Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2017-12591 |
|
Cross-Site Scripting (XSS) in asus (CVE-2017-12591)
cross-site scripting in asus (CVE-2017-12591). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-12589 |
|
ToMAX R60G R60GV2-V2.0-v.2.6.3-170330 devices do not have any protection against a CSRF attack.
ToMAX R60G R60GV2-V2.0-v.2.6.3-170330 devices do not have any protection against a CSRF attack.
|
| CVE-2017-12593 |
|
ASUS DSL-N10S V2.1.16_APAC devices allow CSRF.
ASUS DSL-N10S V2.1.16_APAC devices allow CSRF.
|
| CVE-2017-12592 |
|
Vulnerability in privilege-escalation (CVE-2017-12592)
vulnerability in privilege-escalation (CVE-2017-12592). Successful exploitation can lead to full system takeover.
|
| CVE-2015-7944 |
|
Vulnerability in dos (CVE-2015-7944)
vulnerability in dos (CVE-2015-7944). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-0687 |
|
Vulnerability in dos (CVE-2017-0687)
vulnerability in dos (CVE-2017-0687). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-11185 |
|
Vulnerability in dos (CVE-2017-11185)
vulnerability in dos (CVE-2017-11185). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-12420 |
|
Buffer Overflow in dos (CVE-2017-12420)
vulnerability in dos (CVE-2017-12420). Successful exploitation can lead to full system takeover.
|
| CVE-2017-12680 |
|
Cross-Site Scripting (XSS) exists in NexusPHP 1.5 via the type parameter to shoutbox.php.
Cross-Site Scripting (XSS) exists in NexusPHP 1.5 via the type parameter to shoutbox.php.
|
| CVE-2017-9767 |
|
Cross-Site Scripting (XSS) in quali (CVE-2017-9767)
cross-site scripting in quali (CVE-2017-9767). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-9816 |
|
Cross-Site Scripting (XSS) in paessler (CVE-2017-9816)
cross-site scripting in paessler (CVE-2017-9816). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-12859 |
|
Vulnerability in dos (CVE-2017-12859)
vulnerability in dos (CVE-2017-12859). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-1338 |
|
Cross-Site Scripting (XSS) in ibm (CVE-2017-1338)
cross-site scripting in ibm (CVE-2017-1338). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-12943 |
|
Path Traversal in path-traversal (CVE-2017-12943)
path traversal in path-traversal (CVE-2017-12943). Successful exploitation can lead to full system takeover.
|
| CVE-2017-12944 |
|
Vulnerability in c (CVE-2017-12944)
vulnerability in c (CVE-2017-12944). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-10665 |
|
Path Traversal in path-traversal (CVE-2017-10665)
path traversal in path-traversal (CVE-2017-10665). Successful exploitation can lead to full system takeover.
|
| CVE-2017-9454 |
|
Out-of-Bounds Read in dos (CVE-2017-9454)
vulnerability in dos (CVE-2017-9454). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-12939 |
|
Vulnerability in unity3d (CVE-2017-12939)
vulnerability in unity3d (CVE-2017-12939). Successful exploitation can lead to full system takeover.
|
| CVE-2017-12927 |
|
Cross-Site Scripting (XSS) in cacti (CVE-2017-12927)
cross-site scripting in cacti (CVE-2017-12927). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-12908 |
|
SQL Injection in sqli (CVE-2017-12908)
SQL injection in sqli (CVE-2017-12908). Successful exploitation can lead to full system takeover.
|
| CVE-2017-12909 |
|
SQL Injection in sqli (CVE-2017-12909)
SQL injection in sqli (CVE-2017-12909). Successful exploitation can lead to full system takeover.
|
| CVE-2017-12910 |
|
SQL Injection in sqli (CVE-2017-12910)
SQL injection in sqli (CVE-2017-12910). Successful exploitation can lead to full system takeover.
|
| CVE-2017-12907 |
|
Cross-Site Scripting (XSS) exists in NexusPHP version v1.5 via the url path to usersearch.php.
Cross-Site Scripting (XSS) exists in NexusPHP version v1.5 via the url path to usersearch.php.
|
| CVE-2017-6776 |
|
Cross-Site Scripting (XSS) in cisco (CVE-2017-6776)
cross-site scripting in cisco (CVE-2017-6776). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-6788 |
|
Cross-Site Scripting (XSS) in cisco (CVE-2017-6788)
cross-site scripting in cisco (CVE-2017-6788). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-6785 |
|
Vulnerability in privilege-escalation (CVE-2017-6785)
vulnerability in privilege-escalation (CVE-2017-6785). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-6790 |
|
Vulnerability in c (CVE-2017-6790)
vulnerability in c (CVE-2017-6790). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-7556 |
|
Cross-Site Request Forgery (CSRF) in csrf (CVE-2017-7556)
vulnerability in csrf (CVE-2017-7556). Successful exploitation can lead to full system takeover.
|
| CVE-2017-11661 |
|
Out-of-Bounds Read in c (CVE-2017-11661)
vulnerability in c (CVE-2017-11661). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-11662 |
|
Out-of-Bounds Read in c (CVE-2017-11662)
vulnerability in c (CVE-2017-11662). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-11663 |
|
Out-of-Bounds Read in c (CVE-2017-11663)
vulnerability in c (CVE-2017-11663). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-11664 |
|
Out-of-Bounds Read in c (CVE-2017-11664)
vulnerability in c (CVE-2017-11664). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-12441 |
|
Out-of-Bounds Read in c (CVE-2017-12441)
vulnerability in c (CVE-2017-12441). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-12442 |
|
Out-of-Bounds Read in c (CVE-2017-12442)
vulnerability in c (CVE-2017-12442). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-12443 |
|
Out-of-Bounds Read in c (CVE-2017-12443)
vulnerability in c (CVE-2017-12443). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-12444 |
|
Out-of-Bounds Read in c (CVE-2017-12444)
vulnerability in c (CVE-2017-12444). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-12445 |
|
Out-of-Bounds Read in cpp (CVE-2017-12445)
vulnerability in cpp (CVE-2017-12445). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-7548 |
|
Vulnerability in dos (CVE-2017-7548)
vulnerability in dos (CVE-2017-7548). Data can be tampered with by attackers.
|
| CVE-2017-12862 |
|
Out-of-Bounds Write in cpp (CVE-2017-12862)
out-of-bounds write in cpp (CVE-2017-12862). Successful exploitation can lead to full system takeover.
|
| CVE-2017-12863 |
|
Vulnerability in cpp (CVE-2017-12863)
vulnerability in cpp (CVE-2017-12863). Successful exploitation can lead to full system takeover.
|
| CVE-2017-12864 |
|
Vulnerability in cpp (CVE-2017-12864)
vulnerability in cpp (CVE-2017-12864). Successful exploitation can lead to full system takeover.
|
| CVE-2017-12852 |
|
Vulnerability in dos (CVE-2017-12852)
vulnerability in dos (CVE-2017-12852). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-6021 |
|
Cross-Site Scripting (XSS) in ibm (CVE-2016-6021)
cross-site scripting in ibm (CVE-2016-6021). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-12853 |
|
Cross-Site Request Forgery (CSRF) in csrf (CVE-2017-12853)
vulnerability in csrf (CVE-2017-12853). Successful exploitation can lead to full system takeover.
|
| CVE-2017-11149 |
|
SSRF (Server-Side Request Forgery) in ssrf (CVE-2017-11149)
SSRF in ssrf (CVE-2017-11149). Confidential information can be exposed externally.
|
| CVE-2017-9659 |
|
Buffer Overflow in fujielectric (CVE-2017-9659)
vulnerability in fujielectric (CVE-2017-9659). Successful exploitation can lead to full system takeover.
|
| CVE-2017-9660 |
|
Buffer Overflow in fujielectric (CVE-2017-9660)
vulnerability in fujielectric (CVE-2017-9660). Successful exploitation can lead to full system takeover.
|
| CVE-2017-9655 |
|
Cross-Site Scripting (XSS) in osisoft (CVE-2017-9655)
cross-site scripting in osisoft (CVE-2017-9655). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-9802 |
|
Cross-Site Scripting (XSS) in apache (CVE-2017-9802)
cross-site scripting in apache (CVE-2017-9802). Risk of unauthorized operations or information disclosure.
|
| CVE-2015-3616 |
|
SQL Injection in sqli (CVE-2015-3616)
SQL injection in sqli (CVE-2015-3616). Successful exploitation can lead to full system takeover.
|