Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: attack-types Clear
ID Title
CVE-2016-7906 Use-After-Free in c (CVE-2016-7906)
vulnerability in c (CVE-2016-7906). Risk of unauthorized operations or information disclosure.
CVE-2017-5517 SQL Injection in sqli (CVE-2017-5517)
SQL injection in sqli (CVE-2017-5517). Successful exploitation can lead to full system takeover.
CVE-2017-5519 SQL Injection in sqli (CVE-2017-5519)
SQL injection in sqli (CVE-2017-5519). Successful exploitation can lead to full system takeover.
CVE-2017-5515 Cross-Site Scripting (XSS) in metalgenix (CVE-2017-5515)
cross-site scripting in metalgenix (CVE-2017-5515). Risk of unauthorized operations or information disclosure.
CVE-2017-5516 Cross-Site Scripting (XSS) in metalgenix (CVE-2017-5516)
cross-site scripting in metalgenix (CVE-2017-5516). Risk of unauthorized operations or information disclosure.
CVE-2017-5518 SSRF (Server-Side Request Forgery) in ssrf (CVE-2017-5518)
SSRF in ssrf (CVE-2017-5518). Data can be tampered with by attackers.
CVE-2016-7904 Cross-Site Request Forgery (CSRF) in csrf (CVE-2016-7904)
vulnerability in csrf (CVE-2016-7904). Successful exploitation can lead to full system takeover.
CVE-2017-5494 Cross-Site Scripting (XSS) in b2evolution (CVE-2017-5494)
cross-site scripting in b2evolution (CVE-2017-5494). Risk of unauthorized operations or information disclosure.
CVE-2017-5480 Path Traversal in path-traversal (CVE-2017-5480)
path traversal in path-traversal (CVE-2017-5480). Confidential information can be exposed externally.
CVE-2017-5492 Cross-Site Request Forgery (CSRF) in wordpress (CVE-2017-5492)
vulnerability in wordpress (CVE-2017-5492). Successful exploitation can lead to full system takeover.
CVE-2017-5488 Cross-Site Scripting (XSS) in wordpress (CVE-2017-5488)
cross-site scripting in wordpress (CVE-2017-5488). Risk of unauthorized operations or information disclosure.
CVE-2017-5490 Cross-Site Scripting (XSS) in wordpress (CVE-2017-5490)
cross-site scripting in wordpress (CVE-2017-5490). Risk of unauthorized operations or information disclosure.
CVE-2017-5489 Cross-Site Request Forgery (CSRF) in wordpress (CVE-2017-5489)
vulnerability in wordpress (CVE-2017-5489). Successful exploitation can lead to full system takeover.
CVE-2017-2584 Information Disclosure in c (CVE-2017-2584)
vulnerability in c (CVE-2017-2584). Confidential information can be exposed externally.
CVE-2016-8201 Cross-Site Request Forgery (CSRF) in csrf (CVE-2016-8201)
vulnerability in csrf (CVE-2016-8201). Successful exploitation can lead to full system takeover.
CVE-2016-8204 Path Traversal in path-traversal (CVE-2016-8204)
path traversal in path-traversal (CVE-2016-8204). Successful exploitation can lead to full system takeover.
CVE-2016-8205 Path Traversal in path-traversal (CVE-2016-8205)
path traversal in path-traversal (CVE-2016-8205). Successful exploitation can lead to full system takeover.
CVE-2016-8206 Path Traversal in path-traversal (CVE-2016-8206)
path traversal in path-traversal (CVE-2016-8206). Data can be tampered with by attackers.
CVE-2016-8207 Path Traversal in path-traversal (CVE-2016-8207)
path traversal in path-traversal (CVE-2016-8207). Confidential information can be exposed externally.
CVE-2017-5473 Cross-Site Request Forgery (CSRF) in csrf (CVE-2017-5473)
vulnerability in csrf (CVE-2017-5473). Successful exploitation can lead to full system takeover.
CVE-2017-5475 comment.php in Serendipity through 2.0.5 allows CSRF in deleting any comments.
comment.php in Serendipity through 2.0.5 allows CSRF in deleting any comments.
CVE-2017-5476 Serendipity through 2.0.5 allows CSRF for the installation of an event plugin or a sidebar plugin.
Serendipity through 2.0.5 allows CSRF for the installation of an event plugin or a sidebar plugin.
CVE-2016-10142 Vulnerability in dos (CVE-2016-10142)
vulnerability in dos (CVE-2016-10142). Risk of unauthorized operations or information disclosure.
CVE-2016-9808 Out-of-Bounds Write in dos (CVE-2016-9808)
out-of-bounds write in dos (CVE-2016-9808). Risk of unauthorized operations or information disclosure.
CVE-2016-9810 Out-of-Bounds Read in dos (CVE-2016-9810)
vulnerability in dos (CVE-2016-9810). Risk of unauthorized operations or information disclosure.
CVE-2016-9811 Out-of-Bounds Read in dos (CVE-2016-9811)
vulnerability in dos (CVE-2016-9811). Risk of unauthorized operations or information disclosure.
CVE-2016-9812 Out-of-Bounds Read in dos (CVE-2016-9812)
vulnerability in dos (CVE-2016-9812). Risk of unauthorized operations or information disclosure.
CVE-2016-9813 Vulnerability in dos (CVE-2016-9813)
vulnerability in dos (CVE-2016-9813). Risk of unauthorized operations or information disclosure.
CVE-2016-6885 Use-After-Free in dos (CVE-2016-6885)
vulnerability in dos (CVE-2016-6885). Risk of unauthorized operations or information disclosure.
CVE-2016-6886 Vulnerability in dos (CVE-2016-6886)
vulnerability in dos (CVE-2016-6886). Risk of unauthorized operations or information disclosure.
CVE-2016-7426 Vulnerability in dos (CVE-2016-7426)
vulnerability in dos (CVE-2016-7426). Risk of unauthorized operations or information disclosure.
CVE-2016-7427 Vulnerability in dos (CVE-2016-7427)
vulnerability in dos (CVE-2016-7427). Risk of unauthorized operations or information disclosure.
CVE-2016-7428 Vulnerability in dos (CVE-2016-7428)
vulnerability in dos (CVE-2016-7428). Risk of unauthorized operations or information disclosure.
CVE-2016-7429 Vulnerability in dos (CVE-2016-7429)
vulnerability in dos (CVE-2016-7429). Risk of unauthorized operations or information disclosure.
CVE-2016-7434 Vulnerability in dos (CVE-2016-7434)
vulnerability in dos (CVE-2016-7434). Risk of unauthorized operations or information disclosure.
CVE-2016-8467 Vulnerability in dos (CVE-2016-8467)
vulnerability in dos (CVE-2016-8467). Risk of unauthorized operations or information disclosure.
CVE-2016-8882 Vulnerability in c (CVE-2016-8882)
vulnerability in c (CVE-2016-8882). Risk of unauthorized operations or information disclosure.
CVE-2016-8883 Vulnerability in c (CVE-2016-8883)
vulnerability in c (CVE-2016-8883). Risk of unauthorized operations or information disclosure.
CVE-2016-9311 Vulnerability in dos (CVE-2016-9311)
vulnerability in dos (CVE-2016-9311). Risk of unauthorized operations or information disclosure.
CVE-2016-9312 Vulnerability in dos (CVE-2016-9312)
vulnerability in dos (CVE-2016-9312). Risk of unauthorized operations or information disclosure.
CVE-2016-9807 Out-of-Bounds Read in c (CVE-2016-9807)
vulnerability in c (CVE-2016-9807). Risk of unauthorized operations or information disclosure.
CVE-2017-5364 Buffer Overflow in dos (CVE-2017-5364)
vulnerability in dos (CVE-2017-5364). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `2.0` or later.
CVE-2017-3890 Cross-Site Scripting (XSS) in blackberry (CVE-2017-3890)
cross-site scripting in blackberry (CVE-2017-3890). Risk of unauthorized operations or information disclosure.
CVE-2016-10140 Information Disclosure in apache (CVE-2016-10140)
vulnerability in apache (CVE-2016-10140). Confidential information can be exposed externally.
CVE-2016-10141 Vulnerability in c (CVE-2016-10141)
vulnerability in c (CVE-2016-10141). Successful exploitation can lead to full system takeover.
CVE-2016-3150 Cross-Site Scripting (XSS) in barco (CVE-2016-3150)
cross-site scripting in barco (CVE-2016-3150). Risk of unauthorized operations or information disclosure.
CVE-2016-5737 Cross-Site Scripting (XSS) in openstack (CVE-2016-5737)
cross-site scripting in openstack (CVE-2016-5737). Risk of unauthorized operations or information disclosure.
CVE-2016-3151 Path Traversal in path-traversal (CVE-2016-3151)
path traversal in path-traversal (CVE-2016-3151). Confidential information can be exposed externally.
CVE-2015-5720 Cross-Site Scripting (XSS) in misp-project (CVE-2015-5720)
cross-site scripting in misp-project (CVE-2015-5720). Risk of unauthorized operations or information disclosure.
CVE-2015-8325 The do_setup_env function in session.c in sshd in OpenSSH through 7.2p2, when the UseLogin feature is enabled and PAM is configured to read .pam_environment files in user home directories, allows loca...
The do_setup_env function in session.c in sshd in OpenSSH through 7.2p2, when the UseLogin feature is enabled and PAM is configured to read .pam_environment files in user home directories, allows local users to gain privileges by triggering a crafted environment for the /bin/login program, as demons...

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →