wshepherd0010/advisories

Releases0

Security Advisories

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2018-8974 ↗	Apr 26, 2018Thursday, 26 April 2018, 06:29	—	9.3 HIGH
Centers for Disease Control and Prevention MicrobeTRACE 0.1.11 allows remote attackers to execute arbitrary code, related to code injection via a crafted CSV file with an initial 'Source<script type="text/javascript" src=' line. Fix released on 2018-03-28.
CVE-2018-9113 ↗	Apr 26, 2018Thursday, 26 April 2018, 06:29	—	9.3 HIGH
Centers for Disease Control and Prevention MicrobeTRACE 0.1.12 allows remote attackers to execute arbitrary code, related to code injection via a crafted CSV file with an initial '><script type="text/javascript" src=' line. Fix released on 2018-03-29.
CVE-2017-14702 ↗	Sep 30, 2017Saturday, 30 September 2017, 01:29	9.8 CRITICAL	7.5 HIGH
ERS Data System 1.8.1.0 allows remote attackers to execute arbitrary code, related to "com.branaghgroup.ecers.update.UpdateRequest" object deserialization.