2018 CVE Vulnerabilities
17,817 CVEs published in 2018.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2018-25379 | HIGH | 8.8 | 0.4% | May 25, 2026 | Collectric CMU 1.0 contains a boolean-based blind SQL injection vulnerability in the lang parameter that allows unauthen... |
| CVE-2018-25377 | HIGH | 8.6 | 0.2% | May 25, 2026 | Flash Slideshow Maker Professional 5.20 contains a buffer overflow vulnerability in the registration dialog that allows ... |
| CVE-2018-25376 | HIGH | 8.6 | 0.2% | May 25, 2026 | Socusoft 3GP Photo Slideshow 8.05 contains a buffer overflow vulnerability in the registration dialog that allows local ... |
| CVE-2018-25375 | HIGH | 8.6 | 0.2% | May 25, 2026 | SocuSoft iPod Photo Slideshow 8.05 contains a buffer overflow vulnerability in the registration dialog that allows local... |
| CVE-2018-25374 | HIGH | 8.7 | 0.8% | May 25, 2026 | Softneta MedDream PACS Server Premium 6.7.1.1 contains a directory traversal vulnerability that allows unauthenticated a... |
| CVE-2018-25373 | HIGH | 8.6 | 0.2% | May 25, 2026 | SocuSoft DVD Photo Slideshow Professional 8.07 contains a stack-based buffer overflow vulnerability in the registration ... |
| CVE-2018-25372 | HIGH | 8.8 | 0.3% | May 25, 2026 | MedDream PACS Server Premium 6.7.1.1 contains an SQL injection vulnerability that allows unauthenticated attackers to ex... |
| CVE-2018-25371 | HIGH | 8.8 | 0.3% | May 25, 2026 | mooSocial Store Plugin 2.6 contains a blind SQL injection vulnerability that allows unauthenticated attackers to manipul... |
| CVE-2018-25368 | HIGH | 8.7 | 0.4% | May 25, 2026 | Nord VPN 6.14.31 contains a denial of service vulnerability that allows unauthenticated attackers to crash the applicati... |
| CVE-2018-25366 | HIGH | 8.6 | 0.2% | May 25, 2026 | CuteFTP 5.0 XP contains a buffer overflow vulnerability that allows local attackers to execute arbitrary code by injecti... |
| CVE-2018-25365 | HIGH | 8.7 | 0.8% | May 25, 2026 | PCViewer vt1000 contains a directory traversal vulnerability that allows unauthenticated attackers to read arbitrary fil... |
| CVE-2018-25364 | HIGH | 8.8 | 0.3% | May 25, 2026 | Twitter-Clone 1 contains a SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL qu... |
| CVE-2018-25362 | HIGH | 8.8 | 0.3% | May 25, 2026 | Twitter-Clone 1 contains a SQL injection vulnerability in follow.php that allows attackers to manipulate database querie... |
| CVE-2018-25361 | HIGH | 7 | 0.1% | May 25, 2026 | Soroush IM Desktop App 0.17.0 contains an authentication bypass vulnerability that allows local attackers to remove pass... |
| CVE-2018-25360 | HIGH | 8.6 | 0.2% | May 25, 2026 | AgataSoft Auto PingMaster 1.5 contains a stack-based buffer overflow vulnerability in the Trace Route host name field th... |
| CVE-2018-25359 | HIGH | 8.6 | 0.2% | May 25, 2026 | Splinterware System Scheduler Pro 5.12 contains an insecure file permissions vulnerability that allows low-privilege use... |
| CVE-2018-25358 | HIGH | 8.7 | 0.6% | May 23, 2026 | D-Link DIR601 2.02NA contains a credential disclosure vulnerability that allows unauthenticated attackers to retrieve se... |
| CVE-2018-25356 | HIGH | 8.6 | 0.2% | May 23, 2026 | SIPp 3.6 and earlier contains a local buffer overflow vulnerability in command-line argument handling that allows local ... |
| CVE-2018-25355 | HIGH | 8.6 | 0.2% | May 23, 2026 | Audiograbber 1.83 contains a local buffer overflow vulnerability that allows attackers to execute arbitrary code by expl... |
| CVE-2018-25353 | HIGH | 8.7 | 0.5% | May 23, 2026 | Redaxo CMS Mediapool Addon 5.5.1 and older contains an arbitrary file upload vulnerability that allows authenticated use... |
| CVE-2018-25352 | HIGH | 7.1 | 0.2% | May 23, 2026 | WordPress Ultimate Form Builder Lite plugin version 1.3.7 and below contains an SQL injection vulnerability that allows ... |
| CVE-2018-25351 | HIGH | 8.8 | 0.4% | May 23, 2026 | Joomla! Component EkRishta 2.10 contains an error-based SQL injection vulnerability that allows unauthenticated attacker... |
| CVE-2018-25348 | HIGH | 8.8 | 0.4% | May 23, 2026 | Joomla! Component Ek Rishta 2.10 contains an SQL injection vulnerability that allows unauthenticated attackers to manipu... |
| CVE-2018-25347 | HIGH | 7.1 | 0.2% | May 23, 2026 | WordPress Contact Form Maker Plugin 1.12.20 contains SQL injection vulnerabilities that allow authenticated attackers to... |
| CVE-2018-25346 | HIGH | 7.1 | 0.2% | May 23, 2026 | WordPress Form Maker Plugin 1.12.24 and below contains SQL injection vulnerabilities that allow authenticated attackers ... |
Check if your code is affected by 2018 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now