Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2017-11767 |
|
Buffer Overflow in microsoft (CVE-2017-11767)
vulnerability in microsoft (CVE-2017-11767). Successful exploitation can lead to full system takeover.
|
| CVE-2017-16510 |
|
SQL Injection in wordpress (CVE-2017-16510)
SQL injection in wordpress (CVE-2017-16510). Successful exploitation can lead to full system takeover.
|
| CVE-2017-1000121 |
|
Vulnerability in webkitgtk (CVE-2017-1000121)
vulnerability in webkitgtk (CVE-2017-1000121). Successful exploitation can lead to full system takeover.
|
| CVE-2017-1000245 |
|
Vulnerability in jenkins (CVE-2017-1000245)
vulnerability in jenkins (CVE-2017-1000245). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14021 |
|
Vulnerability in korenix (CVE-2017-14021)
vulnerability in korenix (CVE-2017-14021). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14027 |
|
Vulnerability in korenix (CVE-2017-14027)
vulnerability in korenix (CVE-2017-14027). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14375 |
|
Vulnerability in dell (CVE-2017-14375)
vulnerability in dell (CVE-2017-14375). Successful exploitation can lead to full system takeover.
|
| CVE-2017-15535 |
|
Vulnerability in mongodb (CVE-2017-15535)
vulnerability in mongodb (CVE-2017-15535). Data can be tampered with by attackers.
|
| CVE-2017-1000257 |
|
Buffer Overflow in haxx (CVE-2017-1000257)
vulnerability in haxx (CVE-2017-1000257). Confidential information can be exposed externally.
|
| CVE-2017-14356 |
|
SQL Injection in express (CVE-2017-14356)
SQL injection in express (CVE-2017-14356). Successful exploitation can lead to full system takeover.
|
| CVE-2015-9245 |
|
Vulnerability in progress (CVE-2015-9245)
vulnerability in progress (CVE-2015-9245). Successful exploitation can lead to full system takeover.
|
| CVE-2017-15977 |
|
Protected Links - Expiring Download Links 1.0 allows SQL Injection via the username parameter.
Protected Links - Expiring Download Links 1.0 allows SQL Injection via the username parameter.
|
| CVE-2017-15978 |
|
AROX School ERP PHP Script 1.0 allows SQL Injection via the office_admin/ id parameter.
AROX School ERP PHP Script 1.0 allows SQL Injection via the office_admin/ id parameter.
|
| CVE-2017-15979 |
|
Shareet - Photo Sharing Social Network 1.0 allows SQL Injection via the photo parameter.
Shareet - Photo Sharing Social Network 1.0 allows SQL Injection via the photo parameter.
|
| CVE-2017-15980 |
|
US Zip Codes Database Script 1.0 allows SQL Injection via the state parameter.
US Zip Codes Database Script 1.0 allows SQL Injection via the state parameter.
|
| CVE-2017-15981 |
|
SQL Injection in sqli (CVE-2017-15981)
SQL injection in sqli (CVE-2017-15981). Successful exploitation can lead to full system takeover.
|
| CVE-2017-15982 |
|
SQL Injection in sqli (CVE-2017-15982)
SQL injection in sqli (CVE-2017-15982). Successful exploitation can lead to full system takeover.
|
| CVE-2017-15983 |
|
SQL Injection in sqli (CVE-2017-15983)
SQL injection in sqli (CVE-2017-15983). Successful exploitation can lead to full system takeover.
|
| CVE-2017-15984 |
|
Creative Management System (CMS) Lite 1.4 allows SQL Injection via the S parameter to index.php.
Creative Management System (CMS) Lite 1.4 allows SQL Injection via the S parameter to index.php.
|
| CVE-2017-15985 |
|
Basic B2B Script allows SQL Injection via the product_view1.php pid or id parameter.
Basic B2B Script allows SQL Injection via the product_view1.php pid or id parameter.
|
| CVE-2017-15986 |
|
CPA Lead Reward Script allows SQL Injection via the username parameter.
CPA Lead Reward Script allows SQL Injection via the username parameter.
|
| CVE-2017-15987 |
|
SQL Injection in sqli (CVE-2017-15987)
SQL injection in sqli (CVE-2017-15987). Successful exploitation can lead to full system takeover.
|
| CVE-2017-15988 |
|
SQL Injection in sqli (CVE-2017-15988)
SQL injection in sqli (CVE-2017-15988). Successful exploitation can lead to full system takeover.
|
| CVE-2017-15989 |
|
SQL Injection in sqli (CVE-2017-15989)
SQL injection in sqli (CVE-2017-15989). Successful exploitation can lead to full system takeover.
|
| CVE-2017-15990 |
|
Unrestricted File Upload in savsofteproducts (CVE-2017-15990)
vulnerability in savsofteproducts (CVE-2017-15990). Successful exploitation can lead to full system takeover.
|
| CVE-2017-15991 |
|
SQL Injection in sqli (CVE-2017-15991)
SQL injection in sqli (CVE-2017-15991). Successful exploitation can lead to full system takeover.
|
| CVE-2017-15992 |
|
Website Broker Script allows SQL Injection via the 'status_id' Parameter to status_list.php.
Website Broker Script allows SQL Injection via the 'status_id' Parameter to status_list.php.
|
| CVE-2017-15993 |
|
Zomato Clone Script allows SQL Injection via the restaurant-menu.php resid parameter.
Zomato Clone Script allows SQL Injection via the restaurant-menu.php resid parameter.
|
| CVE-2017-10151 |
|
Vulnerability in c (CVE-2017-10151)
vulnerability in c (CVE-2017-10151). Successful exploitation can lead to full system takeover.
|
| CVE-2012-4449 |
|
Vulnerability in apache (CVE-2012-4449)
vulnerability in apache (CVE-2012-4449). Successful exploitation can lead to full system takeover.
|
| CVE-2013-4366 |
|
Vulnerability in apache (CVE-2013-4366)
vulnerability in apache (CVE-2013-4366). Successful exploitation can lead to full system takeover.
|
| CVE-2014-0073 |
|
Vulnerability in apache (CVE-2014-0073)
vulnerability in apache (CVE-2014-0073). Successful exploitation can lead to full system takeover.
|
| CVE-2012-5357 |
|
Vulnerability in ektron (CVE-2012-5357)
vulnerability in ektron (CVE-2012-5357). Successful exploitation can lead to full system takeover.
|
| CVE-2012-5358 |
|
Vulnerability in dos (CVE-2012-5358)
vulnerability in dos (CVE-2012-5358). Successful exploitation can lead to full system takeover.
|
| CVE-2014-3624 |
|
Vulnerability in apache (CVE-2014-3624)
vulnerability in apache (CVE-2014-3624). Successful exploitation can lead to full system takeover.
|
| CVE-2015-3249 |
|
Buffer Overflow in c (CVE-2015-3249)
vulnerability in c (CVE-2015-3249). Successful exploitation can lead to full system takeover.
|
| CVE-2017-15597 |
|
Buffer Overflow in privilege-escalation (CVE-2017-15597)
vulnerability in privilege-escalation (CVE-2017-15597). Successful exploitation can lead to full system takeover.
|
| CVE-2017-16228 |
|
Vulnerability in dulwich (CVE-2017-16228)
vulnerability in dulwich (CVE-2017-16228). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `0.18.5` or later.
|
| CVE-2017-15999 |
|
Vulnerability in nq (CVE-2017-15999)
vulnerability in nq (CVE-2017-15999). Successful exploitation can lead to full system takeover.
|
| CVE-2017-15975 |
|
SQL Injection in sqli (CVE-2017-15975)
SQL injection in sqli (CVE-2017-15975). Successful exploitation can lead to full system takeover.
|
| CVE-2017-15976 |
|
SQL Injection in sqli (CVE-2017-15976)
SQL injection in sqli (CVE-2017-15976). Successful exploitation can lead to full system takeover.
|
| CVE-2017-15994 |
|
Vulnerability in samba (CVE-2017-15994)
vulnerability in samba (CVE-2017-15994). Successful exploitation can lead to full system takeover.
|
| CVE-2017-15958 |
|
D-Park Pro Domain Parking Script 1.0 allows SQL Injection via the username to admin/loginform.php.
D-Park Pro Domain Parking Script 1.0 allows SQL Injection via the username to admin/loginform.php.
|
| CVE-2017-15959 |
|
SQL Injection in sqli (CVE-2017-15959)
SQL injection in sqli (CVE-2017-15959). Successful exploitation can lead to full system takeover.
|
| CVE-2017-15960 |
|
SQL Injection in sqli (CVE-2017-15960)
SQL injection in sqli (CVE-2017-15960). Successful exploitation can lead to full system takeover.
|
| CVE-2017-15961 |
|
iProject Management System 1.0 allows SQL Injection via the ID parameter to index.php.
iProject Management System 1.0 allows SQL Injection via the ID parameter to index.php.
|
| CVE-2017-15962 |
|
iStock Management System 1.0 allows Arbitrary File Upload via user/profile.
iStock Management System 1.0 allows Arbitrary File Upload via user/profile.
|
| CVE-2017-15963 |
|
SQL Injection in sqli (CVE-2017-15963)
SQL injection in sqli (CVE-2017-15963). Successful exploitation can lead to full system takeover.
|
| CVE-2017-15964 |
|
Job Board Script Software allows SQL Injection via the PATH_INFO to a /job-details URI.
Job Board Script Software allows SQL Injection via the PATH_INFO to a /job-details URI.
|
| CVE-2017-15965 |
|
SQL Injection in sqli (CVE-2017-15965)
SQL injection in sqli (CVE-2017-15965). Successful exploitation can lead to full system takeover.
|