Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2016-4874 |
|
Vulnerability in cybozu (CVE-2016-4874)
vulnerability in cybozu (CVE-2016-4874). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-7891 |
|
sourcebans-pp (SourceBans++) 1.5.4.7 has XSS in admin.comms.php via the rebanid parameter.
sourcebans-pp (SourceBans++) 1.5.4.7 has XSS in admin.comms.php via the rebanid parameter.
|
| CVE-2017-7615 |
|
Vulnerability in mantisbt (CVE-2017-7615)
vulnerability in mantisbt (CVE-2017-7615). Successful exploitation can lead to full system takeover.
|
| CVE-2017-7881 |
|
Cross-Site Request Forgery (CSRF) in csrf (CVE-2017-7881)
vulnerability in csrf (CVE-2017-7881). Successful exploitation can lead to full system takeover. Exploitable via `Referer header`.
|
| CVE-2017-7871 |
|
Cross-Site Scripting (XSS) in tdm-project (CVE-2017-7871)
cross-site scripting in tdm-project (CVE-2017-7871). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-1713 |
|
Unrestricted File Upload in vtiger (CVE-2016-1713)
vulnerability in vtiger (CVE-2016-1713). Successful exploitation can lead to full system takeover.
|
| CVE-2016-7032 |
|
Vulnerability in todd-miller (CVE-2016-7032)
vulnerability in todd-miller (CVE-2016-7032). Successful exploitation can lead to full system takeover.
|
| CVE-2016-8602 |
|
Vulnerability in c (CVE-2016-8602)
vulnerability in c (CVE-2016-8602). Successful exploitation can lead to full system takeover.
|
| CVE-2015-6567 |
|
Vulnerability in wolfcms (CVE-2015-6567)
vulnerability in wolfcms (CVE-2015-6567). Successful exploitation can lead to full system takeover.
|
| CVE-2015-6568 |
|
Vulnerability in wolfcms (CVE-2015-6568)
vulnerability in wolfcms (CVE-2015-6568). Successful exploitation can lead to full system takeover.
|
| CVE-2015-8356 |
|
SQL Injection in sqli (CVE-2015-8356)
SQL injection in sqli (CVE-2015-8356). Successful exploitation can lead to full system takeover.
|
| CVE-2017-7217 |
|
Vulnerability in paloaltonetworks (CVE-2017-7217)
vulnerability in paloaltonetworks (CVE-2017-7217). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-7218 |
|
Vulnerability in paloaltonetworks (CVE-2017-7218)
vulnerability in paloaltonetworks (CVE-2017-7218). Successful exploitation can lead to full system takeover.
|
| CVE-2016-10328 |
|
Out-of-Bounds Write in c (CVE-2016-10328)
out-of-bounds write in c (CVE-2016-10328). Successful exploitation can lead to full system takeover.
|
| CVE-2017-7857 |
|
Out-of-Bounds Write in c (CVE-2017-7857)
out-of-bounds write in c (CVE-2017-7857). Successful exploitation can lead to full system takeover.
|
| CVE-2017-7858 |
|
Out-of-Bounds Write in c (CVE-2017-7858)
out-of-bounds write in c (CVE-2017-7858). Successful exploitation can lead to full system takeover.
|
| CVE-2017-7864 |
|
Out-of-Bounds Write in c (CVE-2017-7864)
out-of-bounds write in c (CVE-2017-7864). Successful exploitation can lead to full system takeover.
|
| CVE-2013-6648 |
|
SkRegion::setPath in Skia allows remote attackers to cause a denial of service (crash).
SkRegion::setPath in Skia allows remote attackers to cause a denial of service (crash).
|
| CVE-2015-8283 |
|
Path Traversal in path-traversal (CVE-2015-8283)
path traversal in path-traversal (CVE-2015-8283). Confidential information can be exposed externally.
|
| CVE-2016-2555 |
|
SQL Injection in sqli (CVE-2016-2555)
SQL injection in sqli (CVE-2016-2555). Successful exploitation can lead to full system takeover.
|
| CVE-2016-4800 |
|
Vulnerability in eclipse (CVE-2016-4800)
vulnerability in eclipse (CVE-2016-4800). Successful exploitation can lead to full system takeover.
|
| CVE-2016-4970 |
|
Vulnerability in dos (CVE-2016-4970)
vulnerability in dos (CVE-2016-4970). Risk of unauthorized operations or information disclosure.
|
| CVE-2015-8864 |
|
Cross-Site Scripting (XSS) in opensuse (CVE-2015-8864)
cross-site scripting in opensuse (CVE-2015-8864). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-4068 |
|
Cross-Site Scripting (XSS) in opensuse (CVE-2016-4068)
cross-site scripting in opensuse (CVE-2016-4068). Risk of unauthorized operations or information disclosure.
|
| CVE-2014-2710 |
|
Cross-Site Scripting (XSS) in oliver-project (CVE-2014-2710)
cross-site scripting in oliver-project (CVE-2014-2710). Risk of unauthorized operations or information disclosure.
|
| CVE-2015-1838 |
|
Vulnerability in salt (CVE-2015-1838)
vulnerability in salt (CVE-2015-1838). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `e11298d7155e9982749483ca5538e46090caef9c, 2014.7.4` or later.
|
| CVE-2015-1839 |
|
modules/chef.py in SaltStack before 2014.7.4 does not properly handle files in /tmp.
modules/chef.py in SaltStack before 2014.7.4 does not properly handle files in /tmp.
|
| CVE-2017-7626 |
|
Cross-Site Scripting (XSS) in smart-related-articles-project (CVE-2017-7626)
cross-site scripting in smart-related-articles-project (CVE-2017-7626). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-7627 |
|
Vulnerability in smart-related-articles-project (CVE-2017-7627)
vulnerability in smart-related-articles-project (CVE-2017-7627). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-7628 |
|
SQL Injection in sqli (CVE-2017-7628)
SQL injection in sqli (CVE-2017-7628). Successful exploitation can lead to full system takeover.
|
| CVE-2015-7564 |
|
SQL Injection in c (CVE-2015-7564)
SQL injection in c (CVE-2015-7564). Successful exploitation can lead to full system takeover.
|
| CVE-2016-4337 |
|
SQL Injection in csharp (CVE-2016-4337)
SQL injection in csharp (CVE-2016-4337). Successful exploitation can lead to full system takeover.
|
| CVE-2017-7280 |
|
Vulnerability in unitrends (CVE-2017-7280)
vulnerability in unitrends (CVE-2017-7280). Successful exploitation can lead to full system takeover.
|
| CVE-2017-7281 |
|
Unrestricted File Upload in unitrends (CVE-2017-7281)
vulnerability in unitrends (CVE-2017-7281). Successful exploitation can lead to full system takeover.
|
| CVE-2017-7284 |
|
Authentication Bypass in unitrends (CVE-2017-7284)
authentication bypass in unitrends (CVE-2017-7284). Successful exploitation can lead to full system takeover.
|
| CVE-2016-4897 |
|
Cross-Site Scripting (XSS) in webmin (CVE-2016-4897)
cross-site scripting in webmin (CVE-2016-4897). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-6808 |
|
Buffer overflow in Apache Tomcat Connectors (mod_jk) before 1.2.42.
Buffer overflow in Apache Tomcat Connectors (mod_jk) before 1.2.42.
|
| CVE-2017-6059 |
|
Vulnerability in c (CVE-2017-6059)
vulnerability in c (CVE-2017-6059). Data can be tampered with by attackers.
|
| CVE-2017-7719 |
|
SQL Injection in wordpress (CVE-2017-7719)
SQL injection in wordpress (CVE-2017-7719). Successful exploitation can lead to full system takeover.
|
| CVE-2017-3057 |
|
Use-After-Free in adobe (CVE-2017-3057)
vulnerability in adobe (CVE-2017-3057). Successful exploitation can lead to full system takeover.
|
| CVE-2017-3058 |
|
Use-After-Free in adobe (CVE-2017-3058)
vulnerability in adobe (CVE-2017-3058). Successful exploitation can lead to full system takeover.
|
| CVE-2017-3059 |
|
Use-After-Free in adobe (CVE-2017-3059)
vulnerability in adobe (CVE-2017-3059). Successful exploitation can lead to full system takeover.
|
| CVE-2017-3060 |
|
Out-of-Bounds Read in adobe (CVE-2017-3060)
vulnerability in adobe (CVE-2017-3060). Successful exploitation can lead to full system takeover.
|
| CVE-2017-3061 |
|
Buffer Overflow in adobe (CVE-2017-3061)
vulnerability in adobe (CVE-2017-3061). Successful exploitation can lead to full system takeover.
|
| CVE-2017-3062 |
|
Use-After-Free in adobe (CVE-2017-3062)
vulnerability in adobe (CVE-2017-3062). Successful exploitation can lead to full system takeover.
|
| CVE-2017-3063 |
|
Use-After-Free in adobe (CVE-2017-3063)
vulnerability in adobe (CVE-2017-3063). Successful exploitation can lead to full system takeover.
|
| CVE-2017-3064 |
|
Buffer Overflow in adobe (CVE-2017-3064)
vulnerability in adobe (CVE-2017-3064). Successful exploitation can lead to full system takeover.
|
| CVE-2017-3065 |
|
Buffer Overflow in adobe (CVE-2017-3065)
vulnerability in adobe (CVE-2017-3065). Successful exploitation can lead to full system takeover.
|
| CVE-2017-3025 |
|
Buffer Overflow in adobe (CVE-2017-3025)
vulnerability in adobe (CVE-2017-3025). Successful exploitation can lead to full system takeover.
|
| CVE-2017-3026 |
|
Use-After-Free in adobe (CVE-2017-3026)
vulnerability in adobe (CVE-2017-3026). Successful exploitation can lead to full system takeover.
|