Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: products Clear
ID Title
CVE-2017-11511 Path Traversal in manageengine (CVE-2017-11511)
path traversal in manageengine (CVE-2017-11511). Confidential information can be exposed externally.
CVE-2017-11512 Path Traversal in manageengine (CVE-2017-11512)
path traversal in manageengine (CVE-2017-11512). Confidential information can be exposed externally.
CVE-2015-3933 SQL Injection in sqli (CVE-2015-3933)
SQL injection in sqli (CVE-2015-3933). Successful exploitation can lead to full system takeover.
CVE-2017-16660 Vulnerability in c (CVE-2017-16660)
vulnerability in c (CVE-2017-16660). Successful exploitation can lead to full system takeover.
CVE-2017-16661 Information Disclosure in cacti (CVE-2017-16661)
vulnerability in cacti (CVE-2017-16661). Confidential information can be exposed externally.
CVE-2017-16561 SQL Injection in sqli (CVE-2017-16561)
SQL injection in sqli (CVE-2017-16561). Successful exploitation can lead to full system takeover.
CVE-2017-16642 Out-of-Bounds Read in c (CVE-2017-16642)
vulnerability in c (CVE-2017-16642). Confidential information can be exposed externally.
CVE-2017-16641 OS Command Injection in cacti (CVE-2017-16641)
OS command injection in cacti (CVE-2017-16641). Successful exploitation can lead to full system takeover.
CVE-2017-13680 Vulnerability in symantec (CVE-2017-13680)
vulnerability in symantec (CVE-2017-13680). Data can be tampered with by attackers.
CVE-2017-15039 Cross-Site Scripting (XSS) in zurmo (CVE-2017-15039)
cross-site scripting in zurmo (CVE-2017-15039). Risk of unauthorized operations or information disclosure.
CVE-2017-16524 Unrestricted File Upload in hanwhasecurity (CVE-2017-16524)
vulnerability in hanwhasecurity (CVE-2017-16524). Successful exploitation can lead to full system takeover.
CVE-2017-16569 Open Redirect in zurmo (CVE-2017-16569)
vulnerability in zurmo (CVE-2017-16569). Risk of unauthorized operations or information disclosure.
CVE-2017-16548 Out-of-Bounds Read in c (CVE-2017-16548)
vulnerability in c (CVE-2017-16548). Successful exploitation can lead to full system takeover.
CVE-2017-16546 Buffer Overflow in c (CVE-2017-16546)
vulnerability in c (CVE-2017-16546). Successful exploitation can lead to full system takeover.
CVE-2017-16540 Information Disclosure in open-emr (CVE-2017-16540)
vulnerability in open-emr (CVE-2017-16540). Confidential information can be exposed externally.
CVE-2017-16541 Information Disclosure in torproject (CVE-2017-16541)
vulnerability in torproject (CVE-2017-16541). Confidential information can be exposed externally.
CVE-2017-1000148 Unsafe Deserialization in mahara (CVE-2017-1000148)
vulnerability in mahara (CVE-2017-1000148). Successful exploitation can lead to full system takeover.
CVE-2017-1000152 Vulnerability in mahara (CVE-2017-1000152)
vulnerability in mahara (CVE-2017-1000152). Successful exploitation can lead to full system takeover.
CVE-2017-3736 Information Disclosure in openssl (CVE-2017-3736)
vulnerability in openssl (CVE-2017-3736). Confidential information can be exposed externally.
CVE-2017-12261 Vulnerability in express (CVE-2017-12261)
vulnerability in express (CVE-2017-12261). Successful exploitation can lead to full system takeover.
CVE-2017-1552 Cross-Site Scripting (XSS) in ibm (CVE-2017-1552)
cross-site scripting in ibm (CVE-2017-1552). Risk of unauthorized operations or information disclosure.
CVE-2017-1553 Cross-Site Scripting (XSS) in ibm (CVE-2017-1553)
cross-site scripting in ibm (CVE-2017-1553). Risk of unauthorized operations or information disclosure.
CVE-2017-1554 Cross-Site Scripting (XSS) in ibm (CVE-2017-1554)
cross-site scripting in ibm (CVE-2017-1554). Risk of unauthorized operations or information disclosure.
CVE-2017-1000121 Vulnerability in webkitgtk (CVE-2017-1000121)
vulnerability in webkitgtk (CVE-2017-1000121). Successful exploitation can lead to full system takeover.
CVE-2017-1000122 Vulnerability in dos (CVE-2017-1000122)
vulnerability in dos (CVE-2017-1000122). Risk of unauthorized operations or information disclosure.
CVE-2017-1000242 Information Disclosure in jenkins (CVE-2017-1000242)
vulnerability in jenkins (CVE-2017-1000242). Risk of unauthorized operations or information disclosure.
CVE-2017-1000243 Vulnerability in jenkins (CVE-2017-1000243)
vulnerability in jenkins (CVE-2017-1000243). Risk of unauthorized operations or information disclosure.
CVE-2017-1000244 Cross-Site Request Forgery (CSRF) in csrf (CVE-2017-1000244)
vulnerability in csrf (CVE-2017-1000244). Successful exploitation can lead to full system takeover.
CVE-2017-1000245 Vulnerability in jenkins (CVE-2017-1000245)
vulnerability in jenkins (CVE-2017-1000245). Successful exploitation can lead to full system takeover.
CVE-2017-12625 Information Disclosure in apache (CVE-2017-12625)
vulnerability in apache (CVE-2017-12625). Risk of unauthorized operations or information disclosure.
CVE-2017-15978 AROX School ERP PHP Script 1.0 allows SQL Injection via the office_admin/ id parameter.
AROX School ERP PHP Script 1.0 allows SQL Injection via the office_admin/ id parameter.
CVE-2017-15981 SQL Injection in sqli (CVE-2017-15981)
SQL injection in sqli (CVE-2017-15981). Successful exploitation can lead to full system takeover.
CVE-2017-15982 SQL Injection in sqli (CVE-2017-15982)
SQL injection in sqli (CVE-2017-15982). Successful exploitation can lead to full system takeover.
CVE-2017-15983 SQL Injection in sqli (CVE-2017-15983)
SQL injection in sqli (CVE-2017-15983). Successful exploitation can lead to full system takeover.
CVE-2017-15984 Creative Management System (CMS) Lite 1.4 allows SQL Injection via the S parameter to index.php.
Creative Management System (CMS) Lite 1.4 allows SQL Injection via the S parameter to index.php.
CVE-2017-15985 Basic B2B Script allows SQL Injection via the product_view1.php pid or id parameter.
Basic B2B Script allows SQL Injection via the product_view1.php pid or id parameter.
CVE-2017-15987 SQL Injection in sqli (CVE-2017-15987)
SQL injection in sqli (CVE-2017-15987). Successful exploitation can lead to full system takeover.
CVE-2017-15988 SQL Injection in sqli (CVE-2017-15988)
SQL injection in sqli (CVE-2017-15988). Successful exploitation can lead to full system takeover.
CVE-2017-15989 SQL Injection in sqli (CVE-2017-15989)
SQL injection in sqli (CVE-2017-15989). Successful exploitation can lead to full system takeover.
CVE-2017-15990 Unrestricted File Upload in savsofteproducts (CVE-2017-15990)
vulnerability in savsofteproducts (CVE-2017-15990). Successful exploitation can lead to full system takeover.
CVE-2017-15991 SQL Injection in sqli (CVE-2017-15991)
SQL injection in sqli (CVE-2017-15991). Successful exploitation can lead to full system takeover.
CVE-2017-15992 Website Broker Script allows SQL Injection via the 'status_id' Parameter to status_list.php.
Website Broker Script allows SQL Injection via the 'status_id' Parameter to status_list.php.
CVE-2017-15993 Zomato Clone Script allows SQL Injection via the restaurant-menu.php resid parameter.
Zomato Clone Script allows SQL Injection via the restaurant-menu.php resid parameter.
CVE-2017-16230 Cross-Site Scripting (XSS) in typecho (CVE-2017-16230)
cross-site scripting in typecho (CVE-2017-16230). Risk of unauthorized operations or information disclosure.
CVE-2012-4449 Vulnerability in apache (CVE-2012-4449)
vulnerability in apache (CVE-2012-4449). Successful exploitation can lead to full system takeover.
CVE-2012-5636 Cross-Site Scripting (XSS) in apache (CVE-2012-5636)
cross-site scripting in apache (CVE-2012-5636). Risk of unauthorized operations or information disclosure.
CVE-2013-4366 Vulnerability in apache (CVE-2013-4366)
vulnerability in apache (CVE-2013-4366). Successful exploitation can lead to full system takeover.
CVE-2014-0072 Vulnerability in apache (CVE-2014-0072)
vulnerability in apache (CVE-2014-0072). Data can be tampered with by attackers.
CVE-2014-0073 Vulnerability in apache (CVE-2014-0073)
vulnerability in apache (CVE-2014-0073). Successful exploitation can lead to full system takeover.
CVE-2009-1197 Vulnerability in apache (CVE-2009-1197)
vulnerability in apache (CVE-2009-1197). Risk of unauthorized operations or information disclosure.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →