Risk 2017

Overview of the different risk assignments of different sources of the documented vulnerabilities.

IDTitleVulDBCVSSSecuniaXForceNessus
129040Apple iOS HTTP 7pk security [CVE-2017-2411]medium🔒---
129039Apple iOS State Management input validation [CVE-2017-13891]medium🔒---
129037Apple iOS type conversion [CVE-2017-13888]medium🔒---
129036Apple macOS APFS key management [CVE-2017-13887]medium🔒---
129035Apple macOS WiFi System Configuration improper authorizationmedium🔒---
123295CMS Web-Gooroo authorization.inc.php sql injectionmedium🔒---
118157Symantec Content Analysis Module/Mail Threat Defense Management Console cross-site request forgerymedium🔒---
117569Apache Hadoop access control [CVE-2016-6811]medium🔒--🔒
111941Symantec Advanced Secure Gateway/ProxySG Credentials credentials managementlow🔒--🔒
111940Symantec Advanced Secure Gateway/ProxySG Management Console redirectmedium🔒--🔒
111939FortiClientWindows FortiClientNamedPipe access control [CVE-2016-8493]medium🔒---
111216E-goi Smart Marketing SMS/Newsletters Forms Plugin egoi-for-wp-form_egoi.php cross site scriptinglow🔒---
111212Exiv2 TIFF File value.cpp toLong null pointer dereferencelow🔒---
111211Zurmo mapAndPoint cross site scriptinglow🔒---
111210Trustwave Secure Web Gateway SSH Key sendKey key managementhigh🔒---
111209Wireshark MRDISC Dissector packet-mrdisc.c null pointer dereferencelow🔒--🔒
111208House iStar Ultra IP-ACM Ethernet Door Module access controlmedium🔒---
111207Webmin run.cgi cross site scriptinglow🔒--🔒
111206Red Lion HMI Panel URI 7pk error [CVE-2017-14855]low🔒---
111205PHPJabbers File Sharing Script Comment Stored cross site scriptinglow🔒---
111204PHPJabbers Night Club Booking Software Reservations Tab Stored cross site scriptinglow🔒---
111203PHPJabbers Star Rating Script Rating Item Stored cross site scriptinglow🔒---
111202PHPJabbers PHP Newsletter Script Admin Panel Stored cross site scriptinglow🔒---
111201Magento Community Edition/Enterprise Edition E-Mail Template cross site scriptinglow🔒---
111200Biometric Shift Employee Management System index.php cross site scriptinglow🔒---
111199Biometric Shift Employee Management System index.php cross site scriptinglow🔒---
111198Biometric Shift Employee Management System index.php cross site scriptinglow🔒---
111197Biometric Shift Employee Management System index.php download_form path traversalmedium🔒---
111196Biometric Shift Employee Management System index.php cross site scriptinglow🔒---
111195Biometric Shift Employee Management System index.php edit_holiday cross-site request forgerylow🔒---
111194Biometric Shift Employee Management System index.php edit_holiday cross site scriptinglow🔒---
111193PHP Scripts Mall Muslim Matrimonial Script event_add.php cross site scriptinglow🔒---
111192PHP Scripts Mall Muslim Matrimonial Script File Upload mydetails_edit.php unrestricted uploadmedium🔒---
111191PHP Scripts Mall Muslim Matrimonial Script caste_view.php cross site scriptinglow🔒---
111190PHP Scripts Mall Muslim Matrimonial Script state_view.php cross site scriptinglow🔒---
111189PHP Scripts Mall Muslim Matrimonial Script event_edit.php cross site scriptinglow🔒---
111188PHP Scripts Mall Muslim Matrimonial Script view-profile.php sql injectionmedium🔒---
111187PHP Scripts Mall Muslim Matrimonial Script subadmin_edit.php cross-site request forgerylow🔒---
111186PHP Scripts Mall Muslim Matrimonial Script slider_edit.php cross site scriptinglow🔒---
111185Linux Kernel usbtv-core.c usbtv_probe use after freelow🔒--🔒
111184BA BAS Web get_sid_js.aspx credentials managementlow🔒---
111183LibTIFF tiff2pdf tiff2pdf.c t2p_writeproc use after freemedium🔒--🔒
111182Dolibarr ERP/CRM main.inc.php test_sql_and_script_inject cross site scriptinglow🔒---
111181NetTransport Download Manager NetTransport.exe memory corruptionmedium🔒---
111180Netwin SurgeFTP Web Manager Interface surgeftpmgr.cgi cross site scriptinglow🔒---
111179Ruby on Rails reorder sql injectionmedium🔒---
111178Ruby on Rails order sql injectionmedium🔒---
111177Ruby on Rails where sql injectionmedium🔒---
111176Ruby on Rails find_by sql injectionmedium🔒---
111175Hoermann BiSecur cryptographic issues [CVE-2017-17910]low🔒---
111174ZyXEL P-660HW TTL resource consumption [CVE-2017-17901]low🔒---
111173OpenCV grfmt_pxm.cpp readData memory corruptionmedium🔒--🔒
111172Mistune mistune.py keyify cross site scriptinglow🔒--🔒
111171Linux Kernel EINJ einj.c einj_error_inject injectionlow🔒--🔒
111170TheCartPress eCommerce Shopping Cart Authentication Mechanism access controllow🔒---
111168netcf Path Expression find_ifcfg_path input validationlow🔒--🔒
111167rawstudio rs-filter.c rs_filter_graph link followinglow🔒--🔒
111166JBoss KeyCloak QR Code Generator resource consumption [CVE-2014-3651]low🔒---
111165Play XML Data xml external entity reference [CVE-2014-3630]medium🔒---
111164Hawt.io Admin Terminal improper authentication [CVE-2014-0121]medium🔒---
111163Hawt.io Admin Terminal cross-site request forgery [CVE-2014-0120]low🔒---
111162Direct Mail Extension Authentication Code information disclosurelow🔒---
111161Oracle Java SE jarsigner Signature injectionmedium🔒--🔒
111160Zend Framework order sql injectionmedium🔒--🔒
111159Kingsoft WP Office PPT File pptreader.dll input validationlow🔒---
111158PHP Scripts Mall PHP Multivendor Ecommerce sellerupd.php cross-site request forgerylow🔒---
111157PHP Scripts Mall PHP Multivendor Ecommerce seller-view.php sql injectionmedium🔒---
111156PHP Scripts Mall PHP Multivendor Ecommerce my_wishlist.php cross site scriptinglow🔒---
111155PHP Scripts Mall PHP Multivendor Ecommerce my_wishlist.php sql injectionmedium🔒---
111154PHP Scripts Mall PHP Multivendor Ecommerce sellerupd.php cross site scriptinglow🔒---
111153PHP Scripts Mall PHP Multivendor Ecommerce shopping-cart.php cross site scriptinglow🔒---
111152PHP Scripts Mall PHP Multivendor Ecommerce seller-view.php cross site scriptinglow🔒---
111151PHP Scripts Mall PHP Multivendor Ecommerce category.php cross site scriptinglow🔒---
111150PHP Scripts Mall PHP Multivendor Ecommerce Registration URL input validationmedium🔒---
111149PHP Scripts Mall PHP Multivendor Ecommerce shopping-cart.php sql injectionmedium🔒---
111148Cells Blog pub_readpost.php sql injectionmedium🔒---
111147Cells Blog pub_readpost.php cross site scriptinglow🔒---
111146Cells Blog cross site scripting [CVE-2017-17948]low🔒---
111145LibTIFF tif_packbits.c PackBitsEncode memory corruptionmedium🔒--🔒
111144PHP Scripts Mall Single Theater Booking movieview.php sql injectionmedium🔒---
111143PHP Scripts Mall Single Theater Booking sitesettings.php cross site scriptinglow🔒---
111142PHP Scripts Mall Single Theater Booking sitesettings.php cross-site request forgerylow🔒---
111141PHP Scripts Mall Single Theater Booking viewtheatre.php cross site scriptinglow🔒---
111140Vanguard Marketplace Digital Products PHP search cross site scriptinglow🔒---
111139Vanguard Marketplace Digital Products PHP search cross-site request forgerylow🔒---
111138ALLPlayer ALLMediaServer Service Port 888 MediaServer.exe memory corruptionmedium🔒---
111137Synology Chat Slash Command Creator cross site scripting [CVE-2017-15892]low🔒---
111136Synology Chat Link Preview server-side request forgery [CVE-2017-15886]medium🔒---
111135Dell EMC VNX1/VNX2 VNX Control Station Reflected cross site scriptinglow🔒---
111134SysGauge input validation [CVE-2017-15667]low🔒---
111133Apple watchOS IOKit memory corruption [CVE-2017-7162]medium🔒--🔒
111132Apple tvOS IOKit memory corruption [CVE-2017-7162]medium🔒--🔒
111131Apple macOS IOKit memory corruption [CVE-2017-7162]medium🔒--🔒
111130Apple tvOS WebKit memory corruption [CVE-2017-7160]medium🔒--🔒
111129Apple iTunes WebKit memory corruption [CVE-2017-7160]medium🔒--🔒
111128Apple iCloud WebKit memory corruption [CVE-2017-7160]medium🔒--🔒
111127Apple Safari WebKit memory corruption [CVE-2017-7160]medium🔒--🔒
111126Apple macOS Kernel input validation [CVE-2017-7154]low🔒--🔒
111125Apple tvOS Kernel input validation [CVE-2017-7154]low🔒--🔒
111124Siemens 7KT PAC1200 Data Manager Integrated Web Server access controlmedium🔒---
111123FFmpeg MOV File null pointer dereference [CVE-2017-9608]low🔒--🔒
111122Apple macOS Intel Graphics Driver memory corruption [CVE-2017-7163]medium🔒--🔒
111121Apple iOS IOKit memory corruption [CVE-2017-7162]medium🔒--🔒
111120Apple iOS WebKit memory corruption [CVE-2017-7160]medium🔒--🔒
111119Apple macOS IOAcceleratorFamily memory corruption [CVE-2017-7159]medium🔒--🔒
111118Apple macOS Screen Sharing Server memory corruption [CVE-2017-7158]medium🔒--🔒
111117Apple macOS Intel Graphics Driver memory corruption [CVE-2017-7155]medium🔒--🔒
111116Apple iOS Kernel input validation [CVE-2017-7154]low🔒--🔒
111115Apple iOS Mail Message Framework Address 7pk securitymedium🔒---
111114Wireshark wslua_file.c File_read_line memory corruptionlow🔒--🔒
111113ImageMagick msl.c ProcessMSLScript resource managementlow🔒--🔒
111112PHP Scripts Mall Resume Clone Script forget.php sql injectionmedium🔒---
111111PHP Scripts Mall Professional Service Script User Panel general_settingupd.php cross-site request forgerylow🔒---
111110PHP Scripts Mall Professional Service Script bannerview.php cross site scriptinglow🔒---
111109PHP Scripts Mall Professional Service Script review.php sql injectionmedium🔒---
111108PHP Scripts Mall Professional Service Script Path path traversallow🔒---
111107PHP Scripts Mall Professional Service Script Registration URL information disclosuremedium🔒---
111106PHP Scripts Mall Professional Service Script general_settingupd.php cross site scriptinglow🔒---
111105PHP Scripts Mall Professional Service Script review_userwise.php Path path traversallow🔒---
111104GraphicsMagick png.c ReadMNGImage memory corruptionmedium🔒--🔒
111103ImageMagick MNG Image File png.c ReadOnePNGImage resource managementlow🔒--🔒
111102GraphicsMagick webp.c WriteWEBPImage memory corruptionmedium🔒--🔒
111101GraphicsMagick tiff.c ReadNewsProfile memory corruptionmedium🔒--🔒
111100Archon contact.php cross site scriptinglow🔒---
111099PHP Scripts Mall Responsive Realestate Script general.php cross site scriptinglow🔒---
111098PHP Scripts Mall Responsive Realestate Script general cross-site request forgerylow🔒---
111097PHP Scripts Mall Car Rental Script areaedit.php cross site scriptinglow🔒---
111096PHP Scripts Mall Car Rental Script carlistedit.php sql injectionmedium🔒---
111095PHP Scripts Mall Car Rental Script sitesettings.php cross-site request forgerylow🔒---
111094FS Lynda Clone cross site scripting [CVE-2017-17904]low🔒---
111093FS Lynda Clone edit_profile cross-site request forgerylow🔒---
111092Dolibarr ERP/CRM index.php sql injectionmedium🔒---
111091Dolibarr ERP/CRM info.php sql injectionmedium🔒---
111090Dolibarr ERP/CRM information disclosure [CVE-2017-17898]low🔒---
111089Dolibarr ERP/CRM multiprix.php sql injectionmedium🔒---
111088Readymade Job Site Script job cross site scriptinglow🔒---
111087Readymade Job Site Script job sql injectionmedium🔒---
111086Readymade Job Site Script job cross-site request forgerylow🔒---
111085Readymade Video Sharing Script search_video.php cross site scriptinglow🔒---
111084Readymade Video Sharing Script viewsubs.php sql injectionmedium🔒---
111083Readymade Video Sharing Script user-profile-edit.php cross-site request forgerylow🔒---
111082Anti-Web write.cgi os command injectionmedium🔒---
111081ImageMagick MNG Image File cache.c GetImagePixelCache resource managementlow🔒--🔒
111080ImageMagick PSD Image File psd.c ReadPSDChannelZip resource managementlow🔒--🔒
111079ImageMagick PICT Image File pict.c ReadPICTImage resource managementlow🔒--🔒
111078ImageMagick PNG Image File png.c WriteOnePNGImage resource managementlow🔒--🔒
111077ImageMagick PGX Image File pgx.c ReadPGXImage resource managementlow🔒---
111076ImageMagick XPM Image xpm.c ReadXPMImage resource managementlow🔒--🔒
111075ImageMagick MAT Image File mat.c ReadMATImage resource managementlow🔒--🔒
111074ImageMagick Version Check webp.c WriteWEBPImage memory corruptionmedium🔒---
111073ImageMagick png.c ReadOneMNGImage memory corruptionmedium🔒--🔒
111072Valve Steam Link risky encryption [CVE-2017-17878]medium🔒---
111071Valve Steam Link SSH Daemon MAC Address credentials managementmedium🔒---
111070echno Biometric Shift Employee Management System permission [CVE-2017-17876]medium🔒---
111069JEXTN FAQ Pro Extension sql injection [CVE-2017-17875]medium🔒---
111068Vanguard Marketplace Digital Products PHP Add a new product/Add a product preview unrestricted uploadmedium🔒---
111067Vanguard Marketplace Digital Products PHP p sql injectionmedium🔒---
111066JEXTN Video Gallery Extension sql injection [CVE-2017-17872]medium🔒---
111065JEXTN Question And Answer Extension sql injection [CVE-2017-17871]medium🔒---
111064JBuildozer Extension sql injection [CVE-2017-17870]medium🔒---
111063mgl-instagram-gallery Plugin single-gallery.php cross site scriptinglow🔒---
111062Liferay Portal cross site scripting [CVE-2017-17868]low🔒---
111061Artifex MuPDF pdf-write.c memory corruptionmedium🔒--🔒
111060Samsung Internet Browser IFRAME cross site scripting [CVE-2017-17859]medium🔒---
111059Linux Kernel verifier.c check_stack_boundary memory corruptionmedium🔒--🔒
111058Linux Kernel Stack Pointer verifier.c memory corruptionmedium🔒--🔒
111057Linux Kernel Pointer verifier.c memory corruptionmedium🔒--🔒
111056Linux Kernel Pointer Arithmetic verifier.c integer overflowmedium🔒--🔒
111055Linux Kernel verifier.c memory corruptionmedium🔒--🔒
111054Linux Kernel 32-bit ALU ops verifier.c memory corruptionmedium🔒--🔒
111053GetGo Download Manager HTTP Server memory corruption [CVE-2017-17849]medium🔒---
111052Enigmail Multipart Message signature verification [CVE-2017-17848]medium🔒--🔒
111051Enigmail Signature signature verification [CVE-2017-17847]medium🔒--🔒
111050Enigmail Regular Expression input validation [CVE-2017-17846]low🔒--🔒
111049Enigmail Random Generator Math.Random weak prngmedium🔒--🔒
111048Enigmail information disclosure [CVE-2017-17844]low🔒--🔒
111047Enigmail Regular Expression cryptographic issues [CVE-2017-17843]medium🔒--🔒
111046open-iscsi iscsiuio Server iscsid_ipc.c process_iscsid_broadcast memory corruptionlow🔒---
111045ServersCheck Monitoring Software settings-save.html cross site scriptinglow🔒---
111044Content Manager Assistant for PlayStation untrusted search pathlow🔒---
111043Linux Kernel Register verifier.c memory corruptionmedium🔒---
111042Linux Kernel Sign Extension verifier.c check_alu_op memory corruptionmedium🔒--🔒
111041IBM WebSphere Portal Error Message information disclosure [CVE-2017-1698]low🔒--🔒
111040Auth0 passport-wsfed-saml2 SAML Response access control [CVE-2017-16897]medium🔒---
111039Synology MailPlus Server User Policy Editor cross site scriptinglow🔒---
111038IBM Team Concert Web UI cross site scripting [CVE-2017-1365]low🔒---
111037PDF-XChange PDF File launchURL input validationmedium🔒---
111036IBM Rational Collaborative Lifecycle Management URL access controlmedium🔒---
111035MQTT.js PUBLISH Ticket resource management [CVE-2017-10910]low🔒---
111034Samsung S6 Edge SecEmailComposer/EmailComposer permission [CVE-2015-7889]low🔒---
111033Easy2Map Plugin Upload File MapImportCSV2.php path traversalmedium🔒---
111032Easy2Map Plugin MapPinImageSave.php cross site scriptinglow🔒---
111031ResAds Plugin admanagement.php cross site scriptinglow🔒---
111030Payment Form for PayPal Pro Plugin cp_ppp_admin_int_message_list.inc.php cross site scriptinglow🔒---
111029StackIdeas Komento Comment comment.php cross site scriptinglow🔒---
111028phpMyBackupPro Multi-User Mode sql injection [CVE-2015-3637]medium🔒---
111027AirLive BU-2015/BU-3026/WL-2000CAM/POE-200CAM Web Server wireless_mft.cgi os command injectionmedium🔒---
111026Linux Kernel Extended BPF Verifier verifier.c information disclosurelow🔒--🔒
111025Linux Kernel Extended BPF Verifier verifier.c integer overflowmedium🔒--🔒
111024Linux Kernel Extended BPF Verifier verifier.c input validationlow🔒--🔒
111023Siemens SIMATIC S7 data processing [CVE-2017-12741]low🔒---
111022Siemens LOGO! Soft Comfort Integrity Verification insufficient verification of data authenticitymedium🔒---
111021Siemens RuggedCom ROS Ruggedcom Discovery Protocol access controlmedium🔒---
111020HPE NonStop Server access control [CVE-2017-8974]medium🔒---
111019Ubiquiti UniFi Video Directory Permission permission [CVE-2016-6914]low🔒---
111018Digium Asterisk PJSIP Channel Driver Contact Header input validationlow🔒--🔒
111017Synology DiskStation Manager synodsmnotify injection [CVE-2017-16766]low🔒---
111016Huawei HG8245H URL information disclosure [CVE-2017-15328]medium🔒---
111015Huawei S12700/S2700/S5700/S6700/S7700/S9700 NQA Packet input validationlow🔒---
111014Huawei Smart Phone NFC Message input validation [CVE-2017-15322]low🔒---
111013Huawei FusionSphere OpenStack Transmission Protocol information disclosurelow🔒---
111012Huawei RP200/TE30/TE40/TE50/TE60 SS7 Packet out-of-bounds readmedium🔒---
111011Huawei RP200/TE30/TE40/TE50/TE60 SS7 Packet out-of-bounds readmedium🔒---
111010Huawei RP200/TE30/TE40/TE50/TE60 SS7 Packet out-of-bounds readmedium🔒---
111009Huawei SRG3300 SCTP out-of-bounds read [CVE-2017-15317]medium🔒---
111008Huawei Mate 9 GPU Driver double free [CVE-2017-15316]medium🔒---
111007Huawei SmartCare CSV injection [CVE-2017-15313]medium🔒---
111006Huawei SmartCare Dashboard Stored cross site scriptinglow🔒---
111005Huawei Mate 9/Mate 9 Pro/Mate 10/Mate 10 Pro Baseband Module memory corruptionmedium🔒---
111004Huawei iReader App SD Card input validation [CVE-2017-15310]low🔒---
111003Huawei iReader App path traversal [CVE-2017-15309]medium🔒---
111002Huawei iReader App URL input validation [CVE-2017-15308]medium🔒---
111001Huawei Honor 8 Permission Control access control [CVE-2017-15307]medium🔒---
111000Rockwell Automation FactoryTalk Alarms/Events Service Port TCP 403 input validationlow🔒---
110999Music Center for PC DLL Loader untrusted search path [CVE-2017-10909]low🔒---
110998H2O HTTP2 Header input validation [CVE-2017-10908]low🔒---
110997OneThird CMS Show Off path traversal [CVE-2017-10907]low🔒---
110996H2O range error [CVE-2017-10872]low🔒---
110995H2O memory corruption [CVE-2017-10869]low🔒--🔒
110994H2O HTTP1 Header input validation [CVE-2017-10868]low🔒--🔒
110993Moxa NPort W2150A/NPort W2250A credentials management [CVE-2017-16727]medium🔒---
110992Micro Focus Operations Manager i cross site scripting [CVE-2017-14363]low🔒---
110991F5 BIG-IP iControl REST race condition [CVE-2017-6167]medium🔒--🔒
110990F5 BIG-IP Traffic Management Microkernel input validation [CVE-2017-6164]medium🔒--🔒
110989F5 BIG-IP Virtual Server resource management [CVE-2017-6151]low🔒--🔒
110988F5 BIG-IP Virtual Server input validation [CVE-2017-6140]medium🔒--🔒
110987F5 BIG-IP APM Debug Mode Log log filelow🔒--🔒
110986F5 BIG-IP TMM input validation [CVE-2017-6138]low🔒--🔒
110985F5 BIG-IP Virtual Server Traffic Management Microkernel input validationlow🔒--🔒
110984F5 BIG-IP IPv4/IPv6 resource management [CVE-2017-6135]low🔒--🔒
110983F5 BIG-IP TMM input validation [CVE-2017-6134]low🔒--🔒
110982F5 BIG-IP HTTP input validation [CVE-2017-6133]low🔒--🔒
110981F5 BIG-IP TMM input validation [CVE-2017-6132]low🔒--🔒
110980F5 BIG-IP APM VPN/PPP input validation [CVE-2017-6129]low🔒--🔒
110979BitDefender Internet Security cevakrnl.xmd out-of-bounds writemedium🔒---
110978BitDefender Internet Security cevakrnl.xmd integer overflowmedium🔒---
110977BitDefender Internet Security cevakrnl.xmd integer overflowmedium🔒---
110976F5 BIG-IP AFM Management UI sql injection [CVE-2017-0304]medium🔒--🔒
110975F5 BIG-IP APM Portal access control [CVE-2017-0301]medium🔒--🔒
110974puppetlabs-mysql improper authentication [CVE-2015-7224]medium🔒---
110973Puppet Enterprise Certificate certificate validation [CVE-2015-4100]medium🔒--🔒
110972GitHub Git LFS Config File input validation [CVE-2017-17831]medium🔒--🔒
110971Bus Booking Script new_master.php cross-site request forgerylow🔒---
110970Bus Booking Script view_seatseller.php sql injectionmedium🔒---
110969Bus Booking Script results.php cross site scriptinglow🔒---
110968Piwigo Configuration admin.php cross-site request forgerylow🔒---
110967Piwigo Configuration admin.php Persistent cross site scriptinglow🔒---
110966Piwigo Batch Manager admin.php Persistent cross site scriptinglow🔒---
110965Piwigo Batch Manager batch_manager_unit.php sql injectionmedium🔒---
110964Piwigo Configuration configuration.php sql injectionmedium🔒---
110963Piwigo List Users API user_list_backend.php sql injectionmedium🔒---
110962WebKit FastBitVector.h resizeSlow memory corruptionmedium🔒---
110961Netwide Assembler preproc.c use after freelow🔒--🔒
110960NASM preproc.c find_cc null pointer dereferencelow🔒--🔒
110959NASM preproc.c paste_tokens memory corruptionmedium🔒--🔒
110958NASM preproc.c use after freelow🔒--🔒
110957NASM preproc.c pp_getline use after freelow🔒--🔒
110956NASM preproc.c is_mmacro Address unusual conditionlow🔒--🔒
110955NASM preproc.c use after freelow🔒--🔒
110954NASM preproc.c pp_list_one_macro use after freelow🔒--🔒
110953NASM preproc.c detoken memory corruptionmedium🔒--🔒
110952NASM preproc.c paste_tokens memory corruptionmedium🔒--🔒
110951NASM Macro Call preproc.c input validationlow🔒--🔒
110950Samsung Internet Browser information disclosure [CVE-2017-17692]medium🔒---
110949Genexis GAPS CPE Command information disclosure [CVE-2017-6094]medium🔒---
110948Cambium cnPilot Web Application cross-site request forgery [CVE-2017-5263]low🔒---
110947Cambium cnPilot SNMP information disclosure [CVE-2017-5262]low🔒---
110946Cambium cnPilot Administrative Console traceroute path traversalmedium🔒---
110945Cambium cnPilot Administrative Console down_cfg_file Config configmedium🔒---
110944Cambium cnPilot syscmd.asp 7pk securitymedium🔒---
110943Cambium ePMP SNMP cross site scripting [CVE-2017-5258]low🔒---
110942Cambium ePMP SNMP cross site scripting [CVE-2017-5257]low🔒---
110941Cambium ePMP Web Administration Console Persistent cross site scriptinglow🔒---
110940Cambium ePMP Web Management Console get_chart command injectionmedium🔒---
110939Cambium ePMP access control [CVE-2017-5254]medium🔒---
110938VMware vCenter Server Appliance showlog Plugin access controlmedium🔒--🔒
110937VMware ESXi/Workstation/Fusion VNC Session memory corruptionmedium🔒--🔒
110936VMware ESXi Host Client Stored cross site scriptinglow🔒--🔒
110935VMware ESXi/Workstation/Fusion VNC Session memory corruptionmedium🔒--🔒
110934Golden Frog VyprVPN vyprvpnservice Launch Daemon untrusted search pathlow🔒---
110933Linux Kernel KEYS Subsystem request_key.c request_key access controlmedium🔒--🔒
110932Linux Kernel HMAC hmac.c memory corruptionmedium🔒--🔒
110931Linux Kernel Salsa20 Encryption Algorithm salsa20_generic.c input validationmedium🔒--🔒
110930Ability Mail Server _readmail cross site scriptinglow🔒---
110929TP-LINK TL-SG108E Logout access control [CVE-2017-17747]low🔒---
110928TP-LINK TL-SG108E NAT access control [CVE-2017-17746]medium🔒---
110927TP-LINK TL-SG108E system_name_set.cgi cross site scriptinglow🔒---
110926IBM Security Guardium Back-End Database sql injection [CVE-2017-1757]medium🔒---
110925IBM Robotic Process Automation with Automation Anywhere Web UI cross site scriptinglow🔒---
110924Open Ticket Request System Cookie Session Hijacking access controlmedium🔒--🔒
110923IBM Jazz for Service Management cross-site request forgery [CVE-2017-1746]low🔒---
110922IBM QRadar input validation [CVE-2017-1696]medium🔒---
110921IBM Integration Bus Credentials information disclosure [CVE-2017-1694]medium🔒---
110920Ceph RADOS Gateway rgw_iam_policy.cc 7pk securitylow🔒--🔒
110919Ecava IntegraXor Database Log sql injection [CVE-2017-16735]medium🔒---
110918Ecava IntegraXor sql injection [CVE-2017-16733]medium🔒---
110917ABB Ellipse LDAP credentials management [CVE-2017-16731]medium🔒---
110916XiongMai IP Camera/DVR NetSurveillance Web Interface memory corruptionmedium🔒---
110915WECON LeviStudio HMI memory corruption [CVE-2017-16717]medium🔒---
110914Foxit Reader SIZ Marker out-of-bounds read [CVE-2017-16589]low🔒--🔒
110913Foxit Reader SOT Marker out-of-bounds read [CVE-2017-16588]low🔒--🔒
110912Foxit Reader removeField use after freemedium🔒---
110911Foxit Reader addAnnot use after freemedium🔒--🔒
110910Foxit Reader app.response use after freemedium🔒--🔒
110909Foxit Reader util.printf out-of-bounds readlow🔒---
110908Foxit Reader XFA Form use after free [CVE-2017-16583]medium🔒--🔒
110907Foxit Reader XFA clearItems type conversionmedium🔒---
110906Foxit Reader Document Object use after free [CVE-2017-16581]medium🔒--🔒
110905Foxit Reader XFA Form out-of-bounds read [CVE-2017-16580]low🔒---
110904Foxit Reader JPEG2000 Image out-of-bounds read [CVE-2017-16579]low🔒--🔒
110903Foxit Reader XFA Form type conversion [CVE-2017-16578]medium🔒---
110902Foxit Reader Field Object use after free [CVE-2017-16577]medium🔒--🔒
110901Foxit Reader XFA Field Element use after free [CVE-2017-16576]medium🔒--🔒
110900Foxit Reader XFA Bind Element use after free [CVE-2017-16575]medium🔒---
110899Foxit Reader Image Filter out-of-bounds read [CVE-2017-16574]low🔒---
110898Foxit Reader LZWDecode Filter out-of-bounds read [CVE-2017-16573]low🔒--🔒
110897Foxit Reader FormCalc closeDoc type conversionmedium🔒---
110896Foxit Reader FormCalc type conversion [CVE-2017-16571]medium🔒--🔒
110895IBM Jazz for Service Management cross-site request forgery [CVE-2017-1631]low🔒---
110894IBM Security Guardium Database Activity Monitor cross site scriptinglow🔒---
110893IBM Security Guardium Database Activity Monitor cryptographic issuesmedium🔒---
110892IBM Security Guardium Database Activity Monitor information disclosurelow🔒---
110891IBM Security Guardium Database Activity Monitor information disclosurelow🔒---
110890Symantec Messaging Gateway path traversal [CVE-2017-15532]medium🔒--🔒
110889Ikarus anti.virus Driver ntguard.sys out-of-bounds writemedium🔒---
110888Ikarus anti.virus Driver ntguard.sys input validationmedium🔒---
110887Ikarus anti.virus Driver ntguard.sys input validationmedium🔒---
110886Ikarus anti.virus Driver ntguard.sys input validationmedium🔒---
110885Ikarus anti.virus Driver ntguard.sys input validationmedium🔒---
110884Ikarus anti.virus Driver ntguard.sys input validationmedium🔒---
110883Ikarus anti.virus Driver ntguard.sys input validationmedium🔒---
110882Ikarus anti.virus Driver ntguard.sys out-of-bounds writemedium🔒---
110881IBM Business Process Manager Web UI cross site scripting [CVE-2017-1494]low🔒---
110880Foxit Reader XFA Layout Object pageSpan type conversionmedium🔒--🔒
110879Foxit Reader Annotation use after free [CVE-2017-14836]medium🔒--🔒
110878Foxit Reader XFA Layout Object page type conversionmedium🔒--🔒
110877Foxit Reader FileAttachment Annotation Object use after freemedium🔒--🔒
110876Foxit Reader Text Annotation Object use after free [CVE-2017-14833]medium🔒--🔒
110875Foxit Reader Caret Annotation Object use after free [CVE-2017-14832]medium🔒--🔒
110874Foxit Reader Circle Annotation Object use after free [CVE-2017-14831]medium🔒--🔒
110873Foxit Reader XFAScriptObject Object setFocus type conversionmedium🔒--🔒
110872Foxit Reader XFAScriptObject Object openList type conversionmedium🔒--🔒
110871Foxit Reader XFA Layout Object type conversion [CVE-2017-14828]medium🔒--🔒
110870Foxit Reader XFA Node Object append type conversionmedium🔒--🔒
110869Foxit Reader XFA Node Object formNodes type conversionmedium🔒--🔒
110868Foxit Reader XFAScriptObject Object remove type conversionmedium🔒--🔒
110867Foxit Reader XFAScriptObject Object insert type conversionmedium🔒--🔒
110866Foxit Reader XFA Signature Object type conversion [CVE-2017-14823]medium🔒--🔒
110865Foxit Reader SIZ Marker out-of-bounds read [CVE-2017-14822]low🔒---
110864Foxit Reader SIZ Marker out-of-bounds read [CVE-2017-14821]low🔒---
110863Foxit Reader JPEG2000 Image out-of-bounds read [CVE-2017-14820]low🔒---
110862Foxit Reader cdef Box out-of-bounds read [CVE-2017-14819]low🔒--🔒
110861Foxit Reader JPEG2000 Image out-of-bounds read [CVE-2017-14818]low🔒---
110860EMC Isilon OneFS NFS Service 7pk security [CVE-2017-14387]medium🔒---
110859IBM Data Domain DD OS SMB1 memory corruption [CVE-2017-14385]low🔒---
110858IBM Security Guardium Session session fixiation [CVE-2017-1270]medium🔒---
110857IBM Security Guardium Permission permission [CVE-2017-1266]medium🔒---
110856IBM Security Guardium HTTP Response Splitting response splittingmedium🔒---
110855IBM Security Guardium Log File information disclosure [CVE-2017-1261]low🔒---
110854IBM Security Guardium information disclosure [CVE-2017-1257]low🔒---
110853Synology Photo Station PixlrEditorHandler.php cross site scriptinglow🔒---
110852Foxit Reader Link Object setAction use after freemedium🔒--🔒
110851Foxit Reader Field Object use after free [CVE-2017-10958]medium🔒--🔒
110850Foxit Reader Annotation Object use after free [CVE-2017-10957]medium🔒---
110849Foxit Reader out-of-bounds read [CVE-2017-10956]medium🔒--🔒
110848SolarWinds Storage Manager/Storage Profiler/Backup Profiler LoginServlet Page sql injectionmedium🔒---
110847bSuite Plugin ui_stats.php cross site scriptinglow🔒---
110846Linksys WVBR0 os command injection [CVE-2017-17411]medium🔒---
110845Apple tvOS HomeKit state issue [CVE-2017-13903]medium🔒---
110844Ikarus Anti-Virus Driver ntguard.sys input validationmedium🔒---
110843TG Soft Vir.IT eXplorer Lite Driver VIRAGTLT.SYS input validationmedium🔒---
110842TG Soft Vir.IT eXplorer Lite Driver VIRAGTLT.SYS input validationmedium🔒---
110841TG Soft Vir.IT eXplorer Lite Driver VIRAGTLT.SYS input validationmedium🔒---
110840TG Soft Vir.IT eXplorer Lite Driver VIRAGTLT.SYS input validationmedium🔒---
110839TG Soft Vir.IT eXplorer Lite Driver VIRAGTLT.SYS input validationmedium🔒---
110838TG Soft Vir.IT eXplorer Lite Driver VIRAGTLT.SYS input validationmedium🔒---
110837Ikarus Anti-Virus Driver ntguard.sys input validationmedium🔒---
110836TG Soft Vir.IT eXplorer Lite Driver VIRAGTLT.SYS input validationmedium🔒---
110835Ikarus Anti-Virus Driver ntguard.sys input validationmedium🔒---
110834BlogoText Access Restriction preferences.php access controlmedium🔒---
110833BlogoText maintenance.php creer_fichier_zip information disclosurelow🔒---
110832BlogoText conv.php markup_clean_href cross site scriptinglow🔒---
110831Ruby resolv.rb new injectionmedium🔒--🔒
110830GIMP file-psp.c read_channel_data memory corruptionmedium🔒--🔒
110829GIMP xcf.c xcf_load_stream out-of-bounds readmedium🔒--🔒
110828GIMP file-psp.c read_creator_block out-of-bounds readmedium🔒--🔒
110827GIMP RGBA Image file-tga.c readimage out-of-bounds readmedium🔒--🔒
110826GIMP fli.c fli_read_brun memory corruptionmedium🔒--🔒
110825GIMP gbr Import Parser file-gbr.c load_image out-of-bounds readmedium🔒--🔒
110824GraphicsMagick palm.c readpalmimage memory corruptionmedium🔒--🔒
110823GraphicsMagick png.c memory corruptionmedium🔒--🔒
110822Horde Groupware prefs.php sql injectionmedium🔒---
110821Apple iOS HomeKit state issue [CVE-2017-13903]medium🔒---
110820Clockwork SM clockwork-test-message.php cross site scriptinglow🔒---
110819Paid To Read Script referrals.php sql injectionmedium🔒---
110818Paid To Read Script referrals.php cross site scriptinglow🔒---
110817Paid To Read Script viewvisitcamp.php improper authenticationmedium🔒---
110816Paid To Read Script userview.php Path information disclosurelow🔒---
110815Piwigo admin.php cross site scriptinglow🔒---
110814Piwigo configuration.php cross-site request forgerylow🔒---
110813SuperBeam Direct Share cryptographic issues [CVE-2017-17763]medium🔒---
110812Ichano AtHome IP Camera Noodles Service command injection [CVE-2017-17761]medium🔒---
110811Conarc iChannel wc.dll access control [CVE-2017-17759]medium🔒---
110810TP-LINK TL-WVR/TL-WAR dhcps.lua zone_get_iface_bydev command injectionmedium🔒---
110809TP-LINK TL-WVR/TL-WAR wportal.lua get_device_byif command injectionmedium🔒---
110808esb-csv-import-export Plugin esb-cie-import-export-page.php cross site scriptinglow🔒---
110807custom-map Plugin advancedsettings.php cross site scriptinglow🔒---
110806wp-concours Plugin concours_page.php cross site scriptinglow🔒---
110805SyncBreeze Enterprise Server Request memory corruption [CVE-2017-17088]medium🔒---
110804Meinberg Lantime Web Configuration Utility mainv2 File information disclosurelow🔒---
110803Zoom Client zoommtg:/ Scheme ZoomLauncher os command injectionmedium🔒---
110802Zoom Client zoommtg:/ Scheme ZoomLauncher memory corruptionmedium🔒---
110801JBPM Kie Workbench Task Name cross site scripting [CVE-2013-6465]low🔒---
110800Zivif PR115-204-P-RS hard-coded credentials [CVE-2017-17107]high🔒---
110799Zivif PR115-204-P-RS param.cgi credentials managementmedium🔒---
110798Zivif PR115-204-P-RS iptest.cgi command injectionmedium🔒---
110797AccessKeys AccessPress Anonymous Post Pro Plugin file-uploader.php unrestricted uploadmedium🔒---
110796GPWeb User Database db.php Credentials information disclosurelow🔒---
110795GPWeb File Upload unrestricted upload [CVE-2017-15876]medium🔒---
110794GPWeb Password Recovery sql injection [CVE-2017-15875]medium🔒---
110793Kemp Load Balancer Web Application Firewall 7pk security [CVE-2017-15524]medium🔒---
110792MT4 SenhaSegura Web Application login_if.php session fixiationmedium🔒---
110791IBM WebSphere information disclosure [CVE-2017-1423]low🔒---
110790ZUUSE BEIMS ContractorWeb .NET List sql injectionmedium🔒---
110789Apache Sling Authentication Service Credentials information disclosurelow🔒---
110788Heketi 5 Server Configuration File heketi.json Password information disclosurelow🔒--🔒
110787Heketi 5 Server API input validation [CVE-2017-15103]medium🔒--🔒
110786NetApp Clustered Data ONTAP SMB input validation [CVE-2017-14583]low🔒---
110785Apache Drill Query Page cross site scripting [CVE-2017-12630]low🔒---
110784Linux Kernel KVM x86.c out-of-bounds readmedium🔒--🔒
110783OpenLDAP nops Module nops.c memory corruptionlow🔒--🔒
110782BrightSign Digital Signage storage.html path traversalmedium🔒---
110781BrightSign Digital Signage tools.html File access controlmedium🔒---
110780BrightSign Digital Signage network_diagnostics.html cross site scriptinglow🔒---
110779CMS Made Simple Login Cache information disclosure [CVE-2017-17735]medium🔒---
110778CMS Made Simple Login Cache information disclosure [CVE-2017-17734]medium🔒---
110777Paid To Read Script userview.php sql injectionmedium🔒---
110776Readymade Video Sharing Script single-video-detail.php code injectionlow🔒---
110775Bus Booking Script index.php sql injectionmedium🔒---
110774FS Lynda Clone sql injection [CVE-2017-17643]medium🔒---
110773MacCMS index.php command injectionmedium🔒---
110772DeDeCMS recommend.php sql injectionmedium🔒---
110771DeDeCMS flink_add.php sql injectionmedium🔒---
110770DeDeCMS File Upload article_edit.php unrestricted uploadmedium🔒---
110769GNU C Library dl-load.c untrusted search pathlow🔒--🔒
110768net-ldap gem SSL Certificate Validator certificate validationmedium🔒---
110767Sonatype Nexus Repository Manager Password risky encryption [CVE-2017-17717]medium🔒---
110766GitLab LDAP SSL Certificate Verification certificate validationmedium🔒---
110765QNAP QTS memory corruption [CVE-2017-17033]medium🔒---
110764QNAP QTS memory corruption [CVE-2017-17032]medium🔒---
110763QNAP QTS memory corruption [CVE-2017-17031]medium🔒---
110762QNAP QTS memory corruption [CVE-2017-17030]medium🔒---
110761QNAP QTS memory corruption [CVE-2017-17029]medium🔒---
110760QNAP QTS memory corruption [CVE-2017-17028]medium🔒---
110759QNAP QTS memory corruption [CVE-2017-17027]medium🔒---
110758Apple iTunes WebKit memory corruption [CVE-2017-13866]medium🔒--🔒
110757Apple iTunes WebKit memory corruption [CVE-2017-13870]medium🔒--🔒
110756Apple iTunes WebKit memory corruption [CVE-2017-13856]medium🔒--🔒
110755Apple iTunes WebKit memory corruption [CVE-2017-7157]medium🔒--🔒
110754Apple iTunes WebKit memory corruption [CVE-2017-7156]medium🔒--🔒
110753Apple iTunes APNs Server Track information disclosurelow🔒---
110752Apple Safari WebKit memory corruption [CVE-2017-13866]medium🔒--🔒
110751Apple Safari WebKit memory corruption [CVE-2017-13870]medium🔒--🔒
110750Apple Safari WebKit memory corruption [CVE-2017-13856]medium🔒--🔒
110749Apple Safari WebKit memory corruption [CVE-2017-7157]medium🔒--🔒
110748Apple Safari WebKit memory corruption [CVE-2017-7156]medium🔒--🔒
110747Telegram Messenger MediaController.java saveFile path traversalmedium🔒---
110746Trape cross site scripting [CVE-2017-17714]low🔒---
110745Trape sql injection [CVE-2017-17713]medium🔒---
110744UrBackup Server cross site scripting [CVE-2017-16950]low🔒---
110743Maplesoft Maple T.A. Password Page PasswordReset.do Reflected cross site scriptinglow🔒---
110742PCAUSA Rawether Framework BPF Data memory corruption [CVE-2017-3196]medium🔒---
110741Commvault Edge Communication Service memory corruption [CVE-2017-3195]medium🔒---
110740Pandora SSL Certificate Validator information disclosure [CVE-2017-3194]medium🔒---
110739D-Link DIR-850L HNAP Service memory corruption [CVE-2017-3193]medium🔒---
110738D-Link DIR-130/DIR-330 Base64 Encoding tools_admin.asp Credentials credentials managementmedium🔒---
110737D-Link DIR-130/DIR-330 Remote Management tools_admin.asp input validationmedium🔒---
110736Flash Seats Mobile App SSL Certificate Validator certificate validationmedium🔒---
110735ACTi Camera hard-coded credentials [CVE-2017-3186]medium🔒---
110734ACTi Camera HTTP GET information disclosure [CVE-2017-3185]low🔒---
110733ACTi Camera setup_maintain_firmware-default.html hard-coded credentialsmedium🔒---
110732Linux Kernel raw.c raw_sendmsg race conditionmedium🔒--🔒
110731K7 Antivirus K7Sentry.sys null pointer dereference [CVE-2017-17701]low🔒---
110730K7 Antivirus K7Sentry.sys null pointer dereference [CVE-2017-17700]low🔒---
110729K7 Antivirus K7Sentry.sys null pointer dereference [CVE-2017-17699]medium🔒---
110728Zoho ManageEngine Password Manager Pro BulkAccessControlView.ec Reflected cross site scriptinglow🔒---
110727Harbor target.go Ping server-side request forgerymedium🔒---
110726Techno Portfolio Management Panel search.php Path information disclosurelow🔒---
110725Techno Portfolio Management Panel search.php sql injectionmedium🔒---
110724Techno Portfolio Management Panel search.php cross site scriptinglow🔒---
110723Techno Portfolio Management Panel portfolio.php access controlmedium🔒---
110722VideoLAN VLC Media Player MP4 Converter libmp4.c Invalid Free use after freemedium🔒--🔒
110721Synaptics TouchPad Driver Registry information disclosure [CVE-2017-17556]low🔒--🔒
110720Ruby Net::FTP os command injection [CVE-2017-17405]medium🔒--🔒
110719Meinberg Lantime Web Configuration Utility path traversal [CVE-2017-16788]low🔒---
110718Meinberg Lantime Web Configuration Utility mainv2 information disclosurelow🔒---
110717Mckesson Conserus Workflow Intelligence credentials managementmedium🔒---
110716Synology MailPlus Server cross site scripting [CVE-2017-15890]low🔒---
110715Fortinet FortiClient information disclosure [CVE-2017-14184]low🔒---
110714Mckesson Conserus Image Repository Archive Solution xml external entity referencemedium🔒---
110713Trend Micro ScanMail for Exchange Log Query/Quarantine Query cross site scriptinglow🔒--🔒
110712Trend Micro ScanMail for Exchange Web Interface cross-site request forgerylow🔒--🔒
110711Trend Micro ScanMail for Exchange Other Update Sources insufficient verification of data authenticitymedium🔒--🔒
110710Trend Micro ScanMail for Exchange inadequate encryption [CVE-2017-14090]medium🔒--🔒
110709Cisco ASA 5500 TLS Protocol Bleichenbacher cryptographic issueslow🔒--🔒
110708Trend Micro Encryption for Email DLL Preloader untrusted search pathmedium🔒---
110707Qt access control [CVE-2017-10905]medium🔒---
110706Qt os command injection [CVE-2017-10904]medium🔒---
110705Fortinet FortiClient Security Alert access control [CVE-2017-7344]medium🔒---
110704Rapid7 Nexpose Web Application cross-site request forgery [CVE-2017-5264]low🔒---
110703Phusion Passenger Spawner.h information disclosurelow🔒--🔒
110702ecstatic npm Regular Expression ecstatic.js input validationlow🔒---
110701Apache Fineract Query sql injection [CVE-2017-5663]medium🔒---
110700Panda Global Protection memory corruption [CVE-2017-17684]medium🔒---
110699Panda Global Protection memory corruption [CVE-2017-17683]medium🔒---
110698ImageMagick WPG Image wpg.c ExtractPostscript resource consumptionlow🔒--🔒
110697ImageMagick psd.c ReadPSDChannelZip resource consumptionlow🔒--🔒
110696ImageMagick XPM Image xpm.c ReadXPMImage memory corruptionlow🔒--🔒
110695Bob Hepple gjots2 URL gui.py injectionmedium🔒---
110694Mensis URL uiutil.c injectionmedium🔒---
110693Tkabber URL injection [CVE-2017-17533]medium🔒---
110692Kiwi URL news3.py injectionmedium🔒---
110691GNU Global URL gozilla.c injectionmedium🔒--🔒
110690Geomview URL help.c injectionmedium🔒---
110689AbiWord URL ut_go_file.cpp injectionmedium🔒---
110688ScummVM URL posix.cpp injectionmedium🔒--🔒
110687PasDoc URL WWWBrowserRunnerDM.pas injectionmedium🔒---
110686Bernard Parisse Giac URL Input.cc injectionmedium🔒---
110685xTuple PostBooks URL guiclient.cpp injectionmedium🔒---
110684SWI-Prolog URL www_browser.pl injectionmedium🔒---
110683Python URL webbrowser.py injectionmedium🔒---
110682FontForge URL uiutil.c injectionmedium🔒---
110681TIN URL url_handler.pl injection [Disputed]medium🔒---
110680OCaml Batteries URL batteriesConfig.mlp injectionmedium🔒---
110679White_dune URL browser.c injectionmedium🔒---
110678Sylpheed URL utils.c injectionmedium🔒---
110677Reddit Terminal Viewer URL inspect_webbrowser.py injectionmedium🔒---
110676Metview URL ObjectList injectionmedium🔒---
110675nip2 URL boxes.c injectionmedium🔒---
110674TeX Live URL mtxrun.lua injectionmedium🔒---
110673KildClient URL prefs.c injectionmedium🔒--🔒
110672Fortinet FortiOS SSL VPN Web Portal Session information disclosurelow🔒--🔒
110671vBulletin cacheTemplates unserialize deserializationmedium🔒---
110670vBulletin path traversal [CVE-2017-17671]medium🔒---
110669Exiv2 pngchunk_int.cpp keyTXTChunk memory corruptionmedium🔒--🔒
110668Octopus Deploy Update Process access control [CVE-2017-17665]medium🔒---
110667Digium Asterisk RTCP Stack memory corruption [CVE-2017-17664]low🔒--🔒
110666Entrepreneur Dating Script search_result.php sql injectionmedium🔒---
110665Citrix Netscaler Application Delivery Controller/Gateway TLS Handshake information disclosurelow🔒--🔒
110664MikroTik RouterBOARD TCP Service 53 input validation [CVE-2017-17537]low🔒---
110663radware Alteon Private Key Bleichenbacher cryptographic issuesmedium🔒--🔒
110662Citrix Netscaler Application Delivery Controller TLS Bleichenbacher information disclosurelow🔒--🔒
110661IBM Tivoli Workload Scheduler information disclosure [CVE-2017-1716]low🔒---
110660IBM Tivoli Monitoring use after free [CVE-2017-1635]medium🔒---
110659IBM Maximo Asset Management redirect [CVE-2017-1558]medium🔒---
110658Norton Family Android App information disclosure [CVE-2017-15530]low🔒---
110657Norton Family Android App resource consumption [CVE-2017-15529]low🔒---
110656IBM DOORS Next Generation Web UI cross site scripting [CVE-2017-1546]low🔒---
110655Atlassian Bamboo Branch Name command injection [CVE-2017-14590]medium🔒--🔒
110654Atlassian Bamboo Double OGNL Evaluation Java input validationmedium🔒--🔒
110653EMC Isilon OneFS compadmin isi_get_profile access controlmedium🔒---
110652IBM iNotes Web UI cross site scripting [CVE-2017-1421]low🔒---
110651Adobe Flash Player Global Settings denial of service [CVE-2017-11305]low🔒--🔒
110650tibbr Community/tibbr Enterprise User Profiles access controlmedium🔒---
110649tibbr Community/tibbr Enterprise SAML access control [CVE-2017-5530]medium🔒---
110648VMware AirWatch Console/AirWatch Inbox Access Control access controlmedium🔒---
110647Basic Job Site Script job sql injectionmedium🔒---
110646Resume Clone Script preview.php sql injectionmedium🔒---
110645Advanced World Database city.php sql injectionmedium🔒---
110644Muslim Matrimonial Script success-story.php sql injectionmedium🔒---
110643Groupon Clone Script city_ajax.php sql injectionmedium🔒---
110642Car Rental Script countrycode1.php sql injectionmedium🔒---
110641MLM Forced Matrix news-detail.php sql injectionmedium🔒---
110640MLM Forex Market Plan Script news_detail.php sql injectionmedium🔒---
110639Single Theater Booking Script findcity.php sql injectionmedium🔒---
110638Multiplex Movie Theater Booking Script trailer-detail.php sql injectionmedium🔒---
110637Responsive Events And Movie Ticket Booking findcity.php sql injectionmedium🔒---
110636Multireligion Responsive Matrimonial success-story.php sql injectionmedium🔒---
110635Yoga Class Script list sql injectionmedium🔒---
110634Secure E-commerce Script category.php sql injectionmedium🔒---
110633Responsive Realestate Script sql injection [CVE-2017-17628]medium🔒---
110632Readymade Video Sharing Script single-video-detail.php sql injectionmedium🔒---
110631Readymade PHP Classified Script categories sql injectionmedium🔒---
110630Professional Service Script sql injection [CVE-2017-17625]medium🔒---
110629PHP Multivendor Ecommerce single_detail.php sql injectionmedium🔒---
110628Opensource Classified Ads Script advance_result.php sql injectionmedium🔒---
110627Online Exam Test Application exams.php sql injectionmedium🔒---
110626Multivendor Penny Auction Clone Script detail sql injectionmedium🔒---
110625Lawyer Search Script lawyer-list sql injectionmedium🔒---
110624Laundry Booking Script list sql injectionmedium🔒---
110623Kickstarter Clone Script investcalc.php sql injectionmedium🔒---
110622Foodspotting Clone Script quicksearch.php sql injectionmedium🔒---
110621Event Search Script event-list sql injectionmedium🔒---
110620Facebook Clone Script friend-profile.php sql injectionmedium🔒---
110619Food Order Script list sql injectionmedium🔒---
110618Freelance Website Script jobdetails.php sql injectionmedium🔒---
110617Hot Scripts Clone categories sql injectionmedium🔒---
110616Doctor Search Script list sql injectionmedium🔒---
110615E-commerce MLM Software service_detail.php sql injectionmedium🔒---
110614Chartered Accountant Booking Script service-list sql injectionmedium🔒---
110613Child Care Script list sql injectionmedium🔒---
110612CMS Auditor Website news-detail sql injectionmedium🔒---
110611Co-work Space Search Script list sql injectionmedium🔒---
110610Consumer Complaints Clone Script other-user-profile.php sql injectionmedium🔒---
110609Entrepreneur Bus Booking Script booker_details.php sql injectionmedium🔒---
110608Advanced Real Estate Script search-results.php sql injectionmedium🔒---
110607Advance B2B Script tradeshow-list-detail.php sql injectionmedium🔒---
110606Cab Booking Script service-list sql injectionmedium🔒---
110605Basic B2B Script product_details.php sql injectionmedium🔒---
110604Advance Online Learning Management Script courselist.php sql injectionmedium🔒---
110603Affiliate MLM Script product-category.php sql injectionmedium🔒---
110602Nearbuy Clone Script category_list.php sql injectionmedium🔒---
110601Entrepreneur Job Portal Script jobsearch_all.php sql injectionmedium🔒---
110600Beauty Parlour Booking Script list sql injectionmedium🔒---
110599DomainSale PHP Script domain.php sql injectionmedium🔒---
110598Simple Chatting System File Upload my_profile.php access controlmedium🔒---
110597Website Auction Marketplace search.php sql injectionmedium🔒---
110596Realestate Crowdfunding Script single-cause.php sql injectionmedium🔒---
110595FS Stackoverflow Clone question sql injectionmedium🔒---
110594FS Thumbtack Clone browse-category.php sql injectionmedium🔒---
110593FS IMDB Clone movie.php sql injectionmedium🔒---
110592FS Indiamart Clone catcompany.php sql injectionmedium🔒---
110591FS Olx Clone subpage.php sql injectionmedium🔒---
110590FS Monster Clone Employer_Details.php sql injectionmedium🔒---
110589FS Makemytrip Clone show-flight-result.php sql injectionmedium🔒---
110588FS Shutterstock Clone Category sql injectionmedium🔒---
110587FS Grubhub Clone food sql injectionmedium🔒---
110586FS Quibids Clone itechd.php sql injectionmedium🔒---
110585FS Linkedin Clone group.php sql injectionmedium🔒---
110584FS Freelancer Clone profile.php sql injectionmedium🔒---
110583FS Crowdfunding Script latest_news_details.php sql injectionmedium🔒---
110582FS Trademe Clone search_item.php sql injectionmedium🔒---
110581FS Gigs Script browse-category.php sql injectionmedium🔒---
110580FS Groupon Clone item_details.php sql injectionmedium🔒---
110579FS Care Clone searchJob.php sql injectionmedium🔒---
110578FS Ebay Clone product.php sql injectionmedium🔒---
110577FS Amazon Clone VerAyari sql injectionmedium🔒---
110576FS Foodpanda Clone food sql injectionmedium🔒---
110575FS Expedia Clone pages.php sql injectionmedium🔒---
110574Scubez Posty Readymade Classifieds user_activate_submit.php cross site scriptinglow🔒---
110573Scubez Posty Readymade Classifieds Access Control user_activate_submit.php access controllow🔒---
110572Scubez Posty Readymade Classifieds user_activate_submit.php sql injectionmedium🔒---
110571MikroTik ICMP Packet resource management [CVE-2017-17538]low🔒---
110570Micro Focus Project/Portfolio Management Center cross-site request forgerylow🔒---
110569Micro Focus Project/Portfolio Management Center access controlmedium🔒---
110568wolfSSL Bleichenbacher Oracle Key Recovery cryptographic issuesmedium🔒--🔒
110567BouncyCastle TLS JCE Key Recovery cryptographic issuesmedium🔒--🔒
110566Microsoft Edge Scripting Engine information disclosure [CVE-2017-11919]low🔒--🔒
110565Microsoft Edge Scripting Engine memory corruption [CVE-2017-11912]medium🔒--🔒
110564Microsoft Edge Scripting Engine memory corruption [CVE-2017-11895]medium🔒--🔒
110563Microsoft Edge Scripting Engine memory corruption [CVE-2017-11894]medium🔒--🔒
110562Intel Graphics Driver Content Protection HECI Service type conversionmedium🔒---
110561Xen Shadow Mode data processing [CVE-2017-17566]medium🔒--🔒
110560Xen Shadow Mode input validation [CVE-2017-17565]medium🔒--🔒
110559Xen Error 7pk error [CVE-2017-17564]medium🔒--🔒
110558Xen Shadow Mode memory corruption [CVE-2017-17563]medium🔒--🔒
110557EmbedThis GoAhead cgi.c cgiHandler input validationmedium🔒---
110556SeaCMS admin_ping.php access controlmedium🔒---
110555Western Digital MyCloud PR4100 Web Administration multi_uploadify.php improper authenticationmedium🔒--🔒
110554openstack-tripleo-heat-templates Permission access control [CVE-2017-12155]low🔒---
110553Microsoft Office information disclosure [CVE-2017-11939]low🔒---
110552Microsoft SharePoint Enterprise Server Web Request access controlmedium🔒--🔒
110551Microsoft Excel memory corruption [CVE-2017-11935]medium🔒---
110550Microsoft PowerPoint information disclosure [CVE-2017-11934]low🔒--🔒
110549Microsoft Exchange Server Outlook Web Access input validationmedium🔒--🔒
110548Microsoft Internet Explorer Scripting Engine memory corruptionmedium🔒--🔒
110547Microsoft Windows its:/ Protocol information disclosure [CVE-2017-11927]low🔒--🔒
110546Microsoft Internet Explorer Scripting Engine information disclosurelow🔒--🔒
110545Microsoft Edge Scripting Engine memory corruption [CVE-2017-11918]medium🔒--🔒
110544Microsoft ChakraCore Scripting Engine memory corruption [CVE-2017-11916]medium🔒---
110543Microsoft Edge Scripting Engine GetPropertyBuiltIns memory corruptionmedium🔒--🔒
110542Microsoft Internet Explorer Scripting Engine memory corruptionmedium🔒--🔒
110541Microsoft Internet Explorer Scripting Engine memory corruptionmedium🔒--🔒
110540Microsoft Edge Scripting Engine asm.js memory corruptionmedium🔒--🔒
110539Microsoft Edge Scripting Engine memory corruption [CVE-2017-11910]medium🔒--🔒
110538Microsoft Edge Scripting Engine RemoveEmptyLoopAfterMemOp memory corruptionmedium🔒--🔒
110537Microsoft Edge Scripting Engine memory corruption [CVE-2017-11908]medium🔒--🔒
110536Microsoft Internet Explorer Scripting Engine JScript.dll Array.sort memory corruptionmedium🔒--🔒
110535Microsoft Internet Explorer Scripting Engine LastParen information disclosurelow🔒--🔒
110534Microsoft Edge Scripting Engine memory corruption [CVE-2017-11905]medium🔒--🔒
110533Microsoft Internet Explorer Scripting Engine memory corruptionmedium🔒--🔒
110532Microsoft Internet Explorer Scripting Engine memory corruptionmedium🔒--🔒
110531Microsoft Windows Device Guard 7pk security [CVE-2017-11899]medium🔒--🔒
110530Microsoft Internet Explorer Scripting Engine memory corruptionmedium🔒--🔒
110529Microsoft Internet Explorer Scripting Engine memory corruptionmedium🔒--🔒
110528Microsoft Edge Scripting Engine Op_MinInAnArray memory corruptionmedium🔒--🔒
110527Microsoft Internet Explorer Scripting Engine Compile memory corruptionmedium🔒--🔒
110526Microsoft Edge Scripting Engine memory corruption [CVE-2017-11889]medium🔒--🔒
110525Microsoft Edge memory corruption [CVE-2017-11888]medium🔒--🔒
110524Microsoft Internet Explorer Scripting Engine information disclosurelow🔒--🔒
110523Microsoft Internet Explorer Scripting Engine memory corruptionmedium🔒--🔒
110522Microsoft Windows RRAS input validation [CVE-2017-11885]medium🔒--🔒
110521Erlang otp TLS Server RSA PKCS Padding cryptographic issues [CVE-2017-1000385]medium🔒--🔒
110520Linux Kernel USB Core System config.c usb_destroy_configuration out-of-bounds writemedium🔒--🔒
110519FFmpeg/aubio libswresample audioconvert.c swri_audio_convert null pointer dereferencelow🔒--🔒
110518aubio source_avcodec.c aubio_source_avcodec_readframe null pointer dereferencelow🔒--🔒
110517SAP Basis Note Assistant tool Signature input validationmedium🔒---
110516SAP Plant Connectivity NwSapSetup/Installation Self-Extracting Program DWMAPI.dll untrusted search pathmedium🔒---
110515SAP Kernel Trusted RFC Connection improper authentication [CVE-2017-16689]medium🔒---
110514SAP HANA User Self-Service Tools information disclosurelow🔒---
110513SAP Business Warehouse Universal Data Integration Encoding cross site scriptinglow🔒---
110512SAP Business Intelligence Promotion Management Application improper authenticationmedium🔒---
110511SAP Business Objects Platform denial of service [CVE-2017-16683]low🔒---
110510SAP NetWeaver Internet Transaction Server code injection [CVE-2017-16682]medium🔒---
110509SAP Business Intelligence Promotion Management Applicatio Encoding cross site scriptinglow🔒---
110508SAP HANA HTTP/REST Endpoint Controller Log injectionmedium🔒---
110507SAP Kernel Startup Service redirect [CVE-2017-16679]medium🔒---
110506SAP EPBC2 server-side request forgery [CVE-2017-16678]low🔒---
110505CogniToys Dino Smart Toy Voice Traffic key management [CVE-2017-8867]medium🔒---
110504CogniToys Dino Smart Toy VoIP Traffic risky encryption [CVE-2017-8866]medium🔒---
110503CogniToys Dino Smart Toy VoIP Traffic information disclosuremedium🔒---
110502ACDSee Ultimate PSD File out-of-bounds write [CVE-2017-2886]medium🔒---
110501IBM WebSphere MQ Queue Manager access control [CVE-2017-1760]low🔒---
110500MoboTap Dolphin Browser Intent URI Scheme 7pk security [CVE-2017-17553]low🔒---
110499MoboTap Dolphin Browser Backup/Restore input validation [CVE-2017-17551]low🔒---
110498Posty Readymade Classifieds Script listings.php sql injectionmedium🔒---
110497Techno Portfolio Management Panel single.php sql injectionmedium🔒---
110496IBM Connections Engagement Center Web UI cross site scriptinglow🔒---
110495Phoenix Contact FL Comserver cross site scripting [CVE-2017-16723]low🔒---
110494IBM Sterling File Gateway Web UI cross site scripting [CVE-2017-1632]low🔒---
110493IBM Connections Engagement Center Template information disclosuremedium🔒---
110492IBM Financial Transaction Manager sql injection [CVE-2017-1606]medium🔒---
110491Palo Alto PAN-OS Management Interface access control [CVE-2017-15944]medium🔒--🔒
110490Palo Alto PAN-OS Web Interface server-side request forgery [CVE-2017-15943]medium🔒--🔒
110489Palo Alto PAN-OS Management Interface resource management [CVE-2017-15942]low🔒--🔒
110488Palo Alto PAN-OS Web Interface command injection [CVE-2017-15940]medium🔒--🔒
110487Node.js Encoding Buffer.alloc information disclosuremedium🔒--🔒
110486Node.js TLS Handshake SSL_read 7pk errormedium🔒--🔒
110485Palo Alto GlobalProtect Agent access control [CVE-2017-15870]medium🔒---
110484Apache Synapse Apache Commons Collections injection [CVE-2017-15708]medium🔒---
110483IBM Sterling File Gateway Password 7pk security [CVE-2017-1550]medium🔒---
110482IBM Sterling File Gateway Web UI cross site scripting [CVE-2017-1549]low🔒---
110481IBM Sterling File Gateway path traversal [CVE-2017-1548]low🔒---
110480IBM WebSphere Portal cross site scripting [CVE-2017-1536]low🔒---
110479IBM Jazz Foundation information disclosure [CVE-2017-1507]low🔒---
110478QNAP Qsync untrusted search path [CVE-2017-13070]medium🔒---
110477Check_MK HTTP Basic Authentication cross site scripting [CVE-2017-11507]low🔒--🔒
110476Perspective ICM Investigation / Case access control [CVE-2017-11319]medium🔒---
110475Linux Kernel Diagnostic Port unusual condition [CVE-2017-1000407]medium🔒--🔒
110474Clustered Data ONTAP VASA Provider Credentials credentials managementmedium🔒---
110473Puppet Enterprise Cookie information disclosure [CVE-2015-8470]medium🔒---
110472Puppet Enterprise Console cross site scripting [CVE-2015-6502]low🔒---
110471Huawei EC156/EC176/EC177 Partner.exe untrusted search pathmedium🔒---
110470puppet Configuration File certificate validation [CVE-2014-3250]low🔒--🔒
110469Phabricator Mercurial hg command injection [CVE-2017-17536]medium🔒---
110468LilyPond lilypond-invoke-editor injection [CVE-2017-17523]medium🔒---
110467sensible-utils sensible-browser injection [CVE-2017-17512]medium🔒--🔒
110466LANDesk Management Suite permission [CVE-2017-11463]medium🔒---
110465Apple watchOS Wi-Fi KRACK 7pk securitymedium🔒--🔒
110464Apple watchOS Kernel information disclosure [CVE-2017-13869]low🔒--🔒
110463Apple watchOS Kernel information disclosure [CVE-2017-13868]low🔒--🔒
110462Apple watchOS Kernel information disclosure [CVE-2017-13865]low🔒--🔒
110461Apple watchOS Kernel memory corruption [CVE-2017-13867]medium🔒--🔒
110460Apple watchOS Kernel type conversion [CVE-2017-13855]low🔒--🔒
110459Apple watchOS Kernel memory corruption [CVE-2017-13833]medium🔒--🔒
110458Apple watchOS Kernel memory corruption [CVE-2017-13876]medium🔒--🔒
110457Apple watchOS Kernel memory corruption [CVE-2017-13862]medium🔒--🔒
110456Apple watchOS IOSurface memory corruption [CVE-2017-13861]medium🔒---
110455HDF5 H5Gcache.c H5G__ent_decode_vec out-of-bounds writemedium🔒---
110454HDF5 H5T.c H5T_set_loc divide by zerolow🔒---
110453HDF5 H5Tconv.c H5T_conv_struct_opt out-of-bounds readmedium🔒---
110452HDF5 H5Opline.c H5Opline_pline_decode out-of-bounds readmedium🔒---
110451HDF5 H5Opline.c H5O_pline_decode null pointer dereferencelow🔒---
110450ImageMagick png.c ReadOneMNGImage memory corruptionmedium🔒--🔒
110449GraphicsMagick gray.c ReadGRAYImage out-of-bounds readmedium🔒--🔒
110448GraphicsMagick cmyk.c ReadCMYKImage out-of-bounds readmedium🔒--🔒
110447GraphicsMagick png.c WriteOnePNGImage out-of-bounds readmedium🔒--🔒
110446GraphicsMagick rgb.c ReadRGBImage out-of-bounds readmedium🔒--🔒
110445ImageMagick Image.cpp read use after freemedium🔒--🔒
110444GraphicsMagick pnm.c WritePNMImage memory corruptionmedium🔒--🔒
110443TIBCO BusinessWorks Process Monitor Integration Matters nJAMS cross site scriptinglow🔒---
110442tidy clean.c prvTidyTidyMetaCharset memory corruptionlow🔒---
110441idevicerestore Access Restriction socket.c socket_create access controlmedium🔒---
110440International Components for Unicode ucnv_u8.cpp ucnv_UTF8FromUTF8 memory corruptionmedium🔒--🔒
110439Adobe Flash Player Out-of-Range out-of-bounds read [CVE-2017-3114]medium🔒--🔒
110438Adobe Flash Player AdobePSDK Pointer out-of-bounds readmedium🔒--🔒
110437Adobe Experience Manager Token information disclosure [CVE-2017-3111]low🔒---
110436Adobe Experience Manager HtmlRendererServlet Reflected cross site scriptinglow🔒---
110435AMAG Symmetry Door Edge Network Controller Serial over TCP/IP access controlmedium🔒---
110434Adobe Photoshop use after free [CVE-2017-11304]medium🔒--🔒
110433Adobe Photoshop memory corruption [CVE-2017-11303]medium🔒--🔒
110432Adobe InDesign memory corruption [CVE-2017-11302]medium🔒---
110431Adobe Digital Editions information disclosure [CVE-2017-11301]medium🔒--🔒
110430Adobe Digital Editions information disclosure [CVE-2017-11300]medium🔒--🔒
110429Adobe Digital Editions information disclosure [CVE-2017-11299]medium🔒--🔒
110428Adobe Digital Editions information disclosure [CVE-2017-11298]medium🔒--🔒
110427Adobe Digital Editions information disclosure [CVE-2017-11297]medium🔒--🔒
110426Adobe Experience Manager Apache Sling Servlets Post cross site scriptinglow🔒---
110425Adobe DNG Converter memory corruption [CVE-2017-11295]medium🔒---
110424Adobe Shockwave memory corruption [CVE-2017-11294]medium🔒--🔒
110423Adobe Connect server-side request forgery [CVE-2017-11291]medium🔒--🔒
110422Adobe Connect 7pk security [CVE-2017-11290]medium🔒--🔒
110421Adobe Connect Reflected cross site scripting [CVE-2017-11289]low🔒--🔒
110420Adobe Connect Reflected cross site scripting [CVE-2017-11288]low🔒--🔒
110419Adobe Connect Reflected cross site scripting [CVE-2017-11287]low🔒--🔒
110418Adobe Digital Editions XML File information disclosure [CVE-2017-11273]low🔒--🔒
110417Adobe Flash Player use after free [CVE-2017-11225]medium🔒--🔒
110416Adobe Flash Player use after free [CVE-2017-11215]medium🔒--🔒
110415Adobe Flash Player out-of-bounds read [CVE-2017-11213]medium🔒--🔒
110414Apple macOS Screen Sharing Server privileges management [CVE-2017-13826]medium🔒--🔒
110413Apple macOS OpenSSL memory corruption [CVE-2017-3735]medium🔒--🔒
110412Apple macOS Mail Drafts information disclosure [CVE-2017-13860]medium🔒--🔒
110411Apple macOS Mail state issue [CVE-2017-13871]medium🔒--🔒
110410Apple macOS Kernel information disclosure [CVE-2017-13869]low🔒--🔒
110409Apple macOS Kernel information disclosure [CVE-2017-13868]low🔒--🔒
110408Apple macOS Kernel information disclosure [CVE-2017-13865]low🔒--🔒
110407Apple macOS Kernel memory corruption [CVE-2017-13867]medium🔒--🔒
110406Apple macOS Kernel type conversion [CVE-2017-13855]low🔒--🔒
110405Apple macOS Kernel memory corruption [CVE-2017-13876]medium🔒--🔒
110404Apple macOS Kernel memory corruption [CVE-2017-13833]medium🔒--🔒
110403Apple macOS Kernel memory corruption [CVE-2017-13862]medium🔒--🔒
110402Apple macOS IOKit memory corruption [CVE-2017-13847]medium🔒--🔒
110401Apple macOS IOKit input validation [CVE-2017-13858]medium🔒--🔒
110400Apple macOS IOKit input validation [CVE-2017-13848]medium🔒--🔒
110399Apple macOS IOAcceleratorFamily information disclosure [CVE-2017-13844]medium🔒--🔒
110398Apple macOS Intel Graphics Driver out-of-bounds read [CVE-2017-13875]medium🔒--🔒
110397Apple macOS Intel Graphics Driver out-of-bounds read [CVE-2017-13878]medium🔒--🔒
110396Apple macOS Intel Graphics Driver memory corruption [CVE-2017-13883]medium🔒--🔒
110394Apple macOS curl memory corruption [CVE-2017-1000254]medium🔒--🔒
110393Apple macOS apache use after free [CVE-2017-9798]low🔒--🔒
110392Apple iOS Mail Drafts information disclosure [CVE-2017-13860]medium🔒--🔒
110391Apple iOS Mail 7pk security [CVE-2017-13874]medium🔒---
110390Apple iOS Kernel information disclosure [CVE-2017-13869]low🔒--🔒
110389Apple iOS Kernel information disclosure [CVE-2017-13868]low🔒--🔒
110388Apple iOS Kernel information disclosure [CVE-2017-13865]low🔒--🔒
110387Apple iOS Kernel memory corruption [CVE-2017-13867]medium🔒--🔒
110386Apple iOS Kernel type conversion [CVE-2017-13855]low🔒--🔒
110385Apple iOS Kernel memory corruption [CVE-2017-13833]medium🔒--🔒
110384Apple iOS Kernel memory corruption [CVE-2017-13876]medium🔒--🔒
110383Apple iOS Kernel memory corruption [CVE-2017-13862]medium🔒--🔒
110382Apple iOS IOSurface memory corruption [CVE-2017-13861]medium🔒--🔒
110381Apple iOS IOMobileFrameBuffer memory corruption [CVE-2017-13879]medium🔒---
110380Apple iOS IOKit memory corruption [CVE-2017-13847]medium🔒--🔒
110379Apple tvOS Wi-Fi random values [CVE-2017-13080]medium🔒--🔒
110378Apple tvOS Kernel information disclosure [CVE-2017-13869]low🔒--🔒
110377Apple tvOS Kernel information disclosure [CVE-2017-13868]low🔒--🔒
110376Apple tvOS Kernel information disclosure [CVE-2017-13865]low🔒--🔒
110375Apple tvOS Kernel memory corruption [CVE-2017-13867]medium🔒--🔒
110374Apple tvOS Kernel type conversion [CVE-2017-13855]medium🔒--🔒
110373Apple tvOS Kernel memory corruption [CVE-2017-13833]medium🔒--🔒
110372Apple tvOS Kernel memory corruption [CVE-2017-13876]medium🔒--🔒
110371Apple tvOS Kernel memory corruption [CVE-2017-13862]medium🔒--🔒
110370Apple tvOS IOSurface memory corruption [CVE-2017-13861]medium🔒---
110369OpenJPEG convert.c pgxtovolume out-of-bounds writemedium🔒--🔒
110368OpenJPEG convert.c pgxtoimage out-of-bounds writemedium🔒--🔒
110367TG Soft Vir.IT eXplorer Lite memory corruption [CVE-2017-17475]medium🔒---
110366TG Soft Vir.IT eXplorer Lite memory corruption [CVE-2017-17474]medium🔒---
110365TG Soft Vir.IT eXplorer Lite memory corruption [CVE-2017-17473]medium🔒---
110364TG Soft Vir.IT eXplorer Lite memory corruption [CVE-2017-17472]medium🔒---
110363TG Soft Vir.IT eXplorer Lite memory corruption [CVE-2017-17471]medium🔒---
110362TG Soft Vir.IT eXplorer Lite memory corruption [CVE-2017-17470]medium🔒---
110361TG Soft Vir.IT eXplorer Lite memory corruption [CVE-2017-17469]medium🔒---
110360TG Soft Vir.IT eXplorer Lite access control [CVE-2017-17468]medium🔒---
110359TG Soft Vir.IT eXplorer Lite memory corruption [CVE-2017-17467]medium🔒---
110358TG Soft Vir.IT eXplorer Lite access control [CVE-2017-17466]medium🔒---
110357Open Ticket Request System PGP command injection [CVE-2017-16921]medium🔒--🔒
110356Open Ticket Request System Ticket Search information disclosurelow🔒--🔒
110355Synology Router Manager SYNO.FileStation.Extract path traversalmedium🔒---
110354Synology DiskStation Manager SYNO.FileStation.Extract path traversalmedium🔒---
110353Synology File Station SYNO.FileStation.Extract path traversalmedium🔒---
110352Synology Calendar Access Control SYNO.Cal.EventBase access controlmedium🔒---
110351Kaspersky Embedded Systems Security Kernel memory corruptionmedium🔒---
110350Microsoft Windows Malware Protection Engine memory corruptionmedium🔒--🔒
110349Kibana Fix CVE-2017-8451 redirect [CVE-2017-11482]medium🔒---
110348Kibana URL cross site scripting [CVE-2017-11481]low🔒---
110347Packetbeat PostgreSQL Protocol Logging access controllow🔒---
110346Fluentd Termin UI command injection [CVE-2017-10906]medium🔒---
110345Buffalo BBR-4HG and/BBR-4MG Unresponsive input validation [CVE-2017-10897]low🔒---
110344Buffalo BBR-4HG and/BBR-4MG cross site scripting [CVE-2017-10896]low🔒---
110343Public Certification Service for Individuals untrusted search pathlow🔒---
110342K7 Antivirus K7Sentry.sys null pointer dereference [CVE-2017-17465]low🔒---
110341K7 Antivirus K7Sentry.sys null pointer dereference [CVE-2017-17464]low🔒---
110340Vivo Modem HTML Source Code index.cgi information disclosurelow🔒---
110339npm Regular Expression marked.js input validationlow🔒---
110338OpenSSL Montgomery Multiplication rsaz_1024_mul_avx2 information disclosuremedium🔒--🔒
110337OpenSSL Error State SSL_do_handshake 7pk errormedium🔒--🔒
110336Fossil SSH Sync Protocol http_transport.c command injectionmedium🔒--🔒
110335Mercurial Repository post-update os command injectionmedium🔒--🔒
110334IBM Connections Web UI cross site scripting [CVE-2017-1498]low🔒---
110333IBM Sterling File Gateway information disclosure [CVE-2017-1497]low🔒---
110332IBM Sterling File Gateway information disclosure [CVE-2017-1487]low🔒---
110331IBM Sterling B2B Integrator Standard Edition Web UI cross site scriptinglow🔒---
110330IBM Sterling B2B Integrator Standard Edition information disclosurelow🔒---
110329IBM TRIRIGA cross site scripting [CVE-2017-1465]medium🔒---
110328Dell 2335dn/2355dn Web User Interface cross site scripting [CVE-2017-14386]low🔒---
110327IBM WebSphere MQ RFH Header data processing [CVE-2017-1433]medium🔒--🔒
110326IBM Atlas eDiscovery Process Management sql injection [CVE-2017-1356]medium🔒---
110325IBM Atlas eDiscovery Process Management URL Parameter Referrer information disclosurelow🔒---
110324IBM Atlas eDiscovery Process Management Web UI cross site scriptinglow🔒---
110323IBM Atlas eDiscovery Process Management information disclosurelow🔒---
110322IBM Insights Foundation for Energy Error Message information disclosurelow🔒---
110321IBM WebSphere MQ access control [CVE-2017-1341]medium🔒--🔒
110320IBM InfoSphere BigInsights code injection [CVE-2017-1336]medium🔒---
110319IBM Security Guardium Algorithm Negotiation inadequate encryptionmedium🔒---
110318Microsoft Windows Malware Protection Engine memory corruptionmedium🔒--🔒
110317Linux Kernel L2CAP Command l2cap_parse_conf_req information disclosuremedium🔒--🔒
110316libsndfile ulaw.c d2ulaw_array out-of-bounds readlow🔒--🔒
110315libsndfile alaw.c d2alaw_array out-of-bounds readlow🔒--🔒
110314Sangoma NetBorder/Vega Session Controller Web Interface access controlmedium🔒---
110313ISPConfig Cron Job access control [CVE-2017-17384]medium🔒---
110312QEMU Virtio Vring divide by zero [CVE-2017-17381]low🔒--🔒
110311Red Hat Enterprise Linux fuse Filesystem input validation [CVE-2017-15121]low🔒--🔒
110310WP Mailster Plugin Unsubscribe unsubscribe2.php cross site scriptinglow🔒---
110309Linux Kernel Access Restriction xt_osf.c 7pk securitylow🔒--🔒
110308Linux Kernel af_netlink.c __netlink_deliver_tap_skb information disclosurelow🔒--🔒
110307Linux Kernel Access Restriction nfnetlink_cthelper.c 7pk securitylow🔒--🔒
110306Vaultek Gun Safe VT20i inadequate encryption [CVE-2017-17436]medium🔒---
110305Vaultek Gun Safe VT20i PIN improper authentication [CVE-2017-17435]medium🔒---
110304game-music-emu Data_Reader.cpp read_avail numeric errorlow🔒---
110303Auth0 auth0.js Library auth0.popup.callback information disclosuremedium🔒---
110302Google Android NVIDIA Mediaserver use after free [CVE-2017-6276]medium🔒---
110301Google Android NVIDIA Driver use after free [CVE-2017-6263]medium🔒---
110300Google Android NVIDIA Driver use after free [CVE-2017-6262]medium🔒---
110299GNU Libextractor xm_extractor.c EXTRACTOR_xm_extract_method null pointer dereferencelow🔒--🔒
110298Heimdal KDC kerberos5.c der_length_visible_string null pointer dereferencelow🔒--🔒
110297Google Android NVIDIA libwilhelm information disclosure [CVE-2017-13175]low🔒---
110296Google Android Kernel edl access control [CVE-2017-13174]medium🔒---
110295Google Android MediaTek System Server access control [CVE-2017-13173]medium🔒---
110294Google Android MediaTek Bluetooth Driver access control [CVE-2017-13172]medium🔒---
110293Google Android MediaTek Performance Service access control [CVE-2017-13171]medium🔒---
110292Google Android MediaTek Display Driver access control [CVE-2017-13170]medium🔒---
110291Google Android Kernel Camera Server information disclosure [CVE-2017-13169]low🔒---
110290Google Android Kernel SCSI Driver access control [CVE-2017-13168]medium🔒--🔒
110289Google Android Kernel Sound Timer access control [CVE-2017-13167]medium🔒--🔒
110288Google Android Kernel v4l2 Video Driver access control [CVE-2017-13166]medium🔒--🔒
110287Google Android Kernel File System access control [CVE-2017-13165]medium🔒---
110286Google Android Kernel Binder Driver information disclosure [CVE-2017-13164]low🔒---
110285Google Android Kernel MTP USB Driver access control [CVE-2017-13163]medium🔒---
110284Google Android Kernel Binder access control [CVE-2017-13162]medium🔒---
110283Google Android Broadcom Wireless Driver access control [CVE-2017-13161]medium🔒---
110282Google Android Bluetooth access control [CVE-2017-13160]medium🔒---
110281Google Android activitymanagerservice information disclosurelow🔒---
110280Google Android activitymanagerservice information disclosurelow🔒---
110279Google Android activitymanagerservice information disclosurelow🔒---
110278Google Android art access control [CVE-2017-13156]medium🔒---
110277Google Android Media Framework access control [CVE-2017-13154]medium🔒---
110276Google Android Media Framework access control [CVE-2017-13153]medium🔒---
110275Google Android Media Framework information disclosure [CVE-2017-13152]low🔒---
110274Google Android Media Framework access control [CVE-2017-13151]medium🔒---
110273Google Android Media Framework information disclosure [CVE-2017-13150]low🔒---
110272Google Android Media Framework information disclosure [CVE-2017-13149]low🔒---
110271Google Android Media Framework input validation [CVE-2017-13148]low🔒---
110270Google Android Media Framework access control [CVE-2017-0880]low🔒---
110269Google Android Media Framework information disclosure [CVE-2017-0879]low🔒---
110268Google Android Media Framework input validation [CVE-2017-0878]medium🔒---
110267Google Android Media Framework input validation [CVE-2017-0877]medium🔒---
110266Google Android Media Framework input validation [CVE-2017-0876]medium🔒---
110265Google Android Media Framework input validation [CVE-2017-0874]low🔒---
110264Google Android Media Framework input validation [CVE-2017-0873]low🔒---
110263Google Android Media Framework input validation [CVE-2017-0872]medium🔒---
110262Google Android Framework Base access control [CVE-2017-0871]medium🔒---
110261Google Android libminikin access control [CVE-2017-0870]medium🔒---
110260Google Android Media Framework access control [CVE-2017-0837]medium🔒---
110259Puppet Agent pxp-agent code injection [CVE-2016-5713]medium🔒---
110258rsync Access Restriction receiver.c read_ndx_and_attrs access controlmedium🔒--🔒
110257rsync Daemon receiver.c recv_files access controlmedium🔒--🔒
110256Jenkins Job Configuration cross site scripting [CVE-2017-17383]low🔒--🔒
110255Amazon Audible ActiveSetupN.exe untrusted search pathlow🔒---
110254Google Android Linux Kernel access control [CVE-2017-9716]medium🔒---
110253Google Android Linux Kernel memory corruption [CVE-2017-6211]medium🔒---
110252VMware NSX-V Edge OSPF resource consumption [CVE-2017-4920]low🔒---
110251OpenAFS Rx ack Packet integer underflow [CVE-2017-17432]low🔒--🔒
110250GeniXCMS cross site scripting [CVE-2017-17431]low🔒---
110249Linux Kernel l2cap Socket core.c bnep_add_connection access controlmedium🔒--🔒
110248Google Android GPS Location Wireless Interface use after freehigh🔒---
110247Google Android Message Passing Interface memory corruption [CVE-2017-14917]high🔒---
110246Google Android Message Passing Interface memory corruption [CVE-2017-14916]high🔒---
110245Google Android Global Client Structure input validation [CVE-2017-14914]medium🔒---
110244Google Android Count input validation [CVE-2017-14909]high🔒---
110243Google Android SafeSwitch Test Application input validation [CVE-2017-14908]high🔒---
110242Google Android Mediaserver access control [CVE-2017-14904]medium🔒---
110241Google Android GLink Kernel Driver use after free [CVE-2017-14902]medium🔒---
110240Google Android Linux Kernel memory corruption [CVE-2017-14897]medium🔒---
110239Google Android Linux Kernel access control [CVE-2017-14895]medium🔒---
110238Dell Storage Manager SMI-S Service hard-coded credentials [CVE-2017-14374]low🔒---
110237HPE Connected Backup access control [CVE-2017-14355]low🔒---
110236Johnson & Johnson Ethicon Endo-Surgery Generator Gen11 improper authenticationlow🔒---
110235Google Android Linux Kernel integer overflow [CVE-2017-11043]medium🔒---
110234Google Android Linux Kernel HandleMetaImgFlash memory corruptionmedium🔒---
110233Google Android Linux Kernel use after free [CVE-2017-11006]medium🔒---
110232Google Android Linux Kernel use after free [CVE-2017-11005]medium🔒---
110231Google Android Linux Kernel memory corruption [CVE-2017-9722]medium🔒---
110230Google Android Linux Kernel memory corruption [CVE-2017-9718]low🔒---
110229Google Android Linux Kernel memory corruption [CVE-2017-9710]medium🔒---
110228Google Android Linux Kernel access control [CVE-2017-9709]medium🔒---
110227Google Android Camera Driver msm_ois_power_down race conditionlow🔒---
110226Google Android Camera Driver use after free [CVE-2017-9703]medium🔒---
110225Google Android Linux Kernel fw_name_store memory corruptionmedium🔒---
110224Google Android Linux Kernel memory corruption [CVE-2017-9698]medium🔒---
110223GNU C Library malloc integer overflowmedium🔒--🔒
IDTitleVulDBCVSSSecuniaXForceNessus
110222OpenStack Nova FilterScheduler resource management [CVE-2017-17051]low🔒---
110221Bitbucket Auto-Unapprove Plugin Event access control [CVE-2017-16857]medium🔒---
110220Atlassian Confluence RSS Feed Macro cross site scripting [CVE-2017-16856]low🔒---
110219Google Android Linux Kernel memory corruption [CVE-2017-15813]medium🔒---
110218Google Android Linux Kernel cryptographic issues [CVE-2017-14907]medium🔒---
110217Google Android Linux Kernel memory corruption [CVE-2017-14905]medium🔒---
110216Google Android Linux Kernel memory corruption [CVE-2017-14903]medium🔒---
110215Google Android Linux Kernel memory corruption [CVE-2017-14901]medium🔒---
110214Google Android Linux Kernel memory corruption [CVE-2017-14900]medium🔒---
110213Google Android Linux Kernel memory corruption [CVE-2017-14899]medium🔒---
110212Google Android Linux Kernel memory corruption [CVE-2017-14898]medium🔒---
110211Google Android Linux Kernel Kernel Memory memory corruptionmedium🔒---
110210Google Android Linux Kernel memory corruption [CVE-2017-11049]medium🔒---
110209Google Android Graphics Driver copy_from_user Kernel Memory access controlmedium🔒---
110208Google Android Camera Driver use after free [CVE-2017-11045]medium🔒---
110207Google Android Linux Kernel use after free [CVE-2017-11044]medium🔒---
110206Google Android Access Control access control [CVE-2017-11042]medium🔒---
110205Google Android Linux Kernel use after free [CVE-2017-11033]medium🔒---
110204Google Android Linux Kernel use after free [CVE-2017-11031]medium🔒---
110203Google Android Linux Kernel hdmi_edid_sysfs_rda_res_info Kernel Memory access controlmedium🔒---
110202Google Android Linux Kernel get_metadata memory corruptionlow🔒---
110201Google Android Linux Kernel create_cal_block access controllow🔒---
110200postgresql-common pg_ctlcluster postgresql link followinglow🔒--🔒
110199Tor Hidden Service Descriptor memory corruption [CVE-2016-1254]low🔒--🔒
110198wheezy LZMA File os command injection [CVE-2016-1253]medium🔒---
110197Linux Kernel System Call proto.c dccp_disconnect use after freemedium🔒--🔒
110196i2pd/kovri I2P Routing information disclosure [CVE-2017-17066]medium🔒---
110195Claymore Dual GPU Miner Remote Management Interface memory corruptionmedium🔒---
110194Claymore Dual GPU Miner Remote Management Interface path traversalmedium🔒---
110193Synology DiskStation Manager smart.cgi command injectionmedium🔒---
110192Synology Photo Station HTTP Config File .htaccess information disclosurelow🔒---
110191Synology Photo Station picasa.php File information disclosurelow🔒---
110190QEMU NBD Server out-of-bounds write [CVE-2017-15118]medium🔒--🔒
110189MistServer api cross site scriptinglow🔒---
110188Artica Web Proxy freeradius.users.php os command injectionmedium🔒---
110187ZKTime Web Department Reflected cross site scriptinglow🔒---
110186ZKTime Web Modify Password password_change cross-site request forgerylow🔒---
110185Geovap Reliance SCADA cross site scripting [CVE-2017-16721]low🔒---
110184libav mpegpicture.c ff_free_picture_tables memory corruptionmedium🔒--🔒
110183libav vc1_mc.c ff_vc1_mc_4mv_chroma4 null pointer dereferencelow🔒---
110182libav h264_slice.c h264_slice_init memory corruptionlow🔒---
110181libav vc1dec.c vc1_decode_frame null pointer dereferencelow🔒---
110180GNU binutils readelf.c load_debug_section memory corruptionlow🔒--🔒
110179GNU binutils nm.c _bfd_elf_get_symbol_version_string memory corruptionmedium🔒--🔒
110178GNU binutils coffgen.c bfd_coff_read_string_table memory corruptionmedium🔒--🔒
110177GNU binutils coffcode.h coff_slurp_reloc_table null pointer dereferencelow🔒--🔒
110176GNU binutils objdump.c dump_relocs_in_section integer overflowmedium🔒--🔒
110175GNU binutils libbfd memory corruption [CVE-2017-17121]medium🔒--🔒
110174Ikarus anti.virus ntguard_x64.sys memory corruption [CVE-2017-17114]medium🔒---
110173Ikarus anti.virus ntguard_x64.sys null pointer dereference [CVE-2017-17113]low🔒---
110172Ikarus anti.virus ntguard_x64.sys memory corruption [CVE-2017-17112]medium🔒---
110171Fiyo CMS check_file.php File information disclosurelow🔒---
110170Fiyo CMS sys_user.php sql injectionmedium🔒---
110169Fiyo CMS site.php sql injectionmedium🔒---
110168Flexense SyncBreeze Enterprise HTTP Server memory corruptionmedium🔒---
110167Content Cards Plugin OpenGraph Data cross site scripting [CVE-2017-17096]low🔒---
110166Tor Onion Service v2 use after free [CVE-2017-8823]medium🔒--🔒
110165Tor Downloaded Descriptor Anonymity path errorlow🔒--🔒
110164Tor PEM Hang memory corruptionlow🔒--🔒
110163Tor null pointer dereference [CVE-2017-8820]low🔒--🔒
110162Tor Replay-Cache Protection access control [CVE-2017-8819]medium🔒--🔒
110161SAP Business Objects Financial Consolidation cross site scriptinglow🔒---
110160LibTIFF pal2rgb pal2rgb.c TIFFSetupStrips memory corruptionmedium🔒--🔒
110159WordPress URL feed.php cross site scriptinglow🔒--🔒
110158WordPress HTML Element general-template.php cross site scriptinglow🔒--🔒
110157WordPress JS File functions.php cross site scriptinglow🔒--🔒
110156WordPress Access Restriction user-new.php access controlmedium🔒--🔒
110155Cisco Umbrella Virtual Appliance SSH 7pk security [CVE-2017-6679]medium🔒---
110154Adobe RoboHelp redirect [CVE-2017-3105]medium🔒--🔒
110153Adobe RoboHelp cross site scripting [CVE-2017-3104]low🔒--🔒
110152Digium Asterisk chan_skinny Channel Driver chan_skinny.c resource managementlow🔒--🔒
110151VIM SWP File fileio.c information disclosurelow🔒--🔒
110150Indeo Otter script Tag input validation [CVE-2017-17086]low🔒---
110149Wireshark CIP Safety Dissector packet-cipsafety.c unusual conditionlow🔒--🔒
110148Wireshark IWARP_MPA Dissector packet-iwarp-mpa.c unusual conditionlow🔒--🔒
110147Wireshark NetBIOS Dissector packet-netbios.c unusual conditionlow🔒--🔒
110146ZTE ZXDSL 831CII HTTP Basic Authentication connoppp.cgi improper authenticationmedium🔒---
110145Arq arq_updater access control [CVE-2017-16895]medium🔒---
110144Piwigo tags.php sql injectionmedium🔒---
110143libXcursor integer overflow [CVE-2017-16612]medium🔒--🔒
110142libXfont/libXfont2 7pk security [CVE-2017-16611]low🔒--🔒
110141Apache Struts REST Plugin input validation [CVE-2017-15707]low🔒--🔒
110140Apache Qpid Broker-J access control [CVE-2017-15702]medium🔒---
110139Apache Qpid Broker-J AMQP Frame resource consumption [CVE-2017-15701]low🔒---
110138Inedo Otter path traversal [CVE-2017-15607]medium🔒---
110137Arq Auto-Update setpermissions race conditionlow🔒---
110136Hikvision Wi-Fi IP Camera Access Point access control [CVE-2017-14953]medium🔒---
110135OhMiBod Remote App OhMiBod API Server OMB.xml cryptographic issuesmedium🔒---
110134Vibease Wireless Remote Vibrator App information disclosure [CVE-2017-14486]low🔒---
110133iSmartAlarm CubeOne Password File Credentials information disclosurelow🔒---
110132iSmartAlarm CubeOne Log File Key information disclosuremedium🔒---
110131Adobe ColdFusion xml external entity reference [CVE-2017-11286]medium🔒--🔒
110130Adobe ColdFusion Reflected cross site scripting [CVE-2017-11285]low🔒--🔒
110129Adobe ColdFusion deserialization [CVE-2017-11284]medium🔒--🔒
110128Adobe ColdFusion deserialization [CVE-2017-11283]medium🔒--🔒
110127Adobe Flash Player MP4 Atom Parser memory corruption [CVE-2017-11282]medium🔒--🔒
110126Adobe Flash Player memory corruption [CVE-2017-11281]medium🔒--🔒
110125PTW-WMS1 improper authentication [CVE-2017-10903]high🔒---
110124PTW-WMS1 os command injection [CVE-2017-10902]medium🔒---
110123PTW-WMS1 memory corruption [CVE-2017-10901]medium🔒---
110122PTW-WMS1 Access Restriction access control [CVE-2017-10900]medium🔒---
110121A-Reserve/A-Reserve for MT Cloud sql injection [CVE-2017-10899]medium🔒---
110120A-Member/A-Member for MT Cloud sql injection [CVE-2017-10898]medium🔒---
110119sDNSProxy.exe unusual condition [CVE-2017-10895]low🔒---
110118StreamRelay.NET.exe unusual condition [CVE-2017-10894]low🔒---
110117Music Center for PC untrusted search path [CVE-2017-10892]low🔒---
110116Media Go untrusted search path [CVE-2017-10891]low🔒---
110115PWR-Q200 DNS Query Cache Poisoning random valuesmedium🔒---
110114QND path traversal [CVE-2017-10861]low🔒---
110113Lenovo XClarity Administrator LXCA Web User Interface information disclosurelow🔒---
110112FFmpeg MPEG File mpegvideodsp.c gmc_mmx out-of-bounds readlow🔒--🔒
110111GNU binutils libbfd elf.c memory corruptionmedium🔒--🔒
110110D-Link DIR-605L HNAP input validation [CVE-2017-17065]low🔒---
110109Linux Kernel rng.c rngapi_reset null pointer dereferencelow🔒--🔒
110108Restlet Framework REST API HTTP Request xml external entity referencemedium🔒---
110107Restlet Framework SimpleXMLProvider xml external entity referencemedium🔒---
110106Apache CXF Fediz Spring cross-site request forgery [CVE-2017-12631]low🔒---
110105OpenDaylight Karaf Cache 7pk security [CVE-2017-1000406]medium🔒---
110104Linux Kernel THP pmd_mkdirty race conditionlow🔒--🔒
110103Splunk Enterprise Web Impersonation access controlmedium🔒--🔒
110102Squiz Matrix Tag access control [CVE-2017-14198]medium🔒---
110101Squiz Matrix WYSIWYG Plugin Reflected cross site scriptinglow🔒---
110100Squiz Matrix File Bridge Plugin path traversal [CVE-2017-14196]low🔒---
110099Cisco WebEx Network Recording Player ARF/WRF File memory corruptionmedium🔒--🔒
110098Cisco WebEx Network Recording Player ARF/WRF File memory corruptionmedium🔒--🔒
110097Cisco WebEx Network Recording Player ARF/WRF File memory corruptionmedium🔒--🔒
110096Cisco WebEx Network Recording Player ARF/WRF File out-of-bounds readmedium🔒--🔒
110095Cisco WebEx Network Recording Player ARF/WRF File memory corruptionmedium🔒--🔒
110094Cisco WebEx Network Recording Player ARF/WRF File input validationmedium🔒--🔒
110093Cisco WebEx Meeting Center cross site scripting [CVE-2017-12366]low🔒---
110092Cisco WebEx Event Center information disclosure [CVE-2017-12365]low🔒---
110091Cisco Prime Service Catalog SQL Query sql injection [CVE-2017-12364]medium🔒---
110090Cisco WebEx Meeting Server Welcome Message access control [CVE-2017-12363]medium🔒---
110089Cisco Meeting Server resource management [CVE-2017-12362]low🔒---
110088Cisco Jabber information disclosure [CVE-2017-12361]low🔒---
110087Cisco WebEx Network Recording Player WRF Player resource managementlow🔒---
110086Cisco WebEx Network Recording Player ARF Player memory corruptionmedium🔒---
110085Cisco Jabber Web-based Management Interface cross site scriptinglow🔒---
110084Cisco Unified Communications Manager Web-based Management Interface cross site scriptinglow🔒---
110083Cisco Jabber Web-based Management Interface cross site scriptinglow🔒---
110082Cisco IOS XR Local Packet Transport Services resource managementlow🔒---
110081Cisco Secure Access Control System Web Interface information disclosurelow🔒---
110080Cisco Email Security Appliance MIME Scanner 7pk security [CVE-2017-12353]medium🔒--🔒
110079Cisco Application Policy Infrastructure Controller Script File command injectionmedium🔒---
110078Cisco NX-OS Guest Shell access control [CVE-2017-12351]medium🔒---
110077Cisco UCS Central Software Web-based Management Interface cross site scriptinglow🔒---
110076Cisco UCS Central Software Web-based Management Interface cross site scriptinglow🔒---
110075Cisco Data Center Network Manager Configuration Parameter cross site scriptinglow🔒---
110074Cisco Data Center Network Manager Configuration Parameter cross site scriptinglow🔒---
110073Cisco Data Center Network Manager Configuration Parameter input validationlow🔒---
110072Cisco Data Center Network Manager Configuration Parameter redirectlow🔒---
110071Cisco Data Center Network Manager Configuration Parameter input validationlow🔒---
110070Cisco NX-OS Open Agent Container access control [CVE-2017-12342]medium🔒---
110069Cisco NX-OS CLI command injection [CVE-2017-12341]medium🔒---
110068Cisco NX-OS access control [CVE-2017-12340]medium🔒---
110067Cisco NX-OS CLI command injection [CVE-2017-12339]medium🔒---
110066Cisco NX-OS CLI input validation [CVE-2017-12338]medium🔒---
110065Cisco NX-OS TCL Script Subsystem input validation [CVE-2017-12336]medium🔒---
110064Cisco NX-OS CLI command injection [CVE-2017-12335]medium🔒---
110063Cisco NX-OS CLI input validation [CVE-2017-12334]medium🔒---
110062Cisco NX-OS Software Image signature verification [CVE-2017-12333]medium🔒---
110061Cisco NX-OS Patch Installation unrestricted upload [CVE-2017-12332]low🔒---
110060Cisco NX-OS Software Patch signature verification [CVE-2017-12331]medium🔒---
110059Cisco NX-OS CLI Parser command injection [CVE-2017-12330]medium🔒---
110058Cisco Firepower Extensible Operating System/NX-OS CLI Parser command injectionmedium🔒---
110057Cisco IP Phone 8800 Session Initiation Protocol input validationlow🔒---
110056Cisco WebEx Meeting Center Access Control input validation [CVE-2017-12297]medium🔒---
110055cURL/libcURL SSL Library memory corruption [CVE-2017-8818]medium🔒--🔒
110054cURL/libcURL FTP Wildcard out-of-bounds read [CVE-2017-8817]medium🔒--🔒
110053cURL/libcURL NTLM Authentication integer overflow [CVE-2017-8816]medium🔒--🔒
110052amtyThumb amty-thumb-recent-post amtyThumbPostsAdminPg.php cross site scriptinglow🔒---
110051Atlassian FishEye/Crucible argument injection [CVE-2017-14591]medium🔒---
110050EMC RSA Authentication Agent API 7pk error [CVE-2017-14378]medium🔒---
110049EMC RSA Authentication Agent for Web improper authenticationmedium🔒--🔒
110048Fortinet FortiWebManager Access Control access control [CVE-2017-14189]medium🔒---
110047Fortinet FortiOS Web Portal cross site scripting [CVE-2017-14186]low🔒--🔒
110046Apple macOS Directory Utility Login improper authenticationmedium🔒--🔒
110045WooCommerce Plugin path traversal [CVE-2017-17058]medium🔒---
110044aubio source_wavread.c new_aubio_source_wavread divide by zerolow🔒--🔒
110043Linux Kernel Crafted Program mmu_context.h init_new_context use after freemedium🔒--🔒
110042Linux Kernel Crafted Program fork.c mm_init use after freemedium🔒--🔒
110041TG Soft Vir.IT eXplorer Lite Viragtlt null pointer dereferencemedium🔒---
110040TG Soft Vir.IT eXplorer Lite Viragtlt null pointer dereferencemedium🔒---
110039Dahua IP Camera/IP PTZ Temporary Password cryptographic issuesmedium🔒---
110038Xen DRAM information disclosure [CVE-2017-17046]low🔒--🔒
110037Xen PoD Error access control [CVE-2017-17045]medium🔒--🔒
110036Xen PoD Error data processing [CVE-2017-17044]medium🔒--🔒
110035Emag Marketplace Connector Plugin awb-meta-box.php Reflected cross site scriptinglow🔒---
110034YARD file.rb path traversal [CVE-2017-17042]low🔒--🔒
110033KMPlayer NSV File input validation [CVE-2017-16952]low🔒---
110032WinAmp Pro Media File input validation [CVE-2017-16951]low🔒---
110031CS-Cart Administration files unrestricted uploadmedium🔒---
110030EMC ScaleIO SDBG Service memory corruption [CVE-2017-8020]high🔒---
110029EMC ScaleIO MDM/SDS/LIA input validation [CVE-2017-8019]low🔒---
110028EMC ScaleIO Log File credentials management [CVE-2017-8001]low🔒---
110027Cloud Foundry Cloud Controller Takeover access controlmedium🔒---
110026Pebble Smartwatch UUID Storage information disclosure [CVE-2016-10702]medium🔒---
110025Hitachi Vantara Pentaho BA Business Analytics cross-site request forgerylow🔒---
110024Dahua IPC-HDW4300S Firmware Upgrade improper authentication [CVE-2017-9316]medium🔒---
110023Linux Kernel pagewalk.c mincore Kernel Memory information disclosurelow🔒--🔒
110022IBM DOORS Next Generation Web UI cross site scripting [CVE-2017-1689]low🔒---
110021IBM DOORS Next Generation Web UI cross site scripting [CVE-2017-1688]low🔒---
110020IBM DOORS Next Generation Web UI cross site scripting [CVE-2017-1678]low🔒---
110019IBM DOORS Next Generation Web UI cross site scripting [CVE-2017-1650]low🔒---
110018IBM Business Process Manager Event Manager improper authorizationlow🔒---
110017IBM DOORS Next Generation Web UI cross site scripting [CVE-2017-1607]low🔒---
110016IBM DOORS Next Generation Web UI cross site scripting [CVE-2017-1593]low🔒---
110015IBM Jazz Foundation Stack Trace information disclosure [CVE-2017-1570]low🔒---
110014IBM DOORS Next Generation Web UI cross site scripting [CVE-2017-1560]low🔒---
110013libvirtd config [CVE-2017-15114]medium🔒---
110012Foreman Facts Submission Stored cross site scriptinglow🔒--🔒
110011TeamPass Access Control items.queries.php access controlmedium🔒---
110010TeamPass File Upload upload.files.php unrestricted uploadmedium🔒---
110009TeamPass Access Control roles.queries.php access controlmedium🔒---
110008TeamPass Access Control users.queries.php access controlmedium🔒---
110007TeamPass Stored cross site scripting [CVE-2017-15051]low🔒---
110006IBM WebSphere Commerce Enterprise information disclosure [CVE-2017-1484]low🔒---
110005IBM DOORS Next Generation Web UI cross site scripting [CVE-2017-1461]low🔒---
110004Hipchat Desktop Client Video Call Link Parser memory corruptionmedium🔒---
110003Hipchat Server server-side request forgery [CVE-2017-14585]medium🔒---
110002IBM WebSphere MQ resource management [CVE-2017-1283]low🔒---
110001IBM Collaborative Lifecycle Management CLM Application information disclosurelow🔒---
110000IBM Rhapsody DM Error Message information disclosure [CVE-2017-1240]low🔒---
109999Jos de Jong typed-function input validation [CVE-2017-1001004]medium🔒---
109998math.js Unicode Character input validation [CVE-2017-1001003]medium🔒---
109997math.js code injection [CVE-2017-1001002]medium🔒---
109996xiphux GitPHP os command injection [CVE-2017-1000214]medium🔒---
109995Swagger Parser/Codegen YAML Parser code [CVE-2017-1000207]medium🔒---
109994Evince Printing to PDF command injection [CVE-2017-1000159]medium🔒--🔒
109993Zulip Server Invitation System User improper authenticationmedium🔒---
109992IBM Jazz Error Message information disclosure [CVE-2016-6024]low🔒---
109991Seagate ST500LT015 SED 7pk security [CVE-2015-7269]medium🔒---
109990Samsung 850 Pro/PM851 SED 7pk security [CVE-2015-7268]medium🔒---
109989Samsung 850 Pro/PM851 SED 7pk security [CVE-2015-7267]medium🔒---
109988Pivotal Spring AMQP deserialization [CVE-2017-8045]medium🔒---
109987Pivotal Single Sign-On for PCF cross site scripting [CVE-2017-8044]low🔒---
109986Pivotal Spring Web Flow Incomplete Fix 7pk security [CVE-2017-8039]medium🔒---
109985Cloud Foundry Access Control List access control [CVE-2017-8038]medium🔒---
109984Cloud Foundry improper authorization [CVE-2017-8031]low🔒---
109983Pivotal Spring-LDAP credentials management [CVE-2017-8028]medium🔒--🔒
109982Pivotal Spring Security deserialization [CVE-2017-4995]medium🔒---
109981Communigate Pro WebMail Stored cross site scriptinglow🔒---
109980BigTree CMS auto-modules.php sql injectionmedium🔒---
109979TP-LINK TL-WVR/TL-WAR/TL-ER/TL-R uhttpd interface.lua get_device_byif command injectionmedium🔒---
109978TP-LINK TL-WVR/TL-WAR/TL-ER/TL-R uhttpd luci File path traversallow🔒---
109977TP-LINK TL-WVR/TL-WAR/TL-ER/TL-R uhttpd bridge.lua get_device_byif command injectionmedium🔒---
109976TP-LINK TL-WVR/TL-WAR/TL-ER/TL-R uhttpd diagnostic.lua zone_get_effect_devices command injectionmedium🔒---
109975b3log Symphony article cross site scriptinglow🔒---
109974InLinks Plugin options-general.php sql injectionmedium🔒---
109973Cloud Foundry Loggregator access control [CVE-2017-14390]low🔒---
109972Bazaar SSH Subprocess command injection [CVE-2017-14176]medium🔒--🔒
109971TG Soft Vir.IT eXplorer Lite null pointer dereference [CVE-2017-16948]low🔒---
109970MISP UsersController.php admin_edit Password log filelow🔒---
109969Exim SMTP Daemon receive.c bdat_getc resource consumptionlow🔒--🔒
109968Exim SMTP Daemon receive.c receive_msg use after freemedium🔒--🔒
109967libsndfile wav_w64.c wav_w64_read_fmt_chunk divide by zerolow🔒--🔒
109966October CMS Theme .htaccess unrestricted upload [Disputed]medium🔒---
109965Linux Kernel XFRM Dump Policy xfrm_user.c access controllow🔒--🔒
109964OptiPNG GIF File gifread.c LZWReadByte memory corruptionmedium🔒--🔒
109963Shenzhen Tenda Ac9 request path traversalmedium🔒---
109962Ametys Access Restriction access control [CVE-2017-16935]medium🔒---
109961DBL DBLTek HTTP Basic Authentication frame.html os command injectionmedium🔒---
109960Icinga prepare-dirs access controllow🔒---
109959Cacti Access Restriction auth_login.php access controlmedium🔒---
109958libxml2 parser.c resource consumptionlow🔒--🔒
109957libxml2 NEXTL Macro parser.c xmlParserHandlePEReference memory corruptionhigh🔒--🔒
109956xrdp Session Manager libscp_v0.c scp_v0s_accept input validationmedium🔒--🔒
109955MIT Kerberos 5 X.509 Data pkinit_crypto_openssl.c X509_NAME_oneline_ex memory corruptionmedium🔒--🔒
109954Moxa EDS-G512E Password Hash information disclosure [CVE-2017-13701]low🔒---
109953Moxa EDS-G512E Encryption Algorithm inadequate encryption [CVE-2017-13699]medium🔒---
109952Moxa EDS-G512E Private Keys key management [CVE-2017-13698]medium🔒---
109951Huawei Warsaw access control [CVE-2017-8216]low🔒---
109950Huawei Honor 8 access control [CVE-2017-8215]low🔒---
109949Huawei Honor 8 Bootloader access control [CVE-2017-8214]low🔒---
109948Huawei SMC2.0 TLS Handshake certificate validation [CVE-2017-8213]low🔒---
109947Huawei Honor 5C/Honor 6X Driver memory corruption [CVE-2017-8212]medium🔒---
109946Huawei Honor 5C/Honor 6X Driver memory corruption [CVE-2017-8211]medium🔒---
109945Huawei Honor 5C/Honor 6X Driver memory corruption [CVE-2017-8210]medium🔒---
109944Huawei Honor 5C/Honor 6X Driver memory corruption [CVE-2017-8209]medium🔒---
109943Huawei Honor 5C/Honor 6X Driver memory corruption [CVE-2017-8208]medium🔒---
109942Huawei Honor 5C/Honor 6X Driver memory corruption [CVE-2017-8207]medium🔒---
109941Huawei Honor 7 Lite App Lock 7pk security [CVE-2017-8206]medium🔒---
109940Huawei Honor 9 Bastet Driver integer overflow [CVE-2017-8205]medium🔒---
109939Huawei Honor 9 Bastet Driver memory corruption [CVE-2017-8204]medium🔒---
109938Huawei Nova 2/Nova 2 Plus Bastet Driver use after free [CVE-2017-8203]medium🔒---
109937Huawei Prague-AL00A CameraISP Driver memory corruption [CVE-2017-8202]medium🔒---
109936Huawei Max Presence/TP3106/TP3206 H.323 insufficient verification of data authenticitylow🔒---
109935Huawei Max Presence/TP3106/TP3206 H.323 out-of-bounds read [CVE-2017-8200]medium🔒---
109934Huawei Max Presence/TP3106/TP3206 H.323 out-of-bounds read [CVE-2017-8199]medium🔒---
109933Huawei FusionSphere sql injection [CVE-2017-8198]medium🔒---
109932Huawei FusionSphere command injection [CVE-2017-8197]medium🔒---
109931Huawei FusionSphere improper authorization [CVE-2017-8196]medium🔒---
109930Huawei FusionSphere OpenStack improper authentication [CVE-2017-8195]medium🔒---
109929Huawei FusionSphere OpenStack improper authentication [CVE-2017-8194]medium🔒---
109928Huawei FusionSphere OpenStack command injection [CVE-2017-8193]medium🔒---
109927Huawei FusionSphere OpenStack improper authorization [CVE-2017-8192]medium🔒---
109926Huawei FusionSphere OpenStack risky encryption [CVE-2017-8191]medium🔒---
109925Huawei FusionSphere OpenStack signature verification [CVE-2017-8190]medium🔒---
109924Huawei FusionSphere OpenStack path traversal [CVE-2017-8189]medium🔒---
109923Huawei FusionSphere OpenStack command injection [CVE-2017-8188]medium🔒---
109922Huawei MHA-AL00A Bastet input validation [CVE-2017-8186]low🔒---
109921Huawei ME906s-158 access control [CVE-2017-8185]medium🔒---
109920Huawei MTK memory corruption [CVE-2017-8184]medium🔒---
109919Huawei MTK information disclosure [CVE-2017-8183]medium🔒---
109918Huawei MTK out-of-bounds read [CVE-2017-8182]medium🔒---
109917Huawei Nice-AL00 Camera Driver memory corruption [CVE-2017-8181]medium🔒---
109916Huawei Nice-AL00 Camera Driver memory corruption [CVE-2017-8180]medium🔒---
109915Huawei Nice-AL00 Camera Driver memory corruption [CVE-2017-8179]medium🔒---
109914Huawei Email App Stored cross site scripting [CVE-2017-8178]low🔒---
109913Huawei HiWallet APK File signature verification [CVE-2017-8177]medium🔒---
109912Huawei Vicky-AL00A/Victoria-AL00A/Warsaw-AL00 Bastet input validationlow🔒---
109911Huawei USG6300 inadequate encryption [CVE-2017-8174]medium🔒---
109910Huawei Warsaw-AL00 Factory Reset Protection access control [CVE-2017-8173]medium🔒---
109909Huawei P10/P10 Plus array index [CVE-2017-8172]medium🔒---
109908Huawei Vicky-AL00A Factory Reset Protection access control [CVE-2017-8171]medium🔒---
109907Huawei VIE-L09 memory corruption [CVE-2017-8170]medium🔒---
109906Huawei VIE-L09 memory corruption [CVE-2017-8169]medium🔒---
109905Huawei FusionSphere OpenStack information disclosure [CVE-2017-8168]low🔒---
109904Huawei USG9500 input validation [CVE-2017-8167]low🔒---
109903Huawei Honor V9 App Lock 7pk security [CVE-2017-8166]medium🔒---
109902Huawei SRG3300 out-of-bounds read [CVE-2017-8163]medium🔒---
109901Huawei SRG3300 memory corruption [CVE-2017-8162]low🔒---
109900Huawei EVA-L09 Factory Reset Protection access control [CVE-2017-8161]medium🔒---
109899Huawei Vicky-AL00A Madapt Driver use after free [CVE-2017-8160]medium🔒---
109898Huawei Agassi-L09HN/Agassi-W09HN/Kobe-L09AHN/Kobe-W09CHN type conversionmedium🔒---
109897Huawei FusionCompute permission [CVE-2017-8158]low🔒---
109896Huawei OceanStor 5800/OceanStor 6900 cryptographic issues [CVE-2017-8157]low🔒---
109895Huawei B2338-168 Outdoor Unit missing authentication [CVE-2017-8156]medium🔒---
109894Huawei B2338-168 Outdoor Unit missing authentication [CVE-2017-8155]medium🔒---
109893Huawei Vmall App permission [CVE-2017-8153]medium🔒---
109892Huawei Honor 5S Factory Reset Protection security check for standardmedium🔒---
109891Huawei Honor 5S improper authentication [CVE-2017-8151]medium🔒---
109890Huawei P10/P10 Plus Boot Loader memory corruption [CVE-2017-8150]medium🔒---
109889Huawei P10/P10 Plus Boot Loader memory corruption [CVE-2017-8149]medium🔒---
109888Huawei P9 Audio Driver race condition [CVE-2017-8148]low🔒---
109887Huawei Secospace USG6600 Poison input validation [CVE-2017-8147]medium🔒---
109886Huawei P10/P10 Plus Call Module input validation [CVE-2017-8146]low🔒---
109885Huawei P10/P10 Plus Call Module input validation [CVE-2017-8145]low🔒---
109884Huawei Honor 5A resource management [CVE-2017-8144]low🔒---
109883Huawei Honor 5C/P9 Lite Wi-Fi Driver input validation [CVE-2017-8143]low🔒---
109882Huawei Mate 9/Mate 9 Pro Trusted Execution Environment use after freemedium🔒---
109881Huawei P10 Plus Touch Panel Driver double free [CVE-2017-8141]medium🔒---
109880Huawei P9 Plus Soundtrigger Driver double free [CVE-2017-8140]medium🔒---
109879Huawei HedEx Configuration File Stored cross site scriptinglow🔒---
109878Huawei HedEx cross-site request forgery [CVE-2017-8138]low🔒---
109877Huawei HedEx DLL untrusted search path [CVE-2017-8137]low🔒---
109876Huawei HedEx File Download information disclosure [CVE-2017-8136]low🔒---
109875Huawei FusionSphere OpenStack command injection [CVE-2017-8135]high🔒---
109874Huawei FusionSphere OpenStack command injection [CVE-2017-8134]high🔒---
109873Huawei iManager NetEco command injection [CVE-2017-8133]medium🔒---
109872Huawei FusionSphere OpenStack command injection [CVE-2017-8132]high🔒---
109871Huawei FusionSphere OpenStack command injection [CVE-2017-8131]high🔒---
109870Huawei UMA information disclosure [CVE-2017-8130]low🔒---
109869Huawei UMA access control [CVE-2017-8129]medium🔒---
109868Huawei UMA access control [CVE-2017-8128]medium🔒---
109867Huawei UMA cross site scripting [CVE-2017-8127]low🔒---
109866Huawei UMA access control [CVE-2017-8126]medium🔒---
109865Huawei UMA cross site scripting [CVE-2017-8125]low🔒---
109864Huawei UMA access control [CVE-2017-8124]medium🔒---
109863Huawei UMA access control [CVE-2017-8123]medium🔒---
109862Huawei UMA access control [CVE-2017-8122]medium🔒---
109861Huawei UMA information disclosure [CVE-2017-8121]low🔒---
109860Huawei UMA access control [CVE-2017-8120]medium🔒---
109859Huawei UMA access control [CVE-2017-8119]medium🔒---
109858Huawei UMA information disclosure [CVE-2017-8118]low🔒---
109857Huawei UMA access control [CVE-2017-8117]medium🔒---
109856Fortinet FortiWeb webUI Certificate View Page Cert Import Stored cross site scriptinglow🔒---
109855RPM Temp File link following [CVE-2017-7501]low🔒--🔒
109854F5 BIG-IP Traffic Management Microkernel double free [CVE-2017-6166]low🔒--🔒
109853Huawei Vmall App Upgrade Package access control [CVE-2017-2739]medium🔒---
109852Huawei VCM5010 improper authentication [CVE-2017-2738]medium🔒---
109851Huawei VCM5010 unrestricted upload [CVE-2017-2737]medium🔒---
109850Huawei VCM5010 command injection [CVE-2017-2736]medium🔒---
109849Huawei TIT-AL00 routine [CVE-2017-2735]medium🔒---
109848Huawei P9 Plus resource consumption [CVE-2017-2734]low🔒---
109847Huawei Honor 6X File Permission information disclosure [CVE-2017-2733]low🔒---
109846Huawei Hilink App information disclosure [CVE-2017-2732]low🔒---
109845Huawei P9 Plus Vibrator Service input validation [CVE-2017-2731]low🔒---
109844Huawei HiLink App/Tech Support App information disclosure [CVE-2017-2730]low🔒---
109843Huawei Honor 5A Boot Loader memory corruption [CVE-2017-2729]medium🔒---
109842Huawei Honor 6X Bluetooth 7pk security [CVE-2017-2728]medium🔒---
109841Huawei P9 User Management access control [CVE-2017-2727]medium🔒---
109840Huawei P10/P10 Plus Bastet memory corruption [CVE-2017-2726]medium🔒---
109839Huawei P10/P10 Plus Bastet memory corruption [CVE-2017-2725]medium🔒---
109838Huawei P10/P10 Plus Bastet memory corruption [CVE-2017-2724]medium🔒---
109837Huawei Files App information disclosure [CVE-2017-2723]low🔒---
109836Huawei eSpace U1981 input validation [CVE-2017-2722]medium🔒---
109835Huawei Berlin/FRD-L02/FRD-L04/FRD-L09/FRD-L14/FRD-L19 Factory Reset Protection access controlmedium🔒---
109834Huawei FusionSphere OpenStack Key information disclosure [CVE-2017-2720]medium🔒---
109833Huawei FusionSphere OpenStack command injection [CVE-2017-2719]medium🔒---
109832Huawei FusionSphere OpenStack command injection [CVE-2017-2718]medium🔒---
109831Huawei Honor 8 Pro integer overflow [CVE-2017-2717]low🔒---
109830Huawei Mate 9 memory corruption [CVE-2017-2716]medium🔒---
109829Huawei Files App information disclosure [CVE-2017-2715]medium🔒---
109828Huawei FusionSphere OpenStack GaussDB memory corruption [CVE-2017-2714]medium🔒---
109827Huawei P9 input validation [CVE-2017-2713]low🔒---
109826Huawei S3300 Ethernet path error [CVE-2017-2712]medium🔒---
109825Huawei P9 Plus Touchscreen Driver input validation [CVE-2017-2711]medium🔒---
109824Huawei Beethoven-W09A/CRR-L09 Factory Reset Protection access controlmedium🔒---
109823Huawei HiGame/SkyTone App input validation [CVE-2017-2709]low🔒---
109822Huawei Nice Find Phone Reset access controlmedium🔒---
109821Huawei Mate 9 Push Module access control [CVE-2017-2707]medium🔒---
109820Huawei Mate 9 Push Module path traversal [CVE-2017-2706]medium🔒---
109819Huawei P9 Settings access control [CVE-2017-2705]medium🔒---
109818Huawei Smarthome Encryption Key Stored information disclosurelow🔒---
109817Huawei Mate 9/P9 Phone Finder access control [CVE-2017-2703]medium🔒---
109816Huawei Mate 9 Phone Finder access control [CVE-2017-2702]low🔒---
109815Huawei Mate 9 insufficient verification of data authenticitylow🔒---
109814Huawei AC6005/AC6605 resource management [CVE-2017-2700]low🔒---
109813Huawei Themes APP access control [CVE-2017-2699]medium🔒---
109812Huawei P8 ddr_devfreq Driver memory corruption [CVE-2017-2698]medium🔒---
109811Huawei GT3/Honor 5C/KNT/P9 Lite/Y6 II Goldeneye Driver memory corruptionmedium🔒---
109810Huawei Y6 II emerg_data Driver memory corruption [CVE-2017-2696]low🔒---
109809Huawei TIT-AL00 Email App path traversal [CVE-2017-2695]low🔒---
109808Huawei HwVmall AlarmService permission [CVE-2017-2694]medium🔒---
109807Huawei P8 Lite/Mate 7/Mate S/P8/Honor 6/Honor 7/SHOTX/G8 File Decompression path traversalmedium🔒---
109806Huawei P8 Lite/Mate 7/Mate S/P8/Honor 6/Honor 7/SHOTX/G8 Keyguard App command injectionmedium🔒---
109805Huawei P9 Screen Lock access control [CVE-2017-2691]medium🔒---
109804Huawei SoftCo/eSpace Permission resource management [CVE-2017-2690]low🔒---
109803ncurses write_entry.c nc_write_entry memory corruptionmedium🔒--🔒
109802Symantec Install Norton Security Certificate certificate validationlow🔒---
109801PostgreSQL INSERT information disclosure [CVE-2017-15099]low🔒--🔒
109800PostgreSQL jsonb_populate_recordset information disclosuremedium🔒--🔒
109799QNAP Video Station command injection [CVE-2017-13071]medium🔒---
109798Linux Kernel assoc_array.c assoc_array_insert_into_terminal_node null pointer dereferencelow🔒--🔒
109797Linux Kernel SCSI I/O Vector bio.c bio_add_pc_page memory corruptionmedium🔒--🔒
109796PostgreSQL link following [CVE-2017-12172]medium🔒--🔒
109795Cohu 3960HD passwordsAreEqual protection mechanismmedium🔒---
109794Cohu 3960 esp Source Code information disclosure [CVE-2017-8863]low🔒---
109793Cohu 3960HD Firmware Upgrade postinstall.sh webupgrade unrestricted uploadhigh🔒---
109792Cohu 3960HD Configuration Parameter 7pk security [CVE-2017-8861]medium🔒---
109791Cohu 3960HD information disclosure [CVE-2017-8860]low🔒---
109790Ohcount command injection [CVE-2017-16926]medium🔒---
109789Procmail formail formisc.c loadbuf memory corruptionmedium🔒--🔒
109788EMC RSA Authentication Manager Security Console cross site scriptinglow🔒--🔒
109787Samba memory corruption [CVE-2017-15275]low🔒--🔒
109786Samba SMB1 use after free [CVE-2017-14746]medium🔒--🔒
109785Ansible jenkins_plugin Module Password log filelow🔒--🔒
109784Intel Dual-Band Wireless-AC/Tri-Band Wireless-AC Wi-Fi Subsystem data processingmedium🔒---
109783Intel Deep Learning Training Tool access control [CVE-2017-5719]medium🔒---
109782Shenzhen Tenda usbeject system command injectionmedium🔒---
109781FineCMS Membr API system.php key managementmedium🔒---
109780MapOS visualizar Stored cross site scriptinglow🔒---
109779FFmpeg VC-2 Video Compression Encoder vc2enc.c out-of-bounds readlow🔒--🔒
109778Open Ticket Request System Agent Interface Spelling.pm code injectionmedium🔒--🔒
109777OpenStack Swauth Middleware Authentication middleware.py improper authenticationmedium🔒--🔒
109776DocuWare Fulltext Search Server Solr access control [CVE-2017-15044]medium🔒---
109775Fiyo CMS rating.php sql injectionmedium🔒---
109774Intel Server Platform Service Kernel access control [CVE-2017-5710]medium🔒---
109773Intel Server Platform Service Kernel memory corruption [CVE-2017-5707]medium🔒---
109772Intel Server Platform Service Kernel access control [CVE-2017-5709]medium🔒---
109771Intel Server Platform Service Kernel memory corruption [CVE-2017-5706]medium🔒---
109770Intel Manageability Engine Active Management Technology memory corruptionmedium🔒---
109769Intel Manageability Engine Active Management Technology memory corruptionmedium🔒---
109768Intel Manageability Engine Kernel access control [CVE-2017-5708]medium🔒---
109767Intel Manageability Engine Kernel memory corruption [CVE-2017-5705]medium🔒---
109766Apache OpenOffice DOC File Parser WW8Fonts out-of-bounds writemedium🔒--🔒
109765libxls xls_getfcell memory corruptionmedium🔒--🔒
109764libxls read_MSAT out-of-bounds writemedium🔒---
109763libxls xls_mergedCells out-of-bounds writemedium🔒--🔒
109762Horde Groupware cross site scripting [CVE-2017-16908]low🔒---
109761Horde Groupware Create Task List cross site scripting [CVE-2017-16907]low🔒---
109760Horde Groupware Calendar cross site scripting [CVE-2017-16906]low🔒---
109759LvyeCMS Public Tologin admin.php Log cross site scriptinglow🔒---
109758LvyeCMS index.php path traversalmedium🔒---
109757Vonage VDV-23 115 memory corruption [CVE-2017-16902]low🔒---
109756Xfig fig2dev gentikz.c array indexmedium🔒--🔒
109755libming listmp3.c printMP3Headers memory corruptionmedium🔒--🔒
109754Tiny Tiny RSS public.php sql injectionmedium🔒---
109753BusyBox Terminal lineedit.c add_match code injectionmedium🔒--🔒
109752Symantec ITMS Management Console path traversal [CVE-2017-15527]medium🔒--🔒
109751Moodle Search User information disclosurelow🔒--🔒
109750Apache OpenOffice DOC File Parser ImportOldFormatStyles out-of-bounds writemedium🔒--🔒
109749Apache OpenOffice PPT File Parser PPTStyleSheet out-of-bounds writemedium🔒--🔒
109748libxls xls_addCell out-of-bounds writemedium🔒--🔒
109747libxls xls_appendSST integer overflowmedium🔒--🔒
109746Belden Hirschmann Tofino Xenon Security Appliance OPC/Netfilter 7pk securitymedium🔒---
109745Belden Hirschmann Tofino Xenon Security Appliance ModBus Packet data processingmedium🔒---
109744Belden Hirschmann Tofino Xenon Security Appliance Firmware Signature permissionmedium🔒---
109743Laravel Framework Permission .env writeNewEnvironmentFileWith Password information disclosurelow🔒---
109742bftpd rename memory corruptionlow🔒---
109741libming SWF File outputscript.c outputSWF_TEXT_RECORD null pointer dereferencelow🔒--🔒
109740Icinga Core icinga access controlmedium🔒---
109739b3log Symphony JSON Object avatar cross site scriptinglow🔒---
109738Adobe Acrobat Reader memory corruption [CVE-2017-16411]medium🔒--🔒
109737Adobe Acrobat Reader memory corruption [CVE-2017-16375]medium🔒--🔒
109736Adobe Acrobat Reader memory corruption [CVE-2017-16373]medium🔒--🔒
109735Adobe Acrobat Reader memory corruption [CVE-2017-16372]medium🔒--🔒
109734Adobe Acrobat Reader memory corruption [CVE-2017-16371]medium🔒--🔒
109733Adobe Acrobat Reader memory corruption [CVE-2017-16364]medium🔒--🔒
109732Adobe Acrobat Reader out-of-bounds read [CVE-2017-16406]medium🔒--🔒
109731Adobe Acrobat Reader type conversion [CVE-2017-16379]medium🔒--🔒
109730Adobe Acrobat Reader type conversion [CVE-2017-16367]medium🔒--🔒
109729Adobe Acrobat Reader resource management [CVE-2017-16419]low🔒--🔒
109728Adobe Acrobat Reader 7pk security [CVE-2017-16380]medium🔒--🔒
109727Adobe Acrobat Reader information disclosure [CVE-2017-16369]medium🔒--🔒
109726Adobe Acrobat Reader 7pk security [CVE-2017-16366]medium🔒--🔒
109725Adobe Acrobat Reader 7pk security [CVE-2017-16361]medium🔒--🔒
109724Adobe Acrobat Reader out-of-bounds write [CVE-2017-16416]medium🔒--🔒
109723Adobe Acrobat Reader out-of-bounds write [CVE-2017-16415]medium🔒--🔒
109722Adobe Acrobat Reader out-of-bounds write [CVE-2017-16413]medium🔒--🔒
109721Adobe Acrobat Reader out-of-bounds write [CVE-2017-16407]medium🔒--🔒
109720Adobe Acrobat Reader memory corruption [CVE-2017-11293]medium🔒--🔒
109719Adobe Acrobat Reader out-of-bounds read [CVE-2017-16420]medium🔒--🔒
109718Adobe Acrobat Reader out-of-bounds read [CVE-2017-16418]medium🔒--🔒
109717Adobe Acrobat Reader out-of-bounds write [CVE-2017-16417]medium🔒--🔒
109716Adobe Acrobat Reader out-of-bounds read [CVE-2017-16414]medium🔒--🔒
109715Adobe Acrobat Reader out-of-bounds read [CVE-2017-16412]medium🔒--🔒
109714Adobe Acrobat Reader out-of-bounds read [CVE-2017-16409]medium🔒--🔒
109713Adobe Acrobat Reader out-of-bounds read [CVE-2017-16408]medium🔒--🔒
109712Adobe Acrobat Reader out-of-bounds read [CVE-2017-16405]medium🔒--🔒
109711Adobe Acrobat Reader out-of-bounds read [CVE-2017-16404]medium🔒--🔒
109710Adobe Acrobat Reader out-of-bounds read [CVE-2017-16403]medium🔒--🔒
109709Adobe Acrobat Reader out-of-bounds read [CVE-2017-16402]medium🔒--🔒
109708Adobe Acrobat Reader out-of-bounds read [CVE-2017-16401]medium🔒--🔒
109707Adobe Acrobat Reader out-of-bounds read [CVE-2017-16400]medium🔒--🔒
109706Adobe Acrobat Reader out-of-bounds read [CVE-2017-16399]medium🔒--🔒
109705Adobe Acrobat Reader out-of-bounds read [CVE-2017-16397]medium🔒--🔒
109704Adobe Acrobat Reader out-of-bounds read [CVE-2017-16394]medium🔒--🔒
109703Adobe Acrobat Reader out-of-bounds read [CVE-2017-16382]medium🔒--🔒
109702Adobe Acrobat Reader out-of-bounds read [CVE-2017-16376]medium🔒--🔒
109701Adobe Acrobat Reader out-of-bounds read [CVE-2017-16370]medium🔒--🔒
109700Adobe Acrobat Reader out-of-bounds read [CVE-2017-16362]medium🔒--🔒
109699Adobe Acrobat Reader Array Index array index [CVE-2017-16410]medium🔒--🔒
109698Adobe Acrobat Reader Array Index array index [CVE-2017-16391]medium🔒--🔒
109697Adobe Acrobat Reader memory corruption [CVE-2017-16383]medium🔒--🔒
109696Adobe Acrobat Reader memory corruption [CVE-2017-16368]medium🔒--🔒
109695Adobe Acrobat Reader memory corruption [CVE-2017-16387]medium🔒--🔒
109694Adobe Acrobat Reader memory corruption [CVE-2017-16386]medium🔒--🔒
109693Adobe Acrobat Reader memory corruption [CVE-2017-16384]medium🔒--🔒
109692Adobe Acrobat Reader memory corruption [CVE-2017-16374]medium🔒--🔒
109691Adobe Acrobat Reader memory corruption [CVE-2017-16365]medium🔒--🔒
109690Adobe Acrobat Reader memory corruption [CVE-2017-16363]medium🔒--🔒
109689Adobe Acrobat Reader memory corruption [CVE-2017-16396]medium🔒--🔒
109688Adobe Acrobat Reader memory corruption [CVE-2017-16395]medium🔒--🔒
109687Adobe Acrobat Reader memory corruption [CVE-2017-16392]medium🔒--🔒
109686Adobe Acrobat Reader memory corruption [CVE-2017-16385]medium🔒--🔒
109685Adobe Acrobat Reader memory corruption [CVE-2017-16381]medium🔒--🔒
109684Adobe Acrobat Reader use after free [CVE-2017-16398]medium🔒--🔒
109683Adobe Acrobat Reader use after free [CVE-2017-16393]medium🔒--🔒
109682Adobe Acrobat Reader use after free [CVE-2017-16390]medium🔒--🔒
109681Adobe Acrobat Reader use after free [CVE-2017-16389]medium🔒--🔒
109680Adobe Acrobat Reader use after free [CVE-2017-16388]medium🔒--🔒
109679Adobe Acrobat Reader use after free [CVE-2017-16360]medium🔒--🔒
109678Adobe Acrobat Reader uninitialized pointer [CVE-2017-16378]medium🔒--🔒
109677Adobe Acrobat Reader uninitialized pointer [CVE-2017-16377]medium🔒--🔒
109676F5 BIG-IP Virtual Server RSA cryptographic issuesmedium🔒--🔒
109675VMware Workstation DLL Loader untrusted search path [CVE-2017-4939]low🔒--🔒
109674VMware Workstation/Fusion RPC null pointer dereference [CVE-2017-4938]low🔒--🔒
109673VMware Workstation/Horizon View Client JPEG2000 Parser TPView.dll out-of-bounds readmedium🔒--🔒
109672VMware Workstation/Horizon View Client JPEG2000 Parser TPView.dll out-of-bounds readmedium🔒--🔒
109671VMware Workstation/Horizon View Client JPEG2000 Parser TPView.dll out-of-bounds writemedium🔒--🔒
109670VMware Workstation/Fusion VMNAT Device memory corruption [CVE-2017-4934]medium🔒--🔒
109669VMware NSX Edge cross site scripting [CVE-2017-4929]low🔒---
109668VMware vSphere Web Client cross-site request forgery [CVE-2017-4928]medium🔒--🔒
109667VMware vCenter Server ldap injection [CVE-2017-4927]low🔒--🔒
109666filp whoops TemplateHelper.php dump cross site scriptinglow🔒---
109665ZEIT Next.js _next path traversallow🔒---
109664PJSIP key management [CVE-2017-16875]medium🔒--🔒
109663PJSIP memory corruption [CVE-2017-16872]medium🔒--🔒
109662UpdraftPlus Plugin admin.php plupload_action code injection [Disputed]medium🔒---
109661UpdraftPlus Plugin admin.php updraft_ajax_handler server-side request forgerymedium🔒---
109660UPX p_mach.cpp memory corruption [Disputed]medium🔒---
109659SWFTools wav.c wav_convert2mono null pointer dereferencemedium🔒---
109658QEMU ps2.c out-of-bounds readmedium🔒--🔒
109657Icon Time Systems RTC-1000 employee.html Reflected cross site scriptinglow🔒---
109656Jooan IP Camera A5 FTP Server improper authentication [CVE-2017-16566]medium🔒---
109655Philips IntelliSpace Cardiovascular/Xcelera Workstation Logging Credentials credentials managementlow🔒---
109654Securimage example_form.php code injectionlow🔒---
109653Moxa EDS-G512E input validation [CVE-2017-13703]low🔒---
109652Moxa EDS-G512E Cookie information disclosure [CVE-2017-13702]medium🔒---
109651Moxa EDS-G512E Administration Interface cross site scriptinglow🔒---
109650RX-V100/RX-V200/RX-CLV1-P/RX-CLV2-B/RX-CLV3-N Session Management session fixiationmedium🔒---
109649TablePress xml external entity reference [CVE-2017-10889]medium🔒---
109648BOOK WALKER information disclosure [CVE-2017-10888]medium🔒---
109647BOOK WALKER untrusted search path [CVE-2017-10887]low🔒---
109646CS-Cart cross site scripting [CVE-2017-10886]low🔒---
109645Redis-store deserialization [CVE-2017-1000248]high🔒---
109644British Columbia Institute of Technology CodeIgniter set_status_header input validationmedium🔒---
109643PySAML2 cryptographic issues [CVE-2017-1000246]medium🔒---
109642OpenEMR access control [CVE-2017-1000241]medium🔒---
109641OpenEMR Reflected cross site scripting [CVE-2017-1000240]low🔒---
109640InvoicePlane Stored cross site scripting [CVE-2017-1000239]low🔒---
109639InvoicePlane File Upload unrestricted upload [CVE-2017-1000238]medium🔒---
109638I/Librarian ajaxsupplement.php server-side request forgerylow🔒---
109637I/Librarian temp.php Reflected cross site scriptinglow🔒---
109636I/Librarian batchimport.php os command injectionmedium🔒---
109635I/Librarian jqueryFileTree.php Directory information disclosurelow🔒---
109634ldns str2host.c double freemedium🔒--🔒
109633ldns parse.c double freemedium🔒--🔒
109632Snap7 Server WriteVar input validationlow🔒---
109631OptiPNG minitiff_read_info integer overflowmedium🔒--🔒
109630nodejs ejs ejs.renderFile input validationmedium🔒---
109629Salutation Responsive WordPress + BuddyPress Theme Stored cross site scriptinglow🔒---
109628Stop User Enumeration REST API Username information disclosurelow🔒---
109627Relevanssi Premium Plugin relevanssi_didyoumean Reflected cross site scriptinglow🔒---
109626MODX Revolution Stored cross site scripting [CVE-2017-1000223]low🔒---
109625Opencast Access Restriction access control [CVE-2017-1000221]medium🔒---
109624soyuka pidusage command injection [CVE-2017-1000220]medium🔒---
109623Opencast Media Module injection [CVE-2017-1000217]low🔒---
109622ROOT xrootd command injection [CVE-2017-1000215]medium🔒---
109621WBCE tool.php Reflected cross site scriptinglow🔒---
109620Elixir VIM Plugin alchemist-server access control [CVE-2017-1000212]medium🔒---
109619Lynx HTML Parser use after free [CVE-2017-1000211]medium🔒--🔒
109618picoTCP memory corruption [CVE-2017-1000210]medium🔒---
109617nv-websocket-client X.509 Certificate Verification certificate validationlow🔒---
109616Swagger-Parser's YAML Parser code [CVE-2017-1000208]medium🔒---
109615samtools htslib Library CRAM rANS Codec memory corruption [CVE-2017-1000206]medium🔒---
109614ROOT rootd command injection [CVE-2017-1000203]medium🔒---
109613tcmu-runner Daemon input validation [CVE-2017-1000201]low🔒--🔒
109612tcmu-runner dbus on_unregister_handler null pointer dereferencelow🔒--🔒
109611tcmu-runner handler_qcow.so information disclosurelow🔒--🔒
109610tcmu-runner handler_glfs.so memory corruption [CVE-2017-1000198]low🔒--🔒
109609October CMS Asset Move File path errormedium🔒---
109608October CMS Asset Manager code injection [CVE-2017-1000196]medium🔒---
109607October CMS File Permission injectionmedium🔒---
109606October CMS Apache Configuration unrestricted upload [CVE-2017-1000194]medium🔒---
109605October CMS Brand Logo Image Name Stored cross site scriptinglow🔒---
109604Cygnux sysPass Configuration File information disclosure [CVE-2017-1000192]low🔒---
109603Jool Kernel resource consumption [CVE-2017-1000191]low🔒---
109602SimpleXML xml external entity reference [CVE-2017-1000190]medium🔒---
109601nodejs ejs ejs.renderFile input validationlow🔒---
109600nodejs ejs ejs.renderFile cross site scriptinglow🔒---
109599SWFTools pdf2swf writeTTF memory corruptionmedium🔒---
109598SWFTools pdf2swf memory corruption [CVE-2017-1000186]medium🔒---
109597SWFTools gif2swf memcpy memory corruptionmedium🔒---
109596SWFTools wav2swf memory corruption [CVE-2017-1000182]low🔒---
109595SWFTools swfc memcpy memory corruptionmedium🔒---
109594SWFTools swfdump swf_GetBits memory corruptionmedium🔒---
109593Creolabs Gravity memory corruption [CVE-2017-1000173]medium🔒---
109592Creolabs Gravity gravity_lexer.c use after freemedium🔒---
109591jqueryFileTree path traversal [CVE-2017-1000170]medium🔒---
109590QuickerBB input validation [CVE-2017-1000169]medium🔒---
109589sodiumoxide ScalarMult scalarmult key managementmedium🔒---
109588Tine Addressbook cross site scripting [CVE-2017-1000164]low🔒---
109587Phoenix Framework redirect [CVE-2017-1000163]medium🔒---
109586EllisLab ExpressionEngine cross site scripting [CVE-2017-1000160]low🔒---
109585CPython stringobject.c PyString_DecodeEscape memory corruptionmedium🔒--🔒
109584Serendipity Blog sql injection [CVE-2017-1000129]medium🔒---
109583Exiv2 JPEG2000 Parser out-of-bounds read [CVE-2017-1000128]medium🔒---
109582Exiv2 tiff Parser memory corruption [CVE-2017-1000127]medium🔒---
109581Exiv2 webp Parser out-of-bounds read [CVE-2017-1000126]medium🔒---
109580Codiad Installation access control [CVE-2017-1000125]medium🔒---
109579Google Android Linux Kernel memory corruption [CVE-2017-9721]medium🔒---
109578Google Android Kernel Driver MDSS memory corruption [CVE-2017-9719]medium🔒---
109577Google Android Camera Driver Pointer access controlmedium🔒---
109576Google Android Fastboot Command information disclosure [CVE-2017-9701]low🔒---
109575Google Android Camera Driver information disclosure [CVE-2017-9696]medium🔒---
109574Google Android IOCTL memory corruption [CVE-2017-9690]medium🔒---
109573Google Android Linux Kernel information disclosure [CVE-2017-8279]medium🔒---
109572VMware AirWatch Launcher Native UI access control [CVE-2017-4932]medium🔒---
109571VMware AirWatch Log File input validation [CVE-2017-4931]medium🔒---
109570VMware AirWatch Console cross site scripting [CVE-2017-4930]low🔒---
109569Amazon Key Cloud Cam 802.11 Deauthentication Frame data processinglow🔒---
109568dayrui FineCMS M_Controller.php cross site scriptinglow🔒---
109567ipsilon SAML2 Session session fixiation [CVE-2017-16855]medium🔒---
109566OpenSAML Security Check DynamicMetadataProvider.cpp DynamicMetadataProvider signature verificationmedium🔒--🔒
109565Shibboleth Service Provider Dynamic MetadataProvider Plugi DynamicMetadataProvider.cpp signature verificationmedium🔒--🔒
109564Zoho ManageEngine Applications Manager MyPage.do sql injectionmedium🔒---
109563Zoho ManageEngine Applications Manager showresource.do sql injectionmedium🔒---
109562Zoho ManageEngine Applications Manager MyPage.do sql injectionmedium🔒---
109561Zoho ManageEngine Applications Manager manageConfMons.do sql injectionmedium🔒---
109560Zoho ManageEngine Applications Manager showresource.do sql injectionmedium🔒---
109559Zoho ManageEngine Applications Manager manageApplications.do sql injectionmedium🔒---
109558Procmail formail formisc.c loadbuf memory corruptionmedium🔒--🔒
109557Vonage VDV-23 115 RgParentalBasic Stored cross site scriptinglow🔒---
109556Hashicorp Vagrant VMware Fusion Plugin access control [CVE-2017-16777]medium🔒---
109555Moxa NPort 5110/NPort 5130/NPort 5150 Packet injection [CVE-2017-16719]medium🔒---
109554Moxa NPort 5110/NPort 5130/NPort 5150 Ethernet Frame information disclosurelow🔒---
109553SanDisk Secure Access Temp File cryptographic issues [CVE-2017-16560]low🔒---
109552Open Ticket Request System Agent Frontend Credentials credentials managementlow🔒--🔒
109551AltaVault OST Plug-in OST Share Credentials information disclosurelow🔒---
109550NetApp SnapCenter Server User Interface cross-site request forgerylow🔒---
109549Moxa NPort 5110 resource consumption [CVE-2017-14028]low🔒---
109548Google Android Linux Kernel information disclosure [CVE-2017-11093]medium🔒---
109547Google Android Linux Kernel kgsl_ioctl_gpu_command use after freemedium🔒---
109546Google Android Linux Kernel mdss_rotator mdss_rotator_ioctl use after freemedium🔒---
109545Google Android Linux Kernel __wlan_hdd_cfg80211_set_pmksa information disclosuremedium🔒---
109544Google Android Linux Kernel information disclosure [CVE-2017-11089]medium🔒--🔒
109543Google Android Linux Kernel msm-audio-effects-q6-v2.c integer overflowmedium🔒---
109542Google Android Linux Kernel cld Memory access controlmedium🔒---
109541Google Android Linux Kernel out-of-bounds read [CVE-2017-11058]medium🔒---
109540Google Android Linux Kernel 7pk time and state [CVE-2017-11038]medium🔒---
109539Google Android Linux Kernel csr_roam_issue_ft_preauth_req memory corruptionmedium🔒---
109538Google Android Linux Kernel service_locator_send_msg double freemedium🔒---
109537Google Android Linux Kernel memory corruption [CVE-2017-11029]medium🔒---
109536Google Android Camera Driver msm_isp_get_stream_common_data information disclosurelow🔒---
109535Google Android Linux Kernel input validation [CVE-2017-11027]medium🔒---
109534Google Android access control [CVE-2017-11026]medium🔒---
109533Google Android Linux Kernel audio_effects_shared_ioctl race conditionmedium🔒---
109532Google Android Linux Kernel use after free [CVE-2017-11024]medium🔒---
109531Google Android Synchronization access control [CVE-2017-11023]medium🔒---
109530Google Android Linux Kernel information disclosure [CVE-2017-11022]low🔒---
109529Google Android Camera Driver memory corruption [CVE-2017-11018]medium🔒---
109528Google Android Linux Kernel memory corruption [CVE-2017-11017]medium🔒---
109527Google Android Linux Kernel access control [CVE-2017-11015]medium🔒---
109526Google Android Linux Kernel access control [CVE-2017-11014]medium🔒---
109525Google Android Linux Kernel access control [CVE-2017-11013]medium🔒---
109524Google Android access control [CVE-2017-11012]medium🔒---
109523FreeBSD Kernel information disclosure [CVE-2017-1088]low🔒--🔒
109522FreeBSD Shared Memory access control [CVE-2017-1087]medium🔒--🔒
109521FreeBSD Debugger information disclosure [CVE-2017-1086]low🔒--🔒
109520YouTube Plugin cross-site request forgery [CVE-2017-1000224]low🔒---
109519npm KyleRoss windows-cpu command injection [CVE-2017-1000219]medium🔒---
109518LightFTP writelogentry memory corruptionmedium🔒---
109517private_address_check Ruby Gem Blacklist 7pk security [CVE-2017-0909]medium🔒---
109516Google Android Direct Rendering Kernel Memory access controlmedium🔒---
109515Google Android MediaTek soc Driver access control [CVE-2017-0865]medium🔒---
109514Google Android MediaTek ioctl access control [CVE-2017-0864]medium🔒---
109513Google Android Kernel Video Driver access control [CVE-2017-0863]medium🔒---
109512Google Android Kernel access control [CVE-2017-0862]medium🔒---
109511Google Android Kernel Audio Driver access control [CVE-2017-0861]medium🔒--🔒
109510Google Android Dispatcher access control [CVE-2017-0860]medium🔒---
109509Google Android Media Framework resource management [CVE-2017-0859]medium🔒---
109508Google Android Media Framework resource management [CVE-2017-0858]medium🔒---
109507Google Android Media Framework resource management [CVE-2017-0857]medium🔒---
109506Google Android Media Framework information disclosure [CVE-2017-0854]low🔒---
109505Google Android Media Framework information disclosure [CVE-2017-0853]low🔒---
109504Google Android Media Framework resource management [CVE-2017-0852]low🔒---
109503Google Android Media Framework information disclosure [CVE-2017-0851]low🔒---
109502Google Android Media Framework information disclosure [CVE-2017-0850]low🔒---
109501Google Android Media Framework information disclosure [CVE-2017-0849]low🔒---
109500Google Android Media Framework information disclosure [CVE-2017-0848]low🔒---
109499Google Android Media Framework access control [CVE-2017-0847]medium🔒---
109498Google Android SyncStorageEngine access control [CVE-2017-0845]low🔒---
109497Google Android MediaTek ccci access control [CVE-2017-0843]medium🔒---
109496Google Android Bluetooth access control [CVE-2017-0842]medium🔒---
109495Google Android libutils access control [CVE-2017-0841]medium🔒---
109494Google Android Media Framework information disclosure [CVE-2017-0840]low🔒---
109493Google Android Media Framework information disclosure [CVE-2017-0839]low🔒---
109492Google Android Media Framework access control [CVE-2017-0838]medium🔒---
109491Google Android Media Framework access control [CVE-2017-0836]medium🔒---
109490Google Android Media Framework access control [CVE-2017-0835]medium🔒---
109489Google Android Media Framework access control [CVE-2017-0834]medium🔒---
109488Google Android Media Framework access control [CVE-2017-0833]medium🔒---
109487Google Android Media Framework access control [CVE-2017-0832]medium🔒---
109486Google Android Window Manager access control [CVE-2017-0831]medium🔒---
109485Google Android Device Policy Client access control [CVE-2017-0830]medium🔒---
109484Varnish HTTP Cache cache_fetch.c vbf_stp_error memory corruptionlow🔒--🔒
109483Intel Unite App Admin Portal access control [CVE-2017-5738]medium🔒---
109482Yoast SEO Plugin class-gsc-table.php cross site scriptinglow🔒---
109481Lansweeper CalendarActions.aspx cross site scriptinglow🔒---
109480Trusted Boot PCR input validation [CVE-2017-16837]low🔒--🔒
109479Arris TG1682G ajax_managed_services.php Stored cross site scriptinglow🔒---
109478PNP4Nagios npcd access controllow🔒--🔒
109477libbpg hevc_filter.c restore_tqb_pixels memory corruptionmedium🔒---
109476libbpg bpgenc.c image_alloc integer overflowlow🔒---
109475VideoLAN x265 cudata.cpp initialize null pointer dereferencemedium🔒---
109474Cisco Umbrella Insights Virtual Appliance Hypervisor hard-coded credentialsmedium🔒---
109473Cisco Prime Collaboration Deployment Upgrade improper authenticationmedium🔒--🔒
109472Cisco Registered Envelope Service Web-based Management Interface cross site scriptinglow🔒---
109471Cisco Registered Envelope Service Web-based Management Interface cross site scriptinglow🔒---
109470Cisco Registered Envelope Service Web-based Management Interface cross site scriptinglow🔒---
109469Cisco Registered Envelope Service Web-based Management Interface cross site scriptinglow🔒---
109468Cisco RF Gateway 1 TCP State Machine resource management [CVE-2017-12318]low🔒---
109467Cisco Identity Services Engine improper authentication [CVE-2017-12316]medium🔒---
109466Cisco HyperFlex System Logging information disclosure [CVE-2017-12315]low🔒---
109465Cisco FindIT Network Discovery Utility uncontrolled search pathlow🔒---
109464Cisco Network Academy Packet Tracer input validation [CVE-2017-12313]low🔒---
109463Cisco Immunet Antimalware Installer input validation [CVE-2017-12312]low🔒---
109462Cisco Meeting Server H.264 Decoder resource management [CVE-2017-12311]low🔒---
109461Cisco Email Security Appliance response splitting [CVE-2017-12309]medium🔒---
109460Cisco Spark Board Upgrade Process config [CVE-2017-12306]low🔒---
109459Cisco IP Phone 8800 Debug Interface command injection [CVE-2017-12305]low🔒---
109458Cisco IOS/IOS XE IOSd cross site scripting [CVE-2017-12304]low🔒---
109457Cisco Web Security Appliance Advanced Malware Protection security check for standardmedium🔒---
109456Cisco Unified Communications Manager SQL Database Interface sql injectionmedium🔒--🔒
109455Cisco Firepower System Software Snort Detection Engine input validationmedium🔒---
109454Cisco ASA NGFW Device Initialization input validation [CVE-2017-12299]medium🔒---
109453Cisco Registered Envelope Service Web-based Management Interface cross site scriptinglow🔒---
109452Cisco Registered Envelope Service Web-based Management Interface cross site scriptinglow🔒---
109451Cisco Registered Envelope Service Web-based Management Interface cross site scriptinglow🔒---
109450MediaWiki Language Converter input validation [CVE-2017-8815]low🔒--🔒
109449MediaWiki Language Converter input validation [CVE-2017-8814]medium🔒--🔒
109448MediaWiki Headline access control [CVE-2017-8812]low🔒--🔒
109447MediaWiki Raw Message Parameter Extension input validation [CVE-2017-8811]low🔒--🔒
109446MediaWiki Error Message User information disclosurelow🔒--🔒
109445MediaWiki File Download api.php Reflected injectionlow🔒--🔒
109444MediaWiki URL Escape cross site scripting [CVE-2017-8808]low🔒--🔒
109443D-Link DCS-936L CSRF Protection cross-site request forgery [CVE-2017-7851]low🔒---
109442TIBCO JasperReports Server Server Content Cache access controlmedium🔒---
109441TIBCO JasperReports Server Report Renderer Persistent cross site scriptinglow🔒---
109440Gemirro javascript: URL .gemspec Stored cross site scriptinglow🔒---
109439GNU binutils libbfd peicode.h pe_bfd_read_buildid integer overflowmedium🔒--🔒
109438GNU binutils libbfd coffgen.c integer overflowmedium🔒--🔒
109437GNU binutils Overflow Protection readelf.c print_gnu_property_note integer overflowmedium🔒--🔒
109436GNU binutils libbfd elf-properties.c bfd_elf_parse_gnu_properties out-of-bounds readmedium🔒--🔒
109435GNU binutils dwarf.c display_debug_frames integer overflowmedium🔒--🔒
109434GNU binutils libbfd aoutx.h aout_get_external_symbols memory corruptionmedium🔒--🔒
109433GNU binutils libbfd coffcode.h coff_slurp_line_table memory corruptionmedium🔒--🔒
109432Konversation IRC Color data processing [CVE-2017-15923]low🔒--🔒
109431Zeta Components Mail file.php. ezcMailMtaTransport code injectionmedium🔒---
109430Scala Compilation Daemon scalac-compile-server-port access controllow🔒--🔒
109429PSFTPd Configuration PSFTPd.dat credentials managementlow🔒---
109428PSFTPd sftp use after free [CVE-2017-15271]low🔒---
109427PSFTPd Graphical User Interface input validation [CVE-2017-15270]low🔒---
109426PSFTPd Bounce Scan 7pk security [CVE-2017-15269]medium🔒---
109425Linux Kernel socket.c sctp_do_peeloff use after freemedium🔒--🔒
109424Linux Kernel USB Device legousbtower.c tower_probe null pointer dereferencelow🔒--🔒
109423Ikarus anti.virus Driver ntguard.sys input validationmedium🔒---
109422Siemens SICAM RTUs SM-2556 COM Module Integrated Web Server access controlmedium🔒---
109421Siemens SICAM RTUs SM-2556 COM Module Integrated Web Server cross site scriptinglow🔒---
109420Siemens SICAM RTUs SM-2556 COM Module Integrated Web Server information disclosurelow🔒---
109419Apache Camel camel-castor deserialization [CVE-2017-12634]medium🔒---
109418Apache Camel camel-hessian deserialization [CVE-2017-12633]medium🔒---
109417Cacti unserialize(stripslashes) code injectionmedium🔒--🔒
109416Livebox Configuration File 7pk security [CVE-2014-3150]medium🔒---
109415Cyberduck X.509 Certificate certificate validation [CVE-2014-2845]low🔒---
109414CA Identity Governance Stored cross site scripting [CVE-2017-9394]low🔒---
109413BlackBerry QNX Software Development Platform QNX SDP entropymedium🔒---
109412BlackBerry QNX Software Development Platform QNX SDP Memory information disclosurelow🔒---
109411Kodak InSite DiagnosticReport.asp cross site scriptinglow🔒---
109410Google Android Thermal Driver Kernel Memory information disclosurelow🔒---
109409Google Android Thermal Driver out-of-bounds write [CVE-2017-6274]medium🔒---
109408Google Android NVIDIA GPU Driver access control [CVE-2017-6264]medium🔒---
109407BlackBerry QNX Software Development Platform QNX SDP memory corruptionmedium🔒---
109406BlackBerry QNX Software Development Platform QNX SDP Memory information disclosurelow🔒---
109405BlackBerry QNX Software Development Platform QNX SDP access controlmedium🔒---
109404b3log Symphony Admin Console AdminProcessor.java cross site scriptinglow🔒---
109403collectd SNMP Plugin snmp.c csnmp_read_table double freemedium🔒--🔒
109402Snap Creek Duplicator installer.php cross site scriptinglow🔒---
109401OpenStack Filter Scheduler access control [CVE-2017-16239]medium🔒--🔒
109400Apache CouchDB Database Server os command injection [CVE-2017-12636]medium🔒--🔒
109399Apache CouchDB JSON Parser access control [CVE-2017-12635]medium🔒--🔒
109398Apache CXF JAX-WS/JAX-RS data processing [CVE-2017-12624]low🔒--🔒
109397Oracle Fusion Middleware Tuxedo access control [CVE-2017-10278]medium🔒--🔒
109396Oracle Fusion Middleware Tuxedo access control [CVE-2017-10272]medium🔒--🔒
109395Oracle Fusion Middleware Tuxedo access control [CVE-2017-10269]medium🔒--🔒
109394Oracle Fusion Middleware Tuxedo information disclosure [CVE-2017-10267]medium🔒--🔒
109393Oracle Fusion Middleware Tuxedo information disclosure [CVE-2017-10266]medium🔒--🔒
109392Microsoft ASP.NET Core CORS access control [CVE-2017-8700]low🔒---
109391Microsoft SharePoint Enterprise Server Project Server cross-site request forgerylow🔒--🔒
109390Microsoft Internet Explorer information disclosure [CVE-2017-11848]low🔒--🔒
109389Microsoft Excel memory corruption [CVE-2017-11884]medium🔒--🔒
109388Microsoft Office memory corruption [CVE-2017-11882]medium🔒--🔒
109387Microsoft ASP.NET Core redirect [CVE-2017-11879]medium🔒--🔒
109386Microsoft Excel memory corruption [CVE-2017-11878]medium🔒--🔒
109385Microsoft Excel Security Feature Macro 7pk securitymedium🔒--🔒
109384Microsoft Edge Security Feature 7pk security [CVE-2017-11874]medium🔒--🔒
109383Microsoft Edge Security Feature 7pk security [CVE-2017-11872]medium🔒--🔒
109382Microsoft Edge Security Feature input validation [CVE-2017-11863]medium🔒--🔒
109381Microsoft Office/Word memory corruption [CVE-2017-11854]medium🔒--🔒
109380Microsoft Windows GDI information disclosure [CVE-2017-11852]low🔒--🔒
109379Microsoft Windows Kernel Win32k information disclosurelow🔒--🔒
109378Microsoft Windows Graphics Component information disclosure [CVE-2017-11850]low🔒--🔒
109377Microsoft Windows Kernel access control [CVE-2017-11847]medium🔒--🔒
109376Microsoft Windows Kernel information disclosure [CVE-2017-11853]low🔒--🔒
109375Microsoft Windows Kernel information disclosure [CVE-2017-11849]low🔒--🔒
109374Microsoft Windows Kernel information disclosure [CVE-2017-11842]low🔒--🔒
109373Microsoft Internet Explorer Scripting Engine information disclosurelow🔒--🔒
109372Microsoft Edge information disclosure [CVE-2017-11833]low🔒--🔒
109371Microsoft Windows EOT Font Engine information disclosure [CVE-2017-11835]low🔒--🔒
109370Microsoft Windows EOT Font Engine information disclosure [CVE-2017-11832]low🔒--🔒
109369Microsoft Windows Kernel information disclosure [CVE-2017-11880]low🔒--🔒
109368Microsoft Windows information disclosure [CVE-2017-11831]low🔒--🔒
109367Microsoft Windows Device Guard Security Feature Signature 7pk securitymedium🔒--🔒
109366Microsoft Edge memory corruption [CVE-2017-11827]medium🔒--🔒
109365Microsoft Internet Explorer memory corruption [CVE-2017-11827]medium🔒--🔒
109364Microsoft Edge information disclosure [CVE-2017-11844]low🔒--🔒
109363Microsoft Edge information disclosure [CVE-2017-11803]low🔒--🔒
109362Microsoft Edge Scripting Engine information disclosure [CVE-2017-11791]low🔒--🔒
109361Microsoft Internet Explorer Scripting Engine information disclosurelow🔒--🔒
109360Microsoft Windows Windows Search data processing [CVE-2017-11788]low🔒--🔒
109359Microsoft ASP.NET data processing [CVE-2017-11883]low🔒--🔒
109358Microsoft .NET Framework certificate validation [CVE-2017-11770]low🔒--🔒
109357Microsoft Windows Windows Media Player information disclosurelow🔒--🔒
109356Microsoft Internet Explorer Scripting Engine memory corruptionmedium🔒--🔒
109355Microsoft Internet Explorer memory corruption [CVE-2017-11856]medium🔒--🔒
109354Microsoft Internet Explorer JsArraySlice memory corruptionmedium🔒--🔒
109353Microsoft Edge memory corruption [CVE-2017-11845]medium🔒--🔒
109352Microsoft Edge Scripting Engine memory corruption [CVE-2017-11858]medium🔒--🔒
109351Microsoft Internet Explorer Scripting Engine memory corruptionmedium🔒--🔒
109350Microsoft Edge Scripting Engine memory corruption [CVE-2017-11846]medium🔒--🔒
109349Microsoft Internet Explorer Scripting Engine memory corruptionmedium🔒--🔒
109348Microsoft Edge Scripting Engine memory corruption [CVE-2017-11843]medium🔒--🔒
109347Microsoft Edge Scripting Engine memory corruption [CVE-2017-11838]low🔒--🔒
109346Microsoft Internet Explorer Scripting Engine memory corruptionmedium🔒--🔒
109345Microsoft Internet Explorer Scripting Engine memory corruptionlow🔒--🔒
109344Microsoft Edge Scripting Engine memory corruption [CVE-2017-11837]medium🔒--🔒
109343Microsoft Edge Scripting Engine memory corruption [CVE-2017-11873]medium🔒--🔒
109342Microsoft Edge Scripting Engine memory corruption [CVE-2017-11871]medium🔒--🔒
109341Microsoft Edge Chakra JIT memory corruption [CVE-2017-11870]medium🔒--🔒
109340Microsoft Edge Scripting Engine memory corruption [CVE-2017-11866]medium🔒--🔒
109339Microsoft Edge Scripting Engine memory corruption [CVE-2017-11862]medium🔒--🔒
109338Microsoft Edge Scripting Engine memory corruption [CVE-2017-11861]medium🔒--🔒
109337Microsoft Edge Chakra JIT InlineCallApplyTarget_Shared memory corruptionmedium🔒--🔒
109336Microsoft Edge Chakra JIT OptTagChecks memory corruptionmedium🔒--🔒
109335Microsoft Edge Chakra JIT BailOutOnTaggedValue memory corruptionmedium🔒--🔒
109334Microsoft Edge Scripting Engine memory corruption [CVE-2017-11836]medium🔒--🔒
109333Dahua NVR50XX/NVR52XX/NVR54XX/NVR58XX JSON Message improper authenticationmedium🔒---
109332Lenovo ThinkPad Realtek Audio Driver access control [CVE-2017-3767]low🔒---
109331Apache Hadoop YARN Localization Stored access controlmedium🔒--🔒
109330IBM Storwize V7000 Service Assistant GUI access control [CVE-2017-1710]medium🔒--🔒
109329Octopus cross site scripting [CVE-2017-16810]low🔒---
109328tcpdump print-aoe.c aoe_prin out-of-bounds readmedium🔒---
109327Kirby Panel Content File cross site scripting [CVE-2017-16807]low🔒---
109326Ulterius HTTP Server HttpServer.cs Process path traversalmedium🔒---
109325radare2 ELF File dwarf.c out-of-bounds readlow🔒---
109324Redmine Reminder mailer.rb information disclosurelow🔒--🔒
109323libav smacker.c build_table memory corruptionmedium🔒--🔒
109322MISP misp.js sharingGroupPopulateOrganisations cross site scriptinglow🔒---
109321Symantec Endpoint Encryption null pointer dereference [CVE-2017-15526]low🔒--🔒
109320Symantec Endpoint Encryption resource management [CVE-2017-15525]low🔒--🔒
109319IBM Security Access Manager XML Data xml external entity referencemedium🔒---
109318IBM Security Access Manager os command injection [CVE-2017-1453]medium🔒---
109317Cloud Foundry DiffID Validator input validation [CVE-2017-14388]low🔒---
109316Schneider Electric InduSoft Web Studio/InTouch Machine Edition memory corruptionmedium🔒---
109315AutomationDirect SL-SOFT SOLO uncontrolled search path [CVE-2017-14020]low🔒---
109314IBM Tivoli Endpoint Manager HSTC information disclosure [CVE-2017-1229]low🔒---
109313IBM Tivoli Endpoint Manager Password Policy credentials managementmedium🔒---
109312HYPER SBI untrusted search path [CVE-2017-10885]low🔒---
109311I-O DATA DEVICE LAN DISK Connect memory corruption [CVE-2017-10875]low🔒---
109310NTT DOCOMO Wi-Fi STATION L-02F memory corruption [CVE-2017-10871]medium🔒---
109309Recurly Client .NET Library API Key server-side request forgerymedium🔒---
109308Recurly Client Python Library API Key Resource.get server-side request forgerymedium🔒---
109307Recurly Client Ruby Library API Key Resource#find server-side request forgerymedium🔒---
109306private_address_check Ruby Gem Resolv.getaddresses 7pk securitymedium🔒---
109305Paperclip Ruby Gem UriAdapter server-side request forgerymedium🔒---
109304Debian postgresql-common Symbolic Link link following [CVE-2017-8806]low🔒--🔒
109303Octopus Deploy Step Template Name cross site scripting [CVE-2017-16801]low🔒---
109302geminabox gem.erb Stored cross site scriptinglow🔒--🔒
109301Kickbase Bundesliga Manager App id678241305 Credentials credentials managementlow🔒---
109300iBall iB-WRA300N3GT normal access controlmedium🔒---
109299Apple watchOS Kernel information disclosure [CVE-2017-13852]low🔒--🔒
109298Apple tvOS Kernel information disclosure [CVE-2017-13852]low🔒--🔒
109297Apple macOS Kernel information disclosure [CVE-2017-13852]low🔒--🔒
109296CMS Made Simple action.addcategory.php Stored cross site scriptinglow🔒---
109295CMS Made Simple Access Restriction action.upload.php is_file_acceptable cross site scriptinglow🔒---
109294SWFTools png.c png_load memory corruptionmedium🔒---
109293SWFTools png.c png_load memory corruptionmedium🔒---
109292Apple iOS Kernel information disclosure [CVE-2017-13852]low🔒--🔒
109291Apple macOS CFNetwork memory corruption [CVE-2017-13833]medium🔒--🔒
109290Apple macOS CFNetwork memory corruption [CVE-2017-13829]medium🔒--🔒
109289SWFTools png.c png_load memory corruptionmedium🔒---
109288SWFTools WAV Data wav.c wav_convert2mono memory corruptionmedium🔒---
109287Cacti host.php Reflected cross site scriptinglow🔒--🔒
109286CMS Made Simple Reflected cross site scripting [CVE-2017-16784]low🔒---
109285CMS Made Simple Template code injection [CVE-2017-16783]medium🔒---
109284Home Assistant Notification Persistent cross site scriptinglow🔒---
109283MyBB Installer cross site scripting [CVE-2017-16781]low🔒---
109282MyBB Installer access control [CVE-2017-16780]medium🔒---
109281D-Link DWR-933 gui.cgi cross site scriptinglow🔒---
109280django_make_app YAML Parser io_utils.py read_yaml_file command injectionmedium🔒---
109279Confire YAML Parser config.py yamlload command injectionmedium🔒---
109278Sanic path traversal [CVE-2017-16762]low🔒--🔒
109277Inedo BuildMaster redirect [CVE-2017-16761]medium🔒---
109276Inedo BuildMaster cross site scripting [CVE-2017-16760]low🔒---
109275Inedo BuildMaster XslTransform privileges managementmedium🔒---
109274Inedo BuildMaster Event Listener access control [CVE-2017-16520]medium🔒---
109273Savitech Driver Package certificate validation [CVE-2017-9758]low🔒---
109272NetApp Clustered Data ONTAP information disclosure [CVE-2017-5201]low🔒---
109271LibreNMS Installation install.php access controllow🔒---
109270Ultimate Instagram Feed Plugin uif-access-token-display.php cross site scriptinglow🔒---
109269Hola VPN 7za.exe permissionlow🔒---
109268Bolt ProfilerListener.php access controlmedium🔒---
109267SWFTools swfbits.c swf_DefineLosslessBitsTagToImage null pointer dereferencelow🔒---
109266Roundcube Webmail Configuration File access control [CVE-2017-16651]medium🔒--🔒
109265Joomla CMS 2FA improper authentication [CVE-2017-16634]medium🔒--🔒
109264Joomla CMS com_fields information disclosure [CVE-2017-16633]medium🔒--🔒
109263Logitech Media Server radio URL cross site scripting [CVE-2017-16568]low🔒---
109262Logitech Media Server favorite cross site scripting [CVE-2017-16567]low🔒---
109261UserPro Plugin access control [CVE-2017-16562]medium🔒--🔒
109260Debut Embedded http Server HTTP Request access control [CVE-2017-16249]low🔒--🔒
109259SuSEfirewall2 portmap Service access control [CVE-2017-15638]medium🔒--🔒
109258Avaya IP Office Contact Center ActiveX Control ViewerCtrlLib.ViewerCtrl open memory corruptionmedium🔒---
109257mkclean MKV File node.c Node_ValidatePtr null pointer dereferencelow🔒---
109256libEBML MKV File ebmlnumber.c EBML_IntegerValue input validationlow🔒---
109255libEBML MKV File ebmlmaster.c UpdateDataSize input validationlow🔒---
109254libebml2 MKV File ebmlmain.c EBML_FindNextElement null pointer dereferencelow🔒---
109253libEBML MKV File ebmlnumber.c ReadDataFloat input validationlow🔒---
109252libEBML MKV File ebmlmaster.c ReadData input validationlow🔒---
109251libebml2 MKV File ebmlelement.c EBML_BufferToID null pointer dereferencelow🔒---
109250libebml2 MKV File ebmlstring.c ReadData use after freelow🔒---
109249mkvalidator MKV File node.c Node_GetData null pointer dereferencelow🔒---
109248NetApp OnCommand Unified Manager for 7-mode User Interface input validationmedium🔒---
109247Avaya IP Office SoftConsole Client memory corruption [CVE-2017-11309]medium🔒---
109246Cisco IOS/IOS XE Smart Install improper authenticationhigh🔒---
109245Datto Windows Agent command injection [CVE-2017-16674]medium🔒---
109244Datto Backup Agent Service Port 2556X information disclosurelow🔒---
109243iText XML Parser xml external entity reference [CVE-2017-9096]medium🔒---
109242Digium Asterisk pjsip Session Object memory corruption [CVE-2017-16672]low🔒--🔒
109241Digium Asterisk CDR Handller memory corruption [CVE-2017-16671]medium🔒--🔒
109240GraphicsMagick wpg.c AcquireCacheNexus memory corruptionmedium🔒--🔒
109239Back In Time notify-send Command notifyplugin.py os.system os command injectionmedium🔒--🔒
109238RemObjects Remoting SDK soap Reflected cross site scriptinglow🔒---
109237sam2p input-bmp.ci ReadImage integer overflowmedium🔒--🔒
109236FRRouting BGP information disclosure [CVE-2017-15865]low🔒--🔒
109235Red Hat Gluster Storage Fix CVE-2017-12163 information disclosuremedium🔒--🔒
109234Red Hat Gluster Storage Fix CVE-2017-12151 cryptographic issueslow🔒--🔒
109233Red Hat Gluster Storage Fix CVE-2017-12150 information disclosurelow🔒--🔒
109232HPE Content Manager Workgroup Service resource consumption [CVE-2017-14360]low🔒---
109231InPage Reader memory corruption [CVE-2017-12824]medium🔒---
109230Zoho ManageEngine ServiceDesk File Download path traversal [CVE-2017-11512]low🔒---
109229Zoho ManageEngine ServiceDesk File Download information disclosurelow🔒---
109228MetalGenix GeniXCMS User.class.php sql injection [CVE-2015-3933]medium🔒---
109227Fortinet FortiOS Reflected cross site scripting [CVE-2017-7739]low🔒--🔒
109226Cacti Log clog.php information disclosurelow🔒--🔒
109225Cacti Client-IP Header remote_agent.php access controlmedium🔒--🔒
109224Gentoo assp access controllow🔒---
109223OwlMixin yaml Loader util.py command injectionmedium🔒---
IDTitleVulDBCVSSSecuniaXForceNessus
109222PyAnyAPI YAML Parser Interfaces.py YAMLParser command injectionmedium🔒---
109221MLAlchemy YAML Parser parser.py parse_yaml_query command injectionmedium🔒---
109220Cesanta Mongoose WebSocket use after free [CVE-2017-2922]medium🔒---
109219Cesanta Mongoose WebSocket integer overflow [CVE-2017-2921]medium🔒---
109218Circle with Disney Notification os command injection [CVE-2017-2917]medium🔒---
109217Circle with Disney HTTP Request restore link followingmedium🔒---
109216Circle with Disney SSID command injection [CVE-2017-2915]medium🔒---
109215Circle with Disney API Daemon improper authentication [CVE-2017-2914]medium🔒---
109214Circle with Disney SSL Certificate Validator certificate validationmedium🔒---
109213Circle with Disney SSL Certificate Validator certificate validationmedium🔒---
109212Circle with Disney SSL Certificate Validator certificate validationmedium🔒---
109211Mongoose DNS Server resource consumption [CVE-2017-2909]low🔒---
109210Circle with Disney Signature Verification race condition [CVE-2017-2898]medium🔒---
109209Cesanta Mongoose MQTT Packet Parser out-of-bounds read [CVE-2017-2895]medium🔒---
109208Cesanta Mongoose MQTT Packet Parser memory corruption [CVE-2017-2894]medium🔒---
109207Cesanta Mongoose MQTT Packet Parser null pointer dereferencelow🔒---
109206Cesanta Mongoose MQTT Packet Parser integer overflow [CVE-2017-2892]medium🔒---
109205Cesanta Mongoose HTTP Server use after free [CVE-2017-2891]medium🔒---
109204Circle with Disney HTTP Request restore os command injectionmedium🔒---
109203Circle with Disney apid Daemon resource consumption [CVE-2017-2889]low🔒---
109202Circle with Disney API Call Brick resource consumptionmedium🔒---
109201Circle with Disney Database Update access control [CVE-2017-2883]medium🔒---
109200Circle with Disney Server Update input validation [CVE-2017-2882]medium🔒---
109199Circle with Disney Torlist Update input validation [CVE-2017-2881]medium🔒---
109198Circle with Disney HTTP Packet backup os command injectionmedium🔒---
109197Circle with Disney Firmware Update command injection [CVE-2017-2865]medium🔒---
109196Circle with Disney Auth Token improper authentication [CVE-2017-2864]medium🔒---
109195Linux Kernel USB Device qmi_wwan.c qmi_wwan_bind divide by zeromedium🔒--🔒
109194Linux Kernel USB Device cdc_ether.c usbnet_generic_cdc_bind divide by zeromedium🔒--🔒
109193Linux Kernel USB Device dvb_frontend.c dvb_frontend_free use after freemedium🔒--🔒
109192Linux Kernel USB Device asix_devices.c null pointer dereferencemedium🔒--🔒
109191Linux Kernel USB Device dib0700_devices.c null pointer dereferencemedium🔒--🔒
109190Linux Kernel ims-pcu.c ims_pcu_get_cdc_union_desc out-of-bounds readmedium🔒--🔒
109189Linux Kernel USB Device hdpvr-core.c hdpvr_probe 7pk errormedium🔒--🔒
109188Linux Kernel gtco.c parse_hid_report_descriptor out-of-bounds readmedium🔒--🔒
109187PHP Date Extension parse_date.c php_parse_date out-of-bounds readlow🔒--🔒
109186Cacti Settings rrd.php os command injectionmedium🔒--🔒
109185Ingenious School Management System friend_profile.php Time-Based sql injectionmedium🔒---
109184Synology CardDAV Server principals credentials managementmedium🔒---
109183Circle with Disney WiFi Management access control [CVE-2017-12096]medium🔒---
109182Circle with Disney WiFi Channel Parser command injection [CVE-2017-12094]medium🔒---
109181Circle with Disney Cloud Infrastructure Routing 7pk securitymedium🔒---
109180Circle with Disney API Call access control [CVE-2017-12084]medium🔒---
109179Circle with Disney apid Daemon information disclosure [CVE-2017-12083]low🔒---
109178Kabona AB WebDatorCentral Password Storage credentials managementmedium🔒---
109177Net::Ping::External Argument command injection [CVE-2008-7319]medium🔒--🔒
109176NetIQ iManager Reflected cross site scripting [CVE-2017-7425]low🔒---
109175Symantec Endpoint Protection Real Time Protection UI access controllow🔒--🔒
109174Gentoo vde access control [CVE-2017-16638]medium🔒--🔒
109173Vectura Perfect Privacy VPN Manager input validation [CVE-2017-16637]low🔒---
109172Bludit Persistent cross site scripting [CVE-2017-16636]low🔒---
109171TinyWebGallery cross site scripting [CVE-2017-16635]low🔒---
109170KeystoneJS CSRF Prevention cross-site request forgery [CVE-2017-16570]low🔒---
109169Zurmo createMeeting redirectlow🔒---
109168Vonage HT802 login cross-site request forgerylow🔒---
109167Vonage HT802 config2 Stored cross site scriptinglow🔒---
109166Vonage HT802 Basic Settings update cross-site request forgerylow🔒---
109165Samsung SRN-1670D Web Viewer network_ssl_upload.php unrestricted uploadmedium🔒---
109164Hashicorp Vagrant VMware Fusion Plugin Plugin Update Process access controlmedium🔒---
109163FFmpeg ffv1dec.c read_header out-of-bounds readmedium🔒--🔒
109162Linux Kernel powerpc.c kvm_vm_ioctl_check_extension null pointer dereferencelow🔒--🔒
109161Zurmo data URL createMeeting cross site scriptinglow🔒---
109159Trihedral VTScada uncontrolled search path [CVE-2017-14029]low🔒---
109158ABB Fox515T File input validation [CVE-2017-14025]low🔒---
109157Siemens SIMATIC PCS 7 DCOM Interface input validation [CVE-2017-14023]low🔒---
109156Advantech WebAccess memory corruption [CVE-2017-14016]medium🔒---
109155Symantec Endpoint Protection File System access control [CVE-2017-13681]medium🔒--🔒
109154Symantec Endpoint Protection UI File access controllow🔒--🔒
109153Advantech WebAccess null pointer dereference [CVE-2017-12719]medium🔒---
109152TRITON AP-EMAIL File Access input validation [CVE-2017-11177]medium🔒---
109151Taxonomy Find Module cross site scripting [CVE-2015-7878]low🔒---
109150rsync xattrs.c receive_xattr memory corruptionmedium🔒--🔒
109149GraphicsMagick render.c DrawImage input validationmedium🔒--🔒
109148ImageMagick WPG Image wpg.c ReadWPGImage memory corruptionmedium🔒--🔒
109147GraphicsMagick WPG Image wpg.c ReadWPGImage null pointer dereferencemedium🔒--🔒
109146Zoho ManageEngine Applications Manager GraphicalView.do sql injectionmedium🔒---
109145Zoho ManageEngine Applications Manager manageApplications.do sql injectionmedium🔒---
109144Tor Browser file URI information disclosure [CVE-2017-16541]medium🔒--🔒
109143OpenEMR Cloning setup.php information disclosuremedium🔒---
109142Docker Moby defaults.go DefaultLinuxSpec Data Loss information disclosurelow🔒--🔒
109141Linux Kernel lmedm04.c input validationmedium🔒--🔒
109140Linux Kernel imon.c imon_probe null pointer dereferencemedium🔒--🔒
109139Linux Kernel cx231xx-cards.c cx231xx_usb_probe null pointer dereferencemedium🔒--🔒
109138Linux Kernel config.c usb_get_bos_descriptor out-of-bounds readmedium🔒--🔒
109137Linux Kernel message.c cdc_parse_cdc_header memory corruptionmedium🔒--🔒
109136Linux Kernel hid-core.c usbhid_parse out-of-bounds readmedium🔒--🔒
109135Linux Kernel usbtest.c get_endpoints null pointer dereferencemedium🔒--🔒
109134Linux Kernel config.c memory corruptionmedium🔒--🔒
109133Linux Kernel uas-detect.h out-of-bounds readmedium🔒--🔒
109132Linux Kernel card.c snd_usb_create_streams out-of-bounds readmedium🔒--🔒
109131Linux Kernel seq_device.c use after freemedium🔒--🔒
109130Linux Kernel mixer.c use after freemedium🔒--🔒
109129Linux Kernel uwbd.c memory corruptionmedium🔒--🔒
109128Linux Kernel console.c usb_serial_console_disconnect use after freemedium🔒--🔒
109127MitraStar GPT-2541GNAC/DSL-100HN-T1 credentials management [CVE-2017-16523]medium🔒---
109126MitraStar GPT-2541GNAC/DSL-100HN-T1 sh access controlmedium🔒---
109125yajl-ruby gem yajl_encode.c Parser.new.parse format stringlow🔒--🔒
109124Ipswitch WS_FTP Pro Search memory corruption [CVE-2017-16513]medium🔒---
109123HPE Performance Center cross site scripting [CVE-2017-14359]low🔒---
109122Mobile Access Access Log Password log filelow🔒---
109121Mahara Log Password information disclosurelow🔒---
109120Mahara Configuration Page access control [CVE-2017-1000156]medium🔒---
109119Mahara Profile Picture information disclosure [CVE-2017-1000155]low🔒---
109118Mahara improper authentication [CVE-2017-1000154]medium🔒---
109117Mahara Password Reset Link access control [CVE-2017-1000153]medium🔒---
109116Mahara Session access control [CVE-2017-1000152]medium🔒---
109115Mahara Error Log Password information disclosurelow🔒---
109114Mahara Session session fixiation [CVE-2017-1000150]low🔒---
109113Mahara cross site scripting [CVE-2017-1000149]low🔒---
109112Mahara XML File unserialize code injectionmedium🔒---
109111Mahara cross-site request forgery [CVE-2017-1000147]low🔒---
109110Mahara Portfolio Page cross site scripting [CVE-2017-1000146]low🔒---
109109Mahara Comment access control [CVE-2017-1000145]medium🔒---
109108Mahara Institution Display Name cross site scripting [CVE-2017-1000144]low🔒---
109107Mahara Watchlist Notification information disclosure [CVE-2017-1000143]low🔒---
109106Mahara URL access control [CVE-2017-1000142]low🔒---
109105Mahara XML File cross site scripting [CVE-2017-1000140]medium🔒---
109104Mahara server-side request forgery [CVE-2017-1000139]low🔒---
109103Mahara Drag/Drop cross site scripting [CVE-2017-1000138]low🔒---
109102Mahara Drag/Drop cross site scripting [CVE-2017-1000137]low🔒---
109101Mahara Session session expiration [CVE-2017-1000136]medium🔒---
109100Mahara Session session expiration [CVE-2017-1000135]medium🔒---
109099Mahara Permission access control [CVE-2017-1000134]medium🔒---
109098Mahara Export information disclosure [CVE-2017-1000133]low🔒---
109097Mahara SWF File cross site scripting [CVE-2017-1000132]medium🔒---
109096Mahara MNet SSO API credentials management [CVE-2017-1000131]medium🔒---
109095Apple iOS Wi-Fi KRACK random valuesmedium🔒--🔒
109094Apple iOS WebKit memory corruption [CVE-2017-13803]medium🔒--🔒
109093Apple iOS WebKit memory corruption [CVE-2017-13802]medium🔒--🔒
109092Apple iOS WebKit memory corruption [CVE-2017-13798]medium🔒--🔒
109091Apple iOS WebKit memory corruption [CVE-2017-13797]medium🔒--🔒
109090Apple iOS WebKit memory corruption [CVE-2017-13796]medium🔒--🔒
109089Apple iOS WebKit memory corruption [CVE-2017-13795]medium🔒--🔒
109088Apple iOS WebKit memory corruption [CVE-2017-13794]medium🔒--🔒
109087Apple iOS WebKit memory corruption [CVE-2017-13793]medium🔒--🔒
109086Apple iOS WebKit memory corruption [CVE-2017-13792]medium🔒--🔒
109085Apple iOS WebKit memory corruption [CVE-2017-13791]medium🔒--🔒
109084Apple iOS WebKit memory corruption [CVE-2017-13788]medium🔒--🔒
109083Apple iOS WebKit memory corruption [CVE-2017-13785]medium🔒--🔒
109082Apple iOS WebKit memory corruption [CVE-2017-13784]medium🔒--🔒
109081Apple iOS WebKit memory corruption [CVE-2017-13783]medium🔒--🔒
109080Apple iOS UIKit information disclosure [CVE-2017-7113]low🔒---
109079Apple iOS StreamingZip input validation [CVE-2017-13804]medium🔒--🔒
109078Apple iOS Siri information disclosure [CVE-2017-13805]low🔒---
109077Apple iOS Messages information disclosure [CVE-2017-13844]low🔒--🔒
109076Apple iOS Kernel memory corruption [CVE-2017-13799]medium🔒--🔒
109075Apple iOS CoreText input validation [CVE-2017-13849]low🔒--🔒
109074Apple macOS Wi-Fi KRACK 7pk securitymedium🔒--🔒
109073Apple macOS Wi-Fi 7pk security [CVE-2017-13078]low🔒--🔒
109072Apple macOS Wi-Fi 7pk security [CVE-2017-13077]medium🔒--🔒
109071Apple macOS tcpdump memory corruption [CVE-2017-13725]high🔒--🔒
109070Apple macOS tcpdump memory corruption [CVE-2017-13690]high🔒--🔒
109069Apple macOS tcpdump memory corruption [CVE-2017-13689]high🔒--🔒
109068Apple macOS tcpdump memory corruption [CVE-2017-13688]high🔒--🔒
109067Apple macOS tcpdump memory corruption [CVE-2017-13687]high🔒--🔒
109066Apple macOS tcpdump memory corruption [CVE-2017-13055]high🔒--🔒
109065Apple macOS tcpdump memory corruption [CVE-2017-13054]high🔒--🔒
109064Apple macOS tcpdump memory corruption [CVE-2017-13053]high🔒--🔒
109063Apple macOS tcpdump memory corruption [CVE-2017-13052]high🔒--🔒
109062Apple macOS tcpdump memory corruption [CVE-2017-13051]high🔒--🔒
109061Apple macOS tcpdump memory corruption [CVE-2017-13050]high🔒--🔒
109060Apple macOS tcpdump memory corruption [CVE-2017-13049]high🔒--🔒
109059Apple macOS tcpdump memory corruption [CVE-2017-13048]high🔒--🔒
109058Apple macOS tcpdump memory corruption [CVE-2017-13047]high🔒--🔒
109057Apple macOS tcpdump memory corruption [CVE-2017-13046]high🔒--🔒
109056Apple macOS tcpdump memory corruption [CVE-2017-13045]high🔒--🔒
109055Apple macOS tcpdump memory corruption [CVE-2017-13044]high🔒--🔒
109054Apple macOS tcpdump memory corruption [CVE-2017-13043]high🔒--🔒
109053Apple macOS tcpdump memory corruption [CVE-2017-13042]high🔒--🔒
109052Apple macOS tcpdump memory corruption [CVE-2017-13041]high🔒--🔒
109051Apple macOS tcpdump memory corruption [CVE-2017-13040]high🔒--🔒
109050Apple macOS tcpdump memory corruption [CVE-2017-13039]high🔒--🔒
109049Apple macOS tcpdump memory corruption [CVE-2017-13038]high🔒--🔒
109048Apple macOS tcpdump memory corruption [CVE-2017-13037]high🔒--🔒
109047Apple macOS tcpdump memory corruption [CVE-2017-13036]high🔒--🔒
109046Apple macOS tcpdump memory corruption [CVE-2017-13035]high🔒--🔒
109045Apple macOS tcpdump memory corruption [CVE-2017-13034]high🔒--🔒
109044Apple macOS tcpdump memory corruption [CVE-2017-13033]high🔒--🔒
109043Apple macOS tcpdump memory corruption [CVE-2017-13032]high🔒--🔒
109042Apple macOS tcpdump memory corruption [CVE-2017-13031]high🔒--🔒
109041Apple macOS tcpdump memory corruption [CVE-2017-13030]high🔒--🔒
109040Apple macOS tcpdump memory corruption [CVE-2017-13029]high🔒--🔒
109039Apple macOS tcpdump memory corruption [CVE-2017-13028]high🔒--🔒
109038Apple macOS tcpdump memory corruption [CVE-2017-13027]high🔒--🔒
109037Apple macOS tcpdump memory corruption [CVE-2017-13026]high🔒--🔒
109036Apple macOS tcpdump memory corruption [CVE-2017-13025]high🔒--🔒
109035Apple macOS tcpdump memory corruption [CVE-2017-13024]high🔒--🔒
109034Apple macOS tcpdump memory corruption [CVE-2017-13023]high🔒--🔒
109033Apple macOS tcpdump memory corruption [CVE-2017-13022]high🔒--🔒
109032Apple macOS tcpdump memory corruption [CVE-2017-13021]high🔒--🔒
109031Apple macOS tcpdump memory corruption [CVE-2017-13020]high🔒--🔒
109030Apple macOS tcpdump memory corruption [CVE-2017-13019]high🔒--🔒
109029Apple macOS tcpdump memory corruption [CVE-2017-13018]high🔒--🔒
109028Apple macOS tcpdump memory corruption [CVE-2017-13017]high🔒--🔒
109027Apple macOS tcpdump memory corruption [CVE-2017-13016]high🔒--🔒
109026Apple macOS tcpdump memory corruption [CVE-2017-13015]high🔒--🔒
109025Apple macOS tcpdump memory corruption [CVE-2017-13014]high🔒--🔒
109024Apple macOS tcpdump memory corruption [CVE-2017-13013]high🔒--🔒
109023Apple macOS tcpdump memory corruption [CVE-2017-13012]high🔒--🔒
109022Apple macOS tcpdump memory corruption [CVE-2017-13011]high🔒--🔒
109021Apple macOS tcpdump memory corruption [CVE-2017-13010]high🔒--🔒
109020Apple macOS tcpdump memory corruption [CVE-2017-13009]high🔒--🔒
109019Apple macOS tcpdump memory corruption [CVE-2017-13008]high🔒--🔒
109018Apple macOS tcpdump memory corruption [CVE-2017-13007]high🔒--🔒
109017Apple macOS tcpdump memory corruption [CVE-2017-13006]high🔒--🔒
109016Apple macOS tcpdump memory corruption [CVE-2017-13005]high🔒--🔒
109015Apple macOS tcpdump memory corruption [CVE-2017-13004]high🔒--🔒
109014Apple macOS tcpdump memory corruption [CVE-2017-13003]high🔒--🔒
109013Apple macOS tcpdump memory corruption [CVE-2017-13002]high🔒--🔒
109012Apple macOS tcpdump memory corruption [CVE-2017-13001]high🔒--🔒
109011Apple macOS tcpdump memory corruption [CVE-2017-13000]high🔒--🔒
109010Apple macOS tcpdump memory corruption [CVE-2017-12999]high🔒--🔒
109009Apple macOS tcpdump memory corruption [CVE-2017-12998]high🔒--🔒
109008Apple macOS tcpdump resource management [CVE-2017-12997]medium🔒--🔒
109007Apple macOS tcpdump memory corruption [CVE-2017-12996]high🔒--🔒
109006Apple macOS tcpdump resource management [CVE-2017-12995]medium🔒--🔒
109005Apple macOS tcpdump memory corruption [CVE-2017-12994]high🔒--🔒
109004Apple macOS tcpdump memory corruption [CVE-2017-12993]high🔒--🔒
109003Apple macOS tcpdump memory corruption [CVE-2017-12992]high🔒--🔒
109002Apple macOS tcpdump memory corruption [CVE-2017-12991]high🔒--🔒
109001Apple macOS tcpdump resource management [CVE-2017-12990]medium🔒--🔒
109000Apple macOS tcpdump resource management [CVE-2017-12989]medium🔒--🔒
108999Apple macOS tcpdump memory corruption [CVE-2017-12988]high🔒--🔒
108998Apple macOS tcpdump memory corruption [CVE-2017-12987]high🔒--🔒
108997Apple macOS tcpdump memory corruption [CVE-2017-12986]high🔒--🔒
108996Apple macOS tcpdump memory corruption [CVE-2017-12985]high🔒--🔒
108995Apple macOS tcpdump memory corruption [CVE-2017-12902]high🔒--🔒
108994Apple macOS tcpdump memory corruption [CVE-2017-12901]high🔒--🔒
108993Apple macOS tcpdump memory corruption [CVE-2017-12900]high🔒--🔒
108992Apple macOS tcpdump memory corruption [CVE-2017-12899]high🔒--🔒
108991Apple macOS tcpdump memory corruption [CVE-2017-12898]high🔒--🔒
108990Apple macOS tcpdump memory corruption [CVE-2017-12897]high🔒--🔒
108989Apple macOS tcpdump memory corruption [CVE-2017-12896]high🔒--🔒
108988Apple macOS tcpdump memory corruption [CVE-2017-12895]high🔒--🔒
108987Apple macOS tcpdump memory corruption [CVE-2017-12894]high🔒--🔒
108986Apple macOS tcpdump memory corruption [CVE-2017-12893]high🔒--🔒
108985Apple macOS tcpdump memory corruption [CVE-2017-11543]high🔒--🔒
108984Apple macOS tcpdump memory corruption [CVE-2017-11542]high🔒--🔒
108983Apple macOS tcpdump memory corruption [CVE-2017-11541]high🔒--🔒
108982Apple macOS tcpdump memory corruption [CVE-2017-11108]medium🔒--🔒
108981Apple macOS StreamingZip input validation [CVE-2017-13804]medium🔒--🔒
108980Apple macOS Sandbox memory corruption [CVE-2017-13838]medium🔒--🔒
108979Apple macOS Remote Management memory corruption [CVE-2017-13808]medium🔒--🔒
108978Apple macOS QuickTime Memory information disclosurelow🔒--🔒
108977Apple macOS Quick Look resource consumption [CVE-2017-7132]medium🔒--🔒
108976Apple macOS Quick Look Memory information disclosurelow🔒--🔒
108975Apple macOS Postfix Remote Code Execution [CVE-2017-13826]medium🔒--🔒
108974Apple macOS PCRE denial of service [CVE-2017-13846]medium🔒--🔒
108973Apple macOS Open Scripting Architecture memory corruption [CVE-2017-13824]medium🔒--🔒
108972Apple macOS libarchive memory corruption [CVE-2016-4736]medium🔒--🔒
108971Apple macOS libarchive memory corruption [CVE-2017-13812]medium🔒--🔒
108970Apple macOS libarchive memory corruption [CVE-2017-13816]medium🔒--🔒
108969Apple macOS libarchive memory corruption [CVE-2017-13813]medium🔒--🔒
108968Apple macOS Kernel memory corruption [CVE-2017-13799]medium🔒--🔒
108967Apple macOS Kernel memory corruption [CVE-2017-13834]medium🔒--🔒
108966Apple macOS Kernel memory corruption [CVE-2017-13843]medium🔒--🔒
108965Apple macOS Kernel information disclosure [CVE-2017-13782]low🔒--🔒
108964Apple macOS Kernel information disclosure [CVE-2017-13842]low🔒--🔒
108963Apple macOS Kernel information disclosure [CVE-2017-13840]low🔒--🔒
108962Apple macOS Kernel information disclosure [CVE-2017-13841]low🔒--🔒
108961Apple macOS Kernel information disclosure [CVE-2017-13836]low🔒--🔒
108960Apple macOS Kernel information disclosure [CVE-2017-13818]low🔒--🔒
108959Apple macOS Kernel out-of-bounds read [CVE-2017-13817]medium🔒--🔒
108958Apple macOS Kernel information disclosure [CVE-2017-13810]low🔒--🔒
108957Apple macOS ImageIO information disclosure [CVE-2017-13831]medium🔒--🔒
108956Apple macOS ImageIO memory corruption [CVE-2017-13814]medium🔒--🔒
108955Apple macOS HelpViewer cross site scripting [CVE-2017-13819]low🔒--🔒
108954Apple macOS Heimdal insufficient verification of data authenticitymedium🔒--🔒
108953Apple macOS HFS memory corruption [CVE-2017-13830]medium🔒--🔒
108952Apple macOS fsck_msdos memory corruption [CVE-2017-13811]medium🔒--🔒
108951Apple macOS Fonts state issue [CVE-2017-13828]medium🔒--🔒
108950Apple macOS file denial of service [CVE-2017-13815]medium🔒--🔒
108949Apple macOS Dictionary Widget information disclosure [CVE-2017-13801]low🔒--🔒
108948Apple macOS curl memory corruption [CVE-2017-1000101]medium🔒--🔒
108947Apple macOS curl information disclosure [CVE-2017-1000100]medium🔒--🔒
108946Apple macOS CoreText resource consumption [CVE-2017-13825]medium🔒--🔒
108945Apple macOS CFString Memory information disclosurelow🔒--🔒
108944Apple macOS Audio input validation [CVE-2017-13807]medium🔒--🔒
108943Apple macOS ATS memory corruption [CVE-2017-13820]medium🔒--🔒
108942Apple macOS AppleScript input validation [CVE-2017-13809]medium🔒--🔒
108941Apple macOS APFS memory corruption [CVE-2017-13800]medium🔒--🔒
108940Apple macOS APFS information disclosure [CVE-2017-13786]medium🔒--🔒
108939Apple macOS apache use after free [CVE-2017-9789]medium🔒--🔒
108938Apple macOS apache input validation [CVE-2017-9788]medium🔒--🔒
108937Apple macOS apache memory corruption [CVE-2017-7679]high🔒--🔒
108936Apple macOS apache input validation [CVE-2017-7668]high🔒--🔒
108935Apple macOS apache null pointer dereference [CVE-2017-7659]medium🔒--🔒
108934Apple macOS apache null pointer dereference [CVE-2017-3169]high🔒--🔒
108933Apple macOS apache improper authentication [CVE-2017-3167]high🔒--🔒
108932Apple macOS apache data processing [CVE-2016-8743]medium🔒--🔒
108931Apple macOS apache input validation [CVE-2016-8740]medium🔒--🔒
108930Apple macOS apache access control [CVE-2016-5387]medium🔒--🔒
108929Apple macOS apache input validation [CVE-2016-2161]medium🔒--🔒
108928Apple macOS apache Local Privilege Escalationlow🔒---
108927Apple macOS 802.1X sql injection [CVE-2017-13832]high🔒--🔒
108926Apple Safari WebKit memory corruption [CVE-2017-13803]medium🔒--🔒
108925Apple Safari WebKit memory corruption [CVE-2017-13802]medium🔒--🔒
108924Apple Safari WebKit memory corruption [CVE-2017-13798]medium🔒--🔒
108923Apple Safari WebKit memory corruption [CVE-2017-13797]medium🔒--🔒
108922Apple Safari WebKit memory corruption [CVE-2017-13796]medium🔒--🔒
108921Apple Safari WebKit memory corruption [CVE-2017-13795]medium🔒--🔒
108920Apple Safari WebKit memory corruption [CVE-2017-13794]medium🔒--🔒
108919Apple Safari WebKit memory corruption [CVE-2017-13793]medium🔒--🔒
108918Apple Safari WebKit memory corruption [CVE-2017-13792]medium🔒--🔒
108917Apple Safari WebKit memory corruption [CVE-2017-13791]medium🔒--🔒
108916Apple Safari WebKit memory corruption [CVE-2017-13788]medium🔒--🔒
108915Apple Safari WebKit memory corruption [CVE-2017-13785]medium🔒--🔒
108914Apple Safari WebKit memory corruption [CVE-2017-13784]medium🔒--🔒
108913Apple Safari WebKit memory corruption [CVE-2017-13783]medium🔒--🔒
108912Apple Safari Address Bar input validation [CVE-2017-13789]medium🔒--🔒
108911Apple Safari Address Bar input validation [CVE-2017-13790]medium🔒--🔒
108910VirIT eXplorer Anti-Virus Driver VIAGLT64.SYS input validationmedium🔒---
108909OpenSSL x86_64 Montgomery Squaring bn_sqrx8x_internal information disclosuremedium🔒--🔒
108908WordPress wpdb->prepare sql injectionmedium🔒--🔒
108907Cisco WebEx Meetings Server HTTP Header Reply information disclosurelow🔒---
108906Cisco WebEx Meetings Server Web Interface cross site scriptinglow🔒---
108905Cisco Aironet PAF memory corruption [CVE-2017-12283]low🔒---
108904Cisco Wireless LAN Controller ANQP memory corruption [CVE-2017-12282]low🔒--🔒
108903Cisco Aironet PEAP improper authentication [CVE-2017-12281]medium🔒---
108902Cisco Wireless LAN Controller CAPWAP memory corruption [CVE-2017-12280]low🔒--🔒
108901Cisco IOS Packet Memory information disclosurelow🔒---
108900Cisco Wireless LAN Controller SNMP resource management [CVE-2017-12278]low🔒--🔒
108899Cisco Firepower 4100/Firepower 9300 Smart Licensing Manager command injectionmedium🔒---
108898Cisco Prime Collaboration Provisioning SQL Database Interface input validationmedium🔒--🔒
108897Cisco Wireless LAN Controller 802.11v input validation [CVE-2017-12275]low🔒--🔒
108896Cisco Aironet EAP input validation [CVE-2017-12274]low🔒---
108895Cisco Aironet RF input validation [CVE-2017-12273]low🔒---
108894Cisco Application Policy Infrastructure Controller Enterprise Module Firewall Configuration access controlmedium🔒--🔒
108893Cisco Identity Services Engine SSH access control [CVE-2017-12261]low🔒--🔒
108892Cisco Firepower 9300 command injection [CVE-2017-12243]medium🔒---
108891Tenable SecurityCenter sql injection [CVE-2017-11508]medium🔒--🔒
108890OpenAM SAML 2.0IdP improper authentication [CVE-2017-10873]medium🔒---
108889Rakuraku Hagaki/Ichitaro memory corruption [CVE-2017-10870]medium🔒---
108888Flets Easy Setup Tool untrusted search path [CVE-2017-10825]low🔒---
108887radare elf.c store_versioninfo_gnu_verdef null pointer dereferencelow🔒---
108886radare bin.c string_scan_range out-of-bounds readmedium🔒---
108885radare Size Validation elf.c store_versioninfo_gnu_verdef memory corruptionmedium🔒---
108884GraphicsMagick describe.c DescribeImage out-of-bounds readmedium🔒--🔒
108883GraphicsMagick describe.c DescribeImage memory corruptionmedium🔒--🔒
108882Sera access control [CVE-2017-15918]low🔒---
108881SchedMD Slurm access control [CVE-2017-15566]medium🔒--🔒
108880IBM InfoSphere BigInsights cross site scripting [CVE-2017-1554]medium🔒---
108879IBM InfoSphere BigInsights Web UI cross site scripting [CVE-2017-1553]low🔒---
108878IBM InfoSphere BigInsights Link cross site scripting [CVE-2017-1552]medium🔒---
108877Docker-CE Content Verification input validation [CVE-2017-14992]low🔒--🔒
108876IBM Jazz Reporting Service Report Builder information disclosurelow🔒---
108875IBM OpenPages GRC Platform Web UI information disclosure [CVE-2017-1333]low🔒---
108874IBM OpenPages GRC Platform Web UI cross-site request forgerylow🔒---
108873IBM OpenPages GRC Platform Web UI cross site scripting [CVE-2017-1290]low🔒---
108872Apache Hive Policy Enforcement information disclosure [CVE-2017-12625]medium🔒---
108871IBM OpenPages GRC Platform Private API information disclosurelow🔒---
108870IBM OpenPages GRC Platform Web UI cross site scripting [CVE-2017-1147]low🔒---
108869Pluxml Stored cross site scripting [CVE-2017-1001001]low🔒---
108868SSH Plugin Configuration File Password credentials managementmedium🔒---
108867Favorite Plugin cross-site request forgery [CVE-2017-1000244]low🔒---
108866Favorite Plugin Permission Check permission [CVE-2017-1000243]medium🔒---
108865Git Client Plugin Temp File information disclosure [CVE-2017-1000242]low🔒---
108864WebKit/WebkitGTK+ UNIX IPC Layer input validation [CVE-2017-1000122]low🔒--🔒
108863WebKit/WebkitGTK+ UNIX IPC Layer integer overflow [CVE-2017-1000121]medium🔒--🔒
108862IBM OpenPages GRC Platform Web UI cross site scripting [CVE-2016-3048]low🔒---
108861Intel McAfee Network Data Loss Prevention Response Body information disclosuremedium🔒---
108860Intel McAfee Network Data Loss Prevention Webserver information disclosurelow🔒---
108859Intel McAfee Network Data Loss Prevention XSS cross site scriptinglow🔒---
108858Catalyst-Plugin-Static-Simple Module information disclosure [CVE-2017-16248]medium🔒--🔒
108857October CMS cross-site request forgery [CVE-2017-16244]low🔒---
108856Flexense SyncBreeze Enterprise memory corruption [CVE-2017-15950]medium🔒---
108855Hashicorp Vagrant VMware Fusion Plugin Update Process access controlmedium🔒---
108854MongoDB networkMessageCompressors memory corruptionmedium🔒--🔒
108853Mahara cross site scripting [CVE-2017-15273]low🔒---
108852Mahara cross site scripting [CVE-2017-14752]low🔒---
108851EMC AppSync Server hard-coded credentials [CVE-2017-14376]medium🔒---
108850EMC Unisphere for VMAX Virtual Appliance access control [CVE-2017-14375]medium🔒--🔒
108849HP ArcSight ESM/ArcSight ESM Express redirect [CVE-2017-14358]medium🔒--🔒
108848HP ArcSight ESM/ArcSight ESM Express Reflected cross site scriptinglow🔒--🔒
108847HP ArcSight ESM/ArcSight ESM Express sql injection [CVE-2017-14356]medium🔒--🔒
108846TP-LINK TL-WR741N/TL-WR741ND input validation [CVE-2017-14250]low🔒---
108845Mahara Reuse access control [CVE-2017-14163]medium🔒---
108844Korenix JetNet hard-coded credentials [CVE-2017-14027]medium🔒---
108843Korenix JetNet hard-coded credentials [CVE-2017-14021]medium🔒---
108842BitDefender Internet Security 2018 pdf.xmd integer overflowmedium🔒---
108841Foxit Reader gotoURL command injectionmedium🔒---
108840Foxit Reader app.execMenuItem use after freemedium🔒--🔒
108839Foxit Reader print use after freemedium🔒--🔒
108838Foxit Reader setItem use after freemedium🔒--🔒
108837Foxit Reader app.alert use after freemedium🔒--🔒
108836Foxit Reader ObjStm Object Parser information disclosure [CVE-2017-10944]low🔒--🔒
108835Foxit Reader PDF File information disclosure [CVE-2017-10943]low🔒--🔒
108834Foxit Reader PDF File information disclosure [CVE-2017-10942]low🔒--🔒
108833Foxit Reader AFParseDateEx use after freemedium🔒--🔒
108832Joyent Smart Data Center Docker API unrestricted upload [CVE-2017-10940]medium🔒---
108831GNU Emacs Backup Save File Permission information disclosuremedium🔒---
108830VIM Swap File Permission information disclosuremedium🔒--🔒
108829libvirt SSL/TLS Certificate Validator certificate validationmedium🔒--🔒
108828Blue Coat ProxySG access control [CVE-2016-9097]medium🔒--🔒
108827Zomato Clone Script restaurant-menu.php sql injectionmedium🔒---
108826Website Broker Script status_list.php sql injectionmedium🔒---
108825Vastal I-tech Agent Zone searchCommercial.php sql injectionmedium🔒---
108824Php Inventory / Invoice Management System unrestricted uploadmedium🔒---
108823Online Exam Test Application resources.php sql injectionmedium🔒---
108822Nice PHP FAQ Script index.php sql injectionmedium🔒---
108821Fake Magazine Cover Script rate.php sql injectionmedium🔒---
108820CPA Lead Reward Script sql injection [CVE-2017-15986]medium🔒---
108819Basic B2B Script product_view1.php sql injectionmedium🔒---
108818Creative Management System CMS index.php sql injectionmedium🔒---
108817MyMagazine Magazine / Blog CMS admin_process.php sql injectionmedium🔒---
108816Dynamic News Magazine / Blog CMS admin_process.php sql injectionmedium🔒---
108815Responsive Newspaper Magazine / Blog CMS admin_process.php sql injectionmedium🔒---
108814US Zip Codes Database Script sql injection [CVE-2017-15980]medium🔒---
108813Shareet Photo Sharing Social Network sql injection [CVE-2017-15979]medium🔒---
108812AROX School ERP PHP Script sql injection [CVE-2017-15978]medium🔒---
108811Protected Links Expiring Download Links sql injection [CVE-2017-15977]medium🔒---
108810D-Link DSL-2740E Persistent cross site scripting [CVE-2016-10699]low🔒---
108809Progress OpenEdge Service Port 20931 access control [CVE-2015-9245]medium🔒---
108808Amazon AWS CloudFormation Bootstrap Tools access control [CVE-2017-9450]medium🔒--🔒
108807Barco ClickShare Base Unit Web API command injection [CVE-2017-9377]medium🔒---
108806Enalean Tuleap REST API getRecentElements code injectionmedium🔒---
108805Typecho write-post.php cross site scriptinglow🔒---
108804Watchdog Anti-Malware/Online Security Pro Driver zam32.sys null pointer dereferencelow🔒---
108803Watchdog Anti-Malware/Online Security Pro Driver zam32.sys null pointer dereferencelow🔒---
108802Synology Audio Station Custom Internet Radio List cross site scriptinglow🔒---
108801Node.js zlib input validation [CVE-2017-14919]low🔒--🔒
108800Barco ClickShare CSM-1 cross site scripting [CVE-2017-12460]low🔒---
108799Oracle Fusion Middleware access control [CVE-2017-10151]medium🔒--🔒
108798Linux Kernel out-of-bounds write [CVE-2017-1000255]medium🔒--🔒
108797Apache Struts TextParseUtiltranslateVariables input validationmedium🔒--🔒
108796QEMU MSI-X MMIO msix.c write null pointer dereferencelow🔒--🔒
108795Apache Traffic Server HTTP2 set_dynamic_table_size memory corruptionmedium🔒--🔒
108794Apache WSS4J Incomplete Fix Leak risky encryptionlow🔒--🔒
108793Apache Qpid qpidd data processing [CVE-2015-0224]low🔒--🔒
108792Apache Traffic Server Access Restriction access control [CVE-2014-3624]medium🔒--🔒
108791Apache Wicket Session information disclosure [CVE-2014-3526]low🔒---
108790Apache Storm Log Viewer path traversal [CVE-2014-0115]low🔒---
108789Apache Cordova In-App-Browser Standalone Plugin CDVInAppBrowser access controlmedium🔒---
108788Apache Cordova File-Transfer Standalone Plugin CDVFileTransfer.m input validationmedium🔒---
108787Apache HttpClient HttpClientBuilder.java input validationhigh🔒---
108786Apache Wicket script Tag cross site scripting [CVE-2012-5636]low🔒---
108785EPiServer Ektron CMS XSLTCompiledTransform data processingmedium🔒---
108784EPiServer Ektron CMS XSL Data ekajaxtransform.aspx XslCompiledTransform data processingmedium🔒--🔒
108783Apache Hadoop Kerberos Security Feature Key risky encryptionmedium🔒---
108782Apache Xerces2 XML Service resource management [CVE-2012-0881]low🔒--🔒
108781Apache jUDDI happyjuddi.jsp cross site scriptinglow🔒---
108780Apache jUDDI Log File uddiget.jsp input validationmedium🔒---
108779Dulwich SSH Subprocess command injection [CVE-2017-16228]medium🔒--🔒
108778Quagga bgp_aspath.c aspath_put input validationlow🔒--🔒
108777EyesOfNetwork Web Interface index.php sql injectionmedium🔒---
108776NQ Contacts Backup / Restore SHA-1 Hash information disclosuremedium🔒---
108775NQ Contacts Backup / Restore DES Encryption key management [CVE-2017-15998]medium🔒---
108774NQ Contacts Backup / Restore RC4 Encryption Stored key managementlow🔒---
108773GNU binutils readelf elfcomm.c memory corruptionlow🔒--🔒
108772Linux Kernel waitid privileges managementmedium🔒--🔒
108771rsync Checksum access control [CVE-2017-15994]medium🔒---
108770ZeeBuddy editadgroup.php sql injectionmedium🔒---
108769Vastal I-tech Dating Zone add_to_cart.php sql injectionmedium🔒---
108768tPanel login.php sql injectionmedium🔒---
108767Sokial Social Network Script members_view.php sql injectionmedium🔒---
108766SoftDatepro Dating Social Network viewprofile.php sql injectionmedium🔒---
108765Same Sex Dating Software Pro viewprofile.php sql injectionmedium🔒---
108764PHP CityPortal index.php sql injectionmedium🔒---
108763PG All Share Video tag sql injectionmedium🔒---
108762MyBuilder Clone phpsqlsearch_genxml.php sql injectionmedium🔒---
108761Mailing List Manager Pro users sql injectionmedium🔒---
108760Zh YandexMap index.php sql injectionmedium🔒---
108759NS Download Shop invoice.create sql injectionmedium🔒---
108758Job Board Script Softwar job-details sql injectionmedium🔒---
108757Itech Gigs Script browse-scategory.php sql injectionmedium🔒---
108756iStock Management System profile unrestricted uploadmedium🔒---
108755iProject Management System index.php sql injectionmedium🔒---
108754Article Directory Script author.php sql injectionmedium🔒---
108753Adult Script Pro download sql injectionmedium🔒---
108752D-Park Pro Domain Parking Script loginform.php sql injectionmedium🔒---
108751Ingenious School Management System my_profile.php unrestricted uploadmedium🔒---
108750ConverTo Video Downloader / Converter download.php input validationmedium🔒---
108749bchunk CUE File null pointer dereference [CVE-2017-15955]low🔒--🔒
108748bchunk CUE File memory corruption [CVE-2017-15954]medium🔒--🔒
108747bchunk CUE File memory corruption [CVE-2017-15953]medium🔒--🔒
108746Linux Kernel traps.c altivec_unavailable_exception data processingmedium🔒---
108745HPE RSA Authentication Manager cross site scripting [CVE-2017-14373]low🔒--🔒
108744HPE Intelligent Management Center PLAT deserialization [CVE-2017-8967]medium🔒--🔒
108743HPE Intelligent Management Center PLAT deserialization [CVE-2017-8966]medium🔒--🔒
108742HPE Intelligent Management Center PLAT deserialization [CVE-2017-8965]medium🔒--🔒
108741HPE Intelligent Management Center PLAT deserialization [CVE-2017-8964]medium🔒--🔒
108740HPE Intelligent Management Center PLAT deserialization [CVE-2017-8963]medium🔒--🔒
108739HPE Intelligent Management Center PLAT deserialization [CVE-2017-8962]medium🔒--🔒
108738Fortinet FortiOS WebUI cross site scripting [CVE-2017-7733]low🔒--🔒
108737F5 BIG-IP Traffic Management Microkernel memory corruption [CVE-2017-6163]low🔒--🔒
108736F5 BIG-IP Traffic Management Microkernel memory corruption [CVE-2017-6162]low🔒--🔒
108735F5 BIG-IP TLS Protection resource consumption [CVE-2017-6161]low🔒--🔒
108734F5 BIG-IP Traffic Management Microkernel resource managementlow🔒--🔒
108733F5 BIG-IP MPTCP resource management [CVE-2017-6159]low🔒--🔒
108732F5 BIG-IP HTTP Proxy/SOCKS command injection [CVE-2017-6157]medium🔒--🔒
108731Linux Kernel KEYS Subsystem input validation [CVE-2017-15951]medium🔒--🔒
108730Xavier PHP Management Panel adminuseredit.php sql injectionmedium🔒---
108729Perch Content Management System cross site scripting [CVE-2017-15948]low🔒---
108728Simple ASC Content Management System guestbook.asp sign cross site scriptinglow🔒---
108727com_tag index.php request sql injectionmedium🔒---
108726Gentoo dev-db Installation access control [CVE-2017-15945]low🔒--🔒
108725GNU binutils Incomplete Fix dwarf2.c null pointer dereferencelow🔒--🔒
108724GNU binutils libbfd dwarf2.c memory corruptionlow🔒--🔒
108723Artica Pandora FMS information disclosure [CVE-2017-15937]low🔒---
108722Artica Pandora FMS cross site scripting [CVE-2017-15936]low🔒---
108721Artica Pandora FMS Manager Files code injection [CVE-2017-15935]medium🔒---
108720Artica Pandora FMS Stored cross site scripting [CVE-2017-15934]low🔒---
108719EyesOfNetwork Web Interface index.php sql injectionmedium🔒---
108718radare2 elf.c store_versioninfo_gnu_verdef out-of-bounds readmedium🔒---
108717radare2 elf.c store_versioninfo_gnu_verneed out-of-bounds readmedium🔒---
108716GraphicsMagick png.c ReadOneJNGImage null pointer dereferencelow🔒--🔒
108715Ox Gem parse_obj input validationlow🔒--🔒
108714shadowsocks-libev ss-manager manager.c command injectionmedium🔒--🔒
108713Diary with Lock net.MCrypt information disclosure [CVE-2017-15582]medium🔒---
108712Diary with Lock cryptographic issues [CVE-2017-15581]medium🔒---
108711Fortinet FortiOS Web API input validation [CVE-2017-14182]low🔒--🔒
108710F5 BIG-IP Virtual Server resource management [CVE-2017-0303]low🔒--🔒
108709Apache Cordova Android intent URL input validation [CVE-2015-1835]medium🔒---
108708Apache ActiveMQ XML Data xml external entity reference [CVE-2014-3600]medium🔒--🔒
108707Apache ActiveMQ XML Data xml external entity reference [CVE-2014-3579]medium🔒---
108706Google Chrome v8 memory corruption [CVE-2017-5122]medium🔒--🔒
108705Google Chrome v8 input validation [CVE-2017-5121]medium🔒--🔒
108704Google Chrome Payment API input validation [CVE-2017-5110]medium🔒--🔒
108703Google Chrome LOAD input validation [CVE-2017-5109]medium🔒--🔒
108702Google Chrome PDFium type conversion [CVE-2017-5108]medium🔒--🔒
108701Google Chrome SVG Rendering information disclosure [CVE-2017-5107]medium🔒--🔒
108700Google Chrome Policy Enforcement Domain Name input validationmedium🔒--🔒
108699Google Chrome Policy Enforcement Domain Name input validationmedium🔒--🔒
108698Google Chrome Omnibox input validation [CVE-2017-5104]medium🔒--🔒
108697Google Chrome Skia information disclosure [CVE-2017-5103]low🔒--🔒
108696Google Chrome Skia information disclosure [CVE-2017-5102]low🔒--🔒
108695Google Chrome Omnibox input validation [CVE-2017-5101]medium🔒--🔒
108694Google Chrome Apps use after free [CVE-2017-5100]medium🔒--🔒
108693Google Chrome PPAPI Plugins input validation [CVE-2017-5099]medium🔒--🔒
108692Google Chrome v8 use after free [CVE-2017-5098]medium🔒--🔒
108691Google Chrome Skia input validation [CVE-2017-5097]medium🔒--🔒
108690Google Chrome Policy Enforcement information disclosure [CVE-2017-5096]medium🔒--🔒
108689Google Chrome PDFium memory corruption [CVE-2017-5095]medium🔒--🔒
108688Google Chrome Extensions type conversion [CVE-2017-5094]medium🔒--🔒
108687Google Chrome Blink input validation [CVE-2017-5093]medium🔒--🔒
108686Google Chrome PPAPI Plugin input validation [CVE-2017-5092]medium🔒--🔒
108685Google Chrome IndexedDB use after free [CVE-2017-5091]medium🔒--🔒
108684Google Chrome Policy Enforcement Domain Name input validationmedium🔒---
108683Google Chrome Policy Enforcement Domain Name input validationmedium🔒--🔒
108682Google Chrome v8 out-of-bounds read [CVE-2017-5088]medium🔒--🔒
108681Google Chrome Blink use after free [CVE-2017-5087]medium🔒--🔒
108680Google Chrome Policy Enforcement Domain Name input validationmedium🔒--🔒
108679Google Chrome Bookmark cross site scripting [CVE-2017-5085]medium🔒--🔒
108678Google Chrome OS image-burner access control [CVE-2017-5084]low🔒--🔒
108677Google Chrome Blink input validation [CVE-2017-5083]medium🔒--🔒
108676Google Chrome Autofill information disclosure [CVE-2017-5082]low🔒--🔒
108675Google Chrome Extensions input validation [CVE-2017-5081]medium🔒--🔒
108674Google Chrome Autofill use after free [CVE-2017-5080]medium🔒--🔒
108673Google Chrome Blink input validation [CVE-2017-5079]medium🔒--🔒
108672Google Chrome Blink command injection [CVE-2017-5078]medium🔒--🔒
108671Google Chrome Skia out-of-bounds read [CVE-2017-5077]medium🔒--🔒
108670Google Chrome Policy Enforcement input validation [CVE-2017-5076]medium🔒--🔒
108669Google Chrome Blink information disclosure [CVE-2017-5075]low🔒--🔒
108668Google Chrome Chrome Apps use after free [CVE-2017-5074]medium🔒--🔒
108667Google Chrome Print Preview use after free [CVE-2017-5073]medium🔒--🔒
108666Google Chrome Omnibox Domain Name input validationmedium🔒--🔒
108665Google Chrome v8 out-of-bounds read [CVE-2017-5071]medium🔒--🔒
108664Google Chrome v8 type conversion [CVE-2017-5070]medium🔒--🔒
108663Google Chrome WebRTC race condition [CVE-2017-5068]medium🔒--🔒
108662Google Chrome Blink out-of-bounds read [CVE-2017-5056]medium🔒--🔒
108661Google Chrome Printing out-of-bounds read [CVE-2017-5055]medium🔒--🔒
108660Google Chrome v8 memory corruption [CVE-2017-5054]medium🔒--🔒
108659Google Chrome v8 access control [CVE-2017-5053]medium🔒--🔒
108658Google Chrome Blink memory corruption [CVE-2017-5052]medium🔒--🔒
108657GNU wget HTTP Chunk Size retr.c fd_read_body memory corruptionmedium🔒--🔒
108656GNU wget HTTP Chunk Size http.c skip_short_body memory corruptionmedium🔒--🔒
108655Fortinet FortiMail Webmail Login Reflected cross site scriptinglow🔒---
108654Fortinet FortiWLC WebUI command injection [CVE-2017-7341]medium🔒---
108653Fortinet FortiWLC cross site scripting [CVE-2017-7335]low🔒---
108652Bomgar Remote Support Agent untrusted search path [CVE-2017-5996]medium🔒---
108651Lenovo E95/M710s/M710t BIOS UEFI 7pk security [CVE-2017-3771]low🔒---
108650GNU Libextractor dvi_extractor.c EXTRACTOR_dvi_extract_method out-of-bounds readmedium🔒--🔒
108649ultimate-form-builder-lite Plugin admin-ajax.php sql injectionmedium🔒--🔒
108648Paessler PRTG Network Monitor access control [CVE-2017-15917]medium🔒---
108647Ignite Realtime Openfire Server Admin Console setup-host-settings.jsp cross site scriptinglow🔒---
108646systemd DNS Reply dns_packet_read_type_window input validationlow🔒--🔒
108645phpCollab newsdesk.php sql injectionmedium🔒---
108644London Trust Media Private Internet Access VPN Server List File resource consumptionlow🔒---
108643Thornberry NDoc Log File access control [CVE-2017-15366]low🔒---
108642IBM Tivoli Endpoint Manager Web UI cross site scripting [CVE-2017-1521]low🔒--🔒
108641GlusterFS gf_attach.c send_brick_req null pointer dereferencelow🔒--🔒
108640IBM Tivoli Endpoint Manager information disclosure [CVE-2017-1232]medium🔒--🔒
108639IBM Tivoli Endpoint Manager Random Number Generator information disclosurelow🔒--🔒
108638IBM Tivoli Endpoint Manager Secure Cookie information disclosurelow🔒--🔒
108637IBM Tivoli Endpoint Manager Error Log information disclosurelow🔒--🔒
108636IBM Tivoli Endpoint Manager URL History information disclosurelow🔒--🔒
108635IBM Tivoli Endpoint Manager improper authentication [CVE-2017-1222]medium🔒--🔒
108634IBM Tivoli Endpoint Manager information disclosure [CVE-2017-1220]low🔒--🔒
108633KeyCloak Oauth improper authentication [CVE-2017-12160]medium🔒--🔒
108632KeyCloak CSRF Prevention session expiration [CVE-2017-12159]low🔒--🔒
108631KeyCloak Admin Console Reflected cross site scriptinglow🔒--🔒
108630Tapatalk Plugin XMLRPC API unsubscribe_forum.php sql injectionmedium🔒---
108629Apache OFBiz privileges management [CVE-2012-1622]high🔒--🔒
108628D-Link DGS-1500 Ax hard-coded credentials [CVE-2017-15909]medium🔒---
108627OpenSSH Readonly Mode sftp-server.c process_open permissionmedium🔒--🔒
108626Xen Grant Copy access control [CVE-2017-15597]low🔒--🔒
108625AXIS 2100 Network Camera Administration Portal view.shtml Reflected cross site scriptinglow🔒---
108624IBM Team Concert Web UI cross site scripting [CVE-2017-1363]low🔒---
108623IBM ESA DM CLM Application information disclosure [CVE-2017-1295]low🔒---
108622Advantech WebOP Project File memory corruption [CVE-2017-12705]medium🔒---
108621IBM Jazz Foundation information disclosure [CVE-2017-1241]low🔒---
108620IBM DOORS Next Generation Web UI cross site scripting [CVE-2017-1169]low🔒---
108619IBM Jazz Foundation Web UI cross site scripting [CVE-2017-1164]low🔒---
108618cURL IMAP FETCH Response memory corruption [CVE-2017-1000257]medium🔒--🔒
108617KeystoneJS cross site scripting [CVE-2017-15881]low🔒---
108616EyesOfNetwork Web Interface add_modify_group.php sql injectionmedium🔒---
108615KeystoneJS CSV Export download.js input validationmedium🔒---
108614KeystoneJS MarkdownType.js cross site scriptinglow🔒---
108613BusyBox decompress_unlzma.c integer underflow [CVE-2017-15874]medium🔒--🔒
108612BusyBox decompress_bunzip2.c get_next_block integer overflowmedium🔒--🔒
108611phpwcms admin.edituser.tmpl.php cross site scriptinglow🔒---
108610serialize-to-js Package Access Restriction function resource consumption [Disputed]medium🔒---
108609user-login-history Plugin listing.php cross site scriptinglow🔒---
108608wp-noexternallinks Plugin options-general.php cross site scriptinglow🔒---
108607IBM WebSphere Application Server JSF information disclosure [CVE-2017-1583]low🔒---
108606IBM InfoSphere Master Data Management access control [CVE-2017-1523]low🔒---
108605ArGoSoft Mini Mail Server resource management [CVE-2017-15223]low🔒---
108604Ayukov NFTPD memory corruption [CVE-2017-15222]medium🔒---
108603FFmpeg AVI File double free [CVE-2017-15186]low🔒--🔒
108602Phpsugar PHP Melody playlists.php sql injectionmedium🔒---
108601SaltStack Salt input validation [CVE-2017-14696]low🔒--🔒
108600SaltStack Salt Incomplete Fix path traversal [CVE-2017-14695]low🔒--🔒
108599IBM Storwize V7000 inadequate encryption [CVE-2017-1375]low🔒--🔒
108598IBM Daeja ViewONE data processing [CVE-2017-1212]low🔒---
108597IBM Daeja ViewONE Logging information disclosure [CVE-2017-1211]low🔒---
108596IBM Daeja ViewONE Log File input validation [CVE-2017-1210]medium🔒---
108595IBM Daeja ViewONE Web UI cross site scripting [CVE-2017-1209]low🔒---
108594IBM OpenPages GRC Platform cross site scripting [CVE-2016-3049]low🔒---
108593Redis networking.c 7pk securitymedium🔒--🔒
108592Cloud Foundry Runtime Password Recovery information disclosuremedium🔒---
108591Cloud Foundry Runtime Password Reset Link password recovery [CVE-2015-5172]low🔒---
108590Cloud Foundry Runtime Password Change session expiration [CVE-2015-5171]high🔒---
108589Cloud Foundry Runtime cross-site request forgery [CVE-2015-5170]low🔒---
108588Eyou Mail System d_ip_login_get.php get_login_ip_config_file command injectionmedium🔒---
108587Cisco WebEx Meetings Server Entropy entropy [CVE-2014-0691]low🔒--🔒
108586Siemens APOGEE PXC/TALON TC BACnet Integrated Web Server path traversallow🔒---
108585Siemens APOGEE PXC/TALON TC BACnet Integrated Web Server improper authenticationlow🔒---
108584Easy Appointments Plugin Admin Panel cross site scripting [CVE-2017-15812]low🔒---
108583Pootle Button Plugin dialog.php cross site scriptinglow🔒---
108582PopCash.Net Code Integration Tool Plugin admin.php cross site scriptinglow🔒---
108581phpMyFAQ Tag tags.main.php cross site scriptinglow🔒---
108580phpMyFAQ ajax.config.php cross-site request forgerylow🔒---
108579Cisco Small Business SA520/Small Business SA540 platform.cgi path traversallow🔒---
108578Logitech Media Server URI DOM-Based cross site scriptinglow🔒---
108577osTicket HTML File tickets.php unrestricted uploadmedium🔒---
108576IDEMIA MorphoSmart 1300 Certificate Import access control [CVE-2017-15567]low🔒---
108575E-Sic buscacep.php sql injectionmedium🔒---
108574E-Sic Registration index.php cross site scriptinglow🔒---
108573E-Sic index access controlmedium🔒---
108572E-Sic Password Reset reset sql injectionmedium🔒---
108571Suricata Check detect-engine-content-inspection.c DetectEngineContentInspection 7pk securitylow🔒--🔒
108570Extreme EXOS Session access control [CVE-2017-14332]medium🔒---
108569Extreme EXOS exsh Restricted Shell Protection access controlmedium🔒---
108568Extreme EXOS access control [CVE-2017-14330]medium🔒---
108567Extreme EXOS exsh Debug Shell access control [CVE-2017-14329]medium🔒---
108566Extreme EXOS memory corruption [CVE-2017-14328]medium🔒---
108565Extreme EXOS File information disclosure [CVE-2017-14327]low🔒---
108564Symantec Endpoint Encryption memory corruption [CVE-2017-13683]low🔒--🔒
108563Symantec Encryption Desktop memory corruption [CVE-2017-13682]low🔒--🔒
108562Apache Portable Runtime Utility SDBM Database File apr_sdbm* out-of-bounds readlow🔒--🔒
108561Apache Portable Runtime APR apr_os_exp_time* memory corruptionmedium🔒--🔒
108560Pallets Werkzeug Debugger tbtools.py render_full cross site scriptinglow🔒--🔒
108559MSA vot.Ar parse input validationmedium🔒---
108558Count Per Day Plugin counter-options.php sql injectionlow🔒---
108557Paid Memberships Pro Plugin membershiplevels.php cross site scriptinglow🔒---
108556Axigen Mail Server Webmail Interface actions.hsp cross site scriptinglow🔒---
108555Hexis HawkEye json cross-site request forgerylow🔒---
108554st Module passwd path traversallow🔒--🔒
108553node-printer Module printer.js printDirect command injectionmedium🔒---
108552codem-transcode Module probe command injectionmedium🔒---
108551LetoDMS inc.ClassDMS.php sql injectionmedium🔒---
108550LetoDMS out.UsrMgr.php cross site scriptinglow🔒---
108549LetoDMS cross-site request forgery [CVE-2012-4568]low🔒---
108548LetoDMS inc.ClassUI.php cross site scriptinglow🔒---
108547LabWiki edit.php unrestricted uploadmedium🔒---
108546LabWiki cross site scripting [CVE-2011-4333]low🔒---
108545foo2zjs Temp File link followinglow🔒---
108544reseed Installation 7pk security [CVE-2011-2683]medium🔒---
108543Apache Derby Export File access controlmedium🔒---
108542Apple iOS Location Framework information disclosure [CVE-2017-7148]low🔒---
108541Apple Support App Analytics information disclosure [CVE-2017-7147]low🔒---
108540Apple iOS Setting Time Zone permission [CVE-2017-7145]medium🔒---
108539Apple iOS Private Browsing permission [CVE-2017-7144]medium🔒--🔒
108538Apple macOS Captive Network Assistant Password information disclosuremedium🔒--🔒
108537Apple macOS Mail IP Address information disclosurelow🔒--🔒
108536Apple iOS Keyboard Suggestions information disclosure [CVE-2017-7140]low🔒---
108535Apple macOS Directory Utility User information disclosurelow🔒--🔒
108534Apple iOS Bluetooth information disclosure [CVE-2017-7131]low🔒---
108533Apple macOS file input validation [CVE-2017-7125]medium🔒--🔒
108532Apple macOS file input validation [CVE-2017-7124]medium🔒--🔒
108531Apple macOS file input validation [CVE-2017-7123]medium🔒--🔒
108530Apple macOS file input validation [CVE-2017-7122]medium🔒--🔒
108529Apple macOS file input validation [CVE-2017-7121]medium🔒--🔒
108528Apple macOS IOFireWireFamily input validation [CVE-2017-7119]medium🔒--🔒
108527Apple macOS Application Firewall access control [CVE-2017-7084]medium🔒--🔒
108526Apple macOS Screen Lock information disclosure [CVE-2017-7082]low🔒--🔒
108525Apple iTunes Data Sync access control [CVE-2017-7079]low🔒--🔒
108524Apple macOS Mail Drafts information disclosure [CVE-2017-7078]low🔒--🔒
108523Apple macOS IOFireWireFamily memory corruption [CVE-2017-7077]medium🔒--🔒
108522Apple macOS AppSandbox input validation [CVE-2017-7074]low🔒--🔒
108521OpenMRS Reporting Compatibility Add On deserialization [CVE-2017-12796]medium🔒---
108520Apple tvOS zlib numeric error [CVE-2016-9843]high🔒--🔒
108519Apple tvOS zlib numeric error [CVE-2016-9842]high🔒--🔒
108518Apple tvOS zlib numeric error [CVE-2016-9841]high🔒--🔒
108517Apple tvOS zlib numeric error [CVE-2016-9840]high🔒--🔒
108516Apple tvOS Wi-Fi Memory information disclosurelow🔒---
108515Apple tvOS Wi-Fi memory corruption [CVE-2017-11121]medium🔒--🔒
108514Apple tvOS Wi-Fi memory corruption [CVE-2017-11120]medium🔒--🔒
108513Apple tvOS WebKit cross site scripting [CVE-2017-7109]low🔒--🔒
108512Apple tvOS WebKit information disclosure [CVE-2017-7090]low🔒--🔒
108511Apple tvOS WebKit memory corruption [CVE-2017-7120]medium🔒--🔒
108510Apple tvOS WebKit memory corruption [CVE-2017-7117]medium🔒--🔒
108509Apple tvOS WebKit memory corruption [CVE-2017-7111]medium🔒--🔒
108508Apple tvOS WebKit memory corruption [CVE-2017-7107]medium🔒--🔒
108507Apple tvOS WebKit memory corruption [CVE-2017-7104]medium🔒--🔒
108506Apple tvOS WebKit memory corruption [CVE-2017-7102]medium🔒--🔒
108505Apple tvOS WebKit memory corruption [CVE-2017-7100]medium🔒--🔒
108504Apple tvOS WebKit memory corruption [CVE-2017-7099]medium🔒--🔒
108503Apple tvOS WebKit memory corruption [CVE-2017-7098]medium🔒--🔒
108502Apple tvOS WebKit memory corruption [CVE-2017-7096]medium🔒--🔒
108501Apple tvOS WebKit memory corruption [CVE-2017-7095]medium🔒--🔒
108500Apple tvOS WebKit memory corruption [CVE-2017-7094]medium🔒--🔒
108499Apple tvOS WebKit memory corruption [CVE-2017-7093]medium🔒--🔒
108498Apple tvOS WebKit memory corruption [CVE-2017-7092]medium🔒--🔒
108497Apple tvOS WebKit memory corruption [CVE-2017-7091]medium🔒--🔒
108496Apple tvOS WebKit memory corruption [CVE-2017-7087]medium🔒--🔒
108495Apple tvOS WebKit memory corruption [CVE-2017-7081]medium🔒--🔒
108494Apple tvOS SQLite memory corruption [CVE-2017-7127]medium🔒--🔒
108493Apple tvOS SQLite memory corruption [CVE-2017-7130]medium🔒--🔒
108492Apple tvOS SQLite memory corruption [CVE-2017-7129]medium🔒--🔒
108491Apple tvOS SQLite memory corruption [CVE-2017-7128]medium🔒--🔒
108490Apple tvOS SQLite out-of-bounds read [CVE-2017-10989]medium🔒--🔒
108489Apple tvOS Security certificate validation [CVE-2017-7080]medium🔒--🔒
108488Apple tvOS libexpat xml external entity reference [CVE-2017-9233]medium🔒--🔒
108487Apple tvOS libexpat integer overflow [CVE-2016-9063]high🔒--🔒
108486Apple tvOS libc resource consumption [CVE-2017-1000373]low🔒--🔒
108485Apple tvOS libc resource management [CVE-2017-7086]low🔒--🔒
108484Apple tvOS Kernel memory corruption [CVE-2017-7114]medium🔒--🔒
108483Apple tvOS CoreAudio integer overflow [CVE-2017-0381]medium🔒--🔒
108482Apple tvOS CFNetwork Proxies input validation [CVE-2017-7083]low🔒--🔒
108481Apple watchOS zlib numeric error [CVE-2016-9843]high🔒--🔒
108480Apple watchOS zlib numeric error [CVE-2016-9842]high🔒--🔒
108479Apple watchOS zlib numeric error [CVE-2016-9841]high🔒--🔒
108478Apple watchOS zlib numeric error [CVE-2016-9840]high🔒--🔒
108477Apple watchOS SQLite memory corruption [CVE-2017-7127]medium🔒--🔒
108476Apple watchOS SQLite memory corruption [CVE-2017-7130]medium🔒--🔒
108475Apple watchOS SQLite memory corruption [CVE-2017-7129]medium🔒--🔒
108474Apple watchOS SQLite memory corruption [CVE-2017-7128]medium🔒--🔒
108473Apple watchOS SQLite memory corruption [CVE-2017-10989]medium🔒--🔒
108472Apple watchOS Security certificate validation [CVE-2017-7080]medium🔒--🔒
108471Apple watchOS libexpat xml external entity reference [CVE-2017-9233]medium🔒--🔒
108470Apple watchOS libexpat integer overflow [CVE-2016-9063]high🔒--🔒
108469Apple watchOS libc resource consumption [CVE-2017-1000373]low🔒---
108468Apple watchOS libc resource consumption [CVE-2017-7086]low🔒--🔒
108467Apple watchOS Kernel memory corruption [CVE-2017-7114]medium🔒--🔒
108466Apple watchOS CoreAudio integer overflow [CVE-2017-0381]medium🔒--🔒
108465Apple watchOS CFNetwork Proxies input validation [CVE-2017-7083]low🔒--🔒
108464Apple Safari WebKit Storage information disclosure [CVE-2017-7142]low🔒--🔒
108463Apple Safari WebKit cross site scripting [CVE-2017-7109]low🔒--🔒
108462Apple Safari WebKit information disclosure [CVE-2017-7090]low🔒--🔒
108461Apple Safari WebKit memory corruption [CVE-2017-7120]medium🔒--🔒
108460Apple Safari WebKit memory corruption [CVE-2017-7117]medium🔒--🔒
108459Apple Safari WebKit memory corruption [CVE-2017-7111]medium🔒--🔒
108458Apple Safari WebKit memory corruption [CVE-2017-7107]medium🔒--🔒
108457Apple Safari WebKit memory corruption [CVE-2017-7104]medium🔒--🔒
108456Apple Safari WebKit memory corruption [CVE-2017-7102]medium🔒--🔒
108455Apple Safari WebKit memory corruption [CVE-2017-7100]medium🔒--🔒
108454Apple Safari WebKit memory corruption [CVE-2017-7099]medium🔒--🔒
108453Apple Safari WebKit memory corruption [CVE-2017-7098]medium🔒--🔒
108452Apple Safari WebKit memory corruption [CVE-2017-7096]medium🔒--🔒
108451Apple Safari WebKit memory corruption [CVE-2017-7095]medium🔒--🔒
108450Apple Safari WebKit memory corruption [CVE-2017-7094]medium🔒--🔒
108449Apple Safari WebKit memory corruption [CVE-2017-7093]medium🔒--🔒
108448Apple Safari WebKit memory corruption [CVE-2017-7092]medium🔒--🔒
108447Apple Safari WebKit memory corruption [CVE-2017-7091]medium🔒--🔒
108446Apple Safari WebKit memory corruption [CVE-2017-7087]medium🔒--🔒
108445Apple Safari WebKit memory corruption [CVE-2017-7081]medium🔒--🔒
108444Apple iOS zlib numeric error [CVE-2016-9843]high🔒--🔒
108443Apple iOS zlib numeric error [CVE-2016-9842]high🔒--🔒
108442Apple iOS zlib numeric error [CVE-2016-9841]high🔒--🔒
108441Apple iOS zlib numeric error [CVE-2016-9840]high🔒--🔒
108440Apple iOS Wi-Fi information disclosure [CVE-2017-11122]medium🔒---
108439Apple iOS Wi-Fi memory corruption [CVE-2017-11121]medium🔒--🔒
108438Apple iOS Wi-Fi memory corruption [CVE-2017-11120]medium🔒--🔒
108437Apple iOS WebKit cross site scripting [CVE-2017-7109]low🔒--🔒
108436Apple iOS WebKit information disclosure [CVE-2017-7090]low🔒--🔒
108435Apple iOS WebKit memory corruption [CVE-2017-7120]medium🔒--🔒
108434Apple iOS WebKit memory corruption [CVE-2017-7117]medium🔒--🔒
108433Apple iOS WebKit memory corruption [CVE-2017-7111]medium🔒--🔒
108432Apple iOS WebKit memory corruption [CVE-2017-7107]medium🔒--🔒
108431Apple iOS WebKit memory corruption [CVE-2017-7104]medium🔒--🔒
108430Apple iOS WebKit memory corruption [CVE-2017-7102]medium🔒--🔒
108429Apple iOS WebKit memory corruption [CVE-2017-7100]medium🔒--🔒
108428Apple iOS WebKit memory corruption [CVE-2017-7099]medium🔒--🔒
108427Apple iOS WebKit memory corruption [CVE-2017-7098]medium🔒--🔒
108426Apple iOS WebKit memory corruption [CVE-2017-7096]medium🔒--🔒
108425Apple iOS WebKit memory corruption [CVE-2017-7095]medium🔒--🔒
108424Apple iOS WebKit memory corruption [CVE-2017-7094]medium🔒--🔒
108423Apple iOS WebKit memory corruption [CVE-2017-7093]medium🔒--🔒
108422Apple iOS WebKit memory corruption [CVE-2017-7092]medium🔒--🔒
108421Apple iOS WebKit memory corruption [CVE-2017-7091]medium🔒--🔒
108420Apple iOS WebKit memory corruption [CVE-2017-7087]medium🔒--🔒
108419Apple iOS WebKit memory corruption [CVE-2017-7081]medium🔒--🔒
108418Apple iOS SQLite memory corruption [CVE-2017-7127]medium🔒--🔒
108417Apple iOS SQLite memory corruption [CVE-2017-7130]medium🔒--🔒
108416Apple iOS SQLite memory corruption [CVE-2017-7129]medium🔒--🔒
108415Apple iOS SQLite memory corruption [CVE-2017-7128]medium🔒--🔒
108414Apple iOS SQLite out-of-bounds read [CVE-2017-10989]medium🔒--🔒
108413Apple iOS Security Track 7pk securitylow🔒---
108412Apple iOS Security certificate validation [CVE-2017-7080]medium🔒--🔒
108411Apple iOS Screen information disclosure [CVE-2017-7139]low🔒---
108410Apple iOS libexpat xml external entity reference [CVE-2017-9233]medium🔒--🔒
108409Apple iOS libexpat integer overflow [CVE-2016-9063]high🔒--🔒
108408Apple iOS libc resource consumption [CVE-2017-1000373]low🔒---
108407Apple iOS libc resource management [CVE-2017-7086]low🔒--🔒
108406Apple iOS Kernel memory corruption [CVE-2017-7114]medium🔒--🔒
108405Apple iOS Heimdal insufficient verification of data authenticitymedium🔒--🔒
108404Apple iOS CoreAudio memory corruption [CVE-2017-0381]medium🔒--🔒
108403Apple iOS CFNetwork Proxies input validation [CVE-2017-7083]low🔒--🔒
108402GNU C Library glob.c glob memory corruptionmedium🔒--🔒
108401XnView Classic DLL memory corruption [CVE-2017-15803]medium🔒---
108400XnView Classic DLL memory corruption [CVE-2017-15802]medium🔒---
108399XnView Classic DLL memory corruption [CVE-2017-15801]medium🔒---
108398IrfanView DLL memory corruption [CVE-2017-15800]medium🔒---
108397IrfanView DLL memory corruption [CVE-2017-15799]medium🔒---
108396IrfanView DLL memory corruption [CVE-2017-15798]medium🔒---
108395IrfanView DLL memory corruption [CVE-2017-15797]medium🔒---
108394IrfanView DLL memory corruption [CVE-2017-15796]medium🔒---
108393IrfanView DLL memory corruption [CVE-2017-15795]medium🔒---
108392IrfanView DLL memory corruption [CVE-2017-15794]medium🔒---
108391IrfanView DLL memory corruption [CVE-2017-15793]medium🔒---
108390IrfanView DLL memory corruption [CVE-2017-15792]medium🔒---
108389IrfanView DLL memory corruption [CVE-2017-15791]medium🔒---
108388IrfanView DLL memory corruption [CVE-2017-15790]medium🔒---
108387XnView Classic DWG File memory corruption [CVE-2017-15789]medium🔒---
108386XnView Classic DWG File memory corruption [CVE-2017-15788]medium🔒---
108385XnView Classic DWG File memory corruption [CVE-2017-15787]medium🔒---
108384XnView Classic DWG File memory corruption [CVE-2017-15786]medium🔒---
108383XnView Classic DWG File memory corruption [CVE-2017-15785]medium🔒---
108382XnView Classic DWG File memory corruption [CVE-2017-15784]medium🔒---
108381XnView Classic DWG File memory corruption [CVE-2017-15783]medium🔒---
108380XnView Classic DWG File memory corruption [CVE-2017-15782]medium🔒---
108379XnView Classic DWG File memory corruption [CVE-2017-15781]medium🔒---
108378XnView Classic DWG File memory corruption [CVE-2017-15780]medium🔒---
108377XnView Classic DWG File memory corruption [CVE-2017-15779]medium🔒---
108376XnView Classic DWG File memory corruption [CVE-2017-15778]medium🔒---
108375XnView Classic DWG File memory corruption [CVE-2017-15777]medium🔒---
108374XnView Classic DWG File memory corruption [CVE-2017-15776]medium🔒---
108373XnView Classic DWG File memory corruption [CVE-2017-15775]medium🔒---
108372XnView Classic DWG File memory corruption [CVE-2017-15774]medium🔒---
108371XnView Classic DWG File memory corruption [CVE-2017-15773]medium🔒---
108370XnView Classic DWG File memory corruption [CVE-2017-15772]medium🔒---
108369Foxit Reader xps File memory corruption [CVE-2017-15771]medium🔒---
108368Foxit Reader xps File memory corruption [CVE-2017-15770]medium🔒---
108367IrfanView DDS File memory corruption [CVE-2017-15769]medium🔒---
108366IrfanView tif File memory corruption [CVE-2017-15768]medium🔒---
108365IrfanView CADImage plugin memory corruption [CVE-2017-15767]medium🔒---
108364IrfanView BabaCAD4Image Plugin memory corruption [CVE-2017-15766]medium🔒---
108363IrfanView CADImage Plugin memory corruption [CVE-2017-15765]medium🔒---
108362IrfanView BabaCAD4Image Plugin memory corruption [CVE-2017-15764]medium🔒---
108361IrfanView BabaCAD4Image Plugin memory corruption [CVE-2017-15763]medium🔒---
108360IrfanView BabaCAD4Image Plugin memory corruption [CVE-2017-15762]medium🔒---
108359IrfanView BabaCAD4Image Plugin memory corruption [CVE-2017-15761]medium🔒---
108358IrfanView BabaCAD4Image Plugin memory corruption [CVE-2017-15760]medium🔒---
108357IrfanView BabaCAD4Image Plugin memory corruption [CVE-2017-15759]medium🔒---
108356IrfanView BabaCAD4Image Plugin memory corruption [CVE-2017-15758]medium🔒---
108355IrfanView BabaCAD4Image Plugin memory corruption [CVE-2017-15757]medium🔒---
108354IrfanView BabaCAD4Image Plugin memory corruption [CVE-2017-15756]medium🔒---
108353IrfanView BabaCAD4Image Plugin memory corruption [CVE-2017-15755]medium🔒---
108352IrfanView BabaCAD4Image Plugin memory corruption [CVE-2017-15754]medium🔒---
108351IrfanView BabaCAD4Image Plugin memory corruption [CVE-2017-15753]medium🔒---
108350IrfanView BabaCAD4Image Plugin memory corruption [CVE-2017-15752]medium🔒---
108349IrfanView BabaCAD4Image Plugin memory corruption [CVE-2017-15751]medium🔒---
108348IrfanView BabaCAD4Image Plugin memory corruption [CVE-2017-15750]medium🔒---
108347IrfanView CADImage Plugin memory corruption [CVE-2017-15749]medium🔒---
108346IrfanView CADImage Plugin memory corruption [CVE-2017-15748]medium🔒---
108345IrfanView CADImage Plugin memory corruption [CVE-2017-15747]medium🔒---
108344IrfanView CADImage Plugin memory corruption [CVE-2017-15746]medium🔒---
108343IrfanView CADImage Plugin memory corruption [CVE-2017-15745]medium🔒---
108342IrfanView CADImage Plugin memory corruption [CVE-2017-15744]medium🔒---
108341IrfanView CADImage Plugin memory corruption [CVE-2017-15743]medium🔒---
108340IrfanView CADImage Plugin memory corruption [CVE-2017-15742]medium🔒---
108339IrfanView CADImage Plugin memory corruption [CVE-2017-15741]medium🔒---
108338IrfanView CADImage Plugin memory corruption [CVE-2017-15740]medium🔒---
108337IrfanView CADImage Plugin memory corruption [CVE-2017-15739]medium🔒---
108336IrfanView CADImage Plugin memory corruption [CVE-2017-15738]medium🔒---
108335IrfanView CADImage Plugin memory corruption [CVE-2017-15737]medium🔒---
108334SPIP auteur.html Stored cross site scriptinglow🔒--🔒
108333phpMyFAQ Glossary cross-site request forgery [CVE-2017-15735]low🔒---
108332phpMyFAQ stat.main.php cross-site request forgerylow🔒---
108331phpMyFAQ ajax.attachment.php cross-site request forgerylow🔒---
108330phpMyFAQ news.php cross-site request forgerylow🔒---
108329phpMyFAQ stat.adminlog.php cross-site request forgerylow🔒---
108328phpMyFAQ Rating stat.ratings.php cross-site request forgerylow🔒---
108327phpMyFAQ Glossary cross-site request forgery [CVE-2017-15729]low🔒---
108326phpMyFAQ metaKeywords Stored cross site scriptinglow🔒---
108325phpMyFAQ Stored cross site scripting [CVE-2017-15727]low🔒---
108324irssi Nick null pointer dereference [CVE-2017-15723]low🔒--🔒
108323irssi Safe Channel ID out-of-bounds read [CVE-2017-15722]medium🔒--🔒
108322irssi DCC CTCP Message null pointer dereference [CVE-2017-15721]low🔒--🔒
108321irssi Theme Install out-of-bounds read [CVE-2017-15228]medium🔒--🔒
108320irssi Channel Sync use after free [CVE-2017-15227]medium🔒--🔒
108319VIP.com App information disclosure [CVE-2017-13127]low🔒---
108318Cisco AMP Key hard-coded credentials [CVE-2017-12317]low🔒---
108317Cumulus Linux Switch Configuration Tool Backend access controllow🔒---
108316apt-listbug Temp File input validation [CVE-2013-6049]medium🔒---
108315libpcap pcap-linux.c data processingmedium🔒---
108314TYPO3 CMS Extension Manager cross site scripting [CVE-2010-3659]low🔒---
108313TP-LINK WR940N memory corruption [CVE-2017-13772]medium🔒---
108312Apache HTTP Server IP Address Filter input validation [CVE-2017-12171]medium🔒--🔒
108311F5 BIG-IP Log ltm log filelow🔒--🔒
108310F5 BIG-IP iControl REST session expiration [CVE-2017-6145]medium🔒--🔒
108309F5 BIG-IP PEM Type Allocation Code Database certificate validationmedium🔒---
108308F5 BIG-IP TLS Handshake input validation [CVE-2017-6141]low🔒--🔒
108307Panasonic KX-HJB1000 sql injection [CVE-2017-2133]medium🔒---
108306Panasonic KX-HJB1000 File input validation [CVE-2017-2132]medium🔒---
108305Panasonic KX-HJB1000 Access Restriction information disclosuremedium🔒---
108304GNU C Library glob.c glob memory corruptionlow🔒--🔒
108303GNU C Library glob.c glob memory corruptionmedium🔒--🔒
108302PRTG Network Monitor EXE File input validation [CVE-2017-15651]medium🔒---
108301TP-LINK TL-MR3220 Wireless MAC Filter cross site scripting [CVE-2017-15291]low🔒---
108300Car Pyrotechnical Control risky encryption [CVE-2017-14937]medium🔒---
108299Apache James JMX Server deserialization [CVE-2017-12628]medium🔒---
108298Adobe Flash Player array index [CVE-2017-11292]medium🔒--🔒
108297Apache NiFi Proxy Chain injection [CVE-2017-5636]medium🔒---
108296Apache NiFi Cluster access control [CVE-2017-5635]medium🔒---
108295Cisco Firepower Extensible Operating System/NX-OS AAA resource managementlow🔒--🔒
108294musl Libc DNS Reply lookup_name.c memory corruptionmedium🔒---
108293Linux Kernel af_packet.c race conditionlow🔒--🔒
108292Phpsugar PHP Melody page_manager.php cross site scriptinglow🔒---
108291FiberHome Router webproc path traversalmedium🔒---
108290Webmin File Manager cross site scripting [CVE-2017-15646]low🔒--🔒
108289Webmin create_job.cgi cross-site request forgerylow🔒--🔒
108288Webmin link.cgi server-side request forgerymedium🔒--🔒
108287Ikarus Anti Virus guardxup.exe request smugglingmedium🔒---
108286Sound eXchange AIFF File aiff.c lsx_aiffstartread use after freemedium🔒--🔒
108285Mura CMS Draggable Feeds readRSS.cfm xml external entity referencemedium🔒---
108284Mistune mistune.py cross site scriptinglow🔒--🔒
108283Octopus Privileges access control [CVE-2017-15611]low🔒---
108282Octopus Guest Account information disclosure [CVE-2017-15610]low🔒---
108281Octopus JSON File information disclosure [CVE-2017-15609]low🔒---
108280Progea Movicon Unquoted Search Path unquoted search path [CVE-2017-14019]low🔒---
108279Progea Movicon uncontrolled search path [CVE-2017-14017]low🔒---
108278Hashicorp vagrant-vmware-fusion suid Wrapper access control [CVE-2017-12579]medium🔒---
108277Cisco NX-OS Python Script input validation [CVE-2017-12301]low🔒--🔒
108276Cisco WebEx Meeting Center Web Interface cross site scriptinglow🔒---
108275Cisco WebEx Meetings Server Web Interface cross site scriptinglow🔒---
108274Cisco WebEx Meetings Server resource consumption [CVE-2017-12293]low🔒---
108273Cisco IOS XE Debug Logging information disclosure [CVE-2017-12289]low🔒---
108272Cisco Unified Contact Center Express Web-based Management Interface cross site scriptinglow🔒---
108271Cisco Expressway Series Software CDB Management resource managementlow🔒---
108270Cisco Jabber Web Interface input validation [CVE-2017-12286]low🔒---
108269Cisco Network Analysis Module Web Interface path traversal [CVE-2017-12285]low🔒---
108268Cisco Jabber Web Interface information disclosure [CVE-2017-12284]low🔒---
108267Cisco IOS XE Web Interface cross site scripting [CVE-2017-12272]low🔒---
108266Cisco SPA300/SPA500 cross-site request forgery [CVE-2017-12271]low🔒---
108265Cisco Small Business SPA50x Session Initiation Protocol memory corruptionmedium🔒---
108264Cisco Small Business SPA51x Series IP Session Initiation Protocol memory corruptionlow🔒---
108263Cisco Cloud Services Platform 2100 Web Console access controlmedium🔒---
108262EMC Data Protection Advisor DPA Application Service input validationmedium🔒---
108261ZTE ZXDT22 SF01 path traversal [CVE-2017-10933]low🔒---
108260Job Manager Plugin CV File Manager information disclosure [CVE-2015-6668]low🔒---
108259Huawei Mate 7 TEEOS memory corruption [CVE-2015-4422]low🔒---
108258Huawei Mate 7 tzdriver memory corruption [CVE-2015-4421]low🔒---
108257WordPress Password Hash pluggable.php MD5 inadequate encryptionlow🔒--🔒
108256MediaWiki X-Frame-Options access control [CVE-2012-4379]low🔒--🔒
108255Oracle VM VirtualBox access control [CVE-2017-10428]low🔒--🔒
108254Oracle VM VirtualBox OpenSSL input validation [CVE-2017-3733]low🔒--🔒
108253Oracle VM VirtualBox access control [CVE-2017-10408]medium🔒--🔒
108252Oracle VM VirtualBox access control [CVE-2017-10407]medium🔒--🔒
108251Oracle VM VirtualBox access control [CVE-2017-10392]medium🔒--🔒
108250Oracle Secure Global Desktop Apache HTTP Server improper authenticationmedium🔒--🔒
108249Oracle Agile PLM Performance access control [CVE-2017-10308]low🔒---
108248Oracle Agile PLM Security information disclosure [CVE-2017-10299]low🔒---
108247Oracle Engineering Data Management Web Services Security access controllow🔒---
108246Oracle Agile Engineering Data Management OpenSSL information disclosurelow🔒--🔒
108245Oracle Transportation Management Apache Tomcat 7pk security [CVE-2017-5664]medium🔒--🔒
108244Oracle Transportation Management Apache Commons FileUpload input validationmedium🔒--🔒
108243Oracle Agile Engineering Data Management Apache Commons Collections deserializationmedium🔒--🔒
108242Oracle Integrated Lights Out Manager System Management information disclosurelow🔒--🔒
108241Oracle M7/T7/S7 Firmware access control [CVE-2017-10099]low🔒--🔒
108240Oracle Sun ZFS Storage Appliance Kit Filesystem denial of servicelow🔒--🔒
108239Oracle M3000/M4000/M5000/M8000/M9000 XCP Firmware input validationlow🔒--🔒
108238Oracle M10-1/M10-4/M10-4S/M12-1/M12-2/M12-2S XCP Firmware input validationlow🔒--🔒
108237Oracle Solaris Cluster HA for MySQL access control [CVE-2017-3588]medium🔒--🔒
108236Oracle Integrated Lights Out Manager (ILOM) System Management access controlmedium🔒--🔒
108235Oracle SPARC Enterprise M3000 XCP Firmware resource managementmedium🔒--🔒
108234Oracle Integrated Lights Out Manager (ILOM) System Management denial of servicemedium🔒--🔒
108233Oracle M10-1/M10-4/M10-4S/M12-1/M12-2/M12-2S XCP Firmware resource managementmedium🔒--🔒
108232Oracle Siebel UI Framework UIF Open UI denial of service [CVE-2017-10264]low🔒---
108231Oracle Siebel CRM Desktop Siebel Business Service Issues information disclosurelow🔒---
108230Oracle Siebel Core - Server Framework Services access controllow🔒---
108229Oracle Siebel UI Framework UIF Open UI access control [CVE-2017-10315]medium🔒---
108228Oracle Siebel UI Framework UIF Open UI access control [CVE-2017-10302]medium🔒---
108227Oracle Siebel UI Framework EAI access control [CVE-2017-10333]medium🔒---
108226Oracle Siebel UI Framework UIF Open UI access control [CVE-2017-10263]medium🔒---
108225Oracle Siebel Apps Python access control [CVE-2013-1903]high🔒--🔒
108224Oracle Retail Back Office Security access control [CVE-2017-10423]low🔒---
108223Oracle Retail Xstore Point of Service Point of Sale access controlmedium🔒---
108222Oracle MICROS Retail XBRi Loss Prevention Apache Batik xml external entity referencemedium🔒--🔒
IDTitleVulDBCVSSSecuniaXForceNessus
108221Oracle Retail Markdown Optimization Installation memory corruptionmedium🔒--🔒
108220Oracle Retail Clearance Optimization Engine Installation memory corruptionmedium🔒--🔒
108219Oracle MICROS Retail XBRi Loss Prevention Apache Tomcat 7pk securitymedium🔒--🔒
108218Oracle Retail Point-of-Service Security access control [CVE-2017-10065]medium🔒---
108217Oracle Retail Store Inventory Management Apache Groovy deserializationhigh🔒--🔒
108216Oracle Retail Convenience/Fuel POS Software Apache Groovy deserializationhigh🔒--🔒
108215Oracle PeopleSoft Enterprise FSCM Staffing Front Office access controllow🔒---
108214Oracle PeopleSoft Enterprise FSCM Strategic Sourcing information disclosurelow🔒---
108213Oracle PeopleSoft Enterprise FSCM Staffing Front Office information disclosurelow🔒---
108212Oracle PeopleSoft Enterprise HCM Security access control [CVE-2017-10306]low🔒---
108211Oracle PeopleSoft Enterprise PeopleTools PIA Core Technology access controllow🔒---
108210Oracle PeopleSoft Enterprise PeopleTools Security access controllow🔒---
108209Oracle PeopleSoft Enterprise HCM Security access control [CVE-2017-10304]low🔒---
108208Oracle PeopleSoft Enterprise PeopleTools Updates Change Assistant information disclosurelow🔒---
108207Oracle PeopleSoft Enterprise SCM eProcurement Manage Requisition Status access controlmedium🔒---
108206Oracle PeopleSoft Enterprise PeopleTools Query access controlmedium🔒---
108205Oracle PeopleSoft Enterprise PeopleTools PIA Core Technology access controlmedium🔒---
108204Oracle PeopleSoft Enterprise PeopleTools PIA Core Technology access controlmedium🔒---
108203Oracle PeopleSoft Enterprise PeopleTools Core access controlmedium🔒---
108202Oracle PeopleSoft Enterprise PT PeopleTools Application Server information disclosuremedium🔒---
108201Oracle PeopleSoft Enterprise PT PeopleTools PeopleSoft CDA access controlmedium🔒---
108200Oracle PeopleSoft Enterprise PeopleTools Test Framework information disclosuremedium🔒---
108199Oracle PeopleSoft Enterprise PeopleTools Sawbridge access controlmedium🔒---
108198Oracle PeopleSoft Enterprise PT PeopleTools Health Center information disclosuremedium🔒---
108197Oracle PeopleSoft Enterprise PT PeopleTools Elastic Search information disclosuremedium🔒---
108196Oracle PeopleSoft Enterprise PeopleTools Updates Environment Mgmt access controlmedium🔒---
108195Oracle PeopleSoft Enterprise PRTL Interaction Hub Enterprise Portal access controlmedium🔒---
108194Oracle PeopleSoft Enterprise PRTL Interaction Hub Enterprise Portal access controlmedium🔒---
108193Oracle PeopleSoft Enterprise PT PeopleTools Performance Monitor access controlhigh🔒---
108192Oracle MySQL Server InnoDB access control [CVE-2017-10365]low🔒--🔒
108191Oracle MySQL Server Replication information disclosure [CVE-2017-10268]low🔒--🔒
108190Oracle MySQL Server InnoDB denial of service [CVE-2017-10286]low🔒--🔒
108189Oracle MySQL Server Stored Procedure denial of service [CVE-2017-10284]low🔒--🔒
108188Oracle MySQL Server Replication access control [CVE-2017-10165]low🔒--🔒
108187Oracle MySQL Server Optimizer denial of service [CVE-2017-10294]low🔒--🔒
108186Oracle MySQL Server Optimizer denial of service [CVE-2017-10279]low🔒--🔒
108185Oracle MySQL Server Optimizer denial of service [CVE-2017-10227]low🔒--🔒
108184Oracle MySQL Server Memcached denial of service [CVE-2017-10314]low🔒--🔒
108183Oracle MySQL Server InnoDB denial of service [CVE-2017-10320]low🔒--🔒
108182Oracle MySQL Server FTS denial of service [CVE-2017-10311]low🔒--🔒
108181Oracle MySQL Server DML denial of service [CVE-2017-10296]low🔒--🔒
108180Oracle MySQL Server Group Replication GCS denial of service [CVE-2017-10313]low🔒--🔒
108179Oracle MySQL Server Performance Schema denial of service [CVE-2017-10283]low🔒--🔒
108178Oracle MySQL Connectors Connector/Net access control [CVE-2017-10203]low🔒--🔒
108177Oracle MySQL Connectors Connector/Net access control [CVE-2017-10277]low🔒--🔒
108176Oracle MySQL Server Optimizer denial of service [CVE-2017-10378]medium🔒--🔒
108175Oracle MySQL Server Optimizer access control [CVE-2017-10167]medium🔒--🔒
108174Oracle MySQL Server FTS denial of service [CVE-2017-10276]medium🔒--🔒
108173Oracle MySQL Server DDL denial of service [CVE-2017-10384]medium🔒--🔒
108172Oracle MySQL Server Client programs information disclosure [CVE-2017-10379]medium🔒--🔒
108171Oracle MySQL Server OpenSSL out-of-bounds read [CVE-2017-3731]medium🔒--🔒
108170Oracle MySQL Server Pluggable Auth denial of service [CVE-2017-10155]medium🔒--🔒
108169Oracle MySQL Enterprise Monitor Apache Tomcat 7pk security [CVE-2017-5664]medium🔒--🔒
108168Oracle MySQL Enterprise Monitor Web access control [CVE-2017-10424]medium🔒--🔒
108167Oracle JD Edwards World Security OpenSSL information disclosurelow🔒--🔒
108166Oracle JD Edwards EnterpriseOne Tools OpenSSL information disclosurelow🔒--🔒
108165Oracle Java SE Serialization denial of service [CVE-2017-10345]low🔒--🔒
108164Oracle Java Advanced Management Console Server access controllow🔒---
108163Oracle Java SE Networking access control [CVE-2017-10295]low🔒--🔒
108162Oracle Java Advanced Management Console Server access controllow🔒---
108161Oracle Java Advanced Management Console Sever access controllow🔒---
108160Oracle Java SE Serialization denial of service [CVE-2017-10347]low🔒--🔒
108159Oracle Java SE Serialization denial of service [CVE-2017-10281]low🔒--🔒
108158Oracle Java SE Networking denial of service [CVE-2017-10355]low🔒--🔒
108157Oracle Java SE Little CMS 2 out-of-bounds read [CVE-2016-10165]low🔒--🔒
108156Oracle Java SE zlib numeric error [CVE-2016-9841]low🔒--🔒
108155Oracle Java SE Serialization denial of service [CVE-2017-10357]low🔒--🔒
108154Oracle Java SE Libraries denial of service [CVE-2017-10348]low🔒--🔒
108153Oracle Java SE JAXP denial of service [CVE-2017-10349]low🔒--🔒
108152Oracle Java SE JAX-WS denial of service [CVE-2017-10350]low🔒--🔒
108151Oracle Java Advanced Management Console Server denial of servicelow🔒---
108150Oracle Java SE Javadoc access control [CVE-2017-10293]medium🔒--🔒
108149Oracle Java SE Security information disclosure [CVE-2017-10356]medium🔒--🔒
108148Oracle Java SE Smart Card IO access control [CVE-2017-10274]medium🔒--🔒
108147Oracle Java SE Deployment access control [CVE-2017-10309]medium🔒--🔒
108146Oracle Java SE Libraries access control [CVE-2017-10388]medium🔒--🔒
108145Oracle Java SE RMI access control [CVE-2017-10285]high🔒--🔒
108144Oracle Java SE Hotspot access control [CVE-2017-10346]high🔒--🔒
108143Oracle Hyperion BI+ UI/Visualization access control [CVE-2017-10359]low🔒---
108142Oracle Hyperion Financial Reporting Workspace access controlmedium🔒---
108141Oracle Hyperion BI+ UI/Visualization access control [CVE-2017-10312]medium🔒---
108140Oracle Hyperion Financial Reporting Security Models information disclosuremedium🔒---
108139Oracle Hospitality Cruise Fleet Management GangwayActivityWebApp access controllow🔒---
108138Oracle Hospitality Hotel Mobile Suite8/RESTAPI access controllow🔒---
108137Oracle Hospitality Suite8 WebConnect information disclosure [CVE-2017-10317]low🔒---
108136Oracle Hospitality OPERA 5 Property Services Folios information disclosurelow🔒--🔒
108135Oracle Hospitality Guest Access Base access control [CVE-2017-10375]low🔒---
108134Oracle Hospitality Suite8 WebConnect information disclosure [CVE-2017-10318]low🔒---
108133Oracle Hospitality Suite8 PMS access control [CVE-2017-10419]low🔒---
108132Oracle Hospitality Cruise Materials Management MMS access controllow🔒---
108131Oracle Hospitality Suite8 Leisure information disclosure [CVE-2017-10319]low🔒---
108130Oracle Hospitality Guest Access Interface information disclosurelow🔒---
108129Oracle Hospitality Suite8 Leisure information disclosure [CVE-2017-10337]low🔒---
108128Oracle Hospitality Simphony Service Host access control [CVE-2017-10425]low🔒---
108127Oracle Hospitality Simphony Import/Export access control [CVE-2017-10340]low🔒---
108126Oracle Hospitality Simphony Engagement access control [CVE-2017-10367]low🔒---
108125Oracle Hospitality Cruise Fleet Management GangwayActivityWebApp access controllow🔒---
108124Oracle Hospitality Suite8 PMS access control [CVE-2017-10389]low🔒---
108123Oracle Hospitality Suite8 WebConnect information disclosure [CVE-2017-10339]low🔒---
108122Oracle Hospitality Cruise Fleet Management BaseMasterPage access controlmedium🔒---
108121Oracle Hospitality Suite8 Leisure access control [CVE-2017-10420]medium🔒---
108120Oracle Hospitality Cruise Shipboard Property Management System OHC DRS access controlmedium🔒---
108119Oracle Hospitality Suite8 WebConnect information disclosure [CVE-2017-10316]medium🔒---
108118Oracle Hospitality Suite8 Leisure information disclosure [CVE-2017-10421]medium🔒---
108117Oracle Hospitality Simphony Import/Export access control [CVE-2017-10344]medium🔒---
108116Oracle Hospitality Simphony Import/Export information disclosuremedium🔒---
108115Oracle Hospitality Guest Access Base access control [CVE-2017-10370]medium🔒---
108114Oracle Hospitality Hotel Mobile Suite8/RESTAPI access controlmedium🔒---
108113Oracle Hospitality Guest Access Apache Batik xml external entity referencemedium🔒--🔒
108112Oracle Hospitality Reporting/Analytics iQuery access controlmedium🔒---
108111Oracle Hospitality Suite8 WebConnect access control [CVE-2017-10050]medium🔒---
108110Oracle Hospitality Cruise Fleet Management BaseMasterPage access controlmedium🔒---
108109Oracle Hospitality Guest Access Base access control [CVE-2017-10372]medium🔒---
108108Oracle Hospitality Cruise Materials Management MMSUpdater access controlmedium🔒---
108107Oracle Hospitality Guest Access Apache Tomcat 7pk security [CVE-2017-5664]high🔒--🔒
108106Oracle Hospitality Reporting/Analytics iQuery access controlhigh🔒---
108105Oracle Hospitality Cruise AffairWhere access control [CVE-2017-10396]high🔒---
108104Oracle Hospitality Reporting/Analytics Report access controlhigh🔒---
108103Oracle Hospitality Reporting/Analytics Report access controlhigh🔒---
108102Oracle Healthcare Master Person Index Apache Groovy deserializationhigh🔒--🔒
108101Oracle Security Service C Oracle SSL API access control [CVE-2017-10166]low🔒---
108100Oracle HTTP Server OSSL Module information disclosure [CVE-2016-2183]low🔒--🔒
108099Oracle WebCenter Sites Support Tools access control [CVE-2017-10033]low🔒--🔒
108098Oracle WebLogic Server Web Container information disclosure [CVE-2017-10334]low🔒--🔒
108097Oracle WebLogic Server Web Container access control [CVE-2017-10336]low🔒--🔒
108096Oracle HTTP Server Web Listener information disclosure [CVE-2003-1418]low🔒--🔒
108095Oracle Access Manager Web Server Plugin information disclosurelow🔒---
108094Oracle GlassFish Server Administration Graphical User Interface access controllow🔒--🔒
108093Oracle Outside In Technology Outside In Filters access controllow🔒---
108092Oracle WebLogic Server WLS-WebServices access control [CVE-2017-10352]low🔒--🔒
108091Oracle HTTP Server Web Listener cryptographic issues [CVE-2015-2808]low🔒--🔒
108090Oracle iPlanet Web Server Admin Graphical User Interface access controlmedium🔒---
108089Oracle GlassFish Server Web Container access control [CVE-2017-10393]medium🔒--🔒
108088Oracle GlassFish Server Web Container access control [CVE-2017-10385]medium🔒--🔒
108087Oracle Business Intelligence Enterprise Edition Analytics Web General access controlmedium🔒---
108086Oracle WebLogic Server Web Container information disclosure [CVE-2017-10152]medium🔒--🔒
108085Oracle Identity Manager Apache Struts 1 memory corruption [CVE-2016-1181]medium🔒--🔒
108084Oracle GlassFish Server Administration access control [CVE-2017-10391]medium🔒--🔒
108083Oracle API Gateway Apache Batik xml external entity referencemedium🔒--🔒
108082Oracle Virtual Directory Virtual Directory Server access controlmedium🔒---
108081Oracle Managed File Transfer Bouncy Castle Java Package cryptographic issuesmedium🔒--🔒
108080Oracle GlassFish Server Apache Commons FileUpload input validationmedium🔒--🔒
108079Oracle Business Process Management Suite Bouncy Castle Java Package cryptographic issuesmedium🔒--🔒
108078Oracle Business Process Management Suite Bouncy Castle Java Package cryptographic issuesmedium🔒--🔒
108077Oracle BI Publisher Web Service API information disclosure [CVE-2017-10037]medium🔒--🔒
108076Oracle Access Manager Web Server Plugin information disclosuremedium🔒---
108075Oracle WebCenter Content Content Server access control [CVE-2017-10360]medium🔒--🔒
108074Oracle SOA Suite Fabric Layer access control [CVE-2017-10026]medium🔒---
108073Oracle Identity Manager Connector Microsoft Active Directory access controlmedium🔒---
108072Oracle Business Intelligence Enterprise Edition Analytics Web General access controlmedium🔒--🔒
108071Oracle BI Publisher Core Formatting API access control [CVE-2017-10034]medium🔒--🔒
108070Oracle Endeca Information Discovery Integrator Spring Framework cross-site request forgerymedium🔒--🔒
108069Oracle Endeca Information Discovery Integrator Apache Commons Collections deserializationmedium🔒--🔒
108068Oracle Directory Server Enterprise Edition NSS memory corruptionmedium🔒--🔒
108067Oracle Business Process Management Suite Apache Commons Collections deserializationmedium🔒--🔒
108066Oracle Management Pack for GoldenGate Apache Tomcat access controlmedium🔒--🔒
108065Oracle Management Pack for GoldenGate Apache Commons Collections deserializationmedium🔒--🔒
108064Oracle JDeveloper Java Business Objects deserialization [CVE-2016-6814]high🔒--🔒
108063Oracle WebLogic Server WLS Security access control [CVE-2017-10271]high🔒--🔒
108062Oracle BI Publisher Apache ActiveMQ input validation [CVE-2015-5254]high🔒--🔒
108061Oracle FLEXCUBE Universal Banking Security access control [CVE-2017-10363]medium🔒---
108060Oracle Enterprise Manager Ops Center Apache Groovy deserializationhigh🔒--🔒
108059Oracle CRM Technical Foundation Preferences access control [CVE-2017-10387]low🔒--🔒
108058Oracle Common Applications Calendar access control [CVE-2017-10322]low🔒--🔒
108057Oracle Applications Technology Stack Oracle Forms access controllow🔒--🔒
108056Oracle Applications Technology Stack Oracle Forms information disclosurelow🔒--🔒
108055Oracle Application Object Library Diagnostics information disclosurelow🔒--🔒
108054Oracle Applications DBA AD Utilities access control [CVE-2017-10077]medium🔒--🔒
108053Oracle Universal Work Queue Administration information disclosuremedium🔒--🔒
108052Oracle Application Object Library Diagnostics information disclosuremedium🔒--🔒
108051Oracle Web Applications Desktop Integrator Application Service access controlmedium🔒--🔒
108050Oracle Trade Management User Interface access control [CVE-2017-3446]medium🔒--🔒
108049Oracle Trade Management User Interface access control [CVE-2017-3445]medium🔒--🔒
108048Oracle Trade Management User Interface access control [CVE-2017-3444]medium🔒--🔒
108047Oracle Mobile Field Service Multiplatform Based on HTML5 access controlmedium🔒--🔒
108046Oracle Knowledge Management User Interface access control [CVE-2017-10412]medium🔒--🔒
108045Oracle Knowledge Management User Interface access control [CVE-2017-10411]medium🔒--🔒
108044Oracle Knowledge Management Search access control [CVE-2017-10410]medium🔒--🔒
108043Oracle iSupport Others access control [CVE-2017-10415]medium🔒--🔒
108042Oracle iStore Merchant UI access control [CVE-2017-10409]medium🔒--🔒
108041Oracle iStore Checkout/Order Placement access control [CVE-2017-10414]medium🔒--🔒
108040Oracle Interaction Center Intelligence Setup access control [CVE-2017-10303]medium🔒--🔒
108039Oracle Common Applications Calendar access control [CVE-2017-10326]medium🔒--🔒
108038Oracle Common Applications Calendar access control [CVE-2017-10325]medium🔒--🔒
108037Oracle Advanced Outbound Telephony Setup/Configuration access controlmedium🔒--🔒
108036Oracle Advanced Outbound Telephony Setup/Configuration access controlmedium🔒--🔒
108035Oracle Global Order Promising Reschedule Sales Orders access controlhigh🔒--🔒
108034Oracle Common Applications Gantt Server access control [CVE-2017-10330]high🔒--🔒
108033Oracle Primavera Unifier Apache Groovy deserialization [CVE-2016-6814]high🔒--🔒
108032Oracle Communications WebRTC Session Controller libcurl information disclosurelow🔒--🔒
108031Oracle Communications WebRTC Session Controller Postgresql race conditionlow🔒🔒-🔒
108030Oracle Communications WebRTC Session Controller Wireshark resource managementlow🔒🔒-🔒
108029Oracle Communications WebRTC Session Controller file resource managementlow🔒🔒-🔒
108028Oracle Communications EAGLE LNP Application Processor OpenSSL information disclosurelow🔒--🔒
108027Oracle Communications Policy Management Portal/CMP access controlmedium🔒---
108026Oracle Communications WebRTC Session Controller Gson access controlmedium🔒---
108025Oracle Communications Billing/Revenue Management Perl input validationmedium🔒--🔒
108024Oracle Communications Order/Service Management Apache Commons Collections deserializationmedium🔒--🔒
108023Oracle Communications WebRTC Session Controller Kerberos numeric errormedium🔒🔒-🔒
108022Oracle Communications WebRTC Session Controller Xalan access controlmedium🔒🔒-🔒
108021Oracle Communications WebRTC Session Controller BeanUtils input validationmedium🔒🔒-🔒
108020Oracle Communications Unified Session Manager OpenSSL resource managementmedium🔒--🔒
108019Oracle Communications Diameter Signaling Router OpenSSL null pointer dereferencemedium🔒--🔒
108018Oracle Tekelec HLR Router OpenSSL cryptographic issues [CVE-2014-0224]medium🔒🔒-🔒
108017Oracle Communications WebRTC Session Controller OpenSSL cryptographic issuesmedium🔒--🔒
108016Oracle Communications WebRTC Session Controller Spring cross-site request forgerymedium🔒--🔒
108015Oracle Communications WebRTC Session Controller Apache Commons Collections deserializationmedium🔒--🔒
108014Oracle Communications WebRTC Session Controller glibc Ghost memory corruptionhigh🔒---
108013Oracle Communications WebRTC Session Controller Apache Groovy injectionhigh🔒--🔒
108012Oracle Communications User Data Repository glibc Ghost memory corruptionhigh🔒---
108011Oracle Communications Services Gatekeeper Apache Trinidad deserializationhigh🔒--🔒
108010Oracle Communications Messaging Server NSS out-of-bounds writehigh🔒--🔒
108009Oracle Database Server RDBMS Security access control [CVE-2017-10292]low🔒--🔒
108008Oracle Database Server XML Database information disclosure [CVE-2017-10261]medium🔒--🔒
108007Oracle Database Server WLM access control [CVE-2016-8735]medium🔒---
108006Oracle Database Server Java VM access control [CVE-2017-10190]medium🔒--🔒
108005Oracle Database Server Spatial deserialization [CVE-2016-6814]medium🔒--🔒
108004Oracle Database Server Core RDBMS access control [CVE-2017-10321]medium🔒--🔒
108003GNU Libextractor nsfe_extractor.c EXTRACTOR_nsfe_extract_method memory corruptionlow🔒--🔒
108002GNU Libextractor png_extractor.c EXTRACTOR_png_extract_method memory corruptionmedium🔒--🔒
108001GNU Libextractor nsf_extractor.c EXTRACTOR_nsf_extract_method null pointer dereferencelow🔒--🔒
1080003CX Phone System Management Console path traversal [CVE-2017-15359]low🔒---
107999Alienvault USM Report wizard_email.php cross-site request forgerylow🔒---
107998Interspire Email Marketer Cookie init.php improper authenticationmedium🔒---
107997Puppet Enterprise Whitelist Protection access control [CVE-2016-5714]medium🔒--🔒
107996Drupal Overlay Module redirect [CVE-2015-7943]medium🔒--🔒
107995Realtyna RPL com_rpl index.php cross-site request forgerylow🔒---
107994Realtyna RPL com_rpl index.php sql injectionmedium🔒---
107993Web2py Logout tools.py redirectlow🔒---
107992Google Go net/http transfer.go HTTP request smugglingmedium🔒--🔒
107991Google Go net/http reader.go HTTP request smugglingmedium🔒--🔒
107990GSI WiNPAT Portal Login Form sql injection [CVE-2015-5376]medium🔒---
107989Landing Pages Plugin injection [CVE-2015-5227]medium🔒---
107988EMC Isilon OneFS Reflected cross site scripting [CVE-2017-8024]low🔒---
107987EMC NetWorker Server Service memory corruption [CVE-2017-8022]medium🔒--🔒
107986Xen resource consumption [CVE-2017-15596]low🔒--🔒
107985Xen Hypervisor resource consumption [CVE-2017-15595]low🔒--🔒
107984Xen Hypervisor data processing [CVE-2017-15594]low🔒--🔒
107983Xen memory corruption [CVE-2017-15593]low🔒--🔒
107982Xen Hypervisor access control [CVE-2017-15592]low🔒--🔒
107981Xen Memory Comparison input validation [CVE-2017-15591]low🔒--🔒
107980Xen Hypervisor access control [CVE-2017-15590]low🔒--🔒
107979Xen information disclosure [CVE-2017-15589]low🔒--🔒
107978Xen TLB Entry race condition [CVE-2017-15588]medium🔒--🔒
107977Artifex MuPDF pdf-xref.c pdf_read_new_xref_section integer overflowmedium🔒--🔒
107976ABB Fox515T Embedded Web Server information disclosure [CVE-2017-15583]low🔒---
107975Phpsugar PHP Melody Cookie watch.php sql injectionmedium🔒---
107974Phpsugar PHP Melody edit_category.php sql injectionmedium🔒---
107973Redmine Wiki Links information disclosure [CVE-2017-15577]low🔒--🔒
107972Redmine Time Entry information disclosure [CVE-2017-15576]low🔒--🔒
107971Redmine Redmine.pm 7pk securitylow🔒--🔒
107970Redmine Stored cross site scripting [CVE-2017-15574]low🔒--🔒
107969Redmine Markup cross site scripting [CVE-2017-15573]low🔒--🔒
107968Redmine Account Referer Log lost_password Password log filelow🔒--🔒
107967Redmine _list.html.erb cross site scriptinglow🔒--🔒
107966Redmine _list.html.erb cross site scriptinglow🔒--🔒
107965Redmine queries_helper.rb cross site scriptinglow🔒--🔒
107964Redmine application_helper.rb cross site scriptinglow🔒--🔒
107963Akeo Rufus Update Download Validator 7pk security [CVE-2017-13083]low🔒--🔒
107962Redmine Textile/Markdown Stored cross site scriptinglow🔒---
107961Red Hat Satellite Qpid Server deserialization [CVE-2015-5164]medium🔒---
107960sharenfs ZFS File system nfs.c information disclosurelow🔒---
107959Netty Cookie input validation [CVE-2015-2156]low🔒--🔒
107958OpenJPEG j2k_read_ppm_v3 double freelow🔒--🔒
107957Flash-album-gallery gallery.php Path information disclosurelow🔒---
107956Red Hat CloudForms resource consumption [CVE-2014-7813]low🔒---
107955SumaHo certificate validation [CVE-2014-7242]low🔒---
107954JBoss KeyCloak CSRF Protection cross-site request forgery [CVE-2014-3709]low🔒---
107953ovirt-engine X.509 Certificate Validation certificate validationmedium🔒---
107952Foreman cross site scripting [CVE-2014-3531]low🔒---
107951Google Android ServiceManager service_manager.c null pointer dereferencelow🔒---
107950GNU C Library memory corruption [CVE-2011-5320]low🔒---
107949Envitech EnviDAS Ultimate improper authentication [CVE-2017-9625]medium🔒---
107948Debian ftpsync Option path traversal [CVE-2017-8805]medium🔒---
107947NVIDIA ADSP Loader memory corruption [CVE-2017-6273]medium🔒---
107946TIBCO Managed File Transfer Command Center access control [CVE-2017-5531]medium🔒---
107945Lenovo Service Framework command injection [CVE-2017-3761]medium🔒---
107944Lenovo Service Framework Integrity Verification credentials managementmedium🔒---
107943Lenovo Service Framework Response input validation [CVE-2017-3759]medium🔒---
107942Lenovo Service Framework Access Control access control [CVE-2017-3758]medium🔒---
107941Poppler PDF Document GfxState.cc getGrayLine null pointer dereferencelow🔒--🔒
107940zorovavi Blog recept.php sql injectionmedium🔒---
107939ILIAS Media Objects class.ilMediaItem.php setParameter Stored cross site scriptinglow🔒---
107938Linux Kernel x86 FPU Subsystem regset.c ptrace information disclosurelow🔒--🔒
107937ProMinent MultiFLEX M10a Controller Web Interface access controlmedium🔒---
107936ProMinent MultiFLEX M10a Controller Web Interface cross-site request forgerylow🔒---
107935ProMinent MultiFLEX M10a Controller Web Interface information disclosurelow🔒---
107934ProMinent MultiFLEX M10a Controller Web Interface session expirationmedium🔒---
107933ProMinent MultiFLEX M10a Controller Web Interface Password password recoverymedium🔒---
107932WECON LEVI Studio HMI Editor memory corruption [CVE-2017-13999]medium🔒---
107931Form Manager Plugin ajax.php fm_saveHelperGatherItems command injectionmedium🔒---
107930nw.js input validation [CVE-2014-9733]medium🔒---
107929Huawei USG9560/9520/9580 Website resource consumption [CVE-2014-9697]low🔒---
107928Flexpaper FlexPaperViewer.swf Content input validationmedium🔒---
107927Flexpaper FlexPaperViewer.swf cross site scriptinglow🔒---
107926gollum Dependency access control [CVE-2014-9489]medium🔒---
107925MediaWiki GetID3 Library xml external entity reference [CVE-2014-9487]medium🔒--🔒
107924Zhone zNID GPON 2426A Web Admin Portal zhnping.cmd command injectionmedium🔒---
107923Zhone zNID GPON 2426A Web Admin Portal backupsettings.html credentials managementlow🔒---
107922X2Engine X2CRM File Upload ProfileController.php actionUploadPhoto unrestricted uploadmedium🔒--🔒
107921perltidy make_temporary_filename access controllow🔒--🔒
107919BlackBerry Workspaces Server Source information disclosure [CVE-2017-9368]low🔒---
107918BlackBerry Workspaces Server path traversal [CVE-2017-9367]medium🔒---
107917radare2 ELF File elf.c store_versioninfo_gnu_verdef memory corruptionmedium🔒---
107916Rate Me rate-me.php cross site scriptinglow🔒---
107915Nero Nero.exe unquoted search pathlow🔒---
107914Infineon RSA Library RSA Key Generation cryptographic issuesmedium🔒--🔒
107913SAP Hostcontrol SOAP SAPControl Endpoint improper authenticationmedium🔒---
107912SAP CRM Java cross-site request forgery [CVE-2017-15296]low🔒---
107911SAP POS Xpress Server access control [CVE-2017-15295]medium🔒---
107910SAP CRM Java Administration Console cross site scripting [CVE-2017-15294]low🔒---
107909SAP POS Xpress Server access control [CVE-2017-15293]medium🔒---
107908QEMU cirrus_vga.c mode4and5 out-of-bounds writelow🔒--🔒
107907ASX to MP3 Converter m3u File memory corruption [CVE-2017-15221]medium🔒---
107906International Components for Unicode zonemeta.cpp up double freemedium🔒--🔒
107905NVIDIA GeForce Experience Installer Framework NVISystemService64 access controlmedium🔒---
107904Apache Struts Double OGNL Evaluation input validation [CVE-2016-4461]medium🔒---
107903OpenSMTPD master.passwd req_ca_vrfy_mta use after freemedium🔒--🔒
107902Aruba Networks ClearPass Policy Manager access control [CVE-2015-4650]high🔒---
107901spin-kickstarts fedora-cloud-atomic.ks access controlmedium🔒---
107900Berta CMS File Upload unrestricted upload [CVE-2015-2780]medium🔒---
107899Fiyo CMS Access Restriction dapur administrator access controlmedium🔒---
107898Fiyo CMS Database Backup information disclosure [CVE-2014-9147]low🔒---
107897Store Locator Plugin sl-xml.php sql injectionmedium🔒---
107896Post Highlights Plugin ph_save.php cross site scriptinglow🔒---
107895oVirt restapi Session access control [CVE-2014-7851]medium🔒---
107894eNovance eDeploy path traversal [CVE-2014-3702]medium🔒---
107893Foreman auto-completion cross site scripting [CVE-2014-0208]low🔒---
107892Red Hat katello-headpin SAM Web Application cross site scriptinglow🔒---
107891WPA2 Integrity Group Key KRACK nonce re-usemedium🔒--🔒
107890WPA2 Group Key KRACK nonce re-usemedium🔒--🔒
107889WPA2 Tunneled Direct-Link Setup KRACK nonce re-usemedium🔒--🔒
107888WPA2 STK Key KRACK nonce re-usemedium🔒--🔒
107887WPA2 Fast BSS Transition Request KRACK nonce re-usemedium🔒--🔒
107886WPA2 Integrity Group Key KRACK nonce re-usemedium🔒--🔒
107885WPA2 Group Key KRACK nonce re-usemedium🔒--🔒
107884WPA2 Integrity Group Key KRACK nonce re-usemedium🔒--🔒
107883WPA2 Group Key KRACK nonce re-usemedium🔒--🔒
107882WPA2 PTK-TK Handshake KRACK nonce re-usemedium🔒--🔒
107881Mobatek MobaXterm Telnet Service code injection [CVE-2017-15376]medium🔒---
107880WpJobBoard User Account request Persistent cross site scriptinglow🔒---
107879Shopware Persistent cross site scripting [CVE-2017-15374]low🔒---
107878E-Sic Search lkpcep.php sql injectionmedium🔒---
107877Sound eXchange adpcm.c lsx_ms_adpcm_block_expand_i memory corruptionmedium🔒--🔒
107876Sound eXchange formats.c sox_append_comment memory corruptionlow🔒--🔒
107875Sound eXchange ima_rw.c ImaExpandS memory corruptionmedium🔒--🔒
107874Artifex MuPDF pdf-stream.c build_filter_chain use after freelow🔒--🔒
107873radare2 wasm.c wasm_dis memory corruptionmedium🔒---
107872osTicket CSRF Protection cross site scripting [CVE-2017-15362]low🔒---
107871CPUID CPU-Z Kernel-Mode Driver out-of-bounds write [CVE-2017-15303]medium🔒---
107870CPUID CPU-Z Kernel-Mode Driver access control [CVE-2017-15302]low🔒---
107869IBM Notes XStream input validation [CVE-2017-7957]low🔒--🔒
107868Ccsv ccsv.c foreach double freemedium🔒---
107867Luracast Restler getsource.php path traversallow🔒---
107866PRTG Network Monitor Stored cross site scripting [CVE-2017-15360]low🔒---
107865EWBF Cuda Zcash Miner HTTP API data processing [CVE-2017-15300]low🔒---
107864NexusPHP messages.php cross site scriptinglow🔒---
107863AIRTAME HDMI Dongle Admin Panel login.php Persistent session fixiationmedium🔒---
107862Linux Kernel KEYS Subsystem add_key null pointer dereferencelow🔒--🔒
107861Git Tree Object resource consumption [CVE-2017-15298]low🔒--🔒
107860Apache Solr Apache Lucene RunExecutableListener xml external entity referencemedium🔒--🔒
107859Linux Kernel ALSA Sequencer Interface seq use after freemedium🔒--🔒
107858Ruckus Wireless Zone Director Controller command injection [CVE-2017-6224]low🔒---
107857Ruckus Wireless Zone Director Controller ping os command injectionmedium🔒---
107856EMC OpenText Documentum Content Server TAR File path traversalmedium🔒---
107855EMC OpenText Documentum Content Server File access control [CVE-2017-15014]low🔒---
107854EMC OpenText Documentum Content Server access control [CVE-2017-15013]medium🔒---
107853EMC OpenText Documentum Content Server RPC Command input validationmedium🔒---
107852Juniper Junos Space Node Certificate Verification insufficient verification of data authenticitymedium🔒--🔒
107851Juniper Junos Space improper authentication [CVE-2017-10623]medium🔒--🔒
107850Juniper Management Platform access control [CVE-2017-10622]medium🔒--🔒
107849Juniper Junos resource consumption [CVE-2017-10621]low🔒--🔒
107848Juniper Junos HTTPS Certificate Validator certificate validationmedium🔒--🔒
107847Juniper Junos Express Path data processing [CVE-2017-10619]low🔒--🔒
107846Juniper Junos RPD 7pk security [CVE-2017-10618]low🔒--🔒
107845Juniper Networks Contrail ifmap File xml external entity referencelow🔒---
107844Juniper Networks Contrail ifmap hard-coded credentials [CVE-2017-10616]medium🔒---
107843Juniper Junos Pluggable Authentication input validation [CVE-2017-10615]medium🔒--🔒
107842Juniper Junos telnetd resource consumption [CVE-2017-10614]low🔒--🔒
107841Juniper Junos Loopback Filter resource consumptionmedium🔒--🔒
107840Juniper Junos Space Persistent cross site scripting [CVE-2017-10612]low🔒--🔒
107839Juniper Junos Statistics data processing [CVE-2017-10611]low🔒--🔒
107838Juniper Junos flowd input validation [CVE-2017-10610]low🔒--🔒
107837Juniper Junos Sun/MS-RPC ALG resource consumption [CVE-2017-10608]low🔒--🔒
107836Juniper Junos rpd Daemon resource management [CVE-2017-10607]low🔒--🔒
107835Juniper Junos TPM cryptographic issues [CVE-2017-10606]medium🔒---
107834Apache Ranger Change Password credentials management [CVE-2016-6815]medium🔒---
107833JanTek JTC-200 Busybox improper authentication [CVE-2016-5791]medium🔒---
107832JanTek JTC-200 cross-site request forgery [CVE-2016-5789]low🔒---
107831Juniper Junos permission [CVE-2016-4924]low🔒--🔒
107830Juniper Junos Cross Site Scripting Protection cross site scriptinglow🔒--🔒
107829Juniper Junos Space cross-site request forgery [CVE-2016-1265]low🔒--🔒
107828J-Web Service cross-site request forgery [CVE-2016-1261]medium🔒--🔒
107827Bamboo REST Endpoint access control [CVE-2017-9514]medium🔒---
107826Mirasys Video Management System Login cryptographic issues [CVE-2017-15290]low🔒---
107825Dream Multimedia Dreambox file cross site scriptinglow🔒---
107824SQLite shell.c tableColumnList null pointer dereferencelow🔒--🔒
107823X-Cart File Extension Filter input validation [CVE-2017-15285]medium🔒---
107822October CMS SVG File cross site scripting [CVE-2017-15284]low🔒---
107821ImageMagick psd.c ReadPSDImage memory corruptionmedium🔒--🔒
107820Umbraco CMS importDocumenttype.aspx.cs xml external entity referencelow🔒---
107819Umbraco CMS New Page Publish.aspx.cs cross site scriptinglow🔒---
107818TeamPass folders.queries.php cross site scriptinglow🔒---
107817ImageMagick/GraphicsMagick gif.c readgifimage information disclosuremedium🔒--🔒
107816QEMU channel-websock.c resource managementlow🔒--🔒
107815SilverStripe CMS Password Reset information disclosure [CVE-2017-12849]low🔒---
107814HIBUN Confidential File Decryption untrusted search path [CVE-2017-10865]low🔒---
107813HIBUN Confidential File Viewer untrusted search path [CVE-2017-10864]low🔒---
107812HIBUN Confidential File Decryption untrusted search path [CVE-2017-10863]low🔒---
107811jwt-scala Token Signature Verification insufficient verification of data authenticitymedium🔒---
107810Cybozu Office Access Restriction Cabinet access controlmedium🔒---
107809WordPress Sandbox flashmediaelement.swf Cross-Domain input validationmedium🔒--🔒
107808Cisco Embedded Device X.509 Certificate certificate validationmedium🔒--🔒
107807EMC RSA Archer GRC File Upload input validation [CVE-2017-8025]medium🔒--🔒
107806EMC Network Configuration Manager Reflected cross site scriptinglow🔒---
107805EMC RSA Archer GRC Stored cross site scripting [CVE-2017-8016]low🔒--🔒
107804SDL RGB Surface integer overflow [CVE-2017-2888]medium🔒--🔒
107803SDL_image XCF Property memory corruption [CVE-2017-2887]medium🔒--🔒
107802Linux Kernel keyctl.c null pointer dereferencelow🔒--🔒
107801GNU Libextractor flac_extractor.c null pointer dereferencelow🔒--🔒
107800GNU Libextractor wav_extractor.c EXTRACTOR_wav_extract_method divide by zerolow🔒--🔒
107799IrfanView tif File memory corruption [CVE-2017-15264]medium🔒---
107798IrfanView PDF Plugin memory corruption [CVE-2017-15263]medium🔒---
107797IrfanView PDF Plugin memory corruption [CVE-2017-15262]medium🔒---
107796IrfanView PDF Plugin memory corruption [CVE-2017-15261]medium🔒---
107795IrfanView PDF Plugin memory corruption [CVE-2017-15260]medium🔒---
107794IrfanView PDF Plugin memory corruption [CVE-2017-15259]medium🔒---
107793IrfanView PDF Plugin memory corruption [CVE-2017-15258]medium🔒---
107792IrfanView PDF Plugin memory corruption [CVE-2017-15257]medium🔒---
107791IrfanView PDF Plugin memory corruption [CVE-2017-15256]medium🔒---
107790IrfanView PDF Plugin memory corruption [CVE-2017-15255]medium🔒---
107789IrfanView PDF Plugin memory corruption [CVE-2017-15254]medium🔒---
107788IrfanView PDF Plugin memory corruption [CVE-2017-15253]medium🔒---
107787IrfanView PDF Plugin memory corruption [CVE-2017-15252]medium🔒---
107786IrfanView PDF Plugin memory corruption [CVE-2017-15251]medium🔒---
107785IrfanView PDF Plugin memory corruption [CVE-2017-15250]medium🔒---
107784IrfanView PDF Plugin memory corruption [CVE-2017-15249]medium🔒---
107783IrfanView PDF Plugin memory corruption [CVE-2017-15248]medium🔒---
107782IrfanView PDF Plugin memory corruption [CVE-2017-15247]medium🔒---
107781IrfanView PDF Plugin memory corruption [CVE-2017-15246]medium🔒---
107780IrfanView PDF Plugin memory corruption [CVE-2017-15245]medium🔒---
107779IrfanView PDF Plugin memory corruption [CVE-2017-15244]medium🔒---
107778IrfanView PDF Plugin memory corruption [CVE-2017-15243]medium🔒---
107777IrfanView PDF Plugin memory corruption [CVE-2017-15242]medium🔒---
107776IrfanView PDF Plugin memory corruption [CVE-2017-15241]medium🔒---
107775IrfanView PDF Plugin memory corruption [CVE-2017-15240]medium🔒---
107774IrfanView PDF Plugin memory corruption [CVE-2017-15239]medium🔒---
107773Flexense VX Search Enterprise memory corruption [CVE-2017-15220]medium🔒---
107772Atlassian FishEye/Crucible cross site scripting [CVE-2017-14588]low🔒---
107771Atlassian FishEye/Crucible cross site scripting [CVE-2017-14587]low🔒---
107770EMC RSA Archer GRC RSA Archer Help Pages Reflected cross site scriptinglow🔒--🔒
107769EMC RSA Archer GRC Reflected cross site scripting [CVE-2017-14371]low🔒--🔒
107768EMC RSA Archer GRC Stored cross site scripting [CVE-2017-14370]low🔒--🔒
107767EMC RSA Archer GRC access control [CVE-2017-14369]medium🔒--🔒
107766LAVA Ether-Serial Link improper authentication [CVE-2017-14003]medium🔒---
107765libXfont pcfread.c pcfGetProperties out-of-bounds readlow🔒--🔒
107764libXfont fontdir.c PatternMatch out-of-bounds readmedium🔒--🔒
107763Linux Kernel Key Management null pointer dereference [CVE-2017-12192]low🔒--🔒
107762Linux Kernel mmu.c path traversalmedium🔒--🔒
107761RubyGems YAML Deserialization bypass deserializationmedium🔒--🔒
107760Seagate BlackArmor NAS getAlias.php command injectionmedium🔒---
107759Microsoft Windows SMB input validation [CVE-2017-11781]low🔒--🔒
107758Microsoft Windows Storage Security input validation [CVE-2017-11818]low🔒--🔒
107757Microsoft Windows JET Database Engine memory corruption [CVE-2017-8718]medium🔒--🔒
107756Microsoft Windows JET Database Engine memory corruption [CVE-2017-8717]medium🔒--🔒
107755Microsoft Windows TRIE access control [CVE-2017-11769]low🔒--🔒
107754Microsoft Windows GDI information disclosure [CVE-2017-11816]low🔒--🔒
107753Microsoft Windows SMB data processing [CVE-2017-11780]high🔒--🔒
107752Microsoft Windows Update Delivery Optimization access controllow🔒--🔒
107751Microsoft Windows Kernel information disclosure [CVE-2017-11814]low🔒--🔒
107750Microsoft Windows Kernel information disclosure [CVE-2017-11785]low🔒--🔒
107749Microsoft Windows Kernel information disclosure [CVE-2017-11784]low🔒--🔒
107748Microsoft Windows Kernel information disclosure [CVE-2017-11765]low🔒--🔒
107747Microsoft Windows Graphics access control [CVE-2017-11824]medium🔒--🔒
107746Microsoft Windows Win32k access control [CVE-2017-8694]medium🔒--🔒
107745Microsoft Windows Win32k access control [CVE-2017-8689]medium🔒--🔒
107744Microsoft Windows DNSAPI DNSAPI.dll access controlmedium🔒--🔒
107743Microsoft Edge information disclosure [CVE-2017-11794]low🔒--🔒
107742Microsoft Lync/Skype for Business Authentication access controlmedium🔒--🔒
107741Microsoft Outlook Secure Connection Mail information disclosurelow🔒--🔒
107740Microsoft Windows Graphics access control [CVE-2017-11763]medium🔒--🔒
107739Microsoft Windows Graphics access control [CVE-2017-11762]medium🔒--🔒
107738Microsoft Windows Search information disclosure [CVE-2017-11772]low🔒--🔒
107737Microsoft Windows Advanced Local Procedure Call access controlmedium🔒--🔒
107736Microsoft Windows Graphics information disclosure [CVE-2017-8693]low🔒--🔒
107735Microsoft Windows Device Guard access control [CVE-2017-8715]low🔒--🔒
107734Microsoft Windows SMB access control [CVE-2017-11782]medium🔒--🔒
107733Microsoft Chakra Core Scripting Engine information disclosuremedium🔒---
107732Microsoft Outlook memory corruption [CVE-2017-11774]medium🔒--🔒
107731Microsoft Windows Shell memory corruption [CVE-2017-11819]medium🔒--🔒
107730Microsoft Windows Search Remote access control [CVE-2017-11771]medium🔒--🔒
107729Microsoft SharePoint Enterprise Server cross site scripting [CVE-2017-11820]low🔒--🔒
107728Microsoft SharePoint Enterprise Server cross site scripting [CVE-2017-11777]low🔒--🔒
107727Microsoft SharePoint Enterprise Server cross site scripting [CVE-2017-11775]low🔒--🔒
107726Microsoft Internet Explorer information disclosure [CVE-2017-11790]low🔒--🔒
107725Microsoft Windows Kernel information disclosure [CVE-2017-11817]low🔒--🔒
107724Microsoft Windows Text Services Framework access control [CVE-2017-8727]medium🔒--🔒
107723Microsoft Windows SMB information disclosure [CVE-2017-11815]medium🔒--🔒
107722Microsoft Windows Device Guard access control [CVE-2017-11823]low🔒--🔒
107721Microsoft Edge Scripting Engine memory corruption [CVE-2017-11812]medium🔒--🔒
107720Microsoft Edge Scripting Engine memory corruption [CVE-2017-11811]medium🔒--🔒
107719Microsoft Internet Explorer memory corruption [CVE-2017-11810]low🔒--🔒
107718Microsoft Edge Scripting Engine memory corruption [CVE-2017-11809]medium🔒--🔒
107717Microsoft Edge Scripting Engine memory corruption [CVE-2017-11808]medium🔒--🔒
107716Microsoft Edge Scripting Engine memory corruption [CVE-2017-11807]medium🔒--🔒
107715Microsoft Edge memory corruption [CVE-2017-11806]medium🔒--🔒
107714Microsoft Edge memory corruption [CVE-2017-11805]medium🔒--🔒
107713Microsoft Edge Scripting Engine memory corruption [CVE-2017-11804]medium🔒--🔒
107712Microsoft Edge memory corruption [CVE-2017-11802]medium🔒--🔒
107711Microsoft Chakra Core Scripting Engine information disclosuremedium🔒---
107710Microsoft Edge Scripting Engine memory corruption [CVE-2017-11800]medium🔒--🔒
107709Microsoft Edge Scripting Engine memory corruption [CVE-2017-11799]medium🔒--🔒
107708Microsoft Edge Scripting Engine memory corruption [CVE-2017-11798]medium🔒--🔒
107707Microsoft Edge Scripting Engine memory corruption [CVE-2017-11796]medium🔒--🔒
107706Microsoft Internet Explorer Scripting Engine JSONStringifyObject memory corruptionlow🔒--🔒
107705Microsoft Edge Scripting Engine memory corruption [CVE-2017-11792]medium🔒--🔒
107704Microsoft Edge Scripting Engine memory corruption [CVE-2017-11821]medium🔒--🔒
107703Microsoft Office memory corruption [CVE-2017-11826]medium🔒--🔒
107702Microsoft Edge information disclosure [CVE-2017-8726]medium🔒--🔒
107701Microsoft Windows Subsystem for Linux memory corruption [CVE-2017-8703]low🔒--🔒
107700Microsoft Internet Explorer memory corruption [CVE-2017-11813]medium🔒--🔒
107699Microsoft Internet Explorer memory corruption [CVE-2017-11822]medium🔒--🔒
107698Microsoft Office memory corruption [CVE-2017-11825]medium🔒--🔒
107697Pure Storage Purity SNMP Trap Manager Site Stored cross site scriptinglow🔒---
107696Google Android Netlink memory corruption [CVE-2017-9717]medium🔒---
107695Google Android memory corruption [CVE-2017-9715]medium🔒---
107694Google Android limCheckRxRSNIeMatch memory corruptionmedium🔒---
107693Google Android Display Driver memory corruption [CVE-2017-9706]medium🔒---
107692Google Android diag_dbgfs_read_table race conditionlow🔒---
107691Google Android Thread ipc_log_context_destroy double freemedium🔒---
107690Google Android SPS Driver double free [CVE-2017-9686]medium🔒---
107689Google Android integer overflow [CVE-2017-9683]medium🔒---
107688HPE Operations Orchestration input validation [CVE-2017-8994]medium🔒--🔒
107687Intel NUC7i3BNK/NUC7i3BNH/NUC7i5BNK/NUC7i5BNH/NUC7i7BNH Policy Enforcement access controlmedium🔒---
107686Intel NUC7i3BNK/NUC7i3BNH/NUC7i5BNK/NUC7i5BNH/NUC7i7BNH Memory input validationmedium🔒---
107685Intel NUC7i3BNK/NUC7i3BNH/NUC7i5BNK/NUC7i5BNH/NUC7i7BNH BIOS Recovery access controlmedium🔒---
107684Intel NUC7i3BNK/NUC7i3BNH/NUC7i5BNK/NUC7i5BNH/NUC7i7BN Password Storage credentials managementlow🔒---
107683IBM Financial Transaction Manager information disclosure [CVE-2017-1538]low🔒---
107682GraphicsMagick png.c ReadOneJNGImage use after freelow🔒--🔒
107681Tiandy IP Cameras Service Port 3001 information disclosure [CVE-2017-15236]low🔒---
107680Horde Groupware gollem access control [CVE-2017-15235]medium🔒---
107679libjpeg-turbo JPEG File jdpostct.c null pointer dereferencelow🔒--🔒
107678ZyXEL NBG6716 ozkerz popen command injectionmedium🔒---
107677GNU binutils libbfd dwarf2.c _bfd_dwarf2_cleanup_debug_info memory corruptionlow🔒---
107676dotCMS Stored cross site scripting [CVE-2017-15219]low🔒---
107675ImageMagick png.c ReadOneJNGImage resource consumptionlow🔒--🔒
107674ImageMagick sgi.c ReadSGIImage resource consumptionlow🔒--🔒
107673MIPS quickDeleteConfirmationForm.ctp quickDelete Reflected cross site scriptinglow🔒---
107672Shaarli index.php Reflected cross site scriptinglow🔒---
107671Flyspray syntax.php Stored cross site scriptinglow🔒---
107670Flyspray common.editallusers.tpl Stored cross site scriptinglow🔒---
107669Kanboard Form Data information disclosure [CVE-2017-15212]medium🔒---
107668Kanboard Form Data access control [CVE-2017-15211]medium🔒---
107667Kanboard Form Data information disclosure [CVE-2017-15210]medium🔒---
107666Kanboard Form Data access control [CVE-2017-15209]medium🔒---
107665Kanboard Form Data access control [CVE-2017-15208]medium🔒---
107664Kanboard Form Data access control [CVE-2017-15207]medium🔒---
107663Kanboard Form Data access control [CVE-2017-15206]medium🔒---
107662Kanboard Form Data information disclosure [CVE-2017-15205]medium🔒---
107661Kanboard Form Data access control [CVE-2017-15204]medium🔒---
107660Kanboard Form Data access control [CVE-2017-15203]medium🔒---
107659Kanboard Form Data access control [CVE-2017-15202]medium🔒---
107658Kanboard Form Data access control [CVE-2017-15201]medium🔒---
107657Kanboard Form Data access control [CVE-2017-15200]medium🔒---
107656Kanboard Form Data access control [CVE-2017-15199]medium🔒---
107655Kanboard Form Data information disclosure [CVE-2017-15198]medium🔒---
107654Kanboard Form Data access control [CVE-2017-15197]medium🔒---
107653Kanboard Form Data access control [CVE-2017-15196]medium🔒---
107652Kanboard Form Data access control [CVE-2017-15195]medium🔒---
107651Cacti global_session.php cross site scriptinglow🔒--🔒
107650Wireshark MBIM Dissector packet-mbim.c resource consumptionlow🔒--🔒
107649Wireshark BT BTATT Dissector packet-btatt.c resource managementlow🔒--🔒
107648Wireshark DMP Dissector packet-dmp.c format stringlow🔒--🔒
107647Wireshark RTSP Dissector packet-rtsp.c resource managementlow🔒--🔒
107646Wireshark DOCSIS Dissector packet-docsis.c resource managementlow🔒--🔒
107645EyesOfNetwork Web Interface index.php Persistent cross site scriptinglow🔒---
107644Lansweeper XML Data xml external entity reference [CVE-2017-13706]medium🔒---
107643Symantec Encryption Desktop data processing [CVE-2017-13679]low🔒--🔒
107642Symantec Endpoint Encryption data processing [CVE-2017-13675]low🔒--🔒
107641Epson EasyMP credentials management [CVE-2017-12861]low🔒---
107640Epson EasyMP credentials management [CVE-2017-12860]medium🔒---
107639Apache NiFi xml external entity reference [CVE-2017-12623]medium🔒---
107638Google Android Athdiag Out-of-Range memory corruptionmedium🔒---
107637Google Android hdd_extscan_passpoint_fill_network_list memory corruptionmedium🔒---
107636Google Android User Process race condition [CVE-2017-11063]low🔒---
107635Google Android __wlan_hdd_cfg80211_do_acs memory corruptionmedium🔒---
107634Google Android memory corruption [CVE-2017-11061]medium🔒---
107633Google Android hdd_extscan_passpoint_fill_network_list memory corruptionmedium🔒---
107632Google Android SHA memory corruption [CVE-2017-11059]medium🔒---
107631Google Android Compatibility Mode flash_data Kernel Memory memory corruptionlow🔒---
107630Google Android SHA Page Fault memory corruptionlow🔒---
107629Google Android memory corruption [CVE-2017-11055]medium🔒---
107628Google Android cfg80211 memory corruption [CVE-2017-11054]medium🔒---
107627Google Android ConvertQosMapsetFrame memory corruptionmedium🔒---
107626Google Android cfg80211 memory corruption [CVE-2017-11052]medium🔒---
107625Google Android __wlan_hdd_cfg80211_testmode information disclosurelow🔒---
107624Google Android pktlogconf memory corruption [CVE-2017-11050]medium🔒---
107623Google Android Display Driver use after free [CVE-2017-11048]medium🔒---
107622Google Android Audio Driver out-of-bounds write [CVE-2017-11046]medium🔒---
107621Piwigo Access Restriction functions.inc.php url_check_format access controlmedium🔒---
107620Piwigo Search functions_search.inc.php cross site scriptinglow🔒---
107619sudo sudoers lectured race conditionlow🔒--🔒
107618Gurunavi App SSL Certificate Validator certificate validationlow🔒---
107617Zend Framework Private Key array_rand key managementlow🔒--🔒
107616Node.js resource consumption [CVE-2015-7384]low🔒--🔒
107615Salt Log Username information disclosurelow🔒--🔒
107614ATutor LMS cross site scripting [CVE-2015-6521]low🔒---
107613Niconico App SSL Certificate Verification Service certificate validationlow🔒---
107612Rakuten Card App SSL Certificate Verification Service certificate validationlow🔒---
107611Accellion File Transfer Appliance Cookie template path traversalmedium🔒--🔒
107610libjpeg-turbo Exif Marker memory corruption [CVE-2014-9092]low🔒--🔒
107609UI-Dialog command injection [CVE-2008-7315]medium🔒--🔒
107608Trapeze TransitMaster GetSubscriber information disclosurelow🔒---
107607IBM WebSphere Application Server HTTP Response Splitting cross site scriptingmedium🔒---
107606Apache ZooKeper Command resource management [CVE-2017-5637]medium🔒--🔒
107605QEMU 9p.c v9fs_xattrwalk race conditionlow🔒--🔒
107604Sync Breeze Enterprise login memory corruptionmedium🔒---
107603GridGain GUI Console path traversal [CVE-2017-14614]low🔒---
107602Digium Asterisk RTCP Packet information disclosure [CVE-2017-14603]medium🔒--🔒
107601X.Org Server Global Buffer memory corruption [CVE-2017-13723]medium🔒--🔒
107600X.Org Server Shared Memory Segments access control [CVE-2017-13721]medium🔒--🔒
107599Huawei FusionServer Permission permission [CVE-2015-7842]medium🔒---
107598GNU MPFR strtofr.c mpfr_strtofr memory corruptionlow🔒--🔒
107597Apache Roller XML-RPC Protocol Support xml external entity referencemedium🔒---
107596libmp3splt ogg.c vorbis_block_clear input validationlow🔒---
107595IDenticard Two-Reader Controller Configuration Manager ~user_handler Stored cross site scriptinglow🔒---
107594InFocus Mondopad improper authentication [CVE-2017-14972]medium🔒---
107593InFocus Mondopad Excel Spreadsheet Credentials information disclosurelow🔒---
107592Apple OS X/macOS Keychain Password access controllow🔒--🔒
107591Apple OS X/macOS Disk Utility Password information disclosurelow🔒--🔒
107590IDM Bi-directional Driver access control [CVE-2017-9273]medium🔒---
107589IDM Bi-directional Driver input validation [CVE-2017-9272]low🔒---
107588Rapid7 Metasploit Framework Logout cross-site request forgerylow🔒---
107587Smush Image Compression/Optimization Plugin path traversal [CVE-2017-15079]medium🔒--🔒
107586Intel Puma denial of service [CVE-2017-15078]low🔒---
107585Intel Puma denial of service [CVE-2017-15077]low🔒---
107584Intel Puma denial of service [CVE-2017-15076] [Disputed]low🔒---
107583Intel Puma denial of service [CVE-2017-15075]low🔒---
107582Intel Puma denial of service [CVE-2017-15074]low🔒---
107581Intel Puma denial of service [CVE-2017-15073]low🔒---
107580Intel Puma denial of service [CVE-2017-15072]low🔒---
107579Intel Puma denial of service [CVE-2017-15071]low🔒---
107578Intel Puma denial of service [CVE-2017-15070]low🔒---
107577Intel Puma denial of service [CVE-2017-15069]low🔒---
107576Intel Puma denial of service [CVE-2017-15068]low🔒---
107575Intel Puma denial of service [CVE-2017-15067]low🔒---
107574Intel Puma denial of service [CVE-2017-15066]low🔒---
107573Intel Puma denial of service [CVE-2017-15065]low🔒---
107572Intel Puma denial of service [CVE-2017-15064]low🔒---
107571Intelliants Subrion CMS ia.core.php cross-site request forgerylow🔒---
107570UPX ELF File Header p_lx_elf.cpp unpack null pointer dereferencemedium🔒--🔒
107569QNAP Music Station command injection [CVE-2017-13069]medium🔒---
107568QNAP Helpdesk Application sql injection [CVE-2017-13068]medium🔒---
107567Koji SCM Path Blacklist input validationmedium🔒---
107566libcURL FTP memory corruption [CVE-2017-1000254]medium🔒--🔒
107565Foreman LDAP Authentication Password 7pk securitylow🔒---
107564WP EasyCart Plugin admin_ajax_functions.php ec_ajax_clear_all_taxrates access controlmedium🔒---
107563libcsoap nanohttp null pointer dereference [CVE-2015-2297]low🔒---
107562pngcrush PNG File pngcrush.c pngcrush_measure_idat numeric errormedium🔒---
107561Issuetracker phpBugTracker cross site scripting [CVE-2015-2148]low🔒---
107560Issuetracker phpBugTracker sql injection [CVE-2015-2147]medium🔒---
107559Issuetracker phpBugTracker project.php sql injectionmedium🔒---
107558Issuetracker phpBugTracker cross site scripting [CVE-2015-2145]low🔒---
107557Issuetracker phpBugTracker project.php cross site scriptinglow🔒---
107556Issuetracker phpBugTracker cross-site request forgery [CVE-2015-2143]low🔒---
107555Issuetracker phpBugTracker project.php cross-site request forgerylow🔒---
107554http gem Hostname Validator information disclosure [CVE-2015-1828]low🔒---
107553Cybele Thinfinity Remote Desktop Workstation path traversal [CVE-2015-1429]medium🔒---
107552Google Chrome MP4 File memory corruption [CVE-2015-1206]medium🔒---
107551texlive Pre-Installer access control [CVE-2015-0296]low🔒--🔒
107550Best Gallery Albums Plugin admin.php cross site scriptinglow🔒---
107549Profile Builder Plugin fallback-page.php cross site scriptinglow🔒---
107548Easy Contact Form Solution Plugin admin-ajax.php cross site scriptinglow🔒---
107547CyaSSL Leaf Certificate cryptographic issues [CVE-2014-2903]medium🔒---
107546Docker tmp Local Privilege Escalationmedium🔒---
107545LibOFX memory corruption [CVE-2017-2920]medium🔒--🔒
107544Computerinsel PhotoLine GIF Parser memory corruption [CVE-2017-2880]medium🔒---
107543IBM Content Navigator / CMIS Web UI cross site scripting [CVE-2017-1522]low🔒---
107542Redis cluster.c clusterLoadConfig memory corruptionlow🔒--🔒
107541LAME memory corruption [CVE-2017-15046]medium🔒---
107540LAME memory corruption [CVE-2017-15045]medium🔒---
107539Google Go SMTP information disclosure [CVE-2017-15042]medium🔒--🔒
107538Google Go access control [CVE-2017-15041]medium🔒--🔒
107537HP UCMDB Foundation cross site scripting [CVE-2017-14354]low🔒---
107536HP UCMDB Foundation code injection [CVE-2017-14353]medium🔒--🔒
107535Trend Micro OfficeScan cgiShowClientAdm.exe memory corruptionmedium🔒--🔒
107534Trend Micro OfficeScan tmwfp.sys memory corruptionmedium🔒--🔒
107533Trend Micro OfficeScan Host Header input validation [CVE-2017-14087]medium🔒--🔒
107532Trend Micro OfficeScan fcgiOfcDDA.exe resource managementlow🔒--🔒
107531Trend Micro OfficeScan information disclosure [CVE-2017-14085]low🔒--🔒
107530Trend Micro OfficeScan access control [CVE-2017-14084]medium🔒--🔒
107529Trend Micro OfficeScan Encryption File access control [CVE-2017-14083]low🔒--🔒
107528LOYTEC LVIS-3ME Credentials credentials management [CVE-2017-13998]low🔒---
107527LOYTEC LVIS-3ME Web User Interface path traversal [CVE-2017-13996]medium🔒---
107526LOYTEC LVIS-3ME Web Interface cross site scripting [CVE-2017-13994]low🔒---
107525LOYTEC LVIS-3ME Random Number Generator entropy [CVE-2017-13992]medium🔒---
107524IBM Tivoli Storage Manager Application Trace Credentials credentials managementlow🔒---
107523IBM Tivoli Storage Manager Password information disclosure [CVE-2017-1339]low🔒---
107522IBM Spectrum Protect link following [CVE-2017-1301]low🔒---
107521GE CIMPLICITY Packet Length memory corruption [CVE-2017-12732]medium🔒---
107520mySCADA myPRO Unquoted Search Path unquoted search path [CVE-2017-12730]low🔒---
107519Computerinsel PhotoLine TGA Parser memory corruption [CVE-2017-12106]medium🔒---
107518IBM BigFix Compliance Analytics Credentials credentials managementlow🔒---
107517IBM Tivoli Storage Manager Authentication improper authenticationlow🔒---
107516Saia Burgess Controls PCD Controllers Ethernet Frame information disclosurelow🔒---
107515FreeBSD smb_subr.c smb_strdupin out-of-bounds readmedium🔒---
107514EmTec PyroBatchFTP memory corruption [CVE-2017-15035]low🔒---
107513ImageMagick yuv.c ReadYUVImage resource managementlow🔒--🔒
107512ImageMagick ycbcr.c ReadYCBCRImage resource consumptionlow🔒--🔒
107511GNU binutils dwarf2.c decode_line_info divide by zerolow🔒--🔒
107510GNU binutils libbfd dwarf2.c find_abstract_instance_name input validationlow🔒--🔒
107509GNU binutils libbfd dwarf2.c concat_filename null pointer dereferencelow🔒--🔒
107508GNU binutils libbfd dwarf2.c parse_comp_unit null pointer dereferencelow🔒--🔒
107507GNU binutils libbfd opncls.c bfd_getl32 memory corruptionmedium🔒--🔒
107506GNU binutils libbfd dwarf1.c parse_die memory corruptionmedium🔒--🔒
107505LAME mpglib_interface.c hip_decode_init null pointer dereferencelow🔒--🔒
107504LAME vbrquantize.c k_34_4 memory corruptionmedium🔒---
107503ImageMagick png.c ReadOneMNGImage null pointer dereferencelow🔒--🔒
107502ImageMagick emf.c ReadEnhMetaFile null pointer dereferencelow🔒--🔒
107501ImageMagick pdf.c PDFDelegateMessage null pointer dereferencelow🔒--🔒
107500Ctek SkyRouter 4200/SkyRouter 4400 improper authentication [CVE-2017-14000]medium🔒---
107499IniNet Webserver improper authentication [CVE-2017-13995]low🔒---
107498i-SENS SmartLog Diabetes Management Software uncontrolled search pathlow🔒---
107497SpiderControl SCADA Web Server Privileges access control [CVE-2017-12728]low🔒---
107496Cisco IOS XR gRPC memory corruption [CVE-2017-12270]low🔒---
107495Cisco Spark Messaging Web UI Stored cross site scriptinglow🔒---
107494Cisco AnyConnect Secure Mobility Client Network Interface access controllow🔒---
107493Cisco Wide Area Application Services ICA memory corruption [CVE-2017-12267]low🔒---
107492Cisco Meeting App DLL Loader access control [CVE-2017-12266]low🔒---
107491Cisco ASA Web-based Management Interface cross site scriptinglow🔒---
107490Cisco Meeting Server Web Admin Interface input validation [CVE-2017-12264]low🔒---
107489Cisco License Manager Web Interface path traversal [CVE-2017-12263]low🔒---
107488Cisco Unified Communications Manager Web UI cross site scriptinglow🔒---
107487Cisco WebEx Meetings Server cross site scripting [CVE-2017-12257]low🔒---
107486Cisco Wide Area Application Services Akamai Connect data processinglow🔒---
107485Cisco ASA resource management [CVE-2017-12246]low🔒--🔒
107484Cisco Threat Defense Firepower Detection Engine resource managementlow🔒--🔒
107483Cisco Intrusion Prevention System Advanced Malware Protection input validationlow🔒--🔒
107482Red Hat Enterprise Application Platform JBoss Application Server doFilter deserializationmedium🔒--🔒
107481Linux Kernel load_elf_binary memory corruptionmedium🔒--🔒
107480ERPNext Frappe frappe.share.get_users sql injectionmedium🔒---
107479October CMS File Upload unrestricted upload [CVE-2017-1000119]medium🔒---
107478Akka http HTTP Header memory corruption [CVE-2017-1000118]low🔒---
107477Git SSH URL access control [CVE-2017-1000117]medium🔒--🔒
107476Mercurial SSH command injection [CVE-2017-1000116]medium🔒--🔒
107475Mercurial link following [CVE-2017-1000115]medium🔒--🔒
107474Jenkin Datadog Plugin information disclosure [CVE-2017-1000114]low🔒---
107473Jenkins Deploy to Container Plugin information disclosure [CVE-2017-1000113]medium🔒---
107472Linux Kernel __ip_append_data race conditionmedium🔒--🔒
107471Jenkins Blue Ocean access control [CVE-2017-1000110]medium🔒---
107470Jenkins Static Analysis Utilities cross site scripting [CVE-2017-1000109]low🔒---
107469Jenkins Input Step Plugin information disclosure [CVE-2017-1000108]medium🔒---
107468Jenkins Script Security Plugin access control [CVE-2017-1000107]medium🔒---
107467Jenkin Blue Ocean access control [CVE-2017-1000106]medium🔒---
107466Jenkin Permission permission [CVE-2017-1000105]medium🔒---
107465Jenkins Config File Provider Plugin access control [CVE-2017-1000104]medium🔒---
107464Jenkins Static Analysis Utilities cross site scripting [CVE-2017-1000103]low🔒---
107463Jenkins Static Analysis Utilities Persistent cross site scriptinglow🔒---
107462Google Go net-http RequestParseMultipartForm file descriptor consumptionlow🔒--🔒
107461Google Go Root Certificate certificate validation [CVE-2017-1000097]medium🔒---
107460Jenkins Sandbox access control [CVE-2017-1000096]medium🔒---
107459Jenkins Script Sandbox access control [CVE-2017-1000095]medium🔒---
107458Jenkins Docker Commons Plugin information disclosure [CVE-2017-1000094]low🔒---
107457Jenkins Poll SCM Plugin cross-site request forgery [CVE-2017-1000093]low🔒---
107456Jenkins Git Plugin cross-site request forgery [CVE-2017-1000092]medium🔒---
107455Jenkins GitHub Branch Source Plugin cross-site request forgerylow🔒---
107454Jenkins Role-based Authorization Strategy Plugin cross-site request forgerylow🔒---
107453Jenkins Build Step Plugin access control [CVE-2017-1000089]medium🔒---
107452Jenkins Sidebar Link Plugin cross site scripting [CVE-2017-1000088]low🔒---
107451Jenkins GitHub Branch Source Plugin information disclosure [CVE-2017-1000087]low🔒---
107450Jenkins Periodic Backup Plugin cross-site request forgery [CVE-2017-1000086]low🔒---
107449Jenkins Subversion Plugin cross-site request forgery [CVE-2017-1000085]low🔒---
107448Jenkins Parameterized Trigger Plugin access control [CVE-2017-1000084]medium🔒---
107447Mozilla Firefox Full Screen Mode Address input validationmedium🔒--🔒
107446Mozilla Firefox Xray Wrapper data processing [CVE-2017-7820]medium🔒--🔒
107445Mozilla Firefox WebCrypto API Key cryptographic issueslow🔒--🔒
107444Mozilla Firefox WebExtensions access control [CVE-2017-7821]medium🔒--🔒
107443Mozilla Firefox WebExtensions 7pk security [CVE-2017-7816]medium🔒--🔒
107442Mozilla Firefox data: URI input validation [CVE-2017-7815]medium🔒--🔒
107441Mozilla Firefox Tibetan/Arabic Charset Address input validationmedium🔒--🔒
107440Mozilla Firefox Phishing Warning input validation [CVE-2017-7814]medium🔒--🔒
107439Mozilla Firefox CSP cross site scripting [CVE-2017-7823]medium🔒--🔒
107438Mozilla Firefox JavaScript Parser numeric error [CVE-2017-7813]medium🔒--🔒
107437Mozilla Firefox memory corruption [CVE-2017-7811]medium🔒--🔒
107436Mozilla Firefox memory corruption [CVE-2017-7810]medium🔒--🔒
107435Mozilla Firefox Drag / Drop Feature information disclosure [CVE-2017-7812]medium🔒--🔒
107434Mozilla Firefox TLS use after free [CVE-2017-7805]medium🔒--🔒
107433Mozilla Firefox ANGLE Graphics Library memory corruption [CVE-2017-7824]medium🔒--🔒
107432Mozilla Firefox Design Mode use after free [CVE-2017-7819]medium🔒--🔒
107431Mozilla Firefox ARIA Element use after free [CVE-2017-7818]medium🔒--🔒
107430Mozilla Firefox Fetch API use after free [CVE-2017-7793]medium🔒--🔒
107429Apache Impala Kudu Table access control [CVE-2017-9792]medium🔒---
107428Cloud Foundry Cloud Controller VM access control [CVE-2017-8048]medium🔒---
107427Cloud Foundry redirect [CVE-2017-8047]medium🔒---
107426IBM AIX JRE/SDK Install input validation [CVE-2017-1541]medium🔒--🔒
107425Qt qtsingleapp memory corruption [CVE-2017-15011]low🔒---
107424Tough-Cookie Module Regular Expression resource consumption [CVE-2017-15010]low🔒--🔒
107423PRTG Network Monitor Error Page error.htm Reflected cross site scriptinglow🔒---
107422PRTG Network Monitor IMG Element Stored cross site scriptinglow🔒---
107421GraphicsMagick pict.c ReadPICTImage integer underflowlow🔒--🔒
107420WSO2 Data Analytics Server Management Console Stored cross site scriptinglow🔒---
107419GraphicsMagick dcm.c ReadDCMImage null pointer dereferencelow🔒--🔒
107418Linux Kernel sg.c sg_ioctl information disclosurelow🔒--🔒
107417Dnsmasq DNS Response memory corruption [CVE-2017-14491]medium🔒--🔒
107416Gemalto HASP SRM/Sentinel HASP/Sentinel LDK Admin Interface access controlmedium🔒---
107415Gemalto HASP SRM/Sentinel HASP/Sentinel LDK memory corruptionmedium🔒---
107414Gemalto HASP SRM/Sentinel HASP/Sentinel LDK memory corruptionmedium🔒---
107413Gemalto HASP SRM/Sentinel HASP/Sentinel LDK Language Pack Update NTLM 7pk securitymedium🔒---
107412Gemalto HASP SRM/Sentinel HASP/Sentinel LDK XML Parser memory corruptionmedium🔒---
107411Apache Tomcat JSP File unrestricted upload [CVE-2017-12617]medium🔒--🔒
107410IBM WebSphere Message Broker information disclosure [CVE-2017-1126]low🔒--🔒
107409Apple iOS Broadcom BCM4355C0 information disclosure [CVE-2017-11122]low🔒---
107408Google Android Motorola Bootloader access control [CVE-2017-0829]medium🔒---
107407Google Android Huawei Bootloader access control [CVE-2017-0828]medium🔒---
107406Google Android MediaTek soc Driver access control [CVE-2017-0827]medium🔒---
107405Google Android HTC Bootloader access control [CVE-2017-0826]medium🔒---
107404Google Android Broadcom WiFi Driver information disclosure [CVE-2017-0825]low🔒---
107403Google Android Broadcom WiFi Driver access control [CVE-2017-0824]medium🔒---
107402Google Android rild information disclosure [CVE-2017-0823]low🔒---
107401Google Android Camera access control [CVE-2017-0822]medium🔒---
107400Google Android Media Framework resource management [CVE-2017-0820]medium🔒---
107399Google Android Media Framework resource management [CVE-2017-0819]medium🔒---
107398Google Android Media Framework resource management [CVE-2017-0818]medium🔒---
107397Google Android Media Framework information disclosure [CVE-2017-0817]low🔒---
107396Google Android Media Framework information disclosure [CVE-2017-0816]low🔒---
107395Google Android Media Framework information disclosure [CVE-2017-0815]low🔒---
107394Google Android Media Framework access control [CVE-2017-0814]low🔒---
107393Google Android Media Framework access control [CVE-2017-0813]low🔒---
107392Google Android Media Framework access control [CVE-2017-0812]medium🔒---
107391Google Android Media Framework access control [CVE-2017-0811]medium🔒---
107390Google Android Media Framework access control [CVE-2017-0810]medium🔒---
107389Google Android Media Framework access control [CVE-2017-0809]medium🔒---
107388Google Android File System information disclosure [CVE-2017-0808]low🔒---
107387Google Android UI Framework access control [CVE-2017-0807]medium🔒---
107386Google Android Gatekeeper access control [CVE-2017-0806]medium🔒---
107385Apache Geode Secure Mode access control [CVE-2017-9797]medium🔒---
107384SolarWinds Network Performance Monitor Upload Logo input validationlow🔒---
107383SolarWinds Network Performance Monitor Add Node Persistent cross site scriptinglow🔒---
107382EMC Elastic Cloud Storage credentials management [CVE-2017-8021]medium🔒---
107381EMC AppSync Host Plug-In input validation [CVE-2017-8018]low🔒---
107380phpCollab File Upload editclient.php unrestricted uploadmedium🔒---
107379phpCollab deletetopics.php sql injectionmedium🔒---
107378IBM WebSphere Commerce Marketing ESpot denial of service [CVE-2017-1569]low🔒---
107377WordPress information disclosure [CVE-2017-14990]low🔒--🔒
107376ImageMagick annotate.c FT_Done_Glyph use after freelow🔒--🔒
107375OpenEXR ImfHeader.cpp readfrom resource consumptionlow🔒---
107374EyesOfNetwork Web Interface index.php cross site scriptinglow🔒---
107373EyesOfNetwork Web Interface add_services.php cross site scriptinglow🔒---
107372EyesOfNetwork Web Interface index.php cross site scriptinglow🔒---
107371ATutor edit_feed.php cross site scriptinglow🔒---
107370Gxlcms index.php File access controllow🔒---
107369WPHRM Human Resource Management System sql injection [CVE-2017-14848]medium🔒---
107368Skybox Manager Client Application Debugger access control [CVE-2017-14773]medium🔒---
107367Skybox Manager Client Application Username information disclosurelow🔒---
107366Skybox Manager Client Application File Upload input validationmedium🔒---
107365Skybox Manager Client Application Password Hash information disclosurelow🔒---
107364Opentext Document Sciences xPression xml external entity referencemedium🔒---
107363Opentext Document Sciences xPression cm_doclist_view_uc.jsp sql injectionmedium🔒---
107362Opentext Document Sciences xPression downloadSupportFile.action sql injectionmedium🔒---
107361Opentext Document Sciences xPression Deployment cross site scriptinglow🔒---
107360Opentext Document Sciences xPression XPressoDoc cross site scriptinglow🔒---
107359Opentext Document Sciences xPression cm_datasource_group_xsd.jsp File path traversallow🔒---
107358Dnsmasq DNS Request add_pseudoheader integer underflowmedium🔒--🔒
107357Dnsmasq DNS Response resource management [CVE-2017-14495]low🔒--🔒
107356Dnsmasq DHCPv6 Forwarded Request Memory information disclosurelow🔒--🔒
107355Dnsmasq DHCPv6 Request memory corruption [CVE-2017-14493]medium🔒--🔒
107354Dnsmasq IPv6 Router Advertisement memory corruption [CVE-2017-14492]medium🔒--🔒
107353IBM RELM Web UI cross site scripting [CVE-2017-1429]low🔒---
107352Schneider Electric InduSoft Web Studio/InTouch Machine Edition missing authenticationmedium🔒--🔒
107351Dnsmasq DNS Packet Size input validation [CVE-2017-13704]medium🔒--🔒
107350IBM RELM Web UI cross site scripting [CVE-2017-1369]low🔒---
107349IBM RELM Web UI cross site scripting [CVE-2017-1364]low🔒---
107348IBM RELM Web UI cross site scripting [CVE-2017-1359]low🔒---
107347IBM Insights Foundation for Energy Web UI cross site scriptinglow🔒---
107346IBM RELM Web UI cross site scripting [CVE-2017-1335]low🔒---
107345IBM RELM Web UI cross site scripting [CVE-2017-1334]low🔒---
107344IBM RELM Web UI cross site scripting [CVE-2017-1324]low🔒---
107343IBM Insights Foundation for Energy Back-End Database sql injectionmedium🔒---
107342NexusPHP linksmanage.php cross site scriptinglow🔒---
107341Ipswitch IMail Server IMmailSrv memory corruption [CVE-2017-12639]medium🔒---
107340Ipswitch IMail Server IMmailSrv memory corruption [CVE-2017-12638]medium🔒---
107339Apache OpenNLP XML Data xml external entity reference [CVE-2017-12620]medium🔒---
107338Gemalto ACC hasplms memory corruption [CVE-2017-11498]medium🔒---
107337Gemalto ACC hasplms memory corruption [CVE-2017-11497]medium🔒---
107336Gemalto ACC hasplms memory corruption [CVE-2017-11496]medium🔒---
107335UCOPIA Wireless Appliance chroothole_client access controlmedium🔒---
107334UCOPIA Wireless Appliance less Command access control [CVE-2017-11321]medium🔒---
107333Apache Wicket CSRF Prevention cross-site request forgery [CVE-2016-6806]low🔒---
107332Compass Rose Module Javascript Library cross site scripting [CVE-2015-7980]low🔒---
107331Huawei FusionServer Management Interface 7pk security [CVE-2015-7843]low🔒---
107330Huawei FusionServer Login Page command injection [CVE-2015-7841]medium🔒---
107329Truecrypt/VeraCrypt Ntdriver.c MountDevice access controllow🔒---
107328Truecrypt/VeraCrypt Symbolic Links Ntdriver.c IsDriveLetterAvailable access controllow🔒---
107327uDesign Theme SVG cross site scripting [CVE-2015-7357]low🔒---
107326Lenovo System Update SUService.exe command injectionlow🔒---
107325Bamboo Web Interface Java code injectionhigh🔒--🔒
107324Lenovo Fingerprint Manager access control [CVE-2015-3321]low🔒---
107323Apache Wicket Class information disclosure [CVE-2014-0043]low🔒---
107322Poppler FoFiTrueType.cc getCFFBlock null pointer dereferencelow🔒--🔒
107321Poppler FoFiType1C.cc convertToType0 memory corruptionmedium🔒--🔒
107320Poppler FoFiType1C.cc convertToType0 null pointer dereferencelow🔒--🔒
107319GNU binutils libbfd elf32-i386.c null pointer dereferencelow🔒--🔒
107318Open vSwitch OpenFlow Group Mod Message ofp-util.c resource consumptionlow🔒--🔒
107317PivotX Upload lib.php unrestricted uploadmedium🔒---
107316BlogoText conv.php Stored cross site scriptinglow🔒---
107315Check_MK Failed-Log Save race condition [CVE-2017-14955]low🔒--🔒
107314Linux Kernel KASLR exit.c information disclosurelow🔒--🔒
107313Jaspersoft JasperReports HTML Source Code flow.html Password information disclosurelow🔒---
107312Philips Hue Bridge BSB002 SW 1707040932 Public API inadequate encryptionmedium🔒---
107311OpenVPN Key Method 1 read_key memory corruptionmedium🔒--🔒
107310Apache Geode Command Line Utility Query information disclosuremedium🔒---
107309Artifex GSView xps File memory corruption [CVE-2017-14947]medium🔒---
107308Artifex GSView PDF File memory corruption [CVE-2017-14946]medium🔒---
107307Artifex GSView PDF File memory corruption [CVE-2017-14945]medium🔒---
107306Inedo ProGet Package ID input validation [CVE-2017-14944]medium🔒---
107305Intelbras WRN 150 Configuration File RouterCfm.cfg access controllow🔒---
107304GNU binutils dwarf2.c scan_unit_for_symbols null pointer dereferencelow🔒--🔒
107303GNU binutils libbfd dwarf2.c decode_line_info memory corruptionmedium🔒--🔒
107302GNU binutils libbfd elf.c _bfd_elf_slurp_version_tables resource managementlow🔒--🔒
107301Pulse Secure Pulse One On-Premise input validation [CVE-2017-14935]low🔒---
107300GNU binutils libbfd dwarf.c process_debug_info numeric errorlow🔒--🔒
107299GNU binutils libbfd dwarf2.c read_formatted_entries input validationlow🔒--🔒
107298GNU binutils libbfd dwarf2.c decode_line_info input validationlow🔒--🔒
107297OpenExif JPEG File ExifImageFileRead.cpp readDQT memory corruptionmedium🔒---
107296GNU binutils libbfd dwarf2.c resource managementlow🔒--🔒
107295Poppler Object.h dictLookup memory corruptionmedium🔒--🔒
107294Poppler Annot.cc Configuration null pointer dereferencelow🔒--🔒
107293Poppler SplashOutputDev.cc type3D0 null pointer dereferencelow🔒--🔒
107292Poppler Annot.cc Content null pointer dereferencelow🔒--🔒
107291Tiki tiki-objectpermissions.php cross-site request forgerylow🔒---
107290Tiki tiki-assignuser.php cross-site request forgerylow🔒---
107289Tine CRM Stored cross site scriptinglow🔒---
107288Tine Community Edition Profile/Calendar/Tasks/CRM Stored cross site scriptinglow🔒---
107287Tine Community Edition Filenmanager Stored cross site scriptinglow🔒---
107286EGroupware Community Edition HTTP Header Stored cross site scriptinglow🔒---
107285FileRun Metasearch Module sql injection [CVE-2017-14738]medium🔒---
107284ERS Data System com.branaghgroup.ecers.update.UpdateRequest deserializationmedium🔒---
107283SmarterStats HTTP Header ReferringURLsWithQueries Stored cross site scriptinglow🔒---
107282Zoho Site24x7 Mobile Network Poller X.509 Certificate certificate validationlow🔒---
107281HP UCMDB Configuration Manager cross site scripting [CVE-2017-14352]low🔒---
107280HP UCMDB Configuration Manager privileges management [CVE-2017-14351]medium🔒---
107279HPE Application Performance Management missing authenticationmedium🔒---
107278HPE SiteScope access control [CVE-2017-14349]low🔒---
107277ArcSight ESM/ArcSight ESM Express information disclosure [CVE-2017-13991]low🔒--🔒
107276ArcSight ESM/ArcSight ESM Express Apache Tomcat Version information disclosurelow🔒--🔒
107275ArcSight ESM/ArcSight ESM Express Access Control access controlmedium🔒--🔒
107274ArcSight ESM/ArcSight ESM Express Access Control access controlmedium🔒--🔒
107273ArcSight ESM/ArcSight ESM Express Log File access control [CVE-2017-13987]low🔒--🔒
107272ArcSight ESM/ArcSight ESM Express Reflected cross site scriptinglow🔒--🔒
107271HPE BSM Platform Application Performance Management System Health path traversallow🔒---
107270HPE BSM Platform Application Performance Management System Health improper authenticationmedium🔒---
107269HPE BSM Platform Application Performance Management System Health improper authenticationmedium🔒---
107268HPE BSM Platform Application Performance Management System Health unrestricted uploadmedium🔒---
107267Unisys Libra 64xx/Libra 84xx/FS601 memory corruption [CVE-2017-13684]low🔒---
107266Apache Tika XML Parser xml external entity reference [CVE-2016-4434]medium🔒--🔒
107265Multitech FaxFinder LDAP Configuration Page Password credentials managementlow🔒---
107264CP Contact Form with PayPal cp_contactformpp.php sql injectionmedium🔒---
107263CP Contact Form with PayPal cp_contactformpp_admin_int_list.inc.php cross-site request forgerylow🔒---
107262Apache Mesos libprocess data processing [CVE-2017-9790]low🔒---
107261X-Pack Alerting Permission access control [CVE-2017-8448]medium🔒--🔒
107260X-Pack Security Permission access control [CVE-2017-8447]medium🔒--🔒
107259Elastic Cloud Enterprise ZooKeeper Traffic cryptographic issuesmedium🔒---
107258Apache Mesos libprocess data processing [CVE-2017-7687]low🔒--🔒
107257RHMAP App Studio Stored cross site scriptinglow🔒--🔒
107256RHMAP API Call server-side request forgery [CVE-2017-7553]medium🔒--🔒
107255RHMAP File Editor access control [CVE-2017-7552]medium🔒--🔒
107254Git git-shell input validation [CVE-2017-14867]medium🔒--🔒
107253Exiv2 types.cpp s2Data memory corruptionmedium🔒---
107252Exiv2 types.cpp us2Data memory corruptionmedium🔒--🔒
107251Exiv2 types.cpp getULong memory corruptionlow🔒--🔒
107250Exiv2 image.cpp printIFDStructure memory corruptionlow🔒---
107249Exiv2 value.cpp read memory corruptionlow🔒--🔒
107248Exiv2 image.cpp stringFormat resource managementlow🔒---
107247Exiv2 jp2image.cpp readMetadata memory corruptionmedium🔒--🔒
107246Exiv2 value.cpp read memory corruptionlow🔒--🔒
107245Exiv2 types.cpp l2Data memory corruptionmedium🔒---
107244Exiv2 image.cpp Image use after freelow🔒---
107243Content Timeline Plugin content_timeline_class.php sql injectionmedium🔒---
107242Cisco IOS/IOS XE DHCP Relay input validation [CVE-2017-12240]high🔒--🔒
107241Cisco IOS XE Line Card access control [CVE-2017-12239]low🔒--🔒
107240Cisco IOS VPLS resource management [CVE-2017-12238]low🔒--🔒
107239Cisco IOS/IOS XE IKEv2 resource management [CVE-2017-12237]low🔒--🔒
107238Cisco IOS XE LISP improper authentication [CVE-2017-12236]medium🔒--🔒
107237Cisco IOS PROFINET Discovery/Configuration Protoco input validationlow🔒--🔒
107236Cisco IOS Common Industrial Protocol input validation [CVE-2017-12234]low🔒--🔒
107235Cisco IOS Common Industrial Protocol input validation [CVE-2017-12233]low🔒--🔒
107234Cisco IOS resource management [CVE-2017-12232]low🔒--🔒
107233Cisco IOS Network Address Translation resource management [CVE-2017-12231]low🔒--🔒
107232Cisco IOS XE Administration UI access control [CVE-2017-12230]medium🔒--🔒
107231Cisco IOS XE REST API improper authentication [CVE-2017-12229]medium🔒--🔒
107230Cisco IOS/IOS XE Network Plug/Play input validation [CVE-2017-12228]medium🔒--🔒
107229Cisco IOS XE Wireless LAN Controller GUI access control [CVE-2017-12226]medium🔒---
107228Cisco IOS XE Wireless Controller Manager input validation [CVE-2017-12222]low🔒---
107227Kibana Timelion cross site scripting [CVE-2017-11479]low🔒---
107226SAP Enterprise Portal cross site scripting [CVE-2017-10701]low🔒---
107225Percona Toolkit/XtraBackup Version Check information disclosuremedium🔒--🔒
107224Percona Toolkit Automatic Version Check information disclosuremedium🔒--🔒
107223BackWPup Plugin Backup File file access [CVE-2017-2551]low🔒---
107222IBM WebSphere DataPower Web UI cross site scripting [CVE-2017-1591]low🔒---
107221IBM WebSphere Portal path traversal [CVE-2017-1577]low🔒--🔒
IDTitleVulDBCVSSSecuniaXForceNessus
107220Node.js Pathname Validator access control [CVE-2017-14849]medium🔒--🔒
107219Mojoomla WPAMS Apartment Management System sql injection [CVE-2017-14847]medium🔒---
107218Mojoomla Hospital Management System sql injection [CVE-2017-14846]medium🔒---
107217Mojoomla WPCHURCH Church Management System sql injection [CVE-2017-14845]medium🔒---
107216Mojoomla WPGYM WordPress Gym Management System sql injectionmedium🔒---
107215Mojoomla School Management System sql injection [CVE-2017-14843]medium🔒---
107214Mojoomla SMSmaster Multipurpose SMS Gateway sql injection [CVE-2017-14842]medium🔒---
107213Mojoomla Annual Maintenance Contract unrestricted upload [CVE-2017-14841]medium🔒---
107212TeamWork TicketPlus updateProfile unrestricted uploadmedium🔒---
107211TeamWork Photo Fusion changeCover unrestricted uploadmedium🔒---
107210TeamWork Job Links coverChange unrestricted uploadmedium🔒---
107209IBM Security Identity Manager missing authentication [CVE-2017-1483]medium🔒---
107208libbpg libbpg.c hevc_write_frame integer underflowmedium🔒---
107207libbpg libbpg.c hevc_write_frame out-of-bounds readmedium🔒---
107206Laravel DatabaseUserProvider information disclosure [CVE-2017-14775]low🔒---
1072052kb Amazon Affiliates Store Plugin admin.php cross site scriptinglow🔒---
107204Opentext Documentum Webtop GAIRConnector xml external entity referencemedium🔒---
107203Opentext Documentum Administrator GAIRConnector xml external entity referencemedium🔒---
107202Opentext Documentum Webtop default.htm redirectmedium🔒---
107201Opentext Documentum Administrator default.htm redirectmedium🔒---
107200IBM Security Identity Manager Virtual Appliance command injectionmedium🔒---
107199Norton Remove / Reinstall code injection [CVE-2017-13676]low🔒---
107198Perl perlhost.h Add memory corruptionmedium🔒--🔒
107197Apache Xerces Jelly Parser xml external entity reference [CVE-2017-12621]medium🔒---
107196FreeIPA API session fixiation [CVE-2017-11191]medium🔒---
107195Broadcom BCM4355C0 Fast Transition Frame memory corruption [CVE-2017-11121]medium🔒--🔒
107194Broadcom BCM4355C0 RRM Neighbor Report Frame memory corruptionmedium🔒--🔒
107193ZTE NR8950 Apache Commons Collections deserialization [CVE-2017-10932]medium🔒---
107192Zoho ManageEngine Desktop Central FileUploadServlet unrestricted uploadmedium🔒---
107191VASCO DIGIPASS Authentication Plug-In cross site scripting [CVE-2015-7349]low🔒---
107190ZyXEL NWA1123-NI X.509 Certificate cryptographic issues [CVE-2015-7256]medium🔒--🔒
107189October CMS cross site scripting [CVE-2015-5613]low🔒---
107188usb-creator KVMTest access controllow🔒---
107187tcpdump print-wb.c ah_print input validationlow🔒--🔒
107186Google Android Media Server IHDCP.cpp integer overflowmedium🔒---
107185Google Android Media Server integer overflow [CVE-2015-1526]low🔒---
107184man-db ManDB Cleanup man access controllow🔒--🔒
107183Googlemaps Plugin Incomplete Fix plugin_googlemap3_kmlprxy.php resource managementlow🔒---
107182KDE KMail Attachment cryptographic issues [CVE-2014-8878]medium🔒---
107181FFmpeg SDP File rtpdec_h264.c sdp_parse_fmtp_config_h264 memory corruptionmedium🔒--🔒
107180Simple Student Result Plugin functions.php fn_ssr_add_st_submit improper authenticationmedium🔒---
107179GeniXCMS index.php cross site scriptinglow🔒---
107178GeniXCMS Upload Modules Page code injection [CVE-2017-14764]medium🔒---
107177GeniXCMS Install Themes Page command injection [CVE-2017-14763]medium🔒---
107176GeniXCMS Backend menus.control.php cross site scriptinglow🔒---
107175GeniXCMS Backend menus.control.php cross site scriptinglow🔒---
107174Event Espresso Lite Plugin index.php sql injectionmedium🔒---
107173EyesOfNetwork Web Interface index.php cross site scriptinglow🔒---
107172SaltStack Salt Salt-api minion command injectionlow🔒--🔒
107171SaltStack Salt local_batch Client improper authentication [CVE-2017-5192]medium🔒--🔒
107170IBM Business Process Manager LDAP access control [CVE-2017-1539]medium🔒---
107169IBM Business Process Manager Web UI cross site scripting [CVE-2017-1531]low🔒---
107168IBM Business Process Manager Web UI cross site scripting [CVE-2017-1530]low🔒---
107167IBM Business Process Manager XML Data xml external entity referencemedium🔒---
107166Intense WP Jobs Plugin cross site scripting [CVE-2017-14751]low🔒---
107165JerryScript JS File jmem_heap_alloc_block_internal memory corruptionmedium🔒---
107164Blizzard Overwatch Competitive Match race condition [CVE-2017-14748]low🔒---
107163GNU binutils libbfd elf32-i386.c integer overflowmedium🔒--🔒
107162Claydip Laravel Airbnb Clone File Upload profile proof_submit unrestricted uploadmedium🔒---
107161Cash Back Comparison Script sql injection [CVE-2017-14703]medium🔒---
107160Citrix Netscaler Application Delivery Controller Management Interface access controlmedium🔒--🔒
107159IBM Business Process Manager Web UI cross site scripting [CVE-2017-1425]low🔒---
107158ZKTeco ZKTime Web cross-site request forgery [CVE-2017-13129]low🔒---
107157Support Ticket System Plugin update.php sql injectionmedium🔒---
107156TestLink tcCreatedPerUserOnTestProject.php cross site scriptinglow🔒---
107155TestLink lnl.php sql injectionmedium🔒---
107154Battle for Wesnoth Incomplete Fix filesystem.cpp get_wml_location information disclosurelow🔒--🔒
107153Battle for Wesnoth filesystem.cpp get_wml_location information disclosurelow🔒--🔒
107152OpenHPI Permission Makefile.am Disk Consumption resource consumptionlow🔒--🔒
107151Smartphone Passbook X.509 Certificate Validation certificate validationlow🔒---
107150Schneider Electric ClearSCADA memory corruption [CVE-2017-9962]medium🔒---
107149Schneider Electric Pro-Face GP Pro EX access control [CVE-2017-9961]low🔒---
107148Schneider Electric U.motion Builder information disclosure [CVE-2017-9960]low🔒---
107147Schneider Electric U.motion Builder access control [CVE-2017-9959]low🔒---
107146Schneider Electric U.motion Builder Access Control access controlmedium🔒---
107145Schneider Electric U.motion Builder Web Service hard-coded credentialsmedium🔒---
107144Schneider Electric U.motion Builder hard-coded credentials [CVE-2017-9956]medium🔒---
107143Schneider Electric U.motion Builder path traversal [CVE-2017-7974]medium🔒---
107142Schneider Electric U.motion Builder sql injection [CVE-2017-7973]medium🔒---
107141Schneider Electric PowerSCADA Anywhere access control [CVE-2017-7972]medium🔒---
107140Schneider Electric PowerSCADA Anywhere SSL certificate validationmedium🔒---
107139Schneider Electric PowerSCADA Anywhere access control [CVE-2017-7970]medium🔒---
107138Schneider Electric PowerSCADA Anywhere Secure Gateway cross-site request forgerylow🔒---
107137UEditor IFRAME cross site scripting [CVE-2017-14744]low🔒---
107136Faleemi FSC-880 device_service sql injectionmedium🔒---
107135ImageMagick caption.c ReadCAPTIONImage input validationlow🔒--🔒
107134ImageMagick resample-private.h AcquireResampleFilterThreadSet null pointer dereferencelow🔒--🔒
107133Botan RSA cryptographic issues [CVE-2017-14737]medium🔒--🔒
107132Digium Asterisk GUI os command injection [CVE-2017-14001]medium🔒---
107131Linux Kernel CR8 vmx.c prepare_vmcs02 access controlmedium🔒--🔒
107130Linux Kernel KVM Subsystem vmx.c input validationlow🔒--🔒
107129Magento CE/Magento EE Password Reset information disclosure [CVE-2015-8707]medium🔒---
107128Red Hat openshift selinux-policy information disclosure [CVE-2015-0238]medium🔒---
107127Red Hat Enterprise Virtualization ovirt-node ovirtfunctions.py format stringlow🔒---
107126fso-gsm/fso-frameworkd/fso-usaged D-Bus Security Policy *.conf access controllow🔒---
107125Mahara Registration cross site scripting [CVE-2017-9551]low🔒---
107124IBM API Connect input validation [CVE-2017-1555]medium🔒---
107123IBM API Connect input validation [CVE-2017-1551]medium🔒---
107122OWASP AntiSamy HTML5 Entities cross site scripting [CVE-2017-14735]low🔒---
107121libbpg libbpg.c build_msps memory corruptionmedium🔒---
107120GraphicsMagick rle.c ReadRLEImage memory corruptionmedium🔒--🔒
107119LibOFX ofx_preproc.cpp memory corruptionmedium🔒--🔒
107118Gentoo logstash-bin Init Script access controllow🔒---
107117GNU binutils libbfd elf32-i386.c memory corruptionmedium🔒--🔒
107116geminabox gem Upload cross-site request forgery [CVE-2017-14683]low🔒--🔒
107115geminabox .gemspec cross site scriptinglow🔒--🔒
107114IBM Business Process Manager Web UI cross site scripting [CVE-2017-1424]low🔒---
107113Image Gallery Plugin admin.php sql injectionmedium🔒---
107112IBM Security Identity Manager Credentials credentials managementlow🔒---
107111IBM Business Process Manager Offline Install Temporary race conditionlow🔒---
107110Vebto Pixie Image Editor Launderer.php server-side request forgerymedium🔒---
107109IBM WebSphere MQ access control [CVE-2017-1235]low🔒---
107108Google Android Qualcomm Networking Driver rndis_ipa.c access controlmedium🔒---
107107php-fusion cross site scripting [CVE-2015-8375]low🔒---
107106OpenStage/OpenScape Desk Phone IP X.509 Certificate information disclosuremedium🔒--🔒
107105Huawei S7700/S9700/S9300/AR200/AR1200/AR2200/AR3200 CF Card information disclosurelow🔒---
107104GANMA! App SSL Certificate Validator certificate validation [CVE-2015-7785]medium🔒---
107103Red Hat Enterprise Virtualization Manager ) Bugtraq injectionmedium🔒--🔒
107102systemd NSS Module getgrnam memory corruptionmedium🔒--🔒
107101Plone input validation [CVE-2015-7318]medium🔒---
107100Kupu Settings access control [CVE-2015-7317]medium🔒---
107099Plone cross site scripting [CVE-2015-7316]low🔒---
107098Plone User access control [CVE-2015-7315]medium🔒---
107097Zope/Plone Management Interface cross-site request forgery [CVE-2015-7293]low🔒---
107096jsoup cross site scripting [CVE-2015-6748]low🔒---
107095Huawei UAP2105 VxWorks Shell 7pk security [CVE-2015-6592]medium🔒---
107094devscripts licensecheck.pl command injectionlow🔒--🔒
107093ANA App SSL Certificate Verification Service certificate validationmedium🔒---
107092Linux Kernel x509_cert_parser.c x509_decode_time out-of-bounds readmedium🔒---
107091Foreman cross site scripting [CVE-2015-5282]low🔒---
107090pulp-consumer-client TLS Certificate certificate validation [CVE-2015-5263]medium🔒---
107089protobuf memory corruption [CVE-2015-5237]medium🔒---
107088Red Hat JBoss A-MQ HawtIO Console 7pk security [CVE-2015-5184]low🔒---
107087Red Hat JBoss A-MQ HawtIO Console 7pk security [CVE-2015-5183]medium🔒---
107086Red Hat JBoss A-MQ Jolokia API cross-site request forgery [CVE-2015-5182]low🔒--🔒
107085Red Hat JBoss A-MQ cross site scripting [CVE-2015-5181]low🔒---
107084Apache Struts cross site scripting [CVE-2015-5169]medium🔒--🔒
107083Xceedium Xsuite MySQL Database Empty sql injectionlow🔒---
107082Xceedium Xsuite redirect [CVE-2015-4668]medium🔒---
107081Xceedium Xsuite hard-coded credentials [CVE-2015-4667]medium🔒---
107080InspIRCd Incomplete Fix input validation [CVE-2012-6696]medium🔒--🔒
107079Cisco IOS IPsec cryptographic issues [CVE-2011-4667]medium🔒---
107078Cisco IOS input validation [CVE-2010-3050]low🔒---
107077Cisco IOS input validation [CVE-2010-3049]low🔒---
107076Samba information disclosure [CVE-2017-12163]medium🔒--🔒
107075Samba DFS cryptographic issues [CVE-2017-12151]medium🔒--🔒
107074Samba Signing 7pk security [CVE-2017-12150]medium🔒--🔒
107073Apple Xcode subversion input validation [CVE-2017-9800]medium🔒--🔒
107072Apple Xcode ld64 memory corruption [CVE-2017-7137]medium🔒--🔒
107071Apple Xcode ld64 memory corruption [CVE-2017-7136]medium🔒--🔒
107070Apple Xcode ld64 memory corruption [CVE-2017-7135]medium🔒--🔒
107069Apple Xcode ld64 memory corruption [CVE-2017-7134]medium🔒--🔒
107068Apple Xcode ld64 memory corruption [CVE-2017-7076]medium🔒--🔒
107067Apple Xcode Git privileges management [CVE-2017-1000]medium🔒---
107066Apple iOS Wi-Fi Memory information disclosurelow🔒--🔒
107065Apple iOS Wi-Fi race condition [CVE-2017-7115]medium🔒--🔒
107064Apple iOS Wi-Fi memory corruption [CVE-2017-7112]high🔒--🔒
107063Apple iOS Wi-Fi memory corruption [CVE-2017-7110]high🔒--🔒
107062Apple iOS Wi-Fi memory corruption [CVE-2017-7108]high🔒--🔒
107061Apple iOS Wi-Fi memory corruption [CVE-2017-7105]high🔒--🔒
107060Apple iOS Wi-Fi memory corruption [CVE-2017-7103]high🔒--🔒
107059Apple iOS WebKit input validation [CVE-2017-7106]medium🔒--🔒
107058Apple iOS WebKit Universal cross site scriptinglow🔒--🔒
107057Apple iOS Safari input validation [CVE-2017-7085]medium🔒--🔒
107056Apple iOS MobileBackup cryptographic issues [CVE-2017-7133]medium🔒---
107055Apple iOS Messages input validation [CVE-2017-7118]low🔒---
107054Apple iOS Mail MessageUI memory corruption [CVE-2017-7097]medium🔒---
107053Apple iOS iBooks input validation [CVE-2017-7072]medium🔒---
107052Apple iOS Exchange ActiveSync permission [CVE-2017-7088]medium🔒---
107051Apple Safari WebKit cross site scripting [CVE-2017-7089]low🔒--🔒
107050Apple Safari Address Bar input validation [CVE-2017-7106]medium🔒--🔒
107049Apple Safari Address Bar input validation [CVE-2017-7085]medium🔒--🔒
107048WeeChat Logger Plugin logger.c memory corruptionlow🔒--🔒
107047WordPress TinyMCE cross site scripting [CVE-2017-14726]low🔒--🔒
107046WordPress edit-tag-form.php redirectmedium🔒--🔒
107045WordPress oEmbed Discovery cross site scripting [CVE-2017-14724]low🔒--🔒
107044WordPress sql injection [CVE-2017-14723]medium🔒--🔒
107043WordPress Customizer path traversal [CVE-2017-14722]medium🔒--🔒
107042WordPress Plugin Editor cross site scripting [CVE-2017-14721]low🔒--🔒
107041WordPress Template List View cross site scripting [CVE-2017-14720]low🔒--🔒
107040WordPress ZipArchive/PclZip path traversal [CVE-2017-14719]medium🔒--🔒
107039WordPress data URI cross site scripting [CVE-2017-14718]low🔒--🔒
107038CyberLink LabelPrint lpp Project File memory corruption [CVE-2017-14627]medium🔒---
107037CA Identity Manager Search Account information disclosurelow🔒---
107036NVIDIA Windows GPU Display Driver Kernel Mode Layer nvlddmkm.sys DxgkDdiEscape input validationmedium🔒--🔒
107035NVIDIA GPU Display Driver Kernel Mode Layer input validationmedium🔒--🔒
107034NVIDIA Windows GPU Display Driver Kernel Mode Layer DxgkDdiCreateAllocation divide by zerolow🔒--🔒
107033NVIDIA Windows GPU Display Driver Kernel Mode Layer DxgkDdiCreateAllocation divide by zerolow🔒--🔒
107032NVIDIA Windows GPU Display Driver Kernel Mode Layer nvlddmkm.sys DxgkDdiEscape input validationmedium🔒--🔒
107031NVIDIA Windows GPU Display Driver Kernel Mode Layer nvlddmkm.sys input validationmedium🔒--🔒
107030NVIDIA GPU Display Driver Kernel Mode Layer memory corruptionlow🔒--🔒
107029NVIDIA GPU Display Driver Kernel Mode Layer access control [CVE-2017-6266]low🔒--🔒
107028LXCA command injection [CVE-2017-3770]medium🔒---
107027LXCA Credentials credentials management [CVE-2017-3763]low🔒---
107026epesi Tasks Stored cross site scriptinglow🔒---
107025epesi Tasks Stored cross site scriptinglow🔒---
107024epesi Tasks Alerts Stored cross site scriptinglow🔒---
107023epesi Phonecalls Stored cross site scriptinglow🔒---
107022epesi Phonecalls Description Stored cross site scriptinglow🔒---
107021epesi Tasks Phonecall Notes Stored cross site scriptinglow🔒---
107020DenyAll WAF index.php Credentials improper authenticationlow🔒---
107019DenyAll WAF tail.php tailDateFile command injectionmedium🔒---
107018Foxit Reader PDF File FinalRelease+0x000000000000002f. memory corruptionmedium🔒--🔒
107017Trend Micro Mobile Security Proxy command injection [CVE-2017-14081]medium🔒---
107016Trend Micro Mobile Security improper authentication [CVE-2017-14080]medium🔒---
107015Trend Micro Mobile Security File Upload unrestricted upload [CVE-2017-14079]medium🔒---
107014Trend Micro Mobile Security sql injection [CVE-2017-14078]medium🔒---
107013Trend Micro Web Security Web Service Inspection command injectionmedium🔒---
107012Trend Micro Smart Protection Server Administration UI command injectionmedium🔒---
107011EMC ViPR SRM/Storage M/R/VNX M/R/M/R Java Management Extension access controllow🔒---
107010EMC ViPR SRM/Storage M/R/VNX M/R/M/R Webservice Gateway path traversalmedium🔒---
107009IrfanView djvu File memory corruption [CVE-2017-14693]medium🔒---
107008STDU Viewer JP2 File memory corruption [CVE-2017-14692]medium🔒---
107007STDU Viewer JB2 File memory corruption [CVE-2017-14691]medium🔒---
107006STDU Viewer JB2 File memory corruption [CVE-2017-14690]medium🔒---
107005STDU Viewer djvu File memory corruption [CVE-2017-14689]medium🔒---
107004STDU Viewer djvu File memory corruption [CVE-2017-14688]medium🔒---
107003Artifex MuPDF xps File memory corruption [CVE-2017-14687]medium🔒--🔒
107002Artifex MuPDF User Mode unzip.c memory corruptionmedium🔒--🔒
107001Artifex MuPDF xps-link.c memory corruptionmedium🔒--🔒
107000ImageMagick vips.c ReadVIPSImage resource managementlow🔒--🔒
106999ASP4CMS AspCMS Orderinfo.asp information disclosurelow🔒---
106998sam2p in_xpm.cpp parse_rgb memory corruptionmedium🔒--🔒
106997sam2p image.cpp sortPal integer overflowmedium🔒--🔒
106996Micro Focus VisiBroker out-of-bounds read [CVE-2017-9283]medium🔒---
106995Micro Focus VisiBroker integer overflow [CVE-2017-9282]medium🔒---
106994Micro Focus VisiBroker integer overflow [CVE-2017-9281]low🔒---
106993Red Hat OpenStack instack-undercloud link following [CVE-2017-7549]low🔒---
106992libexif exif-data.c exif_data_save_data_entry out-of-bounds readmedium🔒--🔒
106991ImageMagick token.c GetNextToken memory corruptionmedium🔒--🔒
106990P3Scan Privileges p3scan.pid` access controllow🔒---
106989ZKTeco ZKTime Web PDF Document information disclosure [CVE-2017-14680]low🔒---
106988Tapatalk Plugin XML-RPC classTTForum.php sql injectionmedium🔒---
106987WSO2 Data Analytics Server add_collection_ajaxprocessor.jsp cross site scriptinglow🔒---
106986ImageMagick Convert Utility raw input validationmedium🔒--🔒
106985GraphicsMagick png.c ReadOneJNGImage input validationlow🔒--🔒
106984BladeEnc loop.c iteration_loop out-of-bounds writemedium🔒---
106983Bento4 Ap4SampleEntry.cpp ReadFields out-of-bounds writemedium🔒---
106982Bento4 Ap4DataBuffer.cpp SetData memory corruptionmedium🔒---
106981Bento4 Ap4BitStream.cpp ReadBytes memory corruptionmedium🔒---
106980Bento4 AP4_HdlrAtom out-of-bounds writemedium🔒---
106979Bento4 Ap4HdlrAtom.cpp AP4_HdlrAtom memory corruptionmedium🔒---
106978Bento4 Ap4StdCFileByteStream.cpp ReadPartial null pointer dereferencelow🔒---
106977Bento4 Ap4MetaData.cpp AP4_DataAtom null pointer dereferencelow🔒---
106976Bento4 Ap4AtomSampleTable.cpp GetSample null pointer dereferencelow🔒---
106975Bento4 Ap4SampleEntry.cpp ReadFields memory corruptionmedium🔒---
106974Bento4 Ap4AtomFactory.cpp CreateAtomFromStream null pointer dereferencelow🔒---
106973Mirasvit Helpdesk MX Administrative Interface cross site scriptinglow🔒---
106972Mirasvit Helpdesk MX File Upload input validation [CVE-2017-14320]medium🔒---
106971TecnoVISION DLX Spot Player4 Web Admin Interface sql injectionmedium🔒---
106970TecnoVISION DLX Spot Player4 File Upload resource.php unrestricted uploadmedium🔒---
106969TecnoVISION DLX Spot Player4 SSH Service hard-coded credentialsmedium🔒---
106968Pure-FTPd Config config [CVE-2017-12170]medium🔒--🔒
106967ProxyChains-NG untrusted search path [CVE-2015-3887]low🔒--🔒
106966Google Android Qualcomm DMA Allocation access control [CVE-2017-9725]medium🔒--🔒
106965Google Android Qualcomm ION Cache Kernel Memory access controlmedium🔒---
106964Google Android Qualcomm Camera Driver access control [CVE-2017-9720]medium🔒---
106963Google Android Qualcomm access control [CVE-2017-9677]medium🔒---
106962Google Android Qualcomm use after free [CVE-2017-9676]medium🔒---
106961Google Android Qualcomm race condition [CVE-2017-8281]low🔒---
106960Google Android Qualcomm WLAN memory corruption [CVE-2017-8280]medium🔒---
106959Google Android Qualcomm Audio access control [CVE-2017-8278]medium🔒---
106958Google Android Qualcomm msm_dba_register_client access controlmedium🔒---
106957Google Android Qualcomm access control [CVE-2017-8251]medium🔒---
106956Google Android Qualcomm access control [CVE-2017-8250]medium🔒---
106955Google Android Qualcomm access control [CVE-2017-8247]medium🔒---
106954Cisco Stackable Managed Switch SSH Subsystem memory corruptionlow🔒---
106953Open Ticket Request System access control [CVE-2017-14635]medium🔒--🔒
106952libsndfile double64.c double64_init divide by zerolow🔒--🔒
106951Xiph.Org libvorbis mapping0.c mapping0_forward out-of-bounds readmedium🔒--🔒
106950Xiph.Org libvorbis info.c vorbis_analysis_headerout memory corruptionmedium🔒--🔒
106949sam2p in_pcx.cpp pcxLoadRaster memory corruptionmedium🔒--🔒
106948sam2p in_pcx.cpp pcxLoadImage24 integer overflowmedium🔒--🔒
106947sam2p in_xpm.cpp in_xpm_reader integer overflowmedium🔒--🔒
106946xloadimage in_pcx.cpp pcxLoadImage24 memory corruptionmedium🔒--🔒
106945ImageMagick sixel.c sixel_decode null pointer dereferencelow🔒--🔒
106944ImageMagick sixel.c sixel_output_create null pointer dereferencelow🔒--🔒
106943ImageMagick ps.c PostscriptDelegateMessage null pointer dereferencelow🔒--🔒
106942libsndfile ulaw.c d2ulaw_array out-of-bounds readmedium🔒--🔒
106941libsndfile alaw.c d2alaw_array out-of-bounds readmedium🔒--🔒
106940Xiph.Org libvorbis MP4 File psy.c bark_noise_hybridmp memory corruptionlow🔒--🔒
106939Centra UCS Central Software CLI input validation [CVE-2017-12255]low🔒---
106938Cisco Unified Intelligence Center Web Interface DOM-Based cross site scriptinglow🔒---
106937Cisco Unified Intelligence Center cross-site request forgerylow🔒---
106936Cisco FindIT Network Discovery Utility untrusted search pathlow🔒---
106935Cisco Wide Area Application Services resource management [CVE-2017-12250]low🔒---
106934Cisco Unified Intelligence Center Web Interface cross site scriptinglow🔒---
106933Cisco Small Business SPA300 IP Fragment resource management [CVE-2017-12219]low🔒---
106932Cisco Email Security Appliance Content Filter input validationlow🔒--🔒
106931Cisco Unified Customer Voice Portal OAMP Reset access controlmedium🔒---
106930Linux Kernel nl80211.c nl80211_set_rekey_data null pointer dereferencelow🔒--🔒
106929Google Android Qualcomm access control [CVE-2017-11041]medium🔒---
106928Google Android Qualcomm information disclosure [CVE-2017-11040]medium🔒---
106927Google Android Qualcomm information disclosure [CVE-2017-11002]medium🔒---
106926Google Android Qualcomm information disclosure [CVE-2017-11001]medium🔒---
106925Google Android Qualcomm access control [CVE-2017-11000]medium🔒---
106924Google Android Qualcomm access control [CVE-2017-10999]medium🔒---
106923Google Android Qualcomm audio_aio_ion_lookup_vaddr access controlmedium🔒---
106922Google Android Qualcomm Kernel Memory access controlmedium🔒---
106921Google Android Qualcomm c_show information disclosuremedium🔒---
106920chef Knife Bootstrap Command messages Private Key information disclosurelow🔒---
106919FreeIPA ipa-kra-install kra-agent.pem information disclosurelow🔒---
106918IPython contents cross site scriptinglow🔒--🔒
106917NodeBB cross site scripting [CVE-2015-3296]low🔒---
106916Kallithea cross-site request forgery [CVE-2015-0276]low🔒---
106915ldap.v2 credentials management [CVE-2017-14623]medium🔒---
106914Portus typeahead cross site scripting [CVE-2017-14621]low🔒---
106913phpMyFAQ Config Module cross site scripting [CVE-2017-14619]low🔒--🔒
106912phpMyFAQ Faq.php cross site scriptinglow🔒--🔒
106911Poppler Stream.cc ImageStream Floating Point input validationlow🔒--🔒
106910Watchguard Firewall XML-RPC Interface resource consumption [CVE-2017-14616]low🔒---
106909Watchguard Firewall XML-RPC Interface cross site scripting [CVE-2017-14615]low🔒---
106908Bareos bareos-dir/bareos-fd/bareos-sd/bareos-core access controllow🔒---
106907Kannel Server Daemon access control [CVE-2017-14609]low🔒---
106906Joomla CMS LDAP Authentication Password ldap injectionlow🔒--🔒
106905Joomla CMS information disclosure [CVE-2017-14595]medium🔒--🔒
106904Good Technology Enterprise Signature Protection insufficient verification of data authenticitymedium🔒---
106903iTerm2 DNS Query Password information disclosurelow🔒---
106902ZCMS JavaServer Pages Content Management System cross site scriptinglow🔒---
106901libpgf Decoder.cpp use after freemedium🔒--🔒
106900Joomla CMS redirect [CVE-2015-5608]medium🔒--🔒
106899SOGo cross-site request forgery [CVE-2015-5395]low🔒---
106898IPython cross site scripting [CVE-2015-4707]low🔒--🔒
106897Open Litespeed use after free [CVE-2015-3890]medium🔒---
106896node/URONode Bandwidth Consumption resource management [CVE-2015-2927]low🔒---
106895Simple Ads Manager Plugin information disclosure [CVE-2015-2826]low🔒---
106894Ember.js cross site scripting [CVE-2015-1866]low🔒---
106893Coreutils fts.c File race conditionlow🔒---
106892IBM Security SiteProtector System access control [CVE-2015-0162]low🔒---
106891Magento E-Commerce Platform cross site scripting [CVE-2014-9758]low🔒---
106890Mirion DMC 3000 Transmitter Module Key hard-coded credentialsmedium🔒---
106889Mirion DMC 3000 Transmitter Module inadequate encryption [CVE-2017-9645]medium🔒---
106888ARM Trusted Firmware BL1 FWU SMC integer overflow [CVE-2017-9607]medium🔒---
106887BE126 WiFI Repeater Telnet Service hard-coded credentials [CVE-2017-8772]medium🔒---
106886BE126 WiFI Repeater Telnet Service hard-coded credentials [CVE-2017-8771]medium🔒---
106885BE126 WiFI Repeater information disclosure [CVE-2017-8770]low🔒---
106884Rockwell MicroLogix 1100 PCCC Packet input validation [CVE-2017-7924]low🔒---
106883LibRaw dcraw.c kodak_65000_load_raw out-of-bounds readmedium🔒--🔒
106882ImageMagick tiff.c ReadTIFFImage out-of-bounds readmedium🔒--🔒
106881GNOME Nautilus trusted File input validationmedium🔒--🔒
106880YADIFA DNS Packet Parser resource consumption [CVE-2017-14339]low🔒--🔒
106879Perl Regular Expression memory corruption [CVE-2017-12883]medium🔒--🔒
106878Perl Regular Expression memory corruption [CVE-2017-12837]medium🔒--🔒
106877Apache Struts Freemarker Tag input validation [CVE-2017-12611]medium🔒--🔒
106876Linux Kernel Performance Monitor sys_regs.c access_pmu_evcntr input validationlow🔒---
106875Apache Struts URL Validator input validation [CVE-2016-8738]low🔒--🔒
106874Apache Struts Convention Plugin path traversal [CVE-2016-6795]high🔒--🔒
106873Huawei P8 information disclosure [CVE-2015-8224]low🔒---
106872IPython REST API cross-site request forgery [CVE-2015-5607]low🔒--🔒
106871Red Hat Feedhenry Enterprise Mobile Application Platform File Download Reflected input validationlow🔒---
106870FreeIPA input validation [CVE-2015-5179]medium🔒---
106869Polycom RealPresence Resource Manager scripts access controllow🔒---
106868Polycom RealPresence Resource Manager FileDownload credentials managementlow🔒---
106867Polycom RealPresence Resource Manager Session Identifier access controllow🔒---
106866Polycom RealPresence Resource Manager JConfigManager Path information disclosurelow🔒---
106865Polycom RealPresence Resource Manager Password credentials managementmedium🔒---
106864Helpdesk Pro Plugin ini File injection [CVE-2015-4075]medium🔒---
106863Helpdesk Pro Plugin ticket.download_attachment path traversallow🔒---
106862Helpdesk Pro Plugin sql injection [CVE-2015-4073]medium🔒---
106861Helpdesk Pro Plugin cross site scripting [CVE-2015-4072]low🔒---
106860Ubuntu Linux URLRequestDelegatedJob use after freemedium🔒--🔒
106859CodeIgniter mcrypt Extension cryptographic issues [CVE-2014-8686]medium🔒---
106858CodeIgniter/Kohana Session Cookie cryptographic issues [CVE-2014-8684]medium🔒---
106857Astaro Security Gateway index.plx input validationmedium🔒---
106856Pragyan CMS admin.lib.php sql injection [CVE-2017-14601]medium🔒---
106855Pragyan CMS admin.lib.php sql injection [CVE-2017-14600]medium🔒---
106854AfterLogic Webmail/Aurora ajax.php cross site scriptinglow🔒---
106853SAP NetWeaver AS JAVA Host Control Web Service resource consumptionlow🔒---
106852NetMechanica NetDecision Winring0x32.sys access control [CVE-2017-14311]low🔒---
106851Kaltura Signature getUserzoneCookie hard-coded credentialsmedium🔒---
106850Kultura bigRedButton.php cross site scriptinglow🔒---
106849Kaltura Admin Panel code injection [CVE-2017-14141]medium🔒---
106848Ruby OpenSSL ASN1 memory corruptionlow🔒--🔒
106847Apache Tomcat VirtualDirContext Source information disclosurelow🔒--🔒
106846Apache Tomcat HTTP PUT Method unrestricted upload [CVE-2017-12615]medium🔒--🔒
106845ZXR10 1800-2S path traversal [CVE-2017-10931]low🔒---
106844ZXR10 1800-2S Password access control [CVE-2017-10930]low🔒---
106843Ruby WEBrick Library improper authentication [CVE-2017-10784]medium🔒--🔒
106842QNAP NAS medialibrary command injection [CVE-2017-10700]medium🔒---
106841Red Hat Enterprise Linux UEFI Secure Boot 7pk security [CVE-2015-7837]medium🔒--🔒
106840WP Fastest Cache Plugin admin.php addCacheTimeout cross-site request forgerylow🔒---
106839Pydio cross site scripting [CVE-2015-3432]low🔒---
106838Pydio os command injection [CVE-2015-3431]medium🔒---
106837Dovecot ssl-proxy-openssl.c ssl-proxy-opensslc certificate validationlow🔒--🔒
106836vBulletin Private Message input validation [CVE-2015-3419]medium🔒---
106835Floating Social Bar Plugin Service Order cross site scriptinglow🔒---
106834Kallithea Administration Page cross site scripting [CVE-2015-1864]low🔒---
106833389 Directory Server Access Restriction access control [CVE-2015-1854]medium🔒--🔒
106832Red Hat JBoss Enterprise Application Platform AdvancedLdapLodinMogule information disclosurelow🔒---
106831Cisco Cloud Web Security Filter memory corruption [CVE-2015-0689]medium🔒---
106830Netsweeper Client Filter Admin Portal improper authenticationmedium🔒---
106829Netsweeper Deny Page information disclosure [CVE-2014-9616]low🔒---
106828Netsweeper quarantine_disable.php access controlmedium🔒---
106827eDeploy information disclosure [CVE-2014-8174]medium🔒---
106826IBM Curam Social Program Management cross site scripting [CVE-2014-6191]low🔒---
106825LANDesk Management Suite Admin Interface sm_actionfrm.asp input validationmedium🔒---
106824Solr Kerberos Plugin improper authentication [CVE-2017-9803]medium🔒--🔒
106823F5 BIG-IP TMM access control [CVE-2017-6147]low🔒--🔒
106822XnView Classic JB2 File memory corruption [CVE-2017-14580]medium🔒---
106821STDU Viewer JB2 File memory corruption [CVE-2017-14579]medium🔒---
106820IrfanView ANI File memory corruption [CVE-2017-14578]medium🔒---
106819STDU Viewer xps File memory corruption [CVE-2017-14577]medium🔒---
106818STDU Viewer xps File memory corruption [CVE-2017-14576]medium🔒---
106817STDU Viewer xps File memory corruption [CVE-2017-14575]medium🔒---
106816STDU Viewer xps File memory corruption [CVE-2017-14574]medium🔒---
106815STDU Viewer xps File memory corruption [CVE-2017-14573]medium🔒---
106814STDU Viewer xps File memory corruption [CVE-2017-14572]medium🔒---
106813STDU Viewer xps File memory corruption [CVE-2017-14571]medium🔒---
106812STDU Viewer xps File memory corruption [CVE-2017-14570]medium🔒---
106811STDU Viewer xps File memory corruption [CVE-2017-14569]medium🔒---
106810STDU Viewer xps File memory corruption [CVE-2017-14568]medium🔒---
106809STDU Viewer xps File memory corruption [CVE-2017-14567]medium🔒---
106808STDU Viewer xps File memory corruption [CVE-2017-14566]medium🔒---
106807STDU Viewer xps File memory corruption [CVE-2017-14565]medium🔒---
106806STDU Viewer xps File memory corruption [CVE-2017-14564]medium🔒---
106805STDU Viewer xps File memory corruption [CVE-2017-14563]medium🔒---
106804STDU Viewer xps File memory corruption [CVE-2017-14562]medium🔒---
106803STDU Viewer xps File memory corruption [CVE-2017-14561]medium🔒---
106802STDU Viewer xps File memory corruption [CVE-2017-14560]medium🔒---
106801STDU Viewer xps File memory corruption [CVE-2017-14559]medium🔒---
106800STDU Viewer djvu File memory corruption [CVE-2017-14558]medium🔒---
106799STDU Viewer djvu File memory corruption [CVE-2017-14557]medium🔒---
106798STDU Viewer djvu File memory corruption [CVE-2017-14556]medium🔒---
106797STDU Viewer djvu File memory corruption [CVE-2017-14555]medium🔒---
106796STDU Viewer djvu File memory corruption [CVE-2017-14554]medium🔒---
106795STDU Viewer djvu File memory corruption [CVE-2017-14553]medium🔒---
106794STDU Viewer djvu File memory corruption [CVE-2017-14552]medium🔒---
106793STDU Viewer djvu File memory corruption [CVE-2017-14551]medium🔒---
106792STDU Viewer djvu File memory corruption [CVE-2017-14550]medium🔒---
106791STDU Viewer djvu File memory corruption [CVE-2017-14549]medium🔒---
106790STDU Viewer djvu File memory corruption [CVE-2017-14548]medium🔒---
106789STDU Viewer Mobi File memory corruption [CVE-2017-14547]medium🔒---
106788STDU Viewer EPUB File memory corruption [CVE-2017-14546]medium🔒---
106787STDU Viewer EPUB File memory corruption [CVE-2017-14545]medium🔒---
106786STDU Viewer EPUB File memory corruption [CVE-2017-14544]medium🔒---
106785STDU Viewer EPUB File memory corruption [CVE-2017-14543]low🔒---
106784STDU Viewer EPUB File memory corruption [CVE-2017-14542]medium🔒---
106783XnView Classic SVG File memory corruption [CVE-2017-14541]medium🔒---
106782IrfanView SVG File memory corruption [CVE-2017-14540]medium🔒---
106781IrfanView SVG File memory corruption [CVE-2017-14539]medium🔒---
106780XnView Classic JB2 File memory corruption [CVE-2017-14538]medium🔒---
106779Tor Log File rendservice.c rend_service_intro_established log filelow🔒--🔒
106778Twitter Client Server Certificate Validator settings.json certificate validationmedium🔒---
106777Apache HTTP Server Limit Directive ap_limit_section use after freelow🔒--🔒
106776IBM Security Identity Manager cross-site request forgery [CVE-2014-6106]low🔒---
106775OpenWebif ipkg.py IpkgController access controlmedium🔒---
106774NexusPHP location.php cross site scriptinglow🔒---
106773ImageMagick mat.c ReadMATImage memory corruptionlow🔒--🔒
106772ImageMagick tiff.c TIFFIgnoreTags null pointer dereferencelow🔒--🔒
106771ImageMagick sun.c ReadSUNImage resource managementlow🔒--🔒
106770Job Manager Plugin cross-site request forgery [CVE-2017-14530]low🔒---
106769GNU binutils libbfd peXXigen.c bfd_getl16 memory corruptionmedium🔒--🔒
106768ImageMagick tiff.c TIFFSetProfiles use after freelow🔒---
106767Moodle Course Report information disclosure [CVE-2017-12157]low🔒--🔒
106766Moodle Contact Form cross site scripting [CVE-2017-12156]low🔒--🔒
106765Poppler PDF File Splash.cc scaleImageYuXd Floating Point input validationlow🔒--🔒
106764Poppler Object.h streamGetChar memory corruptionlow🔒--🔒
106763Poppler PDF Document Splash.cc isImageInterpolationRequired input validationlow🔒--🔒
106762Poppler PDF Document XRef.cc parseEntry null pointer dereferencelow🔒--🔒
106761Tenda W15E memory corruption [CVE-2017-14515]medium🔒---
106760Tenda W15E path traversal [CVE-2017-14514]low🔒---
106759MetInfo physical.php path traversallow🔒---
106758NexusPHP forummanage.php sql injectionmedium🔒---
106757SAP E-Recruiting Email Confirmation input validation [CVE-2017-14511]medium🔒---
106756SugarCRM cross site scripting [CVE-2017-14510]low🔒--🔒
106755SugarCRM Remote File Inclusion input validation [CVE-2017-14509]medium🔒--🔒
106754SugarCRM Documents/Emails DetailView.php sql injectionmedium🔒--🔒
106753ImageMagick drawing-wand.c DrawGetStrokeDashArray null pointer dereferencelow🔒--🔒
106752GraphicsMagick XV 332 pnm.c ReadPNMImage null pointer dereferencelow🔒--🔒
106751libarchive LHA Archive archive_read_support_format_lha.c lha_read_data_none out-of-bounds readmedium🔒--🔒
106750libarchive RAR Archive archive_read_support_format_rar.c out-of-bounds readmedium🔒--🔒
106749libarchive archive_read_support_format_iso9660.c out-of-bounds readmedium🔒--🔒
106748iBall Baton ADSL2+ Home Router info.cgi credentials managementmedium🔒---
106747UStar WA3002G4 info.cgi credentials managementmedium🔒---
106746EMC Data Protection Advisor hard-coded credentials [CVE-2017-8013]medium🔒--🔒
106745newsbeuter pb_controller.cpp playback os command injectionmedium🔒--🔒
106744Microsoft Edge Chakra Javascript Engine access control [CVE-2017-11767]medium🔒---
106743TerraMaster TOS GetTest.php command injectionmedium🔒---
106742VMware vCenter Server Stored cross site scripting [CVE-2017-4926]low🔒--🔒
106741VMware ESXi/Workstation/Fusion RPC Request null pointer dereferencemedium🔒--🔒
106740VMware ESXi/Workstation/Fusion SVGA Device out-of-bounds writehigh🔒--🔒
106739puppetlabs-apache 7pk security [CVE-2017-2299]medium🔒---
106738SilverStripe CMS SVG Document add cross site scriptinglow🔒---
106737Linux Kernel af_packet.c tpacket_rcv memory corruptionlow🔒--🔒
106736Linux Kernel scsi_transport_iscsi.c iscsi_if_rx input validationlow🔒--🔒
106735Gentoo sci-mathematics-gimps access control [CVE-2017-14484]low🔒--🔒
106734Gentoo dev-python-flower flower.initd access controllow🔒---
106733Linux Kernel xfs_linux.h XFS_IS_REALTIME_INODE null pointer dereferencelow🔒--🔒
106732i-filter untrusted search path [CVE-2017-10860]low🔒---
106731i-filter untrusted search path [CVE-2017-10859]low🔒---
106730i-filter untrusted search path [CVE-2017-10858]low🔒---
106729SEIL-X/SEIL-B1/SEIL-x86/SEIL-BPV input validation [CVE-2017-10856]low🔒---
106728FENCE-Explorer untrusted search path [CVE-2017-10855]low🔒---
106727Wi-Fi STATION L-02F Access Restriction access control [CVE-2017-10846]medium🔒---
106726Wi-Fi STATION L-02F access control [CVE-2017-10845]high🔒---
106725CG-WLR300NM memory corruption [CVE-2017-10814]medium🔒---
106724CG-WLR300NM os command injection [CVE-2017-10813]medium🔒---
106723Ruby sprintf format stringlow🔒--🔒
106722Google Android IAudioPolicyService.cpp integer overflowlow🔒---
106721IBM Business Process Manager Access Restriction access controlmedium🔒---
106720Apache Wicket CryptoMapper cryptographic issues [CVE-2014-7808]medium🔒---
106719Ansible Vault yaml Loader code injection [CVE-2017-2809]medium🔒---
106718IBM Jazz Reporting Service Lifecycle Query Engine information disclosurelow🔒---
106717GNU Emacs Email enriched.el command injectionmedium🔒--🔒
106716Fastly CDN Module information disclosure [CVE-2017-13761]low🔒---
106715QNAP QTS Media Library access control [CVE-2017-13067]medium🔒---
106714Pagure improper authorization [CVE-2017-1002151]low🔒---
106713python-fedora CSRF Protection redirect [CVE-2017-1002150]medium🔒---
106712Azure Kubernetes URI Persistent information disclosuremedium🔒---
106711wordpress-gallery-transformation gallery.php sql injectionmedium🔒---
106710rk-responsive-contact-form rk_user_list.php sql injectionmedium🔒---
106709Event Expresso Free edit_event_category sql injectionmedium🔒---
106708plugin add-edit-delete-listing-for-member-module sql injectionmedium🔒---
106707Kind Editor File Upload upload_json.php access controlmedium🔒---
106706Easy Team Manager easy_team_manager_desc_edit.php sql injectionmedium🔒---
106705surveys Plugin questions.php sql injectionmedium🔒---
106704surveys Plugin individual_responses.php sql injectionmedium🔒---
106703surveys Plugin survey_form.php sql injectionmedium🔒---
106702eventr Plugin edit.php Blind sql injectionmedium🔒---
106701eventr Plugin edit.php Blind sql injectionmedium🔒---
106700gift-certificate-creator gc-list.php Stored cross site scriptinglow🔒---
106699flickr-picture-backup Permission flickr-picture-download.php unrestricted uploadmedium🔒---
106698image-gallery-with-slideshow admin_setting.php Blind sql injectionmedium🔒---
106697image-gallery-with-slideshow admin_setting.php sql injectionmedium🔒---
106696image-gallery-with-slideshow admin_setting.php Blind sql injectionmedium🔒---
106695image-gallery-with-slideshow admin_setting.php input validationmedium🔒---
106694image-gallery-with-slideshow images Stored cross site scriptinglow🔒---
106693Membership Simplified Plugin updateDB.php delete_media sql injectionmedium🔒---
106692Membership Simplified Plugin Update updateDB.php delete Blind sql injectionmedium🔒---
106691membership-simplified-for-oap-members-only File Download download.php unrestricted uploadmedium🔒---
106690DTracker Plugin save_mail.php improper authorizationmedium🔒---
106689DTracker Plugin save_contact.php improper authorizationmedium🔒---
106688DTracker Plugin delete.php input validationmedium🔒---
106687DTracker Plugin download.php input validationmedium🔒---
106686wp2android-turn-wp-site-into-android-app Invedion CMS Unlicensed unrestricted uploadmedium🔒---
106685webapp-builder Invedion CMS Unlicensed unrestricted uploadmedium🔒---
106684mobile-app-builder-by-wappress Invedion CMS Unlicensed unrestricted uploadmedium🔒---
106683mobile-friendly-app-builder-by-easytouch images.php unrestricted uploadmedium🔒---
106682Google Android Bluetooth information disclosure [CVE-2017-0785]low🔒---
106681Google Android Bluetooth information disclosure [CVE-2017-0783]low🔒---
106680Google Android Bluetooth access control [CVE-2017-0782]medium🔒---
106679Google Android Bluetooth access control [CVE-2017-0781]medium🔒---
106678Red Hat Enterprise Linux nfnetlink_log Kernel race conditionmedium🔒--🔒
106677Googlemaps Plugin plugin_googlemap2_proxy.php XML xml injectionmedium🔒---
106676GSTN Offline Utility Tool Permission winstart-server.vbs GSTN_offline_tool access controllow🔒---
106675tcpdump IPv6 Routing Header Parser print-rt6.c rt6_print memory corruptionmedium🔒--🔒
106674tcpdump IKEv2 Parser print-isakmp.c memory corruptionmedium🔒--🔒
106673tcpdump IKEv1 Parser print-isakmp.c ikev1_id_print memory corruptionmedium🔒--🔒
106672tcpdump OLSR Parser print-olsr.c olsr_print memory corruptionmedium🔒--🔒
106671tcpdump Cisco HDLC Parser print-chdlc.c chdlc_print memory corruptionmedium🔒--🔒
106670tcpdump ISO IS-IS Parser print-isoclns.c isis_print_is_reach_subtlv memory corruptionmedium🔒--🔒
106669tcpdump LLDP Parser print-lldp.c lldp_private_8023_print memory corruptionmedium🔒--🔒
106668tcpdump BGP Parser print-bgp.c decode_rt_routing_info memory corruptionmedium🔒--🔒
106667tcpdump CFM Parser print-cfm.c cfm_print memory corruptionmedium🔒--🔒
106666tcpdump RSVP Parser print-rsvp.c rsvp_obj_print memory corruptionmedium🔒--🔒
106665tcpdump RPKI-Router Parser print-rpki-rtr.c rpki_rtr_pdu_print memory corruptionmedium🔒--🔒
106664tcpdump Rx Protocol Parser print-rx.c ubik_print memory corruptionmedium🔒--🔒
106663tcpdump RSVP Parser print-rsvp.c rsvp_obj_print memory corruptionmedium🔒--🔒
106662tcpdump ISO ES-IS Parser print-isoclns.c esis_print memory corruptionmedium🔒--🔒
106661tcpdump BGP Parser print-bgp.c bgp_attr_print memory corruptionmedium🔒--🔒
106660tcpdump VQP Parser print-vqp.c vqp_print memory corruptionmedium🔒--🔒
106659tcpdump HNCP Parser print-hncp.c dhcpv4_print memory corruptionmedium🔒--🔒
106658tcpdump BGP Parser print-bgp.c decode_multicast_vpn memory corruptionmedium🔒--🔒
106657tcpdump HNCP Parser print-hncp.c dhcpv6_print memory corruptionmedium🔒--🔒
106656tcpdump ICMPv6 Parser print-icmp6.c icmp6_nodeinfo_print memory corruptionmedium🔒--🔒
106655tcpdump MPTCP Parser print-mptcp.c memory corruptionmedium🔒--🔒
106654tcpdump ISAKMP Parser print-isakmp.c memory corruptionmedium🔒--🔒
106653tcpdump PPP Parser print-ppp.c handle_mlppp memory corruptionmedium🔒--🔒
106652tcpdump IP Parser print-ip.c ip_printts memory corruptionmedium🔒--🔒
106651tcpdump OSPFv3 Parser print-ospf6.c ospf6_decode_v3 memory corruptionmedium🔒--🔒
106650tcpdump ISO IS-IS Parser print-isoclns.c isis_print_id memory corruptionmedium🔒--🔒
106649tcpdump PGM Parser print-pgm.c pgm_print memory corruptionmedium🔒--🔒
106648tcpdump VTP Parser print-vtp.c vtp_print memory corruptionmedium🔒--🔒
106647tcpdump RADIUS Parser print-radius.c print_attr_string memory corruptionmedium🔒--🔒
106646tcpdump IPv6 Fragmentation Header Parser print-frag6.c frag6_print memory corruptionmedium🔒--🔒
106645tcpdump PIM Parser print-pim.c memory corruptionmedium🔒--🔒
106644tcpdump PPP Parser print-ppp.c print_ccp_config_options memory corruptionmedium🔒--🔒
106643tcpdump BOOTP Parser print-bootp.c bootp_print memory corruptionmedium🔒--🔒
106642tcpdump LLDP Parser print-lldp.c lldp_mgmt_addr_tlv_print memory corruptionmedium🔒--🔒
106641tcpdump ISO IS-IS Parser print-isoclns.c memory corruptionmedium🔒--🔒
106640tcpdump IPv6 Mobility Parser print-mobility.c mobility_opt_print memory corruptionmedium🔒--🔒
106639tcpdump IPv6 Mobility Parser print-mobility.c mobility_opt_print memory corruptionmedium🔒--🔒
106638tcpdump IPv6 Mobility Parser print-mobility.c mobility_opt_print memory corruptionmedium🔒--🔒
106637tcpdump IP Parser print-ip.c ip_printroute memory corruptionmedium🔒--🔒
106636tcpdump ICMPv6 Parser print-icmp6.c icmp6_print memory corruptionmedium🔒--🔒
106635tcpdump VTP Parser print-vtp.c vtp_print memory corruptionmedium🔒--🔒
106634tcpdump PGM Parser print-pgm.c pgm_print memory corruptionmedium🔒--🔒
106633tcpdump PGM Parser print-pgm.c pgm_print memory corruptionmedium🔒--🔒
106632tcpdump DHCPv6 Parser print-dhcp6.c dhcp6opt_print memory corruptionmedium🔒--🔒
106631tcpdump ISO ES-IS Parser print-isoclns.c esis_print memory corruptionmedium🔒--🔒
106630tcpdump EAP Parser print-eap.c eap_print memory corruptionmedium🔒--🔒
106629tcpdump White Board Parser print-wb.c wb_prep memory corruptionmedium🔒--🔒
106628tcpdump ARP Parser print-arp.c memory corruptionmedium🔒--🔒
106627tcpdump ICMP Parser print-icmp.c icmp_print memory corruptionmedium🔒--🔒
106626tcpdump Protocol Parser util-print.c bittok2str_internal memory corruptionmedium🔒--🔒
106625tcpdump BEEP Parser print-beep.c l_strnstart memory corruptionmedium🔒--🔒
106624tcpdump IPv6 Mobility Parser print-mobility.c mobility_print memory corruptionmedium🔒--🔒
106623tcpdump IEEE 802.11 Parser print-802_11.c parse_elements memory corruptionmedium🔒--🔒
106622tcpdump Apple PKTAP Parser print-pktap.c pktap_if_print memory corruptionmedium🔒--🔒
106621tcpdump L2TP Parser print-l2tp.c memory corruptionmedium🔒--🔒
106620tcpdump NFS Parser print-nfs.c xid_map_enter memory corruptionmedium🔒--🔒
106619tcpdump Juniper Protocol Parser print-juniper.c juniper_parse_header memory corruptionmedium🔒--🔒
106618tcpdump LMP Parser print-lmp.c lmp_print memory corruptionmedium🔒--🔒
106617tcpdump AODV Parser print-aodv.c aodv_extension memory corruptionmedium🔒--🔒
106616tcpdump NFS Parser print-nfs.c nfs_printfh memory corruptionmedium🔒--🔒
106615tcpdump IEEE 802.15.4 Parser print-802_15_4.c ieee802_15_4_if_print memory corruptionmedium🔒--🔒
106614tcpdump IS-IS Parser print-isoclns.c isis_print memory corruptionmedium🔒--🔒
106613tcpdump IS-IS Parser print-isoclns.c isis_print_extd_ip_reach memory corruptionmedium🔒--🔒
106612tcpdump LLDP Parser print-lldp.c lldp_private_8021_print resource managementlow🔒--</