Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2017-11511 |
|
Path Traversal in manageengine (CVE-2017-11511)
path traversal in manageengine (CVE-2017-11511). Confidential information can be exposed externally.
|
| CVE-2017-11512 |
|
Path Traversal in manageengine (CVE-2017-11512)
path traversal in manageengine (CVE-2017-11512). Confidential information can be exposed externally.
|
| CVE-2015-3933 |
|
SQL Injection in sqli (CVE-2015-3933)
SQL injection in sqli (CVE-2015-3933). Successful exploitation can lead to full system takeover.
|
| CVE-2017-16660 |
|
Vulnerability in c (CVE-2017-16660)
vulnerability in c (CVE-2017-16660). Successful exploitation can lead to full system takeover.
|
| CVE-2017-16661 |
|
Information Disclosure in cacti (CVE-2017-16661)
vulnerability in cacti (CVE-2017-16661). Confidential information can be exposed externally.
|
| CVE-2017-16561 |
|
SQL Injection in sqli (CVE-2017-16561)
SQL injection in sqli (CVE-2017-16561). Successful exploitation can lead to full system takeover.
|
| CVE-2017-16642 |
|
Out-of-Bounds Read in c (CVE-2017-16642)
vulnerability in c (CVE-2017-16642). Confidential information can be exposed externally.
|
| CVE-2017-16641 |
|
OS Command Injection in cacti (CVE-2017-16641)
OS command injection in cacti (CVE-2017-16641). Successful exploitation can lead to full system takeover.
|
| CVE-2017-13680 |
|
Vulnerability in symantec (CVE-2017-13680)
vulnerability in symantec (CVE-2017-13680). Data can be tampered with by attackers.
|
| CVE-2017-15039 |
|
Cross-Site Scripting (XSS) in zurmo (CVE-2017-15039)
cross-site scripting in zurmo (CVE-2017-15039). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-16524 |
|
Unrestricted File Upload in hanwhasecurity (CVE-2017-16524)
vulnerability in hanwhasecurity (CVE-2017-16524). Successful exploitation can lead to full system takeover.
|
| CVE-2017-16569 |
|
Open Redirect in zurmo (CVE-2017-16569)
vulnerability in zurmo (CVE-2017-16569). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-16548 |
|
Out-of-Bounds Read in c (CVE-2017-16548)
vulnerability in c (CVE-2017-16548). Successful exploitation can lead to full system takeover.
|
| CVE-2017-16546 |
|
Buffer Overflow in c (CVE-2017-16546)
vulnerability in c (CVE-2017-16546). Successful exploitation can lead to full system takeover.
|
| CVE-2017-16540 |
|
Information Disclosure in open-emr (CVE-2017-16540)
vulnerability in open-emr (CVE-2017-16540). Confidential information can be exposed externally.
|
| CVE-2017-16541 |
|
Information Disclosure in torproject (CVE-2017-16541)
vulnerability in torproject (CVE-2017-16541). Confidential information can be exposed externally.
|
| CVE-2017-1000148 |
|
Unsafe Deserialization in mahara (CVE-2017-1000148)
vulnerability in mahara (CVE-2017-1000148). Successful exploitation can lead to full system takeover.
|
| CVE-2017-1000152 |
|
Vulnerability in mahara (CVE-2017-1000152)
vulnerability in mahara (CVE-2017-1000152). Successful exploitation can lead to full system takeover.
|
| CVE-2017-3736 |
|
Information Disclosure in openssl (CVE-2017-3736)
vulnerability in openssl (CVE-2017-3736). Confidential information can be exposed externally.
|
| CVE-2017-12261 |
|
Vulnerability in express (CVE-2017-12261)
vulnerability in express (CVE-2017-12261). Successful exploitation can lead to full system takeover.
|
| CVE-2017-1552 |
|
Cross-Site Scripting (XSS) in ibm (CVE-2017-1552)
cross-site scripting in ibm (CVE-2017-1552). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-1553 |
|
Cross-Site Scripting (XSS) in ibm (CVE-2017-1553)
cross-site scripting in ibm (CVE-2017-1553). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-1554 |
|
Cross-Site Scripting (XSS) in ibm (CVE-2017-1554)
cross-site scripting in ibm (CVE-2017-1554). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-1000121 |
|
Vulnerability in webkitgtk (CVE-2017-1000121)
vulnerability in webkitgtk (CVE-2017-1000121). Successful exploitation can lead to full system takeover.
|
| CVE-2017-1000122 |
|
Vulnerability in dos (CVE-2017-1000122)
vulnerability in dos (CVE-2017-1000122). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-1000242 |
|
Information Disclosure in jenkins (CVE-2017-1000242)
vulnerability in jenkins (CVE-2017-1000242). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-1000243 |
|
Vulnerability in jenkins (CVE-2017-1000243)
vulnerability in jenkins (CVE-2017-1000243). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-1000244 |
|
Cross-Site Request Forgery (CSRF) in csrf (CVE-2017-1000244)
vulnerability in csrf (CVE-2017-1000244). Successful exploitation can lead to full system takeover.
|
| CVE-2017-1000245 |
|
Vulnerability in jenkins (CVE-2017-1000245)
vulnerability in jenkins (CVE-2017-1000245). Successful exploitation can lead to full system takeover.
|
| CVE-2017-12625 |
|
Information Disclosure in apache (CVE-2017-12625)
vulnerability in apache (CVE-2017-12625). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-15978 |
|
AROX School ERP PHP Script 1.0 allows SQL Injection via the office_admin/ id parameter.
AROX School ERP PHP Script 1.0 allows SQL Injection via the office_admin/ id parameter.
|
| CVE-2017-15981 |
|
SQL Injection in sqli (CVE-2017-15981)
SQL injection in sqli (CVE-2017-15981). Successful exploitation can lead to full system takeover.
|
| CVE-2017-15982 |
|
SQL Injection in sqli (CVE-2017-15982)
SQL injection in sqli (CVE-2017-15982). Successful exploitation can lead to full system takeover.
|
| CVE-2017-15983 |
|
SQL Injection in sqli (CVE-2017-15983)
SQL injection in sqli (CVE-2017-15983). Successful exploitation can lead to full system takeover.
|
| CVE-2017-15984 |
|
Creative Management System (CMS) Lite 1.4 allows SQL Injection via the S parameter to index.php.
Creative Management System (CMS) Lite 1.4 allows SQL Injection via the S parameter to index.php.
|
| CVE-2017-15985 |
|
Basic B2B Script allows SQL Injection via the product_view1.php pid or id parameter.
Basic B2B Script allows SQL Injection via the product_view1.php pid or id parameter.
|
| CVE-2017-15987 |
|
SQL Injection in sqli (CVE-2017-15987)
SQL injection in sqli (CVE-2017-15987). Successful exploitation can lead to full system takeover.
|
| CVE-2017-15988 |
|
SQL Injection in sqli (CVE-2017-15988)
SQL injection in sqli (CVE-2017-15988). Successful exploitation can lead to full system takeover.
|
| CVE-2017-15989 |
|
SQL Injection in sqli (CVE-2017-15989)
SQL injection in sqli (CVE-2017-15989). Successful exploitation can lead to full system takeover.
|
| CVE-2017-15990 |
|
Unrestricted File Upload in savsofteproducts (CVE-2017-15990)
vulnerability in savsofteproducts (CVE-2017-15990). Successful exploitation can lead to full system takeover.
|
| CVE-2017-15991 |
|
SQL Injection in sqli (CVE-2017-15991)
SQL injection in sqli (CVE-2017-15991). Successful exploitation can lead to full system takeover.
|
| CVE-2017-15992 |
|
Website Broker Script allows SQL Injection via the 'status_id' Parameter to status_list.php.
Website Broker Script allows SQL Injection via the 'status_id' Parameter to status_list.php.
|
| CVE-2017-15993 |
|
Zomato Clone Script allows SQL Injection via the restaurant-menu.php resid parameter.
Zomato Clone Script allows SQL Injection via the restaurant-menu.php resid parameter.
|
| CVE-2017-16230 |
|
Cross-Site Scripting (XSS) in typecho (CVE-2017-16230)
cross-site scripting in typecho (CVE-2017-16230). Risk of unauthorized operations or information disclosure.
|
| CVE-2012-4449 |
|
Vulnerability in apache (CVE-2012-4449)
vulnerability in apache (CVE-2012-4449). Successful exploitation can lead to full system takeover.
|
| CVE-2012-5636 |
|
Cross-Site Scripting (XSS) in apache (CVE-2012-5636)
cross-site scripting in apache (CVE-2012-5636). Risk of unauthorized operations or information disclosure.
|
| CVE-2013-4366 |
|
Vulnerability in apache (CVE-2013-4366)
vulnerability in apache (CVE-2013-4366). Successful exploitation can lead to full system takeover.
|
| CVE-2014-0072 |
|
Vulnerability in apache (CVE-2014-0072)
vulnerability in apache (CVE-2014-0072). Data can be tampered with by attackers.
|
| CVE-2014-0073 |
|
Vulnerability in apache (CVE-2014-0073)
vulnerability in apache (CVE-2014-0073). Successful exploitation can lead to full system takeover.
|
| CVE-2009-1197 |
|
Vulnerability in apache (CVE-2009-1197)
vulnerability in apache (CVE-2009-1197). Risk of unauthorized operations or information disclosure.
|