Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2017-14842 |
|
SQL Injection in wordpress (CVE-2017-14842)
SQL injection in wordpress (CVE-2017-14842). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14843 |
|
Mojoomla School Management System for WordPress allows SQL Injection via the id parameter.
Mojoomla School Management System for WordPress allows SQL Injection via the id parameter.
|
| CVE-2017-14844 |
|
Mojoomla WPGYM WordPress Gym Management System allows SQL Injection via the id parameter.
Mojoomla WPGYM WordPress Gym Management System allows SQL Injection via the id parameter.
|
| CVE-2017-14845 |
|
Mojoomla WPCHURCH Church Management System for WordPress allows SQL Injection via the id parameter.
Mojoomla WPCHURCH Church Management System for WordPress allows SQL Injection via the id parameter.
|
| CVE-2017-14846 |
|
Mojoomla Hospital Management System for WordPress allows SQL Injection via the id parameter.
Mojoomla Hospital Management System for WordPress allows SQL Injection via the id parameter.
|
| CVE-2017-14847 |
|
Mojoomla WPAMS Apartment Management System for WordPress allows SQL Injection via the id parameter.
Mojoomla WPAMS Apartment Management System for WordPress allows SQL Injection via the id parameter.
|
| CVE-2017-1591 |
|
Cross-Site Scripting (XSS) in ibm (CVE-2017-1591)
cross-site scripting in ibm (CVE-2017-1591). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-1407 |
|
Command Injection in ibm (CVE-2017-1407)
command injection in ibm (CVE-2017-1407). Successful exploitation can lead to full system takeover.
|
| CVE-2017-12621 |
|
XXE (XML External Entity) in apache (CVE-2017-12621)
vulnerability in apache (CVE-2017-12621). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14526 |
|
XXE (XML External Entity) in dos (CVE-2017-14526)
vulnerability in dos (CVE-2017-14526). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14527 |
|
XXE (XML External Entity) in dos (CVE-2017-14527)
vulnerability in dos (CVE-2017-14527). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14622 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2017-14622)
cross-site scripting in wordpress (CVE-2017-14622). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-14795 |
|
Out-of-Bounds Read in c (CVE-2017-14795)
vulnerability in c (CVE-2017-14795). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14524 |
|
Open Redirect in opentext (CVE-2017-14524)
vulnerability in opentext (CVE-2017-14524). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-14525 |
|
Open Redirect in opentext (CVE-2017-14525)
vulnerability in opentext (CVE-2017-14525). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-14775 |
|
Information Disclosure in laravel (CVE-2017-14775)
vulnerability in laravel (CVE-2017-14775). Confidential information can be exposed externally.
|
| CVE-2017-14796 |
|
Vulnerability in c (CVE-2017-14796)
vulnerability in c (CVE-2017-14796). Successful exploitation can lead to full system takeover.
|
| CVE-2017-13676 |
|
Code Injection in norton (CVE-2017-13676)
code injection in norton (CVE-2017-13676). Successful exploitation can lead to full system takeover.
|
| CVE-2017-11120 |
|
Buffer Overflow in broadcom (CVE-2017-11120)
vulnerability in broadcom (CVE-2017-11120). Successful exploitation can lead to full system takeover.
|
| CVE-2017-11121 |
|
Buffer Overflow in dos (CVE-2017-11121)
vulnerability in dos (CVE-2017-11121). Successful exploitation can lead to full system takeover.
|
| CVE-2017-12814 |
|
Buffer Overflow in perl (CVE-2017-12814)
vulnerability in perl (CVE-2017-12814). Successful exploitation can lead to full system takeover.
|
| CVE-2017-10932 |
|
Unsafe Deserialization in c (CVE-2017-10932)
vulnerability in c (CVE-2017-10932). Successful exploitation can lead to full system takeover.
|
| CVE-2015-1336 |
|
Vulnerability in man-db-project (CVE-2015-1336)
vulnerability in man-db-project (CVE-2015-1336). Successful exploitation can lead to full system takeover.
|
| CVE-2015-3138 |
|
Vulnerability in c (CVE-2015-3138)
vulnerability in c (CVE-2015-3138). Risk of unauthorized operations or information disclosure.
|
| CVE-2015-5613 |
|
Cross-Site Scripting (XSS) in octobercms (CVE-2015-5613)
cross-site scripting in octobercms (CVE-2015-5613). Risk of unauthorized operations or information disclosure.
|
| CVE-2015-7349 |
|
Cross-Site Scripting (XSS) in vasco (CVE-2015-7349)
cross-site scripting in vasco (CVE-2015-7349). Risk of unauthorized operations or information disclosure.
|
| CVE-2015-1526 |
|
Vulnerability in dos (CVE-2015-1526)
vulnerability in dos (CVE-2015-1526). Risk of unauthorized operations or information disclosure.
|
| CVE-2015-1537 |
|
Vulnerability in cpp (CVE-2015-1537)
vulnerability in cpp (CVE-2015-1537). Successful exploitation can lead to full system takeover.
|
| CVE-2015-8249 |
|
Unrestricted File Upload in manageengine (CVE-2015-8249)
vulnerability in manageengine (CVE-2015-8249). Successful exploitation can lead to full system takeover.
|
| CVE-2014-9686 |
|
Vulnerability in dos (CVE-2014-9686)
vulnerability in dos (CVE-2014-9686). Risk of unauthorized operations or information disclosure.
|
| CVE-2015-3643 |
|
Vulnerability in usb-creator-project (CVE-2015-3643)
vulnerability in usb-creator-project (CVE-2015-3643). Successful exploitation can lead to full system takeover.
|
| CVE-2014-8878 |
|
Vulnerability in kde (CVE-2014-8878)
vulnerability in kde (CVE-2014-8878). Confidential information can be exposed externally.
|
| CVE-2015-7256 |
|
Vulnerability in zyxel (CVE-2015-7256)
vulnerability in zyxel (CVE-2015-7256). Confidential information can be exposed externally.
|
| CVE-2017-14764 |
|
Code Injection in genixcms (CVE-2017-14764)
code injection in genixcms (CVE-2017-14764). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14766 |
|
Authentication Bypass in wordpress (CVE-2017-14766)
authentication bypass in wordpress (CVE-2017-14766). Data can be tampered with by attackers.
|
| CVE-2017-14767 |
|
Buffer Overflow in c (CVE-2017-14767)
vulnerability in c (CVE-2017-14767). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14760 |
|
SQL Injection in wordpress (CVE-2017-14760)
SQL injection in wordpress (CVE-2017-14760). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14761 |
|
In GeniXCMS 1.1.4, /inc/lib/backend/menus.control.php has XSS via the id parameter.
In GeniXCMS 1.1.4, /inc/lib/backend/menus.control.php has XSS via the id parameter.
|
| CVE-2017-14762 |
|
In GeniXCMS 1.1.4, /inc/lib/Control/Backend/menus.control.php has XSS via the id parameter.
In GeniXCMS 1.1.4, /inc/lib/Control/Backend/menus.control.php has XSS via the id parameter.
|
| CVE-2017-14765 |
|
In GeniXCMS 1.1.4, gxadmin/index.php has XSS via the Menu ID field in a page=menus request.
In GeniXCMS 1.1.4, gxadmin/index.php has XSS via the Menu ID field in a page=menus request.
|
| CVE-2017-14753 |
|
Cross-Site Scripting (XSS) in eyesofnetwork (CVE-2017-14753)
cross-site scripting in eyesofnetwork (CVE-2017-14753). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-14751 |
|
The Intense WP "WP Jobs" plugin 1.5 for WordPress has XSS, related to the Job Qualification field.
The Intense WP "WP Jobs" plugin 1.5 for WordPress has XSS, related to the Job Qualification field.
|
| CVE-2017-14749 |
|
Buffer Overflow in dos (CVE-2017-14749)
vulnerability in dos (CVE-2017-14749). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14748 |
|
Vulnerability in dos (CVE-2017-14748)
vulnerability in dos (CVE-2017-14748). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-1527 |
|
XXE (XML External Entity) in ibm (CVE-2017-1527)
vulnerability in ibm (CVE-2017-1527). Confidential information can be exposed externally.
|
| CVE-2017-1425 |
|
Cross-Site Scripting (XSS) in ibm (CVE-2017-1425)
cross-site scripting in ibm (CVE-2017-1425). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-1530 |
|
Cross-Site Scripting (XSS) in ibm (CVE-2017-1530)
cross-site scripting in ibm (CVE-2017-1530). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-1531 |
|
Cross-Site Scripting (XSS) in ibm (CVE-2017-1531)
cross-site scripting in ibm (CVE-2017-1531). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-14745 |
|
Vulnerability in c (CVE-2017-14745)
vulnerability in c (CVE-2017-14745). Successful exploitation can lead to full system takeover.
|
| CVE-2015-7390 |
|
SQL Injection in sqli (CVE-2015-7390)
SQL injection in sqli (CVE-2015-7390). Successful exploitation can lead to full system takeover.
|