross-site scripting vulnerability in confirmation dialogs displaying item names

7-Zip: CVE-2018-10172: CWE-269

MediaWiki: Improper Input Validation (CVE-2017-0370)

Debian: CVE-2017-0370: mediawiki -- security update

F5 Networks: CVE-2017-6143: K11464209: IP Intelligence Feed List vulnerability CVE-2017-6143

Metasploit msfd Remote Code Execution via Browser

Metasploit msfd Remote Code Execution

SUSE: CVE-2017-7562: SUSE Linux Security Advisory

Microsoft CVE-2018-1005: Microsoft SharePoint Elevation of Privilege Vulnerability

Microsoft CVE-2018-1028: Microsoft Office Graphics Remote Code Execution Vulnerability

Amazon Linux AMI: CVE-2017-7562: Security patch for krb5 (ALAS-2018-1010)

Microsoft CVE-2018-1032: Microsoft SharePoint Elevation of Privilege Vulnerability

Red Hat: CVE-2017-7562: Moderate: krb5 security, bug fix, and enhancement update (RHSA-2018:0666)

Debian: CVE-2018-1308: lucene-solr -- security update

H2 Web Interface Create Alias RCE

FreeBSD: VID-48894CA9-3E6F-11E8-92F0-F0DEF167EEEA (CVE-2018-9846): roundcube -- IMAP command injection vulnerability