Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2017-9506 |
|
SSRF (Server-Side Request Forgery) in ssrf (CVE-2017-9506)
SSRF in ssrf (CVE-2017-9506). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-13147 |
|
Vulnerability in c (CVE-2017-13147)
vulnerability in c (CVE-2017-13147). Successful exploitation can lead to full system takeover.
|
| CVE-2017-12971 |
|
Cross-Site Scripting (XSS) in apache2triad (CVE-2017-12971)
cross-site scripting in apache2triad (CVE-2017-12971). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-12809 |
|
Vulnerability in dos (CVE-2017-12809)
vulnerability in dos (CVE-2017-12809). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-12970 |
|
Cross-Site Request Forgery (CSRF) in csrf (CVE-2017-12970)
vulnerability in csrf (CVE-2017-12970). Successful exploitation can lead to full system takeover.
|
| CVE-2017-11159 |
|
Vulnerability in synology (CVE-2017-11159)
vulnerability in synology (CVE-2017-11159). Successful exploitation can lead to full system takeover.
|
| CVE-2017-12791 |
|
Path Traversal in salt (CVE-2017-12791)
path traversal in salt (CVE-2017-12791). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `2016.11.7, 2017.7.1` or later.
|
| CVE-2017-13137 |
|
The FormCraft Basic plugin 1.0.5 for WordPress has SQL injection in the id parameter to form.php.
The FormCraft Basic plugin 1.0.5 for WordPress has SQL injection in the id parameter to form.php.
|
| CVE-2017-12844 |
|
Cross-Site Scripting (XSS) in icewarp (CVE-2017-12844)
cross-site scripting in icewarp (CVE-2017-12844). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-13138 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2017-13138)
cross-site scripting in wordpress (CVE-2017-13138). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-11610 |
|
Vulnerability in supervisord (CVE-2017-11610)
vulnerability in supervisord (CVE-2017-11610). Successful exploitation can lead to full system takeover.
|
| CVE-2017-12858 |
|
Vulnerability in c (CVE-2017-12858)
vulnerability in c (CVE-2017-12858). Successful exploitation can lead to full system takeover.
|
| CVE-2017-13144 |
|
Vulnerability in imagemagick (CVE-2017-13144)
vulnerability in imagemagick (CVE-2017-13144). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-13145 |
|
Vulnerability in c (CVE-2017-13145)
vulnerability in c (CVE-2017-13145). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-13139 |
|
Out-of-Bounds Read in c (CVE-2017-13139)
vulnerability in c (CVE-2017-13139). Successful exploitation can lead to full system takeover.
|
| CVE-2017-13142 |
|
Vulnerability in imagemagick (CVE-2017-13142)
vulnerability in imagemagick (CVE-2017-13142). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-13140 |
|
Buffer Overflow in c (CVE-2017-13140)
vulnerability in c (CVE-2017-13140). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-13143 |
|
Information Disclosure in c (CVE-2017-13143)
vulnerability in c (CVE-2017-13143). Confidential information can be exposed externally.
|
| CVE-2017-13141 |
|
Vulnerability in c (CVE-2017-13141)
vulnerability in c (CVE-2017-13141). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-13146 |
|
Vulnerability in c (CVE-2017-13146)
vulnerability in c (CVE-2017-13146). Successful exploitation can lead to full system takeover.
|
| CVE-2017-13131 |
|
Vulnerability in c (CVE-2017-13131)
vulnerability in c (CVE-2017-13131). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-13134 |
|
Out-of-Bounds Read in c (CVE-2017-13134)
vulnerability in c (CVE-2017-13134). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-13133 |
|
Vulnerability in c (CVE-2017-13133)
vulnerability in c (CVE-2017-13133). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-13130 |
|
Vulnerability in bmc (CVE-2017-13130)
vulnerability in bmc (CVE-2017-13130). Successful exploitation can lead to full system takeover.
|
| CVE-2017-1422 |
|
Information Disclosure in ibm (CVE-2017-1422)
vulnerability in ibm (CVE-2017-1422). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-6310 |
|
Information Disclosure in redhat (CVE-2016-6310)
vulnerability in redhat (CVE-2016-6310). Confidential information can be exposed externally.
|
| CVE-2016-6311 |
|
Information Disclosure in redhat (CVE-2016-6311)
vulnerability in redhat (CVE-2016-6311). Risk of unauthorized operations or information disclosure.
|
| CVE-2015-5258 |
|
Cross-site request forgery (CSRF) vulnerability in springframework-social before 1.1.3.
Cross-site request forgery (CSRF) vulnerability in springframework-social before 1.1.3.
|
| CVE-2015-6472 |
|
Vulnerability in wago (CVE-2015-6472)
vulnerability in wago (CVE-2015-6472). Successful exploitation can lead to full system takeover.
|
| CVE-2015-6473 |
|
WAGO IO 750-849 01.01.27 and WAGO IO 750-881 01.02.05 do not contain privilege separation.
WAGO IO 750-849 01.01.27 and WAGO IO 750-881 01.02.05 do not contain privilege separation.
|
| CVE-2016-2102 |
|
HAProxy statistics in openstack-tripleo-image-elements are non-authenticated over the network.
HAProxy statistics in openstack-tripleo-image-elements are non-authenticated over the network.
|
| CVE-2016-4460 |
|
Apache Pony Mail 0.6c through 0.8b allows remote attackers to bypass authentication.
Apache Pony Mail 0.6c through 0.8b allows remote attackers to bypass authentication.
|
| CVE-2017-5208 |
|
Vulnerability in dos (CVE-2017-5208)
vulnerability in dos (CVE-2017-5208). Successful exploitation can lead to full system takeover.
|
| CVE-2017-12785 |
|
Buffer Overflow in noviflow (CVE-2017-12785)
vulnerability in noviflow (CVE-2017-12785). Successful exploitation can lead to full system takeover.
|
| CVE-2017-12786 |
|
Buffer Overflow in noviflow (CVE-2017-12786)
vulnerability in noviflow (CVE-2017-12786). Successful exploitation can lead to full system takeover.
|
| CVE-2017-12787 |
|
Buffer Overflow in noviflow (CVE-2017-12787)
vulnerability in noviflow (CVE-2017-12787). Successful exploitation can lead to full system takeover.
|
| CVE-2015-3617 |
|
Vulnerability in fortinet (CVE-2015-3617)
vulnerability in fortinet (CVE-2015-3617). Successful exploitation can lead to full system takeover.
|
| CVE-2015-2857 |
|
Command Injection in accellion (CVE-2015-2857)
command injection in accellion (CVE-2015-2857). Successful exploitation can lead to full system takeover.
|
| CVE-2014-6189 |
|
Cross-Site Scripting (XSS) in ibm (CVE-2014-6189)
cross-site scripting in ibm (CVE-2014-6189). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-12843 |
|
Vulnerability in cyrusimap (CVE-2017-12843)
vulnerability in cyrusimap (CVE-2017-12843). Data can be tampered with by attackers.
|
| CVE-2017-7557 |
|
Authentication Bypass in csrf (CVE-2017-7557)
authentication bypass in csrf (CVE-2017-7557). Successful exploitation can lead to full system takeover.
|
| CVE-2017-13065 |
|
Vulnerability in c (CVE-2017-13065)
vulnerability in c (CVE-2017-13065). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-13063 |
|
Buffer Overflow in c (CVE-2017-13063)
vulnerability in c (CVE-2017-13063). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-13064 |
|
Buffer Overflow in c (CVE-2017-13064)
vulnerability in c (CVE-2017-13064). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-13061 |
|
Vulnerability in c (CVE-2017-13061)
vulnerability in c (CVE-2017-13061). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-13058 |
|
Vulnerability in c (CVE-2017-13058)
vulnerability in c (CVE-2017-13058). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-13059 |
|
Vulnerability in c (CVE-2017-13059)
vulnerability in c (CVE-2017-13059). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-13060 |
|
Vulnerability in c (CVE-2017-13060)
vulnerability in c (CVE-2017-13060). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-13062 |
|
Vulnerability in c (CVE-2017-13062)
vulnerability in c (CVE-2017-13062). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-13066 |
|
GraphicsMagick 1.3.26 has a memory leak vulnerability in the function CloneImage in magick/image.c.
GraphicsMagick 1.3.26 has a memory leak vulnerability in the function CloneImage in magick/image.c.
|