Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: cwe Clear
ID Title
CVE-2020-24193 SQL Injection in sqli (CVE-2020-24193)
SQL injection in sqli (CVE-2020-24193). Successful exploitation can lead to full system takeover.
CVE-2020-23450 Cross-Site Scripting (XSS) in spiceworks (CVE-2020-23450)
cross-site scripting in spiceworks (CVE-2020-23450). Risk of unauthorized operations or information disclosure.
CVE-2020-24917 Cross-Site Scripting (XSS) in enhancesoft (CVE-2020-24917)
cross-site scripting in enhancesoft (CVE-2020-24917). Risk of unauthorized operations or information disclosure.
CVE-2020-16193 Cross-Site Scripting (XSS) in enhancesoft (CVE-2020-16193)
cross-site scripting in enhancesoft (CVE-2020-16193). Risk of unauthorized operations or information disclosure.
CVE-2020-15711 In MISP before 2.4.129, setting a favourite homepage was not CSRF protected.
In MISP before 2.4.129, setting a favourite homepage was not CSRF protected.
CVE-2020-15412 Vulnerability in misp-project (CVE-2020-15412)
vulnerability in misp-project (CVE-2020-15412). Risk of unauthorized operations or information disclosure.
CVE-2020-15368 Privilege Escalation in asrock (CVE-2020-15368)
vulnerability in asrock (CVE-2020-15368). Data can be tampered with by attackers.
CVE-2020-14969 Vulnerability in misp-project (CVE-2020-14969)
vulnerability in misp-project (CVE-2020-14969). Confidential information can be exposed externally.
CVE-2020-13153 Cross-Site Scripting (XSS) in misp-project (CVE-2020-13153)
cross-site scripting in misp-project (CVE-2020-13153). Risk of unauthorized operations or information disclosure.
CVE-2020-11725 Vulnerability in c (CVE-2020-11725)
vulnerability in c (CVE-2020-11725). Successful exploitation can lead to full system takeover.
CVE-2020-6986 Vulnerability in omron (CVE-2020-6986)
vulnerability in omron (CVE-2020-6986). Risk of unauthorized operations or information disclosure.
CVE-2020-8890 Vulnerability in misp-project (CVE-2020-8890)
vulnerability in misp-project (CVE-2020-8890). Data can be tampered with by attackers.
CVE-2019-6856 Vulnerability in dos (CVE-2019-6856)
vulnerability in dos (CVE-2019-6856). Risk of unauthorized operations or information disclosure.
CVE-2019-6857 Vulnerability in dos (CVE-2019-6857)
vulnerability in dos (CVE-2019-6857). Risk of unauthorized operations or information disclosure.
CVE-2018-7794 Vulnerability in dos (CVE-2018-7794)
vulnerability in dos (CVE-2018-7794). Risk of unauthorized operations or information disclosure.
CVE-2019-13533 Vulnerability in omron (CVE-2019-13533)
vulnerability in omron (CVE-2019-13533). Risk of unauthorized operations or information disclosure.
CVE-2019-10990 Vulnerability in redlion (CVE-2019-10990)
vulnerability in redlion (CVE-2019-10990). Confidential information can be exposed externally.
CVE-2019-6829 Vulnerability in dos (CVE-2019-6829)
vulnerability in dos (CVE-2019-6829). Risk of unauthorized operations or information disclosure.
CVE-2019-14748 Cross-Site Scripting (XSS) in enhancesoft (CVE-2019-14748)
cross-site scripting in enhancesoft (CVE-2019-14748). Risk of unauthorized operations or information disclosure.
CVE-2019-12794 Privilege Escalation in misp-project (CVE-2019-12794)
vulnerability in misp-project (CVE-2019-12794). Successful exploitation can lead to full system takeover.
CVE-2019-6819 Vulnerability in dos (CVE-2019-6819)
vulnerability in dos (CVE-2019-6819). Risk of unauthorized operations or information disclosure.
CVE-2018-7852 Vulnerability in c (CVE-2018-7852)
vulnerability in c (CVE-2018-7852). Risk of unauthorized operations or information disclosure.
CVE-2018-7821 Vulnerability in schneider-electric (CVE-2018-7821)
vulnerability in schneider-electric (CVE-2018-7821). Risk of unauthorized operations or information disclosure.
CVE-2019-11814 Cross-Site Scripting (XSS) in misp-project (CVE-2019-11814)
cross-site scripting in misp-project (CVE-2019-11814). Risk of unauthorized operations or information disclosure.
CVE-2019-11813 Cross-Site Scripting (XSS) in misp-project (CVE-2019-11813)
cross-site scripting in misp-project (CVE-2019-11813). Risk of unauthorized operations or information disclosure.
