Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2016-3691 |
|
Cross-Site Request Forgery (CSRF) in csrf (CVE-2016-3691)
vulnerability in csrf (CVE-2016-3691). Successful exploitation can lead to full system takeover.
|
| CVE-2017-8099 |
|
Cross-Site Request Forgery (CSRF) in wordpress (CVE-2017-8099)
vulnerability in wordpress (CVE-2017-8099). Data can be tampered with by attackers.
|
| CVE-2017-8100 |
|
Cross-Site Request Forgery (CSRF) in wordpress (CVE-2017-8100)
vulnerability in wordpress (CVE-2017-8100). Data can be tampered with by attackers.
|
| CVE-2017-8101 |
|
There is CSRF in Serendipity 2.0.5, allowing attackers to install any themes via a GET request.
There is CSRF in Serendipity 2.0.5, allowing attackers to install any themes via a GET request.
|
| CVE-2015-7245 |
|
Path Traversal in path-traversal (CVE-2015-7245)
path traversal in path-traversal (CVE-2015-7245). Confidential information can be exposed externally.
|
| CVE-2016-4313 |
|
Path Traversal in path-traversal (CVE-2016-4313)
path traversal in path-traversal (CVE-2016-4313). Successful exploitation can lead to full system takeover.
|
| CVE-2017-8104 |
|
In MyBB before 1.8.11, the smilie module allows Directory Traversal via the pathfolder parameter.
In MyBB before 1.8.11, the smilie module allows Directory Traversal via the pathfolder parameter.
|
| CVE-2016-3076 |
|
Buffer Overflow in pillow (CVE-2016-3076)
vulnerability in pillow (CVE-2016-3076). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `3.1.2` or later.
|
| CVE-2017-2322 |
|
Vulnerability in dos (CVE-2017-2322)
vulnerability in dos (CVE-2017-2322). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-1000357 |
|
Vulnerability in dos (CVE-2017-1000357)
vulnerability in dos (CVE-2017-1000357). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-2331 |
|
Vulnerability in juniper (CVE-2017-2331)
vulnerability in juniper (CVE-2017-2331). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-2313 |
|
Vulnerability in dos (CVE-2017-2313)
vulnerability in dos (CVE-2017-2313). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-2315 |
|
Vulnerability in dos (CVE-2017-2315)
vulnerability in dos (CVE-2017-2315). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-2316 |
|
Buffer Overflow in dos (CVE-2017-2316)
vulnerability in dos (CVE-2017-2316). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-2317 |
|
Information Disclosure in dos (CVE-2017-2317)
vulnerability in dos (CVE-2017-2317). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-2323 |
|
Vulnerability in c (CVE-2017-2323)
vulnerability in c (CVE-2017-2323). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-2324 |
|
Command Injection in c (CVE-2017-2324)
command injection in c (CVE-2017-2324). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-2325 |
|
Buffer Overflow in dos (CVE-2017-2325)
vulnerability in dos (CVE-2017-2325). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-2327 |
|
Vulnerability in dos (CVE-2017-2327)
vulnerability in dos (CVE-2017-2327). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-2330 |
|
Vulnerability in dos (CVE-2017-2330)
vulnerability in dos (CVE-2017-2330). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-2333 |
|
Vulnerability in dos (CVE-2017-2333)
vulnerability in dos (CVE-2017-2333). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-8085 |
|
Cross-Site Scripting (XSS) in exponentcms (CVE-2017-8085)
cross-site scripting in exponentcms (CVE-2017-8085). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-7944 |
|
Cross-Site Scripting (XSS) in xoops (CVE-2017-7944)
cross-site scripting in xoops (CVE-2017-7944). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-7852 |
|
Cross-Site Request Forgery (CSRF) in csrf (CVE-2017-7852)
vulnerability in csrf (CVE-2017-7852). Successful exploitation can lead to full system takeover.
|
| CVE-2017-8082 |
|
Cross-Site Request Forgery (CSRF) in csrf (CVE-2017-8082)
vulnerability in csrf (CVE-2017-8082). Risk of unauthorized operations or information disclosure.
|
| CVE-2015-0107 |
|
Path Traversal in path-traversal (CVE-2015-0107)
path traversal in path-traversal (CVE-2015-0107). Confidential information can be exposed externally.
|
| CVE-2015-8110 |
|
Vulnerability in privilege-escalation (CVE-2015-8110)
vulnerability in privilege-escalation (CVE-2015-8110). Successful exploitation can lead to full system takeover.
|
| CVE-2010-5321 |
|
Vulnerability in c (CVE-2010-5321)
vulnerability in c (CVE-2010-5321). Risk of unauthorized operations or information disclosure.
|
| CVE-2010-5329 |
|
Vulnerability in c (CVE-2010-5329)
vulnerability in c (CVE-2010-5329). Risk of unauthorized operations or information disclosure.
|
| CVE-2014-9654 |
|
Buffer Overflow in c (CVE-2014-9654)
vulnerability in c (CVE-2014-9654). Successful exploitation can lead to full system takeover.
|
| CVE-2015-1521 |
|
Buffer Overflow in dos (CVE-2015-1521)
vulnerability in dos (CVE-2015-1521). Risk of unauthorized operations or information disclosure.
|
| CVE-2015-1522 |
|
Buffer Overflow in dos (CVE-2015-1522)
vulnerability in dos (CVE-2015-1522). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-8061 |
|
Buffer Overflow in c (CVE-2017-8061)
vulnerability in c (CVE-2017-8061). Successful exploitation can lead to full system takeover.
|
| CVE-2017-8062 |
|
Buffer Overflow in c (CVE-2017-8062)
vulnerability in c (CVE-2017-8062). Successful exploitation can lead to full system takeover.
|
| CVE-2017-8063 |
|
Buffer Overflow in c (CVE-2017-8063)
vulnerability in c (CVE-2017-8063). Successful exploitation can lead to full system takeover.
|
| CVE-2017-8064 |
|
Buffer Overflow in c (CVE-2017-8064)
vulnerability in c (CVE-2017-8064). Successful exploitation can lead to full system takeover.
|
| CVE-2017-8065 |
|
Buffer Overflow in c (CVE-2017-8065)
vulnerability in c (CVE-2017-8065). Successful exploitation can lead to full system takeover.
|
| CVE-2017-8066 |
|
Buffer Overflow in c (CVE-2017-8066)
vulnerability in c (CVE-2017-8066). Successful exploitation can lead to full system takeover.
|
| CVE-2017-8067 |
|
Out-of-Bounds Write in c (CVE-2017-8067)
out-of-bounds write in c (CVE-2017-8067). Successful exploitation can lead to full system takeover.
|
| CVE-2017-8068 |
|
Buffer Overflow in c (CVE-2017-8068)
vulnerability in c (CVE-2017-8068). Successful exploitation can lead to full system takeover.
|
| CVE-2017-8069 |
|
Buffer Overflow in c (CVE-2017-8069)
vulnerability in c (CVE-2017-8069). Successful exploitation can lead to full system takeover.
|
| CVE-2017-8070 |
|
Buffer Overflow in c (CVE-2017-8070)
vulnerability in c (CVE-2017-8070). Successful exploitation can lead to full system takeover.
|
| CVE-2017-8071 |
|
Vulnerability in c (CVE-2017-8071)
vulnerability in c (CVE-2017-8071). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-8054 |
|
Vulnerability in cpp (CVE-2017-8054)
vulnerability in cpp (CVE-2017-8054). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-8056 |
|
XXE (XML External Entity) in dos (CVE-2017-8056)
vulnerability in dos (CVE-2017-8056). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-8053 |
|
Vulnerability in cpp (CVE-2017-8053)
vulnerability in cpp (CVE-2017-8053). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-7991 |
|
SQL Injection in sqli (CVE-2017-7991)
SQL injection in sqli (CVE-2017-7991). Successful exploitation can lead to full system takeover.
|
| CVE-2017-8052 |
|
Craft CMS before 2.6.2974 allows XSS attacks.
Craft CMS before 2.6.2974 allows XSS attacks.
|
| CVE-2016-5399 |
|
Out-of-Bounds Write in c (CVE-2016-5399)
out-of-bounds write in c (CVE-2016-5399). Successful exploitation can lead to full system takeover.
|
| CVE-2016-9954 |
|
Vulnerability in dos (CVE-2016-9954)
vulnerability in dos (CVE-2016-9954). Risk of unauthorized operations or information disclosure.
|