Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: attack-types Clear
ID Title
CVE-2017-15243 Buffer Overflow in dos (CVE-2017-15243)
vulnerability in dos (CVE-2017-15243). Successful exploitation can lead to full system takeover.
CVE-2017-15244 Buffer Overflow in dos (CVE-2017-15244)
vulnerability in dos (CVE-2017-15244). Successful exploitation can lead to full system takeover.
CVE-2017-15245 Buffer Overflow in dos (CVE-2017-15245)
vulnerability in dos (CVE-2017-15245). Successful exploitation can lead to full system takeover.
CVE-2017-15246 Buffer Overflow in dos (CVE-2017-15246)
vulnerability in dos (CVE-2017-15246). Successful exploitation can lead to full system takeover.
CVE-2017-15247 Buffer Overflow in dos (CVE-2017-15247)
vulnerability in dos (CVE-2017-15247). Successful exploitation can lead to full system takeover.
CVE-2017-15239 Buffer Overflow in dos (CVE-2017-15239)
vulnerability in dos (CVE-2017-15239). Successful exploitation can lead to full system takeover.
CVE-2017-15240 Buffer Overflow in dos (CVE-2017-15240)
vulnerability in dos (CVE-2017-15240). Successful exploitation can lead to full system takeover.
CVE-2017-15241 Buffer Overflow in dos (CVE-2017-15241)
vulnerability in dos (CVE-2017-15241). Successful exploitation can lead to full system takeover.
CVE-2017-0903 Unsafe Deserialization in deserialization (CVE-2017-0903)
vulnerability in deserialization (CVE-2017-0903). Successful exploitation can lead to full system takeover.
CVE-2017-14587 Cross-Site Scripting (XSS) in atlassian (CVE-2017-14587)
cross-site scripting in atlassian (CVE-2017-14587). Risk of unauthorized operations or information disclosure.
CVE-2017-14588 Cross-Site Scripting (XSS) in atlassian (CVE-2017-14588)
cross-site scripting in atlassian (CVE-2017-14588). Risk of unauthorized operations or information disclosure.
CVE-2017-13720 Out-of-Bounds Read in c (CVE-2017-13720)
vulnerability in c (CVE-2017-13720). Confidential information can be exposed externally.
CVE-2017-12188 Vulnerability in c (CVE-2017-12188)
vulnerability in c (CVE-2017-12188). Successful exploitation can lead to full system takeover.
CVE-2017-7352 Cross-Site Scripting (XSS) in purestorage (CVE-2017-7352)
cross-site scripting in purestorage (CVE-2017-7352). Risk of unauthorized operations or information disclosure.
CVE-2017-15213 Cross-Site Scripting (XSS) in flyspray (CVE-2017-15213)
cross-site scripting in flyspray (CVE-2017-15213). Risk of unauthorized operations or information disclosure.
CVE-2017-15214 Cross-Site Scripting (XSS) in flyspray (CVE-2017-15214)
cross-site scripting in flyspray (CVE-2017-15214). Risk of unauthorized operations or information disclosure.
CVE-2017-15215 Cross-Site Scripting (XSS) in shaarli-project (CVE-2017-15215)
cross-site scripting in shaarli-project (CVE-2017-15215). Risk of unauthorized operations or information disclosure.
CVE-2017-15188 Cross-Site Scripting (XSS) in eyesofnetwork (CVE-2017-15188)
cross-site scripting in eyesofnetwork (CVE-2017-15188). Risk of unauthorized operations or information disclosure.
CVE-2017-15194 include/global_session.php in Cacti 1.1.25 has XSS related to (1) the URI or (2) the refresh page.
include/global_session.php in Cacti 1.1.25 has XSS related to (1) the URI or (2) the refresh page.
CVE-2017-15225 Vulnerability in c (CVE-2017-15225)
vulnerability in c (CVE-2017-15225). Risk of unauthorized operations or information disclosure.
CVE-2017-1503 Cross-Site Scripting (XSS) in ibm (CVE-2017-1503)
cross-site scripting in ibm (CVE-2017-1503). Risk of unauthorized operations or information disclosure.
CVE-2017-15219 Cross-Site Scripting (XSS) in dotcms (CVE-2017-15219)
cross-site scripting in dotcms (CVE-2017-15219). Risk of unauthorized operations or information disclosure.
CVE-2016-10513 Cross-Site Scripting (XSS) in piwigo (CVE-2016-10513)
cross-site scripting in piwigo (CVE-2016-10513). Risk of unauthorized operations or information disclosure.
CVE-2017-13675 Vulnerability in dos (CVE-2017-13675)
vulnerability in dos (CVE-2017-13675). Risk of unauthorized operations or information disclosure.
CVE-2017-13679 Vulnerability in dos (CVE-2017-13679)
vulnerability in dos (CVE-2017-13679). Risk of unauthorized operations or information disclosure.
CVE-2017-15216 Cross-Site Scripting (XSS) in misp-project (CVE-2017-15216)
cross-site scripting in misp-project (CVE-2017-15216). Risk of unauthorized operations or information disclosure.
CVE-2015-6521 Multiple cross-site scripting (XSS) vulnerabilities in ATutor LMS version 2.2.
Multiple cross-site scripting (XSS) vulnerabilities in ATutor LMS version 2.2.
CVE-2015-5675 Vulnerability in dos (CVE-2015-5675)
vulnerability in dos (CVE-2015-5675). Successful exploitation can lead to full system takeover.
CVE-2015-7384 Node.js 4.0.0, 4.1.0, and 4.1.1 allows remote attackers to cause a denial of service.
Node.js 4.0.0, 4.1.0, and 4.1.1 allows remote attackers to cause a denial of service.
CVE-2017-13706 XXE (XML External Entity) in ssrf (CVE-2017-13706)
vulnerability in ssrf (CVE-2017-13706). Successful exploitation can lead to full system takeover.
CVE-2015-2856 Path Traversal in path-traversal (CVE-2015-2856)
path traversal in path-traversal (CVE-2015-2856). Confidential information can be exposed externally.
CVE-2014-9092 Buffer Overflow in dos (CVE-2014-9092)
vulnerability in dos (CVE-2014-9092). Risk of unauthorized operations or information disclosure.
CVE-2017-14614 Path Traversal in path-traversal (CVE-2017-14614)
path traversal in path-traversal (CVE-2017-14614). Confidential information can be exposed externally.
CVE-2017-14973 Cross-Site Scripting (XSS) in identicard (CVE-2017-14973)
cross-site scripting in identicard (CVE-2017-14973). Risk of unauthorized operations or information disclosure.
CVE-2017-14972 Authentication Bypass in infocus (CVE-2017-14972)
authentication bypass in infocus (CVE-2017-14972). Confidential information can be exposed externally.
CVE-2017-15185 Vulnerability in c (CVE-2017-15185)
vulnerability in c (CVE-2017-15185). Risk of unauthorized operations or information disclosure.
CVE-2015-2146 SQL Injection in sqli (CVE-2015-2146)
SQL injection in sqli (CVE-2015-2146). Successful exploitation can lead to full system takeover.
CVE-2015-2147 SQL Injection in sqli (CVE-2015-2147)
SQL injection in sqli (CVE-2015-2147). Successful exploitation can lead to full system takeover.
CVE-2014-8957 Cross-Site Scripting (XSS) in openkm (CVE-2014-8957)
cross-site scripting in openkm (CVE-2014-8957). Risk of unauthorized operations or information disclosure.
CVE-2015-2144 Cross-Site Scripting (XSS) in phpbugtracker-project (CVE-2015-2144)
cross-site scripting in phpbugtracker-project (CVE-2015-2144). Risk of unauthorized operations or information disclosure.
CVE-2015-2145 Cross-Site Scripting (XSS) in phpbugtracker-project (CVE-2015-2145)
cross-site scripting in phpbugtracker-project (CVE-2015-2145). Risk of unauthorized operations or information disclosure.
CVE-2015-2148 Cross-Site Scripting (XSS) in phpbugtracker-project (CVE-2015-2148)
cross-site scripting in phpbugtracker-project (CVE-2015-2148). Risk of unauthorized operations or information disclosure.
CVE-2015-2142 Cross-Site Request Forgery (CSRF) in csrf (CVE-2015-2142)
vulnerability in csrf (CVE-2015-2142). Successful exploitation can lead to full system takeover.
CVE-2015-2143 Cross-Site Request Forgery (CSRF) in csrf (CVE-2015-2143)
vulnerability in csrf (CVE-2015-2143). Successful exploitation can lead to full system takeover.
CVE-2015-1429 Path Traversal in path-traversal (CVE-2015-1429)
path traversal in path-traversal (CVE-2015-1429). Confidential information can be exposed externally.
CVE-2017-15084 The web UI in Rapid7 Metasploit before 4.14.1-20170828 allows logout CSRF, aka R7-2017-22.
The web UI in Rapid7 Metasploit before 4.14.1-20170828 allows logout CSRF, aka R7-2017-22.
CVE-2017-15079 Path Traversal in wordpress (CVE-2017-15079)
path traversal in wordpress (CVE-2017-15079). Confidential information can be exposed externally.
CVE-2017-9272 Vulnerability in dos (CVE-2017-9272)
vulnerability in dos (CVE-2017-9272). Risk of unauthorized operations or information disclosure.
CVE-2017-13068 SQL Injection in sqli (CVE-2017-13068)
SQL injection in sqli (CVE-2017-13068). Confidential information can be exposed externally.
CVE-2015-1206 Buffer Overflow in dos (CVE-2015-1206)
vulnerability in dos (CVE-2015-1206). Risk of unauthorized operations or information disclosure.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →