Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: cwe Clear
ID Title
CVE-2017-14842 SQL Injection in wordpress (CVE-2017-14842)
SQL injection in wordpress (CVE-2017-14842). Successful exploitation can lead to full system takeover.
CVE-2017-14843 Mojoomla School Management System for WordPress allows SQL Injection via the id parameter.
Mojoomla School Management System for WordPress allows SQL Injection via the id parameter.
CVE-2017-14844 Mojoomla WPGYM WordPress Gym Management System allows SQL Injection via the id parameter.
Mojoomla WPGYM WordPress Gym Management System allows SQL Injection via the id parameter.
CVE-2017-14845 Mojoomla WPCHURCH Church Management System for WordPress allows SQL Injection via the id parameter.
Mojoomla WPCHURCH Church Management System for WordPress allows SQL Injection via the id parameter.
CVE-2017-14846 Mojoomla Hospital Management System for WordPress allows SQL Injection via the id parameter.
Mojoomla Hospital Management System for WordPress allows SQL Injection via the id parameter.
CVE-2017-14847 Mojoomla WPAMS Apartment Management System for WordPress allows SQL Injection via the id parameter.
Mojoomla WPAMS Apartment Management System for WordPress allows SQL Injection via the id parameter.
CVE-2017-1591 Cross-Site Scripting (XSS) in ibm (CVE-2017-1591)
cross-site scripting in ibm (CVE-2017-1591). Risk of unauthorized operations or information disclosure.
CVE-2017-1407 Command Injection in ibm (CVE-2017-1407)
command injection in ibm (CVE-2017-1407). Successful exploitation can lead to full system takeover.
CVE-2017-12621 XXE (XML External Entity) in apache (CVE-2017-12621)
vulnerability in apache (CVE-2017-12621). Successful exploitation can lead to full system takeover.
CVE-2017-14526 XXE (XML External Entity) in dos (CVE-2017-14526)
vulnerability in dos (CVE-2017-14526). Successful exploitation can lead to full system takeover.
CVE-2017-14527 XXE (XML External Entity) in dos (CVE-2017-14527)
vulnerability in dos (CVE-2017-14527). Successful exploitation can lead to full system takeover.
CVE-2017-14622 Cross-Site Scripting (XSS) in wordpress (CVE-2017-14622)
cross-site scripting in wordpress (CVE-2017-14622). Risk of unauthorized operations or information disclosure.
CVE-2017-14795 Out-of-Bounds Read in c (CVE-2017-14795)
vulnerability in c (CVE-2017-14795). Successful exploitation can lead to full system takeover.
CVE-2017-14524 Open Redirect in opentext (CVE-2017-14524)
vulnerability in opentext (CVE-2017-14524). Risk of unauthorized operations or information disclosure.
CVE-2017-14525 Open Redirect in opentext (CVE-2017-14525)
vulnerability in opentext (CVE-2017-14525). Risk of unauthorized operations or information disclosure.
CVE-2017-14775 Information Disclosure in laravel (CVE-2017-14775)
vulnerability in laravel (CVE-2017-14775). Confidential information can be exposed externally.
CVE-2017-14796 Vulnerability in c (CVE-2017-14796)
vulnerability in c (CVE-2017-14796). Successful exploitation can lead to full system takeover.
CVE-2017-13676 Code Injection in norton (CVE-2017-13676)
code injection in norton (CVE-2017-13676). Successful exploitation can lead to full system takeover.
CVE-2017-11120 Buffer Overflow in broadcom (CVE-2017-11120)
vulnerability in broadcom (CVE-2017-11120). Successful exploitation can lead to full system takeover.
CVE-2017-11121 Buffer Overflow in dos (CVE-2017-11121)
vulnerability in dos (CVE-2017-11121). Successful exploitation can lead to full system takeover.
CVE-2017-12814 Buffer Overflow in perl (CVE-2017-12814)
vulnerability in perl (CVE-2017-12814). Successful exploitation can lead to full system takeover.
CVE-2017-10932 Unsafe Deserialization in c (CVE-2017-10932)
vulnerability in c (CVE-2017-10932). Successful exploitation can lead to full system takeover.
CVE-2015-1336 Vulnerability in man-db-project (CVE-2015-1336)
vulnerability in man-db-project (CVE-2015-1336). Successful exploitation can lead to full system takeover.
CVE-2015-3138 Vulnerability in c (CVE-2015-3138)
vulnerability in c (CVE-2015-3138). Risk of unauthorized operations or information disclosure.
CVE-2015-5613 Cross-Site Scripting (XSS) in octobercms (CVE-2015-5613)
cross-site scripting in octobercms (CVE-2015-5613). Risk of unauthorized operations or information disclosure.
CVE-2015-7349 Cross-Site Scripting (XSS) in vasco (CVE-2015-7349)
cross-site scripting in vasco (CVE-2015-7349). Risk of unauthorized operations or information disclosure.
CVE-2015-1526 Vulnerability in dos (CVE-2015-1526)
vulnerability in dos (CVE-2015-1526). Risk of unauthorized operations or information disclosure.
CVE-2015-1537 Vulnerability in cpp (CVE-2015-1537)
vulnerability in cpp (CVE-2015-1537). Successful exploitation can lead to full system takeover.
CVE-2015-8249 Unrestricted File Upload in manageengine (CVE-2015-8249)
vulnerability in manageengine (CVE-2015-8249). Successful exploitation can lead to full system takeover.
CVE-2014-9686 Vulnerability in dos (CVE-2014-9686)
vulnerability in dos (CVE-2014-9686). Risk of unauthorized operations or information disclosure.
CVE-2015-3643 Vulnerability in usb-creator-project (CVE-2015-3643)
vulnerability in usb-creator-project (CVE-2015-3643). Successful exploitation can lead to full system takeover.
CVE-2014-8878 Vulnerability in kde (CVE-2014-8878)
vulnerability in kde (CVE-2014-8878). Confidential information can be exposed externally.
CVE-2015-7256 Vulnerability in zyxel (CVE-2015-7256)
vulnerability in zyxel (CVE-2015-7256). Confidential information can be exposed externally.
CVE-2017-14764 Code Injection in genixcms (CVE-2017-14764)
code injection in genixcms (CVE-2017-14764). Successful exploitation can lead to full system takeover.
CVE-2017-14766 Authentication Bypass in wordpress (CVE-2017-14766)
authentication bypass in wordpress (CVE-2017-14766). Data can be tampered with by attackers.
CVE-2017-14767 Buffer Overflow in c (CVE-2017-14767)
vulnerability in c (CVE-2017-14767). Successful exploitation can lead to full system takeover.
CVE-2017-14760 SQL Injection in wordpress (CVE-2017-14760)
SQL injection in wordpress (CVE-2017-14760). Successful exploitation can lead to full system takeover.
CVE-2017-14761 In GeniXCMS 1.1.4, /inc/lib/backend/menus.control.php has XSS via the id parameter.
In GeniXCMS 1.1.4, /inc/lib/backend/menus.control.php has XSS via the id parameter.
CVE-2017-14762 In GeniXCMS 1.1.4, /inc/lib/Control/Backend/menus.control.php has XSS via the id parameter.
In GeniXCMS 1.1.4, /inc/lib/Control/Backend/menus.control.php has XSS via the id parameter.
CVE-2017-14765 In GeniXCMS 1.1.4, gxadmin/index.php has XSS via the Menu ID field in a page=menus request.
In GeniXCMS 1.1.4, gxadmin/index.php has XSS via the Menu ID field in a page=menus request.
CVE-2017-14753 Cross-Site Scripting (XSS) in eyesofnetwork (CVE-2017-14753)
cross-site scripting in eyesofnetwork (CVE-2017-14753). Risk of unauthorized operations or information disclosure.
CVE-2017-14751 The Intense WP "WP Jobs" plugin 1.5 for WordPress has XSS, related to the Job Qualification field.
The Intense WP "WP Jobs" plugin 1.5 for WordPress has XSS, related to the Job Qualification field.
CVE-2017-14749 Buffer Overflow in dos (CVE-2017-14749)
vulnerability in dos (CVE-2017-14749). Successful exploitation can lead to full system takeover.
CVE-2017-14748 Vulnerability in dos (CVE-2017-14748)
vulnerability in dos (CVE-2017-14748). Risk of unauthorized operations or information disclosure.
CVE-2017-1527 XXE (XML External Entity) in ibm (CVE-2017-1527)
vulnerability in ibm (CVE-2017-1527). Confidential information can be exposed externally.
CVE-2017-1425 Cross-Site Scripting (XSS) in ibm (CVE-2017-1425)
cross-site scripting in ibm (CVE-2017-1425). Risk of unauthorized operations or information disclosure.
CVE-2017-1530 Cross-Site Scripting (XSS) in ibm (CVE-2017-1530)
cross-site scripting in ibm (CVE-2017-1530). Risk of unauthorized operations or information disclosure.
CVE-2017-1531 Cross-Site Scripting (XSS) in ibm (CVE-2017-1531)
cross-site scripting in ibm (CVE-2017-1531). Risk of unauthorized operations or information disclosure.
CVE-2017-14745 Vulnerability in c (CVE-2017-14745)
vulnerability in c (CVE-2017-14745). Successful exploitation can lead to full system takeover.
CVE-2015-7390 SQL Injection in sqli (CVE-2015-7390)
SQL injection in sqli (CVE-2015-7390). Successful exploitation can lead to full system takeover.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →