Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2016-8743 |
|
Vulnerability in apache (CVE-2016-8743)
vulnerability in apache (CVE-2016-8743). Data can be tampered with by attackers.
|
| CVE-2016-10399 |
|
Vulnerability in sendio (CVE-2016-10399)
vulnerability in sendio (CVE-2016-10399). Confidential information can be exposed externally.
|
| CVE-2017-8870 |
|
Buffer Overflow in mediacoderhq (CVE-2017-8870)
vulnerability in mediacoderhq (CVE-2017-8870). Successful exploitation can lead to full system takeover.
|
| CVE-2016-10402 |
|
Buffer Overflow in avira (CVE-2016-10402)
vulnerability in avira (CVE-2016-10402). Successful exploitation can lead to full system takeover.
|
| CVE-2017-8869 |
|
Buffer Overflow in mediacoder (CVE-2017-8869)
vulnerability in mediacoder (CVE-2017-8869). Successful exploitation can lead to full system takeover.
|
| CVE-2017-11665 |
|
Vulnerability in c (CVE-2017-11665)
vulnerability in c (CVE-2017-11665). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-11675 |
|
Code Injection in c (CVE-2017-11675)
code injection in c (CVE-2017-11675). Successful exploitation can lead to full system takeover.
|
| CVE-2017-11678 |
|
SQL Injection in sqli (CVE-2017-11678)
SQL injection in sqli (CVE-2017-11678). Successful exploitation can lead to full system takeover.
|
| CVE-2017-11679 |
|
Cross-Site Request Forgery (CSRF) in csrf (CVE-2017-11679)
vulnerability in csrf (CVE-2017-11679). Successful exploitation can lead to full system takeover.
|
| CVE-2017-11680 |
|
Cross-Site Request Forgery (CSRF) in csrf (CVE-2017-11680)
vulnerability in csrf (CVE-2017-11680). Successful exploitation can lead to full system takeover.
|
| CVE-2017-11681 |
|
Privilege Escalation in project-hashtopussy (CVE-2017-11681)
vulnerability in project-hashtopussy (CVE-2017-11681). Successful exploitation can lead to full system takeover.
|
| CVE-2017-11684 |
|
Vulnerability in c (CVE-2017-11684)
vulnerability in c (CVE-2017-11684). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-9614 |
|
Buffer Overflow in c (CVE-2017-9614)
vulnerability in c (CVE-2017-9614). Successful exploitation can lead to full system takeover.
|
| CVE-2017-7659 |
|
Vulnerability in apache (CVE-2017-7659)
vulnerability in apache (CVE-2017-7659). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-11667 |
|
Vulnerability in openproject (CVE-2017-11667)
vulnerability in openproject (CVE-2017-11667). Successful exploitation can lead to full system takeover.
|
| CVE-2017-9610 |
|
Out-of-Bounds Read in c (CVE-2017-9610)
vulnerability in c (CVE-2017-9610). Successful exploitation can lead to full system takeover.
|
| CVE-2017-9611 |
|
Out-of-Bounds Read in c (CVE-2017-9611)
vulnerability in c (CVE-2017-9611). Successful exploitation can lead to full system takeover.
|
| CVE-2017-9612 |
|
Use-After-Free in c (CVE-2017-9612)
vulnerability in c (CVE-2017-9612). Successful exploitation can lead to full system takeover.
|
| CVE-2017-9618 |
|
Buffer Overflow in c (CVE-2017-9618)
vulnerability in c (CVE-2017-9618). Successful exploitation can lead to full system takeover.
|
| CVE-2017-9619 |
|
Buffer Overflow in c (CVE-2017-9619)
vulnerability in c (CVE-2017-9619). Successful exploitation can lead to full system takeover.
|
| CVE-2017-9620 |
|
Out-of-Bounds Read in c (CVE-2017-9620)
vulnerability in c (CVE-2017-9620). Successful exploitation can lead to full system takeover.
|
| CVE-2017-9726 |
|
Out-of-Bounds Read in c (CVE-2017-9726)
vulnerability in c (CVE-2017-9726). Successful exploitation can lead to full system takeover.
|
| CVE-2017-9727 |
|
Out-of-Bounds Read in c (CVE-2017-9727)
vulnerability in c (CVE-2017-9727). Successful exploitation can lead to full system takeover.
|
| CVE-2017-9739 |
|
Out-of-Bounds Read in c (CVE-2017-9739)
vulnerability in c (CVE-2017-9739). Successful exploitation can lead to full system takeover.
|
| CVE-2017-9740 |
|
Out-of-Bounds Read in c (CVE-2017-9740)
vulnerability in c (CVE-2017-9740). Successful exploitation can lead to full system takeover.
|
| CVE-2017-9835 |
|
Vulnerability in c (CVE-2017-9835)
vulnerability in c (CVE-2017-9835). Successful exploitation can lead to full system takeover.
|
| CVE-2017-11615 |
|
Vulnerability in c (CVE-2017-11615)
vulnerability in c (CVE-2017-11615). Successful exploitation can lead to full system takeover.
|
| CVE-2017-11658 |
|
Path Traversal in wordpress (CVE-2017-11658)
path traversal in wordpress (CVE-2017-11658). Confidential information can be exposed externally.
|
| CVE-2017-11655 |
|
Vulnerability in sipcrack-project (CVE-2017-11655)
vulnerability in sipcrack-project (CVE-2017-11655). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-11630 |
|
Path Traversal in path-traversal (CVE-2017-11630)
path traversal in path-traversal (CVE-2017-11630). Data can be tampered with by attackers.
|
| CVE-2017-11638 |
|
Vulnerability in c (CVE-2017-11638)
vulnerability in c (CVE-2017-11638). Successful exploitation can lead to full system takeover.
|
| CVE-2017-11642 |
|
Vulnerability in c (CVE-2017-11642)
vulnerability in c (CVE-2017-11642). Successful exploitation can lead to full system takeover.
|
| CVE-2017-6005 |
|
Vulnerability in waves (CVE-2017-6005)
vulnerability in waves (CVE-2017-6005). Successful exploitation can lead to full system takeover.
|
| CVE-2017-11628 |
|
Buffer Overflow in c (CVE-2017-11628)
vulnerability in c (CVE-2017-11628). Successful exploitation can lead to full system takeover.
|
| CVE-2017-9233 |
|
XXE (XML External Entity) in libexpat-project (CVE-2017-9233)
vulnerability in libexpat-project (CVE-2017-9233). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-6612 |
|
Buffer Overflow in cisco (CVE-2017-6612)
vulnerability in cisco (CVE-2017-6612). Data can be tampered with by attackers.
|
| CVE-2017-6672 |
|
Authorization Flaw in cisco (CVE-2017-6672)
vulnerability in cisco (CVE-2017-6672). Data can be tampered with by attackers.
|
| CVE-2017-6746 |
|
Vulnerability in cisco (CVE-2017-6746)
vulnerability in cisco (CVE-2017-6746). Successful exploitation can lead to full system takeover.
|
| CVE-2017-6750 |
|
Vulnerability in cisco (CVE-2017-6750)
vulnerability in cisco (CVE-2017-6750). Data can be tampered with by attackers.
|
| CVE-2017-6751 |
|
Vulnerability in cisco (CVE-2017-6751)
vulnerability in cisco (CVE-2017-6751). Data can be tampered with by attackers.
|
| CVE-2017-6753 |
|
A vulnerability in Cisco WebEx browser extensions for Google Chrome and Mozilla Firefox could allow an unauthenticated, remote attacker to execute arbitrary code with the privileges of the affected br...
A vulnerability in Cisco WebEx browser extensions for Google Chrome and Mozilla Firefox could allow an unauthenticated, remote attacker to execute arbitrary code with the privileges of the affected browser on an affected system. This vulnerability affects the browser extensions for Cisco WebEx Meeti...
|
| CVE-2016-10401 |
|
ZyXEL PK5001Z devices have zyad5001 as the su password, which makes it easier for remote attackers to obtain root access if a non-root account password is known (or a non-root default account exists w...
ZyXEL PK5001Z devices have zyad5001 as the su password, which makes it easier for remote attackers to obtain root access if a non-root account password is known (or a non-root default account exists within an ISP's deployment of these devices).
|
| CVE-2017-9413 |
|
Multiple cross-site request forgery (CSRF) vulnerabilities in the Podcast feature in Subsonic 6.1.1 allow remote attackers to hijack the authentication of users for requests that (1) subscribe to a po...
Multiple cross-site request forgery (CSRF) vulnerabilities in the Podcast feature in Subsonic 6.1.1 allow remote attackers to hijack the authentication of users for requests that (1) subscribe to a podcast via the add parameter to podcastReceiverAdmin.view or (2) update Internet Radio Settings via t...
|
| CVE-2015-1332 |
|
The oxide::JavaScriptDialogManager function in oxide-qt before 1.9.1 as packaged in Ubuntu 15.04 and Ubuntu 14.04 allows remote attackers to cause a denial of service (application crash) or execute ar...
The oxide::JavaScriptDialogManager function in oxide-qt before 1.9.1 as packaged in Ubuntu 15.04 and Ubuntu 14.04 allows remote attackers to cause a denial of service (application crash) or execute arbitrary code via a crafted website.
|
| CVE-2015-1417 |
|
Vulnerability in dos (CVE-2015-1417)
vulnerability in dos (CVE-2015-1417). Risk of unauthorized operations or information disclosure.
|
| CVE-2015-1438 |
|
Buffer Overflow in panda-security (CVE-2015-1438)
vulnerability in panda-security (CVE-2015-1438). Successful exploitation can lead to full system takeover.
|
| CVE-2015-4035 |
|
Vulnerability in tukaani (CVE-2015-4035)
vulnerability in tukaani (CVE-2015-4035). Successful exploitation can lead to full system takeover.
|
| CVE-2015-6585 |
|
Buffer Overflow in hancom (CVE-2015-6585)
vulnerability in hancom (CVE-2015-6585). Successful exploitation can lead to full system takeover.
|
| CVE-2015-8013 |
|
Vulnerability in openpgpjs (CVE-2015-8013)
vulnerability in openpgpjs (CVE-2015-8013). Confidential information can be exposed externally.
|
| CVE-2017-11566 |
|
AppUse 4.0 allows shell command injection via a proxy field.
AppUse 4.0 allows shell command injection via a proxy field.
|