Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2015-6971 |
|
Command Injection in lenovo (CVE-2015-6971)
command injection in lenovo (CVE-2015-6971). Successful exploitation can lead to full system takeover.
|
| CVE-2015-7358 |
|
Vulnerability in c (CVE-2015-7358)
vulnerability in c (CVE-2015-7358). Successful exploitation can lead to full system takeover.
|
| CVE-2015-7359 |
|
Vulnerability in c (CVE-2015-7359)
vulnerability in c (CVE-2015-7359). Successful exploitation can lead to full system takeover.
|
| CVE-2015-7843 |
|
Vulnerability in huawei (CVE-2015-7843)
vulnerability in huawei (CVE-2015-7843). Successful exploitation can lead to full system takeover.
|
| CVE-2016-6806 |
|
Cross-Site Request Forgery (CSRF) in apache (CVE-2016-6806)
vulnerability in apache (CVE-2016-6806). Successful exploitation can lead to full system takeover. Exploitable via `Referer header`.
|
| CVE-2017-11321 |
|
OS Command Injection in ucopia (CVE-2017-11321)
OS command injection in ucopia (CVE-2017-11321). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14958 |
|
Unrestricted File Upload in pivotx (CVE-2017-14958)
vulnerability in pivotx (CVE-2017-14958). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14975 |
|
Vulnerability in dos (CVE-2017-14975)
vulnerability in dos (CVE-2017-14975). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-14976 |
|
Out-of-Bounds Read in dos (CVE-2017-14976)
vulnerability in dos (CVE-2017-14976). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-14977 |
|
Vulnerability in dos (CVE-2017-14977)
vulnerability in dos (CVE-2017-14977). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-14797 |
|
Vulnerability in philips (CVE-2017-14797)
vulnerability in philips (CVE-2017-14797). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14924 |
|
Cross-Site Request Forgery (CSRF) in csrf (CVE-2017-14924)
vulnerability in csrf (CVE-2017-14924). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14925 |
|
Cross-Site Request Forgery (CSRF) in csrf (CVE-2017-14925)
vulnerability in csrf (CVE-2017-14925). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14929 |
|
Vulnerability in freedesktop (CVE-2017-14929)
vulnerability in freedesktop (CVE-2017-14929). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-14935 |
|
Vulnerability in pulsesecure (CVE-2017-14935)
vulnerability in pulsesecure (CVE-2017-14935). Confidential information can be exposed externally.
|
| CVE-2017-14944 |
|
Vulnerability in inedo (CVE-2017-14944)
vulnerability in inedo (CVE-2017-14944). Data can be tampered with by attackers.
|
| CVE-2017-14945 |
|
Buffer Overflow in dos (CVE-2017-14945)
vulnerability in dos (CVE-2017-14945). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14946 |
|
Buffer Overflow in dos (CVE-2017-14946)
vulnerability in dos (CVE-2017-14946). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14947 |
|
Buffer Overflow in dos (CVE-2017-14947)
vulnerability in dos (CVE-2017-14947). Successful exploitation can lead to full system takeover.
|
| CVE-2017-13684 |
|
Buffer Overflow in dos (CVE-2017-13684)
vulnerability in dos (CVE-2017-13684). Successful exploitation can lead to full system takeover.
|
| CVE-2017-13982 |
|
Path Traversal in path-traversal (CVE-2017-13982)
path traversal in path-traversal (CVE-2017-13982). Successful exploitation can lead to full system takeover.
|
| CVE-2017-13989 |
|
Vulnerability in express (CVE-2017-13989)
vulnerability in express (CVE-2017-13989). Confidential information can be exposed externally.
|
| CVE-2015-9233 |
|
Cross-Site Request Forgery (CSRF) in wordpress (CVE-2015-9233)
vulnerability in wordpress (CVE-2015-9233). Successful exploitation can lead to full system takeover.
|
| CVE-2015-9234 |
|
SQL Injection in wordpress (CVE-2015-9234)
SQL injection in wordpress (CVE-2015-9234). Successful exploitation can lead to full system takeover.
|
| CVE-2016-4434 |
|
XXE (XML External Entity) in apache (CVE-2016-4434)
vulnerability in apache (CVE-2016-4434). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14867 |
|
OS Command Injection in git-scm (CVE-2017-14867)
OS command injection in git-scm (CVE-2017-14867). Successful exploitation can lead to full system takeover.
|
| CVE-2017-7687 |
|
Vulnerability in apache (CVE-2017-7687)
vulnerability in apache (CVE-2017-7687). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-8448 |
|
Vulnerability in elastic (CVE-2017-8448)
vulnerability in elastic (CVE-2017-8448). Successful exploitation can lead to full system takeover.
|
| CVE-2017-9790 |
|
Use-After-Free in apache (CVE-2017-9790)
vulnerability in apache (CVE-2017-9790). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-12226 |
|
Vulnerability in cisco (CVE-2017-12226)
vulnerability in cisco (CVE-2017-12226). Successful exploitation can lead to full system takeover.
|
| CVE-2017-12230 |
|
Vulnerability in cisco (CVE-2017-12230)
vulnerability in cisco (CVE-2017-12230). Successful exploitation can lead to full system takeover.
|
| CVE-2014-2029 |
|
Information Disclosure in percona (CVE-2014-2029)
vulnerability in percona (CVE-2014-2029). Successful exploitation can lead to full system takeover.
|
| CVE-2017-1483 |
|
Vulnerability in ibm (CVE-2017-1483)
vulnerability in ibm (CVE-2017-1483). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-14838 |
|
TeamWork Job Links allows Arbitrary File Upload in profileChange and coverChange.
TeamWork Job Links allows Arbitrary File Upload in profileChange and coverChange.
|
| CVE-2017-14839 |
|
TeamWork Photo Fusion allows Arbitrary File Upload in changeAvatar and changeCover.
TeamWork Photo Fusion allows Arbitrary File Upload in changeAvatar and changeCover.
|
| CVE-2017-14840 |
|
TeamWork TicketPlus allows Arbitrary File Upload in updateProfile.
TeamWork TicketPlus allows Arbitrary File Upload in updateProfile.
|
| CVE-2017-14842 |
|
SQL Injection in wordpress (CVE-2017-14842)
SQL injection in wordpress (CVE-2017-14842). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14843 |
|
Mojoomla School Management System for WordPress allows SQL Injection via the id parameter.
Mojoomla School Management System for WordPress allows SQL Injection via the id parameter.
|
| CVE-2017-14844 |
|
Mojoomla WPGYM WordPress Gym Management System allows SQL Injection via the id parameter.
Mojoomla WPGYM WordPress Gym Management System allows SQL Injection via the id parameter.
|
| CVE-2017-14845 |
|
Mojoomla WPCHURCH Church Management System for WordPress allows SQL Injection via the id parameter.
Mojoomla WPCHURCH Church Management System for WordPress allows SQL Injection via the id parameter.
|
| CVE-2017-14846 |
|
Mojoomla Hospital Management System for WordPress allows SQL Injection via the id parameter.
Mojoomla Hospital Management System for WordPress allows SQL Injection via the id parameter.
|
| CVE-2017-14847 |
|
Mojoomla WPAMS Apartment Management System for WordPress allows SQL Injection via the id parameter.
Mojoomla WPAMS Apartment Management System for WordPress allows SQL Injection via the id parameter.
|
| CVE-2017-14849 |
|
Path Traversal in nodejs (CVE-2017-14849)
path traversal in nodejs (CVE-2017-14849). Confidential information can be exposed externally.
|
| CVE-2017-1577 |
|
Path Traversal in ibm (CVE-2017-1577)
path traversal in ibm (CVE-2017-1577). Confidential information can be exposed externally.
|
| CVE-2017-2551 |
|
Vulnerability in wordpress (CVE-2017-2551)
vulnerability in wordpress (CVE-2017-2551). Confidential information can be exposed externally.
|
| CVE-2017-11191 |
|
Vulnerability in freeipa (CVE-2017-11191)
vulnerability in freeipa (CVE-2017-11191). Successful exploitation can lead to full system takeover.
|
| CVE-2017-13676 |
|
Code Injection in norton (CVE-2017-13676)
code injection in norton (CVE-2017-13676). Successful exploitation can lead to full system takeover.
|
| CVE-2017-1407 |
|
Command Injection in ibm (CVE-2017-1407)
command injection in ibm (CVE-2017-1407). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14526 |
|
XXE (XML External Entity) in dos (CVE-2017-14526)
vulnerability in dos (CVE-2017-14526). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14527 |
|
XXE (XML External Entity) in dos (CVE-2017-14527)
vulnerability in dos (CVE-2017-14527). Successful exploitation can lead to full system takeover.
|