Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

KEV

Categories

All 🌐 Web Application 🧭 Browser 🖥️ Operating System 📱 Mobile 🛰️ Network Infrastructure ☁️ Cloud / Container 📝 CMS / Site Builder 🗄️ Database / Storage 🔐 Auth / Identity 🔑 Cryptography 🛠️ DevOps / CI-CD 🤖 AI / ML 🔌 IoT / Embedded 🧩 Hardware / Firmware 🏢 Enterprise SaaS 🧰 Developer Tooling ☠️ Malicious Package 📦 Other

Tag groups

All 💬 Programming Languages 22 🧱 Web Frameworks 29 📱 Mobile Platforms 6 🤖 AI/ML Frameworks 11 🖥️ Web Servers 9 🗄️ Databases 13 📝 CMS 9 ☁️ Cloud Platforms 11 📦 Container Tech 12 🖥️ Operating Systems 15 ⚔️ Attack Types 25 🧬 CWE 185 🏢 Vendors 581 📦 Products 666 🌳 Package Ecosystems 24 🛠️ DevOps Tools 17 📡 Protocols 15

Popular tags (Top 40)

Rootio Linux419 Microsoft386 C237 Java183 Jre178 Java Min178 Bitnami178 Windows177 Rootdebian11175 Rootdebian12151 Linux130 Cwe 20125 Cwe 78120 Linux Kernel106 Cwe 787105 Apple99 Cwe 41699 Cwe 2296 Rootdebian1393 Cwe 11990 Cisco89 Denial of Service85 Cwe 9484 Multiple Products79 Adobe78 Google77 Cwe 50270 Cwe 7966 Cwe 8954 Apache47 Cwe 91844 Cwe 28443 Oracle42 Cwe 28741 JavaScript41 PHP41 Cwe 7740 Chromium V838 Cwe 30638 Cwe 84337

Filtering: Group: products Clear

ID	Title	Severity	Tags	Detected
CVE-2021-36741 KEV	[KEV] Path Traversal in Trend micro trend-micro (CVE-2021-36741) path traversal in Trend micro trend-micro (CVE-2021-36741). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.	High	Trend Micro Apex One Apex One As A Service And Worry Free Business Security +1	4 years ago
CVE-2019-20085 KEV	[KEV] Path Traversal in Tvt nvms-1000 (CVE-2019-20085) path traversal in Tvt nvms-1000 (CVE-2019-20085). Risk of unauthorized operations or information disclosure. Exploitable via `GET /..`. Listed in CISA KEV — actively exploited.	High	Tvt Nvms 1000 Cwe 22	4 years ago
CVE-2020-5849 KEV	[KEV] Authentication Bypass in unraid (CVE-2020-5849) authentication bypass in unraid (CVE-2020-5849). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.	High	Unraid Cwe 287 Cwe 697	4 years ago
CVE-2020-5847 KEV	[KEV] Vulnerability in unraid (CVE-2020-5847) vulnerability in unraid (CVE-2020-5847). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.	High	Unraid	4 years ago
CVE-2019-16759 KEV	[KEV] Code Injection in vbulletin (CVE-2019-16759) code injection in vbulletin (CVE-2019-16759). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.	High	Vbulletin Cwe 94	4 years ago
CVE-2020-17496 KEV	[KEV] Vulnerability in vbulletin (CVE-2020-17496) vulnerability in vbulletin (CVE-2020-17496). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.	High	Vbulletin Cwe 74	4 years ago
CVE-2019-5544 KEV	[KEV] Out-of-Bounds Write in vmware (CVE-2019-5544) out-of-bounds write in vmware (CVE-2019-5544). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.	High	Vmware Vmware Esxi And Horizon Daas Cwe 787	4 years ago
CVE-2020-3992 KEV	[KEV] Use-After-Free in Vmware esxi (CVE-2020-3992) vulnerability in Vmware esxi (CVE-2020-3992). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.	High	Vmware Esxi Cwe 416	4 years ago
CVE-2020-3950 KEV	[KEV] Privilege Escalation in Vmware multiple-products (CVE-2020-3950) vulnerability in Vmware multiple-products (CVE-2020-3950). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.	High	Vmware Multiple Products Cwe 269	4 years ago
CVE-2021-22005 KEV	[KEV] Vulnerability in Vmware vcenter-server (CVE-2021-22005) vulnerability in Vmware vcenter-server (CVE-2021-22005). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.	High	Vmware Vcenter Server Cwe 23	4 years ago
CVE-2020-3952 KEV	[KEV] Vulnerability in Vmware vcenter-server (CVE-2020-3952) vulnerability in Vmware vcenter-server (CVE-2020-3952). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.	High	Vmware Vcenter Server Cwe 306	4 years ago
CVE-2021-21972 KEV	[KEV] Vulnerability in Vmware vcenter-server (CVE-2021-21972) vulnerability in Vmware vcenter-server (CVE-2021-21972). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.	High	Vmware Vcenter Server Cwe 23	4 years ago
CVE-2021-21985 KEV	[KEV] Vulnerability in Vmware vcenter-server (CVE-2021-21985) vulnerability in Vmware vcenter-server (CVE-2021-21985). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.	High	Vmware Vcenter Server Cwe 20 Cwe 470 +1	4 years ago
CVE-2020-4006 KEV	[KEV] OS Command Injection in Vmware multiple-products (CVE-2020-4006) OS command injection in Vmware multiple-products (CVE-2020-4006). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.	High	Vmware Multiple Products Cwe 78	4 years ago
CVE-2020-25213 KEV	[KEV] Unrestricted File Upload in Wordpress file-manager-plugin (CVE-2020-25213) vulnerability in Wordpress file-manager-plugin (CVE-2020-25213). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.	High	WordPress File Manager Plugin Cwe 434	4 years ago
CVE-2020-11738 KEV	[KEV] Path Traversal in Wordpress snap-creek-duplicator-plugin (CVE-2020-11738) path traversal in Wordpress snap-creek-duplicator-plugin (CVE-2020-11738). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.	High	WordPress Snap Creek Duplicator Plugin Cwe 22	4 years ago
CVE-2019-9978 KEV	[KEV] Cross-Site Scripting (XSS) in Wordpress social-warfare-plugin (CVE-2019-9978) cross-site scripting in Wordpress social-warfare-plugin (CVE-2019-9978). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.	High	WordPress Social Warfare Plugin Cwe 79	4 years ago
CVE-2021-27561 KEV	[KEV] OS Command Injection in Yealink device-management (CVE-2021-27561) OS command injection in Yealink device-management (CVE-2021-27561). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.	High	Yealink Device Management Cwe 78	4 years ago
CVE-2021-40539 KEV	[KEV] Vulnerability in Zoho manageengine (CVE-2021-40539) vulnerability in Zoho manageengine (CVE-2021-40539). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.	High	Zoho Manageengine Cwe 55	4 years ago
CVE-2020-10189 KEV	[KEV] Unsafe Deserialization in Zoho manageengine (CVE-2020-10189) vulnerability in Zoho manageengine (CVE-2020-10189). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.	High	Zoho Manageengine Cwe 502	4 years ago
CVE-2019-8394 KEV	[KEV] Unrestricted File Upload in Zoho manageengine (CVE-2019-8394) vulnerability in Zoho manageengine (CVE-2019-8394). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.	High	Zoho Manageengine Cwe 434	4 years ago
CVE-2020-29583 KEV	[KEV] Vulnerability in Zyxel multiple-products (CVE-2020-29583) vulnerability in Zyxel multiple-products (CVE-2020-29583). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.	High	Zyxel Multiple Products Cwe 522	4 years ago

Vulnerabilities

🍪 About cookies