Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2017-1502 |
|
Cross-Site Scripting (XSS) in ibm (CVE-2017-1502)
cross-site scripting in ibm (CVE-2017-1502). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-14181 |
|
Vulnerability in c (CVE-2017-14181)
vulnerability in c (CVE-2017-14181). Successful exploitation can lead to full system takeover.
|
| CVE-2013-7428 |
|
Vulnerability in dos (CVE-2013-7428)
vulnerability in dos (CVE-2013-7428). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-14147 |
|
Authentication Bypass in fiberhome (CVE-2017-14147)
authentication bypass in fiberhome (CVE-2017-14147). Successful exploitation can lead to full system takeover.
|
| CVE-2017-12911 |
|
Buffer Overflow in c (CVE-2017-12911)
vulnerability in c (CVE-2017-12911). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-12912 |
|
Buffer Overflow in c (CVE-2017-12912)
vulnerability in c (CVE-2017-12912). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-9834 |
|
SQL Injection in wordpress (CVE-2017-9834)
SQL injection in wordpress (CVE-2017-9834). Successful exploitation can lead to full system takeover.
|
| CVE-2015-1590 |
|
Vulnerability in kamailio (CVE-2015-1590)
vulnerability in kamailio (CVE-2015-1590). Successful exploitation can lead to full system takeover.
|
| CVE-2015-3250 |
|
Information Disclosure in apache (CVE-2015-3250)
vulnerability in apache (CVE-2015-3250). Confidential information can be exposed externally.
|
| CVE-2016-0732 |
|
Privilege Escalation in cloudfoundry (CVE-2016-0732)
vulnerability in cloudfoundry (CVE-2016-0732). Successful exploitation can lead to full system takeover.
|
| CVE-2017-13771 |
|
Vulnerability in lexmark (CVE-2017-13771)
vulnerability in lexmark (CVE-2017-13771). Successful exploitation can lead to full system takeover.
|
| CVE-2017-11567 |
|
Cross-Site Request Forgery (CSRF) in csrf (CVE-2017-11567)
vulnerability in csrf (CVE-2017-11567). Successful exploitation can lead to full system takeover.
|
| CVE-2017-12838 |
|
Cross-Site Request Forgery (CSRF) in csrf (CVE-2017-12838)
vulnerability in csrf (CVE-2017-12838). Successful exploitation can lead to full system takeover.
|
| CVE-2015-3442 |
|
Authentication Bypass in soreco (CVE-2015-3442)
authentication bypass in soreco (CVE-2015-3442). Successful exploitation can lead to full system takeover.
|
| CVE-2017-9458 |
|
XXE (XML External Entity) in ssrf (CVE-2017-9458)
vulnerability in ssrf (CVE-2017-9458). Successful exploitation can lead to full system takeover.
|
| CVE-2017-12416 |
|
Cross-Site Scripting (XSS) in paloaltonetworks (CVE-2017-12416)
cross-site scripting in paloaltonetworks (CVE-2017-12416). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-12794 |
|
Cross-Site Scripting (XSS) in django (CVE-2017-12794)
cross-site scripting in django (CVE-2017-12794). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-12906 |
|
Cross-Site Scripting (XSS) in nexusphp-project (CVE-2017-12906)
cross-site scripting in nexusphp-project (CVE-2017-12906). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-13754 |
|
Cross-Site Scripting (XSS) in wibu (CVE-2017-13754)
cross-site scripting in wibu (CVE-2017-13754). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-13713 |
|
OS Command Injection in twsz (CVE-2017-13713)
OS command injection in twsz (CVE-2017-13713). Successful exploitation can lead to full system takeover.
|
| CVE-2017-6362 |
|
Vulnerability in dos (CVE-2017-6362)
vulnerability in dos (CVE-2017-6362). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-12133 |
|
Use-After-Free in c (CVE-2017-12133)
vulnerability in c (CVE-2017-12133). Data can be tampered with by attackers.
|
| CVE-2017-14169 |
|
Vulnerability in c (CVE-2017-14169)
vulnerability in c (CVE-2017-14169). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14173 |
|
Vulnerability in c (CVE-2017-14173)
vulnerability in c (CVE-2017-14173). Risk of unauthorized operations or information disclosure.
|
| CVE-2015-2210 |
|
Command Injection in epicor (CVE-2015-2210)
command injection in epicor (CVE-2015-2210). Successful exploitation can lead to full system takeover.
|
| CVE-2015-0853 |
|
Vulnerability in pysvn-project (CVE-2015-0853)
vulnerability in pysvn-project (CVE-2015-0853). Successful exploitation can lead to full system takeover.
|
| CVE-2015-5186 |
|
Audit before 2.4.4 in Linux does not sanitize escape characters in filenames.
Audit before 2.4.4 in Linux does not sanitize escape characters in filenames.
|
| CVE-2015-3160 |
|
XXE (XML External Entity) in beaker-project (CVE-2015-3160)
vulnerability in beaker-project (CVE-2015-3160). Risk of unauthorized operations or information disclosure.
|
| CVE-2015-7241 |
|
XML External Entity (XXE) vulnerability in SAP Netweaver before 7.01.
XML External Entity (XXE) vulnerability in SAP Netweaver before 7.01.
|
| CVE-2015-3161 |
|
Cross-Site Scripting (XSS) in beaker-project (CVE-2015-3161)
cross-site scripting in beaker-project (CVE-2015-3161). Risk of unauthorized operations or information disclosure.
|
| CVE-2015-3162 |
|
Cross-Site Scripting (XSS) in beaker-project (CVE-2015-3162)
cross-site scripting in beaker-project (CVE-2015-3162). Risk of unauthorized operations or information disclosure.
|
| CVE-2015-3454 |
|
Information Disclosure in vulcanjs (CVE-2015-3454)
vulnerability in vulcanjs (CVE-2015-3454). Confidential information can be exposed externally.
|
| CVE-2015-5959 |
|
Information Disclosure in froxlor (CVE-2015-5959)
vulnerability in froxlor (CVE-2015-5959). Successful exploitation can lead to full system takeover.
|
| CVE-2015-6250 |
|
Information Disclosure in simple-php-captcha-project (CVE-2015-6250)
vulnerability in simple-php-captcha-project (CVE-2015-6250). Risk of unauthorized operations or information disclosure.
|
| CVE-2015-5705 |
|
Vulnerability in devscripts-devel-team (CVE-2015-5705)
vulnerability in devscripts-devel-team (CVE-2015-5705). Data can be tampered with by attackers.
|
| CVE-2014-6438 |
|
Vulnerability in dos (CVE-2014-6438)
vulnerability in dos (CVE-2014-6438). Risk of unauthorized operations or information disclosure.
|
| CVE-2015-7225 |
|
Vulnerability in tinfoilsecurity (CVE-2015-7225)
vulnerability in tinfoilsecurity (CVE-2015-7225). Confidential information can be exposed externally.
|
| CVE-2015-5947 |
|
SuiteCRM before 7.2.3 allows remote attackers to execute arbitrary code.
SuiteCRM before 7.2.3 allows remote attackers to execute arbitrary code.
|
| CVE-2015-5948 |
|
Vulnerability in salesagility (CVE-2015-5948)
vulnerability in salesagility (CVE-2015-5948). Successful exploitation can lead to full system takeover.
|
| CVE-2015-3163 |
|
Vulnerability in redhat (CVE-2015-3163)
vulnerability in redhat (CVE-2015-3163). Risk of unauthorized operations or information disclosure.
|
| CVE-2015-2943 |
|
Honda Moto LINC 1.6.1 does not verify SSL certificates.
Honda Moto LINC 1.6.1 does not verify SSL certificates.
|
| CVE-2015-3450 |
|
Buffer Overflow in dos (CVE-2015-3450)
vulnerability in dos (CVE-2015-3450). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14164 |
|
Buffer Overflow in c (CVE-2017-14164)
vulnerability in c (CVE-2017-14164). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14165 |
|
Buffer Overflow in c (CVE-2017-14165)
vulnerability in c (CVE-2017-14165). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-14166 |
|
Out-of-Bounds Read in c (CVE-2017-14166)
vulnerability in c (CVE-2017-14166). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-12474 |
|
Vulnerability in cpp (CVE-2017-12474)
vulnerability in cpp (CVE-2017-12474). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-12475 |
|
Vulnerability in cpp (CVE-2017-12475)
vulnerability in cpp (CVE-2017-12475). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-12476 |
|
Vulnerability in cpp (CVE-2017-12476)
vulnerability in cpp (CVE-2017-12476). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-1458 |
|
XXE (XML External Entity) in ibm (CVE-2017-1458)
vulnerability in ibm (CVE-2017-1458). Confidential information can be exposed externally.
|
| CVE-2017-1457 |
|
Cross-Site Scripting (XSS) in ibm (CVE-2017-1457)
cross-site scripting in ibm (CVE-2017-1457). Risk of unauthorized operations or information disclosure.
|