Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2017-11415 |
|
SQL Injection in sqli (CVE-2017-11415)
SQL injection in sqli (CVE-2017-11415). Successful exploitation can lead to full system takeover.
|
| CVE-2017-11416 |
|
Fiyo CMS 2.0.7 has SQL injection in /apps/app_comment/controller/insert.php via the name parameter.
Fiyo CMS 2.0.7 has SQL injection in /apps/app_comment/controller/insert.php via the name parameter.
|
| CVE-2017-11417 |
|
SQL Injection in sqli (CVE-2017-11417)
SQL injection in sqli (CVE-2017-11417). Successful exploitation can lead to full system takeover.
|
| CVE-2017-11418 |
|
SQL Injection in sqli (CVE-2017-11418)
SQL injection in sqli (CVE-2017-11418). Successful exploitation can lead to full system takeover.
|
| CVE-2017-11419 |
|
SQL Injection in sqli (CVE-2017-11419)
SQL injection in sqli (CVE-2017-11419). Successful exploitation can lead to full system takeover.
|
| CVE-2017-11404 |
|
Unrestricted File Upload in cmsmadesimple (CVE-2017-11404)
vulnerability in cmsmadesimple (CVE-2017-11404). Data can be tampered with by attackers.
|
| CVE-2017-11405 |
|
Unrestricted File Upload in cmsmadesimple (CVE-2017-11405)
vulnerability in cmsmadesimple (CVE-2017-11405). Data can be tampered with by attackers.
|
| CVE-2017-9609 |
|
Cross-Site Scripting (XSS) in blackcat-cms (CVE-2017-9609)
cross-site scripting in blackcat-cms (CVE-2017-9609). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-9933 |
|
Information Disclosure in joomla (CVE-2017-9933)
vulnerability in joomla (CVE-2017-9933). Confidential information can be exposed externally.
|
| CVE-2017-9934 |
|
Cross-Site Scripting (XSS) in csrf (CVE-2017-9934)
cross-site scripting in csrf (CVE-2017-9934). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-3742 |
|
Information Disclosure in lenovo (CVE-2017-3742)
vulnerability in lenovo (CVE-2017-3742). Confidential information can be exposed externally.
|
| CVE-2017-7685 |
|
Vulnerability in apache (CVE-2017-7685)
vulnerability in apache (CVE-2017-7685). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-7688 |
|
Apache OpenMeetings 1.0.0 updates user password in insecure manner.
Apache OpenMeetings 1.0.0 updates user password in insecure manner.
|
| CVE-2017-7683 |
|
Information Disclosure in apache (CVE-2017-7683)
vulnerability in apache (CVE-2017-7683). Confidential information can be exposed externally.
|
| CVE-2017-7663 |
|
Both global and Room chat are vulnerable to XSS attack in Apache OpenMeetings 3.2.0.
Both global and Room chat are vulnerable to XSS attack in Apache OpenMeetings 3.2.0.
|
| CVE-2017-7664 |
|
Uploaded XML documents were not correctly validated in Apache OpenMeetings 3.1.0.
Uploaded XML documents were not correctly validated in Apache OpenMeetings 3.1.0.
|
| CVE-2017-7666 |
|
Cross-Site Scripting (XSS) in apache (CVE-2017-7666)
cross-site scripting in apache (CVE-2017-7666). Successful exploitation can lead to full system takeover.
|
| CVE-2017-7673 |
|
Vulnerability in apache (CVE-2017-7673)
vulnerability in apache (CVE-2017-7673). Successful exploitation can lead to full system takeover.
|
| CVE-2017-7680 |
|
Vulnerability in apache (CVE-2017-7680)
vulnerability in apache (CVE-2017-7680). Data can be tampered with by attackers.
|
| CVE-2017-7681 |
|
SQL Injection in apache (CVE-2017-7681)
SQL injection in apache (CVE-2017-7681). Successful exploitation can lead to full system takeover.
|
| CVE-2017-7682 |
|
Vulnerability in apache (CVE-2017-7682)
vulnerability in apache (CVE-2017-7682). Data can be tampered with by attackers.
|
| CVE-2017-7684 |
|
Vulnerability in apache (CVE-2017-7684)
vulnerability in apache (CVE-2017-7684). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-3080 |
|
Vulnerability in adobe (CVE-2017-3080)
vulnerability in adobe (CVE-2017-3080). Confidential information can be exposed externally.
|
| CVE-2017-3099 |
|
Out-of-Bounds Write in adobe (CVE-2017-3099)
out-of-bounds write in adobe (CVE-2017-3099). Successful exploitation can lead to full system takeover.
|
| CVE-2017-3100 |
|
Out-of-Bounds Write in adobe (CVE-2017-3100)
out-of-bounds write in adobe (CVE-2017-3100). Confidential information can be exposed externally.
|
| CVE-2017-2337 |
|
Cross-Site Scripting (XSS) in juniper (CVE-2017-2337)
cross-site scripting in juniper (CVE-2017-2337). Successful exploitation can lead to full system takeover.
|
| CVE-2017-2338 |
|
Cross-Site Scripting (XSS) in juniper (CVE-2017-2338)
cross-site scripting in juniper (CVE-2017-2338). Successful exploitation can lead to full system takeover.
|
| CVE-2017-2339 |
|
Cross-Site Scripting (XSS) in juniper (CVE-2017-2339)
cross-site scripting in juniper (CVE-2017-2339). Successful exploitation can lead to full system takeover.
|
| CVE-2017-2335 |
|
Cross-Site Scripting (XSS) in juniper (CVE-2017-2335)
cross-site scripting in juniper (CVE-2017-2335). Successful exploitation can lead to full system takeover.
|
| CVE-2017-2336 |
|
Cross-Site Scripting (XSS) in juniper (CVE-2017-2336)
cross-site scripting in juniper (CVE-2017-2336). Successful exploitation can lead to full system takeover.
|
| CVE-2017-11347 |
|
Vulnerability in metinfo (CVE-2017-11347)
vulnerability in metinfo (CVE-2017-11347). Successful exploitation can lead to full system takeover.
|
| CVE-2017-11354 |
|
SQL Injection in sqli (CVE-2017-11354)
SQL injection in sqli (CVE-2017-11354). Successful exploitation can lead to full system takeover.
|
| CVE-2017-11362 |
|
Buffer Overflow in c (CVE-2017-11362)
vulnerability in c (CVE-2017-11362). Successful exploitation can lead to full system takeover.
|
| CVE-2017-11352 |
|
Vulnerability in c (CVE-2017-11352)
vulnerability in c (CVE-2017-11352). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-11360 |
|
Vulnerability in c (CVE-2017-11360)
vulnerability in c (CVE-2017-11360). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-11329 |
|
SQL Injection in sqli (CVE-2017-11329)
SQL injection in sqli (CVE-2017-11329). Successful exploitation can lead to full system takeover.
|
| CVE-2017-1000065 |
|
Cross-Site Scripting (XSS) in openmediavault (CVE-2017-1000065)
cross-site scripting in openmediavault (CVE-2017-1000065). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-1000362 |
|
Information Disclosure in jenkins (CVE-2017-1000362)
vulnerability in jenkins (CVE-2017-1000362). Successful exploitation can lead to full system takeover.
|
| CVE-2017-1000060 |
|
EyesOfNetwork (EON) 5.1 Unauthenticated SQL Injection in eonweb leading to remote root
EyesOfNetwork (EON) 5.1 Unauthenticated SQL Injection in eonweb leading to remote root
|
| CVE-2017-1000031 |
|
SQL Injection in sqli (CVE-2017-1000031)
SQL injection in sqli (CVE-2017-1000031). Successful exploitation can lead to full system takeover.
|
| CVE-2017-1000032 |
|
Cross-Site Scripting (XSS) in cacti (CVE-2017-1000032)
cross-site scripting in cacti (CVE-2017-1000032). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-1000013 |
|
phpMyAdmin 4.0, 4.4, and 4.6 are vulnerable to an open redirect weakness
phpMyAdmin 4.0, 4.4, and 4.6 are vulnerable to an open redirect weakness
|
| CVE-2017-1000014 |
|
phpMyAdmin 4.0, 4.4, and 4.6 are vulnerable to a DOS weakness in the table editing functionality
phpMyAdmin 4.0, 4.4, and 4.6 are vulnerable to a DOS weakness in the table editing functionality
|
| CVE-2017-1000015 |
|
Cross-Site Scripting (XSS) in phpmyadmin (CVE-2017-1000015)
cross-site scripting in phpmyadmin (CVE-2017-1000015). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-1000016 |
|
Vulnerability in phpmyadmin (CVE-2017-1000016)
vulnerability in phpmyadmin (CVE-2017-1000016). Data can be tampered with by attackers.
|
| CVE-2017-1000017 |
|
SSRF (Server-Side Request Forgery) in phpmyadmin (CVE-2017-1000017)
SSRF in phpmyadmin (CVE-2017-1000017). Successful exploitation can lead to full system takeover.
|
| CVE-2017-1000018 |
|
Vulnerability in dos (CVE-2017-1000018)
vulnerability in dos (CVE-2017-1000018). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-0152 |
|
Buffer Overflow in microsoft (CVE-2017-0152)
vulnerability in microsoft (CVE-2017-0152). Successful exploitation can lead to full system takeover.
|
| CVE-2017-0196 |
|
Information Disclosure in microsoft (CVE-2017-0196)
vulnerability in microsoft (CVE-2017-0196). Confidential information can be exposed externally.
|
| CVE-2017-0028 |
|
Buffer Overflow in microsoft (CVE-2017-0028)
vulnerability in microsoft (CVE-2017-0028). Successful exploitation can lead to full system takeover.
|