Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

ID Title
CVE-2015-6971 Command Injection in lenovo (CVE-2015-6971)
command injection in lenovo (CVE-2015-6971). Successful exploitation can lead to full system takeover.
CVE-2015-7358 Vulnerability in c (CVE-2015-7358)
vulnerability in c (CVE-2015-7358). Successful exploitation can lead to full system takeover.
CVE-2015-7359 Vulnerability in c (CVE-2015-7359)
vulnerability in c (CVE-2015-7359). Successful exploitation can lead to full system takeover.
CVE-2015-7843 Vulnerability in huawei (CVE-2015-7843)
vulnerability in huawei (CVE-2015-7843). Successful exploitation can lead to full system takeover.
CVE-2016-6806 Cross-Site Request Forgery (CSRF) in apache (CVE-2016-6806)
vulnerability in apache (CVE-2016-6806). Successful exploitation can lead to full system takeover. Exploitable via `Referer header`.
CVE-2017-11321 OS Command Injection in ucopia (CVE-2017-11321)
OS command injection in ucopia (CVE-2017-11321). Successful exploitation can lead to full system takeover.
CVE-2017-14958 Unrestricted File Upload in pivotx (CVE-2017-14958)
vulnerability in pivotx (CVE-2017-14958). Successful exploitation can lead to full system takeover.
CVE-2017-14975 Vulnerability in dos (CVE-2017-14975)
vulnerability in dos (CVE-2017-14975). Risk of unauthorized operations or information disclosure.
CVE-2017-14976 Out-of-Bounds Read in dos (CVE-2017-14976)
vulnerability in dos (CVE-2017-14976). Risk of unauthorized operations or information disclosure.
CVE-2017-14977 Vulnerability in dos (CVE-2017-14977)
vulnerability in dos (CVE-2017-14977). Risk of unauthorized operations or information disclosure.
CVE-2017-14797 Vulnerability in philips (CVE-2017-14797)
vulnerability in philips (CVE-2017-14797). Successful exploitation can lead to full system takeover.
CVE-2017-14924 Cross-Site Request Forgery (CSRF) in csrf (CVE-2017-14924)
vulnerability in csrf (CVE-2017-14924). Successful exploitation can lead to full system takeover.
CVE-2017-14925 Cross-Site Request Forgery (CSRF) in csrf (CVE-2017-14925)
vulnerability in csrf (CVE-2017-14925). Successful exploitation can lead to full system takeover.
CVE-2017-14929 Vulnerability in freedesktop (CVE-2017-14929)
vulnerability in freedesktop (CVE-2017-14929). Risk of unauthorized operations or information disclosure.
CVE-2017-14935 Vulnerability in pulsesecure (CVE-2017-14935)
vulnerability in pulsesecure (CVE-2017-14935). Confidential information can be exposed externally.
CVE-2017-14944 Vulnerability in inedo (CVE-2017-14944)
vulnerability in inedo (CVE-2017-14944). Data can be tampered with by attackers.
CVE-2017-14945 Buffer Overflow in dos (CVE-2017-14945)
vulnerability in dos (CVE-2017-14945). Successful exploitation can lead to full system takeover.
CVE-2017-14946 Buffer Overflow in dos (CVE-2017-14946)
vulnerability in dos (CVE-2017-14946). Successful exploitation can lead to full system takeover.
CVE-2017-14947 Buffer Overflow in dos (CVE-2017-14947)
vulnerability in dos (CVE-2017-14947). Successful exploitation can lead to full system takeover.
CVE-2017-13684 Buffer Overflow in dos (CVE-2017-13684)
vulnerability in dos (CVE-2017-13684). Successful exploitation can lead to full system takeover.
CVE-2017-13982 Path Traversal in path-traversal (CVE-2017-13982)
path traversal in path-traversal (CVE-2017-13982). Successful exploitation can lead to full system takeover.
CVE-2017-13989 Vulnerability in express (CVE-2017-13989)
vulnerability in express (CVE-2017-13989). Confidential information can be exposed externally.
CVE-2015-9233 Cross-Site Request Forgery (CSRF) in wordpress (CVE-2015-9233)
vulnerability in wordpress (CVE-2015-9233). Successful exploitation can lead to full system takeover.
CVE-2015-9234 SQL Injection in wordpress (CVE-2015-9234)
SQL injection in wordpress (CVE-2015-9234). Successful exploitation can lead to full system takeover.
CVE-2016-4434 XXE (XML External Entity) in apache (CVE-2016-4434)
vulnerability in apache (CVE-2016-4434). Successful exploitation can lead to full system takeover.
CVE-2017-14867 OS Command Injection in git-scm (CVE-2017-14867)
OS command injection in git-scm (CVE-2017-14867). Successful exploitation can lead to full system takeover.
CVE-2017-7687 Vulnerability in apache (CVE-2017-7687)
vulnerability in apache (CVE-2017-7687). Risk of unauthorized operations or information disclosure.
CVE-2017-8448 Vulnerability in elastic (CVE-2017-8448)
vulnerability in elastic (CVE-2017-8448). Successful exploitation can lead to full system takeover.
CVE-2017-9790 Use-After-Free in apache (CVE-2017-9790)
vulnerability in apache (CVE-2017-9790). Risk of unauthorized operations or information disclosure.
CVE-2017-12226 Vulnerability in cisco (CVE-2017-12226)
vulnerability in cisco (CVE-2017-12226). Successful exploitation can lead to full system takeover.
CVE-2017-12230 Vulnerability in cisco (CVE-2017-12230)
vulnerability in cisco (CVE-2017-12230). Successful exploitation can lead to full system takeover.
CVE-2014-2029 Information Disclosure in percona (CVE-2014-2029)
vulnerability in percona (CVE-2014-2029). Successful exploitation can lead to full system takeover.
CVE-2017-1483 Vulnerability in ibm (CVE-2017-1483)
vulnerability in ibm (CVE-2017-1483). Risk of unauthorized operations or information disclosure.
CVE-2017-14838 TeamWork Job Links allows Arbitrary File Upload in profileChange and coverChange.
TeamWork Job Links allows Arbitrary File Upload in profileChange and coverChange.
CVE-2017-14839 TeamWork Photo Fusion allows Arbitrary File Upload in changeAvatar and changeCover.
TeamWork Photo Fusion allows Arbitrary File Upload in changeAvatar and changeCover.
CVE-2017-14840 TeamWork TicketPlus allows Arbitrary File Upload in updateProfile.
TeamWork TicketPlus allows Arbitrary File Upload in updateProfile.
CVE-2017-14842 SQL Injection in wordpress (CVE-2017-14842)
SQL injection in wordpress (CVE-2017-14842). Successful exploitation can lead to full system takeover.
CVE-2017-14843 Mojoomla School Management System for WordPress allows SQL Injection via the id parameter.
Mojoomla School Management System for WordPress allows SQL Injection via the id parameter.
CVE-2017-14844 Mojoomla WPGYM WordPress Gym Management System allows SQL Injection via the id parameter.
Mojoomla WPGYM WordPress Gym Management System allows SQL Injection via the id parameter.
CVE-2017-14845 Mojoomla WPCHURCH Church Management System for WordPress allows SQL Injection via the id parameter.
Mojoomla WPCHURCH Church Management System for WordPress allows SQL Injection via the id parameter.
CVE-2017-14846 Mojoomla Hospital Management System for WordPress allows SQL Injection via the id parameter.
Mojoomla Hospital Management System for WordPress allows SQL Injection via the id parameter.
CVE-2017-14847 Mojoomla WPAMS Apartment Management System for WordPress allows SQL Injection via the id parameter.
Mojoomla WPAMS Apartment Management System for WordPress allows SQL Injection via the id parameter.
CVE-2017-14849 Path Traversal in nodejs (CVE-2017-14849)
path traversal in nodejs (CVE-2017-14849). Confidential information can be exposed externally.
CVE-2017-1577 Path Traversal in ibm (CVE-2017-1577)
path traversal in ibm (CVE-2017-1577). Confidential information can be exposed externally.
CVE-2017-2551 Vulnerability in wordpress (CVE-2017-2551)
vulnerability in wordpress (CVE-2017-2551). Confidential information can be exposed externally.
CVE-2017-11191 Vulnerability in freeipa (CVE-2017-11191)
vulnerability in freeipa (CVE-2017-11191). Successful exploitation can lead to full system takeover.
CVE-2017-13676 Code Injection in norton (CVE-2017-13676)
code injection in norton (CVE-2017-13676). Successful exploitation can lead to full system takeover.
CVE-2017-1407 Command Injection in ibm (CVE-2017-1407)
command injection in ibm (CVE-2017-1407). Successful exploitation can lead to full system takeover.
CVE-2017-14526 XXE (XML External Entity) in dos (CVE-2017-14526)
vulnerability in dos (CVE-2017-14526). Successful exploitation can lead to full system takeover.
CVE-2017-14527 XXE (XML External Entity) in dos (CVE-2017-14527)
vulnerability in dos (CVE-2017-14527). Successful exploitation can lead to full system takeover.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →