Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2017-1398 |
|
Open Redirect in express (CVE-2017-1398)
vulnerability in express (CVE-2017-1398). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-7660 |
|
Authentication Bypass in apache (CVE-2017-7660)
authentication bypass in apache (CVE-2017-7660). Data can be tampered with by attackers.
|
| CVE-2017-10991 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2017-10991)
cross-site scripting in wordpress (CVE-2017-10991). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-2216 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2017-2216)
cross-site scripting in wordpress (CVE-2017-2216). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-2217 |
|
Open Redirect in wordpress (CVE-2017-2217)
vulnerability in wordpress (CVE-2017-2217). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-2222 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2017-2222)
cross-site scripting in wordpress (CVE-2017-2222). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-6711 |
|
Authentication Bypass in apache (CVE-2017-6711)
authentication bypass in apache (CVE-2017-6711). Confidential information can be exposed externally.
|
| CVE-2017-6722 |
|
Authentication Bypass in express (CVE-2017-6722)
authentication bypass in express (CVE-2017-6722). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-7686 |
|
Information Disclosure in apache (CVE-2017-7686)
vulnerability in apache (CVE-2017-7686). Confidential information can be exposed externally.
|
| CVE-2017-9830 |
|
Unsafe Deserialization in apache (CVE-2017-9830)
vulnerability in apache (CVE-2017-9830). Successful exploitation can lead to full system takeover.
|
| CVE-2017-3167 |
|
Authentication Bypass in apache (CVE-2017-3167)
authentication bypass in apache (CVE-2017-3167). Successful exploitation can lead to full system takeover.
|
| CVE-2017-3169 |
|
Vulnerability in apache (CVE-2017-3169)
vulnerability in apache (CVE-2017-3169). Successful exploitation can lead to full system takeover.
|
| CVE-2017-7668 |
|
Vulnerability in apache (CVE-2017-7668)
vulnerability in apache (CVE-2017-7668). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-7679 |
|
Vulnerability in apache (CVE-2017-7679)
vulnerability in apache (CVE-2017-7679). Successful exploitation can lead to full system takeover.
|
| CVE-2015-3254 |
|
Vulnerability in apache (CVE-2015-3254)
vulnerability in apache (CVE-2015-3254). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-9419 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2017-9419)
cross-site scripting in wordpress (CVE-2017-9419). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-8746 |
|
Vulnerability in apache (CVE-2016-8746)
vulnerability in apache (CVE-2016-8746). Data can be tampered with by attackers.
|
| CVE-2016-8751 |
|
Cross-Site Scripting (XSS) in apache (CVE-2016-8751)
cross-site scripting in apache (CVE-2016-8751). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-7676 |
|
Vulnerability in apache (CVE-2017-7676)
vulnerability in apache (CVE-2017-7676). Successful exploitation can lead to full system takeover.
|
| CVE-2017-7677 |
|
Vulnerability in apache (CVE-2017-7677)
vulnerability in apache (CVE-2017-7677). Data can be tampered with by attackers.
|
| CVE-2017-9429 |
|
SQL Injection in wordpress (CVE-2017-9429)
SQL injection in wordpress (CVE-2017-9429). Successful exploitation can lead to full system takeover.
|
| CVE-2017-9603 |
|
SQL Injection in wordpress (CVE-2017-9603)
SQL injection in wordpress (CVE-2017-9603). Successful exploitation can lead to full system takeover.
|
| CVE-2017-7665 |
|
Cross-Site Scripting (XSS) in apache (CVE-2017-7665)
cross-site scripting in apache (CVE-2017-7665). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-7667 |
|
Vulnerability in apache (CVE-2017-7667)
vulnerability in apache (CVE-2017-7667). Data can be tampered with by attackers.
|
| CVE-2017-9418 |
|
SQL Injection in wordpress (CVE-2017-9418)
SQL injection in wordpress (CVE-2017-9418). Successful exploitation can lead to full system takeover.
|
| CVE-2015-3634 |
|
Information Disclosure in wordpress (CVE-2015-3634)
vulnerability in wordpress (CVE-2015-3634). Confidential information can be exposed externally.
|
| CVE-2014-9310 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2014-9310)
cross-site scripting in wordpress (CVE-2014-9310). Risk of unauthorized operations or information disclosure.
|
| CVE-2015-5175 |
|
Vulnerability in apache (CVE-2015-5175)
vulnerability in apache (CVE-2015-5175). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-5004 |
|
Vulnerability in apache (CVE-2016-5004)
vulnerability in apache (CVE-2016-5004). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-5664 |
|
Vulnerability in apache (CVE-2017-5664)
vulnerability in apache (CVE-2017-5664). Data can be tampered with by attackers.
|
| CVE-2017-9420 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2017-9420)
cross-site scripting in wordpress (CVE-2017-9420). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-7669 |
|
Vulnerability in apache (CVE-2017-7669)
vulnerability in apache (CVE-2017-7669). Successful exploitation can lead to full system takeover.
|
| CVE-2017-9336 |
|
The WP Editor.MD plugin 1.6 for WordPress has a stored XSS vulnerability in the content of a post.
The WP Editor.MD plugin 1.6 for WordPress has a stored XSS vulnerability in the content of a post.
|
| CVE-2017-9337 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2017-9337)
cross-site scripting in wordpress (CVE-2017-9337). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-3083 |
|
Vulnerability in apache (CVE-2016-3083)
vulnerability in apache (CVE-2016-3083). Data can be tampered with by attackers.
|
| CVE-2017-9303 |
|
Vulnerability in laravel (CVE-2017-9303)
vulnerability in laravel (CVE-2017-9303). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-9288 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2017-9288)
cross-site scripting in wordpress (CVE-2017-9288). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-5646 |
|
Vulnerability in apache (CVE-2017-5646)
vulnerability in apache (CVE-2017-5646). Confidential information can be exposed externally.
|
| CVE-2014-0225 |
|
XXE (XML External Entity) in spring (CVE-2014-0225)
vulnerability in spring (CVE-2014-0225). Successful exploitation can lead to full system takeover.
|
| CVE-2015-5211 |
|
Vulnerability in spring (CVE-2015-5211)
vulnerability in spring (CVE-2015-5211). Successful exploitation can lead to full system takeover.
|
| CVE-2016-5007 |
|
Vulnerability in spring (CVE-2016-5007)
vulnerability in spring (CVE-2016-5007). Data can be tampered with by attackers.
|
| CVE-2015-4455 |
|
Unrestricted File Upload in wordpress (CVE-2015-4455)
vulnerability in wordpress (CVE-2015-4455). Successful exploitation can lead to full system takeover.
|
| CVE-2015-4704 |
|
Path Traversal in wordpress (CVE-2015-4704)
path traversal in wordpress (CVE-2015-4704). Confidential information can be exposed externally.
|
| CVE-2015-5468 |
|
Path Traversal in wordpress (CVE-2015-5468)
path traversal in wordpress (CVE-2015-5468). Confidential information can be exposed externally.
|
| CVE-2015-5469 |
|
Path Traversal in wordpress (CVE-2015-5469)
path traversal in wordpress (CVE-2015-5469). Confidential information can be exposed externally.
|
| CVE-2015-5609 |
|
Path Traversal in wordpress (CVE-2015-5609)
path traversal in wordpress (CVE-2015-5609). Confidential information can be exposed externally.
|
| CVE-2015-5682 |
|
Vulnerability in wordpress (CVE-2015-5682)
vulnerability in wordpress (CVE-2015-5682). Data can be tampered with by attackers.
|
| CVE-2015-5401 |
|
Vulnerability in express (CVE-2015-5401)
vulnerability in express (CVE-2015-5401). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-6891 |
|
Out-of-Bounds Write in c (CVE-2017-6891)
out-of-bounds write in c (CVE-2017-6891). Successful exploitation can lead to full system takeover.
|
| CVE-2017-5657 |
|
Cross-Site Request Forgery (CSRF) in apache (CVE-2017-5657)
vulnerability in apache (CVE-2017-5657). Successful exploitation can lead to full system takeover.
|