Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: cwe Clear
ID Title
CVE-2017-1583 Information Disclosure in ibm (CVE-2017-1583)
vulnerability in ibm (CVE-2017-1583). Confidential information can be exposed externally.
CVE-2017-1523 Vulnerability in ibm (CVE-2017-1523)
vulnerability in ibm (CVE-2017-1523). Confidential information can be exposed externally.
CVE-2017-1375 Vulnerability in ibm (CVE-2017-1375)
vulnerability in ibm (CVE-2017-1375). Confidential information can be exposed externally.
CVE-2017-15871 Vulnerability in dos (CVE-2017-15871)
vulnerability in dos (CVE-2017-15871). Risk of unauthorized operations or information disclosure.
CVE-2017-15874 Vulnerability in c (CVE-2017-15874)
vulnerability in c (CVE-2017-15874). Confidential information can be exposed externally.
CVE-2017-15872 Cross-Site Scripting (XSS) in phpwcms (CVE-2017-15872)
cross-site scripting in phpwcms (CVE-2017-15872). Risk of unauthorized operations or information disclosure.
CVE-2017-15873 Vulnerability in c (CVE-2017-15873)
vulnerability in c (CVE-2017-15873). Risk of unauthorized operations or information disclosure.
CVE-2017-15867 Cross-Site Scripting (XSS) in wordpress (CVE-2017-15867)
cross-site scripting in wordpress (CVE-2017-15867). Risk of unauthorized operations or information disclosure.
CVE-2017-15863 Cross-Site Scripting (XSS) in wordpress (CVE-2017-15863)
cross-site scripting in wordpress (CVE-2017-15863). Risk of unauthorized operations or information disclosure.
CVE-2016-10517 Vulnerability in c (CVE-2016-10517)
vulnerability in c (CVE-2016-10517). Confidential information can be exposed externally.
CVE-2015-5173 Information Disclosure in cloudfoundry (CVE-2015-5173)
vulnerability in cloudfoundry (CVE-2015-5173). Successful exploitation can lead to full system takeover.
CVE-2017-15222 Vulnerability in nftp-project (CVE-2017-15222)
vulnerability in nftp-project (CVE-2017-15222). Successful exploitation can lead to full system takeover.
CVE-2017-15223 Vulnerability in argosoft (CVE-2017-15223)
vulnerability in argosoft (CVE-2017-15223). Risk of unauthorized operations or information disclosure.
CVE-2015-5170 Cross-Site Request Forgery (CSRF) in csrf (CVE-2015-5170)
vulnerability in csrf (CVE-2015-5170). Successful exploitation can lead to full system takeover.
CVE-2017-14696 Vulnerability in salt (CVE-2017-14696)
vulnerability in salt (CVE-2017-14696). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `5f8b5e1a0f23fe0f2be5b3c3e04199b57a53db5b, 2016.3.8, 2016.11.8, 2017.7.2` or later.
CVE-2017-15186 Vulnerability in dos (CVE-2017-15186)
vulnerability in dos (CVE-2017-15186). Risk of unauthorized operations or information disclosure.
CVE-2017-14695 Path Traversal in salt (CVE-2017-14695)
path traversal in salt (CVE-2017-14695). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `80d90307b07b3703428ecbb7c8bb468e28a9ae6d, 2016.3.8, 2016.11.8, 2017.7.2` or later.
CVE-2013-3734 Vulnerability in redhat (CVE-2013-3734)
vulnerability in redhat (CVE-2013-3734). Successful exploitation can lead to full system takeover.
CVE-2014-1203 Command Injection in eyou (CVE-2014-1203)
command injection in eyou (CVE-2014-1203). Successful exploitation can lead to full system takeover.
CVE-2017-15081 In PHPSUGAR PHP Melody CMS 2.6.1, SQL Injection exists via the playlist parameter to playlists.php.
In PHPSUGAR PHP Melody CMS 2.6.1, SQL Injection exists via the playlist parameter to playlists.php.
CVE-2017-12613 Out-of-Bounds Read in apache (CVE-2017-12613)
vulnerability in apache (CVE-2017-12613). Confidential information can be exposed externally.
CVE-2017-12618 Out-of-Bounds Read in apache (CVE-2017-12618)
vulnerability in apache (CVE-2017-12618). Risk of unauthorized operations or information disclosure.
CVE-2017-13682 Vulnerability in symantec (CVE-2017-13682)
vulnerability in symantec (CVE-2017-13682). Risk of unauthorized operations or information disclosure.
CVE-2017-13683 Vulnerability in symantec (CVE-2017-13683)
vulnerability in symantec (CVE-2017-13683). Risk of unauthorized operations or information disclosure.
CVE-2011-4334 Unrestricted File Upload in labwiki-project (CVE-2011-4334)
vulnerability in labwiki-project (CVE-2011-4334). Successful exploitation can lead to full system takeover.
CVE-2011-2684 Vulnerability in rkkda (CVE-2011-2684)
vulnerability in rkkda (CVE-2011-2684). Data can be tampered with by attackers.
CVE-2012-4568 Cross-Site Request Forgery (CSRF) in csrf (CVE-2012-4568)
vulnerability in csrf (CVE-2012-4568). Successful exploitation can lead to full system takeover.
CVE-2015-2878 Cross-Site Request Forgery (CSRF) in csrf (CVE-2015-2878)
vulnerability in csrf (CVE-2015-2878). Successful exploitation can lead to full system takeover.
CVE-2011-2683 Vulnerability in reseed-project (CVE-2011-2683)
vulnerability in reseed-project (CVE-2011-2683). Confidential information can be exposed externally.
CVE-2014-3744 Path Traversal in path-traversal (CVE-2014-3744)
path traversal in path-traversal (CVE-2014-3744). Confidential information can be exposed externally.
CVE-2017-13772 Buffer Overflow in tp-link (CVE-2017-13772)
vulnerability in tp-link (CVE-2017-13772). Successful exploitation can lead to full system takeover.
CVE-2012-4570 SQL Injection in sqli (CVE-2012-4570)
SQL injection in sqli (CVE-2012-4570). Successful exploitation can lead to full system takeover.
CVE-2015-5533 SQL Injection in wordpress (CVE-2015-5533)
SQL injection in wordpress (CVE-2015-5533). Successful exploitation can lead to full system takeover.
CVE-2013-7377 Command Injection in codem-transcode-project (CVE-2013-7377)
command injection in codem-transcode-project (CVE-2013-7377). Successful exploitation can lead to full system takeover.
CVE-2014-3741 Command Injection in node-printer-project (CVE-2014-3741)
command injection in node-printer-project (CVE-2014-3741). Successful exploitation can lead to full system takeover.
CVE-2015-6839 Vulnerability in grupo-msa (CVE-2015-6839)
vulnerability in grupo-msa (CVE-2015-6839). Data can be tampered with by attackers.
CVE-2011-4333 Cross-Site Scripting (XSS) in scilico (CVE-2011-4333)
cross-site scripting in scilico (CVE-2011-4333). Risk of unauthorized operations or information disclosure.
CVE-2012-4567 Cross-Site Scripting (XSS) in letodms-project (CVE-2012-4567)
cross-site scripting in letodms-project (CVE-2012-4567). Risk of unauthorized operations or information disclosure.
CVE-2012-4569 Cross-Site Scripting (XSS) in letodms-project (CVE-2012-4569)
cross-site scripting in letodms-project (CVE-2012-4569). Risk of unauthorized operations or information disclosure.
CVE-2015-5379 Cross-Site Scripting (XSS) in axigen (CVE-2015-5379)
cross-site scripting in axigen (CVE-2015-5379). Risk of unauthorized operations or information disclosure.
CVE-2015-5532 Cross-Site Scripting (XSS) in wordpress (CVE-2015-5532)
cross-site scripting in wordpress (CVE-2015-5532). Risk of unauthorized operations or information disclosure.
CVE-2017-15809 In phpMyFaq before 2.9.9, there is XSS in admin/tags.main.php via a crafted tag.
In phpMyFaq before 2.9.9, there is XSS in admin/tags.main.php via a crafted tag.
CVE-2017-15810 Cross-Site Scripting (XSS) in csharp (CVE-2017-15810)
cross-site scripting in csharp (CVE-2017-15810). Risk of unauthorized operations or information disclosure.
CVE-2017-15811 Cross-Site Scripting (XSS) in wordpress (CVE-2017-15811)
cross-site scripting in wordpress (CVE-2017-15811). Risk of unauthorized operations or information disclosure.
CVE-2017-15812 Cross-Site Scripting (XSS) in wordpress (CVE-2017-15812)
cross-site scripting in wordpress (CVE-2017-15812). Risk of unauthorized operations or information disclosure.
CVE-2017-15808 In phpMyFaq before 2.9.9, there is CSRF in admin/ajax.config.php.
In phpMyFaq before 2.9.9, there is CSRF in admin/ajax.config.php.
CVE-2016-10516 Cross-Site Scripting (XSS) in flask (CVE-2016-10516)
cross-site scripting in flask (CVE-2016-10516). Risk of unauthorized operations or information disclosure.
CVE-2010-2232 Vulnerability in apache (CVE-2010-2232)
vulnerability in apache (CVE-2010-2232). Data can be tampered with by attackers.
CVE-2017-15805 Path Traversal in path-traversal (CVE-2017-15805)
path traversal in path-traversal (CVE-2017-15805). Confidential information can be exposed externally.
CVE-2017-9947 Path Traversal in path-traversal (CVE-2017-9947)
path traversal in path-traversal (CVE-2017-9947). Risk of unauthorized operations or information disclosure.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →