Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

ID Title
CVE-2016-4468 SQL Injection in sqli (CVE-2016-4468)
SQL injection in sqli (CVE-2016-4468). Successful exploitation can lead to full system takeover.
CVE-2016-6811 Vulnerability in apache (CVE-2016-6811)
vulnerability in apache (CVE-2016-6811). Successful exploitation can lead to full system takeover.
CVE-2016-8235 Vulnerability in privilege-escalation (CVE-2016-8235)
vulnerability in privilege-escalation (CVE-2016-8235). Successful exploitation can lead to full system takeover.
CVE-2016-8237 Vulnerability in lenovo (CVE-2016-8237)
vulnerability in lenovo (CVE-2016-8237). Successful exploitation can lead to full system takeover.
CVE-2017-7647 Vulnerability in solarwinds (CVE-2017-7647)
vulnerability in solarwinds (CVE-2017-7647). Successful exploitation can lead to full system takeover.
CVE-2017-7648 Vulnerability in foscam (CVE-2017-7648)
vulnerability in foscam (CVE-2017-7648). Successful exploitation can lead to full system takeover.
CVE-2016-10322 Command Injection in synology (CVE-2016-10322)
command injection in synology (CVE-2016-10322). Successful exploitation can lead to full system takeover.
CVE-2016-10323 Vulnerability in synology (CVE-2016-10323)
vulnerability in synology (CVE-2016-10323). Successful exploitation can lead to full system takeover.
CVE-2017-7622 Vulnerability in privilege-escalation (CVE-2017-7622)
vulnerability in privilege-escalation (CVE-2017-7622). Successful exploitation can lead to full system takeover.
CVE-2016-5041 Vulnerability in c (CVE-2016-5041)
vulnerability in c (CVE-2016-5041). Risk of unauthorized operations or information disclosure.
CVE-2015-7824 Information Disclosure in botan-project (CVE-2015-7824)
vulnerability in botan-project (CVE-2015-7824). Confidential information can be exposed externally.
CVE-2015-7825 Vulnerability in dos (CVE-2015-7825)
vulnerability in dos (CVE-2015-7825). Risk of unauthorized operations or information disclosure.
CVE-2016-6879 Vulnerability in botan-project (CVE-2016-6879)
vulnerability in botan-project (CVE-2016-6879). Data can be tampered with by attackers.
CVE-2017-5988 Vulnerability in dos (CVE-2017-5988)
vulnerability in dos (CVE-2017-5988). Risk of unauthorized operations or information disclosure.
CVE-2017-7185 Use-After-Free in c (CVE-2017-7185)
vulnerability in c (CVE-2017-7185). Risk of unauthorized operations or information disclosure.
CVE-2015-8378 Information Disclosure in keepassx-project (CVE-2015-8378)
vulnerability in keepassx-project (CVE-2015-8378). Confidential information can be exposed externally.
CVE-2016-6605 Impala in CDH 5.2.0 through 5.7.2 and 5.8.0 allows remote attackers to bypass Setry authorization.
Impala in CDH 5.2.0 through 5.7.2 and 5.8.0 allows remote attackers to bypass Setry authorization.
CVE-2017-6190 Path Traversal in path-traversal (CVE-2017-6190)
path traversal in path-traversal (CVE-2017-6190). Confidential information can be exposed externally. Exploitable via `GET /uir/`.
CVE-2017-7617 Buffer Overflow in digium (CVE-2017-7617)
vulnerability in digium (CVE-2017-7617). Successful exploitation can lead to full system takeover.
CVE-2017-7618 Vulnerability in c (CVE-2017-7618)
vulnerability in c (CVE-2017-7618). Risk of unauthorized operations or information disclosure.
CVE-2017-7619 Vulnerability in imagemagick (CVE-2017-7619)
vulnerability in imagemagick (CVE-2017-7619). Risk of unauthorized operations or information disclosure.
CVE-2016-6534 Command Injection in opmantek (CVE-2016-6534)
command injection in opmantek (CVE-2016-6534). Successful exploitation can lead to full system takeover.
CVE-2016-1516 OpenCV 3.0.0 has a double free issue that allows attackers to execute arbitrary code.
OpenCV 3.0.0 has a double free issue that allows attackers to execute arbitrary code.
CVE-2016-4319 Atlassian JIRA Server before 7.1.9 has CSRF in auditing/settings.
Atlassian JIRA Server before 7.1.9 has CSRF in auditing/settings.
CVE-2016-5051 Information Disclosure in osram (CVE-2016-5051)
vulnerability in osram (CVE-2016-5051). Confidential information can be exposed externally.
CVE-2016-5052 OSRAM SYLVANIA Osram Lightify Home through 2016-07-26 does not use SSL pinning.
OSRAM SYLVANIA Osram Lightify Home through 2016-07-26 does not use SSL pinning.
CVE-2016-5054 OSRAM SYLVANIA Osram Lightify Home through 2016-07-26 allows Zigbee replay.
OSRAM SYLVANIA Osram Lightify Home through 2016-07-26 allows Zigbee replay.
CVE-2016-5056 OSRAM SYLVANIA Osram Lightify Pro before 2016-07-26 uses only 8 hex digits for a PSK.
OSRAM SYLVANIA Osram Lightify Pro before 2016-07-26 uses only 8 hex digits for a PSK.
CVE-2016-5057 OSRAM SYLVANIA Osram Lightify Pro through 2016-07-26 does not use SSL pinning.
OSRAM SYLVANIA Osram Lightify Pro through 2016-07-26 does not use SSL pinning.
CVE-2016-5058 OSRAM SYLVANIA Osram Lightify Pro through 2016-07-26 allows Zigbee replay.
OSRAM SYLVANIA Osram Lightify Pro through 2016-07-26 allows Zigbee replay.
CVE-2016-5067 Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 allow Hayes AT command injection.
Sierra Wireless GX 440 devices with ALEOS firmware 4.3.2 allow Hayes AT command injection.
CVE-2016-5071 Vulnerability in sierrawireless (CVE-2016-5071)
vulnerability in sierrawireless (CVE-2016-5071). Successful exploitation can lead to full system takeover.
CVE-2016-5072 Code Injection in oxidforge (CVE-2016-5072)
code injection in oxidforge (CVE-2016-5072). Successful exploitation can lead to full system takeover.
CVE-2016-5076 Information Disclosure in cloudviewnms (CVE-2016-5076)
vulnerability in cloudviewnms (CVE-2016-5076). Confidential information can be exposed externally.
CVE-2014-2960 Information Disclosure in visioncritical (CVE-2014-2960)
vulnerability in visioncritical (CVE-2014-2960). Confidential information can be exposed externally.
CVE-2015-2880 TRENDnet WiFi Baby Cam TV-IP743SIC has a password of admin for the backdoor root account.
TRENDnet WiFi Baby Cam TV-IP743SIC has a password of admin for the backdoor root account.
CVE-2015-2884 Information Disclosure in csharp (CVE-2015-2884)
vulnerability in csharp (CVE-2015-2884). Confidential information can be exposed externally.
CVE-2015-2886 Information Disclosure in ibaby (CVE-2015-2886)
vulnerability in ibaby (CVE-2015-2886). Confidential information can be exposed externally.
CVE-2015-2889 Vulnerability in summerinfant (CVE-2015-2889)
vulnerability in summerinfant (CVE-2015-2889). Successful exploitation can lead to full system takeover.
CVE-2015-6028 Castle Rock Computing SNMPc before 2015-12-17 has SQL injection via the sc parameter.
Castle Rock Computing SNMPc before 2015-12-17 has SQL injection via the sc parameter.
CVE-2015-7260 Vulnerability in vertiv (CVE-2015-7260)
vulnerability in vertiv (CVE-2015-7260). Successful exploitation can lead to full system takeover.
CVE-2015-7263 Vulnerability in proxygen-project (CVE-2015-7263)
vulnerability in proxygen-project (CVE-2015-7263). Data can be tampered with by attackers.
CVE-2015-7265 Vulnerability in proxygen-project (CVE-2015-7265)
vulnerability in proxygen-project (CVE-2015-7265). Data can be tampered with by attackers.
CVE-2015-7270 Path Traversal in path-traversal (CVE-2015-7270)
path traversal in path-traversal (CVE-2015-7270). Successful exploitation can lead to full system takeover.
CVE-2015-7274 Vulnerability in dell (CVE-2015-7274)
vulnerability in dell (CVE-2015-7274). Successful exploitation can lead to full system takeover.
CVE-2015-8255 Cross-Site Request Forgery (CSRF) in csrf (CVE-2015-8255)
vulnerability in csrf (CVE-2015-8255). Successful exploitation can lead to full system takeover.
CVE-2015-8258 Vulnerability in axis (CVE-2015-8258)
vulnerability in axis (CVE-2015-8258). Data can be tampered with by attackers.
CVE-2017-7592 Vulnerability in c (CVE-2017-7592)
vulnerability in c (CVE-2017-7592). Successful exploitation can lead to full system takeover.
CVE-2017-7596 Vulnerability in dos (CVE-2017-7596)
vulnerability in dos (CVE-2017-7596). Successful exploitation can lead to full system takeover.
CVE-2017-7597 Vulnerability in c (CVE-2017-7597)
vulnerability in c (CVE-2017-7597). Successful exploitation can lead to full system takeover.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →