Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: web-frameworks Clear
ID Title
CVE-2017-14622 Cross-Site Scripting (XSS) in wordpress (CVE-2017-14622)
cross-site scripting in wordpress (CVE-2017-14622). Risk of unauthorized operations or information disclosure.
CVE-2017-12621 XXE (XML External Entity) in apache (CVE-2017-12621)
vulnerability in apache (CVE-2017-12621). Successful exploitation can lead to full system takeover.
CVE-2017-10932 Unsafe Deserialization in c (CVE-2017-10932)
vulnerability in c (CVE-2017-10932). Successful exploitation can lead to full system takeover.
CVE-2017-14760 SQL Injection in wordpress (CVE-2017-14760)
SQL injection in wordpress (CVE-2017-14760). Successful exploitation can lead to full system takeover.
CVE-2017-14766 Authentication Bypass in wordpress (CVE-2017-14766)
authentication bypass in wordpress (CVE-2017-14766). Data can be tampered with by attackers.
CVE-2017-14751 The Intense WP "WP Jobs" plugin 1.5 for WordPress has XSS, related to the Job Qualification field.
The Intense WP "WP Jobs" plugin 1.5 for WordPress has XSS, related to the Job Qualification field.
CVE-2015-7670 SQL Injection in wordpress (CVE-2015-7670)
SQL injection in wordpress (CVE-2015-7670). Successful exploitation can lead to full system takeover.
CVE-2017-14704 Unrestricted File Upload in laravel (CVE-2017-14704)
vulnerability in laravel (CVE-2017-14704). Successful exploitation can lead to full system takeover.
CVE-2015-5169 Cross-site scripting (XSS) vulnerability in Apache Struts before 2.3.20.
Cross-site scripting (XSS) vulnerability in Apache Struts before 2.3.20.
CVE-2017-14125 SQL Injection in wordpress (CVE-2017-14125)
SQL injection in wordpress (CVE-2017-14125). Successful exploitation can lead to full system takeover.
CVE-2017-14718 Cross-Site Scripting (XSS) in wordpress (CVE-2017-14718)
cross-site scripting in wordpress (CVE-2017-14718). Risk of unauthorized operations or information disclosure.
CVE-2017-14719 Path Traversal in wordpress (CVE-2017-14719)
path traversal in wordpress (CVE-2017-14719). Confidential information can be exposed externally.
CVE-2017-14720 Cross-Site Scripting (XSS) in wordpress (CVE-2017-14720)
cross-site scripting in wordpress (CVE-2017-14720). Risk of unauthorized operations or information disclosure.
CVE-2017-14721 Cross-Site Scripting (XSS) in wordpress (CVE-2017-14721)
cross-site scripting in wordpress (CVE-2017-14721). Risk of unauthorized operations or information disclosure.
CVE-2017-14722 Path Traversal in wordpress (CVE-2017-14722)
path traversal in wordpress (CVE-2017-14722). Confidential information can be exposed externally.
CVE-2017-14723 SQL Injection in wordpress (CVE-2017-14723)
SQL injection in wordpress (CVE-2017-14723). Successful exploitation can lead to full system takeover.
CVE-2017-14724 Before version 4.8.2, WordPress was vulnerable to cross-site scripting in oEmbed discovery.
Before version 4.8.2, WordPress was vulnerable to cross-site scripting in oEmbed discovery.
CVE-2017-14725 Open Redirect in wordpress (CVE-2017-14725)
vulnerability in wordpress (CVE-2017-14725). Risk of unauthorized operations or information disclosure.
CVE-2017-14726 Cross-Site Scripting (XSS) in wordpress (CVE-2017-14726)
cross-site scripting in wordpress (CVE-2017-14726). Risk of unauthorized operations or information disclosure.
CVE-2015-5608 Open redirect vulnerability in Joomla! CMS 3.0.0 through 3.4.1.
Open redirect vulnerability in Joomla! CMS 3.0.0 through 3.4.1.
CVE-2017-14595 Vulnerability in joomla (CVE-2017-14595)
vulnerability in joomla (CVE-2017-14595). Risk of unauthorized operations or information disclosure.
CVE-2017-14596 Vulnerability in joomla (CVE-2017-14596)
vulnerability in joomla (CVE-2017-14596). Successful exploitation can lead to full system takeover.
CVE-2015-2826 Information Disclosure in wordpress (CVE-2015-2826)
vulnerability in wordpress (CVE-2015-2826). Risk of unauthorized operations or information disclosure.
CVE-2016-6795 Path Traversal in apache (CVE-2016-6795)
path traversal in apache (CVE-2016-6795). Successful exploitation can lead to full system takeover.
CVE-2016-8738 Vulnerability in apache (CVE-2016-8738)
vulnerability in apache (CVE-2016-8738). Risk of unauthorized operations or information disclosure.
CVE-2017-12611 Vulnerability in apache (CVE-2017-12611)
vulnerability in apache (CVE-2017-12611). Successful exploitation can lead to full system takeover.
CVE-2017-9793 Vulnerability in apache (CVE-2017-9793)
vulnerability in apache (CVE-2017-9793). Risk of unauthorized operations or information disclosure.
CVE-2017-9804 Vulnerability in apache (CVE-2017-9804)
vulnerability in apache (CVE-2017-9804). Risk of unauthorized operations or information disclosure.
CVE-2014-8684 Vulnerability in codeigniter (CVE-2014-8684)
vulnerability in codeigniter (CVE-2014-8684). Successful exploitation can lead to full system takeover.
CVE-2014-8686 Vulnerability in codeigniter (CVE-2014-8686)
vulnerability in codeigniter (CVE-2014-8686). Successful exploitation can lead to full system takeover.
CVE-2015-3299 Cross-Site Scripting (XSS) in wordpress (CVE-2015-3299)
cross-site scripting in wordpress (CVE-2015-3299). Risk of unauthorized operations or information disclosure.
CVE-2015-4089 Cross-Site Request Forgery (CSRF) in wordpress (CVE-2015-4089)
vulnerability in wordpress (CVE-2015-4089). Successful exploitation can lead to full system takeover.
CVE-2017-12616 Information Disclosure in apache (CVE-2017-12616)
vulnerability in apache (CVE-2017-12616). Confidential information can be exposed externally.
CVE-2017-9803 Authentication Bypass in apache (CVE-2017-9803)
authentication bypass in apache (CVE-2017-9803). Successful exploitation can lead to full system takeover.
CVE-2017-9798 Use-After-Free in c (CVE-2017-9798)
vulnerability in c (CVE-2017-9798). Confidential information can be exposed externally.
CVE-2017-14530 Cross-Site Request Forgery (CSRF) in wordpress (CVE-2017-14530)
vulnerability in wordpress (CVE-2017-14530). Successful exploitation can lead to full system takeover.
CVE-2014-7808 Vulnerability in apache (CVE-2014-7808)
vulnerability in apache (CVE-2014-7808). Confidential information can be exposed externally.
CVE-2017-2299 Vulnerability in apache (CVE-2017-2299)
vulnerability in apache (CVE-2017-2299). Confidential information can be exposed externally. Exploitable via ``ssl_ca``.
CVE-2017-1002022 SQL Injection in wordpress (CVE-2017-1002022)
SQL injection in wordpress (CVE-2017-1002022). Successful exploitation can lead to full system takeover.
CVE-2017-1002023 SQL Injection in wordpress (CVE-2017-1002023)
SQL injection in wordpress (CVE-2017-1002023). Successful exploitation can lead to full system takeover.
CVE-2017-1002025 SQL Injection in wordpress (CVE-2017-1002025)
SQL injection in wordpress (CVE-2017-1002025). Successful exploitation can lead to full system takeover.
CVE-2017-1002026 SQL Injection in wordpress (CVE-2017-1002026)
SQL injection in wordpress (CVE-2017-1002026). Successful exploitation can lead to full system takeover.
CVE-2017-1002027 SQL Injection in wordpress (CVE-2017-1002027)
SQL injection in wordpress (CVE-2017-1002027). Successful exploitation can lead to full system takeover.
CVE-2017-1002028 SQL Injection in wordpress (CVE-2017-1002028)
SQL injection in wordpress (CVE-2017-1002028). Successful exploitation can lead to full system takeover.
CVE-2017-1002000 Unrestricted File Upload in wordpress (CVE-2017-1002000)
vulnerability in wordpress (CVE-2017-1002000). Successful exploitation can lead to full system takeover.
CVE-2017-1002001 Unrestricted File Upload in wordpress (CVE-2017-1002001)
vulnerability in wordpress (CVE-2017-1002001). Successful exploitation can lead to full system takeover.
CVE-2017-1002002 Unrestricted File Upload in wordpress (CVE-2017-1002002)
vulnerability in wordpress (CVE-2017-1002002). Successful exploitation can lead to full system takeover.
CVE-2017-1002003 Unrestricted File Upload in wordpress (CVE-2017-1002003)
vulnerability in wordpress (CVE-2017-1002003). Successful exploitation can lead to full system takeover.
CVE-2017-1002004 SQL Injection in wordpress (CVE-2017-1002004)
SQL injection in wordpress (CVE-2017-1002004). Data can be tampered with by attackers.
CVE-2017-1002005 SQL Injection in wordpress (CVE-2017-1002005)
SQL injection in wordpress (CVE-2017-1002005). Data can be tampered with by attackers.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →