Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2017-7881 |
|
Cross-Site Request Forgery (CSRF) in csrf (CVE-2017-7881)
vulnerability in csrf (CVE-2017-7881). Successful exploitation can lead to full system takeover. Exploitable via `Referer header`.
|
| CVE-2017-7690 |
|
OS Command Injection in proxifier (CVE-2017-7690)
OS command injection in proxifier (CVE-2017-7690). Successful exploitation can lead to full system takeover.
|
| CVE-2017-7696 |
|
Vulnerability in dos (CVE-2017-7696)
vulnerability in dos (CVE-2017-7696). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-7717 |
|
SQL Injection in sqli (CVE-2017-7717)
SQL injection in sqli (CVE-2017-7717). Successful exploitation can lead to full system takeover.
|
| CVE-2017-7877 |
|
CSRF vulnerability in flatCore version 1.4.6 allows remote attackers to modify CMS configurations.
CSRF vulnerability in flatCore version 1.4.6 allows remote attackers to modify CMS configurations.
|
| CVE-2017-7879 |
|
SQL Injection in sqli (CVE-2017-7879)
SQL injection in sqli (CVE-2017-7879). Confidential information can be exposed externally.
|
| CVE-2016-0727 |
|
Vulnerability in canonical (CVE-2016-0727)
vulnerability in canonical (CVE-2016-0727). Successful exploitation can lead to full system takeover.
|
| CVE-2016-1713 |
|
Unrestricted File Upload in vtiger (CVE-2016-1713)
vulnerability in vtiger (CVE-2016-1713). Successful exploitation can lead to full system takeover.
|
| CVE-2016-3104 |
|
Vulnerability in dos (CVE-2016-3104)
vulnerability in dos (CVE-2016-3104). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-4889 |
|
Vulnerability in zohocorp (CVE-2016-4889)
vulnerability in zohocorp (CVE-2016-4889). Successful exploitation can lead to full system takeover.
|
| CVE-2016-6299 |
|
Vulnerability in fedoraproject (CVE-2016-6299)
vulnerability in fedoraproject (CVE-2016-6299). Successful exploitation can lead to full system takeover.
|
| CVE-2016-6489 |
|
Vulnerability in redhat (CVE-2016-6489)
vulnerability in redhat (CVE-2016-6489). Confidential information can be exposed externally.
|
| CVE-2016-7032 |
|
Vulnerability in todd-miller (CVE-2016-7032)
vulnerability in todd-miller (CVE-2016-7032). Successful exploitation can lead to full system takeover.
|
| CVE-2016-7051 |
|
XXE (XML External Entity) in ssrf (CVE-2016-7051)
vulnerability in ssrf (CVE-2016-7051). Data can be tampered with by attackers.
|
| CVE-2016-8602 |
|
Vulnerability in c (CVE-2016-8602)
vulnerability in c (CVE-2016-8602). Successful exploitation can lead to full system takeover.
|
| CVE-2017-6554 |
|
Vulnerability in quest (CVE-2017-6554)
vulnerability in quest (CVE-2017-6554). Successful exploitation can lead to full system takeover.
|
| CVE-2015-6567 |
|
Vulnerability in wolfcms (CVE-2015-6567)
vulnerability in wolfcms (CVE-2015-6567). Successful exploitation can lead to full system takeover.
|
| CVE-2015-6568 |
|
Vulnerability in wolfcms (CVE-2015-6568)
vulnerability in wolfcms (CVE-2015-6568). Successful exploitation can lead to full system takeover.
|
| CVE-2017-1205 |
|
Vulnerability in ibm (CVE-2017-1205)
vulnerability in ibm (CVE-2017-1205). Successful exploitation can lead to full system takeover.
|
| CVE-2015-8356 |
|
SQL Injection in sqli (CVE-2015-8356)
SQL injection in sqli (CVE-2015-8356). Successful exploitation can lead to full system takeover.
|
| CVE-2017-7218 |
|
Vulnerability in paloaltonetworks (CVE-2017-7218)
vulnerability in paloaltonetworks (CVE-2017-7218). Successful exploitation can lead to full system takeover.
|
| CVE-2017-7408 |
|
Vulnerability in dos (CVE-2017-7408)
vulnerability in dos (CVE-2017-7408). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-7455 |
|
Moxa MXView 2.8 allows remote attackers to read web server's private key file, no access control.
Moxa MXView 2.8 allows remote attackers to read web server's private key file, no access control.
|
| CVE-2017-7456 |
|
Vulnerability in dos (CVE-2017-7456)
vulnerability in dos (CVE-2017-7456). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-7643 |
|
Vulnerability in proxifier (CVE-2017-7643)
vulnerability in proxifier (CVE-2017-7643). Successful exploitation can lead to full system takeover.
|
| CVE-2017-7867 |
|
Out-of-Bounds Write in c (CVE-2017-7867)
out-of-bounds write in c (CVE-2017-7867). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-7868 |
|
Out-of-Bounds Write in c (CVE-2017-7868)
out-of-bounds write in c (CVE-2017-7868). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-7869 |
|
Out-of-Bounds Write in c (CVE-2017-7869)
out-of-bounds write in c (CVE-2017-7869). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `3.5.10` or later.
|
| CVE-2016-8712 |
|
Vulnerability in moxa (CVE-2016-8712)
vulnerability in moxa (CVE-2016-8712). Successful exploitation can lead to full system takeover.
|
| CVE-2016-8723 |
|
Vulnerability in moxa (CVE-2016-8723)
vulnerability in moxa (CVE-2016-8723). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-8726 |
|
Vulnerability in moxa (CVE-2016-8726)
vulnerability in moxa (CVE-2016-8726). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-8727 |
|
Information Disclosure in moxa (CVE-2016-8727)
vulnerability in moxa (CVE-2016-8727). Confidential information can be exposed externally.
|
| CVE-2013-6648 |
|
SkRegion::setPath in Skia allows remote attackers to cause a denial of service (crash).
SkRegion::setPath in Skia allows remote attackers to cause a denial of service (crash).
|
| CVE-2015-4646 |
|
Vulnerability in c (CVE-2015-4646)
vulnerability in c (CVE-2015-4646). Risk of unauthorized operations or information disclosure.
|
| CVE-2015-8567 |
|
Vulnerability in c (CVE-2015-8567)
vulnerability in c (CVE-2015-8567). Risk of unauthorized operations or information disclosure.
|
| CVE-2015-8619 |
|
Out-of-Bounds Write in dos (CVE-2015-8619)
out-of-bounds write in dos (CVE-2015-8619). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-7834 |
|
Information Disclosure in sony (CVE-2016-7834)
vulnerability in sony (CVE-2016-7834). Successful exploitation can lead to full system takeover.
|
| CVE-2017-7853 |
|
Buffer Overflow in c (CVE-2017-7853)
vulnerability in c (CVE-2017-7853). Risk of unauthorized operations or information disclosure.
|
| CVE-2010-1816 |
|
Buffer Overflow in dos (CVE-2010-1816)
vulnerability in dos (CVE-2010-1816). Successful exploitation can lead to full system takeover.
|
| CVE-2010-1821 |
|
Vulnerability in apple (CVE-2010-1821)
vulnerability in apple (CVE-2010-1821). Successful exploitation can lead to full system takeover.
|
| CVE-2016-10325 |
|
Buffer Overflow in c (CVE-2016-10325)
vulnerability in c (CVE-2016-10325). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-10326 |
|
Buffer Overflow in c (CVE-2016-10326)
vulnerability in c (CVE-2016-10326). Risk of unauthorized operations or information disclosure.
|
| CVE-2015-8284 |
|
Vulnerability in seawell-networks (CVE-2015-8284)
vulnerability in seawell-networks (CVE-2015-8284). Successful exploitation can lead to full system takeover.
|
| CVE-2016-10117 |
|
Vulnerability in firejail-project (CVE-2016-10117)
vulnerability in firejail-project (CVE-2016-10117). Successful exploitation can lead to full system takeover.
|
| CVE-2016-10119 |
|
Firejail uses 0777 permissions when mounting /tmp, which allows local users to gain privileges.
Firejail uses 0777 permissions when mounting /tmp, which allows local users to gain privileges.
|
| CVE-2016-10120 |
|
Vulnerability in firejail-project (CVE-2016-10120)
vulnerability in firejail-project (CVE-2016-10120). Successful exploitation can lead to full system takeover.
|
| CVE-2016-10121 |
|
Vulnerability in firejail-project (CVE-2016-10121)
vulnerability in firejail-project (CVE-2016-10121). Successful exploitation can lead to full system takeover.
|
| CVE-2016-10122 |
|
Vulnerability in firejail-project (CVE-2016-10122)
vulnerability in firejail-project (CVE-2016-10122). Successful exploitation can lead to full system takeover.
|
| CVE-2016-10123 |
|
Vulnerability in firejail-project (CVE-2016-10123)
vulnerability in firejail-project (CVE-2016-10123). Successful exploitation can lead to full system takeover.
|
| CVE-2016-1132 |
|
Shoplat App for iOS 1.10.00 through 1.18.00 does not properly verify SSL certificates.
Shoplat App for iOS 1.10.00 through 1.18.00 does not properly verify SSL certificates.
|