Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2017-1000023 |
|
Cross-Site Scripting (XSS) in logicaldoc (CVE-2017-1000023)
cross-site scripting in logicaldoc (CVE-2017-1000023). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-1000032 |
|
Cross-Site Scripting (XSS) in cacti (CVE-2017-1000032)
cross-site scripting in cacti (CVE-2017-1000032). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-1000009 |
|
OS Command Injection in akeneo (CVE-2017-1000009)
OS command injection in akeneo (CVE-2017-1000009). Successful exploitation can lead to full system takeover.
|
| CVE-2017-1000013 |
|
phpMyAdmin 4.0, 4.4, and 4.6 are vulnerable to an open redirect weakness
phpMyAdmin 4.0, 4.4, and 4.6 are vulnerable to an open redirect weakness
|
| CVE-2017-1000027 |
|
Open Redirect in koozali (CVE-2017-1000027)
vulnerability in koozali (CVE-2017-1000027). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-1000025 |
|
Information Disclosure in gnome (CVE-2017-1000025)
vulnerability in gnome (CVE-2017-1000025). Confidential information can be exposed externally.
|
| CVE-2017-1000029 |
|
Information Disclosure in c (CVE-2017-1000029)
vulnerability in c (CVE-2017-1000029). Confidential information can be exposed externally.
|
| CVE-2017-1000003 |
|
Privilege Escalation in privilege-escalation (CVE-2017-1000003)
vulnerability in privilege-escalation (CVE-2017-1000003). Successful exploitation can lead to full system takeover.
|
| CVE-2017-1000022 |
|
Vulnerability in privilege-escalation (CVE-2017-1000022)
vulnerability in privilege-escalation (CVE-2017-1000022). Successful exploitation can lead to full system takeover.
|
| CVE-2017-1000008 |
|
Cross-Site Request Forgery (CSRF) in csrf (CVE-2017-1000008)
vulnerability in csrf (CVE-2017-1000008). Successful exploitation can lead to full system takeover.
|
| CVE-2017-1000017 |
|
SSRF (Server-Side Request Forgery) in phpmyadmin (CVE-2017-1000017)
SSRF in phpmyadmin (CVE-2017-1000017). Successful exploitation can lead to full system takeover.
|
| CVE-2017-1000026 |
|
Path Traversal in path-traversal (CVE-2017-1000026)
path traversal in path-traversal (CVE-2017-1000026). Data can be tampered with by attackers.
|
| CVE-2017-1000028 |
|
Path Traversal in path-traversal (CVE-2017-1000028)
path traversal in path-traversal (CVE-2017-1000028). Confidential information can be exposed externally.
|
| CVE-2017-1000020 |
|
Authentication Bypass in ecos (CVE-2017-1000020)
authentication bypass in ecos (CVE-2017-1000020). Successful exploitation can lead to full system takeover.
|
| CVE-2017-1000030 |
|
Authentication Bypass in oracle (CVE-2017-1000030)
authentication bypass in oracle (CVE-2017-1000030). Successful exploitation can lead to full system takeover.
|
| CVE-2017-1000007 |
|
Information Disclosure in txaws (CVE-2017-1000007)
vulnerability in txaws (CVE-2017-1000007). Confidential information can be exposed externally.
|
| CVE-2017-1000010 |
|
Vulnerability in audacityteam (CVE-2017-1000010)
vulnerability in audacityteam (CVE-2017-1000010). Successful exploitation can lead to full system takeover.
|
| CVE-2017-1000002 |
|
Path Traversal in path-traversal (CVE-2017-1000002)
path traversal in path-traversal (CVE-2017-1000002). Successful exploitation can lead to full system takeover.
|
| CVE-2017-1000001 |
|
Vulnerability in fedoraproject (CVE-2017-1000001)
vulnerability in fedoraproject (CVE-2017-1000001). Data can be tampered with by attackers.
|
| CVE-2017-0152 |
|
Buffer Overflow in microsoft (CVE-2017-0152)
vulnerability in microsoft (CVE-2017-0152). Successful exploitation can lead to full system takeover.
|
| CVE-2017-0196 |
|
Information Disclosure in microsoft (CVE-2017-0196)
vulnerability in microsoft (CVE-2017-0196). Confidential information can be exposed externally.
|
| CVE-2017-0028 |
|
Buffer Overflow in microsoft (CVE-2017-0028)
vulnerability in microsoft (CVE-2017-0028). Successful exploitation can lead to full system takeover.
|
| CVE-2016-4982 |
|
Vulnerability in teether (CVE-2016-4982)
vulnerability in teether (CVE-2016-4982). Confidential information can be exposed externally.
|
| CVE-2016-4984 |
|
Vulnerability in openldap (CVE-2016-4984)
vulnerability in openldap (CVE-2016-4984). Confidential information can be exposed externally.
|
| CVE-2016-6312 |
|
Vulnerability in apache (CVE-2016-6312)
vulnerability in apache (CVE-2016-6312). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-6793 |
|
Unsafe Deserialization in apache (CVE-2016-6793)
vulnerability in apache (CVE-2016-6793). Data can be tampered with by attackers.
|
| CVE-2016-4996 |
|
Vulnerability in redhat (CVE-2016-4996)
vulnerability in redhat (CVE-2016-4996). Successful exploitation can lead to full system takeover.
|
| CVE-2016-10398 |
|
Vulnerability in google (CVE-2016-10398)
vulnerability in google (CVE-2016-10398). Successful exploitation can lead to full system takeover.
|
| CVE-2016-0764 |
|
Vulnerability in redhat (CVE-2016-0764)
vulnerability in redhat (CVE-2016-0764). Confidential information can be exposed externally.
|
| CVE-2015-5152 |
|
Information Disclosure in theforeman (CVE-2015-5152)
vulnerability in theforeman (CVE-2015-5152). Successful exploitation can lead to full system takeover.
|
| CVE-2015-0249 |
|
Code Injection in apache (CVE-2015-0249)
code injection in apache (CVE-2015-0249). Successful exploitation can lead to full system takeover.
|
| CVE-2017-11310 |
|
Vulnerability in c (CVE-2017-11310)
vulnerability in c (CVE-2017-11310). Successful exploitation can lead to full system takeover.
|
| CVE-2017-9788 |
|
Vulnerability in apache (CVE-2017-9788)
vulnerability in apache (CVE-2017-9788). Confidential information can be exposed externally. Exploitable via `Authorization header`.
|
| CVE-2017-9789 |
|
Use-After-Free in apache (CVE-2017-9789)
vulnerability in apache (CVE-2017-9789). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-7672 |
|
Vulnerability in apache (CVE-2017-7672)
vulnerability in apache (CVE-2017-7672). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-6019 |
|
Cross-Site Scripting (XSS) in ibm (CVE-2016-6019)
cross-site scripting in ibm (CVE-2016-6019). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-8952 |
|
Cross-Site Scripting (XSS) in ibm (CVE-2016-8952)
cross-site scripting in ibm (CVE-2016-8952). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-8964 |
|
Information Disclosure in ibm (CVE-2016-8964)
vulnerability in ibm (CVE-2016-8964). Successful exploitation can lead to full system takeover.
|
| CVE-2017-1308 |
|
Vulnerability in ibm (CVE-2017-1308)
vulnerability in ibm (CVE-2017-1308). Confidential information can be exposed externally.
|
| CVE-2016-8951 |
|
Authentication Bypass in dos (CVE-2016-8951)
authentication bypass in dos (CVE-2016-8951). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-7529 |
|
Vulnerability in nginx (CVE-2017-7529)
vulnerability in nginx (CVE-2017-7529). Confidential information can be exposed externally.
|
| CVE-2017-11200 |
|
SQL Injection in sqli (CVE-2017-11200)
SQL injection in sqli (CVE-2017-11200). Successful exploitation can lead to full system takeover.
|
| CVE-2017-11198 |
|
Cross-Site Scripting (XSS) in finecms-project (CVE-2017-11198)
cross-site scripting in finecms-project (CVE-2017-11198). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-11201 |
|
Cross-Site Scripting (XSS) in finecms-project (CVE-2017-11201)
cross-site scripting in finecms-project (CVE-2017-11201). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-11202 |
|
Cross-Site Scripting (XSS) in finecms-project (CVE-2017-11202)
cross-site scripting in finecms-project (CVE-2017-11202). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-11174 |
|
SQL Injection in sqli (CVE-2017-11174)
SQL injection in sqli (CVE-2017-11174). Successful exploitation can lead to full system takeover.
|
| CVE-2017-11194 |
|
Cross-Site Scripting (XSS) in pulsesecure (CVE-2017-11194)
cross-site scripting in pulsesecure (CVE-2017-11194). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-11195 |
|
Cross-Site Scripting (XSS) in pulsesecure (CVE-2017-11195)
cross-site scripting in pulsesecure (CVE-2017-11195). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-11193 |
|
Cross-Site Request Forgery (CSRF) in csrf (CVE-2017-11193)
vulnerability in csrf (CVE-2017-11193). Successful exploitation can lead to full system takeover.
|
| CVE-2017-11196 |
|
Cross-Site Request Forgery (CSRF) in csrf (CVE-2017-11196)
vulnerability in csrf (CVE-2017-11196). Successful exploitation can lead to full system takeover.
|