Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2017-8153 |
|
Vulnerability in huawei (CVE-2017-8153)
vulnerability in huawei (CVE-2017-8153). Confidential information can be exposed externally.
|
| CVE-2017-12190 |
|
Vulnerability in c (CVE-2017-12190)
vulnerability in c (CVE-2017-12190). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-12193 |
|
Vulnerability in c (CVE-2017-12193)
vulnerability in c (CVE-2017-12193). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-8864 |
|
Vulnerability in cohuhd (CVE-2017-8864)
vulnerability in cohuhd (CVE-2017-8864). Successful exploitation can lead to full system takeover.
|
| CVE-2015-3934 |
|
SQL Injection in sqli (CVE-2015-3934)
SQL injection in sqli (CVE-2015-3934). Successful exploitation can lead to full system takeover.
|
| CVE-2017-16920 |
|
Vulnerability in finecms (CVE-2017-16920)
vulnerability in finecms (CVE-2017-16920). Successful exploitation can lead to full system takeover.
|
| CVE-2017-16613 |
|
Authentication Bypass in swauth (CVE-2017-16613)
authentication bypass in swauth (CVE-2017-16613). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `70af7986265a3defea054c46efc82d0698917298, 1.3.0` or later.
|
| CVE-2017-16840 |
|
Out-of-Bounds Read in c (CVE-2017-16840)
vulnerability in c (CVE-2017-16840). Successful exploitation can lead to full system takeover.
|
| CVE-2017-16908 |
|
Cross-Site Scripting (XSS) in c (CVE-2017-16908)
cross-site scripting in c (CVE-2017-16908). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-16903 |
|
Path Traversal in path-traversal (CVE-2017-16903)
path traversal in path-traversal (CVE-2017-16903). Successful exploitation can lead to full system takeover.
|
| CVE-2017-16904 |
|
Cross-Site Scripting (XSS) in lvyecms-project (CVE-2017-16904)
cross-site scripting in lvyecms-project (CVE-2017-16904). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-16899 |
|
Vulnerability in c (CVE-2017-16899)
vulnerability in c (CVE-2017-16899). Confidential information can be exposed externally.
|
| CVE-2017-16898 |
|
Buffer Overflow in c (CVE-2017-16898)
vulnerability in c (CVE-2017-16898). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-16896 |
|
SQL Injection in sqli (CVE-2017-16896)
SQL injection in sqli (CVE-2017-16896). Successful exploitation can lead to full system takeover.
|
| CVE-2017-16544 |
|
Code Injection in c (CVE-2017-16544)
code injection in c (CVE-2017-16544). Successful exploitation can lead to full system takeover.
|
| CVE-2017-16894 |
|
Information Disclosure in laravel (CVE-2017-16894)
vulnerability in laravel (CVE-2017-16894). Confidential information can be exposed externally.
|
| CVE-2017-16883 |
|
Vulnerability in c (CVE-2017-16883)
vulnerability in c (CVE-2017-16883). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-16881 |
|
Cross-Site Scripting (XSS) in symphony-project (CVE-2017-16881)
cross-site scripting in symphony-project (CVE-2017-16881). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-14077 |
|
Code Injection in phpcaptcha (CVE-2017-14077)
code injection in phpcaptcha (CVE-2017-14077). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-16880 |
|
The dump function in Util/TemplateHelper.php in filp whoops before 2.1.13 has XSS.
The dump function in Util/TemplateHelper.php in filp whoops before 2.1.13 has XSS.
|
| CVE-2017-16845 |
|
Vulnerability in c (CVE-2017-16845)
vulnerability in c (CVE-2017-16845). Confidential information can be exposed externally.
|
| CVE-2017-1000192 |
|
Vulnerability in cygnux (CVE-2017-1000192)
vulnerability in cygnux (CVE-2017-1000192). Successful exploitation can lead to full system takeover.
|
| CVE-2017-16819 |
|
Cross-Site Scripting (XSS) in icontime (CVE-2017-16819)
cross-site scripting in icontime (CVE-2017-16819). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-16877 |
|
Path Traversal in path-traversal (CVE-2017-16877)
path traversal in path-traversal (CVE-2017-16877). Confidential information can be exposed externally.
|
| CVE-2017-16870 |
|
SSRF (Server-Side Request Forgery) in wordpress (CVE-2017-16870)
SSRF in wordpress (CVE-2017-16870). Successful exploitation can lead to full system takeover.
|
| CVE-2017-16871 |
|
Code Injection in wordpress (CVE-2017-16871)
code injection in wordpress (CVE-2017-16871). Successful exploitation can lead to full system takeover.
|
| CVE-2017-16868 |
|
Vulnerability in c (CVE-2017-16868)
vulnerability in c (CVE-2017-16868). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-16869 |
|
Buffer Overflow in cpp (CVE-2017-16869)
vulnerability in cpp (CVE-2017-16869). Successful exploitation can lead to full system takeover.
|
| CVE-2017-1000160 |
|
Cross-Site Scripting (XSS) in expressionengine (CVE-2017-1000160)
cross-site scripting in expressionengine (CVE-2017-1000160). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-1000223 |
|
Cross-Site Scripting (XSS) in modx (CVE-2017-1000223)
cross-site scripting in modx (CVE-2017-1000223). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-1000158 |
|
Vulnerability in c (CVE-2017-1000158)
vulnerability in c (CVE-2017-1000158). Successful exploitation can lead to full system takeover.
|
| CVE-2017-1000246 |
|
Vulnerability in pysaml2-project (CVE-2017-1000246)
vulnerability in pysaml2-project (CVE-2017-1000246). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-1000231 |
|
A double-free vulnerability in parse.c in ldns 1.7.0 have unspecified impact and attack vectors.
A double-free vulnerability in parse.c in ldns 1.7.0 have unspecified impact and attack vectors.
|
| CVE-2017-1000232 |
|
A double-free vulnerability in str2host.c in ldns 1.7.0 have unspecified impact and attack vectors.
A double-free vulnerability in str2host.c in ldns 1.7.0 have unspecified impact and attack vectors.
|
| CVE-2017-1000188 |
|
Cross-Site Scripting (XSS) in ejs (CVE-2017-1000188)
cross-site scripting in ejs (CVE-2017-1000188). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-1000189 |
|
Vulnerability in ejs (CVE-2017-1000189)
vulnerability in ejs (CVE-2017-1000189). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-1000228 |
|
Vulnerability in ejs (CVE-2017-1000228)
vulnerability in ejs (CVE-2017-1000228). Successful exploitation can lead to full system takeover.
|
| CVE-2017-1000172 |
|
Use-After-Free in c (CVE-2017-1000172)
vulnerability in c (CVE-2017-1000172). Successful exploitation can lead to full system takeover.
|
| CVE-2017-1000209 |
|
Vulnerability in nv-websocket-client-project (CVE-2017-1000209)
vulnerability in nv-websocket-client-project (CVE-2017-1000209). Confidential information can be exposed externally.
|
| CVE-2017-1000195 |
|
Unsafe Deserialization in octobercms (CVE-2017-1000195)
vulnerability in octobercms (CVE-2017-1000195). Data can be tampered with by attackers.
|
| CVE-2017-1000196 |
|
Code Injection in octobercms (CVE-2017-1000196)
code injection in octobercms (CVE-2017-1000196). Successful exploitation can lead to full system takeover.
|
| CVE-2017-1000193 |
|
Cross-Site Scripting (XSS) in octobercms (CVE-2017-1000193)
cross-site scripting in octobercms (CVE-2017-1000193). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-1000213 |
|
Cross-Site Scripting (XSS) in wbce (CVE-2017-1000213)
cross-site scripting in wbce (CVE-2017-1000213). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-1000219 |
|
OS Command Injection in windows-cpu-project (CVE-2017-1000219)
OS command injection in windows-cpu-project (CVE-2017-1000219). Successful exploitation can lead to full system takeover.
|
| CVE-2017-11085 |
|
Buffer Overflow in c (CVE-2017-11085)
vulnerability in c (CVE-2017-11085). Successful exploitation can lead to full system takeover.
|
| CVE-2017-0909 |
|
Vulnerability in private-address-check-project (CVE-2017-0909)
vulnerability in private-address-check-project (CVE-2017-0909). Successful exploitation can lead to full system takeover.
|
| CVE-2017-11029 |
|
Buffer Overflow in cpp (CVE-2017-11029)
vulnerability in cpp (CVE-2017-11029). Successful exploitation can lead to full system takeover.
|
| CVE-2017-16866 |
|
Cross-Site Scripting (XSS) in finecms (CVE-2017-16866)
cross-site scripting in finecms (CVE-2017-16866). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-16853 |
|
Vulnerability in c (CVE-2017-16853)
vulnerability in c (CVE-2017-16853). Successful exploitation can lead to full system takeover.
|
| CVE-2017-16852 |
|
Vulnerability in cpp (CVE-2017-16852)
vulnerability in cpp (CVE-2017-16852). Successful exploitation can lead to full system takeover.
|