Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2020-21833 |
|
Out-of-Bounds Write in c (CVE-2020-21833)
out-of-bounds write in c (CVE-2020-21833). Successful exploitation can lead to full system takeover.
|
| CVE-2020-21841 |
|
Out-of-Bounds Write in c (CVE-2020-21841)
out-of-bounds write in c (CVE-2020-21841). Successful exploitation can lead to full system takeover.
|
| CVE-2021-31780 |
|
Vulnerability in misp-project (CVE-2021-31780)
vulnerability in misp-project (CVE-2021-31780). Confidential information can be exposed externally.
|
| CVE-2021-28927 |
|
OS Command Injection in c (CVE-2021-28927)
OS command injection in c (CVE-2021-28927). Successful exploitation can lead to full system takeover.
|
| CVE-2021-26216 |
|
SeedDMS 5.1.x is affected by cross-site request forgery (CSRF) in out.EditFolder.php.
SeedDMS 5.1.x is affected by cross-site request forgery (CSRF) in out.EditFolder.php.
|
| CVE-2021-26215 |
|
SeedDMS 5.1.x is affected by cross-site request forgery (CSRF) in out.EditDocument.php.
SeedDMS 5.1.x is affected by cross-site request forgery (CSRF) in out.EditDocument.php.
|
| CVE-2021-27904 |
|
Vulnerability in misp-project (CVE-2021-27904)
vulnerability in misp-project (CVE-2021-27904). Confidential information can be exposed externally.
|
| CVE-2021-3294 |
|
Cross-Site Scripting (XSS) in casap-automated-enrollment-system-project (CVE-2021-3294)
cross-site scripting in casap-automated-enrollment-system-project (CVE-2021-3294). Risk of unauthorized operations or information disclosure.
|
| CVE-2020-24085 |
|
Cross-Site Scripting (XSS) in misp-project (CVE-2020-24085)
cross-site scripting in misp-project (CVE-2020-24085). Risk of unauthorized operations or information disclosure.
|
| CVE-2021-25325 |
|
Cross-Site Scripting (XSS) in misp-project (CVE-2021-25325)
cross-site scripting in misp-project (CVE-2021-25325). Risk of unauthorized operations or information disclosure.
|
| CVE-2020-29006 |
|
Vulnerability in misp-project (CVE-2020-29006)
vulnerability in misp-project (CVE-2020-29006). Successful exploitation can lead to full system takeover.
|
| CVE-2020-28210 |
|
Cross-Site Scripting (XSS) in schneider-electric (CVE-2020-28210)
cross-site scripting in schneider-electric (CVE-2020-28210). Risk of unauthorized operations or information disclosure.
|
| CVE-2020-28941 |
|
Vulnerability in c (CVE-2020-28941)
vulnerability in c (CVE-2020-28941). Risk of unauthorized operations or information disclosure.
|
| CVE-2020-25515 |
|
Unrestricted File Upload in simple-library-management-system-project (CVE-2020-25515)
vulnerability in simple-library-management-system-project (CVE-2020-25515). Successful exploitation can lead to full system takeover.
|
| CVE-2020-25487 |
|
SQL Injection in sqli (CVE-2020-25487)
SQL injection in sqli (CVE-2020-25487). Successful exploitation can lead to full system takeover.
|
| CVE-2020-25514 |
|
SQL Injection in simple-library-management-system-project (CVE-2020-25514)
SQL injection in simple-library-management-system-project (CVE-2020-25514). Successful exploitation can lead to full system takeover.
|
| CVE-2020-21731 |
|
Cross-Site Scripting (XSS) in gazie-project (CVE-2020-21731)
cross-site scripting in gazie-project (CVE-2020-21731). Risk of unauthorized operations or information disclosure.
|
| CVE-2020-21732 |
|
Cross-Site Scripting (XSS) in rukovoditel (CVE-2020-21732)
cross-site scripting in rukovoditel (CVE-2020-21732). Risk of unauthorized operations or information disclosure.
|
| CVE-2020-24194 |
|
Cross-Site Scripting (XSS) in daily-tracker-system-project (CVE-2020-24194)
cross-site scripting in daily-tracker-system-project (CVE-2020-24194). Risk of unauthorized operations or information disclosure.
|
| CVE-2020-15412 |
|
Vulnerability in misp-project (CVE-2020-15412)
vulnerability in misp-project (CVE-2020-15412). Risk of unauthorized operations or information disclosure.
|
| CVE-2020-15411 |
|
Privilege Escalation in misp-project (CVE-2020-15411)
vulnerability in misp-project (CVE-2020-15411). Successful exploitation can lead to full system takeover.
|
| CVE-2020-14969 |
|
Vulnerability in misp-project (CVE-2020-14969)
vulnerability in misp-project (CVE-2020-14969). Confidential information can be exposed externally.
|
| CVE-2020-11725 |
|
Vulnerability in c (CVE-2020-11725)
vulnerability in c (CVE-2020-11725). Successful exploitation can lead to full system takeover.
|
| CVE-2020-11458 |
|
Information Disclosure in misp-project (CVE-2020-11458)
vulnerability in misp-project (CVE-2020-11458). Confidential information can be exposed externally.
|
| CVE-2020-8894 |
|
Vulnerability in misp-project (CVE-2020-8894)
vulnerability in misp-project (CVE-2020-8894). Risk of unauthorized operations or information disclosure.
|
| CVE-2019-19379 |
|
Vulnerability in misp-project (CVE-2019-19379)
vulnerability in misp-project (CVE-2019-19379). Risk of unauthorized operations or information disclosure.
|
| CVE-2018-7852 |
|
Vulnerability in c (CVE-2018-7852)
vulnerability in c (CVE-2018-7852). Risk of unauthorized operations or information disclosure.
|
| CVE-2019-11814 |
|
Cross-Site Scripting (XSS) in misp-project (CVE-2019-11814)
cross-site scripting in misp-project (CVE-2019-11814). Risk of unauthorized operations or information disclosure.
|
| CVE-2019-11813 |
|
Cross-Site Scripting (XSS) in misp-project (CVE-2019-11813)
cross-site scripting in misp-project (CVE-2019-11813). Risk of unauthorized operations or information disclosure.
|
| CVE-2019-11812 |
|
Cross-Site Scripting (XSS) in misp-project (CVE-2019-11812)
cross-site scripting in misp-project (CVE-2019-11812). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-29004 |
|
Cross-Site Scripting (XSS) in phpgurukul (CVE-2022-29004)
cross-site scripting in phpgurukul (CVE-2022-29004). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-29005 |
|
Cross-Site Scripting (XSS) in phpgurukul (CVE-2022-29005)
cross-site scripting in phpgurukul (CVE-2022-29005). Risk of unauthorized operations or information disclosure.
|
| CVE-2011-4327 |
|
Information Disclosure in c (CVE-2011-4327)
vulnerability in c (CVE-2011-4327). Confidential information can be exposed externally.
|
| CVE-2015-1916 |
|
Vulnerability in dos (CVE-2015-1916)
vulnerability in dos (CVE-2015-1916). Risk of unauthorized operations or information disclosure.
|
| CVE-2011-0539 |
|
Vulnerability in c (CVE-2011-0539)
vulnerability in c (CVE-2011-0539). Confidential information can be exposed externally.
|
| CVE-2016-10010 |
|
Vulnerability in c (CVE-2016-10010)
vulnerability in c (CVE-2016-10010). Successful exploitation can lead to full system takeover.
|
| CVE-2016-3115 |
|
Vulnerability in c (CVE-2016-3115)
vulnerability in c (CVE-2016-3115). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-8858 |
|
Vulnerability in c (CVE-2016-8858)
vulnerability in c (CVE-2016-8858). Risk of unauthorized operations or information disclosure.
|
| CVE-2018-7795 |
|
Cross-Site Scripting (XSS) in schneider-electric (CVE-2018-7795)
cross-site scripting in schneider-electric (CVE-2018-7795). Risk of unauthorized operations or information disclosure.
|
| CVE-2018-19908 |
|
OS Command Injection in misp-project (CVE-2018-19908)
OS command injection in misp-project (CVE-2018-19908). Successful exploitation can lead to full system takeover.
|
| CVE-2018-13785 |
|
Vulnerability in c (CVE-2018-13785)
vulnerability in c (CVE-2018-13785). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-10011 |
|
Vulnerability in c (CVE-2016-10011)
vulnerability in c (CVE-2016-10011). Confidential information can be exposed externally.
|
| CVE-2015-5600 |
|
Vulnerability in c (CVE-2015-5600)
vulnerability in c (CVE-2015-5600). Successful exploitation can lead to full system takeover.
|
| CVE-2022-29145 |
|
Vulnerability in Microsoft.AspNetCore.App.Runtime.win-x64 (CVE-2022-29145)
vulnerability in Microsoft.AspNetCore.App.Runtime.win-x64 (CVE-2022-29145). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `6.0.5` or later.
|
| CVE-2022-29117 |
|
.NET and Visual Studio Denial of Service Vulnerability
.NET and Visual Studio Denial of Service Vulnerability
|
| CVE-2022-29347 |
|
Unrestricted File Upload in web-at-rchiv-project (CVE-2022-29347)
vulnerability in web-at-rchiv-project (CVE-2022-29347). Successful exploitation can lead to full system takeover.
|
| CVE-2021-31674 |
|
Cross-Site Scripting (XSS) in cyclos (CVE-2021-31674)
cross-site scripting in cyclos (CVE-2021-31674). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-28102 |
|
Cross-Site Scripting (XSS) in php-mysql-admin-panel-generator-project (CVE-2022-28102)
cross-site scripting in php-mysql-admin-panel-generator-project (CVE-2022-28102). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-27984 |
|
SQL Injection in sqli (CVE-2022-27984)
SQL injection in sqli (CVE-2022-27984). Successful exploitation can lead to full system takeover.
|
| CVE-2022-27985 |
|
SQL Injection in sqli (CVE-2022-27985)
SQL injection in sqli (CVE-2022-27985). Successful exploitation can lead to full system takeover.
|