Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: languages Clear
ID Title
CVE-2017-17783 Out-of-Bounds Read in c (CVE-2017-17783)
vulnerability in c (CVE-2017-17783). Successful exploitation can lead to full system takeover.
CVE-2017-17784 Out-of-Bounds Read in c (CVE-2017-17784)
vulnerability in c (CVE-2017-17784). Successful exploitation can lead to full system takeover.
CVE-2017-17785 Out-of-Bounds Write in c (CVE-2017-17785)
out-of-bounds write in c (CVE-2017-17785). Successful exploitation can lead to full system takeover.
CVE-2017-17774 admin/configuration.php in Piwigo 2.9.2 has CSRF.
admin/configuration.php in Piwigo 2.9.2 has CSRF.
CVE-2017-17775 Piwigo 2.9.2 has XSS via the name parameter in an admin.php?page=album-3-properties request.
Piwigo 2.9.2 has XSS via the name parameter in an admin.php?page=album-3-properties request.
CVE-2017-17776 Paid To Read Script 2.0.5 has full path disclosure via an invalid admin/userview.php uid parameter.
Paid To Read Script 2.0.5 has full path disclosure via an invalid admin/userview.php uid parameter.
CVE-2017-17777 Authentication Bypass in paid-to-read-script-project (CVE-2017-17777)
authentication bypass in paid-to-read-script-project (CVE-2017-17777). Successful exploitation can lead to full system takeover.
CVE-2017-17778 Cross-Site Scripting (XSS) in paid-to-read-script-project (CVE-2017-17778)
cross-site scripting in paid-to-read-script-project (CVE-2017-17778). Risk of unauthorized operations or information disclosure.
CVE-2017-17779 Paid To Read Script 2.0.5 has SQL injection via the referrals.php id parameter.
Paid To Read Script 2.0.5 has SQL injection via the referrals.php id parameter.
CVE-2017-17780 Cross-Site Scripting (XSS) in wordpress (CVE-2017-17780)
cross-site scripting in wordpress (CVE-2017-17780). Risk of unauthorized operations or information disclosure.
CVE-2017-17719 Cross-Site Scripting (XSS) in wordpress (CVE-2017-17719)
cross-site scripting in wordpress (CVE-2017-17719). Risk of unauthorized operations or information disclosure.
CVE-2017-17744 Cross-Site Scripting (XSS) in wordpress (CVE-2017-17744)
cross-site scripting in wordpress (CVE-2017-17744). Risk of unauthorized operations or information disclosure.
CVE-2017-17753 Cross-Site Scripting (XSS) in wordpress (CVE-2017-17753)
cross-site scripting in wordpress (CVE-2017-17753). Risk of unauthorized operations or information disclosure.
CVE-2017-11562 Vulnerability in mt4 (CVE-2017-11562)
vulnerability in mt4 (CVE-2017-11562). Successful exploitation can lead to full system takeover.
CVE-2017-15876 Unrestricted File Upload in sistemagpweb (CVE-2017-15876)
vulnerability in sistemagpweb (CVE-2017-15876). Successful exploitation can lead to full system takeover.
CVE-2017-15877 Vulnerability in sistemagpweb (CVE-2017-15877)
vulnerability in sistemagpweb (CVE-2017-15877). Successful exploitation can lead to full system takeover.
CVE-2017-16949 Unrestricted File Upload in wordpress (CVE-2017-16949)
vulnerability in wordpress (CVE-2017-16949). Successful exploitation can lead to full system takeover.
CVE-2017-15103 OS Command Injection in c (CVE-2017-15103)
OS command injection in c (CVE-2017-15103). Successful exploitation can lead to full system takeover.
CVE-2017-17721 SQL Injection in csharp (CVE-2017-17721)
SQL injection in csharp (CVE-2017-17721). Successful exploitation can lead to full system takeover.
CVE-2017-17645 Bus Booking Script 1.0 has SQL Injection via the txtname parameter to admin/index.php.
Bus Booking Script 1.0 has SQL Injection via the txtname parameter to admin/index.php.
CVE-2017-17649 Code Injection in readymade-video-sharing-script-project (CVE-2017-17649)
code injection in readymade-video-sharing-script-project (CVE-2017-17649). Risk of unauthorized operations or information disclosure.
CVE-2017-17651 SQL Injection in sqli (CVE-2017-17651)
SQL injection in sqli (CVE-2017-17651). Successful exploitation can lead to full system takeover.
CVE-2017-17741 Out-of-Bounds Read in c (CVE-2017-17741)
vulnerability in c (CVE-2017-17741). Confidential information can be exposed externally.
CVE-2017-17740 Buffer Overflow in c (CVE-2017-17740)
vulnerability in c (CVE-2017-17740). Risk of unauthorized operations or information disclosure.
CVE-2017-17727 Unrestricted File Upload in dedecms (CVE-2017-17727)
vulnerability in dedecms (CVE-2017-17727). Successful exploitation can lead to full system takeover.
CVE-2017-17730 DedeCMS through 5.7 has SQL Injection via the logo parameter to plus/flink_add.php.
DedeCMS through 5.7 has SQL Injection via the logo parameter to plus/flink_add.php.
CVE-2017-17731 DedeCMS through 5.7 has SQL Injection via the $_FILES superglobal to plus/recommend.php.
DedeCMS through 5.7 has SQL Injection via the $_FILES superglobal to plus/recommend.php.
CVE-2017-17733 Vulnerability in maccms (CVE-2017-17733)
vulnerability in maccms (CVE-2017-17733). Successful exploitation can lead to full system takeover.
CVE-2017-16997 Vulnerability in c (CVE-2017-16997)
vulnerability in c (CVE-2017-16997). Successful exploitation can lead to full system takeover.
CVE-2017-17718 The Net::LDAP (aka net-ldap) gem before 0.16.0 for Ruby has Missing SSL Certificate Validation.
The Net::LDAP (aka net-ldap) gem before 0.16.0 for Ruby has Missing SSL Certificate Validation.
CVE-2017-17715 Path Traversal in path-traversal (CVE-2017-17715)
path traversal in path-traversal (CVE-2017-17715). Successful exploitation can lead to full system takeover.
CVE-2017-17712 Vulnerability in c (CVE-2017-17712)
vulnerability in c (CVE-2017-17712). Successful exploitation can lead to full system takeover.
CVE-2017-17693 Vulnerability in techno-portfolio-management-panel-project (CVE-2017-17693)
vulnerability in techno-portfolio-management-panel-project (CVE-2017-17693). Risk of unauthorized operations or information disclosure.
CVE-2017-17694 Cross-Site Scripting (XSS) in techno-portfolio-management-panel-project (CVE-2017-17694)
cross-site scripting in techno-portfolio-management-panel-project (CVE-2017-17694). Risk of unauthorized operations or information disclosure.
CVE-2017-17695 SQL Injection in sqli (CVE-2017-17695)
SQL injection in sqli (CVE-2017-17695). Successful exploitation can lead to full system takeover.
CVE-2017-17696 Information Disclosure in techno-portfolio-management-panel-project (CVE-2017-17696)
vulnerability in techno-portfolio-management-panel-project (CVE-2017-17696). Risk of unauthorized operations or information disclosure.
CVE-2017-17405 OS Command Injection in ruby-lang (CVE-2017-17405)
OS command injection in ruby-lang (CVE-2017-17405). Successful exploitation can lead to full system takeover.
CVE-2017-17670 Use-After-Free in c (CVE-2017-17670)
vulnerability in c (CVE-2017-17670). Successful exploitation can lead to full system takeover.
CVE-2016-10703 Vulnerability in dos (CVE-2016-10703)
vulnerability in dos (CVE-2016-10703). Risk of unauthorized operations or information disclosure.
CVE-2017-17531 Vulnerability in c (CVE-2017-17531)
vulnerability in c (CVE-2017-17531). Successful exploitation can lead to full system takeover.
CVE-2017-17534 Vulnerability in c (CVE-2017-17534)
vulnerability in c (CVE-2017-17534). Successful exploitation can lead to full system takeover.
CVE-2017-17522 Vulnerability in CVE-2017-17522 (CVE-2017-17522)
vulnerability in CVE-2017-17522 (CVE-2017-17522). Successful exploitation can lead to full system takeover.
CVE-2017-17511 Vulnerability in c (CVE-2017-17511)
vulnerability in c (CVE-2017-17511). Successful exploitation can lead to full system takeover.
CVE-2017-17514 Vulnerability in c (CVE-2017-17514)
vulnerability in c (CVE-2017-17514). Successful exploitation can lead to full system takeover.
CVE-2017-17517 Vulnerability in c (CVE-2017-17517)
vulnerability in c (CVE-2017-17517). Successful exploitation can lead to full system takeover.
CVE-2017-17518 Vulnerability in c (CVE-2017-17518)
vulnerability in c (CVE-2017-17518). Successful exploitation can lead to full system takeover.
CVE-2017-17521 Vulnerability in c (CVE-2017-17521)
vulnerability in c (CVE-2017-17521). Successful exploitation can lead to full system takeover.
CVE-2017-17530 Vulnerability in c (CVE-2017-17530)
vulnerability in c (CVE-2017-17530). Successful exploitation can lead to full system takeover.
CVE-2017-17525 Vulnerability in cpp (CVE-2017-17525)
vulnerability in cpp (CVE-2017-17525). Successful exploitation can lead to full system takeover.
CVE-2017-17528 Vulnerability in cpp (CVE-2017-17528)
vulnerability in cpp (CVE-2017-17528). Successful exploitation can lead to full system takeover.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →