Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2014-3164 |
|
Vulnerability in c (CVE-2014-3164)
vulnerability in c (CVE-2014-3164). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-15587 |
|
Vulnerability in c (CVE-2017-15587)
vulnerability in c (CVE-2017-15587). Successful exploitation can lead to full system takeover.
|
| CVE-2017-15578 |
|
SQL Injection in sqli (CVE-2017-15578)
SQL injection in sqli (CVE-2017-15578). Successful exploitation can lead to full system takeover.
|
| CVE-2017-15579 |
|
SQL Injection in sqli (CVE-2017-15579)
SQL injection in sqli (CVE-2017-15579). Successful exploitation can lead to full system takeover.
|
| CVE-2017-15539 |
|
SQL Injection exists in zorovavi/blog through 2017-10-17 via the id parameter to recept.php.
SQL Injection exists in zorovavi/blog through 2017-10-17 via the id parameter to recept.php.
|
| CVE-2017-15538 |
|
Cross-Site Scripting (XSS) in ilias (CVE-2017-15538)
cross-site scripting in ilias (CVE-2017-15538). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-15537 |
|
Information Disclosure in c (CVE-2017-15537)
vulnerability in c (CVE-2017-15537). Confidential information can be exposed externally.
|
| CVE-2015-7806 |
|
Command Injection in wordpress (CVE-2015-7806)
command injection in wordpress (CVE-2015-7806). Successful exploitation can lead to full system takeover.
|
| CVE-2014-2664 |
|
Unrestricted File Upload in x2engine (CVE-2014-2664)
vulnerability in x2engine (CVE-2014-2664). Successful exploitation can lead to full system takeover.
|
| CVE-2014-9733 |
|
Vulnerability in nwjs (CVE-2014-9733)
vulnerability in nwjs (CVE-2014-9733). Successful exploitation can lead to full system takeover.
|
| CVE-2014-9489 |
|
Vulnerability in gollum-project (CVE-2014-9489)
vulnerability in gollum-project (CVE-2014-9489). Successful exploitation can lead to full system takeover.
|
| CVE-2014-8323 |
|
Vulnerability in c (CVE-2014-8323)
vulnerability in c (CVE-2014-8323). Risk of unauthorized operations or information disclosure.
|
| CVE-2014-8324 |
|
Vulnerability in c (CVE-2014-8324)
vulnerability in c (CVE-2014-8324). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-15385 |
|
Buffer Overflow in c (CVE-2017-15385)
vulnerability in c (CVE-2017-15385). Successful exploitation can lead to full system takeover.
|
| CVE-2015-7504 |
|
Out-of-Bounds Write in c (CVE-2015-7504)
out-of-bounds write in c (CVE-2015-7504). Successful exploitation can lead to full system takeover.
|
| CVE-2017-15265 |
|
Vulnerability in c (CVE-2017-15265)
vulnerability in c (CVE-2017-15265). Successful exploitation can lead to full system takeover.
|
| CVE-2017-15289 |
|
Out-of-Bounds Write in c (CVE-2017-15289)
out-of-bounds write in c (CVE-2017-15289). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-15384 |
|
rate-me.php in Rate Me 1.0 has XSS via the id field in a rate action.
rate-me.php in Rate Me 1.0 has XSS via the id field in a rate action.
|
| CVE-2017-15296 |
|
The Java component in SAP CRM has CSRF. This is SAP Security Note 2478964.
The Java component in SAP CRM has CSRF. This is SAP Security Note 2478964.
|
| CVE-2017-15294 |
|
The Java administration console in SAP CRM has XSS. This is SAP Security Note 2478964.
The Java administration console in SAP CRM has XSS. This is SAP Security Note 2478964.
|
| CVE-2017-14952 |
|
Vulnerability in c (CVE-2017-14952)
vulnerability in c (CVE-2017-14952). Successful exploitation can lead to full system takeover.
|
| CVE-2014-8087 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2014-8087)
cross-site scripting in wordpress (CVE-2014-8087). Risk of unauthorized operations or information disclosure.
|
| CVE-2014-8621 |
|
SQL Injection in wordpress (CVE-2014-8621)
SQL injection in wordpress (CVE-2014-8621). Successful exploitation can lead to full system takeover.
|
| CVE-2017-15373 |
|
SQL Injection in sqli (CVE-2017-15373)
SQL injection in sqli (CVE-2017-15373). Successful exploitation can lead to full system takeover.
|
| CVE-2017-15370 |
|
Buffer Overflow in c (CVE-2017-15370)
vulnerability in c (CVE-2017-15370). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-15371 |
|
Vulnerability in c (CVE-2017-15371)
vulnerability in c (CVE-2017-15371). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-15372 |
|
Buffer Overflow in c (CVE-2017-15372)
vulnerability in c (CVE-2017-15372). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-15368 |
|
Out-of-Bounds Read in c (CVE-2017-15368)
vulnerability in c (CVE-2017-15368). Successful exploitation can lead to full system takeover.
|
| CVE-2017-15369 |
|
Use-After-Free in c (CVE-2017-15369)
vulnerability in c (CVE-2017-15369). Successful exploitation can lead to full system takeover.
|
| CVE-2017-15362 |
|
Cross-Site Scripting (XSS) in csrf (CVE-2017-15362)
cross-site scripting in csrf (CVE-2017-15362). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-15363 |
|
Path Traversal in path-traversal (CVE-2017-15363)
path traversal in path-traversal (CVE-2017-15363). Confidential information can be exposed externally.
|
| CVE-2017-15364 |
|
Vulnerability in c (CVE-2017-15364)
vulnerability in c (CVE-2017-15364). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-15304 |
|
Vulnerability in airtame (CVE-2017-15304)
vulnerability in airtame (CVE-2017-15304). Successful exploitation can lead to full system takeover.
|
| CVE-2017-15305 |
|
XSS exists in NexusPHP 1.5 via the keyword parameter to messages.php.
XSS exists in NexusPHP 1.5 via the keyword parameter to messages.php.
|
| CVE-2017-12629 |
|
XXE (XML External Entity) in c (CVE-2017-12629)
vulnerability in c (CVE-2017-12629). Successful exploitation can lead to full system takeover.
|
| CVE-2017-10612 |
|
Cross-Site Scripting (XSS) in juniper (CVE-2017-10612)
cross-site scripting in juniper (CVE-2017-10612). Successful exploitation can lead to full system takeover.
|
| CVE-2017-10616 |
|
Vulnerability in c (CVE-2017-10616)
vulnerability in c (CVE-2017-10616). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-10617 |
|
XXE (XML External Entity) in c (CVE-2017-10617)
vulnerability in c (CVE-2017-10617). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-9263 |
|
Vulnerability in wordpress (CVE-2016-9263)
vulnerability in wordpress (CVE-2016-9263). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-15268 |
|
Vulnerability in c (CVE-2017-15268)
vulnerability in c (CVE-2017-15268). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-9514 |
|
Vulnerability in atlassian (CVE-2017-9514)
vulnerability in atlassian (CVE-2017-9514). Successful exploitation can lead to full system takeover.
|
| CVE-2017-15278 |
|
Cross-Site Scripting (XSS) in teampass (CVE-2017-15278)
cross-site scripting in teampass (CVE-2017-15278). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-15285 |
|
Vulnerability in qualiteam (CVE-2017-15285)
vulnerability in qualiteam (CVE-2017-15285). Successful exploitation can lead to full system takeover.
|
| CVE-2017-15284 |
|
Cross-Site Scripting (XSS) in octobercms (CVE-2017-15284)
cross-site scripting in octobercms (CVE-2017-15284). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-15277 |
|
Information Disclosure in c (CVE-2017-15277)
vulnerability in c (CVE-2017-15277). Confidential information can be exposed externally.
|
| CVE-2017-15281 |
|
Buffer Overflow in c (CVE-2017-15281)
vulnerability in c (CVE-2017-15281). Successful exploitation can lead to full system takeover.
|
| CVE-2017-15286 |
|
Vulnerability in c (CVE-2017-15286)
vulnerability in c (CVE-2017-15286). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-12192 |
|
Vulnerability in c (CVE-2017-12192)
vulnerability in c (CVE-2017-12192). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-15274 |
|
Vulnerability in c (CVE-2017-15274)
vulnerability in c (CVE-2017-15274). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-14587 |
|
Cross-Site Scripting (XSS) in atlassian (CVE-2017-14587)
cross-site scripting in atlassian (CVE-2017-14587). Risk of unauthorized operations or information disclosure.
|