Sign in Sign up
JA · EN · FR
SecPulse

Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Categories
All 🌐 Web Application 🧭 Browser 🖥️ Operating System 📱 Mobile 🛰️ Network Infrastructure ☁️ Cloud / Container 📝 CMS / Site Builder 🗄️ Database / Storage 🔐 Auth / Identity 🔑 Cryptography 🛠️ DevOps / CI-CD 🤖 AI / ML 🔌 IoT / Embedded 🧩 Hardware / Firmware 🏢 Enterprise SaaS 🧰 Developer Tooling ☠️ Malicious Package 📦 Other
Tag groups
All 💬 Programming Languages 22 🧱 Web Frameworks 29 📱 Mobile Platforms 6 🤖 AI/ML Frameworks 11 🖥️ Web Servers 9 🗄️ Databases 13 📝 CMS 9 ☁️ Cloud Platforms 11 📦 Container Tech 12 🖥️ Operating Systems 15 ⚔️ Attack Types 25 🧬 CWE 185 🏢 Vendors 581 📦 Products 666 🌳 Package Ecosystems 24 🛠️ DevOps Tools 17 📡 Protocols 15
Popular tags (Top 40)
Rootio Linux419 Microsoft386 C237 Java183 Jre178 Java Min178 Bitnami178 Windows177 Rootdebian11175 Rootdebian12151 Linux130 Cwe 20125 Cwe 78120 Linux Kernel106 Cwe 787105 Apple99 Cwe 41699 Cwe 2296 Rootdebian1393 Cwe 11990 Cisco89 Denial of Service85 Cwe 9484 Multiple Products79 Adobe78 Google77 Cwe 50270 Cwe 7966 Cwe 8954 Apache47 Cwe 91844 Cwe 28443 Oracle42 Cwe 28741 JavaScript41 PHP41 Cwe 7740 Chromium V838 Cwe 30638 Cwe 84337
ID Title
CVE-2020-25223 KEV [KEV] OS Command Injection in Sophos sg-utm (CVE-2020-25223)
OS command injection in Sophos sg-utm (CVE-2020-25223). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-2506 KEV [KEV] Vulnerability in Qnap systems qnap-systems (CVE-2020-2506)
vulnerability in Qnap systems qnap-systems (CVE-2020-2506). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-2021 KEV [KEV] Vulnerability in Palo alto networks palo-alto-networks (CVE-2020-2021)
vulnerability in Palo alto networks palo-alto-networks (CVE-2020-2021). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-1956 KEV [KEV] OS Command Injection in Apache kylin (CVE-2020-1956)
OS command injection in Apache kylin (CVE-2020-1956). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-1631 KEV [KEV] Path Traversal in Juniper junos-os (CVE-2020-1631)
path traversal in Juniper junos-os (CVE-2020-1631). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2019-6340 KEV [KEV] Unsafe Deserialization in Drupal core (CVE-2019-6340)
vulnerability in Drupal core (CVE-2019-6340). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2019-2616 KEV [KEV] Vulnerability in Oracle bi-publisher-formerly-xml-publisher (CVE-2019-2616)
vulnerability in Oracle bi-publisher-formerly-xml-publisher (CVE-2019-2616). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2019-16920 KEV [KEV] OS Command Injection in D-link multiple-routers (CVE-2019-16920)
OS command injection in D-link multiple-routers (CVE-2019-16920). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2019-15107 KEV [KEV] OS Command Injection in webmin (CVE-2019-15107)
OS command injection in webmin (CVE-2019-15107). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2019-12991 KEV [KEV] OS Command Injection in Citrix sd-wan-and-netscaler (CVE-2019-12991)
OS command injection in Citrix sd-wan-and-netscaler (CVE-2019-12991). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2019-12989 KEV [KEV] SQL Injection in Citrix sd-wan-and-netscaler (CVE-2019-12989)
SQL injection in Citrix sd-wan-and-netscaler (CVE-2019-12989). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2019-11043 KEV [KEV] Vulnerability in Php fastcgi-process-manager-fpm (CVE-2019-11043)
vulnerability in Php fastcgi-process-manager-fpm (CVE-2019-11043). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2019-10068 KEV [KEV] Unsafe Deserialization in Kentico xperience (CVE-2019-10068)
vulnerability in Kentico xperience (CVE-2019-10068). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2019-1003030 KEV [KEV] Vulnerability in Jenkins matrix-project-plugin (CVE-2019-1003030)
vulnerability in Jenkins matrix-project-plugin (CVE-2019-1003030). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2019-0903 KEV [KEV] Vulnerability in Microsoft graphics-device-interface-gdi (CVE-2019-0903)
vulnerability in Microsoft graphics-device-interface-gdi (CVE-2019-0903). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2018-8414 KEV [KEV] Vulnerability in Microsoft windows (CVE-2018-8414)
vulnerability in Microsoft windows (CVE-2018-8414). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2018-8373 KEV [KEV] Out-of-Bounds Write in Microsoft internet-explorer-scripting-engine (CVE-2018-8373)
out-of-bounds write in Microsoft internet-explorer-scripting-engine (CVE-2018-8373). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2018-6961 KEV [KEV] OS Command Injection in Vmware sd-wan-edge (CVE-2018-6961)
OS command injection in Vmware sd-wan-edge (CVE-2018-6961). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2018-14839 KEV [KEV] OS Command Injection in Lg n1a1-nas (CVE-2018-14839)
OS command injection in Lg n1a1-nas (CVE-2018-14839). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2018-1273 KEV [KEV] Code Injection in Vmware tanzu vmware-tanzu (CVE-2018-1273)
code injection in Vmware tanzu vmware-tanzu (CVE-2018-1273). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2018-11138 KEV [KEV] OS Command Injection in Quest kace-system-management-appliance (CVE-2018-11138)
OS command injection in Quest kace-system-management-appliance (CVE-2018-11138). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2018-0147 KEV [KEV] Vulnerability in Cisco secure-access-control-system-acs (CVE-2018-0147)
vulnerability in Cisco secure-access-control-system-acs (CVE-2018-0147). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2018-0125 KEV [KEV] Vulnerability in Cisco vpn-routers (CVE-2018-0125)
vulnerability in Cisco vpn-routers (CVE-2018-0125). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2017-6334 KEV [KEV] OS Command Injection in Netgear dgn2200-devices (CVE-2017-6334)
OS command injection in Netgear dgn2200-devices (CVE-2017-6334). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2017-6316 KEV [KEV] Vulnerability in Citrix netscaler-sd-wan-enterprise (CVE-2017-6316)
vulnerability in Citrix netscaler-sd-wan-enterprise (CVE-2017-6316). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2017-3881 KEV [KEV] Vulnerability in Cisco ios-and-ios-xe (CVE-2017-3881)
vulnerability in Cisco ios-and-ios-xe (CVE-2017-3881). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2017-12617 KEV [KEV] Unrestricted File Upload in Apache tomcat (CVE-2017-12617)
vulnerability in Apache tomcat (CVE-2017-12617). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2017-12615 KEV [KEV] Unrestricted File Upload in Apache tomcat (CVE-2017-12615)
vulnerability in Apache tomcat (CVE-2017-12615). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2017-0146 KEV [KEV] Vulnerability in Microsoft windows (CVE-2017-0146)
vulnerability in Microsoft windows (CVE-2017-0146). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2016-7892 KEV [KEV] Use-After-Free in Adobe flash-player (CVE-2016-7892)
vulnerability in Adobe flash-player (CVE-2016-7892). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2016-4171 KEV [KEV] Vulnerability in Adobe flash-player (CVE-2016-4171)
vulnerability in Adobe flash-player (CVE-2016-4171). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2016-1555 KEV [KEV] Command Injection in Netgear wireless-access-point-wap-devices (CVE-2016-1555)
command injection in Netgear wireless-access-point-wap-devices (CVE-2016-1555). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2016-11021 KEV [KEV] OS Command Injection in D-link dcs-930l-devices (CVE-2016-11021)
OS command injection in D-link dcs-930l-devices (CVE-2016-11021). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2016-10174 KEV [KEV] Buffer Overflow in Netgear wnr2000v5-router (CVE-2016-10174)
vulnerability in Netgear wnr2000v5-router (CVE-2016-10174). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2016-0752 KEV [KEV] Path Traversal in rails (CVE-2016-0752)
path traversal in rails (CVE-2016-0752). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2015-4068 KEV [KEV] Path Traversal in Arcserve unified-data-protection-udp (CVE-2015-4068)
path traversal in Arcserve unified-data-protection-udp (CVE-2015-4068). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2015-3035 KEV [KEV] Path Traversal in Tp-link multiple-archer-devices (CVE-2015-3035)
path traversal in Tp-link multiple-archer-devices (CVE-2015-3035). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2015-1427 KEV [KEV] Vulnerability in elastic (CVE-2015-1427)
vulnerability in elastic (CVE-2015-1427). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2015-1187 KEV [KEV] Authentication Bypass in D-link and trendnet d-link-and-trendnet (CVE-2015-1187)
authentication bypass in D-link and trendnet d-link-and-trendnet (CVE-2015-1187). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2015-0666 KEV [KEV] Path Traversal in Cisco prime-data-center-network-manager-dcnm (CVE-2015-0666)
path traversal in Cisco prime-data-center-network-manager-dcnm (CVE-2015-0666). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2014-6332 KEV [KEV] Buffer Overflow in Microsoft windows (CVE-2014-6332)
vulnerability in Microsoft windows (CVE-2014-6332). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2014-6324 KEV [KEV] Vulnerability in Microsoft kerberos-key-distribution-center-kdc (CVE-2014-6324)
vulnerability in Microsoft kerberos-key-distribution-center-kdc (CVE-2014-6324). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2014-6287 KEV [KEV] Code Injection in Rejetto http-file-server-hfs (CVE-2014-6287)
code injection in Rejetto http-file-server-hfs (CVE-2014-6287). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2014-3120 KEV [KEV] Vulnerability in elastic (CVE-2014-3120)
vulnerability in elastic (CVE-2014-3120). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2014-0130 KEV [KEV] Path Traversal in rails (CVE-2014-0130)
path traversal in rails (CVE-2014-0130). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2013-5223 KEV [KEV] Cross-Site Scripting (XSS) in D-link dsl-2760u (CVE-2013-5223)
cross-site scripting in D-link dsl-2760u (CVE-2013-5223). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2013-4810 KEV [KEV] Code Injection in Hewlett packard (hp) hewlett-packard-hp (CVE-2013-4810)
code injection in Hewlett packard (hp) hewlett-packard-hp (CVE-2013-4810). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2013-2251 KEV [KEV] Vulnerability in Apache struts (CVE-2013-2251)
vulnerability in Apache struts (CVE-2013-2251). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2012-1823 KEV [KEV] Vulnerability in php (CVE-2012-1823)
vulnerability in php (CVE-2012-1823). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2010-4345 KEV [KEV] Vulnerability in exim (CVE-2010-4345)
vulnerability in exim (CVE-2010-4345). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →