Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2017-7387 |
|
Cross-Site Scripting (XSS) in helpmewatchwho-project (CVE-2017-7387)
cross-site scripting in helpmewatchwho-project (CVE-2017-7387). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-3009 |
|
Out-of-Bounds Read in adobe (CVE-2017-3009)
vulnerability in adobe (CVE-2017-3009). Confidential information can be exposed externally.
|
| CVE-2017-3010 |
|
Buffer Overflow in adobe (CVE-2017-3010)
vulnerability in adobe (CVE-2017-3010). Successful exploitation can lead to full system takeover.
|
| CVE-2014-9114 |
|
Blkid in util-linux before 2.26rc-1 allows local users to execute arbitrary code.
Blkid in util-linux before 2.26rc-1 allows local users to execute arbitrary code.
|
| CVE-2017-6973 |
|
Cross-Site Scripting (XSS) in mantisbt (CVE-2017-6973)
cross-site scripting in mantisbt (CVE-2017-6973). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.3.8` or later.
|
| CVE-2017-7241 |
|
Cross-Site Scripting (XSS) in mantisbt (CVE-2017-7241)
cross-site scripting in mantisbt (CVE-2017-7241). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.3.9` or later.
|
| CVE-2017-7309 |
|
Cross-Site Scripting (XSS) in mantisbt (CVE-2017-7309)
cross-site scripting in mantisbt (CVE-2017-7309). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.3.9` or later.
|
| CVE-2017-7359 |
|
Pixie 1.0.4 allows an admin/index.php s=login&m= XSS attack.
Pixie 1.0.4 allows an admin/index.php s=login&m= XSS attack.
|
| CVE-2017-7360 |
|
Pixie 1.0.4 allows an admin/index.php s=settings&x= XSS attack.
Pixie 1.0.4 allows an admin/index.php s=settings&x= XSS attack.
|
| CVE-2017-7361 |
|
Pixie 1.0.4 allows an admin/index.php s=publish&m=static&x= XSS attack.
Pixie 1.0.4 allows an admin/index.php s=publish&m=static&x= XSS attack.
|
| CVE-2017-7362 |
|
Pixie 1.0.4 allows an admin/index.php s=publish&m=dynamic&x= XSS attack.
Pixie 1.0.4 allows an admin/index.php s=publish&m=dynamic&x= XSS attack.
|
| CVE-2017-7363 |
|
Pixie 1.0.4 allows an admin/index.php s=publish&m=module&x= XSS attack.
Pixie 1.0.4 allows an admin/index.php s=publish&m=module&x= XSS attack.
|
| CVE-2017-7253 |
|
Vulnerability in dahuasecurity (CVE-2017-7253)
vulnerability in dahuasecurity (CVE-2017-7253). Successful exploitation can lead to full system takeover.
|
| CVE-2017-6182 |
|
OS Command Injection in sophos (CVE-2017-6182)
OS command injection in sophos (CVE-2017-6182). Successful exploitation can lead to full system takeover.
|
| CVE-2017-6183 |
|
Command Injection in sophos (CVE-2017-6183)
command injection in sophos (CVE-2017-6183). Successful exploitation can lead to full system takeover.
|
| CVE-2017-6184 |
|
Command Injection in sophos (CVE-2017-6184)
command injection in sophos (CVE-2017-6184). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-6412 |
|
In Sophos Web Appliance (SWA) before 4.3.1.2, Session Fixation could occur, aka NSWA-1310.
In Sophos Web Appliance (SWA) before 4.3.1.2, Session Fixation could occur, aka NSWA-1310.
|
| CVE-2014-9826 |
|
Vulnerability in imagemagick (CVE-2014-9826)
vulnerability in imagemagick (CVE-2014-9826). Successful exploitation can lead to full system takeover.
|
| CVE-2014-9804 |
|
Vulnerability in c (CVE-2014-9804)
vulnerability in c (CVE-2014-9804). Risk of unauthorized operations or information disclosure.
|
| CVE-2014-9805 |
|
Vulnerability in dos (CVE-2014-9805)
vulnerability in dos (CVE-2014-9805). Risk of unauthorized operations or information disclosure.
|
| CVE-2014-9806 |
|
Vulnerability in dos (CVE-2014-9806)
vulnerability in dos (CVE-2014-9806). Risk of unauthorized operations or information disclosure.
|
| CVE-2014-9807 |
|
Vulnerability in dos (CVE-2014-9807)
vulnerability in dos (CVE-2014-9807). Risk of unauthorized operations or information disclosure.
|
| CVE-2014-9808 |
|
Vulnerability in dos (CVE-2014-9808)
vulnerability in dos (CVE-2014-9808). Risk of unauthorized operations or information disclosure.
|
| CVE-2014-9809 |
|
Vulnerability in dos (CVE-2014-9809)
vulnerability in dos (CVE-2014-9809). Risk of unauthorized operations or information disclosure.
|
| CVE-2014-9810 |
|
Vulnerability in dos (CVE-2014-9810)
vulnerability in dos (CVE-2014-9810). Risk of unauthorized operations or information disclosure.
|
| CVE-2014-9811 |
|
Vulnerability in dos (CVE-2014-9811)
vulnerability in dos (CVE-2014-9811). Risk of unauthorized operations or information disclosure.
|
| CVE-2014-9812 |
|
Vulnerability in dos (CVE-2014-9812)
vulnerability in dos (CVE-2014-9812). Risk of unauthorized operations or information disclosure.
|
| CVE-2014-9813 |
|
Vulnerability in dos (CVE-2014-9813)
vulnerability in dos (CVE-2014-9813). Risk of unauthorized operations or information disclosure.
|
| CVE-2014-9814 |
|
Vulnerability in dos (CVE-2014-9814)
vulnerability in dos (CVE-2014-9814). Risk of unauthorized operations or information disclosure.
|
| CVE-2014-9815 |
|
Vulnerability in dos (CVE-2014-9815)
vulnerability in dos (CVE-2014-9815). Risk of unauthorized operations or information disclosure.
|
| CVE-2014-9816 |
|
Out-of-Bounds Read in dos (CVE-2014-9816)
vulnerability in dos (CVE-2014-9816). Risk of unauthorized operations or information disclosure.
|
| CVE-2014-9817 |
|
Buffer Overflow in imagemagick (CVE-2014-9817)
vulnerability in imagemagick (CVE-2014-9817). Successful exploitation can lead to full system takeover.
|
| CVE-2014-9818 |
|
Out-of-Bounds Read in dos (CVE-2014-9818)
vulnerability in dos (CVE-2014-9818). Risk of unauthorized operations or information disclosure.
|
| CVE-2014-9819 |
|
Buffer Overflow in imagemagick (CVE-2014-9819)
vulnerability in imagemagick (CVE-2014-9819). Successful exploitation can lead to full system takeover.
|
| CVE-2014-9820 |
|
Buffer Overflow in imagemagick (CVE-2014-9820)
vulnerability in imagemagick (CVE-2014-9820). Successful exploitation can lead to full system takeover.
|
| CVE-2014-9821 |
|
Buffer Overflow in imagemagick (CVE-2014-9821)
vulnerability in imagemagick (CVE-2014-9821). Successful exploitation can lead to full system takeover.
|
| CVE-2014-9822 |
|
Buffer Overflow in imagemagick (CVE-2014-9822)
vulnerability in imagemagick (CVE-2014-9822). Successful exploitation can lead to full system takeover.
|
| CVE-2014-9823 |
|
Buffer Overflow in imagemagick (CVE-2014-9823)
vulnerability in imagemagick (CVE-2014-9823). Successful exploitation can lead to full system takeover.
|
| CVE-2014-9824 |
|
Buffer Overflow in imagemagick (CVE-2014-9824)
vulnerability in imagemagick (CVE-2014-9824). Successful exploitation can lead to full system takeover.
|
| CVE-2014-9825 |
|
Buffer Overflow in imagemagick (CVE-2014-9825)
vulnerability in imagemagick (CVE-2014-9825). Successful exploitation can lead to full system takeover.
|
| CVE-2016-7541 |
|
Vulnerability in fortinet (CVE-2016-7541)
vulnerability in fortinet (CVE-2016-7541). Data can be tampered with by attackers.
|
| CVE-2016-7542 |
|
Information Disclosure in fortinet (CVE-2016-7542)
vulnerability in fortinet (CVE-2016-7542). Confidential information can be exposed externally.
|
| CVE-2017-7290 |
|
SQL Injection in sqli (CVE-2017-7290)
SQL injection in sqli (CVE-2017-7290). Successful exploitation can lead to full system takeover.
|
| CVE-2017-7320 |
|
Cross-Site Scripting (XSS) in dos (CVE-2017-7320)
cross-site scripting in dos (CVE-2017-7320). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-7321 |
|
Code Injection in modx (CVE-2017-7321)
code injection in modx (CVE-2017-7321). Successful exploitation can lead to full system takeover.
|
| CVE-2017-7324 |
|
Code Injection in modx (CVE-2017-7324)
code injection in modx (CVE-2017-7324). Successful exploitation can lead to full system takeover.
|
| CVE-2014-3582 |
|
Code Injection in apache (CVE-2014-3582)
code injection in apache (CVE-2014-3582). Successful exploitation can lead to full system takeover.
|
| CVE-2016-4976 |
|
Information Disclosure in apache (CVE-2016-4976)
vulnerability in apache (CVE-2016-4976). Confidential information can be exposed externally.
|
| CVE-2016-9924 |
|
XXE (XML External Entity) in synacor (CVE-2016-9924)
vulnerability in synacor (CVE-2016-9924). Successful exploitation can lead to full system takeover.
|
| CVE-2017-7285 |
|
Vulnerability in mikrotik (CVE-2017-7285)
vulnerability in mikrotik (CVE-2017-7285). Risk of unauthorized operations or information disclosure.
|