Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2017-3159 |
|
Unsafe Deserialization in apache (CVE-2017-3159)
vulnerability in apache (CVE-2017-3159). Successful exploitation can lead to full system takeover.
|
| CVE-2017-6102 |
|
Persistent XSS in wordpress plugin rockhoist-badges v1.2.2.
Persistent XSS in wordpress plugin rockhoist-badges v1.2.2.
|
| CVE-2017-6103 |
|
Persistent XSS Vulnerability in Wordpress plugin AnyVar v0.1.1.
Persistent XSS Vulnerability in Wordpress plugin AnyVar v0.1.1.
|
| CVE-2017-6104 |
|
Remote file upload vulnerability in Wordpress Plugin Mobile App Native 3.0.
Remote file upload vulnerability in Wordpress Plugin Mobile App Native 3.0.
|
| CVE-2017-6413 |
|
Authentication Bypass in apache (CVE-2017-6413)
authentication bypass in apache (CVE-2017-6413). Data can be tampered with by attackers.
|
| CVE-2015-8994 |
|
Vulnerability in apache (CVE-2015-8994)
vulnerability in apache (CVE-2015-8994). Successful exploitation can lead to full system takeover.
|
| CVE-2017-6062 |
|
Authentication Bypass in apache (CVE-2017-6062)
authentication bypass in apache (CVE-2017-6062). Data can be tampered with by attackers.
|
| CVE-2017-5586 |
|
Vulnerability in apache (CVE-2017-5586)
vulnerability in apache (CVE-2017-5586). Successful exploitation can lead to full system takeover.
|
| CVE-2017-6095 |
|
SQL Injection in wordpress (CVE-2017-6095)
SQL injection in wordpress (CVE-2017-6095). Successful exploitation can lead to full system takeover.
|
| CVE-2017-6096 |
|
SQL Injection in wordpress (CVE-2017-6096)
SQL injection in wordpress (CVE-2017-6096). Successful exploitation can lead to full system takeover.
|
| CVE-2017-6097 |
|
SQL Injection in wordpress (CVE-2017-6097)
SQL injection in wordpress (CVE-2017-6097). Successful exploitation can lead to full system takeover.
|
| CVE-2017-6098 |
|
SQL Injection in wordpress (CVE-2017-6098)
SQL injection in wordpress (CVE-2017-6098). Successful exploitation can lead to full system takeover.
|
| CVE-2017-6056 |
|
Vulnerability in apache (CVE-2017-6056)
vulnerability in apache (CVE-2017-6056). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-5169 |
|
Cross-Site Request Forgery (CSRF) in apache (CVE-2017-5169)
vulnerability in apache (CVE-2017-5169). Successful exploitation can lead to full system takeover.
|
| CVE-2017-5942 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2017-5942)
cross-site scripting in wordpress (CVE-2017-5942). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-2403 |
|
Authentication Bypass in symfony (CVE-2016-2403)
authentication bypass in symfony (CVE-2016-2403). Successful exploitation can lead to full system takeover.
|
| CVE-2016-1566 |
|
Cross-Site Scripting (XSS) in apache (CVE-2016-1566)
cross-site scripting in apache (CVE-2016-1566). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-10043 |
|
OS Command Injection in apache (CVE-2016-10043)
OS command injection in apache (CVE-2016-10043). Successful exploitation can lead to full system takeover.
|
| CVE-2017-5610 |
|
Information Disclosure in wordpress (CVE-2017-5610)
vulnerability in wordpress (CVE-2017-5610). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-5611 |
|
SQL Injection in wordpress (CVE-2017-5611)
SQL injection in wordpress (CVE-2017-5611). Successful exploitation can lead to full system takeover.
|
| CVE-2017-5612 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2017-5612)
cross-site scripting in wordpress (CVE-2017-5612). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-9220 |
|
Vulnerability in express (CVE-2016-9220)
vulnerability in express (CVE-2016-9220). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-9221 |
|
Vulnerability in express (CVE-2016-9221)
vulnerability in express (CVE-2016-9221). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-9081 |
|
Vulnerability in joomla (CVE-2016-9081)
vulnerability in joomla (CVE-2016-9081). Successful exploitation can lead to full system takeover.
|
| CVE-2016-0765 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2016-0765)
cross-site scripting in wordpress (CVE-2016-0765). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-0769 |
|
SQL Injection in wordpress (CVE-2016-0769)
SQL injection in wordpress (CVE-2016-0769). Successful exploitation can lead to full system takeover.
|
| CVE-2016-6497 |
|
Vulnerability in apache (CVE-2016-6497)
vulnerability in apache (CVE-2016-6497). Data can be tampered with by attackers.
|
| CVE-2016-10148 |
|
Vulnerability in wordpress (CVE-2016-10148)
vulnerability in wordpress (CVE-2016-10148). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-6896 |
|
Path Traversal in wordpress (CVE-2016-6896)
path traversal in wordpress (CVE-2016-6896). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-6897 |
|
Cross-Site Request Forgery (CSRF) in wordpress (CVE-2016-6897)
vulnerability in wordpress (CVE-2016-6897). Confidential information can be exposed externally.
|
| CVE-2017-5492 |
|
Cross-Site Request Forgery (CSRF) in wordpress (CVE-2017-5492)
vulnerability in wordpress (CVE-2017-5492). Successful exploitation can lead to full system takeover.
|
| CVE-2017-5493 |
|
Vulnerability in wordpress (CVE-2017-5493)
vulnerability in wordpress (CVE-2017-5493). Data can be tampered with by attackers.
|
| CVE-2017-5487 |
|
Information Disclosure in wordpress (CVE-2017-5487)
vulnerability in wordpress (CVE-2017-5487). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-5488 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2017-5488)
cross-site scripting in wordpress (CVE-2017-5488). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-5489 |
|
Cross-Site Request Forgery (CSRF) in wordpress (CVE-2017-5489)
vulnerability in wordpress (CVE-2017-5489). Successful exploitation can lead to full system takeover.
|
| CVE-2017-5490 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2017-5490)
cross-site scripting in wordpress (CVE-2017-5490). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-5491 |
|
Vulnerability in wordpress (CVE-2017-5491)
vulnerability in wordpress (CVE-2017-5491). Risk of unauthorized operations or information disclosure.
|
| CVE-2015-3188 |
|
Vulnerability in apache (CVE-2015-3188)
vulnerability in apache (CVE-2015-3188). Successful exploitation can lead to full system takeover.
|
| CVE-2016-10141 |
|
Vulnerability in c (CVE-2016-10141)
vulnerability in c (CVE-2016-10141). Successful exploitation can lead to full system takeover.
|
| CVE-2016-10140 |
|
Information Disclosure in apache (CVE-2016-10140)
vulnerability in apache (CVE-2016-10140). Confidential information can be exposed externally.
|
| CVE-2016-4978 |
|
Unsafe Deserialization in apache (CVE-2016-4978)
vulnerability in apache (CVE-2016-4978). Successful exploitation can lead to full system takeover.
|
| CVE-2009-3555 |
|
Vulnerability in org.apache.tomcat:tomcat (CVE-2009-3555)
vulnerability in org.apache.tomcat:tomcat (CVE-2009-3555). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `5.5.33` or later.
|
| CVE-2004-2320 |
|
Information Disclosure in express (CVE-2004-2320)
vulnerability in express (CVE-2004-2320). Risk of unauthorized operations or information disclosure.
|