Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: attack-types Clear
ID Title
CVE-2024-4228 SQL Injection in sqli (CVE-2024-4228)
SQL injection in sqli (CVE-2024-4228). Successful exploitation can lead to full system takeover.
CVE-2024-4754 Cross-Site Scripting (XSS) in CVE-2024-4754 (CVE-2024-4754)
cross-site scripting in CVE-2024-4754 (CVE-2024-4754). Risk of unauthorized operations or information disclosure.
CVE-2024-37673 Cross-Site Scripting (XSS) in tessi (CVE-2024-37673)
cross-site scripting in tessi (CVE-2024-37673). Risk of unauthorized operations or information disclosure.
CVE-2024-37675 Cross-Site Scripting (XSS) in tessi (CVE-2024-37675)
cross-site scripting in tessi (CVE-2024-37675). Risk of unauthorized operations or information disclosure.
CVE-2024-37671 Cross-Site Scripting (XSS) in tessi (CVE-2024-37671)
cross-site scripting in tessi (CVE-2024-37671). Risk of unauthorized operations or information disclosure.
CVE-2024-37672 Cross-Site Scripting (XSS) in tessi (CVE-2024-37672)
cross-site scripting in tessi (CVE-2024-37672). Risk of unauthorized operations or information disclosure.
CVE-2024-37674 Cross-Site Scripting (XSS) in moodle (CVE-2024-37674)
cross-site scripting in moodle (CVE-2024-37674). Risk of unauthorized operations or information disclosure.
CVE-2024-30104 Microsoft Office Remote Code Execution Vulnerability
Microsoft Office Remote Code Execution Vulnerability
CVE-2024-30101 Microsoft Office Remote Code Execution Vulnerability
Microsoft Office Remote Code Execution Vulnerability
CVE-2024-30103 Microsoft Outlook Remote Code Execution Vulnerability
Microsoft Outlook Remote Code Execution Vulnerability
CVE-2024-3166 Cross-Site Scripting (XSS) in mintplexlabs (CVE-2024-3166)
cross-site scripting in mintplexlabs (CVE-2024-3166). Successful exploitation can lead to full system takeover.
CVE-2024-1100 SQL Injection in sqli (CVE-2024-1100)
SQL injection in sqli (CVE-2024-1100). Successful exploitation can lead to full system takeover.
CVE-2024-35563 SQL Injection in sqli (CVE-2024-35563)
SQL injection in sqli (CVE-2024-35563). Successful exploitation can lead to full system takeover.
CVE-2024-2199 Vulnerability in dos (CVE-2024-2199)
vulnerability in dos (CVE-2024-2199). Risk of unauthorized operations or information disclosure. Exploitable via ``userPassword``.
CVE-2024-0851 SQL Injection in sqli (CVE-2024-0851)
SQL injection in sqli (CVE-2024-0851). Risk of unauthorized operations or information disclosure.
CVE-2024-26367 Cross-Site Scripting (XSS) in CVE-2024-26367 (CVE-2024-26367)
cross-site scripting in CVE-2024-26367 (CVE-2024-26367). Risk of unauthorized operations or information disclosure.
CVE-2024-3727 Vulnerability in path-traversal (CVE-2024-3727)
vulnerability in path-traversal (CVE-2024-3727). Successful exploitation can lead to full system takeover.
CVE-2024-30801 SQL Injection in sqli (CVE-2024-30801)
SQL injection in sqli (CVE-2024-30801). Data can be tampered with by attackers.
CVE-2024-33601 Vulnerability in dos (CVE-2024-33601)
vulnerability in dos (CVE-2024-33601). Risk of unauthorized operations or information disclosure.
CVE-2024-4029 Vulnerability in dos (CVE-2024-4029)
vulnerability in dos (CVE-2024-4029). Risk of unauthorized operations or information disclosure.
CVE-2023-6237 Vulnerability in dos (CVE-2023-6237)
vulnerability in dos (CVE-2023-6237). Risk of unauthorized operations or information disclosure.
CVE-2024-28722 Cross-Site Scripting (XSS) in CVE-2024-28722 (CVE-2024-28722)
cross-site scripting in CVE-2024-28722 (CVE-2024-28722). Risk of unauthorized operations or information disclosure.
CVE-2024-32206 Cross-Site Scripting (XSS) in wuzhicms (CVE-2024-32206)
cross-site scripting in wuzhicms (CVE-2024-32206). Risk of unauthorized operations or information disclosure.
CVE-2024-26898 Use-After-Free in dos (CVE-2024-26898)
vulnerability in dos (CVE-2024-26898). Successful exploitation can lead to full system takeover. Exploitable via ``skbtxq``.
CVE-2024-26257 Microsoft Excel Remote Code Execution Vulnerability
Microsoft Excel Remote Code Execution Vulnerability
CVE-2024-2511 Vulnerability in dos (CVE-2024-2511)
vulnerability in dos (CVE-2024-2511). Risk of unauthorized operations or information disclosure.
CVE-2024-28755 Vulnerability in dos (CVE-2024-28755)
vulnerability in dos (CVE-2024-28755). Risk of unauthorized operations or information disclosure.
CVE-2024-28836 Vulnerability in dos (CVE-2024-28836)
vulnerability in dos (CVE-2024-28836). Risk of unauthorized operations or information disclosure.
CVE-2024-30166 Vulnerability in dos (CVE-2024-30166)
vulnerability in dos (CVE-2024-30166). Confidential information can be exposed externally.
CVE-2024-22780 Cross-Site Scripting (XSS) in CVE-2024-22780 (CVE-2024-22780)
cross-site scripting in CVE-2024-22780 (CVE-2024-22780). Risk of unauthorized operations or information disclosure.
CVE-2023-6191 SQL Injection in sqli (CVE-2023-6191)
SQL injection in sqli (CVE-2023-6191). Successful exploitation can lead to full system takeover.
CVE-2023-6047 Cross-Site Scripting (XSS) in algoritimbilisim (CVE-2023-6047)
cross-site scripting in algoritimbilisim (CVE-2023-6047). Risk of unauthorized operations or information disclosure.
CVE-2024-28714 SQL Injection in sqli (CVE-2024-28714)
SQL injection in sqli (CVE-2024-28714). Confidential information can be exposed externally.
CVE-2024-31064 Cross-Site Scripting (XSS) in munyweki (CVE-2024-31064)
cross-site scripting in munyweki (CVE-2024-31064). Risk of unauthorized operations or information disclosure.
CVE-2023-6153 Vulnerability in CVE-2023-6153 (CVE-2023-6153)
vulnerability in CVE-2023-6153 (CVE-2023-6153). Successful exploitation can lead to full system takeover.
CVE-2023-6173 SQL Injection in sqli (CVE-2023-6173)
SQL injection in sqli (CVE-2023-6173). Successful exploitation can lead to full system takeover.
CVE-2024-29644 Cross-Site Scripting (XSS) in dcatadmin (CVE-2024-29644)
cross-site scripting in dcatadmin (CVE-2024-29644). Risk of unauthorized operations or information disclosure.
CVE-2024-2865 SQL Injection in sqli (CVE-2024-2865)
SQL injection in sqli (CVE-2024-2865). Successful exploitation can lead to full system takeover.
CVE-2024-1202 Vulnerability in CVE-2024-1202 (CVE-2024-1202)
vulnerability in CVE-2024-1202 (CVE-2024-1202). Successful exploitation can lead to full system takeover.
CVE-2024-25294 SSRF (Server-Side Request Forgery) in ssrf (CVE-2024-25294)
SSRF in ssrf (CVE-2024-25294). Confidential information can be exposed externally.
CVE-2024-27289 pgx is a PostgreSQL driver and toolkit for Go. Prior to version 4.18.2, SQL injection can occur when all of the following conditions are met: the non-default simple protocol is used; a placeholder for...
pgx is a PostgreSQL driver and toolkit for Go. Prior to version 4.18.2, SQL injection can occur when all of the following conditions are met: the non-default simple protocol is used; a placeholder for a numeric value must be immediately preceded by a minus; there must be a second placeholder for a s...
CVE-2024-27304 SQL Injection in sqli (CVE-2024-27304)
SQL injection in sqli (CVE-2024-27304). Successful exploitation can lead to full system takeover.
CVE-2023-33677 SQL Injection in sqli (CVE-2023-33677)
SQL injection in sqli (CVE-2023-33677). Confidential information can be exposed externally.
CVE-2023-7103 Vulnerability in zksoftware (CVE-2023-7103)
vulnerability in zksoftware (CVE-2023-7103). Successful exploitation can lead to full system takeover.
CVE-2024-22983 SQL Injection in sqli (CVE-2024-22983)
SQL injection in sqli (CVE-2024-22983). Confidential information can be exposed externally.
CVE-2024-22873 SSRF (Server-Side Request Forgery) in ssrf (CVE-2024-22873)
SSRF in ssrf (CVE-2024-22873). Confidential information can be exposed externally.
CVE-2023-7081 SQL Injection in sqli (CVE-2023-7081)
SQL injection in sqli (CVE-2023-7081). Successful exploitation can lead to full system takeover.
CVE-2023-5155 SQL Injection in sqli (CVE-2023-5155)
SQL injection in sqli (CVE-2023-5155). Successful exploitation can lead to full system takeover.
CVE-2024-20673 Microsoft Office Remote Code Execution Vulnerability
Microsoft Office Remote Code Execution Vulnerability
CVE-2024-21490 Vulnerability in angular (CVE-2024-21490)
vulnerability in angular (CVE-2024-21490). Risk of unauthorized operations or information disclosure.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →