Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2016-4988 |
|
Cross-Site Scripting (XSS) in jenkins (CVE-2016-4988)
cross-site scripting in jenkins (CVE-2016-4988). Risk of unauthorized operations or information disclosure.
|
| CVE-2015-8831 |
|
Cross-Site Scripting (XSS) in dotclear (CVE-2015-8831)
cross-site scripting in dotclear (CVE-2015-8831). Risk of unauthorized operations or information disclosure.
|
| CVE-2015-8832 |
|
Vulnerability in dotclear (CVE-2015-8832)
vulnerability in dotclear (CVE-2015-8832). Successful exploitation can lead to full system takeover.
|
| CVE-2016-3101 |
|
Cross-Site Scripting (XSS) in jenkins (CVE-2016-3101)
cross-site scripting in jenkins (CVE-2016-3101). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-5918 |
|
Information Disclosure in ibm (CVE-2016-5918)
vulnerability in ibm (CVE-2016-5918). Confidential information can be exposed externally.
|
| CVE-2016-8492 |
|
Information Disclosure in fortinet (CVE-2016-8492)
vulnerability in fortinet (CVE-2016-8492). Confidential information can be exposed externally.
|
| CVE-2016-3124 |
|
Information Disclosure in simplesamlphp (CVE-2016-3124)
vulnerability in simplesamlphp (CVE-2016-3124). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-9639 |
|
Vulnerability in salt (CVE-2016-9639)
vulnerability in salt (CVE-2016-9639). Confidential information can be exposed externally. Mitigation: upgrade to `2015.8.11` or later.
|
| CVE-2016-2539 |
|
Cross-Site Request Forgery (CSRF) in csrf (CVE-2016-2539)
vulnerability in csrf (CVE-2016-2539). Successful exploitation can lead to full system takeover.
|
| CVE-2016-6175 |
|
Code Injection in php-gettext-project (CVE-2016-6175)
code injection in php-gettext-project (CVE-2016-6175). Successful exploitation can lead to full system takeover.
|
| CVE-2016-2779 |
|
Vulnerability in kernel (CVE-2016-2779)
vulnerability in kernel (CVE-2016-2779). Successful exploitation can lead to full system takeover.
|
| CVE-2017-5677 |
|
Vulnerability in pear (CVE-2017-5677)
vulnerability in pear (CVE-2017-5677). Successful exploitation can lead to full system takeover.
|
| CVE-2017-5367 |
|
Cross-Site Scripting (XSS) in zoneminder (CVE-2017-5367)
cross-site scripting in zoneminder (CVE-2017-5367). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-5368 |
|
Cross-Site Request Forgery (CSRF) in csrf (CVE-2017-5368)
vulnerability in csrf (CVE-2017-5368). Successful exploitation can lead to full system takeover.
|
| CVE-2017-5595 |
|
Information Disclosure in zoneminder (CVE-2017-5595)
vulnerability in zoneminder (CVE-2017-5595). Confidential information can be exposed externally.
|
| CVE-2017-5879 |
|
SQL Injection in sqli (CVE-2017-5879)
SQL injection in sqli (CVE-2017-5879). Successful exploitation can lead to full system takeover.
|
| CVE-2017-5875 |
|
Cross-Site Scripting (XSS) in dotcms (CVE-2017-5875)
cross-site scripting in dotcms (CVE-2017-5875). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-5876 |
|
Cross-Site Scripting (XSS) in dotcms (CVE-2017-5876)
cross-site scripting in dotcms (CVE-2017-5876). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-5877 |
|
Cross-Site Scripting (XSS) in dotcms (CVE-2017-5877)
cross-site scripting in dotcms (CVE-2017-5877). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-1566 |
|
Cross-Site Scripting (XSS) in apache (CVE-2016-1566)
cross-site scripting in apache (CVE-2016-1566). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-5630 |
|
Vulnerability in pear (CVE-2017-5630)
vulnerability in pear (CVE-2017-5630). Data can be tampered with by attackers.
|
| CVE-2016-8977 |
|
Information Disclosure in ibm (CVE-2016-8977)
vulnerability in ibm (CVE-2016-8977). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-6110 |
|
Vulnerability in ibm (CVE-2016-6110)
vulnerability in ibm (CVE-2016-6110). Confidential information can be exposed externally.
|
| CVE-2016-8963 |
|
Information Disclosure in ibm (CVE-2016-8963)
vulnerability in ibm (CVE-2016-8963). Confidential information can be exposed externally.
|
| CVE-2016-0371 |
|
Vulnerability in ibm (CVE-2016-0371)
vulnerability in ibm (CVE-2016-0371). Confidential information can be exposed externally.
