Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2016-7906 |
|
Use-After-Free in c (CVE-2016-7906)
vulnerability in c (CVE-2016-7906). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-5517 |
|
SQL Injection in sqli (CVE-2017-5517)
SQL injection in sqli (CVE-2017-5517). Successful exploitation can lead to full system takeover.
|
| CVE-2017-5519 |
|
SQL Injection in sqli (CVE-2017-5519)
SQL injection in sqli (CVE-2017-5519). Successful exploitation can lead to full system takeover.
|
| CVE-2017-5515 |
|
Cross-Site Scripting (XSS) in metalgenix (CVE-2017-5515)
cross-site scripting in metalgenix (CVE-2017-5515). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-5516 |
|
Cross-Site Scripting (XSS) in metalgenix (CVE-2017-5516)
cross-site scripting in metalgenix (CVE-2017-5516). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-5518 |
|
SSRF (Server-Side Request Forgery) in ssrf (CVE-2017-5518)
SSRF in ssrf (CVE-2017-5518). Data can be tampered with by attackers.
|
| CVE-2016-7904 |
|
Cross-Site Request Forgery (CSRF) in csrf (CVE-2016-7904)
vulnerability in csrf (CVE-2016-7904). Successful exploitation can lead to full system takeover.
|
| CVE-2017-5494 |
|
Cross-Site Scripting (XSS) in b2evolution (CVE-2017-5494)
cross-site scripting in b2evolution (CVE-2017-5494). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-5480 |
|
Path Traversal in path-traversal (CVE-2017-5480)
path traversal in path-traversal (CVE-2017-5480). Confidential information can be exposed externally.
|
| CVE-2017-5492 |
|
Cross-Site Request Forgery (CSRF) in wordpress (CVE-2017-5492)
vulnerability in wordpress (CVE-2017-5492). Successful exploitation can lead to full system takeover.
|
| CVE-2017-5488 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2017-5488)
cross-site scripting in wordpress (CVE-2017-5488). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-5490 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2017-5490)
cross-site scripting in wordpress (CVE-2017-5490). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-5489 |
|
Cross-Site Request Forgery (CSRF) in wordpress (CVE-2017-5489)
vulnerability in wordpress (CVE-2017-5489). Successful exploitation can lead to full system takeover.
|
| CVE-2017-2584 |
|
Information Disclosure in c (CVE-2017-2584)
vulnerability in c (CVE-2017-2584). Confidential information can be exposed externally.
|
| CVE-2016-8201 |
|
Cross-Site Request Forgery (CSRF) in csrf (CVE-2016-8201)
vulnerability in csrf (CVE-2016-8201). Successful exploitation can lead to full system takeover.
|
| CVE-2016-8204 |
|
Path Traversal in path-traversal (CVE-2016-8204)
path traversal in path-traversal (CVE-2016-8204). Successful exploitation can lead to full system takeover.
|
| CVE-2016-8205 |
|
Path Traversal in path-traversal (CVE-2016-8205)
path traversal in path-traversal (CVE-2016-8205). Successful exploitation can lead to full system takeover.
|
| CVE-2016-8206 |
|
Path Traversal in path-traversal (CVE-2016-8206)
path traversal in path-traversal (CVE-2016-8206). Data can be tampered with by attackers.
|
| CVE-2016-8207 |
|
Path Traversal in path-traversal (CVE-2016-8207)
path traversal in path-traversal (CVE-2016-8207). Confidential information can be exposed externally.
|
| CVE-2017-5473 |
|
Cross-Site Request Forgery (CSRF) in csrf (CVE-2017-5473)
vulnerability in csrf (CVE-2017-5473). Successful exploitation can lead to full system takeover.
|
| CVE-2017-5475 |
|
comment.php in Serendipity through 2.0.5 allows CSRF in deleting any comments.
comment.php in Serendipity through 2.0.5 allows CSRF in deleting any comments.
|
| CVE-2017-5476 |
|
Serendipity through 2.0.5 allows CSRF for the installation of an event plugin or a sidebar plugin.
Serendipity through 2.0.5 allows CSRF for the installation of an event plugin or a sidebar plugin.
|
| CVE-2016-10142 |
|
Vulnerability in dos (CVE-2016-10142)
vulnerability in dos (CVE-2016-10142). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-9808 |
|
Out-of-Bounds Write in dos (CVE-2016-9808)
out-of-bounds write in dos (CVE-2016-9808). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-9810 |
|
Out-of-Bounds Read in dos (CVE-2016-9810)
vulnerability in dos (CVE-2016-9810). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-9811 |
|
Out-of-Bounds Read in dos (CVE-2016-9811)
vulnerability in dos (CVE-2016-9811). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-9812 |
|
Out-of-Bounds Read in dos (CVE-2016-9812)
vulnerability in dos (CVE-2016-9812). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-9813 |
|
Vulnerability in dos (CVE-2016-9813)
vulnerability in dos (CVE-2016-9813). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-6885 |
|
Use-After-Free in dos (CVE-2016-6885)
vulnerability in dos (CVE-2016-6885). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-6886 |
|
Vulnerability in dos (CVE-2016-6886)
vulnerability in dos (CVE-2016-6886). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-7426 |
|
Vulnerability in dos (CVE-2016-7426)
vulnerability in dos (CVE-2016-7426). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-7427 |
|
Vulnerability in dos (CVE-2016-7427)
vulnerability in dos (CVE-2016-7427). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-7428 |
|
Vulnerability in dos (CVE-2016-7428)
vulnerability in dos (CVE-2016-7428). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-7429 |
|
Vulnerability in dos (CVE-2016-7429)
vulnerability in dos (CVE-2016-7429). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-7434 |
|
Vulnerability in dos (CVE-2016-7434)
vulnerability in dos (CVE-2016-7434). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-8467 |
|
Vulnerability in dos (CVE-2016-8467)
vulnerability in dos (CVE-2016-8467). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-8882 |
|
Vulnerability in c (CVE-2016-8882)
vulnerability in c (CVE-2016-8882). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-8883 |
|
Vulnerability in c (CVE-2016-8883)
vulnerability in c (CVE-2016-8883). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-9311 |
|
Vulnerability in dos (CVE-2016-9311)
vulnerability in dos (CVE-2016-9311). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-9312 |
|
Vulnerability in dos (CVE-2016-9312)
vulnerability in dos (CVE-2016-9312). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-9807 |
|
Out-of-Bounds Read in c (CVE-2016-9807)
vulnerability in c (CVE-2016-9807). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-5364 |
|
Buffer Overflow in dos (CVE-2017-5364)
vulnerability in dos (CVE-2017-5364). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `2.0` or later.
|
| CVE-2017-3890 |
|
Cross-Site Scripting (XSS) in blackberry (CVE-2017-3890)
cross-site scripting in blackberry (CVE-2017-3890). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-10140 |
|
Information Disclosure in apache (CVE-2016-10140)
vulnerability in apache (CVE-2016-10140). Confidential information can be exposed externally.
|
| CVE-2016-10141 |
|
Vulnerability in c (CVE-2016-10141)
vulnerability in c (CVE-2016-10141). Successful exploitation can lead to full system takeover.
|
| CVE-2016-3150 |
|
Cross-Site Scripting (XSS) in barco (CVE-2016-3150)
cross-site scripting in barco (CVE-2016-3150). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-5737 |
|
Cross-Site Scripting (XSS) in openstack (CVE-2016-5737)
cross-site scripting in openstack (CVE-2016-5737). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-3151 |
|
Path Traversal in path-traversal (CVE-2016-3151)
path traversal in path-traversal (CVE-2016-3151). Confidential information can be exposed externally.
|
| CVE-2015-5720 |
|
Cross-Site Scripting (XSS) in misp-project (CVE-2015-5720)
cross-site scripting in misp-project (CVE-2015-5720). Risk of unauthorized operations or information disclosure.
|
| CVE-2015-8325 |
|
The do_setup_env function in session.c in sshd in OpenSSH through 7.2p2, when the UseLogin feature is enabled and PAM is configured to read .pam_environment files in user home directories, allows loca...
The do_setup_env function in session.c in sshd in OpenSSH through 7.2p2, when the UseLogin feature is enabled and PAM is configured to read .pam_environment files in user home directories, allows local users to gain privileges by triggering a crafted environment for the /bin/login program, as demons...
|