Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2017-9443 |
|
SQL Injection in sqli (CVE-2017-9443)
SQL injection in sqli (CVE-2017-9443). Successful exploitation can lead to full system takeover.
|
| CVE-2017-9444 |
|
Cross-Site Request Forgery (CSRF) in csrf (CVE-2017-9444)
vulnerability in csrf (CVE-2017-9444). Successful exploitation can lead to full system takeover.
|
| CVE-2017-9439 |
|
Vulnerability in c (CVE-2017-9439)
vulnerability in c (CVE-2017-9439). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-9440 |
|
Vulnerability in c (CVE-2017-9440)
vulnerability in c (CVE-2017-9440). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-1000368 |
|
Vulnerability in sudo-project (CVE-2017-1000368)
vulnerability in sudo-project (CVE-2017-1000368). Successful exploitation can lead to full system takeover.
|
| CVE-2017-9435 |
|
SQL Injection in sqli (CVE-2017-9435)
SQL injection in sqli (CVE-2017-9435). Successful exploitation can lead to full system takeover.
|
| CVE-2017-9436 |
|
TeamPass before 2.1.27.4 is vulnerable to a SQL injection in users.queries.php.
TeamPass before 2.1.27.4 is vulnerable to a SQL injection in users.queries.php.
|
| CVE-2017-1000367 |
|
Vulnerability in sudo-project (CVE-2017-1000367)
vulnerability in sudo-project (CVE-2017-1000367). Successful exploitation can lead to full system takeover.
|
| CVE-2017-8439 |
|
Cross-Site Scripting (XSS) in elastic (CVE-2017-8439)
cross-site scripting in elastic (CVE-2017-8439). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-8440 |
|
Cross-Site Scripting (XSS) in elastic (CVE-2017-8440)
cross-site scripting in elastic (CVE-2017-8440). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-7669 |
|
Vulnerability in apache (CVE-2017-7669)
vulnerability in apache (CVE-2017-7669). Successful exploitation can lead to full system takeover.
|
| CVE-2017-9427 |
|
SQL Injection in sqli (CVE-2017-9427)
SQL injection in sqli (CVE-2017-9427). Successful exploitation can lead to full system takeover.
|
| CVE-2017-9428 |
|
Path Traversal in path-traversal (CVE-2017-9428)
path traversal in path-traversal (CVE-2017-9428). Confidential information can be exposed externally.
|
| CVE-2017-9405 |
|
Vulnerability in c (CVE-2017-9405)
vulnerability in c (CVE-2017-9405). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-9407 |
|
Vulnerability in c (CVE-2017-9407)
vulnerability in c (CVE-2017-9407). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-9409 |
|
Vulnerability in c (CVE-2017-9409)
vulnerability in c (CVE-2017-9409). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-9379 |
|
Cross-Site Request Forgery (CSRF) in csrf (CVE-2017-9379)
vulnerability in csrf (CVE-2017-9379). Successful exploitation can lead to full system takeover.
|
| CVE-2017-9360 |
|
WebsiteBaker v2.10.0 has a SQL injection vulnerability in /account/details.php.
WebsiteBaker v2.10.0 has a SQL injection vulnerability in /account/details.php.
|
| CVE-2017-9361 |
|
WebsiteBaker v2.10.0 has a stored XSS vulnerability in /account/details.php.
WebsiteBaker v2.10.0 has a stored XSS vulnerability in /account/details.php.
|
| CVE-2017-9365 |
|
Cross-Site Request Forgery (CSRF) in csrf (CVE-2017-9365)
vulnerability in csrf (CVE-2017-9365). Successful exploitation can lead to full system takeover.
|
| CVE-2017-9366 |
|
Cross-Site Scripting (XSS) in epesi (CVE-2017-9366)
cross-site scripting in epesi (CVE-2017-9366). Risk of unauthorized operations or information disclosure.
|
| CVE-2015-6531 |
|
Code Injection in paloaltonetworks (CVE-2015-6531)
code injection in paloaltonetworks (CVE-2015-6531). Successful exploitation can lead to full system takeover.
|
| CVE-2017-8386 |
|
Vulnerability in git (CVE-2017-8386)
vulnerability in git (CVE-2017-8386). Successful exploitation can lead to full system takeover.
|
| CVE-2017-3127 |
|
Cross-Site Scripting (XSS) in fortinet (CVE-2017-3127)
cross-site scripting in fortinet (CVE-2017-3127). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-9331 |
|
Cross-Site Scripting (XSS) in epesi (CVE-2017-9331)
cross-site scripting in epesi (CVE-2017-9331). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-8402 |
|
Code Injection in pivotx (CVE-2017-8402)
code injection in pivotx (CVE-2017-8402). Successful exploitation can lead to full system takeover.
|
| CVE-2017-9305 |
|
Cross-Site Scripting (XSS) in tiki (CVE-2017-9305)
cross-site scripting in tiki (CVE-2017-9305). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-9306 |
|
Cross-Site Scripting (XSS) in syspass (CVE-2017-9306)
cross-site scripting in syspass (CVE-2017-9306). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-9307 |
|
SSRF (Server-Side Request Forgery) in ssrf (CVE-2017-9307)
SSRF in ssrf (CVE-2017-9307). Confidential information can be exposed externally.
|
| CVE-2016-3083 |
|
Vulnerability in apache (CVE-2016-3083)
vulnerability in apache (CVE-2016-3083). Data can be tampered with by attackers.
|
| CVE-2016-10378 |
|
SQL Injection in sqli (CVE-2016-10378)
SQL injection in sqli (CVE-2016-10378). Successful exploitation can lead to full system takeover.
|
| CVE-2016-10379 |
|
SQL Injection in sqli (CVE-2016-10379)
SQL injection in sqli (CVE-2016-10379). Successful exploitation can lead to full system takeover.
|
| CVE-2017-9289 |
|
Cross-Site Scripting (XSS) in note-project (CVE-2017-9289)
cross-site scripting in note-project (CVE-2017-9289). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-9288 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2017-9288)
cross-site scripting in wordpress (CVE-2017-9288). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-9261 |
|
Vulnerability in c (CVE-2017-9261)
vulnerability in c (CVE-2017-9261). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-9262 |
|
Vulnerability in c (CVE-2017-9262)
vulnerability in c (CVE-2017-9262). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-9249 |
|
Cross-Site Scripting (XSS) in allen-disk-project (CVE-2017-9249)
cross-site scripting in allen-disk-project (CVE-2017-9249). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-9251 |
|
Cross-Site Scripting (XSS) in finecms-project (CVE-2017-9251)
cross-site scripting in finecms-project (CVE-2017-9251). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-9252 |
|
Cross-Site Scripting (XSS) in finecms-project (CVE-2017-9252)
cross-site scripting in finecms-project (CVE-2017-9252). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-3129 |
|
Cross-Site Scripting (XSS) in fortinet (CVE-2017-3129)
cross-site scripting in fortinet (CVE-2017-3129). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-5646 |
|
Vulnerability in apache (CVE-2017-5646)
vulnerability in apache (CVE-2017-5646). Confidential information can be exposed externally.
|
| CVE-2017-8535 |
|
Buffer Overflow in dos (CVE-2017-8535)
vulnerability in dos (CVE-2017-8535). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-8536 |
|
Buffer Overflow in dos (CVE-2017-8536)
vulnerability in dos (CVE-2017-8536). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-8537 |
|
Buffer Overflow in dos (CVE-2017-8537)
vulnerability in dos (CVE-2017-8537). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-8538 |
|
Buffer Overflow in microsoft (CVE-2017-8538)
vulnerability in microsoft (CVE-2017-8538). Successful exploitation can lead to full system takeover.
|
| CVE-2017-8539 |
|
Buffer Overflow in dos (CVE-2017-8539)
vulnerability in dos (CVE-2017-8539). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-8541 |
|
Buffer Overflow in microsoft (CVE-2017-8541)
vulnerability in microsoft (CVE-2017-8541). Successful exploitation can lead to full system takeover.
|
| CVE-2017-8542 |
|
Buffer Overflow in dos (CVE-2017-8542)
vulnerability in dos (CVE-2017-8542). Risk of unauthorized operations or information disclosure.
|
| CVE-2014-0225 |
|
XXE (XML External Entity) in spring (CVE-2014-0225)
vulnerability in spring (CVE-2014-0225). Successful exploitation can lead to full system takeover.
|
| CVE-2015-5211 |
|
Vulnerability in spring (CVE-2015-5211)
vulnerability in spring (CVE-2015-5211). Successful exploitation can lead to full system takeover.
|