Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2017-14600 |
|
SQL Injection in sqli (CVE-2017-14600)
SQL injection in sqli (CVE-2017-14600). Confidential information can be exposed externally.
|
| CVE-2017-14601 |
|
SQL Injection in sqli (CVE-2017-14601)
SQL injection in sqli (CVE-2017-14601). Confidential information can be exposed externally.
|
| CVE-2017-9803 |
|
Authentication Bypass in apache (CVE-2017-9803)
authentication bypass in apache (CVE-2017-9803). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14580 |
|
Buffer Overflow in dos (CVE-2017-14580)
vulnerability in dos (CVE-2017-14580). Successful exploitation can lead to full system takeover.
|
| CVE-2017-6147 |
|
Vulnerability in f5 (CVE-2017-6147)
vulnerability in f5 (CVE-2017-6147). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-14538 |
|
Buffer Overflow in dos (CVE-2017-14538)
vulnerability in dos (CVE-2017-14538). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14541 |
|
Buffer Overflow in dos (CVE-2017-14541)
vulnerability in dos (CVE-2017-14541). Successful exploitation can lead to full system takeover.
|
| CVE-2017-9798 |
|
Use-After-Free in c (CVE-2017-9798)
vulnerability in c (CVE-2017-9798). Confidential information can be exposed externally.
|
| CVE-2014-6106 |
|
Cross-Site Request Forgery (CSRF) in csrf (CVE-2014-6106)
vulnerability in csrf (CVE-2014-6106). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14534 |
|
Cross-Site Scripting (XSS) in nexusphp-project (CVE-2017-14534)
cross-site scripting in nexusphp-project (CVE-2017-14534). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-14530 |
|
Cross-Site Request Forgery (CSRF) in wordpress (CVE-2017-14530)
vulnerability in wordpress (CVE-2017-14530). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14531 |
|
ImageMagick 7.0.7-0 has a memory exhaustion issue in ReadSUNImage in coders/sun.c.
ImageMagick 7.0.7-0 has a memory exhaustion issue in ReadSUNImage in coders/sun.c.
|
| CVE-2017-14532 |
|
ImageMagick 7.0.7-0 has a NULL Pointer Dereference in TIFFIgnoreTags in coders/tiff.c.
ImageMagick 7.0.7-0 has a NULL Pointer Dereference in TIFFIgnoreTags in coders/tiff.c.
|
| CVE-2017-14533 |
|
ImageMagick 7.0.6-6 has a memory leak in ReadMATImage in coders/mat.c.
ImageMagick 7.0.6-6 has a memory leak in ReadMATImage in coders/mat.c.
|
| CVE-2017-14529 |
|
Out-of-Bounds Read in c (CVE-2017-14529)
vulnerability in c (CVE-2017-14529). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-14528 |
|
Use-After-Free in c (CVE-2017-14528)
vulnerability in c (CVE-2017-14528). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-14514 |
|
Path Traversal in path-traversal (CVE-2017-14514)
path traversal in path-traversal (CVE-2017-14514). Confidential information can be exposed externally.
|
| CVE-2017-14515 |
|
Buffer Overflow in dos (CVE-2017-14515)
vulnerability in dos (CVE-2017-14515). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-14511 |
|
Vulnerability in sap (CVE-2017-14511)
vulnerability in sap (CVE-2017-14511). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-14509 |
|
Vulnerability in sugarcrm (CVE-2017-14509)
vulnerability in sugarcrm (CVE-2017-14509). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14510 |
|
Cross-Site Scripting (XSS) in sugarcrm (CVE-2017-14510)
cross-site scripting in sugarcrm (CVE-2017-14510). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-14508 |
|
SQL Injection in sqli (CVE-2017-14508)
SQL injection in sqli (CVE-2017-14508). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14512 |
|
SQL Injection in sqli (CVE-2017-14512)
SQL injection in sqli (CVE-2017-14512). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14513 |
|
Path Traversal in path-traversal (CVE-2017-14513)
path traversal in path-traversal (CVE-2017-14513). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-14505 |
|
Vulnerability in c (CVE-2017-14505)
vulnerability in c (CVE-2017-14505). Risk of unauthorized operations or information disclosure.
|
| CVE-2014-7808 |
|
Vulnerability in apache (CVE-2014-7808)
vulnerability in apache (CVE-2014-7808). Confidential information can be exposed externally.
|
| CVE-2015-0110 |
|
Vulnerability in ibm (CVE-2015-0110)
vulnerability in ibm (CVE-2015-0110). Data can be tampered with by attackers.
|
| CVE-2014-9463 |
|
Code Injection in vbseo (CVE-2014-9463)
code injection in vbseo (CVE-2014-9463). Successful exploitation can lead to full system takeover. Exploitable via `Referer header`.
|
| CVE-2017-9328 |
|
OS Command Injection in terra-master (CVE-2017-9328)
OS command injection in terra-master (CVE-2017-9328). Successful exploitation can lead to full system takeover.
|
| CVE-2015-1527 |
|
Vulnerability in cpp (CVE-2015-1527)
vulnerability in cpp (CVE-2015-1527). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14497 |
|
Buffer Overflow in c (CVE-2017-14497)
vulnerability in c (CVE-2017-14497). Successful exploitation can lead to full system takeover.
|
| CVE-2017-2299 |
|
Vulnerability in apache (CVE-2017-2299)
vulnerability in apache (CVE-2017-2299). Confidential information can be exposed externally. Exploitable via ``ssl_ca``.
|
| CVE-2017-10855 |
|
Vulnerability in fujitsu (CVE-2017-10855)
vulnerability in fujitsu (CVE-2017-10855). Successful exploitation can lead to full system takeover.
|
| CVE-2017-4924 |
|
Out-of-Bounds Write in vmware (CVE-2017-4924)
out-of-bounds write in vmware (CVE-2017-4924). Successful exploitation can lead to full system takeover.
|
| CVE-2017-4926 |
|
Cross-Site Scripting (XSS) in vmware (CVE-2017-4926)
cross-site scripting in vmware (CVE-2017-4926). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-4925 |
|
Vulnerability in vmware (CVE-2017-4925)
vulnerability in vmware (CVE-2017-4925). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-14340 |
|
Vulnerability in dos (CVE-2017-14340)
vulnerability in dos (CVE-2017-14340). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-14489 |
|
Vulnerability in c (CVE-2017-14489)
vulnerability in c (CVE-2017-14489). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-0781 |
|
Buffer Overflow in google (CVE-2017-0781)
vulnerability in google (CVE-2017-0781). Successful exploitation can lead to full system takeover.
|
| CVE-2017-0782 |
|
Vulnerability in google (CVE-2017-0782)
vulnerability in google (CVE-2017-0782). Successful exploitation can lead to full system takeover.
|
| CVE-2017-0783 |
|
Information Disclosure in google (CVE-2017-0783)
vulnerability in google (CVE-2017-0783). Confidential information can be exposed externally.
|
| CVE-2017-0785 |
|
Information Disclosure in google (CVE-2017-0785)
vulnerability in google (CVE-2017-0785). Confidential information can be exposed externally.
|
| CVE-2013-7429 |
|
Vulnerability in mapsplugin (CVE-2013-7429)
vulnerability in mapsplugin (CVE-2013-7429). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14482 |
|
Vulnerability in gnu (CVE-2017-14482)
vulnerability in gnu (CVE-2017-14482). Successful exploitation can lead to full system takeover.
|
| CVE-2017-13067 |
|
Vulnerability in qnap (CVE-2017-13067)
vulnerability in qnap (CVE-2017-13067). Successful exploitation can lead to full system takeover.
|
| CVE-2017-1490 |
|
Information Disclosure in ibm (CVE-2017-1490)
vulnerability in ibm (CVE-2017-1490). Confidential information can be exposed externally.
|
| CVE-2017-1002022 |
|
SQL Injection in wordpress (CVE-2017-1002022)
SQL injection in wordpress (CVE-2017-1002022). Successful exploitation can lead to full system takeover.
|
| CVE-2017-1002023 |
|
SQL Injection in wordpress (CVE-2017-1002023)
SQL injection in wordpress (CVE-2017-1002023). Successful exploitation can lead to full system takeover.
|
| CVE-2017-1002024 |
|
Authentication Bypass in kindsoft (CVE-2017-1002024)
authentication bypass in kindsoft (CVE-2017-1002024). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-1002027 |
|
SQL Injection in wordpress (CVE-2017-1002027)
SQL injection in wordpress (CVE-2017-1002027). Successful exploitation can lead to full system takeover.
|