Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2017-14531 |
|
ImageMagick 7.0.7-0 has a memory exhaustion issue in ReadSUNImage in coders/sun.c.
ImageMagick 7.0.7-0 has a memory exhaustion issue in ReadSUNImage in coders/sun.c.
|
| CVE-2017-14532 |
|
ImageMagick 7.0.7-0 has a NULL Pointer Dereference in TIFFIgnoreTags in coders/tiff.c.
ImageMagick 7.0.7-0 has a NULL Pointer Dereference in TIFFIgnoreTags in coders/tiff.c.
|
| CVE-2017-14533 |
|
ImageMagick 7.0.6-6 has a memory leak in ReadMATImage in coders/mat.c.
ImageMagick 7.0.6-6 has a memory leak in ReadMATImage in coders/mat.c.
|
| CVE-2017-14528 |
|
Use-After-Free in c (CVE-2017-14528)
vulnerability in c (CVE-2017-14528). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-14529 |
|
Out-of-Bounds Read in c (CVE-2017-14529)
vulnerability in c (CVE-2017-14529). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-14508 |
|
SQL Injection in sqli (CVE-2017-14508)
SQL injection in sqli (CVE-2017-14508). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14512 |
|
SQL Injection in sqli (CVE-2017-14512)
SQL injection in sqli (CVE-2017-14512). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14513 |
|
Path Traversal in path-traversal (CVE-2017-14513)
path traversal in path-traversal (CVE-2017-14513). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-14504 |
|
Vulnerability in c (CVE-2017-14504)
vulnerability in c (CVE-2017-14504). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-14505 |
|
Vulnerability in c (CVE-2017-14505)
vulnerability in c (CVE-2017-14505). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-14501 |
|
Out-of-Bounds Read in c (CVE-2017-14501)
vulnerability in c (CVE-2017-14501). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-14502 |
|
Out-of-Bounds Read in c (CVE-2017-14502)
vulnerability in c (CVE-2017-14502). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-14503 |
|
Out-of-Bounds Read in c (CVE-2017-14503)
vulnerability in c (CVE-2017-14503). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-14500 |
|
OS Command Injection in cpp (CVE-2017-14500)
OS command injection in cpp (CVE-2017-14500). Successful exploitation can lead to full system takeover.
|
| CVE-2014-9463 |
|
Code Injection in vbseo (CVE-2014-9463)
code injection in vbseo (CVE-2014-9463). Successful exploitation can lead to full system takeover. Exploitable via `Referer header`.
|
| CVE-2017-9328 |
|
OS Command Injection in terra-master (CVE-2017-9328)
OS command injection in terra-master (CVE-2017-9328). Successful exploitation can lead to full system takeover.
|
| CVE-2015-1527 |
|
Vulnerability in cpp (CVE-2015-1527)
vulnerability in cpp (CVE-2015-1527). Successful exploitation can lead to full system takeover.
|
| CVE-2017-0898 |
|
Vulnerability in ruby-lang (CVE-2017-0898)
vulnerability in ruby-lang (CVE-2017-0898). Confidential information can be exposed externally.
|
| CVE-2017-14497 |
|
Buffer Overflow in c (CVE-2017-14497)
vulnerability in c (CVE-2017-14497). Successful exploitation can lead to full system takeover.
|
| CVE-2017-10856 |
|
Vulnerability in c (CVE-2017-10856)
vulnerability in c (CVE-2017-10856). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-4926 |
|
Cross-Site Scripting (XSS) in vmware (CVE-2017-4926)
cross-site scripting in vmware (CVE-2017-4926). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-14483 |
|
Vulnerability in gentoo (CVE-2017-14483)
vulnerability in gentoo (CVE-2017-14483). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-14489 |
|
Vulnerability in c (CVE-2017-14489)
vulnerability in c (CVE-2017-14489). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-2809 |
|
Code Injection in ansible-vault (CVE-2017-2809)
code injection in ansible-vault (CVE-2017-2809). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `3f8f659ef443ab870bb19f95d43543470168ae04, 1.0.5` or later.
|
| CVE-2013-7429 |
|
Vulnerability in mapsplugin (CVE-2013-7429)
vulnerability in mapsplugin (CVE-2013-7429). Successful exploitation can lead to full system takeover.
|
| CVE-2017-1002022 |
|
SQL Injection in wordpress (CVE-2017-1002022)
SQL injection in wordpress (CVE-2017-1002022). Successful exploitation can lead to full system takeover.
|
| CVE-2017-1002023 |
|
SQL Injection in wordpress (CVE-2017-1002023)
SQL injection in wordpress (CVE-2017-1002023). Successful exploitation can lead to full system takeover.
|
| CVE-2017-1002024 |
|
Authentication Bypass in kindsoft (CVE-2017-1002024)
authentication bypass in kindsoft (CVE-2017-1002024). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-1002027 |
|
SQL Injection in wordpress (CVE-2017-1002027)
SQL injection in wordpress (CVE-2017-1002027). Successful exploitation can lead to full system takeover.
|
| CVE-2017-1002028 |
|
SQL Injection in wordpress (CVE-2017-1002028)
SQL injection in wordpress (CVE-2017-1002028). Successful exploitation can lead to full system takeover.
|
| CVE-2017-1002150 |
|
Open Redirect in csrf (CVE-2017-1002150)
vulnerability in csrf (CVE-2017-1002150). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-1002000 |
|
Unrestricted File Upload in wordpress (CVE-2017-1002000)
vulnerability in wordpress (CVE-2017-1002000). Successful exploitation can lead to full system takeover.
|
| CVE-2017-1002004 |
|
SQL Injection in wordpress (CVE-2017-1002004)
SQL injection in wordpress (CVE-2017-1002004). Data can be tampered with by attackers.
|
| CVE-2017-1002005 |
|
SQL Injection in wordpress (CVE-2017-1002005)
SQL injection in wordpress (CVE-2017-1002005). Data can be tampered with by attackers.
|
| CVE-2017-1002006 |
|
Vulnerability in wordpress (CVE-2017-1002006)
vulnerability in wordpress (CVE-2017-1002006). Data can be tampered with by attackers.
|
| CVE-2017-1002007 |
|
Vulnerability in wordpress (CVE-2017-1002007)
vulnerability in wordpress (CVE-2017-1002007). Data can be tampered with by attackers.
|
| CVE-2017-1002008 |
|
Unrestricted File Upload in wordpress (CVE-2017-1002008)
vulnerability in wordpress (CVE-2017-1002008). Successful exploitation can lead to full system takeover.
|
| CVE-2017-1002009 |
|
SQL Injection in wordpress (CVE-2017-1002009)
SQL injection in wordpress (CVE-2017-1002009). Successful exploitation can lead to full system takeover.
|
| CVE-2017-1002010 |
|
SQL Injection in wordpress (CVE-2017-1002010)
SQL injection in wordpress (CVE-2017-1002010). Successful exploitation can lead to full system takeover.
|
| CVE-2017-1002012 |
|
SQL Injection in wordpress (CVE-2017-1002012)
SQL injection in wordpress (CVE-2017-1002012). Successful exploitation can lead to full system takeover.
|
| CVE-2017-1002013 |
|
SQL Injection in wordpress (CVE-2017-1002013)
SQL injection in wordpress (CVE-2017-1002013). Successful exploitation can lead to full system takeover.
|
| CVE-2017-1002014 |
|
SQL Injection in wordpress (CVE-2017-1002014)
SQL injection in wordpress (CVE-2017-1002014). Successful exploitation can lead to full system takeover.
|
| CVE-2017-1002015 |
|
SQL Injection in wordpress (CVE-2017-1002015)
SQL injection in wordpress (CVE-2017-1002015). Successful exploitation can lead to full system takeover.
|
| CVE-2017-1002016 |
|
Unrestricted File Upload in wordpress (CVE-2017-1002016)
vulnerability in wordpress (CVE-2017-1002016). Successful exploitation can lead to full system takeover.
|
| CVE-2017-1002017 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2017-1002017)
cross-site scripting in wordpress (CVE-2017-1002017). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-1002018 |
|
SQL Injection in wordpress (CVE-2017-1002018)
SQL injection in wordpress (CVE-2017-1002018). Successful exploitation can lead to full system takeover.
|
| CVE-2017-1002019 |
|
SQL Injection in wordpress (CVE-2017-1002019)
SQL injection in wordpress (CVE-2017-1002019). Successful exploitation can lead to full system takeover.
|
| CVE-2017-1002020 |
|
SQL Injection in wordpress (CVE-2017-1002020)
SQL injection in wordpress (CVE-2017-1002020). Successful exploitation can lead to full system takeover.
|
| CVE-2017-1002021 |
|
SQL Injection in wordpress (CVE-2017-1002021)
SQL injection in wordpress (CVE-2017-1002021). Successful exploitation can lead to full system takeover.
|
| CVE-2017-1002011 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2017-1002011)
cross-site scripting in wordpress (CVE-2017-1002011). Risk of unauthorized operations or information disclosure.
|