Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: cwe Clear
ID Title
CVE-2015-7778 Vulnerability in gurunavi (CVE-2015-7778)
vulnerability in gurunavi (CVE-2015-7778). Confidential information can be exposed externally.
CVE-2015-6918 salt before 2015.5.5 leaks git usernames and passwords to the log.
salt before 2015.5.5 leaks git usernames and passwords to the log.
CVE-2015-5675 Vulnerability in dos (CVE-2015-5675)
vulnerability in dos (CVE-2015-5675). Successful exploitation can lead to full system takeover.
CVE-2017-12860 Vulnerability in epson (CVE-2017-12860)
vulnerability in epson (CVE-2017-12860). Successful exploitation can lead to full system takeover.
CVE-2017-12861 Vulnerability in epson (CVE-2017-12861)
vulnerability in epson (CVE-2017-12861). Successful exploitation can lead to full system takeover.
CVE-2017-13706 XXE (XML External Entity) in ssrf (CVE-2017-13706)
vulnerability in ssrf (CVE-2017-13706). Successful exploitation can lead to full system takeover.
CVE-2015-2856 Path Traversal in path-traversal (CVE-2015-2856)
path traversal in path-traversal (CVE-2015-2856). Confidential information can be exposed externally.
CVE-2014-9092 Buffer Overflow in dos (CVE-2014-9092)
vulnerability in dos (CVE-2014-9092). Risk of unauthorized operations or information disclosure.
CVE-2017-14943 Information Disclosure in trapezegroup (CVE-2017-14943)
vulnerability in trapezegroup (CVE-2017-14943). Confidential information can be exposed externally.
CVE-2017-15038 Vulnerability in c (CVE-2017-15038)
vulnerability in c (CVE-2017-15038). Confidential information can be exposed externally.
CVE-2017-5637 Vulnerability in apache (CVE-2017-5637)
vulnerability in apache (CVE-2017-5637). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `3.4.10` or later.
CVE-2017-14980 Buffer Overflow in flexense (CVE-2017-14980)
vulnerability in flexense (CVE-2017-14980). Successful exploitation can lead to full system takeover.
CVE-2017-14614 Path Traversal in path-traversal (CVE-2017-14614)
path traversal in path-traversal (CVE-2017-14614). Confidential information can be exposed externally.
CVE-2017-13723 Buffer Overflow in xorg (CVE-2017-13723)
vulnerability in xorg (CVE-2017-13723). Successful exploitation can lead to full system takeover.
CVE-2017-14603 Information Disclosure in digium (CVE-2017-14603)
vulnerability in digium (CVE-2017-14603). Confidential information can be exposed externally.
CVE-2017-13721 Privilege Escalation in xorg (CVE-2017-13721)
vulnerability in xorg (CVE-2017-13721). Risk of unauthorized operations or information disclosure.
CVE-2014-9474 Buffer Overflow in mpfr (CVE-2014-9474)
vulnerability in mpfr (CVE-2014-9474). Successful exploitation can lead to full system takeover.
CVE-2014-0030 XXE (XML External Entity) in apache (CVE-2014-0030)
vulnerability in apache (CVE-2014-0030). Successful exploitation can lead to full system takeover.
CVE-2017-15185 Vulnerability in c (CVE-2017-15185)
vulnerability in c (CVE-2017-15185). Risk of unauthorized operations or information disclosure.
CVE-2017-14973 Cross-Site Scripting (XSS) in identicard (CVE-2017-14973)
cross-site scripting in identicard (CVE-2017-14973). Risk of unauthorized operations or information disclosure.
CVE-2017-14971 Information Disclosure in infocuscorp (CVE-2017-14971)
vulnerability in infocuscorp (CVE-2017-14971). Confidential information can be exposed externally.
CVE-2017-14972 Authentication Bypass in infocus (CVE-2017-14972)
authentication bypass in infocus (CVE-2017-14972). Confidential information can be exposed externally.
CVE-2015-1429 Path Traversal in path-traversal (CVE-2015-1429)
path traversal in path-traversal (CVE-2015-1429). Confidential information can be exposed externally.
CVE-2015-2146 SQL Injection in sqli (CVE-2015-2146)
SQL injection in sqli (CVE-2015-2146). Successful exploitation can lead to full system takeover.
CVE-2015-2147 SQL Injection in sqli (CVE-2015-2147)
SQL injection in sqli (CVE-2015-2147). Successful exploitation can lead to full system takeover.
CVE-2014-8957 Cross-Site Scripting (XSS) in openkm (CVE-2014-8957)
cross-site scripting in openkm (CVE-2014-8957). Risk of unauthorized operations or information disclosure.
CVE-2015-2144 Cross-Site Scripting (XSS) in phpbugtracker-project (CVE-2015-2144)
cross-site scripting in phpbugtracker-project (CVE-2015-2144). Risk of unauthorized operations or information disclosure.
CVE-2015-2145 Cross-Site Scripting (XSS) in phpbugtracker-project (CVE-2015-2145)
cross-site scripting in phpbugtracker-project (CVE-2015-2145). Risk of unauthorized operations or information disclosure.
CVE-2015-2148 Cross-Site Scripting (XSS) in phpbugtracker-project (CVE-2015-2148)
cross-site scripting in phpbugtracker-project (CVE-2015-2148). Risk of unauthorized operations or information disclosure.
CVE-2015-1828 Information Disclosure in httprb-project (CVE-2015-1828)
vulnerability in httprb-project (CVE-2015-1828). Confidential information can be exposed externally.
CVE-2015-2142 Cross-Site Request Forgery (CSRF) in csrf (CVE-2015-2142)
vulnerability in csrf (CVE-2015-2142). Successful exploitation can lead to full system takeover.
CVE-2015-2143 Cross-Site Request Forgery (CSRF) in csrf (CVE-2015-2143)
vulnerability in csrf (CVE-2015-2143). Successful exploitation can lead to full system takeover.
CVE-2015-0296 Vulnerability in tug (CVE-2015-0296)
vulnerability in tug (CVE-2015-0296). Data can be tampered with by attackers.
CVE-2015-2673 Vulnerability in wordpress (CVE-2015-2673)
vulnerability in wordpress (CVE-2015-2673). Successful exploitation can lead to full system takeover.
CVE-2017-15084 The web UI in Rapid7 Metasploit before 4.14.1-20170828 allows logout CSRF, aka R7-2017-22.
The web UI in Rapid7 Metasploit before 4.14.1-20170828 allows logout CSRF, aka R7-2017-22.
CVE-2017-15079 Path Traversal in wordpress (CVE-2017-15079)
path traversal in wordpress (CVE-2017-15079). Confidential information can be exposed externally.
CVE-2017-13069 Command Injection in qnap (CVE-2017-13069)
command injection in qnap (CVE-2017-13069). Successful exploitation can lead to full system takeover.
CVE-2017-9272 Vulnerability in dos (CVE-2017-9272)
vulnerability in dos (CVE-2017-9272). Risk of unauthorized operations or information disclosure.
CVE-2017-13068 SQL Injection in sqli (CVE-2017-13068)
SQL injection in sqli (CVE-2017-13068). Confidential information can be exposed externally.
CVE-2017-1002153 Vulnerability in koji (CVE-2017-1002153)
vulnerability in koji (CVE-2017-1002153). Data can be tampered with by attackers. Mitigation: upgrade to `1.15.0` or later.
CVE-2015-2158 Vulnerability in c (CVE-2015-2158)
vulnerability in c (CVE-2015-2158). Successful exploitation can lead to full system takeover.
CVE-2014-2903 Vulnerability in wolfssl (CVE-2014-2903)
vulnerability in wolfssl (CVE-2014-2903). Confidential information can be exposed externally.
CVE-2015-5246 Vulnerability in theforeman (CVE-2015-5246)
vulnerability in theforeman (CVE-2015-5246). Successful exploitation can lead to full system takeover.
CVE-2015-2297 Vulnerability in dos (CVE-2015-2297)
vulnerability in dos (CVE-2015-2297). Risk of unauthorized operations or information disclosure. Exploitable via `Authorization header`.
CVE-2015-1206 Buffer Overflow in dos (CVE-2015-1206)
vulnerability in dos (CVE-2015-1206). Risk of unauthorized operations or information disclosure.
CVE-2014-7240 Cross-Site Scripting (XSS) in wordpress (CVE-2014-7240)
cross-site scripting in wordpress (CVE-2014-7240). Risk of unauthorized operations or information disclosure.
CVE-2014-8492 Cross-Site Scripting (XSS) in wordpress (CVE-2014-8492)
cross-site scripting in wordpress (CVE-2014-8492). Risk of unauthorized operations or information disclosure.
CVE-2014-8758 Cross-Site Scripting (XSS) in wordpress (CVE-2014-8758)
cross-site scripting in wordpress (CVE-2014-8758). Risk of unauthorized operations or information disclosure.
CVE-2017-1000254 Buffer Overflow in haxx (CVE-2017-1000254)
vulnerability in haxx (CVE-2017-1000254). Risk of unauthorized operations or information disclosure. Exploitable via ``PWD``.
CVE-2017-15056 Vulnerability in cpp (CVE-2017-15056)
vulnerability in cpp (CVE-2017-15056). Successful exploitation can lead to full system takeover.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →