Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2014-9677 |
|
Cross-Site Scripting (XSS) in flowpaper (CVE-2014-9677)
cross-site scripting in flowpaper (CVE-2014-9677). Risk of unauthorized operations or information disclosure.
|
| CVE-2014-8323 |
|
Vulnerability in c (CVE-2014-8323)
vulnerability in c (CVE-2014-8323). Risk of unauthorized operations or information disclosure.
|
| CVE-2014-8324 |
|
Vulnerability in c (CVE-2014-8324)
vulnerability in c (CVE-2014-8324). Risk of unauthorized operations or information disclosure.
|
| CVE-2014-9487 |
|
XXE (XML External Entity) in dos (CVE-2014-9487)
vulnerability in dos (CVE-2014-9487). Successful exploitation can lead to full system takeover.
|
| CVE-2014-9697 |
|
Vulnerability in dos (CVE-2014-9697)
vulnerability in dos (CVE-2014-9697). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-15385 |
|
Buffer Overflow in c (CVE-2017-15385)
vulnerability in c (CVE-2017-15385). Successful exploitation can lead to full system takeover.
|
| CVE-2017-9367 |
|
Path Traversal in path-traversal (CVE-2017-9367)
path traversal in path-traversal (CVE-2017-9367). Successful exploitation can lead to full system takeover.
|
| CVE-2017-0316 |
|
Vulnerability in dos (CVE-2017-0316)
vulnerability in dos (CVE-2017-0316). Successful exploitation can lead to full system takeover.
|
| CVE-2015-7504 |
|
Out-of-Bounds Write in c (CVE-2015-7504)
out-of-bounds write in c (CVE-2015-7504). Successful exploitation can lead to full system takeover.
|
| CVE-2014-0208 |
|
Cross-Site Scripting (XSS) in theforeman (CVE-2014-0208)
cross-site scripting in theforeman (CVE-2014-0208). Risk of unauthorized operations or information disclosure.
|
| CVE-2015-7687 |
|
Use-After-Free in dos (CVE-2015-7687)
vulnerability in dos (CVE-2015-7687). Successful exploitation can lead to full system takeover.
|
| CVE-2017-15265 |
|
Vulnerability in c (CVE-2017-15265)
vulnerability in c (CVE-2017-15265). Successful exploitation can lead to full system takeover.
|
| CVE-2017-15289 |
|
Out-of-Bounds Write in c (CVE-2017-15289)
out-of-bounds write in c (CVE-2017-15289). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-15384 |
|
rate-me.php in Rate Me 1.0 has XSS via the id field in a rate action.
rate-me.php in Rate Me 1.0 has XSS via the id field in a rate action.
|
| CVE-2017-15296 |
|
The Java component in SAP CRM has CSRF. This is SAP Security Note 2478964.
The Java component in SAP CRM has CSRF. This is SAP Security Note 2478964.
|
| CVE-2017-15294 |
|
The Java administration console in SAP CRM has XSS. This is SAP Security Note 2478964.
The Java administration console in SAP CRM has XSS. This is SAP Security Note 2478964.
|
| CVE-2014-8621 |
|
SQL Injection in wordpress (CVE-2014-8621)
SQL injection in wordpress (CVE-2014-8621). Successful exploitation can lead to full system takeover.
|
| CVE-2014-8087 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2014-8087)
cross-site scripting in wordpress (CVE-2014-8087). Risk of unauthorized operations or information disclosure.
|
| CVE-2014-3702 |
|
Path Traversal in path-traversal (CVE-2014-3702)
path traversal in path-traversal (CVE-2014-3702). Data can be tampered with by attackers.
|
| CVE-2014-0029 |
|
Cross-Site Scripting (XSS) in redhat (CVE-2014-0029)
cross-site scripting in redhat (CVE-2014-0029). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-15373 |
|
SQL Injection in sqli (CVE-2017-15373)
SQL injection in sqli (CVE-2017-15373). Successful exploitation can lead to full system takeover.
|
| CVE-2017-15374 |
|
Cross-Site Scripting (XSS) in shopware (CVE-2017-15374)
cross-site scripting in shopware (CVE-2017-15374). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-15375 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2017-15375)
cross-site scripting in wordpress (CVE-2017-15375). Risk of unauthorized operations or information disclosure. Exploitable via ``query``.
|
| CVE-2017-15370 |
|
Buffer Overflow in c (CVE-2017-15370)
vulnerability in c (CVE-2017-15370). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-15371 |
|
Vulnerability in c (CVE-2017-15371)
vulnerability in c (CVE-2017-15371). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-15372 |
|
Buffer Overflow in c (CVE-2017-15372)
vulnerability in c (CVE-2017-15372). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-15368 |
|
Out-of-Bounds Read in c (CVE-2017-15368)
vulnerability in c (CVE-2017-15368). Successful exploitation can lead to full system takeover.
|
| CVE-2017-15369 |
|
Use-After-Free in c (CVE-2017-15369)
vulnerability in c (CVE-2017-15369). Successful exploitation can lead to full system takeover.
|
| CVE-2017-15362 |
|
Cross-Site Scripting (XSS) in csrf (CVE-2017-15362)
cross-site scripting in csrf (CVE-2017-15362). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-15363 |
|
Path Traversal in path-traversal (CVE-2017-15363)
path traversal in path-traversal (CVE-2017-15363). Confidential information can be exposed externally.
|
| CVE-2017-15364 |
|
Vulnerability in c (CVE-2017-15364)
vulnerability in c (CVE-2017-15364). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-15360 |
|
Cross-Site Scripting (XSS) in paessler (CVE-2017-15360)
cross-site scripting in paessler (CVE-2017-15360). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-15300 |
|
Vulnerability in dos (CVE-2017-15300)
vulnerability in dos (CVE-2017-15300). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-15305 |
|
XSS exists in NexusPHP 1.5 via the keyword parameter to messages.php.
XSS exists in NexusPHP 1.5 via the keyword parameter to messages.php.
|
| CVE-2017-12629 |
|
XXE (XML External Entity) in c (CVE-2017-12629)
vulnerability in c (CVE-2017-12629). Successful exploitation can lead to full system takeover.
|
| CVE-2017-15299 |
|
Vulnerability in dos (CVE-2017-15299)
vulnerability in dos (CVE-2017-15299). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-15298 |
|
Vulnerability in dos (CVE-2017-15298)
vulnerability in dos (CVE-2017-15298). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-10622 |
|
Authentication Bypass in juniper (CVE-2017-10622)
authentication bypass in juniper (CVE-2017-10622). Successful exploitation can lead to full system takeover.
|
| CVE-2016-4923 |
|
Cross-Site Scripting (XSS) in juniper (CVE-2016-4923)
cross-site scripting in juniper (CVE-2016-4923). Successful exploitation can lead to full system takeover.
|
| CVE-2016-1261 |
|
Cross-Site Request Forgery (CSRF) in csrf (CVE-2016-1261)
vulnerability in csrf (CVE-2016-1261). Successful exploitation can lead to full system takeover.
|
| CVE-2016-1265 |
|
Information Disclosure in csrf (CVE-2016-1265)
vulnerability in csrf (CVE-2016-1265). Successful exploitation can lead to full system takeover.
|
| CVE-2017-10607 |
|
Vulnerability in dos (CVE-2017-10607)
vulnerability in dos (CVE-2017-10607). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-10608 |
|
Vulnerability in dos (CVE-2017-10608)
vulnerability in dos (CVE-2017-10608). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-10610 |
|
Vulnerability in dos (CVE-2017-10610)
vulnerability in dos (CVE-2017-10610). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-10611 |
|
Vulnerability in dos (CVE-2017-10611)
vulnerability in dos (CVE-2017-10611). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-10614 |
|
Vulnerability in dos (CVE-2017-10614)
vulnerability in dos (CVE-2017-10614). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-10619 |
|
Vulnerability in express (CVE-2017-10619)
vulnerability in express (CVE-2017-10619). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-10621 |
|
Vulnerability in dos (CVE-2017-10621)
vulnerability in dos (CVE-2017-10621). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-15276 |
|
Path Traversal in path-traversal (CVE-2017-15276)
path traversal in path-traversal (CVE-2017-15276). Successful exploitation can lead to full system takeover.
|
| CVE-2017-15012 |
|
Vulnerability in privilege-escalation (CVE-2017-15012)
vulnerability in privilege-escalation (CVE-2017-15012). Successful exploitation can lead to full system takeover.
|