Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: attack-types Clear
ID Title
CVE-2017-11161 SQL Injection in sqli (CVE-2017-11161)
SQL injection in sqli (CVE-2017-11161). Successful exploitation can lead to full system takeover.
CVE-2017-12071 SSRF (Server-Side Request Forgery) in ssrf (CVE-2017-12071)
SSRF in ssrf (CVE-2017-12071). Confidential information can be exposed externally.
CVE-2017-11162 Path Traversal in path-traversal (CVE-2017-11162)
path traversal in path-traversal (CVE-2017-11162). Confidential information can be exposed externally.
CVE-2017-11611 Cross-Site Scripting (XSS) in wolfcms (CVE-2017-11611)
cross-site scripting in wolfcms (CVE-2017-11611). Risk of unauthorized operations or information disclosure.
CVE-2017-14219 Cross-Site Scripting (XSS) in intelbras (CVE-2017-14219)
cross-site scripting in intelbras (CVE-2017-14219). Risk of unauthorized operations or information disclosure.
CVE-2017-12227 SQL Injection in sqli (CVE-2017-12227)
SQL injection in sqli (CVE-2017-12227). Risk of unauthorized operations or information disclosure.
CVE-2017-12212 Cross-Site Scripting (XSS) in cisco (CVE-2017-12212)
cross-site scripting in cisco (CVE-2017-12212). Risk of unauthorized operations or information disclosure.
CVE-2017-12220 Cross-Site Scripting (XSS) in cisco (CVE-2017-12220)
cross-site scripting in cisco (CVE-2017-12220). Risk of unauthorized operations or information disclosure.
CVE-2017-12221 Cross-Site Scripting (XSS) in cisco (CVE-2017-12221)
cross-site scripting in cisco (CVE-2017-12221). Risk of unauthorized operations or information disclosure.
CVE-2017-6789 Cross-Site Scripting (XSS) in cisco (CVE-2017-6789)
cross-site scripting in cisco (CVE-2017-6789). Risk of unauthorized operations or information disclosure.
CVE-2017-12217 Vulnerability in dos (CVE-2017-12217)
vulnerability in dos (CVE-2017-12217). Risk of unauthorized operations or information disclosure.
CVE-2017-6631 Vulnerability in dos (CVE-2017-6631)
vulnerability in dos (CVE-2017-6631). Risk of unauthorized operations or information disclosure.
CVE-2017-6780 Vulnerability in dos (CVE-2017-6780)
vulnerability in dos (CVE-2017-6780). Risk of unauthorized operations or information disclosure.
CVE-2017-6791 Buffer Overflow in dos (CVE-2017-6791)
vulnerability in dos (CVE-2017-6791). Risk of unauthorized operations or information disclosure.
CVE-2015-3313 SQL injection vulnerability in WordPress Community Events plugin before 1.4.
SQL injection vulnerability in WordPress Community Events plugin before 1.4.
CVE-2015-3314 SQL injection vulnerability in WordPress Tune Library plugin before 1.5.5.
SQL injection vulnerability in WordPress Tune Library plugin before 1.5.5.
CVE-2015-4627 SQL injection vulnerability in Pragyan CMS 3.0.
SQL injection vulnerability in Pragyan CMS 3.0.
CVE-2015-4724 SQL injection vulnerability in Concrete5 5.7.3.1.
SQL injection vulnerability in Concrete5 5.7.3.1.
CVE-2015-5052 SQL injection vulnerability in Sefrengo before 1.6.5 beta2.
SQL injection vulnerability in Sefrengo before 1.6.5 beta2.
CVE-2015-3169 Cross-site scripting (XSS) vulnerability in askbot 0.7.51-4.el6.noarch.
Cross-site scripting (XSS) vulnerability in askbot 0.7.51-4.el6.noarch.
CVE-2015-4721 Multiple cross-site scripting (XSS) vulnerabilities in Concrete5 5.7.3.1.
Multiple cross-site scripting (XSS) vulnerabilities in Concrete5 5.7.3.1.
CVE-2015-5060 Cross-site scripting (XSS) vulnerability in anchor-cms before 0.9-dev.
Cross-site scripting (XSS) vulnerability in anchor-cms before 0.9-dev.
CVE-2015-7672 Cross-Site Scripting (XSS) in centreon (CVE-2015-7672)
cross-site scripting in centreon (CVE-2015-7672). Risk of unauthorized operations or information disclosure.
CVE-2014-9565 Cross-Site Request Forgery (CSRF) in csrf (CVE-2014-9565)
vulnerability in csrf (CVE-2014-9565). Successful exploitation can lead to full system takeover.
CVE-2015-4619 Cross-Site Request Forgery (CSRF) in csrf (CVE-2015-4619)
vulnerability in csrf (CVE-2015-4619). Successful exploitation can lead to full system takeover.
CVE-2015-4697 Cross-Site Request Forgery (CSRF) in wordpress (CVE-2015-4697)
vulnerability in wordpress (CVE-2015-4697). Successful exploitation can lead to full system takeover.
CVE-2015-4085 Path Traversal in express (CVE-2015-4085)
path traversal in express (CVE-2015-4085). Confidential information can be exposed externally.
CVE-2015-3991 Vulnerability in dos (CVE-2015-3991)
vulnerability in dos (CVE-2015-3991). Successful exploitation can lead to full system takeover.
CVE-2017-14192 Cross-Site Scripting (XSS) in finecms-project (CVE-2017-14192)
cross-site scripting in finecms-project (CVE-2017-14192). Risk of unauthorized operations or information disclosure.
CVE-2017-14193 Cross-Site Scripting (XSS) in finecms-project (CVE-2017-14193)
cross-site scripting in finecms-project (CVE-2017-14193). Risk of unauthorized operations or information disclosure. Exploitable via `Referer header`.
CVE-2017-14194 Cross-Site Scripting (XSS) in finecms-project (CVE-2017-14194)
cross-site scripting in finecms-project (CVE-2017-14194). Risk of unauthorized operations or information disclosure. Exploitable via `Referer header`.
CVE-2017-14195 Cross-Site Scripting (XSS) in finecms-project (CVE-2017-14195)
cross-site scripting in finecms-project (CVE-2017-14195). Risk of unauthorized operations or information disclosure. Exploitable via `Referer header`.
CVE-2017-1098 Cross-Site Scripting (XSS) in ibm (CVE-2017-1098)
cross-site scripting in ibm (CVE-2017-1098). Risk of unauthorized operations or information disclosure.
CVE-2017-1189 Cross-Site Scripting (XSS) in ibm (CVE-2017-1189)
cross-site scripting in ibm (CVE-2017-1189). Risk of unauthorized operations or information disclosure.
CVE-2017-1502 Cross-Site Scripting (XSS) in ibm (CVE-2017-1502)
cross-site scripting in ibm (CVE-2017-1502). Risk of unauthorized operations or information disclosure.
CVE-2013-7428 Vulnerability in dos (CVE-2013-7428)
vulnerability in dos (CVE-2013-7428). Risk of unauthorized operations or information disclosure.
CVE-2017-14181 Vulnerability in c (CVE-2017-14181)
vulnerability in c (CVE-2017-14181). Successful exploitation can lead to full system takeover.
CVE-2017-9834 SQL Injection in wordpress (CVE-2017-9834)
SQL injection in wordpress (CVE-2017-9834). Successful exploitation can lead to full system takeover.
CVE-2017-12416 Cross-Site Scripting (XSS) in paloaltonetworks (CVE-2017-12416)
cross-site scripting in paloaltonetworks (CVE-2017-12416). Risk of unauthorized operations or information disclosure.
CVE-2017-12794 Cross-Site Scripting (XSS) in django (CVE-2017-12794)
cross-site scripting in django (CVE-2017-12794). Risk of unauthorized operations or information disclosure.
CVE-2017-12906 Cross-Site Scripting (XSS) in nexusphp-project (CVE-2017-12906)
cross-site scripting in nexusphp-project (CVE-2017-12906). Risk of unauthorized operations or information disclosure.
CVE-2017-13754 Cross-Site Scripting (XSS) in wibu (CVE-2017-13754)
cross-site scripting in wibu (CVE-2017-13754). Risk of unauthorized operations or information disclosure.
CVE-2017-9458 XXE (XML External Entity) in ssrf (CVE-2017-9458)
vulnerability in ssrf (CVE-2017-9458). Successful exploitation can lead to full system takeover.
CVE-2017-11567 Cross-Site Request Forgery (CSRF) in csrf (CVE-2017-11567)
vulnerability in csrf (CVE-2017-11567). Successful exploitation can lead to full system takeover.
CVE-2017-12838 Cross-Site Request Forgery (CSRF) in csrf (CVE-2017-12838)
vulnerability in csrf (CVE-2017-12838). Successful exploitation can lead to full system takeover.
CVE-2017-6362 Vulnerability in dos (CVE-2017-6362)
vulnerability in dos (CVE-2017-6362). Risk of unauthorized operations or information disclosure.
CVE-2017-14170 Vulnerability in c (CVE-2017-14170)
vulnerability in c (CVE-2017-14170). Risk of unauthorized operations or information disclosure.
CVE-2017-14171 Vulnerability in c (CVE-2017-14171)
vulnerability in c (CVE-2017-14171). Risk of unauthorized operations or information disclosure.
CVE-2017-14172 Vulnerability in c (CVE-2017-14172)
vulnerability in c (CVE-2017-14172). Risk of unauthorized operations or information disclosure.
CVE-2017-14174 Vulnerability in c (CVE-2017-14174)
vulnerability in c (CVE-2017-14174). Risk of unauthorized operations or information disclosure.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →