Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2017-15906 |
|
Vulnerability in c (CVE-2017-15906)
vulnerability in c (CVE-2017-15906). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-1164 |
|
Cross-Site Scripting (XSS) in ibm (CVE-2017-1164)
cross-site scripting in ibm (CVE-2017-1164). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-1169 |
|
Cross-Site Scripting (XSS) in ibm (CVE-2017-1169)
cross-site scripting in ibm (CVE-2017-1169). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-1363 |
|
Cross-Site Scripting (XSS) in ibm (CVE-2017-1363)
cross-site scripting in ibm (CVE-2017-1363). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-15885 |
|
Cross-Site Scripting (XSS) in axis (CVE-2017-15885)
cross-site scripting in axis (CVE-2017-15885). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-15880 |
|
SQL Injection in sqli (CVE-2017-15880)
SQL injection in sqli (CVE-2017-15880). Successful exploitation can lead to full system takeover.
|
| CVE-2017-1209 |
|
Cross-Site Scripting (XSS) in ibm (CVE-2017-1209)
cross-site scripting in ibm (CVE-2017-1209). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-15878 |
|
Cross-Site Scripting (XSS) in keystonejs (CVE-2017-15878)
cross-site scripting in keystonejs (CVE-2017-15878). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-15879 |
|
Vulnerability in c (CVE-2017-15879)
vulnerability in c (CVE-2017-15879). Successful exploitation can lead to full system takeover.
|
| CVE-2017-1583 |
|
Information Disclosure in ibm (CVE-2017-1583)
vulnerability in ibm (CVE-2017-1583). Confidential information can be exposed externally.
|
| CVE-2017-15872 |
|
Cross-Site Scripting (XSS) in phpwcms (CVE-2017-15872)
cross-site scripting in phpwcms (CVE-2017-15872). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-15871 |
|
Vulnerability in dos (CVE-2017-15871)
vulnerability in dos (CVE-2017-15871). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-15873 |
|
Vulnerability in c (CVE-2017-15873)
vulnerability in c (CVE-2017-15873). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-15874 |
|
Vulnerability in c (CVE-2017-15874)
vulnerability in c (CVE-2017-15874). Confidential information can be exposed externally.
|
| CVE-2017-15867 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2017-15867)
cross-site scripting in wordpress (CVE-2017-15867). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-15863 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2017-15863)
cross-site scripting in wordpress (CVE-2017-15863). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-10517 |
|
Vulnerability in c (CVE-2016-10517)
vulnerability in c (CVE-2016-10517). Confidential information can be exposed externally.
|
| CVE-2014-1203 |
|
Command Injection in eyou (CVE-2014-1203)
command injection in eyou (CVE-2014-1203). Successful exploitation can lead to full system takeover.
|
| CVE-2017-15081 |
|
In PHPSUGAR PHP Melody CMS 2.6.1, SQL Injection exists via the playlist parameter to playlists.php.
In PHPSUGAR PHP Melody CMS 2.6.1, SQL Injection exists via the playlist parameter to playlists.php.
|
| CVE-2011-4333 |
|
Cross-Site Scripting (XSS) in scilico (CVE-2011-4333)
cross-site scripting in scilico (CVE-2011-4333). Risk of unauthorized operations or information disclosure.
|
| CVE-2011-4334 |
|
Unrestricted File Upload in labwiki-project (CVE-2011-4334)
vulnerability in labwiki-project (CVE-2011-4334). Successful exploitation can lead to full system takeover.
|
| CVE-2012-4567 |
|
Cross-Site Scripting (XSS) in letodms-project (CVE-2012-4567)
cross-site scripting in letodms-project (CVE-2012-4567). Risk of unauthorized operations or information disclosure.
|
| CVE-2012-4569 |
|
Cross-Site Scripting (XSS) in letodms-project (CVE-2012-4569)
cross-site scripting in letodms-project (CVE-2012-4569). Risk of unauthorized operations or information disclosure.
|
| CVE-2012-4570 |
|
SQL Injection in sqli (CVE-2012-4570)
SQL injection in sqli (CVE-2012-4570). Successful exploitation can lead to full system takeover.
|
| CVE-2015-5532 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2015-5532)
cross-site scripting in wordpress (CVE-2015-5532). Risk of unauthorized operations or information disclosure.
|
| CVE-2015-5533 |
|
SQL Injection in wordpress (CVE-2015-5533)
SQL injection in wordpress (CVE-2015-5533). Successful exploitation can lead to full system takeover.
|
| CVE-2013-7377 |
|
Command Injection in codem-transcode-project (CVE-2013-7377)
command injection in codem-transcode-project (CVE-2013-7377). Successful exploitation can lead to full system takeover.
|
| CVE-2014-3741 |
|
Command Injection in node-printer-project (CVE-2014-3741)
command injection in node-printer-project (CVE-2014-3741). Successful exploitation can lead to full system takeover.
|
| CVE-2014-3744 |
|
Path Traversal in path-traversal (CVE-2014-3744)
path traversal in path-traversal (CVE-2014-3744). Confidential information can be exposed externally.
|
| CVE-2017-15808 |
|
In phpMyFaq before 2.9.9, there is CSRF in admin/ajax.config.php.
In phpMyFaq before 2.9.9, there is CSRF in admin/ajax.config.php.
|
| CVE-2017-15809 |
|
In phpMyFaq before 2.9.9, there is XSS in admin/tags.main.php via a crafted tag.
In phpMyFaq before 2.9.9, there is XSS in admin/tags.main.php via a crafted tag.
|
| CVE-2017-15810 |
|
Cross-Site Scripting (XSS) in csharp (CVE-2017-15810)
cross-site scripting in csharp (CVE-2017-15810). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-15811 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2017-15811)
cross-site scripting in wordpress (CVE-2017-15811). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-15380 |
|
Cross-Site Scripting (XSS) in softwarepublico (CVE-2017-15380)
cross-site scripting in softwarepublico (CVE-2017-15380). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-15381 |
|
SQL Injection in sqli (CVE-2017-15381)
SQL injection in sqli (CVE-2017-15381). Successful exploitation can lead to full system takeover.
|
| CVE-2017-15580 |
|
Unrestricted File Upload in osticket (CVE-2017-15580)
vulnerability in osticket (CVE-2017-15580). Successful exploitation can lead to full system takeover.
|
| CVE-2017-15377 |
|
Vulnerability in c (CVE-2017-15377)
vulnerability in c (CVE-2017-15377). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-15804 |
|
Buffer Overflow in c (CVE-2017-15804)
vulnerability in c (CVE-2017-15804). Successful exploitation can lead to full system takeover.
|
| CVE-2017-15730 |
|
In phpMyFAQ before 2.9.9, there is Cross-Site Request Forgery (CSRF) in admin/stat.ratings.php.
In phpMyFAQ before 2.9.9, there is Cross-Site Request Forgery (CSRF) in admin/stat.ratings.php.
|
| CVE-2017-15731 |
|
In phpMyFAQ before 2.9.9, there is Cross-Site Request Forgery (CSRF) in admin/stat.adminlog.php.
In phpMyFAQ before 2.9.9, there is Cross-Site Request Forgery (CSRF) in admin/stat.adminlog.php.
|
| CVE-2017-15732 |
|
In phpMyFAQ before 2.9.9, there is Cross-Site Request Forgery (CSRF) in admin/news.php.
In phpMyFAQ before 2.9.9, there is Cross-Site Request Forgery (CSRF) in admin/news.php.
|
| CVE-2017-15733 |
|
Cross-Site Request Forgery (CSRF) in csrf (CVE-2017-15733)
vulnerability in csrf (CVE-2017-15733). Successful exploitation can lead to full system takeover.
|
| CVE-2017-15734 |
|
In phpMyFAQ before 2.9.9, there is Cross-Site Request Forgery (CSRF) in admin/stat.main.php.
In phpMyFAQ before 2.9.9, there is Cross-Site Request Forgery (CSRF) in admin/stat.main.php.
|
| CVE-2017-15736 |
|
Cross-Site Scripting (XSS) in spip (CVE-2017-15736)
cross-site scripting in spip (CVE-2017-15736). Risk of unauthorized operations or information disclosure.
|
| CVE-2015-5177 |
|
Vulnerability in c (CVE-2015-5177)
vulnerability in c (CVE-2015-5177). Risk of unauthorized operations or information disclosure.
|
| CVE-2011-1935 |
|
Vulnerability in c (CVE-2011-1935)
vulnerability in c (CVE-2011-1935). Successful exploitation can lead to full system takeover.
|
| CVE-2017-15670 |
|
Buffer Overflow in c (CVE-2017-15670)
vulnerability in c (CVE-2017-15670). Successful exploitation can lead to full system takeover.
|
| CVE-2017-15671 |
|
Vulnerability in c (CVE-2017-15671)
vulnerability in c (CVE-2017-15671). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-12628 |
|
Unsafe Deserialization in apache (CVE-2017-12628)
vulnerability in apache (CVE-2017-12628). Successful exploitation can lead to full system takeover.
|
| CVE-2017-15650 |
|
Buffer Overflow in c (CVE-2017-15650)
vulnerability in c (CVE-2017-15650). Risk of unauthorized operations or information disclosure.
|