Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: vendors Clear
ID Title
CVE-2017-14146 Code Injection in helpdezk (CVE-2017-14146)
code injection in helpdezk (CVE-2017-14146). Successful exploitation can lead to full system takeover.
CVE-2017-14140 Information Disclosure in c (CVE-2017-14140)
vulnerability in c (CVE-2017-14140). Confidential information can be exposed externally.
CVE-2017-14137 Vulnerability in c (CVE-2017-14137)
vulnerability in c (CVE-2017-14137). Risk of unauthorized operations or information disclosure.
CVE-2017-14138 Vulnerability in c (CVE-2017-14138)
vulnerability in c (CVE-2017-14138). Successful exploitation can lead to full system takeover.
CVE-2017-14139 ImageMagick 7.0.6-2 has a memory leak vulnerability in WriteMSLImage in coders/msl.c.
ImageMagick 7.0.6-2 has a memory leak vulnerability in WriteMSLImage in coders/msl.c.
CVE-2017-14128 Out-of-Bounds Read in c (CVE-2017-14128)
vulnerability in c (CVE-2017-14128). Risk of unauthorized operations or information disclosure.
CVE-2017-14129 Out-of-Bounds Read in c (CVE-2017-14129)
vulnerability in c (CVE-2017-14129). Risk of unauthorized operations or information disclosure.
CVE-2017-14130 Out-of-Bounds Read in c (CVE-2017-14130)
vulnerability in c (CVE-2017-14130). Risk of unauthorized operations or information disclosure.
CVE-2017-14123 Unrestricted File Upload in zohocorp (CVE-2017-14123)
vulnerability in zohocorp (CVE-2017-14123). Successful exploitation can lead to full system takeover.
CVE-2017-14126 The Participants Database plugin before 1.7.5.10 for WordPress has XSS.
The Participants Database plugin before 1.7.5.10 for WordPress has XSS.
CVE-2017-14118 OS Command Injection in eyesofnetwork (CVE-2017-14118)
OS command injection in eyesofnetwork (CVE-2017-14118). Successful exploitation can lead to full system takeover.
CVE-2017-14119 OS Command Injection in eyesofnetwork (CVE-2017-14119)
OS command injection in eyesofnetwork (CVE-2017-14119). Successful exploitation can lead to full system takeover.
CVE-2017-14120 Path Traversal in path-traversal (CVE-2017-14120)
path traversal in path-traversal (CVE-2017-14120). Confidential information can be exposed externally.
CVE-2017-14121 Vulnerability in c (CVE-2017-14121)
vulnerability in c (CVE-2017-14121). Risk of unauthorized operations or information disclosure.
CVE-2017-14122 Out-of-Bounds Read in c (CVE-2017-14122)
vulnerability in c (CVE-2017-14122). Confidential information can be exposed externally.
CVE-2017-12691 Vulnerability in c (CVE-2017-12691)
vulnerability in c (CVE-2017-12691). Risk of unauthorized operations or information disclosure.
CVE-2017-12692 Vulnerability in c (CVE-2017-12692)
vulnerability in c (CVE-2017-12692). Risk of unauthorized operations or information disclosure.
CVE-2017-12693 Vulnerability in c (CVE-2017-12693)
vulnerability in c (CVE-2017-12693). Risk of unauthorized operations or information disclosure.
CVE-2017-12871 Vulnerability in simplesamlphp (CVE-2017-12871)
vulnerability in simplesamlphp (CVE-2017-12871). Confidential information can be exposed externally.
CVE-2017-14106 Vulnerability in c (CVE-2017-14106)
vulnerability in c (CVE-2017-14106). Risk of unauthorized operations or information disclosure.
CVE-2017-10851 Vulnerability in fujixerox (CVE-2017-10851)
vulnerability in fujixerox (CVE-2017-10851). Successful exploitation can lead to full system takeover.
CVE-2017-3897 Code Injection in mcafee (CVE-2017-3897)
code injection in mcafee (CVE-2017-3897). Successful exploitation can lead to full system takeover.
CVE-2017-3898 Vulnerability in mcafee (CVE-2017-3898)
vulnerability in mcafee (CVE-2017-3898). Data can be tampered with by attackers.
CVE-2017-13674 Vulnerability in privilege-escalation (CVE-2017-13674)
vulnerability in privilege-escalation (CVE-2017-13674). Successful exploitation can lead to full system takeover.
CVE-2017-12868 Vulnerability in simplesamlphp (CVE-2017-12868)
vulnerability in simplesamlphp (CVE-2017-12868). Successful exploitation can lead to full system takeover.
CVE-2017-12869 Vulnerability in simplesamlphp (CVE-2017-12869)
vulnerability in simplesamlphp (CVE-2017-12869). Data can be tampered with by attackers.
CVE-2014-8677 Code Injection in soplanning (CVE-2014-8677)
code injection in soplanning (CVE-2014-8677). Data can be tampered with by attackers.
CVE-2015-7711 Cross-Site Scripting (XSS) in atutor (CVE-2015-7711)
cross-site scripting in atutor (CVE-2015-7711). Risk of unauthorized operations or information disclosure.
CVE-2016-10508 Cross-Site Scripting (XSS) in phpthumb-project (CVE-2016-10508)
cross-site scripting in phpthumb-project (CVE-2016-10508). Risk of unauthorized operations or information disclosure.
CVE-2016-10509 SQL Injection in sqli (CVE-2016-10509)
SQL injection in sqli (CVE-2016-10509). Successful exploitation can lead to full system takeover.
CVE-2016-10510 Cross-Site Scripting (XSS) in kohanaframework (CVE-2016-10510)
cross-site scripting in kohanaframework (CVE-2016-10510). Risk of unauthorized operations or information disclosure.
CVE-2017-14076 SQL Injection in sqli (CVE-2017-14076)
SQL injection in sqli (CVE-2017-14076). Successful exploitation can lead to full system takeover.
CVE-2017-14069 SQL Injection exists in NexusPHP 1.5.beta5.20120707 via the usernw array parameter to nowarn.php.
SQL Injection exists in NexusPHP 1.5.beta5.20120707 via the usernw array parameter to nowarn.php.
CVE-2017-14070 Cross-Site Scripting (XSS) in nexusphp (CVE-2017-14070)
cross-site scripting in nexusphp (CVE-2017-14070). Risk of unauthorized operations or information disclosure.
CVE-2017-14063 Vulnerability in csharp (CVE-2017-14063)
vulnerability in csharp (CVE-2017-14063). Data can be tampered with by attackers.
CVE-2017-14061 Vulnerability in c (CVE-2017-14061)
vulnerability in c (CVE-2017-14061). Successful exploitation can lead to full system takeover.
CVE-2017-14062 Vulnerability in c (CVE-2017-14062)
vulnerability in c (CVE-2017-14062). Successful exploitation can lead to full system takeover.
CVE-2017-14060 Vulnerability in c (CVE-2017-14060)
vulnerability in c (CVE-2017-14060). Risk of unauthorized operations or information disclosure.
CVE-2017-1444 Cross-Site Scripting (XSS) in ibm (CVE-2017-1444)
cross-site scripting in ibm (CVE-2017-1444). Risk of unauthorized operations or information disclosure.
CVE-2017-1447 Cross-Site Scripting (XSS) in ibm (CVE-2017-1447)
cross-site scripting in ibm (CVE-2017-1447). Risk of unauthorized operations or information disclosure.
CVE-2017-1449 Open Redirect in ibm (CVE-2017-1449)
vulnerability in ibm (CVE-2017-1449). Risk of unauthorized operations or information disclosure.
CVE-2017-1450 Open Redirect in ibm (CVE-2017-1450)
vulnerability in ibm (CVE-2017-1450). Risk of unauthorized operations or information disclosure.
CVE-2017-11158 Vulnerability in synology (CVE-2017-11158)
vulnerability in synology (CVE-2017-11158). Successful exploitation can lead to full system takeover.
CVE-2017-13670 Vulnerability in blackcat-cms (CVE-2017-13670)
vulnerability in blackcat-cms (CVE-2017-13670). Data can be tampered with by attackers.
CVE-2017-14048 Cross-Site Request Forgery (CSRF) in csrf (CVE-2017-14048)
vulnerability in csrf (CVE-2017-14048). Successful exploitation can lead to full system takeover.
CVE-2017-14049 Cross-Site Scripting (XSS) in blackcat-cms (CVE-2017-14049)
cross-site scripting in blackcat-cms (CVE-2017-14049). Risk of unauthorized operations or information disclosure.
CVE-2017-14050 Unrestricted File Upload in blackcat-cms (CVE-2017-14050)
vulnerability in blackcat-cms (CVE-2017-14050). Successful exploitation can lead to full system takeover.
CVE-2017-14051 Vulnerability in c (CVE-2017-14051)
vulnerability in c (CVE-2017-14051). Risk of unauthorized operations or information disclosure.
CVE-2017-14035 CrushFTP 8.x before 8.2.0 has a serialization vulnerability.
CrushFTP 8.x before 8.2.0 has a serialization vulnerability.
CVE-2017-14036 CrushFTP before 7.8.0 and 8.x before 8.2.0 has XSS.
CrushFTP before 7.8.0 and 8.x before 8.2.0 has XSS.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →