Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: web-frameworks Clear
ID Title
CVE-2017-5648 Vulnerability in apache (CVE-2017-5648)
vulnerability in apache (CVE-2017-5648). Confidential information can be exposed externally.
CVE-2017-5650 Vulnerability in apache (CVE-2017-5650)
vulnerability in apache (CVE-2017-5650). Risk of unauthorized operations or information disclosure.
CVE-2017-5651 Vulnerability in apache (CVE-2017-5651)
vulnerability in apache (CVE-2017-5651). Successful exploitation can lead to full system takeover.
CVE-2016-4970 Vulnerability in dos (CVE-2016-4970)
vulnerability in dos (CVE-2016-4970). Risk of unauthorized operations or information disclosure.
CVE-2016-6808 Buffer overflow in Apache Tomcat Connectors (mod_jk) before 1.2.42.
Buffer overflow in Apache Tomcat Connectors (mod_jk) before 1.2.42.
CVE-2017-6059 Vulnerability in c (CVE-2017-6059)
vulnerability in c (CVE-2017-6059). Data can be tampered with by attackers.
CVE-2017-7719 SQL Injection in wordpress (CVE-2017-7719)
SQL injection in wordpress (CVE-2017-7719). Successful exploitation can lead to full system takeover.
CVE-2016-0779 Unsafe Deserialization in apache (CVE-2016-0779)
vulnerability in apache (CVE-2016-0779). Successful exploitation can lead to full system takeover.
CVE-2016-6811 Vulnerability in apache (CVE-2016-6811)
vulnerability in apache (CVE-2016-6811). Successful exploitation can lead to full system takeover.
CVE-2016-6805 XXE (XML External Entity) in apache (CVE-2016-6805)
vulnerability in apache (CVE-2016-6805). Confidential information can be exposed externally.
CVE-2016-9197 Vulnerability in express (CVE-2016-9197)
vulnerability in express (CVE-2016-9197). Successful exploitation can lead to full system takeover.
CVE-2016-6809 Unsafe Deserialization in apache (CVE-2016-6809)
vulnerability in apache (CVE-2016-6809). Successful exploitation can lead to full system takeover.
CVE-2017-3834 Vulnerability in express (CVE-2017-3834)
vulnerability in express (CVE-2017-3834). Successful exploitation can lead to full system takeover.
CVE-2017-5649 Information Disclosure in apache (CVE-2017-5649)
vulnerability in apache (CVE-2017-5649). Confidential information can be exposed externally.
CVE-2017-7233 Open Redirect in django (CVE-2017-7233)
vulnerability in django (CVE-2017-7233). Risk of unauthorized operations or information disclosure.
CVE-2017-7234 Open Redirect in django (CVE-2017-7234)
vulnerability in django (CVE-2017-7234). Risk of unauthorized operations or information disclosure.
CVE-2017-5642 Vulnerability in apache (CVE-2017-5642)
vulnerability in apache (CVE-2017-5642). Successful exploitation can lead to full system takeover.
CVE-2017-1001000 Vulnerability in wordpress (CVE-2017-1001000)
vulnerability in wordpress (CVE-2017-1001000). Data can be tampered with by attackers.
CVE-2014-3582 Code Injection in apache (CVE-2014-3582)
code injection in apache (CVE-2014-3582). Successful exploitation can lead to full system takeover.
CVE-2016-4976 Information Disclosure in apache (CVE-2016-4976)
vulnerability in apache (CVE-2016-4976). Confidential information can be exposed externally.
CVE-2016-6807 Vulnerability in apache (CVE-2016-6807)
vulnerability in apache (CVE-2016-6807). Successful exploitation can lead to full system takeover.
CVE-2016-8749 Unsafe Deserialization in apache (CVE-2016-8749)
vulnerability in apache (CVE-2016-8749). Successful exploitation can lead to full system takeover.
CVE-2017-5644 Vulnerability in apache (CVE-2017-5644)
vulnerability in apache (CVE-2017-5644). Risk of unauthorized operations or information disclosure.
CVE-2014-0229 Vulnerability in apache (CVE-2014-0229)
vulnerability in apache (CVE-2014-0229). Risk of unauthorized operations or information disclosure.
CVE-2016-9774 Vulnerability in tomcat (CVE-2016-9774)
vulnerability in tomcat (CVE-2016-9774). Successful exploitation can lead to full system takeover.
CVE-2016-9775 Vulnerability in tomcat (CVE-2016-9775)
vulnerability in tomcat (CVE-2016-9775). Successful exploitation can lead to full system takeover.
