Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: products Clear
ID Title
CVE-2016-4874 Vulnerability in cybozu (CVE-2016-4874)
vulnerability in cybozu (CVE-2016-4874). Risk of unauthorized operations or information disclosure.
CVE-2017-7891 sourcebans-pp (SourceBans++) 1.5.4.7 has XSS in admin.comms.php via the rebanid parameter.
sourcebans-pp (SourceBans++) 1.5.4.7 has XSS in admin.comms.php via the rebanid parameter.
CVE-2017-7615 Vulnerability in mantisbt (CVE-2017-7615)
vulnerability in mantisbt (CVE-2017-7615). Successful exploitation can lead to full system takeover.
CVE-2017-7881 Cross-Site Request Forgery (CSRF) in csrf (CVE-2017-7881)
vulnerability in csrf (CVE-2017-7881). Successful exploitation can lead to full system takeover. Exploitable via `Referer header`.
CVE-2017-7871 Cross-Site Scripting (XSS) in tdm-project (CVE-2017-7871)
cross-site scripting in tdm-project (CVE-2017-7871). Risk of unauthorized operations or information disclosure.
CVE-2016-1713 Unrestricted File Upload in vtiger (CVE-2016-1713)
vulnerability in vtiger (CVE-2016-1713). Successful exploitation can lead to full system takeover.
CVE-2016-7032 Vulnerability in todd-miller (CVE-2016-7032)
vulnerability in todd-miller (CVE-2016-7032). Successful exploitation can lead to full system takeover.
CVE-2016-8602 Vulnerability in c (CVE-2016-8602)
vulnerability in c (CVE-2016-8602). Successful exploitation can lead to full system takeover.
CVE-2015-6567 Vulnerability in wolfcms (CVE-2015-6567)
vulnerability in wolfcms (CVE-2015-6567). Successful exploitation can lead to full system takeover.
CVE-2015-6568 Vulnerability in wolfcms (CVE-2015-6568)
vulnerability in wolfcms (CVE-2015-6568). Successful exploitation can lead to full system takeover.
CVE-2015-8356 SQL Injection in sqli (CVE-2015-8356)
SQL injection in sqli (CVE-2015-8356). Successful exploitation can lead to full system takeover.
CVE-2017-7217 Vulnerability in paloaltonetworks (CVE-2017-7217)
vulnerability in paloaltonetworks (CVE-2017-7217). Risk of unauthorized operations or information disclosure.
CVE-2017-7218 Vulnerability in paloaltonetworks (CVE-2017-7218)
vulnerability in paloaltonetworks (CVE-2017-7218). Successful exploitation can lead to full system takeover.
CVE-2016-10328 Out-of-Bounds Write in c (CVE-2016-10328)
out-of-bounds write in c (CVE-2016-10328). Successful exploitation can lead to full system takeover.
CVE-2017-7857 Out-of-Bounds Write in c (CVE-2017-7857)
out-of-bounds write in c (CVE-2017-7857). Successful exploitation can lead to full system takeover.
CVE-2017-7858 Out-of-Bounds Write in c (CVE-2017-7858)
out-of-bounds write in c (CVE-2017-7858). Successful exploitation can lead to full system takeover.
CVE-2017-7864 Out-of-Bounds Write in c (CVE-2017-7864)
out-of-bounds write in c (CVE-2017-7864). Successful exploitation can lead to full system takeover.
CVE-2013-6648 SkRegion::setPath in Skia allows remote attackers to cause a denial of service (crash).
SkRegion::setPath in Skia allows remote attackers to cause a denial of service (crash).
CVE-2015-8283 Path Traversal in path-traversal (CVE-2015-8283)
path traversal in path-traversal (CVE-2015-8283). Confidential information can be exposed externally.
CVE-2016-2555 SQL Injection in sqli (CVE-2016-2555)
SQL injection in sqli (CVE-2016-2555). Successful exploitation can lead to full system takeover.
CVE-2016-4800 Vulnerability in eclipse (CVE-2016-4800)
vulnerability in eclipse (CVE-2016-4800). Successful exploitation can lead to full system takeover.
CVE-2016-4970 Vulnerability in dos (CVE-2016-4970)
vulnerability in dos (CVE-2016-4970). Risk of unauthorized operations or information disclosure.
CVE-2015-8864 Cross-Site Scripting (XSS) in opensuse (CVE-2015-8864)
cross-site scripting in opensuse (CVE-2015-8864). Risk of unauthorized operations or information disclosure.
CVE-2016-4068 Cross-Site Scripting (XSS) in opensuse (CVE-2016-4068)
cross-site scripting in opensuse (CVE-2016-4068). Risk of unauthorized operations or information disclosure.
CVE-2014-2710 Cross-Site Scripting (XSS) in oliver-project (CVE-2014-2710)
cross-site scripting in oliver-project (CVE-2014-2710). Risk of unauthorized operations or information disclosure.
CVE-2015-1838 Vulnerability in salt (CVE-2015-1838)
vulnerability in salt (CVE-2015-1838). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `e11298d7155e9982749483ca5538e46090caef9c, 2014.7.4` or later.
CVE-2015-1839 modules/chef.py in SaltStack before 2014.7.4 does not properly handle files in /tmp.
modules/chef.py in SaltStack before 2014.7.4 does not properly handle files in /tmp.
CVE-2017-7626 Cross-Site Scripting (XSS) in smart-related-articles-project (CVE-2017-7626)
cross-site scripting in smart-related-articles-project (CVE-2017-7626). Risk of unauthorized operations or information disclosure.
CVE-2017-7627 Vulnerability in smart-related-articles-project (CVE-2017-7627)
vulnerability in smart-related-articles-project (CVE-2017-7627). Risk of unauthorized operations or information disclosure.
CVE-2017-7628 SQL Injection in sqli (CVE-2017-7628)
SQL injection in sqli (CVE-2017-7628). Successful exploitation can lead to full system takeover.
CVE-2015-7564 SQL Injection in c (CVE-2015-7564)
SQL injection in c (CVE-2015-7564). Successful exploitation can lead to full system takeover.
CVE-2016-4337 SQL Injection in csharp (CVE-2016-4337)
SQL injection in csharp (CVE-2016-4337). Successful exploitation can lead to full system takeover.
CVE-2017-7280 Vulnerability in unitrends (CVE-2017-7280)
vulnerability in unitrends (CVE-2017-7280). Successful exploitation can lead to full system takeover.
CVE-2017-7281 Unrestricted File Upload in unitrends (CVE-2017-7281)
vulnerability in unitrends (CVE-2017-7281). Successful exploitation can lead to full system takeover.
CVE-2017-7284 Authentication Bypass in unitrends (CVE-2017-7284)
authentication bypass in unitrends (CVE-2017-7284). Successful exploitation can lead to full system takeover.
CVE-2016-4897 Cross-Site Scripting (XSS) in webmin (CVE-2016-4897)
cross-site scripting in webmin (CVE-2016-4897). Risk of unauthorized operations or information disclosure.
CVE-2016-6808 Buffer overflow in Apache Tomcat Connectors (mod_jk) before 1.2.42.
Buffer overflow in Apache Tomcat Connectors (mod_jk) before 1.2.42.
CVE-2017-6059 Vulnerability in c (CVE-2017-6059)
vulnerability in c (CVE-2017-6059). Data can be tampered with by attackers.
CVE-2017-7719 SQL Injection in wordpress (CVE-2017-7719)
SQL injection in wordpress (CVE-2017-7719). Successful exploitation can lead to full system takeover.
CVE-2017-3057 Use-After-Free in adobe (CVE-2017-3057)
vulnerability in adobe (CVE-2017-3057). Successful exploitation can lead to full system takeover.
CVE-2017-3058 Use-After-Free in adobe (CVE-2017-3058)
vulnerability in adobe (CVE-2017-3058). Successful exploitation can lead to full system takeover.
CVE-2017-3059 Use-After-Free in adobe (CVE-2017-3059)
vulnerability in adobe (CVE-2017-3059). Successful exploitation can lead to full system takeover.
CVE-2017-3060 Out-of-Bounds Read in adobe (CVE-2017-3060)
vulnerability in adobe (CVE-2017-3060). Successful exploitation can lead to full system takeover.
CVE-2017-3061 Buffer Overflow in adobe (CVE-2017-3061)
vulnerability in adobe (CVE-2017-3061). Successful exploitation can lead to full system takeover.
CVE-2017-3062 Use-After-Free in adobe (CVE-2017-3062)
vulnerability in adobe (CVE-2017-3062). Successful exploitation can lead to full system takeover.
CVE-2017-3063 Use-After-Free in adobe (CVE-2017-3063)
vulnerability in adobe (CVE-2017-3063). Successful exploitation can lead to full system takeover.
CVE-2017-3064 Buffer Overflow in adobe (CVE-2017-3064)
vulnerability in adobe (CVE-2017-3064). Successful exploitation can lead to full system takeover.
CVE-2017-3065 Buffer Overflow in adobe (CVE-2017-3065)
vulnerability in adobe (CVE-2017-3065). Successful exploitation can lead to full system takeover.
CVE-2017-3025 Buffer Overflow in adobe (CVE-2017-3025)
vulnerability in adobe (CVE-2017-3025). Successful exploitation can lead to full system takeover.
CVE-2017-3026 Use-After-Free in adobe (CVE-2017-3026)
vulnerability in adobe (CVE-2017-3026). Successful exploitation can lead to full system takeover.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →