Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2017-14146 |
|
Code Injection in helpdezk (CVE-2017-14146)
code injection in helpdezk (CVE-2017-14146). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14140 |
|
Information Disclosure in c (CVE-2017-14140)
vulnerability in c (CVE-2017-14140). Confidential information can be exposed externally.
|
| CVE-2017-14137 |
|
Vulnerability in c (CVE-2017-14137)
vulnerability in c (CVE-2017-14137). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-14138 |
|
Vulnerability in c (CVE-2017-14138)
vulnerability in c (CVE-2017-14138). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14139 |
|
ImageMagick 7.0.6-2 has a memory leak vulnerability in WriteMSLImage in coders/msl.c.
ImageMagick 7.0.6-2 has a memory leak vulnerability in WriteMSLImage in coders/msl.c.
|
| CVE-2017-14128 |
|
Out-of-Bounds Read in c (CVE-2017-14128)
vulnerability in c (CVE-2017-14128). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-14129 |
|
Out-of-Bounds Read in c (CVE-2017-14129)
vulnerability in c (CVE-2017-14129). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-14130 |
|
Out-of-Bounds Read in c (CVE-2017-14130)
vulnerability in c (CVE-2017-14130). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-14123 |
|
Unrestricted File Upload in zohocorp (CVE-2017-14123)
vulnerability in zohocorp (CVE-2017-14123). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14126 |
|
The Participants Database plugin before 1.7.5.10 for WordPress has XSS.
The Participants Database plugin before 1.7.5.10 for WordPress has XSS.
|
| CVE-2017-14118 |
|
OS Command Injection in eyesofnetwork (CVE-2017-14118)
OS command injection in eyesofnetwork (CVE-2017-14118). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14119 |
|
OS Command Injection in eyesofnetwork (CVE-2017-14119)
OS command injection in eyesofnetwork (CVE-2017-14119). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14120 |
|
Path Traversal in path-traversal (CVE-2017-14120)
path traversal in path-traversal (CVE-2017-14120). Confidential information can be exposed externally.
|
| CVE-2017-14121 |
|
Vulnerability in c (CVE-2017-14121)
vulnerability in c (CVE-2017-14121). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-14122 |
|
Out-of-Bounds Read in c (CVE-2017-14122)
vulnerability in c (CVE-2017-14122). Confidential information can be exposed externally.
|
| CVE-2017-12691 |
|
Vulnerability in c (CVE-2017-12691)
vulnerability in c (CVE-2017-12691). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-12692 |
|
Vulnerability in c (CVE-2017-12692)
vulnerability in c (CVE-2017-12692). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-12693 |
|
Vulnerability in c (CVE-2017-12693)
vulnerability in c (CVE-2017-12693). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-12871 |
|
Vulnerability in simplesamlphp (CVE-2017-12871)
vulnerability in simplesamlphp (CVE-2017-12871). Confidential information can be exposed externally.
|
| CVE-2017-14106 |
|
Vulnerability in c (CVE-2017-14106)
vulnerability in c (CVE-2017-14106). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-10851 |
|
Vulnerability in fujixerox (CVE-2017-10851)
vulnerability in fujixerox (CVE-2017-10851). Successful exploitation can lead to full system takeover.
|
| CVE-2017-3897 |
|
Code Injection in mcafee (CVE-2017-3897)
code injection in mcafee (CVE-2017-3897). Successful exploitation can lead to full system takeover.
|
| CVE-2017-3898 |
|
Vulnerability in mcafee (CVE-2017-3898)
vulnerability in mcafee (CVE-2017-3898). Data can be tampered with by attackers.
|
| CVE-2017-13674 |
|
Vulnerability in privilege-escalation (CVE-2017-13674)
vulnerability in privilege-escalation (CVE-2017-13674). Successful exploitation can lead to full system takeover.
|
| CVE-2017-12868 |
|
Vulnerability in simplesamlphp (CVE-2017-12868)
vulnerability in simplesamlphp (CVE-2017-12868). Successful exploitation can lead to full system takeover.
|
| CVE-2017-12869 |
|
Vulnerability in simplesamlphp (CVE-2017-12869)
vulnerability in simplesamlphp (CVE-2017-12869). Data can be tampered with by attackers.
|
| CVE-2014-8677 |
|
Code Injection in soplanning (CVE-2014-8677)
code injection in soplanning (CVE-2014-8677). Data can be tampered with by attackers.
|
| CVE-2015-7711 |
|
Cross-Site Scripting (XSS) in atutor (CVE-2015-7711)
cross-site scripting in atutor (CVE-2015-7711). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-10508 |
|
Cross-Site Scripting (XSS) in phpthumb-project (CVE-2016-10508)
cross-site scripting in phpthumb-project (CVE-2016-10508). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-10509 |
|
SQL Injection in sqli (CVE-2016-10509)
SQL injection in sqli (CVE-2016-10509). Successful exploitation can lead to full system takeover.
|
| CVE-2016-10510 |
|
Cross-Site Scripting (XSS) in kohanaframework (CVE-2016-10510)
cross-site scripting in kohanaframework (CVE-2016-10510). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-14076 |
|
SQL Injection in sqli (CVE-2017-14076)
SQL injection in sqli (CVE-2017-14076). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14069 |
|
SQL Injection exists in NexusPHP 1.5.beta5.20120707 via the usernw array parameter to nowarn.php.
SQL Injection exists in NexusPHP 1.5.beta5.20120707 via the usernw array parameter to nowarn.php.
|
| CVE-2017-14070 |
|
Cross-Site Scripting (XSS) in nexusphp (CVE-2017-14070)
cross-site scripting in nexusphp (CVE-2017-14070). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-14063 |
|
Vulnerability in csharp (CVE-2017-14063)
vulnerability in csharp (CVE-2017-14063). Data can be tampered with by attackers.
|
| CVE-2017-14061 |
|
Vulnerability in c (CVE-2017-14061)
vulnerability in c (CVE-2017-14061). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14062 |
|
Vulnerability in c (CVE-2017-14062)
vulnerability in c (CVE-2017-14062). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14060 |
|
Vulnerability in c (CVE-2017-14060)
vulnerability in c (CVE-2017-14060). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-1444 |
|
Cross-Site Scripting (XSS) in ibm (CVE-2017-1444)
cross-site scripting in ibm (CVE-2017-1444). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-1447 |
|
Cross-Site Scripting (XSS) in ibm (CVE-2017-1447)
cross-site scripting in ibm (CVE-2017-1447). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-1449 |
|
Open Redirect in ibm (CVE-2017-1449)
vulnerability in ibm (CVE-2017-1449). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-1450 |
|
Open Redirect in ibm (CVE-2017-1450)
vulnerability in ibm (CVE-2017-1450). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-11158 |
|
Vulnerability in synology (CVE-2017-11158)
vulnerability in synology (CVE-2017-11158). Successful exploitation can lead to full system takeover.
|
| CVE-2017-13670 |
|
Vulnerability in blackcat-cms (CVE-2017-13670)
vulnerability in blackcat-cms (CVE-2017-13670). Data can be tampered with by attackers.
|
| CVE-2017-14048 |
|
Cross-Site Request Forgery (CSRF) in csrf (CVE-2017-14048)
vulnerability in csrf (CVE-2017-14048). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14049 |
|
Cross-Site Scripting (XSS) in blackcat-cms (CVE-2017-14049)
cross-site scripting in blackcat-cms (CVE-2017-14049). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-14050 |
|
Unrestricted File Upload in blackcat-cms (CVE-2017-14050)
vulnerability in blackcat-cms (CVE-2017-14050). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14051 |
|
Vulnerability in c (CVE-2017-14051)
vulnerability in c (CVE-2017-14051). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-14035 |
|
CrushFTP 8.x before 8.2.0 has a serialization vulnerability.
CrushFTP 8.x before 8.2.0 has a serialization vulnerability.
|
| CVE-2017-14036 |
|
CrushFTP before 7.8.0 and 8.x before 8.2.0 has XSS.
CrushFTP before 7.8.0 and 8.x before 8.2.0 has XSS.
|