CVE-2016-6816 Vulnerability in apache (CVE-2016-6816)
vulnerability in apache (CVE-2016-6816). Risk of unauthorized operations or information disclosure.
CVE-2017-6954 Privilege Escalation in wordpress (CVE-2017-6954)
vulnerability in wordpress (CVE-2017-6954). Risk of unauthorized operations or information disclosure.
CVE-2017-6955 Vulnerability in wordpress (CVE-2017-6955)
vulnerability in wordpress (CVE-2017-6955). Risk of unauthorized operations or information disclosure.
CVE-2016-0770 Cross-Site Scripting (XSS) in wordpress (CVE-2016-0770)
cross-site scripting in wordpress (CVE-2016-0770). Risk of unauthorized operations or information disclosure.
CVE-2017-5643 Apache Camel's Validation Component is vulnerable against SSRF via remote DTDs and XXE.
Apache Camel's Validation Component is vulnerable against SSRF via remote DTDs and XXE.
CVE-2017-6377 Authorization Flaw in drupal (CVE-2017-6377)
vulnerability in drupal (CVE-2017-6377). Data can be tampered with by attackers.
CVE-2017-6379 Cross-Site Request Forgery (CSRF) in drupal (CVE-2017-6379)
vulnerability in drupal (CVE-2017-6379). Successful exploitation can lead to full system takeover.
CVE-2017-6381 Vulnerability in drupal (CVE-2017-6381)
vulnerability in drupal (CVE-2017-6381). Successful exploitation can lead to full system takeover.
CVE-2017-3831 Vulnerability in express (CVE-2017-3831)
vulnerability in express (CVE-2017-3831). Successful exploitation can lead to full system takeover.
CVE-2017-6814 Cross-Site Scripting (XSS) in wordpress (CVE-2017-6814)
cross-site scripting in wordpress (CVE-2017-6814). Risk of unauthorized operations or information disclosure.
CVE-2017-6815 Vulnerability in wordpress (CVE-2017-6815)
vulnerability in wordpress (CVE-2017-6815). Risk of unauthorized operations or information disclosure.
CVE-2017-6816 Authorization Flaw in wordpress (CVE-2017-6816)
vulnerability in wordpress (CVE-2017-6816). Data can be tampered with by attackers.
CVE-2017-6817 Cross-Site Scripting (XSS) in wordpress (CVE-2017-6817)
cross-site scripting in wordpress (CVE-2017-6817). Risk of unauthorized operations or information disclosure.
CVE-2017-6818 Cross-Site Scripting (XSS) in wordpress (CVE-2017-6818)
cross-site scripting in wordpress (CVE-2017-6818). Risk of unauthorized operations or information disclosure.
CVE-2017-6819 Cross-Site Request Forgery (CSRF) in wordpress (CVE-2017-6819)
vulnerability in wordpress (CVE-2017-6819). Risk of unauthorized operations or information disclosure.
CVE-2017-6591 Cross-Site Scripting (XSS) in django (CVE-2017-6591)
cross-site scripting in django (CVE-2017-6591). Risk of unauthorized operations or information disclosure.
CVE-2017-6570 SQL Injection in wordpress (CVE-2017-6570)
SQL injection in wordpress (CVE-2017-6570). Successful exploitation can lead to full system takeover.
CVE-2017-6571 SQL Injection in wordpress (CVE-2017-6571)
SQL injection in wordpress (CVE-2017-6571). Successful exploitation can lead to full system takeover.
CVE-2017-6572 SQL Injection in wordpress (CVE-2017-6572)
SQL injection in wordpress (CVE-2017-6572). Successful exploitation can lead to full system takeover.
CVE-2017-6573 SQL Injection in wordpress (CVE-2017-6573)
SQL injection in wordpress (CVE-2017-6573). Successful exploitation can lead to full system takeover.
CVE-2017-6574 SQL Injection in wordpress (CVE-2017-6574)
SQL injection in wordpress (CVE-2017-6574). Successful exploitation can lead to full system takeover.
CVE-2017-6575 SQL Injection in wordpress (CVE-2017-6575)
SQL injection in wordpress (CVE-2017-6575). Successful exploitation can lead to full system takeover.
CVE-2017-6576 SQL Injection in wordpress (CVE-2017-6576)
SQL injection in wordpress (CVE-2017-6576). Successful exploitation can lead to full system takeover.
CVE-2017-6577 SQL Injection in wordpress (CVE-2017-6577)
SQL injection in wordpress (CVE-2017-6577). Successful exploitation can lead to full system takeover.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →