|
257311
|
7.5 |
HIGH
Network
|
phpmyadmin
|
phpmyadmin
|
phpMyAdmin 4.0, 4.4, and 4.6 are vulnerable to a DOS weakness in the table editing functionality
|
CWE-20
Improper Input Validation
|
CVE-2017-1000014
|
2024-11-21 12:03 |
2017-07-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257312
|
6.1 |
MEDIUM
Network
|
phpmyadmin
|
phpmyadmin
|
phpMyAdmin 4.0, 4.4, and 4.6 are vulnerable to an open redirect weakness
|
CWE-601
Open Redirect
|
CVE-2017-1000013
|
2024-11-21 12:03 |
2017-07-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257313
|
6.1 |
MEDIUM
Network
|
mysqldumper
|
mysqldumper
|
MySQL Dumper version 1.24 is vulnerable to stored XSS when displaying the data in the database to the user
|
CWE-79
Cross-site Scripting
|
CVE-2017-1000012
|
2024-11-21 12:03 |
2017-07-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257314
|
6.1 |
MEDIUM
Network
|
mywebsql
|
mywebsql
|
MyWebSQL version 3.6 is vulnerable to stored XSS in the database manager component resulting in account takeover or stealing of information
|
CWE-79
Cross-site Scripting
|
CVE-2017-1000011
|
2024-11-21 12:03 |
2017-07-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257315
|
7.8 |
HIGH
Local
|
audacityteam
|
audacity
|
Audacity 2.1.2 through 2.3.2 is vulnerable to Dll HIjacking in the avformat-55.dll resulting arbitrary code execution.
|
CWE-427
Uncontrolled Search Path Element
|
CVE-2017-1000010
|
2024-11-21 12:03 |
2017-07-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257316
|
9.8 |
CRITICAL
Network
|
akeneo
|
product_information_management
|
Akeneo PIM CE and EE <1.6.6, <1.5.15, <1.4.28 are vulnerable to shell injection in the mass edition, resulting in remote execution.
|
CWE-78
OS Command
|
CVE-2017-1000009
|
2024-11-21 12:03 |
2017-07-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257317
|
8.8 |
HIGH
Network
|
chyrp-lite_project
|
chyrp_lite
|
Chyrp Lite version 2016.04 is vulnerable to a CSRF in the user settings function allowing attackers to hijack the authentication of logged in users to modify account information, including their pass…
|
CWE-352
Origin Validation Error
|
CVE-2017-1000008
|
2024-11-21 12:03 |
2017-07-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257318
|
5.9 |
MEDIUM
Network
|
twistedmatrix
|
txaws
|
txAWS (all current versions) fail to perform complete certificate verification resulting in vulnerability to MitM attacks and information disclosure.
|
CWE-200
CWE-295
Information Exposure
Improper Certificate Validation
|
CVE-2017-1000007
|
2024-11-21 12:03 |
2017-07-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257319
|
6.1 |
MEDIUM
Network
|
plotly
|
plotly.js
|
Plotly, Inc. plotly.js versions prior to 1.16.0 are vulnerable to an XSS issue.
|
CWE-79
Cross-site Scripting
|
CVE-2017-1000006
|
2024-11-21 12:03 |
2017-07-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257320
|
6.1 |
MEDIUM
Network
|
phpminiadmin_project
|
phpminiadmin
|
PHPMiniAdmin version 1.9.160630 is vulnerable to stored XSS in the name of databases, tables and columns resulting in potential account takeover and scraping of data (stealing data).
|
CWE-79
Cross-site Scripting
|
CVE-2017-1000005
|
2024-11-21 12:03 |
2017-07-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
