Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: attack-types Clear
ID Title
CVE-2017-7952 SQL Injection in sqli (CVE-2017-7952)
SQL injection in sqli (CVE-2017-7952). Successful exploitation can lead to full system takeover.
CVE-2017-7953 INFOR EAM V11.0 Build 201410 has XSS via comment fields.
INFOR EAM V11.0 Build 201410 has XSS via comment fields.
CVE-2017-8382 Cross-Site Request Forgery (CSRF) in csrf (CVE-2017-8382)
vulnerability in csrf (CVE-2017-8382). Risk of unauthorized operations or information disclosure.
CVE-2017-7478 Vulnerability in dos (CVE-2017-7478)
vulnerability in dos (CVE-2017-7478). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `2.3.15` or later.
CVE-2017-7479 Vulnerability in dos (CVE-2017-7479)
vulnerability in dos (CVE-2017-7479). Risk of unauthorized operations or information disclosure.
CVE-2017-8926 Buffer Overflow in dos (CVE-2017-8926)
vulnerability in dos (CVE-2017-8926). Successful exploitation can lead to full system takeover.
CVE-2017-8927 Buffer Overflow in dos (CVE-2017-8927)
vulnerability in dos (CVE-2017-8927). Successful exploitation can lead to full system takeover.
CVE-2017-0223 Buffer Overflow in microsoft (CVE-2017-0223)
vulnerability in microsoft (CVE-2017-0223). Successful exploitation can lead to full system takeover.
CVE-2017-0252 Buffer Overflow in microsoft (CVE-2017-0252)
vulnerability in microsoft (CVE-2017-0252). Successful exploitation can lead to full system takeover.
CVE-2017-7491 Cross-Site Request Forgery (CSRF) in csrf (CVE-2017-7491)
vulnerability in csrf (CVE-2017-7491). Risk of unauthorized operations or information disclosure.
CVE-2017-8933 Vulnerability in dos (CVE-2017-8933)
vulnerability in dos (CVE-2017-8933). Risk of unauthorized operations or information disclosure.
CVE-2017-8934 Vulnerability in dos (CVE-2017-8934)
vulnerability in dos (CVE-2017-8934). Risk of unauthorized operations or information disclosure.
CVE-2017-8928 mailcow 0.14, as used in "mailcow: dockerized" and other products, has CSRF.
mailcow 0.14, as used in "mailcow: dockerized" and other products, has CSRF.
CVE-2017-8930 Cross-Site Request Forgery (CSRF) in csrf (CVE-2017-8930)
vulnerability in csrf (CVE-2017-8930). Successful exploitation can lead to full system takeover.
CVE-2017-7487 Use-After-Free in c (CVE-2017-7487)
vulnerability in c (CVE-2017-7487). Successful exploitation can lead to full system takeover.
CVE-2017-8929 Use-After-Free in c (CVE-2017-8929)
vulnerability in c (CVE-2017-8929). Risk of unauthorized operations or information disclosure.
CVE-2017-8925 Vulnerability in c (CVE-2017-8925)
vulnerability in c (CVE-2017-8925). Risk of unauthorized operations or information disclosure.
CVE-2016-10330 Path Traversal in path-traversal (CVE-2016-10330)
path traversal in path-traversal (CVE-2016-10330). Confidential information can be exposed externally.
CVE-2016-10331 Path Traversal in path-traversal (CVE-2016-10331)
path traversal in path-traversal (CVE-2016-10331). Confidential information can be exposed externally.
CVE-2017-8923 Out-of-Bounds Write in dos (CVE-2017-8923)
out-of-bounds write in dos (CVE-2017-8923). Successful exploitation can lead to full system takeover.
CVE-2017-8921 Path Traversal in path-traversal (CVE-2017-8921)
path traversal in path-traversal (CVE-2017-8921). Data can be tampered with by attackers.
CVE-2016-4855 Cross-Site Scripting (XSS) in adodb-project (CVE-2016-4855)
cross-site scripting in adodb-project (CVE-2016-4855). Risk of unauthorized operations or information disclosure.
CVE-2016-4856 Cross-Site Scripting (XSS) in splunk (CVE-2016-4856)
cross-site scripting in splunk (CVE-2016-4856). Risk of unauthorized operations or information disclosure.
CVE-2016-4858 Cross-Site Scripting (XSS) in splunk (CVE-2016-4858)
cross-site scripting in splunk (CVE-2016-4858). Risk of unauthorized operations or information disclosure.
CVE-2016-4877 Cross-Site Scripting (XSS) in basercms (CVE-2016-4877)
cross-site scripting in basercms (CVE-2016-4877). Risk of unauthorized operations or information disclosure.
CVE-2016-4880 Cross-Site Scripting (XSS) in basercms (CVE-2016-4880)
cross-site scripting in basercms (CVE-2016-4880). Risk of unauthorized operations or information disclosure.
CVE-2016-4883 Cross-Site Scripting (XSS) in basercms (CVE-2016-4883)
cross-site scripting in basercms (CVE-2016-4883). Risk of unauthorized operations or information disclosure.
CVE-2017-2122 Cross-Site Scripting (XSS) in tenable (CVE-2017-2122)
cross-site scripting in tenable (CVE-2017-2122). Risk of unauthorized operations or information disclosure.
CVE-2017-2164 Cross-Site Scripting (XSS) in n-i-agroinformatics (CVE-2017-2164)
cross-site scripting in n-i-agroinformatics (CVE-2017-2164). Risk of unauthorized operations or information disclosure.
CVE-2016-4876 Cross-Site Request Forgery (CSRF) in csrf (CVE-2016-4876)
vulnerability in csrf (CVE-2016-4876). Successful exploitation can lead to full system takeover.
CVE-2016-4878 Cross-Site Request Forgery (CSRF) in csrf (CVE-2016-4878)
vulnerability in csrf (CVE-2016-4878). Successful exploitation can lead to full system takeover.
CVE-2016-4879 Cross-Site Request Forgery (CSRF) in csrf (CVE-2016-4879)
vulnerability in csrf (CVE-2016-4879). Successful exploitation can lead to full system takeover.
CVE-2016-4881 Cross-Site Request Forgery (CSRF) in csrf (CVE-2016-4881)
vulnerability in csrf (CVE-2016-4881). Successful exploitation can lead to full system takeover.
CVE-2016-4882 Cross-Site Request Forgery (CSRF) in csrf (CVE-2016-4882)
vulnerability in csrf (CVE-2016-4882). Successful exploitation can lead to full system takeover.
CVE-2016-4884 Cross-Site Request Forgery (CSRF) in csrf (CVE-2016-4884)
vulnerability in csrf (CVE-2016-4884). Successful exploitation can lead to full system takeover.
CVE-2016-4885 Cross-Site Request Forgery (CSRF) in csrf (CVE-2016-4885)
vulnerability in csrf (CVE-2016-4885). Successful exploitation can lead to full system takeover.
CVE-2016-4886 Cross-Site Request Forgery (CSRF) in csrf (CVE-2016-4886)
vulnerability in csrf (CVE-2016-4886). Successful exploitation can lead to full system takeover.
CVE-2016-4887 Cross-Site Request Forgery (CSRF) in csrf (CVE-2016-4887)
vulnerability in csrf (CVE-2016-4887). Successful exploitation can lead to full system takeover.
CVE-2017-2163 Path Traversal in path-traversal (CVE-2017-2163)
path traversal in path-traversal (CVE-2017-2163). Confidential information can be exposed externally.
CVE-2016-4864 Vulnerability in dos (CVE-2016-4864)
vulnerability in dos (CVE-2016-4864). Risk of unauthorized operations or information disclosure.
CVE-2017-0635 Vulnerability in cpp (CVE-2017-0635)
vulnerability in cpp (CVE-2017-0635). Risk of unauthorized operations or information disclosure.
CVE-2017-0587 Buffer Overflow in google (CVE-2017-0587)
vulnerability in google (CVE-2017-0587). Successful exploitation can lead to full system takeover.
CVE-2017-0588 Buffer Overflow in cpp (CVE-2017-0588)
vulnerability in cpp (CVE-2017-0588). Successful exploitation can lead to full system takeover.
CVE-2017-0589 Buffer Overflow in google (CVE-2017-0589)
vulnerability in google (CVE-2017-0589). Successful exploitation can lead to full system takeover.
CVE-2017-0590 Buffer Overflow in google (CVE-2017-0590)
vulnerability in google (CVE-2017-0590). Successful exploitation can lead to full system takeover.
CVE-2017-0591 Buffer Overflow in google (CVE-2017-0591)
vulnerability in google (CVE-2017-0591). Successful exploitation can lead to full system takeover.
CVE-2017-0592 Buffer Overflow in cpp (CVE-2017-0592)
vulnerability in cpp (CVE-2017-0592). Successful exploitation can lead to full system takeover.
CVE-2017-0599 Vulnerability in dos (CVE-2017-0599)
vulnerability in dos (CVE-2017-0599). Risk of unauthorized operations or information disclosure.
CVE-2017-0600 Vulnerability in dos (CVE-2017-0600)
vulnerability in dos (CVE-2017-0600). Risk of unauthorized operations or information disclosure.
CVE-2017-0603 Vulnerability in dos (CVE-2017-0603)
vulnerability in dos (CVE-2017-0603). Risk of unauthorized operations or information disclosure.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →