Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

ID Title
CVE-2017-11767 Buffer Overflow in microsoft (CVE-2017-11767)
vulnerability in microsoft (CVE-2017-11767). Successful exploitation can lead to full system takeover.
CVE-2017-16510 SQL Injection in wordpress (CVE-2017-16510)
SQL injection in wordpress (CVE-2017-16510). Successful exploitation can lead to full system takeover.
CVE-2017-1000121 Vulnerability in webkitgtk (CVE-2017-1000121)
vulnerability in webkitgtk (CVE-2017-1000121). Successful exploitation can lead to full system takeover.
CVE-2017-1000245 Vulnerability in jenkins (CVE-2017-1000245)
vulnerability in jenkins (CVE-2017-1000245). Successful exploitation can lead to full system takeover.
CVE-2017-14021 Vulnerability in korenix (CVE-2017-14021)
vulnerability in korenix (CVE-2017-14021). Successful exploitation can lead to full system takeover.
CVE-2017-14027 Vulnerability in korenix (CVE-2017-14027)
vulnerability in korenix (CVE-2017-14027). Successful exploitation can lead to full system takeover.
CVE-2017-14375 Vulnerability in dell (CVE-2017-14375)
vulnerability in dell (CVE-2017-14375). Successful exploitation can lead to full system takeover.
CVE-2017-15535 Vulnerability in mongodb (CVE-2017-15535)
vulnerability in mongodb (CVE-2017-15535). Data can be tampered with by attackers.
CVE-2017-1000257 Buffer Overflow in haxx (CVE-2017-1000257)
vulnerability in haxx (CVE-2017-1000257). Confidential information can be exposed externally.
CVE-2017-14356 SQL Injection in express (CVE-2017-14356)
SQL injection in express (CVE-2017-14356). Successful exploitation can lead to full system takeover.
CVE-2015-9245 Vulnerability in progress (CVE-2015-9245)
vulnerability in progress (CVE-2015-9245). Successful exploitation can lead to full system takeover.
CVE-2017-15977 Protected Links - Expiring Download Links 1.0 allows SQL Injection via the username parameter.
Protected Links - Expiring Download Links 1.0 allows SQL Injection via the username parameter.
CVE-2017-15978 AROX School ERP PHP Script 1.0 allows SQL Injection via the office_admin/ id parameter.
AROX School ERP PHP Script 1.0 allows SQL Injection via the office_admin/ id parameter.
CVE-2017-15979 Shareet - Photo Sharing Social Network 1.0 allows SQL Injection via the photo parameter.
Shareet - Photo Sharing Social Network 1.0 allows SQL Injection via the photo parameter.
CVE-2017-15980 US Zip Codes Database Script 1.0 allows SQL Injection via the state parameter.
US Zip Codes Database Script 1.0 allows SQL Injection via the state parameter.
CVE-2017-15981 SQL Injection in sqli (CVE-2017-15981)
SQL injection in sqli (CVE-2017-15981). Successful exploitation can lead to full system takeover.
CVE-2017-15982 SQL Injection in sqli (CVE-2017-15982)
SQL injection in sqli (CVE-2017-15982). Successful exploitation can lead to full system takeover.
CVE-2017-15983 SQL Injection in sqli (CVE-2017-15983)
SQL injection in sqli (CVE-2017-15983). Successful exploitation can lead to full system takeover.
CVE-2017-15984 Creative Management System (CMS) Lite 1.4 allows SQL Injection via the S parameter to index.php.
Creative Management System (CMS) Lite 1.4 allows SQL Injection via the S parameter to index.php.
CVE-2017-15985 Basic B2B Script allows SQL Injection via the product_view1.php pid or id parameter.
Basic B2B Script allows SQL Injection via the product_view1.php pid or id parameter.
CVE-2017-15986 CPA Lead Reward Script allows SQL Injection via the username parameter.
CPA Lead Reward Script allows SQL Injection via the username parameter.
CVE-2017-15987 SQL Injection in sqli (CVE-2017-15987)
SQL injection in sqli (CVE-2017-15987). Successful exploitation can lead to full system takeover.
CVE-2017-15988 SQL Injection in sqli (CVE-2017-15988)
SQL injection in sqli (CVE-2017-15988). Successful exploitation can lead to full system takeover.
CVE-2017-15989 SQL Injection in sqli (CVE-2017-15989)
SQL injection in sqli (CVE-2017-15989). Successful exploitation can lead to full system takeover.
CVE-2017-15990 Unrestricted File Upload in savsofteproducts (CVE-2017-15990)
vulnerability in savsofteproducts (CVE-2017-15990). Successful exploitation can lead to full system takeover.
CVE-2017-15991 SQL Injection in sqli (CVE-2017-15991)
SQL injection in sqli (CVE-2017-15991). Successful exploitation can lead to full system takeover.
CVE-2017-15992 Website Broker Script allows SQL Injection via the 'status_id' Parameter to status_list.php.
Website Broker Script allows SQL Injection via the 'status_id' Parameter to status_list.php.
CVE-2017-15993 Zomato Clone Script allows SQL Injection via the restaurant-menu.php resid parameter.
Zomato Clone Script allows SQL Injection via the restaurant-menu.php resid parameter.
CVE-2017-10151 Vulnerability in c (CVE-2017-10151)
vulnerability in c (CVE-2017-10151). Successful exploitation can lead to full system takeover.
CVE-2012-4449 Vulnerability in apache (CVE-2012-4449)
vulnerability in apache (CVE-2012-4449). Successful exploitation can lead to full system takeover.
CVE-2013-4366 Vulnerability in apache (CVE-2013-4366)
vulnerability in apache (CVE-2013-4366). Successful exploitation can lead to full system takeover.
CVE-2014-0073 Vulnerability in apache (CVE-2014-0073)
vulnerability in apache (CVE-2014-0073). Successful exploitation can lead to full system takeover.
CVE-2012-5357 Vulnerability in ektron (CVE-2012-5357)
vulnerability in ektron (CVE-2012-5357). Successful exploitation can lead to full system takeover.
CVE-2012-5358 Vulnerability in dos (CVE-2012-5358)
vulnerability in dos (CVE-2012-5358). Successful exploitation can lead to full system takeover.
CVE-2014-3624 Vulnerability in apache (CVE-2014-3624)
vulnerability in apache (CVE-2014-3624). Successful exploitation can lead to full system takeover.
CVE-2015-3249 Buffer Overflow in c (CVE-2015-3249)
vulnerability in c (CVE-2015-3249). Successful exploitation can lead to full system takeover.
CVE-2017-15597 Buffer Overflow in privilege-escalation (CVE-2017-15597)
vulnerability in privilege-escalation (CVE-2017-15597). Successful exploitation can lead to full system takeover.
CVE-2017-16228 Vulnerability in dulwich (CVE-2017-16228)
vulnerability in dulwich (CVE-2017-16228). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `0.18.5` or later.
CVE-2017-15999 Vulnerability in nq (CVE-2017-15999)
vulnerability in nq (CVE-2017-15999). Successful exploitation can lead to full system takeover.
CVE-2017-15975 SQL Injection in sqli (CVE-2017-15975)
SQL injection in sqli (CVE-2017-15975). Successful exploitation can lead to full system takeover.
CVE-2017-15976 SQL Injection in sqli (CVE-2017-15976)
SQL injection in sqli (CVE-2017-15976). Successful exploitation can lead to full system takeover.
CVE-2017-15994 Vulnerability in samba (CVE-2017-15994)
vulnerability in samba (CVE-2017-15994). Successful exploitation can lead to full system takeover.
CVE-2017-15958 D-Park Pro Domain Parking Script 1.0 allows SQL Injection via the username to admin/loginform.php.
D-Park Pro Domain Parking Script 1.0 allows SQL Injection via the username to admin/loginform.php.
CVE-2017-15959 SQL Injection in sqli (CVE-2017-15959)
SQL injection in sqli (CVE-2017-15959). Successful exploitation can lead to full system takeover.
CVE-2017-15960 SQL Injection in sqli (CVE-2017-15960)
SQL injection in sqli (CVE-2017-15960). Successful exploitation can lead to full system takeover.
CVE-2017-15961 iProject Management System 1.0 allows SQL Injection via the ID parameter to index.php.
iProject Management System 1.0 allows SQL Injection via the ID parameter to index.php.
CVE-2017-15962 iStock Management System 1.0 allows Arbitrary File Upload via user/profile.
iStock Management System 1.0 allows Arbitrary File Upload via user/profile.
CVE-2017-15963 SQL Injection in sqli (CVE-2017-15963)
SQL injection in sqli (CVE-2017-15963). Successful exploitation can lead to full system takeover.
CVE-2017-15964 Job Board Script Software allows SQL Injection via the PATH_INFO to a /job-details URI.
Job Board Script Software allows SQL Injection via the PATH_INFO to a /job-details URI.
CVE-2017-15965 SQL Injection in sqli (CVE-2017-15965)
SQL injection in sqli (CVE-2017-15965). Successful exploitation can lead to full system takeover.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →