Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: attack-types Clear
ID Title
CVE-2014-9677 Cross-Site Scripting (XSS) in flowpaper (CVE-2014-9677)
cross-site scripting in flowpaper (CVE-2014-9677). Risk of unauthorized operations or information disclosure.
CVE-2014-8323 Vulnerability in c (CVE-2014-8323)
vulnerability in c (CVE-2014-8323). Risk of unauthorized operations or information disclosure.
CVE-2014-8324 Vulnerability in c (CVE-2014-8324)
vulnerability in c (CVE-2014-8324). Risk of unauthorized operations or information disclosure.
CVE-2014-9487 XXE (XML External Entity) in dos (CVE-2014-9487)
vulnerability in dos (CVE-2014-9487). Successful exploitation can lead to full system takeover.
CVE-2014-9697 Vulnerability in dos (CVE-2014-9697)
vulnerability in dos (CVE-2014-9697). Risk of unauthorized operations or information disclosure.
CVE-2017-15385 Buffer Overflow in c (CVE-2017-15385)
vulnerability in c (CVE-2017-15385). Successful exploitation can lead to full system takeover.
CVE-2017-9367 Path Traversal in path-traversal (CVE-2017-9367)
path traversal in path-traversal (CVE-2017-9367). Successful exploitation can lead to full system takeover.
CVE-2017-0316 Vulnerability in dos (CVE-2017-0316)
vulnerability in dos (CVE-2017-0316). Successful exploitation can lead to full system takeover.
CVE-2015-7504 Out-of-Bounds Write in c (CVE-2015-7504)
out-of-bounds write in c (CVE-2015-7504). Successful exploitation can lead to full system takeover.
CVE-2014-0208 Cross-Site Scripting (XSS) in theforeman (CVE-2014-0208)
cross-site scripting in theforeman (CVE-2014-0208). Risk of unauthorized operations or information disclosure.
CVE-2015-7687 Use-After-Free in dos (CVE-2015-7687)
vulnerability in dos (CVE-2015-7687). Successful exploitation can lead to full system takeover.
CVE-2017-15265 Vulnerability in c (CVE-2017-15265)
vulnerability in c (CVE-2017-15265). Successful exploitation can lead to full system takeover.
CVE-2017-15289 Out-of-Bounds Write in c (CVE-2017-15289)
out-of-bounds write in c (CVE-2017-15289). Risk of unauthorized operations or information disclosure.
CVE-2017-15384 rate-me.php in Rate Me 1.0 has XSS via the id field in a rate action.
rate-me.php in Rate Me 1.0 has XSS via the id field in a rate action.
CVE-2017-15296 The Java component in SAP CRM has CSRF. This is SAP Security Note 2478964.
The Java component in SAP CRM has CSRF. This is SAP Security Note 2478964.
CVE-2017-15294 The Java administration console in SAP CRM has XSS. This is SAP Security Note 2478964.
The Java administration console in SAP CRM has XSS. This is SAP Security Note 2478964.
CVE-2014-8621 SQL Injection in wordpress (CVE-2014-8621)
SQL injection in wordpress (CVE-2014-8621). Successful exploitation can lead to full system takeover.
CVE-2014-8087 Cross-Site Scripting (XSS) in wordpress (CVE-2014-8087)
cross-site scripting in wordpress (CVE-2014-8087). Risk of unauthorized operations or information disclosure.
CVE-2014-3702 Path Traversal in path-traversal (CVE-2014-3702)
path traversal in path-traversal (CVE-2014-3702). Data can be tampered with by attackers.
CVE-2014-0029 Cross-Site Scripting (XSS) in redhat (CVE-2014-0029)
cross-site scripting in redhat (CVE-2014-0029). Risk of unauthorized operations or information disclosure.
CVE-2017-15373 SQL Injection in sqli (CVE-2017-15373)
SQL injection in sqli (CVE-2017-15373). Successful exploitation can lead to full system takeover.
CVE-2017-15374 Cross-Site Scripting (XSS) in shopware (CVE-2017-15374)
cross-site scripting in shopware (CVE-2017-15374). Risk of unauthorized operations or information disclosure.
CVE-2017-15375 Cross-Site Scripting (XSS) in wordpress (CVE-2017-15375)
cross-site scripting in wordpress (CVE-2017-15375). Risk of unauthorized operations or information disclosure. Exploitable via ``query``.
CVE-2017-15370 Buffer Overflow in c (CVE-2017-15370)
vulnerability in c (CVE-2017-15370). Risk of unauthorized operations or information disclosure.
CVE-2017-15371 Vulnerability in c (CVE-2017-15371)
vulnerability in c (CVE-2017-15371). Risk of unauthorized operations or information disclosure.
CVE-2017-15372 Buffer Overflow in c (CVE-2017-15372)
vulnerability in c (CVE-2017-15372). Risk of unauthorized operations or information disclosure.
CVE-2017-15368 Out-of-Bounds Read in c (CVE-2017-15368)
vulnerability in c (CVE-2017-15368). Successful exploitation can lead to full system takeover.
CVE-2017-15369 Use-After-Free in c (CVE-2017-15369)
vulnerability in c (CVE-2017-15369). Successful exploitation can lead to full system takeover.
CVE-2017-15362 Cross-Site Scripting (XSS) in csrf (CVE-2017-15362)
cross-site scripting in csrf (CVE-2017-15362). Risk of unauthorized operations or information disclosure.
CVE-2017-15363 Path Traversal in path-traversal (CVE-2017-15363)
path traversal in path-traversal (CVE-2017-15363). Confidential information can be exposed externally.
CVE-2017-15364 Vulnerability in c (CVE-2017-15364)
vulnerability in c (CVE-2017-15364). Risk of unauthorized operations or information disclosure.
CVE-2017-15360 Cross-Site Scripting (XSS) in paessler (CVE-2017-15360)
cross-site scripting in paessler (CVE-2017-15360). Risk of unauthorized operations or information disclosure.
CVE-2017-15300 Vulnerability in dos (CVE-2017-15300)
vulnerability in dos (CVE-2017-15300). Risk of unauthorized operations or information disclosure.
CVE-2017-15305 XSS exists in NexusPHP 1.5 via the keyword parameter to messages.php.
XSS exists in NexusPHP 1.5 via the keyword parameter to messages.php.
CVE-2017-12629 XXE (XML External Entity) in c (CVE-2017-12629)
vulnerability in c (CVE-2017-12629). Successful exploitation can lead to full system takeover.
CVE-2017-15299 Vulnerability in dos (CVE-2017-15299)
vulnerability in dos (CVE-2017-15299). Risk of unauthorized operations or information disclosure.
CVE-2017-15298 Vulnerability in dos (CVE-2017-15298)
vulnerability in dos (CVE-2017-15298). Risk of unauthorized operations or information disclosure.
CVE-2017-10622 Authentication Bypass in juniper (CVE-2017-10622)
authentication bypass in juniper (CVE-2017-10622). Successful exploitation can lead to full system takeover.
CVE-2016-4923 Cross-Site Scripting (XSS) in juniper (CVE-2016-4923)
cross-site scripting in juniper (CVE-2016-4923). Successful exploitation can lead to full system takeover.
CVE-2016-1261 Cross-Site Request Forgery (CSRF) in csrf (CVE-2016-1261)
vulnerability in csrf (CVE-2016-1261). Successful exploitation can lead to full system takeover.
CVE-2016-1265 Information Disclosure in csrf (CVE-2016-1265)
vulnerability in csrf (CVE-2016-1265). Successful exploitation can lead to full system takeover.
CVE-2017-10607 Vulnerability in dos (CVE-2017-10607)
vulnerability in dos (CVE-2017-10607). Risk of unauthorized operations or information disclosure.
CVE-2017-10608 Vulnerability in dos (CVE-2017-10608)
vulnerability in dos (CVE-2017-10608). Risk of unauthorized operations or information disclosure.
CVE-2017-10610 Vulnerability in dos (CVE-2017-10610)
vulnerability in dos (CVE-2017-10610). Risk of unauthorized operations or information disclosure.
CVE-2017-10611 Vulnerability in dos (CVE-2017-10611)
vulnerability in dos (CVE-2017-10611). Risk of unauthorized operations or information disclosure.
CVE-2017-10614 Vulnerability in dos (CVE-2017-10614)
vulnerability in dos (CVE-2017-10614). Risk of unauthorized operations or information disclosure.
CVE-2017-10619 Vulnerability in express (CVE-2017-10619)
vulnerability in express (CVE-2017-10619). Risk of unauthorized operations or information disclosure.
CVE-2017-10621 Vulnerability in dos (CVE-2017-10621)
vulnerability in dos (CVE-2017-10621). Risk of unauthorized operations or information disclosure.
CVE-2017-15276 Path Traversal in path-traversal (CVE-2017-15276)
path traversal in path-traversal (CVE-2017-15276). Successful exploitation can lead to full system takeover.
CVE-2017-15012 Vulnerability in privilege-escalation (CVE-2017-15012)
vulnerability in privilege-escalation (CVE-2017-15012). Successful exploitation can lead to full system takeover.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →