Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2015-7391 |
|
Cross-Site Scripting (XSS) in testlink (CVE-2015-7391)
cross-site scripting in testlink (CVE-2015-7391). Risk of unauthorized operations or information disclosure. Exploitable via `Referer header`.
|
| CVE-2015-7670 |
|
SQL Injection in wordpress (CVE-2015-7670)
SQL injection in wordpress (CVE-2015-7670). Successful exploitation can lead to full system takeover.
|
| CVE-2017-5192 |
|
Authentication Bypass in salt (CVE-2017-5192)
authentication bypass in salt (CVE-2017-5192). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `2015.8.13, 2016.3.5, 2016.11.2` or later.
|
| CVE-2017-5200 |
|
Vulnerability in salt (CVE-2017-5200)
vulnerability in salt (CVE-2017-5200). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `2015.8.13, 2016.3.5, 2016.11.2` or later.
|
| CVE-2017-14739 |
|
Vulnerability in c (CVE-2017-14739)
vulnerability in c (CVE-2017-14739). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-14741 |
|
Vulnerability in c (CVE-2017-14741)
vulnerability in c (CVE-2017-14741). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-7973 |
|
SQL Injection in sqli (CVE-2017-7973)
SQL injection in sqli (CVE-2017-7973). Successful exploitation can lead to full system takeover.
|
| CVE-2017-7974 |
|
Path Traversal in path-traversal (CVE-2017-7974)
path traversal in path-traversal (CVE-2017-7974). Successful exploitation can lead to full system takeover.
|
| CVE-2017-9956 |
|
Vulnerability in schneider-electric (CVE-2017-9956)
vulnerability in schneider-electric (CVE-2017-9956). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-9957 |
|
Vulnerability in schneider-electric (CVE-2017-9957)
vulnerability in schneider-electric (CVE-2017-9957). Successful exploitation can lead to full system takeover.
|
| CVE-2017-9958 |
|
Vulnerability in schneider-electric (CVE-2017-9958)
vulnerability in schneider-electric (CVE-2017-9958). Successful exploitation can lead to full system takeover.
|
| CVE-2017-9959 |
|
Vulnerability in dos (CVE-2017-9959)
vulnerability in dos (CVE-2017-9959). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-9960 |
|
Information Disclosure in schneider-electric (CVE-2017-9960)
vulnerability in schneider-electric (CVE-2017-9960). Risk of unauthorized operations or information disclosure.
|
| CVE-2015-8375 |
|
Cross-site scripting (XSS) vulnerability in PHP-Fusion 9.
Cross-site scripting (XSS) vulnerability in PHP-Fusion 9.
|
| CVE-2015-5169 |
|
Cross-site scripting (XSS) vulnerability in Apache Struts before 2.3.20.
Cross-site scripting (XSS) vulnerability in Apache Struts before 2.3.20.
|
| CVE-2011-4667 |
|
Vulnerability in cisco (CVE-2011-4667)
vulnerability in cisco (CVE-2011-4667). Confidential information can be exposed externally.
|
| CVE-2017-12905 |
|
SSRF (Server-Side Request Forgery) in vebto (CVE-2017-12905)
SSRF in vebto (CVE-2017-12905). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14125 |
|
SQL Injection in wordpress (CVE-2017-14125)
SQL injection in wordpress (CVE-2017-14125). Successful exploitation can lead to full system takeover.
|
| CVE-2010-3049 |
|
Cisco IOS before 12.2(33)SXI allows local users to cause a denial of service (device reboot).
Cisco IOS before 12.2(33)SXI allows local users to cause a denial of service (device reboot).
|
| CVE-2010-3050 |
|
Vulnerability in dos (CVE-2010-3050)
vulnerability in dos (CVE-2010-3050). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-14730 |
|
Vulnerability in elasticsearch (CVE-2017-14730)
vulnerability in elasticsearch (CVE-2017-14730). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14725 |
|
Open Redirect in wordpress (CVE-2017-14725)
vulnerability in wordpress (CVE-2017-14725). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-14705 |
|
OS Command Injection in denyall (CVE-2017-14705)
OS command injection in denyall (CVE-2017-14705). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14706 |
|
Authentication Bypass in denyall (CVE-2017-14706)
authentication bypass in denyall (CVE-2017-14706). Successful exploitation can lead to full system takeover.
|
| CVE-2017-6266 |
|
Vulnerability in dos (CVE-2017-6266)
vulnerability in dos (CVE-2017-6266). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-6267 |
|
Vulnerability in dos (CVE-2017-6267)
vulnerability in dos (CVE-2017-6267). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-6268 |
|
Vulnerability in dos (CVE-2017-6268)
vulnerability in dos (CVE-2017-6268). Successful exploitation can lead to full system takeover.
|
| CVE-2017-6269 |
|
Vulnerability in dos (CVE-2017-6269)
vulnerability in dos (CVE-2017-6269). Successful exploitation can lead to full system takeover.
|
| CVE-2017-6270 |
|
Vulnerability in dos (CVE-2017-6270)
vulnerability in dos (CVE-2017-6270). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-6271 |
|
Vulnerability in dos (CVE-2017-6271)
vulnerability in dos (CVE-2017-6271). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-6272 |
|
Vulnerability in dos (CVE-2017-6272)
vulnerability in dos (CVE-2017-6272). Successful exploitation can lead to full system takeover.
|
| CVE-2017-6277 |
|
Vulnerability in dos (CVE-2017-6277)
vulnerability in dos (CVE-2017-6277). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14685 |
|
Buffer Overflow in c (CVE-2017-14685)
vulnerability in c (CVE-2017-14685). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14686 |
|
Buffer Overflow in c (CVE-2017-14686)
vulnerability in c (CVE-2017-14686). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14687 |
|
Buffer Overflow in dos (CVE-2017-14687)
vulnerability in dos (CVE-2017-14687). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14684 |
|
Vulnerability in c (CVE-2017-14684)
vulnerability in c (CVE-2017-14684). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-14682 |
|
Buffer Overflow in c (CVE-2017-14682)
vulnerability in c (CVE-2017-14682). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14652 |
|
SQL Injection in sqli (CVE-2017-14652)
SQL injection in sqli (CVE-2017-14652). Successful exploitation can lead to full system takeover.
|
| CVE-2017-12929 |
|
Unrestricted File Upload in tecnovision (CVE-2017-12929)
vulnerability in tecnovision (CVE-2017-12929). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14626 |
|
Vulnerability in c (CVE-2017-14626)
vulnerability in c (CVE-2017-14626). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14624 |
|
Vulnerability in c (CVE-2017-14624)
vulnerability in c (CVE-2017-14624). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14625 |
|
Vulnerability in c (CVE-2017-14625)
vulnerability in c (CVE-2017-14625). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14618 |
|
Cross-Site Scripting (XSS) in phpmyfaq (CVE-2017-14618)
cross-site scripting in phpmyfaq (CVE-2017-14618). Risk of unauthorized operations or information disclosure.
|
| CVE-2015-5608 |
|
Open redirect vulnerability in Joomla! CMS 3.0.0 through 3.4.1.
Open redirect vulnerability in Joomla! CMS 3.0.0 through 3.4.1.
|
| CVE-2017-14595 |
|
Vulnerability in joomla (CVE-2017-14595)
vulnerability in joomla (CVE-2017-14595). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-14596 |
|
Vulnerability in joomla (CVE-2017-14596)
vulnerability in joomla (CVE-2017-14596). Successful exploitation can lead to full system takeover.
|
| CVE-2016-6795 |
|
Path Traversal in apache (CVE-2016-6795)
path traversal in apache (CVE-2016-6795). Successful exploitation can lead to full system takeover.
|
| CVE-2016-8738 |
|
Vulnerability in apache (CVE-2016-8738)
vulnerability in apache (CVE-2016-8738). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-12611 |
|
Vulnerability in apache (CVE-2017-12611)
vulnerability in apache (CVE-2017-12611). Successful exploitation can lead to full system takeover.
|
| CVE-2017-9793 |
|
Vulnerability in apache (CVE-2017-9793)
vulnerability in apache (CVE-2017-9793). Risk of unauthorized operations or information disclosure.
|