CVSSv3 08/16/2019info

CVSSv3 Base »

The Common Vulnerability Scoring System (CVSS) is an industry standard to define the characteristics and impacts of security vulnerabilities. The base score represents the intrinsic aspects that are constant over time and across user environments. Our unique meta score merges all available scores from different sources to aggregate to the most reliable result.

CVSSv3 Temp »

The Common Vulnerability Scoring System (CVSS) uses temp scores to reflect the characteristics of a vulnerability that may change over time but not across user environments. This includes reporting confidence, exploitability and remediation levels. We do also provide our unique meta score for temp scores, even though other sources rarely publish them.

VulDB »

The moderation team is always defining the base vector and base score for an entry. These and all other available scores are used to generate the meta score.

NVD »

The National Vulnerability Database (NVD) is also defining CVSS vectors and scores. These are usually not complete and might differ from VulDB scores.

Vendor »

Some vendors are willing to publish their own CVSS vectors and scores for vulnerabilities in their products. The coverage varies from vendor to vendor.

Research »

There are sometimes also security researcher which provide their own CVSS vectors and scores for vulnerabilities they have found and published.

IDBaseVDBNVDVendResVulnerabilityCTICVE
1402736.25.07.5
 
 
Adobe Creative Cloud Desktop Application information disclosure0.04CVE-2019-8063
1402728.06.39.8
 
 
Adobe Experience Manager improper authentication0.00CVE-2019-7964
1402718.06.39.8
 
 
Adobe Creative Cloud Desktop Application input validation0.04CVE-2019-7959
1402708.06.39.8
 
 
Adobe Creative Cloud Desktop Application Permission access control0.04CVE-2019-7958
1402695.94.37.5
 
 
Adobe Creative Cloud Desktop Application 7pk security0.05CVE-2019-7957
1402688.57.39.8
 
 
Nokogiri Ruby Tokenizer#load_file command injection0.07CVE-2019-5477
1402675.44.76.1
 
 
Kunena Extension BBcode cross site scripting0.06CVE-2019-15120
1402664.94.45.5
 
 
cnlh nps Permission install.go access control0.04CVE-2019-15119
1402654.43.35.5
 
 
Linux Kernel mixer.c check_input_term resource consumption0.00CVE-2019-15118
1402646.55.37.8
 
 
Linux Kernel Short Descriptor mixer.c parse_audio_mixer_unit memory corruption0.00CVE-2019-15117
1402635.24.36.1
 
 
easy-digital-downloads Plugin IP Log cross site scripting0.06CVE-2019-15116
1402626.54.38.8
 
 
peters-login-redirect Plugin cross-site request forgery0.05CVE-2019-15115
1402616.54.38.8
 
 
formcraft-form-builder Plugin cross-site request forgery0.05CVE-2019-15114
1402606.54.38.8
 
 
companion-sitemap-generator Plugin cross-site request forgery0.07CVE-2019-15113
1402597.37.3
 
 
 
Artica Integria IMS File Upload filemgr.php unrestricted upload0.00CVE-2019-15091
1402586.36.3
 
 
 
EyesOfNetwork command injection0.00CVE-2019-14923
1402576.54.38.8
 
 
js-jobs Plugin cross-site request forgery0.04CVE-2018-20974
1402568.57.39.8
 
 
companion-auto-update Plugin input validation0.04CVE-2018-20973
1402556.54.38.8
 
 
companion-auto-update Plugin cross-site request forgery0.04CVE-2018-20972
1402546.54.38.8
 
 
church-admin Plugin Bible Reading Plan cross-site request forgery0.00CVE-2018-20971
1402528.57.39.8
 
 
note-press Plugin sql injection0.05CVE-2017-18548
1402516.54.38.8
 
 
nelio-ab-testing Plugin Experiment Form cross-site request forgery0.05CVE-2017-18547
1402506.54.38.8
 
 
jayj-quicktag Plugin cross-site request forgery0.00CVE-2017-18546
1402497.57.57.5
 
 
invite-anyone Plugin Dashboard input validation0.08CVE-2017-18545
1402486.54.38.8
 
 
invite-anyone Plugin Admin Panel cross-site request forgery0.00CVE-2017-18544
1402478.57.39.8
 
 
invite-anyone Plugin Access Control Email access control0.05CVE-2017-18543
1402465.24.36.1
 
 
zendesk-help-center Plugin cross site scripting0.00CVE-2017-18542
1402455.24.36.1
 
 
xo-security Plugin cross site scripting0.00CVE-2017-18541
1402448.57.39.8
 
 
olimometer Plugin sql injection0.06CVE-2016-10904
1402438.57.39.8
 
 
wp-business-intelligence-lite Plugin sql injection0.07CVE-2015-9326
1402428.57.39.8
 
 
visitors-online Plugin sql injection0.00CVE-2015-9325
1402418.57.39.8
 
 
easy-digital-downloads Plugin sql injection0.04CVE-2015-9324
1402408.57.39.8
 
 
404-to-301 Plugin sql injection0.04CVE-2015-9323
1402396.54.38.8
 
 
erident-custom-login-and-dashboard Plugin cross-site request forgery0.00CVE-2015-9322
1402388.57.39.8
 
 
i-recommend-this Plugin sql injection0.00CVE-2014-10376
1402373.62.44.8
 
 
WSO2 API Manager File Upload cross site scripting0.05CVE-2019-15108
1402368.57.39.8
 
 
Webmin password_change.cgi command injection0.00CVE-2019-15107
1402358.57.39.8
 
 
Zoho ManageEngine ManageEngine OpManager access control0.00CVE-2019-15106
1402347.56.38.8
 
 
Zoho ManageEngine Application Manager NewThresholdConfiguration.jsp sql injection0.05CVE-2019-15105
1402337.56.38.8
 
 
Zoho ManageEngine ManageEngine OpManager NewThresholdConfiguration.jsp sql injection0.06CVE-2019-15104

Do you need the next level of professionalism?

Upgrade your account now!