Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2017-15243 |
|
Buffer Overflow in dos (CVE-2017-15243)
vulnerability in dos (CVE-2017-15243). Successful exploitation can lead to full system takeover.
|
| CVE-2017-15244 |
|
Buffer Overflow in dos (CVE-2017-15244)
vulnerability in dos (CVE-2017-15244). Successful exploitation can lead to full system takeover.
|
| CVE-2017-15245 |
|
Buffer Overflow in dos (CVE-2017-15245)
vulnerability in dos (CVE-2017-15245). Successful exploitation can lead to full system takeover.
|
| CVE-2017-15246 |
|
Buffer Overflow in dos (CVE-2017-15246)
vulnerability in dos (CVE-2017-15246). Successful exploitation can lead to full system takeover.
|
| CVE-2017-15247 |
|
Buffer Overflow in dos (CVE-2017-15247)
vulnerability in dos (CVE-2017-15247). Successful exploitation can lead to full system takeover.
|
| CVE-2017-15239 |
|
Buffer Overflow in dos (CVE-2017-15239)
vulnerability in dos (CVE-2017-15239). Successful exploitation can lead to full system takeover.
|
| CVE-2017-15240 |
|
Buffer Overflow in dos (CVE-2017-15240)
vulnerability in dos (CVE-2017-15240). Successful exploitation can lead to full system takeover.
|
| CVE-2017-15241 |
|
Buffer Overflow in dos (CVE-2017-15241)
vulnerability in dos (CVE-2017-15241). Successful exploitation can lead to full system takeover.
|
| CVE-2017-0903 |
|
Unsafe Deserialization in deserialization (CVE-2017-0903)
vulnerability in deserialization (CVE-2017-0903). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14587 |
|
Cross-Site Scripting (XSS) in atlassian (CVE-2017-14587)
cross-site scripting in atlassian (CVE-2017-14587). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-14588 |
|
Cross-Site Scripting (XSS) in atlassian (CVE-2017-14588)
cross-site scripting in atlassian (CVE-2017-14588). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-13720 |
|
Out-of-Bounds Read in c (CVE-2017-13720)
vulnerability in c (CVE-2017-13720). Confidential information can be exposed externally.
|
| CVE-2017-12188 |
|
Vulnerability in c (CVE-2017-12188)
vulnerability in c (CVE-2017-12188). Successful exploitation can lead to full system takeover.
|
| CVE-2017-7352 |
|
Cross-Site Scripting (XSS) in purestorage (CVE-2017-7352)
cross-site scripting in purestorage (CVE-2017-7352). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-15213 |
|
Cross-Site Scripting (XSS) in flyspray (CVE-2017-15213)
cross-site scripting in flyspray (CVE-2017-15213). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-15214 |
|
Cross-Site Scripting (XSS) in flyspray (CVE-2017-15214)
cross-site scripting in flyspray (CVE-2017-15214). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-15215 |
|
Cross-Site Scripting (XSS) in shaarli-project (CVE-2017-15215)
cross-site scripting in shaarli-project (CVE-2017-15215). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-15188 |
|
Cross-Site Scripting (XSS) in eyesofnetwork (CVE-2017-15188)
cross-site scripting in eyesofnetwork (CVE-2017-15188). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-15194 |
|
include/global_session.php in Cacti 1.1.25 has XSS related to (1) the URI or (2) the refresh page.
include/global_session.php in Cacti 1.1.25 has XSS related to (1) the URI or (2) the refresh page.
|
| CVE-2017-15225 |
|
Vulnerability in c (CVE-2017-15225)
vulnerability in c (CVE-2017-15225). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-1503 |
|
Cross-Site Scripting (XSS) in ibm (CVE-2017-1503)
cross-site scripting in ibm (CVE-2017-1503). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-15219 |
|
Cross-Site Scripting (XSS) in dotcms (CVE-2017-15219)
cross-site scripting in dotcms (CVE-2017-15219). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-10513 |
|
Cross-Site Scripting (XSS) in piwigo (CVE-2016-10513)
cross-site scripting in piwigo (CVE-2016-10513). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-13675 |
|
Vulnerability in dos (CVE-2017-13675)
vulnerability in dos (CVE-2017-13675). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-13679 |
|
Vulnerability in dos (CVE-2017-13679)
vulnerability in dos (CVE-2017-13679). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-15216 |
|
Cross-Site Scripting (XSS) in misp-project (CVE-2017-15216)
cross-site scripting in misp-project (CVE-2017-15216). Risk of unauthorized operations or information disclosure.
|
| CVE-2015-6521 |
|
Multiple cross-site scripting (XSS) vulnerabilities in ATutor LMS version 2.2.
Multiple cross-site scripting (XSS) vulnerabilities in ATutor LMS version 2.2.
|
| CVE-2015-5675 |
|
Vulnerability in dos (CVE-2015-5675)
vulnerability in dos (CVE-2015-5675). Successful exploitation can lead to full system takeover.
|
| CVE-2015-7384 |
|
Node.js 4.0.0, 4.1.0, and 4.1.1 allows remote attackers to cause a denial of service.
Node.js 4.0.0, 4.1.0, and 4.1.1 allows remote attackers to cause a denial of service.
|
| CVE-2017-13706 |
|
XXE (XML External Entity) in ssrf (CVE-2017-13706)
vulnerability in ssrf (CVE-2017-13706). Successful exploitation can lead to full system takeover.
|
| CVE-2015-2856 |
|
Path Traversal in path-traversal (CVE-2015-2856)
path traversal in path-traversal (CVE-2015-2856). Confidential information can be exposed externally.
|
| CVE-2014-9092 |
|
Buffer Overflow in dos (CVE-2014-9092)
vulnerability in dos (CVE-2014-9092). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-14614 |
|
Path Traversal in path-traversal (CVE-2017-14614)
path traversal in path-traversal (CVE-2017-14614). Confidential information can be exposed externally.
|
| CVE-2017-14973 |
|
Cross-Site Scripting (XSS) in identicard (CVE-2017-14973)
cross-site scripting in identicard (CVE-2017-14973). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-14972 |
|
Authentication Bypass in infocus (CVE-2017-14972)
authentication bypass in infocus (CVE-2017-14972). Confidential information can be exposed externally.
|
| CVE-2017-15185 |
|
Vulnerability in c (CVE-2017-15185)
vulnerability in c (CVE-2017-15185). Risk of unauthorized operations or information disclosure.
|
| CVE-2015-2146 |
|
SQL Injection in sqli (CVE-2015-2146)
SQL injection in sqli (CVE-2015-2146). Successful exploitation can lead to full system takeover.
|
| CVE-2015-2147 |
|
SQL Injection in sqli (CVE-2015-2147)
SQL injection in sqli (CVE-2015-2147). Successful exploitation can lead to full system takeover.
|
| CVE-2014-8957 |
|
Cross-Site Scripting (XSS) in openkm (CVE-2014-8957)
cross-site scripting in openkm (CVE-2014-8957). Risk of unauthorized operations or information disclosure.
|
| CVE-2015-2144 |
|
Cross-Site Scripting (XSS) in phpbugtracker-project (CVE-2015-2144)
cross-site scripting in phpbugtracker-project (CVE-2015-2144). Risk of unauthorized operations or information disclosure.
|
| CVE-2015-2145 |
|
Cross-Site Scripting (XSS) in phpbugtracker-project (CVE-2015-2145)
cross-site scripting in phpbugtracker-project (CVE-2015-2145). Risk of unauthorized operations or information disclosure.
|
| CVE-2015-2148 |
|
Cross-Site Scripting (XSS) in phpbugtracker-project (CVE-2015-2148)
cross-site scripting in phpbugtracker-project (CVE-2015-2148). Risk of unauthorized operations or information disclosure.
|
| CVE-2015-2142 |
|
Cross-Site Request Forgery (CSRF) in csrf (CVE-2015-2142)
vulnerability in csrf (CVE-2015-2142). Successful exploitation can lead to full system takeover.
|
| CVE-2015-2143 |
|
Cross-Site Request Forgery (CSRF) in csrf (CVE-2015-2143)
vulnerability in csrf (CVE-2015-2143). Successful exploitation can lead to full system takeover.
|
| CVE-2015-1429 |
|
Path Traversal in path-traversal (CVE-2015-1429)
path traversal in path-traversal (CVE-2015-1429). Confidential information can be exposed externally.
|
| CVE-2017-15084 |
|
The web UI in Rapid7 Metasploit before 4.14.1-20170828 allows logout CSRF, aka R7-2017-22.
The web UI in Rapid7 Metasploit before 4.14.1-20170828 allows logout CSRF, aka R7-2017-22.
|
| CVE-2017-15079 |
|
Path Traversal in wordpress (CVE-2017-15079)
path traversal in wordpress (CVE-2017-15079). Confidential information can be exposed externally.
|
| CVE-2017-9272 |
|
Vulnerability in dos (CVE-2017-9272)
vulnerability in dos (CVE-2017-9272). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-13068 |
|
SQL Injection in sqli (CVE-2017-13068)
SQL injection in sqli (CVE-2017-13068). Confidential information can be exposed externally.
|
| CVE-2015-1206 |
|
Buffer Overflow in dos (CVE-2015-1206)
vulnerability in dos (CVE-2015-1206). Risk of unauthorized operations or information disclosure.
|