CVEs from 2017
Total
11,796
critical
critical 1,647
high
high 5,041
medium
medium 4,168
low
low 159
% Critical
14.0%
% with KEV
0.7%
% with exploit
0.8%
Top vendors
Top products
- imagemagick 1,426
- joomla\! 932
- kanboard 848
- ntp 762
- tomcat 676
- mahara 572
- postgresql 492
- asterisk 435
| CVE | Severity | CVSS | Risk | Published | Description | Impact |
|---|---|---|---|---|---|---|
| CVE-2017-15977 | critical | 9.8 | 9.8 | 9y ago | Protected Links - Expiring Download Links 1.0 allows SQL Injection via the username parameter. | |
| CVE-2017-16228 | critical | 9.8 | 9.8 | 9y ago | Dulwich before 0.18.5, when an SSH subprocess is used, allows remote attackers to execute arbitrary commands via an ssh URL with an initial dash character in the hostname, a related issue to CVE-2017… | |
| CVE-2017-15999 | critical | 9.8 | 9.8 | 9y ago | In the "NQ Contacts Backup & Restore" application 1.1 for Android, no HTTPS is used for transmitting login and synced user data. When logging in, the username is transmitted in cleartext along with a… | |
| CVE-2017-15994 | critical | 9.8 | 9.8 | 9y ago | rsync 3.1.3-development before 2017-10-24 mishandles archaic checksums, which makes it easier for remote attackers to bypass intended access restrictions. NOTE: the rsync development branch has signi… | |
| CVE-2017-15976 | critical | 9.8 | 9.8 | 9y ago | ZeeBuddy 2x allows SQL Injection via the admin/editadgroup.php groupid parameter, a different vulnerability than CVE-2008-3604. | |
| CVE-2017-15975 | critical | 9.8 | 9.8 | 9y ago | Vastal I-Tech Dating Zone 0.9.9 allows SQL Injection via the 'product_id' to add_to_cart.php, a different vulnerability than CVE-2008-4461. | |
| CVE-2017-15974 | critical | 9.8 | 9.8 | 9y ago | tPanel 2009 allows SQL injection for Authentication Bypass via 'or 1=1 or ''=' to login.php. | |
| CVE-2017-15973 | critical | 9.8 | 9.8 | 9y ago | Sokial Social Network Script 1.0 allows SQL Injection via the id parameter to admin/members_view.php. | |
| CVE-2017-15972 | critical | 9.8 | 9.8 | 9y ago | SoftDatepro Dating Social Network 1.3 allows SQL Injection via the viewprofile.php profid parameter, the viewmessage.php sender_id parameter, or the /admin Email field, a related issue to CVE-2017-15… | |
| CVE-2017-15971 | critical | 9.8 | 9.8 | 9y ago | Same Sex Dating Software Pro 1.0 allows SQL Injection via the viewprofile.php profid parameter, the viewmessage.php sender_id parameter, or the /admin Email field, a related issue to CVE-2017-15972. | |
| CVE-2017-15970 | critical | 9.8 | 9.8 | 9y ago | PHP CityPortal 2.0 allows SQL Injection via the nid parameter to index.php in a page=news action, or the cat parameter. | |
| CVE-2017-15969 | critical | 9.8 | 9.8 | 9y ago | PG All Share Video 1.0 allows SQL Injection via the PATH_INFO to search/tag, friends/index, users/profile, or video_catalog/category. | |
| CVE-2017-15968 | critical | 9.8 | 9.8 | 9y ago | MyBuilder Clone 1.0 allows SQL Injection via the phpsqlsearch_genxml.php subcategory parameter. | |
| CVE-2017-15967 | critical | 9.8 | 9.8 | 9y ago | Mailing List Manager Pro 3.0 allows SQL Injection via the edit parameter to admin/users in a sort=login action, or the edit parameter to admin/template. | |
| CVE-2017-15966 | critical | 9.8 | 9.8 | 9y ago | The Zh YandexMap (aka com_zhyandexmap) component 6.1.1.0 for Joomla! allows SQL Injection via the placemarklistid parameter to index.php. | |
| CVE-2017-15965 | critical | 9.8 | 9.8 | 9y ago | The NS Download Shop (aka com_ns_downloadshop) component 2.2.6 for Joomla! allows SQL Injection via the id parameter in an invoice.create action. | |
| CVE-2017-15964 | critical | 9.8 | 9.8 | 9y ago | Job Board Script Software allows SQL Injection via the PATH_INFO to a /job-details URI. | |
| CVE-2017-15963 | critical | 9.8 | 9.8 | 9y ago | iTech Gigs Script 1.21 allows SQL Injection via the browse-scategory.php sc parameter or the service-provider.php ser parameter. | |
| CVE-2017-15962 | critical | 9.8 | 9.8 | 9y ago | iStock Management System 1.0 allows Arbitrary File Upload via user/profile. | |
| CVE-2017-15961 | critical | 9.8 | 9.8 | 9y ago | iProject Management System 1.0 allows SQL Injection via the ID parameter to index.php. | |
| CVE-2017-15960 | critical | 9.8 | 9.8 | 9y ago | Article Directory Script 3.0 allows SQL Injection via the id parameter to author.php or category.php. | |
| CVE-2017-15959 | critical | 9.8 | 9.8 | 9y ago | Adult Script Pro 2.2.4 allows SQL Injection via the PATH_INFO to a /download URI, a different vulnerability than CVE-2007-6576. | |
| CVE-2017-15958 | critical | 9.8 | 9.8 | 9y ago | D-Park Pro Domain Parking Script 1.0 allows SQL Injection via the username to admin/loginform.php. | |
| CVE-2017-15946 | critical | 9.8 | 9.8 | 9y ago | In the com_tag component 1.7.6 for Joomla!, a SQL injection vulnerability is located in the `tag` parameter to index.php. The request method to execute is GET. | |
| CVE-2017-15366 | critical | 9.8 | 9.8 | 9y ago | Before Thornberry NDoc version 8.0, laptop clients and the server have default database (Cache) users set up with a single password. This password is left behind in a cleartext log file during client… | |
| CVE-2017-15919 | critical | 9.8 | 9.8 | 9y ago | The ultimate-form-builder-lite plugin before 1.3.7 for WordPress has SQL Injection, with resultant PHP Object Injection, via wp-admin/admin-ajax.php. | |
| CVE-2017-15907 | critical | 9.8 | 9.8 | 9y ago | SQL injection vulnerability in phpCollab 2.5.1 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter to newsdesk/newsdesk.php. | |
| CVE-2017-15909 | critical | 9.8 | 9.8 | 9y ago | D-Link DGS-1500 Ax devices before 2.51B021 have a hardcoded password, which allows remote attackers to obtain shell access. | |
| CVE-2017-15222 | critical | 9.8 | 9.8 | 9y ago | Buffer Overflow vulnerability in Ayukov NFTPD 2.0 and earlier allows remote attackers to execute arbitrary code. | |
| CVE-2017-14695 | critical | 9.8 | 9.8 | 9y ago | Directory traversal vulnerability in minion id validation in SaltStack Salt before 2016.3.8, 2016.11.x before 2016.11.8, and 2017.7.x before 2017.7.2 allows remote minions with incorrect credentials … | |
| CVE-2017-15081 | critical | 9.8 | 9.8 | 9y ago | In PHPSUGAR PHP Melody CMS 2.6.1, SQL Injection exists via the playlist parameter to playlists.php. | |
| CVE-2017-15580 | critical | 9.8 | 9.8 | 9y ago | osTicket 1.10.1 provides a functionality to upload 'html' files with associated formats. However, it does not properly validate the uploaded file's contents and thus accepts any type of file, such as… | |
| CVE-2017-15381 | critical | 9.8 | 9.8 | 9y ago | SQL Injection exists in E-Sic 1.0 via the f parameter to esiclivre/restrito/inc/buscacep.php (aka the zip code search script). | |
| CVE-2017-15379 | critical | 9.8 | 9.8 | 9y ago | An authentication bypass exists in the E-Sic 1.0 /index (aka login) URI via '=''or' values for the username and password. | |
| CVE-2017-12796 | critical | 9.8 | 9.8 | 9y ago | The Reporting Compatibility Add On before 2.0.4 for OpenMRS, as distributed in OpenMRS Reference Application before 2.6.1, does not authenticate users when deserializing XML input into ReportSchema o… | |
| CVE-2017-7130 | critical | 9.8 | 9.8 | 9y ago | An issue was discovered in certain Apple products. iOS before 11 is affected. macOS before 10.13 is affected. tvOS before 11 is affected. watchOS before 4 is affected. The issue involves the third-pa… | |
| CVE-2017-7129 | critical | 9.8 | 9.8 | 9y ago | An issue was discovered in certain Apple products. iOS before 11 is affected. macOS before 10.13 is affected. tvOS before 11 is affected. watchOS before 4 is affected. The issue involves the third-pa… | |
| CVE-2017-7128 | critical | 9.8 | 9.8 | 9y ago | An issue was discovered in certain Apple products. iOS before 11 is affected. macOS before 10.13 is affected. tvOS before 11 is affected. watchOS before 4 is affected. The issue involves the third-pa… | |
| CVE-2017-7126 | critical | 9.8 | 9.8 | 9y ago | An issue was discovered in certain Apple products. macOS before 10.13 is affected. The issue involves the third-party "file" product. Versions before 5.30 allow remote attackers to cause a denial of … | |
| CVE-2017-7125 | critical | 9.8 | 9.8 | 9y ago | An issue was discovered in certain Apple products. macOS before 10.13 is affected. The issue involves the third-party "file" product. Versions before 5.30 allow remote attackers to cause a denial of … | |
| CVE-2017-7124 | critical | 9.8 | 9.8 | 9y ago | An issue was discovered in certain Apple products. macOS before 10.13 is affected. The issue involves the third-party "file" product. Versions before 5.30 allow remote attackers to cause a denial of … | |
| CVE-2017-7123 | critical | 9.8 | 9.8 | 9y ago | An issue was discovered in certain Apple products. macOS before 10.13 is affected. The issue involves the third-party "file" product. Versions before 5.30 allow remote attackers to cause a denial of … | |
| CVE-2017-7122 | critical | 9.8 | 9.8 | 9y ago | An issue was discovered in certain Apple products. macOS before 10.13 is affected. The issue involves the third-party "file" product. Versions before 5.30 allow remote attackers to cause a denial of … | |
| CVE-2017-7121 | critical | 9.8 | 9.8 | 9y ago | An issue was discovered in certain Apple products. macOS before 10.13 is affected. The issue involves the third-party "file" product. Versions before 5.30 allow remote attackers to cause a denial of … | |
| CVE-2017-7112 | critical | 9.8 | 9.8 | 9y ago | An issue was discovered in certain Apple products. iOS before 11 is affected. tvOS before 11 is affected. watchOS before 4 is affected. The issue involves the "Wi-Fi" component. It might allow remote… | |
| CVE-2017-7110 | critical | 9.8 | 9.8 | 9y ago | An issue was discovered in certain Apple products. iOS before 11 is affected. tvOS before 11 is affected. watchOS before 4 is affected. The issue involves the "Wi-Fi" component. It might allow remote… | |
| CVE-2017-7108 | critical | 9.8 | 9.8 | 9y ago | An issue was discovered in certain Apple products. iOS before 11 is affected. tvOS before 11 is affected. watchOS before 4 is affected. The issue involves the "Wi-Fi" component. It might allow remote… | |
| CVE-2017-7105 | critical | 9.8 | 9.8 | 9y ago | An issue was discovered in certain Apple products. iOS before 11 is affected. tvOS before 11 is affected. watchOS before 4 is affected. The issue involves the "Wi-Fi" component. It might allow remote… | |
| CVE-2017-7103 | critical | 9.8 | 9.8 | 9y ago | An issue was discovered in certain Apple products. iOS before 11 is affected. tvOS before 11 is affected. watchOS before 4 is affected. The issue involves the "Wi-Fi" component. It might allow remote… | |
| CVE-2017-15804 | critical | 9.8 | 9.8 | 9y ago | The glob function in glob.c in the GNU C Library (aka glibc or libc6) before 2.27 contains a buffer overflow during unescaping of user names with the ~ operator. | |
| CVE-2017-15670 | critical | 9.8 | 9.8 | 9y ago | The GNU C Library (aka glibc or libc6) before 2.27 contains an off-by-one error leading to a heap-based buffer overflow in the glob function in glob.c, related to the processing of home directories u… | |
| CVE-2017-6165 | critical | 9.8 | 9.8 | 9y ago | In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, GTM, Link Controller, PEM, and WebSafe 11.5.1 HF6 through 11.5.4 HF4, 11.6.0 through 11.6.1 HF1, and 12.0.0 through 12.1.2 on VIPRION platforms o… | |
| CVE-2017-5636 | critical | 9.8 | 9.8 | 9y ago | Injection in Apache NiFi | |
| CVE-2017-10366 | critical | 9.8 | 9.8 | 9y ago | Vulnerability in the PeopleSoft Enterprise PT PeopleTools component of Oracle PeopleSoft Products (subcomponent: Performance Monitor). Supported versions that are affected are 8.54, 8.55 and 8.56. Ea… | |
| CVE-2017-14322 | critical | 9.8 | 9.8 | 9y ago | The function in charge to check whether the user is already logged in init.php in Interspire Email Marketer (IEM) prior to 6.1.6 allows remote attackers to bypass authentication and obtain administra… | |
| CVE-2017-15579 | critical | 9.8 | 9.8 | 9y ago | In PHPSUGAR PHP Melody before 2.7.3, SQL Injection exists via an aa_pages_per_page cookie in a playlist action to watch.php. | |
| CVE-2017-13999 | critical | 9.8 | 9.8 | 9y ago | A Stack-based Buffer Overflow issue was discovered in WECON LEVI Studio HMI Editor v1.8.1 and prior. Multiple stack-based buffer overflow vulnerabilities have been identified in which the application… | |
| CVE-2017-15539 | critical | 9.8 | 9.8 | 9y ago | SQL Injection exists in zorovavi/blog through 2017-10-17 via the id parameter to recept.php. | |
| CVE-2017-3761 | critical | 9.8 | 9.8 | 9y ago | The Lenovo Service Framework Android application executes some system commands without proper sanitization of external input. In certain cases, this could lead to command injection which, in turn, co… | |
| CVE-2017-3758 | critical | 9.8 | 9.8 | 9y ago | Improper access controls on several Android components in the Lenovo Service Framework application can be exploited to enable remote code execution. | |
| CVE-2017-9367 | critical | 9.8 | 9.8 | 9y ago | A directory traversal vulnerability in the BlackBerry Workspaces Server could potentially allow an attacker to execute or upload arbitrary files, or reveal the content of arbitrary files anywhere on … | |
| CVE-2017-15295 | critical | 9.8 | 9.8 | 9y ago | Xpress Server in SAP POS does not require authentication for read/write/delete file access. This is SAP Security Note 2520064. | |
| CVE-2017-15293 | critical | 9.8 | 9.8 | 9y ago | Xpress Server in SAP POS does not require authentication for file read and erase operations, daemon shutdown, terminal read operations, or certain attacks on credentials. This is SAP Security Note 25… | |
| CVE-2017-14952 | critical | 9.8 | 9.8 | 9y ago | Double free in i18n/zonemeta.cpp in International Components for Unicode (ICU) for C/C++ through 59.1 allows remote attackers to execute arbitrary code via a crafted string, aka a "redundant UVector … | |
| CVE-2017-15376 | critical | 9.8 | 9.8 | 9y ago | The TELNET service in Mobatek MobaXterm 10.4 does not require authentication, which allows remote attackers to execute arbitrary commands via TCP port 23. | |
| CVE-2017-15373 | critical | 9.8 | 9.8 | 9y ago | E-Sic 1.0 allows SQL injection via the q parameter to esiclivre/restrito/inc/lkpcep.php (aka the search private area). | |
| CVE-2017-15304 | critical | 9.8 | 9.8 | 9y ago | /bin/login.php in the Web Panel on the Airtame HDMI dongle with firmware before 3.0 allows an attacker to set his own session id via a "Cookie: PHPSESSID=" header. This can be used to achieve persist… | |
| CVE-2017-12629 | critical | 9.8 | 9.8 | 9y ago | Remote code execution occurs in Apache Solr | |
| CVE-2017-10622 | critical | 9.8 | 9.8 | 9y ago | An authentication bypass vulnerability in Juniper Networks Junos Space Network Management Platform may allow a remote unauthenticated network based attacker to login as any privileged user. This issu… | |
| CVE-2017-10615 | critical | 9.8 | 9.8 | 9y ago | A vulnerability in the pluggable authentication module (PAM) of Juniper Networks Junos OS may allow an unauthenticated network based attacker to potentially execute arbitrary code or crash daemons su… | |
| CVE-2017-11771 | critical | 9.8 | 9.8 | 9y ago | The Microsoft Windows Search component on Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1… | |
| CVE-2017-5791 | critical | 9.8 | 9.8 | 9y ago | The doFilter method in UrlAccessController in HPE Intelligent Management Center (iMC) PLAT 7.2 E0403P06 allows remote bypass of authentication via unspecified strings in a URI. | |
| CVE-2017-5789 | critical | 9.8 | 9.8 | 9y ago | HPE LoadRunner before 12.53 Patch 4 and HPE Performance Center before 12.53 Patch 4 allow remote attackers to execute arbitrary code via unspecified vectors. At least in LoadRunner, this is a libxdru… | |
| CVE-2017-14003 | critical | 9.8 | 9.8 | 9y ago | An Authentication Bypass by Spoofing issue was discovered in LAVA Ether-Serial Link (ESL) running firmware versions 6.01.00/29.03.2007 and prior versions. An improper authentication vulnerability has… | |
| CVE-2017-15220 | critical | 9.8 | 9.8 | 9y ago | Flexense VX Search Enterprise 10.1.12 is vulnerable to a buffer overflow via an empty POST request to a long URI beginning with a /../ substring. This allows remote attackers to execute arbitrary cod… | |
| CVE-2017-15226 | critical | 9.8 | 9.8 | 9y ago | Zyxel NBG6716 V1.00(AAKG.9)C0 devices allow command injection in the ozkerz component because beginIndex and endIndex are used directly in a popen call. | |
| CVE-2017-8994 | critical | 9.8 | 9.8 | 9y ago | A input validation vulnerability in HPE Operations Orchestration product all versions prior to 10.80, allows for the execution of code remotely. | |
| CVE-2017-12861 | critical | 9.8 | 9.8 | 9y ago | The Epson "EasyMP" software is designed to remotely stream a users computer to supporting projectors.These devices are authenticated using a unique 4-digit code, displayed on-screen - ensuring only t… | |
| CVE-2017-12860 | critical | 9.8 | 9.8 | 9y ago | The Epson "EasyMP" software is designed to remotely stream a users computer to supporting projectors.These devices are authenticated using a unique 4-digit code, displayed on-screen - ensuring only t… | |
| CVE-2017-14980 | critical | 9.8 | 9.8 | 9y ago | Buffer overflow in Sync Breeze Enterprise 10.0.28 allows remote attackers to have unspecified impact via a long username parameter to /login. | |
| CVE-2017-0903 | critical | 9.8 | 9.8 | 9y ago | RubyGems versions between 2.0.0 and 2.6.13 are vulnerable to a possible remote code execution vulnerability. YAML deserialization of gem specifications can bypass class white lists. Specially crafted… | |
| CVE-2017-13069 | critical | 9.8 | 9.8 | 9y ago | QNAP discovered a number of command injection vulnerabilities found in Music Station versions 4.8.6 (for QTS 4.2.x), 5.0.7 (for QTS 4.3.x), and earlier. If exploited, these vulnerabilities may allow … | |
| CVE-2017-15047 | critical | 9.8 | 9.8 | 9y ago | The clusterLoadConfig function in cluster.c in Redis 4.0.2 allows attackers to cause a denial of service (out-of-bounds array index and application crash) or possibly have unspecified other impact by… | |
| CVE-2017-14089 | critical | 9.8 | 9.8 | 9y ago | An Unauthorized Memory Corruption vulnerability in Trend Micro OfficeScan 11.0 and XG may allow remote unauthenticated users who can access the OfficeScan server to target cgiShowClientAdm.exe and ca… | |
| CVE-2017-15041 | critical | 9.8 | 9.8 | 9y ago | Remote command execution via "go get" in cmd/go | |
| CVE-2017-15032 | critical | 9.8 | 9.8 | 9y ago | ImageMagick version 7.0.7-2 contains a memory leak in ReadYCBCRImage in coders/ycbcr.c. | |
| CVE-2017-14491 | critical | 9.8 | 9.8 | 9y ago | Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted DNS response. | |
| CVE-2017-12821 | critical | 9.8 | 9.8 | 9y ago | Memory corruption in Gemalto's HASP SRM, Sentinel HASP and Sentinel LDK products prior to Sentinel LDK RTE version 7.55 might cause remote code execution. | |
| CVE-2017-12819 | critical | 9.8 | 9.8 | 9y ago | Remote manipulations with language pack updater lead to NTLM-relay attack for system user in Gemalto's HASP SRM, Sentinel HASP and Sentinel LDK products prior to Sentinel LDK RTE version 7.55. | |
| CVE-2017-12166 | critical | 9.8 | 9.8 | 9y ago | OpenVPN versions before 2.3.3 and 2.4.x before 2.4.4 are vulnerable to a buffer overflow vulnerability when key-method 1 is used, possibly resulting in code execution. | |
| CVE-2017-0829 | critical | 9.8 | 9.8 | 9y ago | An elevation of privilege vulnerability in the Motorola bootloader. Product: Android. Versions: Android kernel. Android ID: A-62345044. | |
| CVE-2017-0828 | critical | 9.8 | 9.8 | 9y ago | An elevation of privilege vulnerability in the Huawei bootloader. Product: Android. Versions: Android kernel. Android ID: A-34622855. | |
| CVE-2017-0824 | critical | 9.8 | 9.8 | 9y ago | An elevation of privilege vulnerability in the Broadcom wifi driver. Product: Android. Versions: Android kernel. Android ID: A-37622847. References: B-V2017063001. | |
| CVE-2017-0822 | critical | 9.8 | 9.8 | 9y ago | An elevation of privilege vulnerability in the Android system (camera). Product: Android. Versions: 6.0.1, 7.0, 7.1.1, 7.1.2, 8.0. Android ID: A-63787722. | |
| CVE-2017-0807 | critical | 9.8 | 9.8 | 9y ago | An elevation of privilege vulnerability in the Android framework (ui framework). Product: Android. Versions: 4.4.4, 5.0.2, 5.1.1, 6.0, 6.0.1, 7.0, 7.1.1, 7.1.2. Android ID: A-35056974. | |
| CVE-2017-8021 | critical | 9.8 | 9.8 | 9y ago | EMC Elastic Cloud Storage (ECS) before 3.1 is affected by an undocumented account vulnerability that could potentially be leveraged by malicious users to compromise the affected system. | |
| CVE-2017-6089 | critical | 9.8 | 9.8 | 9y ago | SQL injection vulnerability in PhpCollab 2.5.1 and earlier allows remote attackers to execute arbitrary SQL commands via the (1) project or id parameters to topics/deletetopics.php; the (2) id parame… | |
| CVE-2017-14759 | critical | 9.8 | 9.8 | 9y ago | OpenText Document Sciences xPression (formerly EMC Document Sciences xPression) v4.5SP1 Patch 13 (older versions might be affected as well) is prone to an XML External Entity vulnerability: /xFramewo… | |
| CVE-2017-14493 | critical | 9.8 | 9.8 | 9y ago | Stack-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted DHCPv6 request. | |
| CVE-2017-14492 | critical | 9.8 | 9.8 | 9y ago | Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted IPv6 router advertisement request. |