CVE-2019-11812 Cross-Site Scripting (XSS) in misp-project (CVE-2019-11812)
cross-site scripting in misp-project (CVE-2019-11812). Risk of unauthorized operations or information disclosure.
CVE-2022-28932 D-Link DSL-G2452DG HW:T1\\tFW:ME_2.00 was discovered to contain insecure permissions.
D-Link DSL-G2452DG HW:T1\\tFW:ME_2.00 was discovered to contain insecure permissions.
CVE-2017-18362 KEV [KEV] SQL Injection in Kaseya virtual-systemserver-administrator-vsa (CVE-2017-18362)
SQL injection in Kaseya virtual-systemserver-administrator-vsa (CVE-2017-18362). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2018-19949 KEV [KEV] Vulnerability in Qnap network-attached-storage-nas (CVE-2018-19949)
vulnerability in Qnap network-attached-storage-nas (CVE-2018-19949). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2016-6367 KEV [KEV] Command Injection in Cisco adaptive-security-appliance-asa (CVE-2016-6367)
command injection in Cisco adaptive-security-appliance-asa (CVE-2016-6367). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2018-19953 KEV [KEV] Cross-Site Scripting (XSS) in Qnap network-attached-storage-nas (CVE-2018-19953)
cross-site scripting in Qnap network-attached-storage-nas (CVE-2018-19953). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2018-19943 KEV [KEV] Cross-Site Scripting (XSS) in Qnap network-attached-storage-nas (CVE-2018-19943)
cross-site scripting in Qnap network-attached-storage-nas (CVE-2018-19943). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2017-0005 KEV [KEV] Buffer Overflow in Microsoft windows (CVE-2017-0005)
vulnerability in Microsoft windows (CVE-2017-0005). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2017-0149 KEV [KEV] Buffer Overflow in Microsoft internet-explorer (CVE-2017-0149)
vulnerability in Microsoft internet-explorer (CVE-2017-0149). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2016-4657 KEV [KEV] Buffer Overflow in Apple ios (CVE-2016-4657)
vulnerability in Apple ios (CVE-2016-4657). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2016-6366 KEV [KEV] Buffer Overflow in Cisco adaptive-security-appliance-asa (CVE-2016-6366)
vulnerability in Cisco adaptive-security-appliance-asa (CVE-2016-6366). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2017-0147 KEV [KEV] Information Disclosure in Microsoft smbv1-server (CVE-2017-0147)
vulnerability in Microsoft smbv1-server (CVE-2017-0147). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2017-0022 KEV [KEV] Information Disclosure in Microsoft xml-core-services (CVE-2017-0022)
vulnerability in Microsoft xml-core-services (CVE-2017-0022). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2016-0162 KEV [KEV] Information Disclosure in Microsoft internet-explorer (CVE-2016-0162)
vulnerability in Microsoft internet-explorer (CVE-2016-0162). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2016-3351 KEV [KEV] Information Disclosure in Microsoft internet-explorer-and-edge (CVE-2016-3351)
vulnerability in Microsoft internet-explorer-and-edge (CVE-2016-3351). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2016-4655 KEV [KEV] Information Disclosure in Apple ios (CVE-2016-4655)
vulnerability in Apple ios (CVE-2016-4655). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2016-3298 KEV [KEV] Information Disclosure in Microsoft internet-explorer (CVE-2016-3298)
vulnerability in Microsoft internet-explorer (CVE-2016-3298). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2018-8611 KEV [KEV] Vulnerability in Microsoft windows (CVE-2018-8611)
vulnerability in Microsoft windows (CVE-2018-8611). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2016-4656 KEV [KEV] Vulnerability in Apple ios (CVE-2016-4656)
vulnerability in Apple ios (CVE-2016-4656). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2017-8291 KEV [KEV] Vulnerability in Artifex ghostscript (CVE-2017-8291)
vulnerability in Artifex ghostscript (CVE-2017-8291). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2017-8543 KEV [KEV] Vulnerability in Microsoft windows (CVE-2017-8543)
vulnerability in Microsoft windows (CVE-2017-8543). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2022-28944 Vulnerability in emcosoftware (CVE-2022-28944)
vulnerability in emcosoftware (CVE-2022-28944). Successful exploitation can lead to full system takeover.
CVE-2022-30014 Cross-Site Request Forgery (CSRF) in csrf (CVE-2022-30014)
vulnerability in csrf (CVE-2022-30014). Successful exploitation can lead to full system takeover.
CVE-2022-29004 Cross-Site Scripting (XSS) in phpgurukul (CVE-2022-29004)
cross-site scripting in phpgurukul (CVE-2022-29004). Risk of unauthorized operations or information disclosure.
CVE-2022-29005 Cross-Site Scripting (XSS) in phpgurukul (CVE-2022-29005)
cross-site scripting in phpgurukul (CVE-2022-29005). Risk of unauthorized operations or information disclosure.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →