Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2017-5553 |
|
Cross-Site Scripting (XSS) in b2evolution (CVE-2017-5553)
cross-site scripting in b2evolution (CVE-2017-5553). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-5574 |
|
SQL Injection in sqli (CVE-2017-5574)
SQL injection in sqli (CVE-2017-5574). Successful exploitation can lead to full system takeover.
|
| CVE-2017-5575 |
|
SQL Injection in sqli (CVE-2017-5575)
SQL injection in sqli (CVE-2017-5575). Successful exploitation can lead to full system takeover.
|
| CVE-2016-10156 |
|
Vulnerability in c (CVE-2016-10156)
vulnerability in c (CVE-2016-10156). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `229` or later.
|
| CVE-2017-5563 |
|
Out-of-Bounds Read in c (CVE-2017-5563)
vulnerability in c (CVE-2017-5563). Successful exploitation can lead to full system takeover.
|
| CVE-2017-5545 |
|
Out-of-Bounds Read in c (CVE-2017-5545)
vulnerability in c (CVE-2017-5545). Confidential information can be exposed externally.
|
| CVE-2016-5316 |
|
Out-of-Bounds Read in c (CVE-2016-5316)
vulnerability in c (CVE-2016-5316). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-5319 |
|
Buffer Overflow in c (CVE-2016-5319)
vulnerability in c (CVE-2016-5319). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-9435 |
|
Vulnerability in c (CVE-2016-9435)
vulnerability in c (CVE-2016-9435). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-9436 |
|
Vulnerability in c (CVE-2016-9436)
vulnerability in c (CVE-2016-9436). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-5541 |
|
Path Traversal in path-traversal (CVE-2017-5541)
path traversal in path-traversal (CVE-2017-5541). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-5542 |
|
Cross-Site Scripting (XSS) in getsymphony (CVE-2017-5542)
cross-site scripting in getsymphony (CVE-2017-5542). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-5543 |
|
Code Injection in intelliants (CVE-2017-5543)
code injection in intelliants (CVE-2017-5543). Successful exploitation can lead to full system takeover.
|
| CVE-2016-5226 |
|
Cross-Site Scripting (XSS) in google (CVE-2016-5226)
cross-site scripting in google (CVE-2016-5226). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-5201 |
|
Information Disclosure in google (CVE-2016-5201)
vulnerability in google (CVE-2016-5201). Confidential information can be exposed externally.
|
| CVE-2016-6497 |
|
Vulnerability in apache (CVE-2016-6497)
vulnerability in apache (CVE-2016-6497). Data can be tampered with by attackers.
|
| CVE-2016-10148 |
|
Vulnerability in wordpress (CVE-2016-10148)
vulnerability in wordpress (CVE-2016-10148). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-6896 |
|
Path Traversal in wordpress (CVE-2016-6896)
path traversal in wordpress (CVE-2016-6896). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-6897 |
|
Cross-Site Request Forgery (CSRF) in wordpress (CVE-2016-6897)
vulnerability in wordpress (CVE-2016-6897). Confidential information can be exposed externally.
|
| CVE-2016-10147 |
|
Vulnerability in c (CVE-2016-10147)
vulnerability in c (CVE-2016-10147). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-7998 |
|
Vulnerability in spip (CVE-2016-7998)
vulnerability in spip (CVE-2016-7998). Successful exploitation can lead to full system takeover.
|
| CVE-2016-7999 |
|
SSRF (Server-Side Request Forgery) in ssrf (CVE-2016-7999)
SSRF in ssrf (CVE-2016-7999). Data can be tampered with by attackers.
|
| CVE-2016-9844 |
|
Buffer Overflow in c (CVE-2016-9844)
vulnerability in c (CVE-2016-9844). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-7980 |
|
Cross-Site Request Forgery (CSRF) in csrf (CVE-2016-7980)
vulnerability in csrf (CVE-2016-7980). Successful exploitation can lead to full system takeover.
|
| CVE-2016-7981 |
|
Cross-Site Scripting (XSS) in spip (CVE-2016-7981)
cross-site scripting in spip (CVE-2016-7981). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-7982 |
|
Path Traversal in path-traversal (CVE-2016-7982)
path traversal in path-traversal (CVE-2016-7982). Confidential information can be exposed externally.
|
| CVE-2014-9913 |
|
Buffer Overflow in c (CVE-2014-9913)
vulnerability in c (CVE-2014-9913). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-2233 |
|
Buffer Overflow in c (CVE-2016-2233)
vulnerability in c (CVE-2016-2233). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-7144 |
|
Authentication Bypass in c (CVE-2016-7144)
authentication bypass in c (CVE-2016-7144). Successful exploitation can lead to full system takeover.
|
| CVE-2016-7564 |
|
Buffer Overflow in c (CVE-2016-7564)
vulnerability in c (CVE-2016-7564). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-7799 |
|
Out-of-Bounds Read in c (CVE-2016-7799)
vulnerability in c (CVE-2016-7799). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-7906 |
|
Use-After-Free in c (CVE-2016-7906)
vulnerability in c (CVE-2016-7906). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-5517 |
|
SQL Injection in sqli (CVE-2017-5517)
SQL injection in sqli (CVE-2017-5517). Successful exploitation can lead to full system takeover.
|
| CVE-2017-5519 |
|
SQL Injection in sqli (CVE-2017-5519)
SQL injection in sqli (CVE-2017-5519). Successful exploitation can lead to full system takeover.
|
| CVE-2017-5520 |
|
Unrestricted File Upload in metalgenix (CVE-2017-5520)
vulnerability in metalgenix (CVE-2017-5520). Successful exploitation can lead to full system takeover.
|
| CVE-2016-7904 |
|
Cross-Site Request Forgery (CSRF) in csrf (CVE-2016-7904)
vulnerability in csrf (CVE-2016-7904). Successful exploitation can lead to full system takeover.
|
| CVE-2017-5480 |
|
Path Traversal in path-traversal (CVE-2017-5480)
path traversal in path-traversal (CVE-2017-5480). Confidential information can be exposed externally.
|
| CVE-2017-5492 |
|
Cross-Site Request Forgery (CSRF) in wordpress (CVE-2017-5492)
vulnerability in wordpress (CVE-2017-5492). Successful exploitation can lead to full system takeover.
|
| CVE-2017-5493 |
|
Vulnerability in wordpress (CVE-2017-5493)
vulnerability in wordpress (CVE-2017-5493). Data can be tampered with by attackers.
|
| CVE-2017-5487 |
|
Information Disclosure in wordpress (CVE-2017-5487)
vulnerability in wordpress (CVE-2017-5487). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-5488 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2017-5488)
cross-site scripting in wordpress (CVE-2017-5488). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-5490 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2017-5490)
cross-site scripting in wordpress (CVE-2017-5490). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-5491 |
|
Vulnerability in wordpress (CVE-2017-5491)
vulnerability in wordpress (CVE-2017-5491). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-2584 |
|
Information Disclosure in c (CVE-2017-2584)
vulnerability in c (CVE-2017-2584). Confidential information can be exposed externally.
|
| CVE-2017-5474 |
|
Open Redirect in s9y (CVE-2017-5474)
vulnerability in s9y (CVE-2017-5474). Risk of unauthorized operations or information disclosure. Exploitable via `Referer header`.
|
| CVE-2017-5475 |
|
comment.php in Serendipity through 2.0.5 allows CSRF in deleting any comments.
comment.php in Serendipity through 2.0.5 allows CSRF in deleting any comments.
|
| CVE-2016-8882 |
|
Vulnerability in c (CVE-2016-8882)
vulnerability in c (CVE-2016-8882). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-8883 |
|
Vulnerability in c (CVE-2016-8883)
vulnerability in c (CVE-2016-8883). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-9807 |
|
Out-of-Bounds Read in c (CVE-2016-9807)
vulnerability in c (CVE-2016-9807). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-10141 |
|
Vulnerability in c (CVE-2016-10141)
vulnerability in c (CVE-2016-10141). Successful exploitation can lead to full system takeover.
|