Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2017-14622 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2017-14622)
cross-site scripting in wordpress (CVE-2017-14622). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-12621 |
|
XXE (XML External Entity) in apache (CVE-2017-12621)
vulnerability in apache (CVE-2017-12621). Successful exploitation can lead to full system takeover.
|
| CVE-2017-10932 |
|
Unsafe Deserialization in c (CVE-2017-10932)
vulnerability in c (CVE-2017-10932). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14760 |
|
SQL Injection in wordpress (CVE-2017-14760)
SQL injection in wordpress (CVE-2017-14760). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14766 |
|
Authentication Bypass in wordpress (CVE-2017-14766)
authentication bypass in wordpress (CVE-2017-14766). Data can be tampered with by attackers.
|
| CVE-2017-14751 |
|
The Intense WP "WP Jobs" plugin 1.5 for WordPress has XSS, related to the Job Qualification field.
The Intense WP "WP Jobs" plugin 1.5 for WordPress has XSS, related to the Job Qualification field.
|
| CVE-2015-7670 |
|
SQL Injection in wordpress (CVE-2015-7670)
SQL injection in wordpress (CVE-2015-7670). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14704 |
|
Unrestricted File Upload in laravel (CVE-2017-14704)
vulnerability in laravel (CVE-2017-14704). Successful exploitation can lead to full system takeover.
|
| CVE-2015-5169 |
|
Cross-site scripting (XSS) vulnerability in Apache Struts before 2.3.20.
Cross-site scripting (XSS) vulnerability in Apache Struts before 2.3.20.
|
| CVE-2017-14125 |
|
SQL Injection in wordpress (CVE-2017-14125)
SQL injection in wordpress (CVE-2017-14125). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14718 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2017-14718)
cross-site scripting in wordpress (CVE-2017-14718). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-14719 |
|
Path Traversal in wordpress (CVE-2017-14719)
path traversal in wordpress (CVE-2017-14719). Confidential information can be exposed externally.
|
| CVE-2017-14720 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2017-14720)
cross-site scripting in wordpress (CVE-2017-14720). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-14721 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2017-14721)
cross-site scripting in wordpress (CVE-2017-14721). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-14722 |
|
Path Traversal in wordpress (CVE-2017-14722)
path traversal in wordpress (CVE-2017-14722). Confidential information can be exposed externally.
|
| CVE-2017-14723 |
|
SQL Injection in wordpress (CVE-2017-14723)
SQL injection in wordpress (CVE-2017-14723). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14724 |
|
Before version 4.8.2, WordPress was vulnerable to cross-site scripting in oEmbed discovery.
Before version 4.8.2, WordPress was vulnerable to cross-site scripting in oEmbed discovery.
|
| CVE-2017-14725 |
|
Open Redirect in wordpress (CVE-2017-14725)
vulnerability in wordpress (CVE-2017-14725). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-14726 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2017-14726)
cross-site scripting in wordpress (CVE-2017-14726). Risk of unauthorized operations or information disclosure.
|
| CVE-2015-5608 |
|
Open redirect vulnerability in Joomla! CMS 3.0.0 through 3.4.1.
Open redirect vulnerability in Joomla! CMS 3.0.0 through 3.4.1.
|
| CVE-2017-14595 |
|
Vulnerability in joomla (CVE-2017-14595)
vulnerability in joomla (CVE-2017-14595). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-14596 |
|
Vulnerability in joomla (CVE-2017-14596)
vulnerability in joomla (CVE-2017-14596). Successful exploitation can lead to full system takeover.
|
| CVE-2015-2826 |
|
Information Disclosure in wordpress (CVE-2015-2826)
vulnerability in wordpress (CVE-2015-2826). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-6795 |
|
Path Traversal in apache (CVE-2016-6795)
path traversal in apache (CVE-2016-6795). Successful exploitation can lead to full system takeover.
|
| CVE-2016-8738 |
|
Vulnerability in apache (CVE-2016-8738)
vulnerability in apache (CVE-2016-8738). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-12611 |
|
Vulnerability in apache (CVE-2017-12611)
vulnerability in apache (CVE-2017-12611). Successful exploitation can lead to full system takeover.
|
| CVE-2017-9793 |
|
Vulnerability in apache (CVE-2017-9793)
vulnerability in apache (CVE-2017-9793). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-9804 |
|
Vulnerability in apache (CVE-2017-9804)
vulnerability in apache (CVE-2017-9804). Risk of unauthorized operations or information disclosure.
|
| CVE-2014-8684 |
|
Vulnerability in codeigniter (CVE-2014-8684)
vulnerability in codeigniter (CVE-2014-8684). Successful exploitation can lead to full system takeover.
|
| CVE-2014-8686 |
|
Vulnerability in codeigniter (CVE-2014-8686)
vulnerability in codeigniter (CVE-2014-8686). Successful exploitation can lead to full system takeover.
|
| CVE-2015-3299 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2015-3299)
cross-site scripting in wordpress (CVE-2015-3299). Risk of unauthorized operations or information disclosure.
|
| CVE-2015-4089 |
|
Cross-Site Request Forgery (CSRF) in wordpress (CVE-2015-4089)
vulnerability in wordpress (CVE-2015-4089). Successful exploitation can lead to full system takeover.
|
| CVE-2017-12616 |
|
Information Disclosure in apache (CVE-2017-12616)
vulnerability in apache (CVE-2017-12616). Confidential information can be exposed externally.
|
| CVE-2017-9803 |
|
Authentication Bypass in apache (CVE-2017-9803)
authentication bypass in apache (CVE-2017-9803). Successful exploitation can lead to full system takeover.
|
| CVE-2017-9798 |
|
Use-After-Free in c (CVE-2017-9798)
vulnerability in c (CVE-2017-9798). Confidential information can be exposed externally.
|
| CVE-2017-14530 |
|
Cross-Site Request Forgery (CSRF) in wordpress (CVE-2017-14530)
vulnerability in wordpress (CVE-2017-14530). Successful exploitation can lead to full system takeover.
|
| CVE-2014-7808 |
|
Vulnerability in apache (CVE-2014-7808)
vulnerability in apache (CVE-2014-7808). Confidential information can be exposed externally.
|
| CVE-2017-2299 |
|
Vulnerability in apache (CVE-2017-2299)
vulnerability in apache (CVE-2017-2299). Confidential information can be exposed externally. Exploitable via ``ssl_ca``.
|
| CVE-2017-1002022 |
|
SQL Injection in wordpress (CVE-2017-1002022)
SQL injection in wordpress (CVE-2017-1002022). Successful exploitation can lead to full system takeover.
|
| CVE-2017-1002023 |
|
SQL Injection in wordpress (CVE-2017-1002023)
SQL injection in wordpress (CVE-2017-1002023). Successful exploitation can lead to full system takeover.
|
| CVE-2017-1002025 |
|
SQL Injection in wordpress (CVE-2017-1002025)
SQL injection in wordpress (CVE-2017-1002025). Successful exploitation can lead to full system takeover.
|
| CVE-2017-1002026 |
|
SQL Injection in wordpress (CVE-2017-1002026)
SQL injection in wordpress (CVE-2017-1002026). Successful exploitation can lead to full system takeover.
|
| CVE-2017-1002027 |
|
SQL Injection in wordpress (CVE-2017-1002027)
SQL injection in wordpress (CVE-2017-1002027). Successful exploitation can lead to full system takeover.
|
| CVE-2017-1002028 |
|
SQL Injection in wordpress (CVE-2017-1002028)
SQL injection in wordpress (CVE-2017-1002028). Successful exploitation can lead to full system takeover.
|
| CVE-2017-1002000 |
|
Unrestricted File Upload in wordpress (CVE-2017-1002000)
vulnerability in wordpress (CVE-2017-1002000). Successful exploitation can lead to full system takeover.
|
| CVE-2017-1002001 |
|
Unrestricted File Upload in wordpress (CVE-2017-1002001)
vulnerability in wordpress (CVE-2017-1002001). Successful exploitation can lead to full system takeover.
|
| CVE-2017-1002002 |
|
Unrestricted File Upload in wordpress (CVE-2017-1002002)
vulnerability in wordpress (CVE-2017-1002002). Successful exploitation can lead to full system takeover.
|
| CVE-2017-1002003 |
|
Unrestricted File Upload in wordpress (CVE-2017-1002003)
vulnerability in wordpress (CVE-2017-1002003). Successful exploitation can lead to full system takeover.
|
| CVE-2017-1002004 |
|
SQL Injection in wordpress (CVE-2017-1002004)
SQL injection in wordpress (CVE-2017-1002004). Data can be tampered with by attackers.
|
| CVE-2017-1002005 |
|
SQL Injection in wordpress (CVE-2017-1002005)
SQL injection in wordpress (CVE-2017-1002005). Data can be tampered with by attackers.
|