Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-8662 |
|
Path Traversal in path-traversal (CVE-2026-8662)
path traversal in path-traversal (CVE-2026-8662). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8660 |
|
OS Command Injection in rapid7 (CVE-2026-8660)
OS command injection in rapid7 (CVE-2026-8660). Confidential information can be exposed externally.
|
| CVE-2026-8658 |
|
OS Command Injection in rapid7 (CVE-2026-8658)
OS command injection in rapid7 (CVE-2026-8658). Data can be tampered with by attackers.
|
| CVE-2026-8666 |
|
OS Command Injection in rapid7 (CVE-2026-8666)
OS command injection in rapid7 (CVE-2026-8666). Confidential information can be exposed externally.
|
| CVE-2026-8665 |
|
OS Command Injection in rapid7 (CVE-2026-8665)
OS command injection in rapid7 (CVE-2026-8665). Confidential information can be exposed externally.
|
| CVE-2026-8664 |
|
OS Command Injection in rapid7 (CVE-2026-8664)
OS command injection in rapid7 (CVE-2026-8664). Data can be tampered with by attackers.
|
| CVE-2026-8592 |
|
OS Command Injection in rapid7 (CVE-2026-8592)
OS command injection in rapid7 (CVE-2026-8592). Confidential information can be exposed externally.
|
| CVE-2026-8659 |
|
OS Command Injection in rapid7 (CVE-2026-8659)
OS command injection in rapid7 (CVE-2026-8659). Data can be tampered with by attackers.
|
| CVE-2026-8663 |
|
OS Command Injection in rapid7 (CVE-2026-8663)
OS command injection in rapid7 (CVE-2026-8663). Data can be tampered with by attackers.
|
| CVE-2026-7572 |
|
Vulnerability in www.velocidex.com/golang/velociraptor (CVE-2026-7572)
vulnerability in www.velocidex.com/golang/velociraptor (CVE-2026-7572). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `0.76.5` or later.
|
| CVE-2026-7573 |
|
Vulnerability in www.velocidex.com/golang/velociraptor (CVE-2026-7573)
vulnerability in www.velocidex.com/golang/velociraptor (CVE-2026-7573). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `0.76.5` or later.
|
| CVE-2026-4482 |
|
Vulnerability in rapid7 (CVE-2026-4482)
vulnerability in rapid7 (CVE-2026-4482). Confidential information can be exposed externally.
|
| CVE-2026-4837 |
|
Vulnerability in rapid7 (CVE-2026-4837)
vulnerability in rapid7 (CVE-2026-4837). Successful exploitation can lead to full system takeover.
|
| CVE-2017-5264 |
|
Cross-Site Request Forgery (CSRF) in csrf (CVE-2017-5264)
vulnerability in csrf (CVE-2017-5264). Successful exploitation can lead to full system takeover.
|
| CVE-2017-15084 |
|
The web UI in Rapid7 Metasploit before 4.14.1-20170828 allows logout CSRF, aka R7-2017-22.
The web UI in Rapid7 Metasploit before 4.14.1-20170828 allows logout CSRF, aka R7-2017-22.
|
| CVE-2017-5244 |
|
Cross-Site Request Forgery (CSRF) in csrf (CVE-2017-5244)
vulnerability in csrf (CVE-2017-5244). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-5243 |
|
Vulnerability in rapid7 (CVE-2017-5243)
vulnerability in rapid7 (CVE-2017-5243). Successful exploitation can lead to full system takeover.
|
| CVE-2017-5240 |
|
Buffer Overflow in dos (CVE-2017-5240)
vulnerability in dos (CVE-2017-5240). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-5236 |
|
Vulnerability in rapid7 (CVE-2017-5236)
vulnerability in rapid7 (CVE-2017-5236). Successful exploitation can lead to full system takeover.
|
| CVE-2017-5235 |
|
Vulnerability in rapid7 (CVE-2017-5235)
vulnerability in rapid7 (CVE-2017-5235). Successful exploitation can lead to full system takeover.
|
| CVE-2017-5234 |
|
Vulnerability in rapid7 (CVE-2017-5234)
vulnerability in rapid7 (CVE-2017-5234). Successful exploitation can lead to full system takeover.
|
| CVE-2017-5233 |
|
Vulnerability in rapid7 (CVE-2017-5233)
vulnerability in rapid7 (CVE-2017-5233). Successful exploitation can lead to full system takeover.
|
| CVE-2017-5232 |
|
Vulnerability in rapid7 (CVE-2017-5232)
vulnerability in rapid7 (CVE-2017-5232). Successful exploitation can lead to full system takeover.
|
| CVE-2017-5231 |
|
Path Traversal in path-traversal (CVE-2017-5231)
path traversal in path-traversal (CVE-2017-5231). Confidential information can be exposed externally.
|
| CVE-2017-5230 |
|
Vulnerability in rapid7 (CVE-2017-5230)
vulnerability in rapid7 (CVE-2017-5230). Successful exploitation can lead to full system takeover.
|
| CVE-2017-5229 |
|
Path Traversal in path-traversal (CVE-2017-5229)
path traversal in path-traversal (CVE-2017-5229). Confidential information can be exposed externally.
|
| CVE-2017-5228 |
|
Path Traversal in path-traversal (CVE-2017-5228)
path traversal in path-traversal (CVE-2017-5228). Confidential information can be exposed externally.
|