Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2017-5520 |
|
Unrestricted File Upload in metalgenix (CVE-2017-5520)
vulnerability in metalgenix (CVE-2017-5520). Successful exploitation can lead to full system takeover.
|
| CVE-2016-7904 |
|
Cross-Site Request Forgery (CSRF) in csrf (CVE-2016-7904)
vulnerability in csrf (CVE-2016-7904). Successful exploitation can lead to full system takeover.
|
| CVE-2017-5223 |
|
Information Disclosure in phpmailer-project (CVE-2017-5223)
vulnerability in phpmailer-project (CVE-2017-5223). Confidential information can be exposed externally.
|
| CVE-2017-5480 |
|
Path Traversal in path-traversal (CVE-2017-5480)
path traversal in path-traversal (CVE-2017-5480). Confidential information can be exposed externally.
|
| CVE-2017-5492 |
|
Cross-Site Request Forgery (CSRF) in wordpress (CVE-2017-5492)
vulnerability in wordpress (CVE-2017-5492). Successful exploitation can lead to full system takeover.
|
| CVE-2017-5493 |
|
Vulnerability in wordpress (CVE-2017-5493)
vulnerability in wordpress (CVE-2017-5493). Data can be tampered with by attackers.
|
| CVE-2017-5487 |
|
Information Disclosure in wordpress (CVE-2017-5487)
vulnerability in wordpress (CVE-2017-5487). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-5488 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2017-5488)
cross-site scripting in wordpress (CVE-2017-5488). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-5490 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2017-5490)
cross-site scripting in wordpress (CVE-2017-5490). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-5491 |
|
Vulnerability in wordpress (CVE-2017-5491)
vulnerability in wordpress (CVE-2017-5491). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-8201 |
|
Cross-Site Request Forgery (CSRF) in csrf (CVE-2016-8201)
vulnerability in csrf (CVE-2016-8201). Successful exploitation can lead to full system takeover.
|
| CVE-2017-5474 |
|
Open Redirect in s9y (CVE-2017-5474)
vulnerability in s9y (CVE-2017-5474). Risk of unauthorized operations or information disclosure. Exploitable via `Referer header`.
|
| CVE-2017-5475 |
|
comment.php in Serendipity through 2.0.5 allows CSRF in deleting any comments.
comment.php in Serendipity through 2.0.5 allows CSRF in deleting any comments.
|
| CVE-2016-10142 |
|
Vulnerability in dos (CVE-2016-10142)
vulnerability in dos (CVE-2016-10142). Risk of unauthorized operations or information disclosure.
|
| CVE-2010-5327 |
|
Vulnerability in liferay (CVE-2010-5327)
vulnerability in liferay (CVE-2010-5327). Successful exploitation can lead to full system takeover.
|
| CVE-2016-9312 |
|
Vulnerability in dos (CVE-2016-9312)
vulnerability in dos (CVE-2016-9312). Risk of unauthorized operations or information disclosure.
|
| CVE-2015-3188 |
|
Vulnerability in apache (CVE-2015-3188)
vulnerability in apache (CVE-2015-3188). Successful exploitation can lead to full system takeover.
|
| CVE-2016-10140 |
|
Information Disclosure in apache (CVE-2016-10140)
vulnerability in apache (CVE-2016-10140). Confidential information can be exposed externally.
|
| CVE-2016-3150 |
|
Cross-Site Scripting (XSS) in barco (CVE-2016-3150)
cross-site scripting in barco (CVE-2016-3150). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-9299 |
|
Vulnerability in jenkins (CVE-2016-9299)
vulnerability in jenkins (CVE-2016-9299). Successful exploitation can lead to full system takeover.
|
| CVE-2005-4900 |
|
Vulnerability in google (CVE-2005-4900)
vulnerability in google (CVE-2005-4900). Confidential information can be exposed externally.
|
| CVE-2016-4978 |
|
Unsafe Deserialization in apache (CVE-2016-4978)
vulnerability in apache (CVE-2016-4978). Successful exploitation can lead to full system takeover.
|
| CVE-2015-5721 |
|
Code Injection in misp-project (CVE-2015-5721)
code injection in misp-project (CVE-2015-5721). Successful exploitation can lead to full system takeover.
|
| CVE-2015-5719 |
|
Vulnerability in misp-project (CVE-2015-5719)
vulnerability in misp-project (CVE-2015-5719). Successful exploitation can lead to full system takeover.
|
| CVE-2016-2183 |
|
Information Disclosure in redhat (CVE-2016-2183)
vulnerability in redhat (CVE-2016-2183). Confidential information can be exposed externally.
|
| CVE-2016-0778 |
|
Buffer Overflow in c (CVE-2016-0778)
vulnerability in c (CVE-2016-0778). Successful exploitation can lead to full system takeover.
|
| CVE-2016-0777 |
|
Information Disclosure in c (CVE-2016-0777)
vulnerability in c (CVE-2016-0777). Confidential information can be exposed externally.
|
| CVE-2015-4000 |
|
Vulnerability in openssl (CVE-2015-4000)
vulnerability in openssl (CVE-2015-4000). Risk of unauthorized operations or information disclosure.
|
| CVE-2014-3566 |
|
Vulnerability in redhat (CVE-2014-3566)
vulnerability in redhat (CVE-2014-3566). Risk of unauthorized operations or information disclosure.
|
| CVE-2013-2566 |
|
Vulnerability in oracle (CVE-2013-2566)
vulnerability in oracle (CVE-2013-2566). Confidential information can be exposed externally.
|
| CVE-2011-0627 |
|
Vulnerability in dos (CVE-2011-0627)
vulnerability in dos (CVE-2011-0627). Successful exploitation can lead to full system takeover.
|
| CVE-2010-3190 |
|
Vulnerability in c (CVE-2010-3190)
vulnerability in c (CVE-2010-3190). Successful exploitation can lead to full system takeover.
|
| CVE-2009-3555 |
|
Vulnerability in org.apache.tomcat:tomcat (CVE-2009-3555)
vulnerability in org.apache.tomcat:tomcat (CVE-2009-3555). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `5.5.33` or later.
|
| CVE-2009-2493 |
|
The Active Template Library (ATL) in Microsoft Visual Studio .NET 2003 SP1, Visual Studio 2005...
The Active Template Library (ATL) in Microsoft Visual Studio .NET 2003 SP1, Visual Studio 2005...
|
| CVE-2009-2495 |
|
Vulnerability in c (CVE-2009-2495)
vulnerability in c (CVE-2009-2495). Confidential information can be exposed externally.
|
| CVE-2009-0901 |
|
The Active Template Library (ATL) in Microsoft Visual Studio .NET 2003 SP1, Visual Studio 2005...
The Active Template Library (ATL) in Microsoft Visual Studio .NET 2003 SP1, Visual Studio 2005...
|
| CVE-2005-4459 |
|
Buffer Overflow in vmware (CVE-2005-4459)
vulnerability in vmware (CVE-2005-4459). Risk of unauthorized operations or information disclosure.
|
| CVE-2004-2320 |
|
Information Disclosure in express (CVE-2004-2320)
vulnerability in express (CVE-2004-2320). Risk of unauthorized operations or information disclosure.
|
| CVE-1999-0524 |
|
ICMP information such as (1) netmask and (2) timestamp is allowed from arbitrary hosts.
ICMP information such as (1) netmask and (2) timestamp is allowed from arbitrary hosts.
|