Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2017-0235 |
|
Buffer Overflow in microsoft (CVE-2017-0235)
vulnerability in microsoft (CVE-2017-0235). Successful exploitation can lead to full system takeover.
|
| CVE-2017-0236 |
|
Buffer Overflow in microsoft (CVE-2017-0236)
vulnerability in microsoft (CVE-2017-0236). Successful exploitation can lead to full system takeover.
|
| CVE-2017-8912 |
|
Code Injection in cmsmadesimple (CVE-2017-8912)
code injection in cmsmadesimple (CVE-2017-8912). Successful exploitation can lead to full system takeover.
|
| CVE-2017-8360 |
|
Information Disclosure in c (CVE-2017-8360)
vulnerability in c (CVE-2017-8360). Confidential information can be exposed externally.
|
| CVE-2017-8908 |
|
Out-of-Bounds Read in c (CVE-2017-8908)
vulnerability in c (CVE-2017-8908). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-8897 |
|
Cross-Site Scripting (XSS) in invisioncommunity (CVE-2017-8897)
cross-site scripting in invisioncommunity (CVE-2017-8897). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-8898 |
|
Cross-Site Scripting (XSS) in privilege-escalation (CVE-2017-8898)
cross-site scripting in privilege-escalation (CVE-2017-8898). Successful exploitation can lead to full system takeover.
|
| CVE-2017-8890 |
|
Vulnerability in c (CVE-2017-8890)
vulnerability in c (CVE-2017-8890). Successful exploitation can lead to full system takeover.
|
| CVE-2017-7886 |
|
Dolibarr ERP/CRM 4.0.4 has SQL Injection in doli/theme/eldy/style.css.php via the lang parameter.
Dolibarr ERP/CRM 4.0.4 has SQL Injection in doli/theme/eldy/style.css.php via the lang parameter.
|
| CVE-2017-7887 |
|
Dolibarr ERP/CRM 4.0.4 has XSS in doli/societe/list.php via the sall parameter.
Dolibarr ERP/CRM 4.0.4 has XSS in doli/societe/list.php via the sall parameter.
|
| CVE-2016-3032 |
|
Cross-Site Scripting (XSS) in ibm (CVE-2016-3032)
cross-site scripting in ibm (CVE-2016-3032). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-5888 |
|
Cross-Site Scripting (XSS) in ibm (CVE-2016-5888)
cross-site scripting in ibm (CVE-2016-5888). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-6035 |
|
Cross-Site Scripting (XSS) in ibm (CVE-2016-6035)
cross-site scripting in ibm (CVE-2016-6035). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-8868 |
|
Path Traversal in csrf (CVE-2017-8868)
path traversal in csrf (CVE-2017-8868). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-8876 |
|
Cross-Site Scripting (XSS) in getsymphony (CVE-2017-8876)
cross-site scripting in getsymphony (CVE-2017-8876). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-10371 |
|
Vulnerability in c (CVE-2016-10371)
vulnerability in c (CVE-2016-10371). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-8872 |
|
Out-of-Bounds Read in c (CVE-2017-8872)
vulnerability in c (CVE-2017-8872). Confidential information can be exposed externally.
|
| CVE-2017-0350 |
|
Vulnerability in c (CVE-2017-0350)
vulnerability in c (CVE-2017-0350). Successful exploitation can lead to full system takeover.
|
| CVE-2017-8853 |
|
Path Traversal in path-traversal (CVE-2017-8853)
path traversal in path-traversal (CVE-2017-8853). Data can be tampered with by attackers.
|
| CVE-2016-9257 |
|
Cross-Site Scripting (XSS) in f5 (CVE-2016-9257)
cross-site scripting in f5 (CVE-2016-9257). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-0893 |
|
Cross-Site Scripting (XSS) in nextcloud (CVE-2017-0893)
cross-site scripting in nextcloud (CVE-2017-0893). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-10369 |
|
Vulnerability in c (CVE-2016-10369)
vulnerability in c (CVE-2016-10369). Successful exploitation can lead to full system takeover.
|
| CVE-2017-8848 |
|
Allen Disk 1.6 has CSRF in setpass.php with an impact of changing a password.
Allen Disk 1.6 has CSRF in setpass.php with an impact of changing a password.
|
| CVE-2017-8825 |
|
Vulnerability in c (CVE-2017-8825)
vulnerability in c (CVE-2017-8825). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-8843 |
|
Vulnerability in c (CVE-2017-8843)
vulnerability in c (CVE-2017-8843). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-8844 |
|
Buffer Overflow in c (CVE-2017-8844)
vulnerability in c (CVE-2017-8844). Successful exploitation can lead to full system takeover.
|
| CVE-2017-8846 |
|
Use-After-Free in c (CVE-2017-8846)
vulnerability in c (CVE-2017-8846). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-8827 |
|
Authentication Bypass in dos (CVE-2017-8827)
authentication bypass in dos (CVE-2017-8827). Data can be tampered with by attackers.
|
| CVE-2017-8832 |
|
Allen Disk 1.6 has XSS in the id parameter to downfile.php.
Allen Disk 1.6 has XSS in the id parameter to downfile.php.
|
| CVE-2017-8833 |
|
Cross-Site Scripting (XSS) in zen-cart (CVE-2017-8833)
cross-site scripting in zen-cart (CVE-2017-8833). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-8830 |
|
Vulnerability in c (CVE-2017-8830)
vulnerability in c (CVE-2017-8830). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-8831 |
|
Out-of-Bounds Read in c (CVE-2017-8831)
vulnerability in c (CVE-2017-8831). Successful exploitation can lead to full system takeover.
|
| CVE-2017-8804 |
|
Unsafe Deserialization in c (CVE-2017-8804)
vulnerability in c (CVE-2017-8804). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-7909 |
|
Vulnerability in advantech-bb-smartworx (CVE-2017-7909)
vulnerability in advantech-bb-smartworx (CVE-2017-7909). Successful exploitation can lead to full system takeover.
|
| CVE-2017-8788 |
|
Vulnerability in accellion (CVE-2017-8788)
vulnerability in accellion (CVE-2017-8788). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-8789 |
|
SQL Injection in sqli (CVE-2017-8789)
SQL injection in sqli (CVE-2017-8789). Successful exploitation can lead to full system takeover.
|
| CVE-2017-8793 |
|
Vulnerability in accellion (CVE-2017-8793)
vulnerability in accellion (CVE-2017-8793). Successful exploitation can lead to full system takeover.
|
| CVE-2017-8796 |
|
SQL Injection in sqli (CVE-2017-8796)
SQL injection in sqli (CVE-2017-8796). Successful exploitation can lead to full system takeover.
|
| CVE-2017-8787 |
|
Out-of-Bounds Read in cpp (CVE-2017-8787)
vulnerability in cpp (CVE-2017-8787). Successful exploitation can lead to full system takeover.
|
| CVE-2017-5905 |
|
Vulnerability in c (CVE-2017-5905)
vulnerability in c (CVE-2017-5905). Confidential information can be exposed externally.
|
| CVE-2017-5913 |
|
Vulnerability in c (CVE-2017-5913)
vulnerability in c (CVE-2017-5913). Confidential information can be exposed externally.
|
| CVE-2017-5915 |
|
Vulnerability in c (CVE-2017-5915)
vulnerability in c (CVE-2017-5915). Confidential information can be exposed externally.
|
| CVE-2017-8786 |
|
Buffer Overflow in c (CVE-2017-8786)
vulnerability in c (CVE-2017-8786). Successful exploitation can lead to full system takeover.
|
| CVE-2017-3730 |
|
Vulnerability in c (CVE-2017-3730)
vulnerability in c (CVE-2017-3730). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-8295 |
|
Vulnerability in wordpress (CVE-2017-8295)
vulnerability in wordpress (CVE-2017-8295). Data can be tampered with by attackers. Exploitable via `Host header`.
|
| CVE-2017-8763 |
|
Cross-Site Scripting (XSS) in telaxius (CVE-2017-8763)
cross-site scripting in telaxius (CVE-2017-8763). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-8765 |
|
Vulnerability in c (CVE-2017-8765)
vulnerability in c (CVE-2017-8765). Risk of unauthorized operations or information disclosure.
|
| CVE-2014-9940 |
|
Use-After-Free in c (CVE-2014-9940)
vulnerability in c (CVE-2014-9940). Successful exploitation can lead to full system takeover.
|
| CVE-2015-9004 |
|
Vulnerability in c (CVE-2015-9004)
vulnerability in c (CVE-2015-9004). Successful exploitation can lead to full system takeover.
|
| CVE-2017-7476 |
|
Buffer Overflow in c (CVE-2017-7476)
vulnerability in c (CVE-2017-7476). Successful exploitation can lead to full system takeover.
|