|
| CVE-2016-8967 |
|
Vulnerability in ibm (CVE-2016-8967)
vulnerability in ibm (CVE-2016-8967). Confidential information can be exposed externally.
|
| CVE-2016-8961 |
|
Open Redirect in ibm (CVE-2016-8961)
vulnerability in ibm (CVE-2016-8961). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-8966 |
|
Information Disclosure in ibm (CVE-2016-8966)
vulnerability in ibm (CVE-2016-8966). Confidential information can be exposed externally.
|
| CVE-2016-8980 |
|
XXE (XML External Entity) in dos (CVE-2016-8980)
vulnerability in dos (CVE-2016-8980). Confidential information can be exposed externally.
|
| CVE-2016-8981 |
|
Information Disclosure in ibm (CVE-2016-8981)
vulnerability in ibm (CVE-2016-8981). Confidential information can be exposed externally.
|
| CVE-2016-6034 |
|
Information Disclosure in ibm (CVE-2016-6034)
vulnerability in ibm (CVE-2016-6034). Confidential information can be exposed externally.
|
| CVE-2016-9963 |
|
Vulnerability in exim (CVE-2016-9963)
vulnerability in exim (CVE-2016-9963). Confidential information can be exposed externally.
|
| CVE-2016-9403 |
|
Vulnerability in mybb (CVE-2016-9403)
vulnerability in mybb (CVE-2016-9403). Successful exploitation can lead to full system takeover.
|
| CVE-2016-9415 |
|
Vulnerability in mybb (CVE-2016-9415)
vulnerability in mybb (CVE-2016-9415). Data can be tampered with by attackers.
|
| CVE-2016-9418 |
|
Information Disclosure in mybb (CVE-2016-9418)
vulnerability in mybb (CVE-2016-9418). Confidential information can be exposed externally.
|
| CVE-2015-8973 |
|
Vulnerability in mybb (CVE-2015-8973)
vulnerability in mybb (CVE-2015-8973). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-6621 |
|
SSRF (Server-Side Request Forgery) in ssrf (CVE-2016-6621)
SSRF in ssrf (CVE-2016-6621). Confidential information can be exposed externally.
|
| CVE-2016-3176 |
|
Authentication Bypass in salt (CVE-2016-3176)
authentication bypass in salt (CVE-2016-3176). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `2015.5.10, 2015.8.8` or later.
|
| CVE-2016-10043 |
|
OS Command Injection in apache (CVE-2016-10043)
OS command injection in apache (CVE-2016-10043). Successful exploitation can lead to full system takeover.
|
| CVE-2016-6266 |
|
Vulnerability in trendmicro (CVE-2016-6266)
vulnerability in trendmicro (CVE-2016-6266). Successful exploitation can lead to full system takeover.
|
| CVE-2016-6267 |
|
Vulnerability in trendmicro (CVE-2016-6267)
vulnerability in trendmicro (CVE-2016-6267). Successful exploitation can lead to full system takeover.
|
| CVE-2016-6269 |
|
Path Traversal in path-traversal (CVE-2016-6269)
path traversal in path-traversal (CVE-2016-6269). Confidential information can be exposed externally.
|
| CVE-2015-2180 |
|
Vulnerability in roundcube (CVE-2015-2180)
vulnerability in roundcube (CVE-2015-2180). Successful exploitation can lead to full system takeover.
|
| CVE-2015-2181 |
|
Buffer Overflow in roundcube (CVE-2015-2181)
vulnerability in roundcube (CVE-2015-2181). Successful exploitation can lead to full system takeover.
|
| CVE-2016-7798 |
|
Vulnerability in ruby-lang (CVE-2016-7798)
vulnerability in ruby-lang (CVE-2016-7798). Confidential information can be exposed externally.
|
| CVE-2015-8034 |
|
Information Disclosure in salt (CVE-2015-8034)
vulnerability in salt (CVE-2015-8034). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `2015.8.3` or later.
|
| CVE-2016-7544 |
|
Vulnerability in cryptopp (CVE-2016-7544)
vulnerability in cryptopp (CVE-2016-7544). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-5610 |
|
Information Disclosure in wordpress (CVE-2017-5610)
vulnerability in wordpress (CVE-2017-5610). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-5611 |
|
SQL Injection in wordpress (CVE-2017-5611)
SQL injection in wordpress (CVE-2017-5611). Successful exploitation can lead to full system takeover.
|
| CVE-2017-5612 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2017-5612)
cross-site scripting in wordpress (CVE-2017-5612). Risk of unauthorized operations or information disclosure.
|