VIR Vulnerability Intelligence Relay

Search

Found 3,958 results in 2051ms · Match type: Filtered list

Severitycriticalhighmediumlowunknown
0
KEVHas exploit
Reset
CVE Severity CVSS Risk Flags OS Vendor Published Description
CVE-2017-16902 high 7.5 8.5 EXP 9y ago On the Vonage VDV-23 115 3.2.11-0.9.40 home router, sending a long string of characters in the loginPassword and/or loginUsername field to goform/login causes the router to reboot.
CVE-2017-16894 high 7.5 8.5 EXPFIX debian debian laravel 9y ago In Laravel framework through 5.5.21, remote attackers can obtain sensitive information (such as externally usable passwords) via a direct request for the /.env URI. NOTE: this CVE is only about Larav…
CVE-2017-6168 high 7.4 8.4 EXP f5 9y ago On BIG-IP versions 11.6.0-11.6.2 (fixed in 11.6.2 HF1), 12.0.0-12.1.2 HF1 (fixed in 12.1.2 HF2), or 13.0.0-13.0.0 HF2 (fixed in 13.0.0 HF3) a virtual server configured with a Client SSL profile may b…
CVE-2017-1000170 high 7.5 8.5 EXP jqueryfiletree_project 9y ago jqueryFileTree vulnerable to Directory Traversal
CVE-2017-16777 high 7.8 8.8 EXP hashicorp 9y ago If HashiCorp Vagrant VMware Fusion plugin (aka vagrant-vmware-fusion) 5.0.3 is installed but VMware Fusion is not, a local attacker can create a fake application directory and exploit the suid sudo h…
CVE-2017-15806 high 8.1 9.1 EXP zetacomponents 9y ago Zeta Components Mail Arbitrary code execution via a crafted email address
CVE-2017-14961 high 7.8 8.8 EXP ikarussecurity 9y ago In IKARUS anti.virus 2.16.7, the ntguard.sys driver contains an Arbitrary Write vulnerability because of not validating input values from IOCtl 0x8300000c.
CVE-2017-7851 high 8.8 9.8 EXP 9y ago D-Link DCS-936L devices with firmware before 1.05.07 have an inadequate CSRF protection mechanism that requires the device's IP address to be a substring of the HTTP Referer header.
CVE-2017-11873 high 7.5 8.5 EXP windows windows microsoft 9y ago ChakraCore and Microsoft Edge in Windows 10 1511, 1607, 1703, 1709, Windows Server 2016 and Windows Server, version 1709 allows an attacker to gain the same user rights as the current user, due to ho…
CVE-2017-11870 high 7.5 8.5 EXP windows windows microsoft 9y ago Chakra Core vulnerable to privilege escalation when writing to JavaScript null scope objects
CVE-2017-11861 high 7.5 8.5 EXP windows windows microsoft 9y ago Microsoft Edge in Windows 10 1607, 1703, 1709, Windows Server 2016 and Windows Server, version 1709 allows an attacker to gain the same user rights as the current user, due to how the scripting engin…
CVE-2017-11855 high 7.5 8.5 EXP windows windows microsoft 9y ago Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, 1709, Windows Server 2…
CVE-2017-11841 high 7.5 8.5 EXP windows windows microsoft 9y ago ChakraCore and Microsoft Edge in Windows 10 Gold, 1511, 1607, 1703, 1709, Windows Server 2016 and Windows Server, version 1709 allows an attacker to gain the same user rights as the current user, due…
CVE-2017-11840 high 7.5 8.5 EXP windows windows microsoft 9y ago ChakraCore and Microsoft Edge in Windows 10 Gold, 1511, 1607, 1703, 1709, Windows Server 2016 and Windows Server, version 1709 allows an attacker to gain the same user rights as the current user, due…
CVE-2017-11839 high 7.5 8.5 EXP windows windows microsoft 9y ago Microsoft Edge in Windows 10 Gold, 1511, 1607, 1703, 1709, Windows Server 2016 and Windows Server, version 1709 allows an attacker to take control of an affected system, due to how the scripting engi…
CVE-2017-12636 high 7.2 8.2 EXPFIX arch arch sles apache 9y ago multiple issues in couchdb
CVE-2017-12635 critical 9.8 10.0 EXPFIX slesarch arch apache 9y ago multiple issues in couchdb
CVE-2017-16806 high 7.5 8.5 EXP ulterius 9y ago The Process function in RemoteTaskServer/WebServer/HttpServer.cs in Ulterius before 1.9.5.0 allows HTTP server directory traversal.
CVE-2017-13802 high 8.8 9.8 EXPFIX macos macosdebian debian apple 9y ago An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1 is affected. iCloud before 7.1 on Windows is affected. iTunes before 12.7.1 on Windows is affected…
CVE-2017-13798 high 8.8 9.8 EXPFIX macos macosdebian debian apple 9y ago An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1 is affected. iCloud before 7.1 on Windows is affected. iTunes before 12.7.1 on Windows is affected…
CVE-2017-13797 high 8.8 9.8 EXPFIX macos macos apple 9y ago An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1 is affected. iCloud before 7.1 on Windows is affected. iTunes before 12.7.1 on Windows is affected…
CVE-2017-13796 high 8.8 9.8 EXPFIX macos macosdebian debian apple 9y ago An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1 is affected. iCloud before 7.1 on Windows is affected. iTunes before 12.7.1 on Windows is affected…
CVE-2017-13795 high 8.8 9.8 EXPFIX macos macosdebian debian apple 9y ago An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1 is affected. iCloud before 7.1 on Windows is affected. iTunes before 12.7.1 on Windows is affected…
CVE-2017-13794 high 8.8 9.8 EXPFIX macos macosdebian debian apple 9y ago An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1 is affected. iCloud before 7.1 on Windows is affected. iTunes before 12.7.1 on Windows is affected…
CVE-2017-13792 high 8.8 9.8 EXPFIX macos macosdebian debian apple 9y ago An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1 is affected. iCloud before 7.1 on Windows is affected. iTunes before 12.7.1 on Windows is affected…
CVE-2017-13791 high 8.8 9.8 EXPFIX macos macosdebian debian apple 9y ago An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1 is affected. iCloud before 7.1 on Windows is affected. iTunes before 12.7.1 on Windows is affected…
CVE-2017-13785 high 8.8 9.8 EXPFIX macos macosdebian debian apple 9y ago An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1 is affected. iCloud before 7.1 on Windows is affected. iTunes before 12.7.1 on Windows is affected…
CVE-2017-13784 high 8.8 9.8 EXPFIX macos macosdebian debian apple 9y ago An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1 is affected. iCloud before 7.1 on Windows is affected. iTunes before 12.7.1 on Windows is affected…
CVE-2017-13783 high 8.8 9.8 EXPFIX macos macosdebian debian apple 9y ago An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari before 11.0.1 is affected. iCloud before 7.1 on Windows is affected. iTunes before 12.7.1 on Windows is affected…
CVE-2017-16783 critical 9.8 10.0 EXP cmsmadesimple 9y ago In CMS Made Simple 2.1.6, there is Server-Side Template Injection via the cntnt01detailtemplate parameter.
CVE-2017-16780 critical 9.8 10.0 EXP mybb 9y ago The installer in MyBB before 1.8.13 allows remote attackers to execute arbitrary code by writing to the configuration file.
CVE-2017-16562 critical 9.8 10.0 EXP userproplugin 9y ago The UserPro plugin before 4.9.17.1 for WordPress, when used on a site with the "admin" username, allows remote attackers to bypass authentication and obtain administrative access via a "true" value f…
CVE-2017-16249 high 7.5 8.5 EXP 9y ago The Debut embedded http server contains a remotely exploitable denial of service where a single malformed HTTP POST request can cause the server to hang until eventually replying (~300 seconds) with …
CVE-2017-12969 high 8.8 9.8 EXP avaya 9y ago Buffer overflow in the ViewerCtrlLib.ViewerCtrl ActiveX control in Avaya IP Office Contact Center before 10.1.1 allows remote attackers to cause a denial of service (heap corruption and crash) or exe…
CVE-2017-11309 critical 9.6 10.0 EXP avaya 9y ago Buffer overflow in the SoftConsole client in Avaya IP Office before 10.1.1 allows remote servers to execute arbitrary code via a long response.
CVE-2015-3933 critical 9.8 10.0 EXP metalgenix 9y ago MetalGenix GeniXCMS vulnerable to SQL Injection
CVE-2017-16642 high 7.5 8.5 EXP slesdebian debianubuntu ubuntu phpnetapp 9y ago In PHP before 5.6.32, 7.x before 7.0.25, and 7.1.x before 7.1.11, an error in the date extension's timelib_meridian handling of 'front of' and 'back of' directives could be used by attackers able to …
CVE-2017-6331 high 7.1 8.1 EXP symantec 9y ago Prior to SEP 14 RU1 Symantec Endpoint Protection product can encounter an issue of Tamper-Protection Bypass, which is a type of attack that bypasses the real time protection for the application that …
CVE-2017-16001 high 7.8 8.8 EXP hashicorp 9y ago In HashiCorp Vagrant VMware Fusion plugin (aka vagrant-vmware-fusion) 5.0.1, a local attacker or malware can silently subvert the plugin update process in order to escalate to root privileges.
CVE-2017-16570 high 8.8 9.8 EXP keystonejs 9y ago Cross-Site Request Forgery (CSRF) in keystone
CVE-2017-16524 high 8.8 9.8 EXP hanwhasecurity 9y ago Web Viewer 1.0.0.193 on Samsung SRN-1670D devices suffers from an Unrestricted file upload vulnerability: 'network_ssl_upload.php' allows remote authenticated attackers to upload and execute arbitrar…
CVE-2017-16543 critical 9.8 10.0 EXP zohocorp 9y ago Zoho ManageEngine Applications Manager 13 before build 13500 allows SQL injection via GraphicalView.do, as demonstrated by a crafted viewProps yCanvas field or viewid parameter.
CVE-2017-16542 high 8.8 9.8 EXP zohocorp 9y ago Zoho ManageEngine Applications Manager 13 before build 13500 allows Post-authentication SQL injection via the name parameter in a manageApplications.do?method=insert request.
CVE-2017-16513 high 7.8 8.8 EXP ipswitch 9y ago Ipswitch WS_FTP Professional before 12.6.0.3 has buffer overflows in the local search field and the backup locations field, aka WSCLT-1729.
CVE-2017-16237 high 7.8 8.8 EXP tgsoft 9y ago In Vir.IT eXplorer Anti-Virus before 8.5.42, the driver file (VIAGLT64.SYS) contains an Arbitrary Write vulnerability because of not validating input values from IOCtl 0x8273007C.
CVE-2017-12243 high 7.8 8.8 EXP 9y ago A vulnerability in the Cisco Unified Computing System (UCS) Manager, Cisco Firepower 4100 Series Next-Generation Firewall (NGFW), and Cisco Firepower 9300 Security Appliance could allow an authentica…
CVE-2017-15918 high 7.8 8.8 EXP ignitum 9y ago Sera 1.2 stores the user's login password in plain text in their home directory. This makes privilege escalation trivial and also exposes the user and system keychains to local attacks.
CVE-2017-16352 high 8.8 9.8 EXPFIX slesdebian debian graphicsmagick 9y ago GraphicsMagick 1.3.26 is vulnerable to a heap-based buffer overflow vulnerability found in the "Display visual image directory" feature of the DescribeImage() function of the magick/describe.c file. …
CVE-2017-16244 high 8.8 9.8 EXP octobercms 9y ago October CMS CSRF
CVE-2017-15884 high 7.0 8.0 EXP hashicorp 9y ago In HashiCorp Vagrant VMware Fusion plugin (aka vagrant-vmware-fusion) 5.0.0, a local attacker or malware can silently subvert the plugin update process in order to escalate to root privileges.
CVE-2017-15950 high 7.8 8.8 EXP flexense 9y ago Flexense SyncBreeze Enterprise version 10.1.16 is vulnerable to a buffer overflow that can be exploited for arbitrary code execution. The flaw is triggered by providing a long input into the "Destina…
CVE-2017-15993 critical 9.8 10.0 EXP zomato_clone_script_project 9y ago Zomato Clone Script allows SQL Injection via the restaurant-menu.php resid parameter.
CVE-2017-15992 critical 9.8 10.0 EXP website_broker_script_project 9y ago Website Broker Script allows SQL Injection via the 'status_id' Parameter to status_list.php.
CVE-2017-15991 critical 9.8 10.0 EXP vastal 9y ago Vastal I-Tech Agent Zone (aka The Real Estate Script) allows SQL Injection in searchCommercial.php via the property_type, city, or posted_by parameter, or searchResidential.php via the property_type,…
CVE-2017-15990 critical 9.8 10.0 EXP savsofteproducts 9y ago Php Inventory & Invoice Management System allows Arbitrary File Upload via dashboard/edit_myaccountdetail/.
CVE-2017-15989 critical 9.8 10.0 EXP online_exam_test_application_project 9y ago Online Exam Test Application allows SQL Injection via the resources.php sort parameter in a category action.
CVE-2017-15988 critical 9.8 10.0 EXP nicephpscripts 9y ago Nice PHP FAQ Script allows SQL Injection via the index.php nice_theme parameter, a different vulnerability than CVE-2008-6525.
CVE-2017-15987 critical 9.8 10.0 EXP fake_magazine_cover_script_project 9y ago Fake Magazine Cover Script allows SQL Injection via the rate.php value parameter or the content.php id parameter.
CVE-2017-15986 critical 9.8 10.0 EXP cpa_lead_reward_script_project 9y ago CPA Lead Reward Script allows SQL Injection via the username parameter.
CVE-2017-15985 critical 9.8 10.0 EXP readymadeb2bscript 9y ago Basic B2B Script allows SQL Injection via the product_view1.php pid or id parameter.
CVE-2017-15984 critical 9.8 10.0 EXP bekirk 9y ago Creative Management System (CMS) Lite 1.4 allows SQL Injection via the S parameter to index.php.
CVE-2017-15983 critical 9.8 10.0 EXP geniusocean 9y ago MyMagazine Magazine & Blog CMS 1.0 allows SQL Injection via the id parameter to admin/admin_process.php for form editing.
CVE-2017-15982 critical 9.8 10.0 EXP geniusocean 9y ago Dynamic News Magazine & Blog CMS 1.0 allows SQL Injection via the id parameter to admin/admin_process.php for form editing.
CVE-2017-15981 critical 9.8 10.0 EXP geniusocean 9y ago Responsive Newspaper Magazine & Blog CMS 1.0 allows SQL Injection via the id parameter to admin/admin_process.php for form editing.
CVE-2017-15980 critical 9.8 10.0 EXP rowindex 9y ago US Zip Codes Database Script 1.0 allows SQL Injection via the state parameter.
CVE-2017-15979 critical 9.8 10.0 EXP odallated 9y ago Shareet - Photo Sharing Social Network 1.0 allows SQL Injection via the photo parameter.
CVE-2017-15978 critical 9.8 10.0 EXP arox 9y ago AROX School ERP PHP Script 1.0 allows SQL Injection via the office_admin/ id parameter.
CVE-2017-15977 critical 9.8 10.0 EXP protectedlinks 9y ago Protected Links - Expiring Download Links 1.0 allows SQL Injection via the username parameter.
CVE-2017-15921 high 7.5 8.5 EXP watchdogdevelopment 9y ago In Watchdog Anti-Malware 2.74.186.150 and Online Security Pro 2.74.186.150, the zam32.sys driver contains a NULL pointer dereference vulnerability that gets triggered when sending an operation to ioc…
CVE-2017-15920 high 7.5 8.5 EXP watchdogdevelopment 9y ago In Watchdog Anti-Malware 2.74.186.150 and Online Security Pro 2.74.186.150, the zam32.sys driver contains a NULL pointer dereference vulnerability that gets triggered when sending an operation to ioc…
CVE-2017-7411 high 8.8 9.8 EXP enalean 9y ago An issue was discovered in Enalean Tuleap 9.6 and prior versions. The vulnerability exists because the User::getRecentElements() method is using the unserialize() function with a preference value tha…
CVE-2012-5357 critical 9.8 10.0 EXP ektron 9y ago Ektron Content Management System (CMS) before 8.02 SP5 uses the XslCompiledTransform class with enablescript set to true, which allows remote attackers to execute arbitrary code with NETWORK SERVICE …
CVE-2017-15976 critical 9.8 10.0 EXP zeescripts 9y ago ZeeBuddy 2x allows SQL Injection via the admin/editadgroup.php groupid parameter, a different vulnerability than CVE-2008-3604.
CVE-2017-15975 critical 9.8 10.0 EXP vastal 9y ago Vastal I-Tech Dating Zone 0.9.9 allows SQL Injection via the 'product_id' to add_to_cart.php, a different vulnerability than CVE-2008-4461.
CVE-2017-15974 critical 9.8 10.0 EXP datacomponents 9y ago tPanel 2009 allows SQL injection for Authentication Bypass via 'or 1=1 or ''=' to login.php.
CVE-2017-15973 critical 9.8 10.0 EXP sokial 9y ago Sokial Social Network Script 1.0 allows SQL Injection via the id parameter to admin/members_view.php.
CVE-2017-15972 critical 9.8 10.0 EXP softdatepro 9y ago SoftDatepro Dating Social Network 1.3 allows SQL Injection via the viewprofile.php profid parameter, the viewmessage.php sender_id parameter, or the /admin Email field, a related issue to CVE-2017-15…
CVE-2017-15971 critical 9.8 10.0 EXP softdatepro 9y ago Same Sex Dating Software Pro 1.0 allows SQL Injection via the viewprofile.php profid parameter, the viewmessage.php sender_id parameter, or the /admin Email field, a related issue to CVE-2017-15972.
CVE-2017-15970 critical 9.8 10.0 EXP phpcityportal 9y ago PHP CityPortal 2.0 allows SQL Injection via the nid parameter to index.php in a page=news action, or the cat parameter.
CVE-2017-15969 critical 9.8 10.0 EXP pilotgroup 9y ago PG All Share Video 1.0 allows SQL Injection via the PATH_INFO to search/tag, friends/index, users/profile, or video_catalog/category.
CVE-2017-15968 critical 9.8 10.0 EXP contractorscripts 9y ago MyBuilder Clone 1.0 allows SQL Injection via the phpsqlsearch_genxml.php subcategory parameter.
CVE-2017-15967 critical 9.8 10.0 EXP mailing-manager 9y ago Mailing List Manager Pro 3.0 allows SQL Injection via the edit parameter to admin/users in a sort=login action, or the edit parameter to admin/template.
CVE-2017-15966 critical 9.8 10.0 EXP zh_yandexmap_project 9y ago The Zh YandexMap (aka com_zhyandexmap) component 6.1.1.0 for Joomla! allows SQL Injection via the placemarklistid parameter to index.php.
CVE-2017-15965 critical 9.8 10.0 EXP nswd 9y ago The NS Download Shop (aka com_ns_downloadshop) component 2.2.6 for Joomla! allows SQL Injection via the id parameter in an invoice.create action.
CVE-2017-15964 critical 9.8 10.0 EXP nicephpscripts 9y ago Job Board Script Software allows SQL Injection via the PATH_INFO to a /job-details URI.
CVE-2017-15963 critical 9.8 10.0 EXP itechscripts 9y ago iTech Gigs Script 1.21 allows SQL Injection via the browse-scategory.php sc parameter or the service-provider.php ser parameter.
CVE-2017-15962 critical 9.8 10.0 EXP istock_management_system_project 9y ago iStock Management System 1.0 allows Arbitrary File Upload via user/profile.
CVE-2017-15961 critical 9.8 10.0 EXP iproject_management_system_project 9y ago iProject Management System 1.0 allows SQL Injection via the ID parameter to index.php.
CVE-2017-15960 critical 9.8 10.0 EXP yourarticlesdirectory 9y ago Article Directory Script 3.0 allows SQL Injection via the id parameter to author.php or category.php.
CVE-2017-15959 critical 9.8 10.0 EXP adultscriptpro 9y ago Adult Script Pro 2.2.4 allows SQL Injection via the PATH_INFO to a /download URI, a different vulnerability than CVE-2007-6576.
CVE-2017-15958 critical 9.8 10.0 EXP domainzaar 9y ago D-Park Pro Domain Parking Script 1.0 allows SQL Injection via the username to admin/loginform.php.
CVE-2017-15957 high 8.8 9.8 EXP ingenious_school_management_system_project 9y ago my_profile.php in Ingenious School Management System 2.3.0 allows a student or teacher to upload an arbitrary file.
CVE-2017-15956 high 7.5 8.5 EXP converto_video_downloader_\&_converter_project 9y ago ConverTo Video Downloader & Converter 1.4.1 allows Arbitrary File Download via the token parameter to download.php.
CVE-2014-2023 critical 9.8 10.0 EXP tapatalk 9y ago Multiple SQL injection vulnerabilities in the Tapatalk plugin 4.9.0 and earlier and 5.x through 5.2.1 for vBulletin allow remote attackers to execute arbitrary SQL commands via a crafted xmlrpc API r…
CVE-2017-15879 high 8.8 9.8 EXP keystonejs 9y ago Keystone is vulnerable to CSV injection
CVE-2017-15222 critical 9.8 10.0 EXP nftp_project 9y ago Buffer Overflow vulnerability in Ayukov NFTPD 2.0 and earlier allows remote attackers to execute arbitrary code.
CVE-2017-15081 critical 9.8 10.0 EXP phpsugar 9y ago In PHPSUGAR PHP Melody CMS 2.6.1, SQL Injection exists via the playlist parameter to playlists.php.
CVE-2017-13772 high 8.8 9.8 EXP 9y ago Multiple stack-based buffer overflows in TP-Link WR940N WiFi routers with hardware version 4 allow remote authenticated users to execute arbitrary code via the (1) ping_addr parameter to PingIframeRp…
CVE-2015-5533 high 7.2 8.2 EXP count_per_day_project 9y ago SQL injection vulnerability in counter-options.php in the Count Per Day plugin before 3.4.1 for WordPress allows remote authenticated administrators to execute arbitrary SQL commands via the cpd_keep…
CVE-2015-2878 high 8.8 9.8 EXP watchguard 9y ago Multiple cross-site request forgery (CSRF) vulnerabilities in Hexis HawkEye G 3.0.1.4912 allow remote attackers to hijack the authentication of administrators for requests that (1) add arbitrary acco…