CVEs from 2017
Total
11,721
critical
critical 1,647
high
high 5,041
medium
medium 4,168
low
low 159
% Critical
14.1%
% with KEV
0.7%
% with exploit
1.8%
Top vendors
Top products
- imagemagick 1,426
- joomla\! 932
- kanboard 848
- ntp 762
- tomcat 676
- mahara 572
- postgresql 492
- asterisk 435
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2017-2894 | critical | 9.8 | 9.8 | 9y ago | An exploitable stack buffer overflow vulnerability exists in the MQTT packet parsing functionality of Cesanta Mongoose 6.8. A specially crafted MQTT SUBSCRIBE packet can cause a stack buffer overflow… | |||
| CVE-2017-2892 | critical | 9.8 | 9.8 | 9y ago | An exploitable arbitrary memory read vulnerability exists in the MQTT packet parsing functionality of Cesanta Mongoose 6.8. A specially crafted MQTT packet can cause an arbitrary out-of-bounds memory… | |||
| CVE-2017-2891 | critical | 9.8 | 9.8 | 9y ago | An exploitable use-after-free vulnerability exists in the HTTP server implementation of Cesanta Mongoose 6.8. An ordinary HTTP POST request with a CGI target can cause a reuse of previously freed poi… | |||
| CVE-2017-2864 | critical | 9.8 | 9.8 | 9y ago | An exploitable vulnerability exists in the generation of authentication token functionality of Circle with Disney. Specially crafted network packets can cause a valid authentication token to be retur… | |||
| CVE-2017-12085 | critical | 9.8 | 9.8 | 9y ago | An exploitable routing vulnerability exists in the Circle with Disney cloud infrastructure. A specially crafted packet can make the Circle cloud route a packet to any arbitrary Circle device. An atta… | |||
| CVE-2017-15887 | critical | 9.8 | 9.8 | 9y ago | An improper restriction of excessive authentication attempts vulnerability in /principals in Synology CardDAV Server before 6.0.7-0085 allows remote attackers to obtain user credentials via a brute-f… | |||
| CVE-2017-16638 | critical | 9.8 | 9.8 | 9y ago | The Gentoo net-misc/vde package before version 2.3.2-r4 may allow members of the "qemu" group to gain root privileges by creating a hard link in a directory on which "chown" is called recursively by … | |||
| CVE-2017-16524 | high | 8.8 | 9.8 | 9y ago | Web Viewer 1.0.0.193 on Samsung SRN-1670D devices suffers from an Unrestricted file upload vulnerability: 'network_ssl_upload.php' allows remote authenticated attackers to upload and execute arbitrar… | |||
| CVE-2017-16548 | critical | 9.8 | 9.8 | 9y ago | The receive_xattr function in xattrs.c in rsync 3.1.2 and 3.1.3-development does not check for a trailing '\0' character in an xattr name, which allows remote attackers to cause a denial of service (… | |||
| CVE-2017-16543 | critical | 9.8 | 9.8 | 9y ago | Zoho ManageEngine Applications Manager 13 before build 13500 allows SQL injection via GraphicalView.do, as demonstrated by a crafted viewProps yCanvas field or viewid parameter. | |||
| CVE-2017-1000171 | critical | 9.8 | 9.8 | 9y ago | Mahara Mobile before 1.2.1 is vulnerable to passwords being sent to the Mahara access log in plain text. | |||
| CVE-2017-1000154 | critical | 9.8 | 9.8 | 9y ago | Mahara 15.04 before 15.04.8 and 15.10 before 15.10.4 and 16.04 before 16.04.2 are vulnerable to some authentication methods, which do not use Mahara's built-in login form, still allowing users to log… | |||
| CVE-2017-1000153 | critical | 9.8 | 9.8 | 9y ago | Mahara 15.04 before 15.04.10 and 15.10 before 15.10.6 and 16.04 before 16.04.4 are vulnerable to incorrect access control after the password reset link is sent via email and then user changes default… | |||
| CVE-2017-1000152 | critical | 9.8 | 9.8 | 9y ago | Mahara 15.04 before 15.04.7 and 15.10 before 15.10.3 running PHP 5.3 are vulnerable to one user being logged in as another user on a separate computer as the same session ID is served. This situation… | |||
| CVE-2017-16523 | critical | 9.8 | 9.8 | 9y ago | MitraStar GPT-2541GNAC (HGU) 1.00(VNJ0)b1 and DSL-100HN-T1 ES_113WJY0b16 devices have a zyad1234 password for the zyad1234 account, which is equivalent to root and undocumented. | |||
| CVE-2017-11767 | critical | 9.8 | 9.8 | 9y ago | ChakraCore vulnerable to privilege escalation | |||
| CVE-2017-16510 | critical | 9.8 | 9.8 | 9y ago | WordPress before 4.8.3 is affected by an issue where $wpdb->prepare() can create unexpected and unsafe queries leading to potential SQL injection (SQLi) in plugins and themes, as demonstrated by a "d… | |||
| CVE-2017-1000121 | critical | 9.8 | 9.8 | 9y ago | The UNIX IPC layer in WebKit, including WebKitGTK+ prior to 2.16.3, does not properly validate message size metadata, allowing a compromised secondary process to trigger an integer overflow and subse… | |||
| CVE-2017-1000245 | critical | 9.8 | 9.8 | 9y ago | Jenkins SSH Plugin user passwords for encrypted SSH keys stored in plaintext | |||
| CVE-2017-14027 | critical | 9.8 | 9.8 | 9y ago | A Use of Hard-coded Credentials issue was discovered in Korenix JetNet JetNet5018G version 1.4, JetNet5310G version 1.4a, JetNet5428G-2G-2FX version 1.4, JetNet5628G-R version 1.4, JetNet5628G versio… | |||
| CVE-2017-14021 | critical | 9.8 | 9.8 | 9y ago | A Use of Hard-coded Cryptographic Key issue was discovered in Korenix JetNet JetNet5018G version 1.4, JetNet5310G version 1.4a, JetNet5428G-2G-2FX version 1.4, JetNet5628G-R version 1.4, JetNet5628G … | |||
| CVE-2017-14375 | critical | 9.8 | 9.8 | 9y ago | EMC Unisphere for VMAX Virtual Appliance (vApp) versions prior to 8.4.0.15, EMC Solutions Enabler Virtual Appliance versions prior to 8.4.0.15, EMC VASA Virtual Appliance versions prior to 8.4.0.512,… | |||
| CVE-2017-14356 | critical | 9.8 | 9.8 | 9y ago | An SQL Injection vulnerability in HP ArcSight ESM and HP ArcSight ESM Express, in any 6.x version prior to 6.9.1c Patch 4 or 6.11.0 Patch 1. This vulnerability could be exploited remotely to allow SQ… | |||
| CVE-2017-15993 | critical | 9.8 | 9.8 | 9y ago | Zomato Clone Script allows SQL Injection via the restaurant-menu.php resid parameter. | |||
| CVE-2017-15992 | critical | 9.8 | 9.8 | 9y ago | Website Broker Script allows SQL Injection via the 'status_id' Parameter to status_list.php. | |||
| CVE-2017-15991 | critical | 9.8 | 9.8 | 9y ago | Vastal I-Tech Agent Zone (aka The Real Estate Script) allows SQL Injection in searchCommercial.php via the property_type, city, or posted_by parameter, or searchResidential.php via the property_type,… | |||
| CVE-2017-15990 | critical | 9.8 | 9.8 | 9y ago | Php Inventory & Invoice Management System allows Arbitrary File Upload via dashboard/edit_myaccountdetail/. | |||
| CVE-2017-15989 | critical | 9.8 | 9.8 | 9y ago | Online Exam Test Application allows SQL Injection via the resources.php sort parameter in a category action. | |||
| CVE-2017-15988 | critical | 9.8 | 9.8 | 9y ago | Nice PHP FAQ Script allows SQL Injection via the index.php nice_theme parameter, a different vulnerability than CVE-2008-6525. | |||
| CVE-2017-15987 | critical | 9.8 | 9.8 | 9y ago | Fake Magazine Cover Script allows SQL Injection via the rate.php value parameter or the content.php id parameter. | |||
| CVE-2017-15986 | critical | 9.8 | 9.8 | 9y ago | CPA Lead Reward Script allows SQL Injection via the username parameter. | |||
| CVE-2017-15985 | critical | 9.8 | 9.8 | 9y ago | Basic B2B Script allows SQL Injection via the product_view1.php pid or id parameter. | |||
| CVE-2017-15984 | critical | 9.8 | 9.8 | 9y ago | Creative Management System (CMS) Lite 1.4 allows SQL Injection via the S parameter to index.php. | |||
| CVE-2017-15983 | critical | 9.8 | 9.8 | 9y ago | MyMagazine Magazine & Blog CMS 1.0 allows SQL Injection via the id parameter to admin/admin_process.php for form editing. | |||
| CVE-2017-15982 | critical | 9.8 | 9.8 | 9y ago | Dynamic News Magazine & Blog CMS 1.0 allows SQL Injection via the id parameter to admin/admin_process.php for form editing. | |||
| CVE-2017-15981 | critical | 9.8 | 9.8 | 9y ago | Responsive Newspaper Magazine & Blog CMS 1.0 allows SQL Injection via the id parameter to admin/admin_process.php for form editing. | |||
| CVE-2017-15980 | critical | 9.8 | 9.8 | 9y ago | US Zip Codes Database Script 1.0 allows SQL Injection via the state parameter. | |||
| CVE-2017-15979 | critical | 9.8 | 9.8 | 9y ago | Shareet - Photo Sharing Social Network 1.0 allows SQL Injection via the photo parameter. | |||
| CVE-2017-15978 | critical | 9.8 | 9.8 | 9y ago | AROX School ERP PHP Script 1.0 allows SQL Injection via the office_admin/ id parameter. | |||
| CVE-2017-15977 | critical | 9.8 | 9.8 | 9y ago | Protected Links - Expiring Download Links 1.0 allows SQL Injection via the username parameter. | |||
| CVE-2017-7411 | high | 8.8 | 9.8 | 9y ago | An issue was discovered in Enalean Tuleap 9.6 and prior versions. The vulnerability exists because the User::getRecentElements() method is using the unserialize() function with a preference value tha… | |||
| CVE-2017-16228 | critical | 9.8 | 9.8 | 9y ago | Dulwich before 0.18.5, when an SSH subprocess is used, allows remote attackers to execute arbitrary commands via an ssh URL with an initial dash character in the hostname, a related issue to CVE-2017… | |||
| CVE-2017-15999 | critical | 9.8 | 9.8 | 9y ago | In the "NQ Contacts Backup & Restore" application 1.1 for Android, no HTTPS is used for transmitting login and synced user data. When logging in, the username is transmitted in cleartext along with a… | |||
| CVE-2017-15994 | critical | 9.8 | 9.8 | 9y ago | rsync 3.1.3-development before 2017-10-24 mishandles archaic checksums, which makes it easier for remote attackers to bypass intended access restrictions. NOTE: the rsync development branch has signi… | |||
| CVE-2017-15976 | critical | 9.8 | 9.8 | 9y ago | ZeeBuddy 2x allows SQL Injection via the admin/editadgroup.php groupid parameter, a different vulnerability than CVE-2008-3604. | |||
| CVE-2017-15975 | critical | 9.8 | 9.8 | 9y ago | Vastal I-Tech Dating Zone 0.9.9 allows SQL Injection via the 'product_id' to add_to_cart.php, a different vulnerability than CVE-2008-4461. | |||
| CVE-2017-15974 | critical | 9.8 | 9.8 | 9y ago | tPanel 2009 allows SQL injection for Authentication Bypass via 'or 1=1 or ''=' to login.php. | |||
| CVE-2017-15973 | critical | 9.8 | 9.8 | 9y ago | Sokial Social Network Script 1.0 allows SQL Injection via the id parameter to admin/members_view.php. | |||
| CVE-2017-15972 | critical | 9.8 | 9.8 | 9y ago | SoftDatepro Dating Social Network 1.3 allows SQL Injection via the viewprofile.php profid parameter, the viewmessage.php sender_id parameter, or the /admin Email field, a related issue to CVE-2017-15… | |||
| CVE-2017-15971 | critical | 9.8 | 9.8 | 9y ago | Same Sex Dating Software Pro 1.0 allows SQL Injection via the viewprofile.php profid parameter, the viewmessage.php sender_id parameter, or the /admin Email field, a related issue to CVE-2017-15972. | |||
| CVE-2017-15970 | critical | 9.8 | 9.8 | 9y ago | PHP CityPortal 2.0 allows SQL Injection via the nid parameter to index.php in a page=news action, or the cat parameter. | |||
| CVE-2017-15969 | critical | 9.8 | 9.8 | 9y ago | PG All Share Video 1.0 allows SQL Injection via the PATH_INFO to search/tag, friends/index, users/profile, or video_catalog/category. | |||
| CVE-2017-15968 | critical | 9.8 | 9.8 | 9y ago | MyBuilder Clone 1.0 allows SQL Injection via the phpsqlsearch_genxml.php subcategory parameter. | |||
| CVE-2017-15967 | critical | 9.8 | 9.8 | 9y ago | Mailing List Manager Pro 3.0 allows SQL Injection via the edit parameter to admin/users in a sort=login action, or the edit parameter to admin/template. | |||
| CVE-2017-15966 | critical | 9.8 | 9.8 | 9y ago | The Zh YandexMap (aka com_zhyandexmap) component 6.1.1.0 for Joomla! allows SQL Injection via the placemarklistid parameter to index.php. | |||
| CVE-2017-15965 | critical | 9.8 | 9.8 | 9y ago | The NS Download Shop (aka com_ns_downloadshop) component 2.2.6 for Joomla! allows SQL Injection via the id parameter in an invoice.create action. | |||
| CVE-2017-15964 | critical | 9.8 | 9.8 | 9y ago | Job Board Script Software allows SQL Injection via the PATH_INFO to a /job-details URI. | |||
| CVE-2017-15963 | critical | 9.8 | 9.8 | 9y ago | iTech Gigs Script 1.21 allows SQL Injection via the browse-scategory.php sc parameter or the service-provider.php ser parameter. | |||
| CVE-2017-15962 | critical | 9.8 | 9.8 | 9y ago | iStock Management System 1.0 allows Arbitrary File Upload via user/profile. | |||
| CVE-2017-15961 | critical | 9.8 | 9.8 | 9y ago | iProject Management System 1.0 allows SQL Injection via the ID parameter to index.php. | |||
| CVE-2017-15960 | critical | 9.8 | 9.8 | 9y ago | Article Directory Script 3.0 allows SQL Injection via the id parameter to author.php or category.php. | |||
| CVE-2017-15959 | critical | 9.8 | 9.8 | 9y ago | Adult Script Pro 2.2.4 allows SQL Injection via the PATH_INFO to a /download URI, a different vulnerability than CVE-2007-6576. | |||
| CVE-2017-15958 | critical | 9.8 | 9.8 | 9y ago | D-Park Pro Domain Parking Script 1.0 allows SQL Injection via the username to admin/loginform.php. | |||
| CVE-2017-15946 | critical | 9.8 | 9.8 | 9y ago | In the com_tag component 1.7.6 for Joomla!, a SQL injection vulnerability is located in the `tag` parameter to index.php. The request method to execute is GET. | |||
| CVE-2017-15366 | critical | 9.8 | 9.8 | 9y ago | Before Thornberry NDoc version 8.0, laptop clients and the server have default database (Cache) users set up with a single password. This password is left behind in a cleartext log file during client… | |||
| CVE-2017-15919 | critical | 9.8 | 9.8 | 9y ago | The ultimate-form-builder-lite plugin before 1.3.7 for WordPress has SQL Injection, with resultant PHP Object Injection, via wp-admin/admin-ajax.php. | |||
| CVE-2017-15907 | critical | 9.8 | 9.8 | 9y ago | SQL injection vulnerability in phpCollab 2.5.1 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter to newsdesk/newsdesk.php. | |||
| CVE-2017-15909 | critical | 9.8 | 9.8 | 9y ago | D-Link DGS-1500 Ax devices before 2.51B021 have a hardcoded password, which allows remote attackers to obtain shell access. | |||
| CVE-2017-14695 | critical | 9.8 | 9.8 | 9y ago | Directory traversal vulnerability in minion id validation in SaltStack Salt before 2016.3.8, 2016.11.x before 2016.11.8, and 2017.7.x before 2017.7.2 allows remote minions with incorrect credentials … | |||
| CVE-2017-15081 | critical | 9.8 | 9.8 | 9y ago | In PHPSUGAR PHP Melody CMS 2.6.1, SQL Injection exists via the playlist parameter to playlists.php. | |||
| CVE-2017-15580 | critical | 9.8 | 9.8 | 9y ago | osTicket 1.10.1 provides a functionality to upload 'html' files with associated formats. However, it does not properly validate the uploaded file's contents and thus accepts any type of file, such as… | |||
| CVE-2017-15381 | critical | 9.8 | 9.8 | 9y ago | SQL Injection exists in E-Sic 1.0 via the f parameter to esiclivre/restrito/inc/buscacep.php (aka the zip code search script). | |||
| CVE-2017-15379 | critical | 9.8 | 9.8 | 9y ago | An authentication bypass exists in the E-Sic 1.0 /index (aka login) URI via '=''or' values for the username and password. | |||
| CVE-2017-12796 | critical | 9.8 | 9.8 | 9y ago | The Reporting Compatibility Add On before 2.0.4 for OpenMRS, as distributed in OpenMRS Reference Application before 2.6.1, does not authenticate users when deserializing XML input into ReportSchema o… | |||
| CVE-2017-7130 | critical | 9.8 | 9.8 | 9y ago | An issue was discovered in certain Apple products. iOS before 11 is affected. macOS before 10.13 is affected. tvOS before 11 is affected. watchOS before 4 is affected. The issue involves the third-pa… | |||
| CVE-2017-7129 | critical | 9.8 | 9.8 | 9y ago | An issue was discovered in certain Apple products. iOS before 11 is affected. macOS before 10.13 is affected. tvOS before 11 is affected. watchOS before 4 is affected. The issue involves the third-pa… | |||
| CVE-2017-7128 | critical | 9.8 | 9.8 | 9y ago | An issue was discovered in certain Apple products. iOS before 11 is affected. macOS before 10.13 is affected. tvOS before 11 is affected. watchOS before 4 is affected. The issue involves the third-pa… | |||
| CVE-2017-7126 | critical | 9.8 | 9.8 | 9y ago | An issue was discovered in certain Apple products. macOS before 10.13 is affected. The issue involves the third-party "file" product. Versions before 5.30 allow remote attackers to cause a denial of … | |||
| CVE-2017-7125 | critical | 9.8 | 9.8 | 9y ago | An issue was discovered in certain Apple products. macOS before 10.13 is affected. The issue involves the third-party "file" product. Versions before 5.30 allow remote attackers to cause a denial of … | |||
| CVE-2017-7124 | critical | 9.8 | 9.8 | 9y ago | An issue was discovered in certain Apple products. macOS before 10.13 is affected. The issue involves the third-party "file" product. Versions before 5.30 allow remote attackers to cause a denial of … | |||
| CVE-2017-7123 | critical | 9.8 | 9.8 | 9y ago | An issue was discovered in certain Apple products. macOS before 10.13 is affected. The issue involves the third-party "file" product. Versions before 5.30 allow remote attackers to cause a denial of … | |||
| CVE-2017-7122 | critical | 9.8 | 9.8 | 9y ago | An issue was discovered in certain Apple products. macOS before 10.13 is affected. The issue involves the third-party "file" product. Versions before 5.30 allow remote attackers to cause a denial of … | |||
| CVE-2017-7121 | critical | 9.8 | 9.8 | 9y ago | An issue was discovered in certain Apple products. macOS before 10.13 is affected. The issue involves the third-party "file" product. Versions before 5.30 allow remote attackers to cause a denial of … | |||
| CVE-2017-7112 | critical | 9.8 | 9.8 | 9y ago | An issue was discovered in certain Apple products. iOS before 11 is affected. tvOS before 11 is affected. watchOS before 4 is affected. The issue involves the "Wi-Fi" component. It might allow remote… | |||
| CVE-2017-7110 | critical | 9.8 | 9.8 | 9y ago | An issue was discovered in certain Apple products. iOS before 11 is affected. tvOS before 11 is affected. watchOS before 4 is affected. The issue involves the "Wi-Fi" component. It might allow remote… | |||
| CVE-2017-7108 | critical | 9.8 | 9.8 | 9y ago | An issue was discovered in certain Apple products. iOS before 11 is affected. tvOS before 11 is affected. watchOS before 4 is affected. The issue involves the "Wi-Fi" component. It might allow remote… | |||
| CVE-2017-7105 | critical | 9.8 | 9.8 | 9y ago | An issue was discovered in certain Apple products. iOS before 11 is affected. tvOS before 11 is affected. watchOS before 4 is affected. The issue involves the "Wi-Fi" component. It might allow remote… | |||
| CVE-2017-7103 | critical | 9.8 | 9.8 | 9y ago | An issue was discovered in certain Apple products. iOS before 11 is affected. tvOS before 11 is affected. watchOS before 4 is affected. The issue involves the "Wi-Fi" component. It might allow remote… | |||
| CVE-2017-15804 | critical | 9.8 | 9.8 | 9y ago | The glob function in glob.c in the GNU C Library (aka glibc or libc6) before 2.27 contains a buffer overflow during unescaping of user names with the ~ operator. | |||
| CVE-2017-15670 | critical | 9.8 | 9.8 | 9y ago | The GNU C Library (aka glibc or libc6) before 2.27 contains an off-by-one error leading to a heap-based buffer overflow in the glob function in glob.c, related to the processing of home directories u… | |||
| CVE-2017-6165 | critical | 9.8 | 9.8 | 9y ago | In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, GTM, Link Controller, PEM, and WebSafe 11.5.1 HF6 through 11.5.4 HF4, 11.6.0 through 11.6.1 HF1, and 12.0.0 through 12.1.2 on VIPRION platforms o… | |||
| CVE-2017-5636 | critical | 9.8 | 9.8 | 9y ago | Injection in Apache NiFi | |||
| CVE-2017-10366 | critical | 9.8 | 9.8 | 9y ago | Vulnerability in the PeopleSoft Enterprise PT PeopleTools component of Oracle PeopleSoft Products (subcomponent: Performance Monitor). Supported versions that are affected are 8.54, 8.55 and 8.56. Ea… | |||
| CVE-2017-14322 | critical | 9.8 | 9.8 | 9y ago | The function in charge to check whether the user is already logged in init.php in Interspire Email Marketer (IEM) prior to 6.1.6 allows remote attackers to bypass authentication and obtain administra… | |||
| CVE-2017-15579 | critical | 9.8 | 9.8 | 9y ago | In PHPSUGAR PHP Melody before 2.7.3, SQL Injection exists via an aa_pages_per_page cookie in a playlist action to watch.php. | |||
| CVE-2017-13999 | critical | 9.8 | 9.8 | 9y ago | A Stack-based Buffer Overflow issue was discovered in WECON LEVI Studio HMI Editor v1.8.1 and prior. Multiple stack-based buffer overflow vulnerabilities have been identified in which the application… | |||
| CVE-2017-15539 | critical | 9.8 | 9.8 | 9y ago | SQL Injection exists in zorovavi/blog through 2017-10-17 via the id parameter to recept.php. | |||
| CVE-2017-3761 | critical | 9.8 | 9.8 | 9y ago | The Lenovo Service Framework Android application executes some system commands without proper sanitization of external input. In certain cases, this could lead to command injection which, in turn, co… | |||
| CVE-2017-3758 | critical | 9.8 | 9.8 | 9y ago | Improper access controls on several Android components in the Lenovo Service Framework application can be exploited to enable remote code execution. | |||
| CVE-2017-9367 | critical | 9.8 | 9.8 | 9y ago | A directory traversal vulnerability in the BlackBerry Workspaces Server could potentially allow an attacker to execute or upload arbitrary files, or reveal the content of arbitrary files anywhere on … |