Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: web-frameworks Clear
ID Title
CVE-2017-1398 Open Redirect in express (CVE-2017-1398)
vulnerability in express (CVE-2017-1398). Risk of unauthorized operations or information disclosure.
CVE-2017-7660 Authentication Bypass in apache (CVE-2017-7660)
authentication bypass in apache (CVE-2017-7660). Data can be tampered with by attackers.
CVE-2017-10991 Cross-Site Scripting (XSS) in wordpress (CVE-2017-10991)
cross-site scripting in wordpress (CVE-2017-10991). Risk of unauthorized operations or information disclosure.
CVE-2017-2216 Cross-Site Scripting (XSS) in wordpress (CVE-2017-2216)
cross-site scripting in wordpress (CVE-2017-2216). Risk of unauthorized operations or information disclosure.
CVE-2017-2217 Open Redirect in wordpress (CVE-2017-2217)
vulnerability in wordpress (CVE-2017-2217). Risk of unauthorized operations or information disclosure.
CVE-2017-2222 Cross-Site Scripting (XSS) in wordpress (CVE-2017-2222)
cross-site scripting in wordpress (CVE-2017-2222). Risk of unauthorized operations or information disclosure.
CVE-2017-6711 Authentication Bypass in apache (CVE-2017-6711)
authentication bypass in apache (CVE-2017-6711). Confidential information can be exposed externally.
CVE-2017-6722 Authentication Bypass in express (CVE-2017-6722)
authentication bypass in express (CVE-2017-6722). Risk of unauthorized operations or information disclosure.
CVE-2017-7686 Information Disclosure in apache (CVE-2017-7686)
vulnerability in apache (CVE-2017-7686). Confidential information can be exposed externally.
CVE-2017-9830 Unsafe Deserialization in apache (CVE-2017-9830)
vulnerability in apache (CVE-2017-9830). Successful exploitation can lead to full system takeover.
CVE-2017-3167 Authentication Bypass in apache (CVE-2017-3167)
authentication bypass in apache (CVE-2017-3167). Successful exploitation can lead to full system takeover.
CVE-2017-3169 Vulnerability in apache (CVE-2017-3169)
vulnerability in apache (CVE-2017-3169). Successful exploitation can lead to full system takeover.
CVE-2017-7668 Vulnerability in apache (CVE-2017-7668)
vulnerability in apache (CVE-2017-7668). Risk of unauthorized operations or information disclosure.
CVE-2017-7679 Vulnerability in apache (CVE-2017-7679)
vulnerability in apache (CVE-2017-7679). Successful exploitation can lead to full system takeover.
CVE-2015-3254 Vulnerability in apache (CVE-2015-3254)
vulnerability in apache (CVE-2015-3254). Risk of unauthorized operations or information disclosure.
CVE-2017-9419 Cross-Site Scripting (XSS) in wordpress (CVE-2017-9419)
cross-site scripting in wordpress (CVE-2017-9419). Risk of unauthorized operations or information disclosure.
CVE-2016-8746 Vulnerability in apache (CVE-2016-8746)
vulnerability in apache (CVE-2016-8746). Data can be tampered with by attackers.
CVE-2016-8751 Cross-Site Scripting (XSS) in apache (CVE-2016-8751)
cross-site scripting in apache (CVE-2016-8751). Risk of unauthorized operations or information disclosure.
CVE-2017-7676 Vulnerability in apache (CVE-2017-7676)
vulnerability in apache (CVE-2017-7676). Successful exploitation can lead to full system takeover.
CVE-2017-7677 Vulnerability in apache (CVE-2017-7677)
vulnerability in apache (CVE-2017-7677). Data can be tampered with by attackers.
CVE-2017-9429 SQL Injection in wordpress (CVE-2017-9429)
SQL injection in wordpress (CVE-2017-9429). Successful exploitation can lead to full system takeover.
CVE-2017-9603 SQL Injection in wordpress (CVE-2017-9603)
SQL injection in wordpress (CVE-2017-9603). Successful exploitation can lead to full system takeover.
CVE-2017-7665 Cross-Site Scripting (XSS) in apache (CVE-2017-7665)
cross-site scripting in apache (CVE-2017-7665). Risk of unauthorized operations or information disclosure.
CVE-2017-7667 Vulnerability in apache (CVE-2017-7667)
vulnerability in apache (CVE-2017-7667). Data can be tampered with by attackers.
CVE-2017-9418 SQL Injection in wordpress (CVE-2017-9418)
SQL injection in wordpress (CVE-2017-9418). Successful exploitation can lead to full system takeover.
CVE-2015-3634 Information Disclosure in wordpress (CVE-2015-3634)
vulnerability in wordpress (CVE-2015-3634). Confidential information can be exposed externally.
CVE-2014-9310 Cross-Site Scripting (XSS) in wordpress (CVE-2014-9310)
cross-site scripting in wordpress (CVE-2014-9310). Risk of unauthorized operations or information disclosure.
CVE-2015-5175 Vulnerability in apache (CVE-2015-5175)
vulnerability in apache (CVE-2015-5175). Risk of unauthorized operations or information disclosure.
CVE-2016-5004 Vulnerability in apache (CVE-2016-5004)
vulnerability in apache (CVE-2016-5004). Risk of unauthorized operations or information disclosure.
CVE-2017-5664 Vulnerability in apache (CVE-2017-5664)
vulnerability in apache (CVE-2017-5664). Data can be tampered with by attackers.
CVE-2017-9420 Cross-Site Scripting (XSS) in wordpress (CVE-2017-9420)
cross-site scripting in wordpress (CVE-2017-9420). Risk of unauthorized operations or information disclosure.
CVE-2017-7669 Vulnerability in apache (CVE-2017-7669)
vulnerability in apache (CVE-2017-7669). Successful exploitation can lead to full system takeover.
CVE-2017-9336 The WP Editor.MD plugin 1.6 for WordPress has a stored XSS vulnerability in the content of a post.
The WP Editor.MD plugin 1.6 for WordPress has a stored XSS vulnerability in the content of a post.
CVE-2017-9337 Cross-Site Scripting (XSS) in wordpress (CVE-2017-9337)
cross-site scripting in wordpress (CVE-2017-9337). Risk of unauthorized operations or information disclosure.
CVE-2016-3083 Vulnerability in apache (CVE-2016-3083)
vulnerability in apache (CVE-2016-3083). Data can be tampered with by attackers.
CVE-2017-9303 Vulnerability in laravel (CVE-2017-9303)
vulnerability in laravel (CVE-2017-9303). Risk of unauthorized operations or information disclosure.
CVE-2017-9288 Cross-Site Scripting (XSS) in wordpress (CVE-2017-9288)
cross-site scripting in wordpress (CVE-2017-9288). Risk of unauthorized operations or information disclosure.
CVE-2017-5646 Vulnerability in apache (CVE-2017-5646)
vulnerability in apache (CVE-2017-5646). Confidential information can be exposed externally.
CVE-2014-0225 XXE (XML External Entity) in spring (CVE-2014-0225)
vulnerability in spring (CVE-2014-0225). Successful exploitation can lead to full system takeover.
CVE-2015-5211 Vulnerability in spring (CVE-2015-5211)
vulnerability in spring (CVE-2015-5211). Successful exploitation can lead to full system takeover.
CVE-2016-5007 Vulnerability in spring (CVE-2016-5007)
vulnerability in spring (CVE-2016-5007). Data can be tampered with by attackers.
CVE-2015-4455 Unrestricted File Upload in wordpress (CVE-2015-4455)
vulnerability in wordpress (CVE-2015-4455). Successful exploitation can lead to full system takeover.
CVE-2015-4704 Path Traversal in wordpress (CVE-2015-4704)
path traversal in wordpress (CVE-2015-4704). Confidential information can be exposed externally.
CVE-2015-5468 Path Traversal in wordpress (CVE-2015-5468)
path traversal in wordpress (CVE-2015-5468). Confidential information can be exposed externally.
CVE-2015-5469 Path Traversal in wordpress (CVE-2015-5469)
path traversal in wordpress (CVE-2015-5469). Confidential information can be exposed externally.
CVE-2015-5609 Path Traversal in wordpress (CVE-2015-5609)
path traversal in wordpress (CVE-2015-5609). Confidential information can be exposed externally.
CVE-2015-5682 Vulnerability in wordpress (CVE-2015-5682)
vulnerability in wordpress (CVE-2015-5682). Data can be tampered with by attackers.
CVE-2015-5401 Vulnerability in express (CVE-2015-5401)
vulnerability in express (CVE-2015-5401). Risk of unauthorized operations or information disclosure.
CVE-2017-6891 Out-of-Bounds Write in c (CVE-2017-6891)
out-of-bounds write in c (CVE-2017-6891). Successful exploitation can lead to full system takeover.
CVE-2017-5657 Cross-Site Request Forgery (CSRF) in apache (CVE-2017-5657)
vulnerability in apache (CVE-2017-5657). Successful exploitation can lead to full system takeover.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →