Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: vendors Clear
ID Title
CVE-2017-12288 Cross-Site Scripting (XSS) in express (CVE-2017-12288)
cross-site scripting in express (CVE-2017-12288). Risk of unauthorized operations or information disclosure.
CVE-2017-12289 Information Disclosure in cisco (CVE-2017-12289)
vulnerability in cisco (CVE-2017-12289). Confidential information can be exposed externally.
CVE-2017-12293 Buffer Overflow in dos (CVE-2017-12293)
vulnerability in dos (CVE-2017-12293). Risk of unauthorized operations or information disclosure.
CVE-2017-12296 Cross-Site Scripting (XSS) in cisco (CVE-2017-12296)
cross-site scripting in cisco (CVE-2017-12296). Risk of unauthorized operations or information disclosure.
CVE-2017-12298 Cross-Site Scripting (XSS) in cisco (CVE-2017-12298)
cross-site scripting in cisco (CVE-2017-12298). Risk of unauthorized operations or information disclosure.
CVE-2017-12301 Vulnerability in cisco (CVE-2017-12301)
vulnerability in cisco (CVE-2017-12301). Successful exploitation can lead to full system takeover.
CVE-2017-3883 Vulnerability in cisco (CVE-2017-3883)
vulnerability in cisco (CVE-2017-3883). Risk of unauthorized operations or information disclosure.
CVE-2017-15612 Cross-Site Scripting (XSS) in mistune-project (CVE-2017-15612)
cross-site scripting in mistune-project (CVE-2017-15612). Risk of unauthorized operations or information disclosure.
CVE-2017-15600 Vulnerability in c (CVE-2017-15600)
vulnerability in c (CVE-2017-15600). Risk of unauthorized operations or information disclosure.
CVE-2017-15601 Buffer Overflow in c (CVE-2017-15601)
vulnerability in c (CVE-2017-15601). Risk of unauthorized operations or information disclosure.
CVE-2017-15602 Vulnerability in c (CVE-2017-15602)
vulnerability in c (CVE-2017-15602). Risk of unauthorized operations or information disclosure.
CVE-2015-5227 Vulnerability in wordpress (CVE-2015-5227)
vulnerability in wordpress (CVE-2015-5227). Successful exploitation can lead to full system takeover.
CVE-2015-7714 SQL Injection in sqli (CVE-2015-7714)
SQL injection in sqli (CVE-2015-7714). Successful exploitation can lead to full system takeover.
CVE-2015-7715 Cross-Site Request Forgery (CSRF) in csrf (CVE-2015-7715)
vulnerability in csrf (CVE-2015-7715). Successful exploitation can lead to full system takeover.
CVE-2017-14322 Authentication Bypass in interspire (CVE-2017-14322)
authentication bypass in interspire (CVE-2017-14322). Successful exploitation can lead to full system takeover.
CVE-2017-14956 Cross-Site Request Forgery (CSRF) in csrf (CVE-2017-14956)
vulnerability in csrf (CVE-2017-14956). Confidential information can be exposed externally.
CVE-2015-7943 Open Redirect in drupal (CVE-2015-7943)
vulnerability in drupal (CVE-2015-7943). Risk of unauthorized operations or information disclosure.
CVE-2015-1239 Vulnerability in dos (CVE-2015-1239)
vulnerability in dos (CVE-2015-1239). Risk of unauthorized operations or information disclosure.
CVE-2014-8491 Information Disclosure in wordpress (CVE-2014-8491)
vulnerability in wordpress (CVE-2014-8491). Risk of unauthorized operations or information disclosure.
CVE-2014-7813 Vulnerability in rails (CVE-2014-7813)
vulnerability in rails (CVE-2014-7813). Risk of unauthorized operations or information disclosure.
CVE-2014-3164 Vulnerability in c (CVE-2014-3164)
vulnerability in c (CVE-2014-3164). Risk of unauthorized operations or information disclosure.
CVE-2011-5320 Buffer Overflow in dos (CVE-2011-5320)
vulnerability in dos (CVE-2011-5320). Risk of unauthorized operations or information disclosure.
CVE-2017-15587 Vulnerability in c (CVE-2017-15587)
vulnerability in c (CVE-2017-15587). Successful exploitation can lead to full system takeover.
CVE-2017-15578 SQL Injection in sqli (CVE-2017-15578)
SQL injection in sqli (CVE-2017-15578). Successful exploitation can lead to full system takeover.
CVE-2017-15579 SQL Injection in sqli (CVE-2017-15579)
SQL injection in sqli (CVE-2017-15579). Successful exploitation can lead to full system takeover.
CVE-2017-15539 SQL Injection exists in zorovavi/blog through 2017-10-17 via the id parameter to recept.php.
SQL Injection exists in zorovavi/blog through 2017-10-17 via the id parameter to recept.php.
CVE-2017-15538 Cross-Site Scripting (XSS) in ilias (CVE-2017-15538)
cross-site scripting in ilias (CVE-2017-15538). Risk of unauthorized operations or information disclosure.
CVE-2017-5531 Vulnerability in tibco (CVE-2017-5531)
vulnerability in tibco (CVE-2017-5531). Successful exploitation can lead to full system takeover.
CVE-2017-15537 Information Disclosure in c (CVE-2017-15537)
vulnerability in c (CVE-2017-15537). Confidential information can be exposed externally.
CVE-2015-7806 Command Injection in wordpress (CVE-2015-7806)
command injection in wordpress (CVE-2015-7806). Successful exploitation can lead to full system takeover.
CVE-2014-2664 Unrestricted File Upload in x2engine (CVE-2014-2664)
vulnerability in x2engine (CVE-2014-2664). Successful exploitation can lead to full system takeover.
CVE-2017-0316 Vulnerability in dos (CVE-2017-0316)
vulnerability in dos (CVE-2017-0316). Successful exploitation can lead to full system takeover.
CVE-2017-15265 Vulnerability in c (CVE-2017-15265)
vulnerability in c (CVE-2017-15265). Successful exploitation can lead to full system takeover.
CVE-2015-7687 Use-After-Free in dos (CVE-2015-7687)
vulnerability in dos (CVE-2015-7687). Successful exploitation can lead to full system takeover.
CVE-2017-15384 rate-me.php in Rate Me 1.0 has XSS via the id field in a rate action.
rate-me.php in Rate Me 1.0 has XSS via the id field in a rate action.
CVE-2017-15361 Vulnerability in infineon (CVE-2017-15361)
vulnerability in infineon (CVE-2017-15361). Confidential information can be exposed externally.
CVE-2017-15296 The Java component in SAP CRM has CSRF. This is SAP Security Note 2478964.
The Java component in SAP CRM has CSRF. This is SAP Security Note 2478964.
CVE-2017-15295 Authentication Bypass in sap (CVE-2017-15295)
authentication bypass in sap (CVE-2017-15295). Successful exploitation can lead to full system takeover.
CVE-2017-15297 Authentication Bypass in sap (CVE-2017-15297)
authentication bypass in sap (CVE-2017-15297). Risk of unauthorized operations or information disclosure.
CVE-2016-4461 Vulnerability in apache (CVE-2016-4461)
vulnerability in apache (CVE-2016-4461). Successful exploitation can lead to full system takeover.
CVE-2017-15293 Authentication Bypass in sap (CVE-2017-15293)
authentication bypass in sap (CVE-2017-15293). Successful exploitation can lead to full system takeover.
CVE-2017-15294 The Java administration console in SAP CRM has XSS. This is SAP Security Note 2478964.
The Java administration console in SAP CRM has XSS. This is SAP Security Note 2478964.
CVE-2014-8087 Cross-Site Scripting (XSS) in wordpress (CVE-2014-8087)
cross-site scripting in wordpress (CVE-2014-8087). Risk of unauthorized operations or information disclosure.
CVE-2014-8621 SQL Injection in wordpress (CVE-2014-8621)
SQL injection in wordpress (CVE-2014-8621). Successful exploitation can lead to full system takeover.
CVE-2016-8734 Vulnerability in apache (CVE-2016-8734)
vulnerability in apache (CVE-2016-8734). Risk of unauthorized operations or information disclosure.
CVE-2017-15373 SQL Injection in sqli (CVE-2017-15373)
SQL injection in sqli (CVE-2017-15373). Successful exploitation can lead to full system takeover.
CVE-2017-15375 Cross-Site Scripting (XSS) in wordpress (CVE-2017-15375)
cross-site scripting in wordpress (CVE-2017-15375). Risk of unauthorized operations or information disclosure. Exploitable via ``query``.
CVE-2017-15369 Use-After-Free in c (CVE-2017-15369)
vulnerability in c (CVE-2017-15369). Successful exploitation can lead to full system takeover.
CVE-2017-15362 Cross-Site Scripting (XSS) in csrf (CVE-2017-15362)
cross-site scripting in csrf (CVE-2017-15362). Risk of unauthorized operations or information disclosure.
CVE-2017-15363 Path Traversal in path-traversal (CVE-2017-15363)
path traversal in path-traversal (CVE-2017-15363). Confidential information can be exposed externally.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →