Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2017-1002002 |
|
Unrestricted File Upload in wordpress (CVE-2017-1002002)
vulnerability in wordpress (CVE-2017-1002002). Successful exploitation can lead to full system takeover.
|
| CVE-2017-1002003 |
|
Unrestricted File Upload in wordpress (CVE-2017-1002003)
vulnerability in wordpress (CVE-2017-1002003). Successful exploitation can lead to full system takeover.
|
| CVE-2017-1002004 |
|
SQL Injection in wordpress (CVE-2017-1002004)
SQL injection in wordpress (CVE-2017-1002004). Data can be tampered with by attackers.
|
| CVE-2017-1002005 |
|
SQL Injection in wordpress (CVE-2017-1002005)
SQL injection in wordpress (CVE-2017-1002005). Data can be tampered with by attackers.
|
| CVE-2017-1002006 |
|
Vulnerability in wordpress (CVE-2017-1002006)
vulnerability in wordpress (CVE-2017-1002006). Data can be tampered with by attackers.
|
| CVE-2017-1002007 |
|
Vulnerability in wordpress (CVE-2017-1002007)
vulnerability in wordpress (CVE-2017-1002007). Data can be tampered with by attackers.
|
| CVE-2017-1002008 |
|
Unrestricted File Upload in wordpress (CVE-2017-1002008)
vulnerability in wordpress (CVE-2017-1002008). Successful exploitation can lead to full system takeover.
|
| CVE-2017-1002009 |
|
SQL Injection in wordpress (CVE-2017-1002009)
SQL injection in wordpress (CVE-2017-1002009). Successful exploitation can lead to full system takeover.
|
| CVE-2017-1002010 |
|
SQL Injection in wordpress (CVE-2017-1002010)
SQL injection in wordpress (CVE-2017-1002010). Successful exploitation can lead to full system takeover.
|
| CVE-2017-1002011 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2017-1002011)
cross-site scripting in wordpress (CVE-2017-1002011). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-1002012 |
|
SQL Injection in wordpress (CVE-2017-1002012)
SQL injection in wordpress (CVE-2017-1002012). Successful exploitation can lead to full system takeover.
|
| CVE-2017-1002013 |
|
SQL Injection in wordpress (CVE-2017-1002013)
SQL injection in wordpress (CVE-2017-1002013). Successful exploitation can lead to full system takeover.
|
| CVE-2017-1002014 |
|
SQL Injection in wordpress (CVE-2017-1002014)
SQL injection in wordpress (CVE-2017-1002014). Successful exploitation can lead to full system takeover.
|
| CVE-2017-1002015 |
|
SQL Injection in wordpress (CVE-2017-1002015)
SQL injection in wordpress (CVE-2017-1002015). Successful exploitation can lead to full system takeover.
|
| CVE-2017-1002016 |
|
Unrestricted File Upload in wordpress (CVE-2017-1002016)
vulnerability in wordpress (CVE-2017-1002016). Successful exploitation can lead to full system takeover.
|
| CVE-2017-1002017 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2017-1002017)
cross-site scripting in wordpress (CVE-2017-1002017). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-1002018 |
|
SQL Injection in wordpress (CVE-2017-1002018)
SQL injection in wordpress (CVE-2017-1002018). Successful exploitation can lead to full system takeover.
|
| CVE-2017-1002019 |
|
SQL Injection in wordpress (CVE-2017-1002019)
SQL injection in wordpress (CVE-2017-1002019). Successful exploitation can lead to full system takeover.
|
| CVE-2017-1002020 |
|
SQL Injection in wordpress (CVE-2017-1002020)
SQL injection in wordpress (CVE-2017-1002020). Successful exploitation can lead to full system takeover.
|
| CVE-2017-1002021 |
|
SQL Injection in wordpress (CVE-2017-1002021)
SQL injection in wordpress (CVE-2017-1002021). Successful exploitation can lead to full system takeover.
|
| CVE-2015-2749 |
|
Open Redirect in drupal (CVE-2015-2749)
vulnerability in drupal (CVE-2015-2749). Risk of unauthorized operations or information disclosure.
|
| CVE-2015-2750 |
|
Open Redirect in drupal (CVE-2015-2750)
vulnerability in drupal (CVE-2015-2750). Risk of unauthorized operations or information disclosure.
|
| CVE-2015-7880 |
|
Information Disclosure in drupal (CVE-2015-7880)
vulnerability in drupal (CVE-2015-7880). Risk of unauthorized operations or information disclosure.
|
| CVE-2015-9229 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2015-9229)
cross-site scripting in wordpress (CVE-2015-9229). Risk of unauthorized operations or information disclosure.
|
| CVE-2015-9230 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2015-9230)
cross-site scripting in wordpress (CVE-2015-9230). Risk of unauthorized operations or information disclosure.
|
| CVE-2015-9228 |
|
Unrestricted File Upload in wordpress (CVE-2015-9228)
vulnerability in wordpress (CVE-2015-9228). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14313 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2017-14313)
cross-site scripting in wordpress (CVE-2017-14313). Risk of unauthorized operations or information disclosure.
|
| CVE-2015-8350 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2015-8350)
cross-site scripting in wordpress (CVE-2015-8350). Risk of unauthorized operations or information disclosure.
|
| CVE-2015-8351 |
|
Code Injection in wordpress (CVE-2015-8351)
code injection in wordpress (CVE-2015-8351). Successful exploitation can lead to full system takeover.
|
| CVE-2015-8353 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2015-8353)
cross-site scripting in wordpress (CVE-2015-8353). Risk of unauthorized operations or information disclosure.
|
| CVE-2015-8354 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2015-8354)
cross-site scripting in wordpress (CVE-2015-8354). Risk of unauthorized operations or information disclosure.
|
| CVE-2015-7877 |
|
SQL Injection in drupal (CVE-2015-7877)
SQL injection in drupal (CVE-2015-7877). Successful exploitation can lead to full system takeover.
|
| CVE-2015-7879 |
|
Cross-Site Scripting (XSS) in drupal (CVE-2015-7879)
cross-site scripting in drupal (CVE-2015-7879). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-14251 |
|
Unrestricted File Upload in typo3 (CVE-2017-14251)
vulnerability in typo3 (CVE-2017-14251). Successful exploitation can lead to full system takeover.
|
| CVE-2015-3313 |
|
SQL injection vulnerability in WordPress Community Events plugin before 1.4.
SQL injection vulnerability in WordPress Community Events plugin before 1.4.
|
| CVE-2015-3314 |
|
SQL injection vulnerability in WordPress Tune Library plugin before 1.5.5.
SQL injection vulnerability in WordPress Tune Library plugin before 1.5.5.
|
| CVE-2015-4697 |
|
Cross-Site Request Forgery (CSRF) in wordpress (CVE-2015-4697)
vulnerability in wordpress (CVE-2015-4697). Successful exploitation can lead to full system takeover.
|
| CVE-2017-9834 |
|
SQL Injection in wordpress (CVE-2017-9834)
SQL injection in wordpress (CVE-2017-9834). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14126 |
|
The Participants Database plugin before 1.7.5.10 for WordPress has XSS.
The Participants Database plugin before 1.7.5.10 for WordPress has XSS.
|
| CVE-2015-7517 |
|
SQL Injection in wordpress (CVE-2015-7517)
SQL injection in wordpress (CVE-2015-7517). Successful exploitation can lead to full system takeover.
|
| CVE-2017-13137 |
|
The FormCraft Basic plugin 1.0.5 for WordPress has SQL injection in the id parameter to form.php.
The FormCraft Basic plugin 1.0.5 for WordPress has SQL injection in the id parameter to form.php.
|
| CVE-2017-13138 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2017-13138)
cross-site scripting in wordpress (CVE-2017-13138). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-12977 |
|
SQL Injection in wordpress (CVE-2017-12977)
SQL injection in wordpress (CVE-2017-12977). Successful exploitation can lead to full system takeover.
|
| CVE-2017-12946 |
|
SQL Injection in wordpress (CVE-2017-12946)
SQL injection in wordpress (CVE-2017-12946). Successful exploitation can lead to full system takeover.
|
| CVE-2017-12947 |
|
SQL Injection in wordpress (CVE-2017-12947)
SQL injection in wordpress (CVE-2017-12947). Successful exploitation can lead to full system takeover.
|
| CVE-2017-12948 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2017-12948)
cross-site scripting in wordpress (CVE-2017-12948). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-12949 |
|
SQL Injection in wordpress (CVE-2017-12949)
SQL injection in wordpress (CVE-2017-12949). Successful exploitation can lead to full system takeover.
|
| CVE-2015-5057 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2015-5057)
cross-site scripting in wordpress (CVE-2015-5057). Risk of unauthorized operations or information disclosure.
|
| CVE-2014-9260 |
|
Vulnerability in wordpress (CVE-2014-9260)
vulnerability in wordpress (CVE-2014-9260). Successful exploitation can lead to full system takeover.
|
| CVE-2014-9262 |
|
Vulnerability in wordpress (CVE-2014-9262)
vulnerability in wordpress (CVE-2014-9262). Confidential information can be exposed externally.
|