Latest CVE Feed

Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.

Latest Critical Actively Exploited Remotely Exploitable

6.1

MEDIUM

CVE-2017-20027

A vulnerability was found in HumHub up to 1.0.1 and classified as problematic. Affected by this issue is some unknown functionality. The manipulation leads to cross site scripting (DOM). The attack may be launched remotely. The exploit has been disclosed ...

Affected Products : humhub
Published: Jun. 09, 2022

Modified: Nov. 21, 2024
6.1

MEDIUM

CVE-2017-20026

A vulnerability has been found in HumHub up to 1.0.1 and classified as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to cross site scripting (Reflected). The attack can be launched remotely. The exploit ha...

Affected Products : humhub
Published: Jun. 09, 2022

Modified: Nov. 21, 2024
9.8

CRITICAL

CVE-2017-20025

A vulnerability was found in Solare Solar-Log 2.8.4-56/3.5.2-85. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component Flash Memory. The manipulation leads to privilege escalation. The attack can be ...

Affected Products : solar-log_250_firmware solar-log_300_firmware solar-log_500_firmware solar-log_800e_firmware solar-log_1000_firmware solar-log_1000_pm\+_firmware solar-log_1200_firmware solar-log_2000_firmware solar-log_250 solar-log_300 +6 more products
Published: Jun. 09, 2022

Modified: Nov. 21, 2024
7.5

HIGH

CVE-2017-20024

A vulnerability was found in Solare Solar-Log 2.8.4-56/3.5.2-85. It has been classified as problematic. Affected is an unknown function. The manipulation leads to denial of service. It is possible to launch the attack remotely. Upgrading to version 3.5.3-...

Affected Products : solar-log_250_firmware solar-log_300_firmware solar-log_500_firmware solar-log_800e_firmware solar-log_1000_firmware solar-log_1000_pm\+_firmware solar-log_1200_firmware solar-log_2000_firmware solar-log_250 solar-log_300 +6 more products
Published: Jun. 09, 2022

Modified: Nov. 21, 2024
9.8

CRITICAL

CVE-2017-20023

A vulnerability was found in Solare Solar-Log 2.8.4-56/3.5.2-85 and classified as critical. This issue affects some unknown processing of the component Network Config. The manipulation leads to privilege escalation. The attack may be initiated remotely. U...

Affected Products : solar-log_250_firmware solar-log_300_firmware solar-log_500_firmware solar-log_800e_firmware solar-log_1000_firmware solar-log_1000_pm\+_firmware solar-log_1200_firmware solar-log_2000_firmware solar-log_250 solar-log_300 +6 more products
Published: Jun. 09, 2022

Modified: Nov. 21, 2024
9.8

CRITICAL

CVE-2017-20021

A vulnerability, which was classified as critical, was found in Solare Solar-Log 2.8.4-56/3.5.2-85. This affects an unknown part of the component File Upload. The manipulation leads to privilege escalation. It is possible to initiate the attack remotely. ...

Affected Products : solar-log_250_firmware solar-log_300_firmware solar-log_500_firmware solar-log_800e_firmware solar-log_1000_firmware solar-log_1000_pm\+_firmware solar-log_1200_firmware solar-log_2000_firmware solar-log_250 solar-log_300 +6 more products
Published: Jun. 09, 2022

Modified: Nov. 21, 2024
8.8

HIGH

CVE-2017-20020

A vulnerability, which was classified as problematic, has been found in Solare Solar-Log 2.8.4-56/3.5.2-85. Affected by this issue is some unknown functionality. The manipulation leads to cross site request forgery. The attack may be launched remotely. Up...

Affected Products : solar-log_250_firmware solar-log_300_firmware solar-log_500_firmware solar-log_800e_firmware solar-log_1000_firmware solar-log_1000_pm\+_firmware solar-log_1200_firmware solar-log_2000_firmware solar-log_250 solar-log_300 +6 more products
Published: Jun. 09, 2022

Modified: Nov. 21, 2024
7.5

HIGH

CVE-2017-20019

A vulnerability classified as problematic was found in Solare Solar-Log 2.8.4-56/3.5.2-85. Affected by this vulnerability is an unknown functionality of the component Config Handler. The manipulation leads to information disclosure. The attack can be laun...

Affected Products : solar-log_250_firmware solar-log_300_firmware solar-log_500_firmware solar-log_800e_firmware solar-log_1000_firmware solar-log_1000_pm\+_firmware solar-log_1200_firmware solar-log_2000_firmware solar-log_250 solar-log_300 +6 more products
Published: Jun. 09, 2022

Modified: Nov. 21, 2024
7.8

HIGH

CVE-2017-20018

A vulnerability was found in XAMPP 7.1.1-0-VC14. It has been classified as problematic. Affected is an unknown function of the component Installer. The manipulation leads to privilege escalation. It is possible to launch the attack remotely....

Affected Products : xampp
Published: Jun. 09, 2022

Modified: Nov. 21, 2024
8.8

HIGH

CVE-2017-20017

A vulnerability, which was classified as critical, has been found in The Next Generation of Genealogy Sitebuilding up to 11.1.0. This issue affects some unknown processing of the file /timeline2.php. The manipulation of the argument primaryID leads to sql...

Affected Products : the_next_generation_of_genealogy_sitebuilding
Published: Jun. 08, 2022

Modified: Nov. 21, 2024
7.5

HIGH

CVE-2017-20016

A vulnerability has been found in WEKA INTEREST Security Scanner up to 1.8 and classified as problematic. This vulnerability affects unknown code of the component Portscan. The manipulation with an unknown input leads to denial of service. The attack can ...

Affected Products : interest_security_scanner
Published: Mar. 28, 2022

Modified: Nov. 21, 2024
5.5

MEDIUM

CVE-2017-20015

A vulnerability, which was classified as problematic, was found in WEKA INTEREST Security Scanner up to 1.8. This affects an unknown part of the component LAN Viewer. The manipulation with an unknown input leads to denial of service. Attacking locally is ...

Affected Products : interest_security_scanner
Published: Mar. 28, 2022

Modified: Nov. 21, 2024
5.5

MEDIUM

CVE-2017-20014

A vulnerability, which was classified as problematic, has been found in WEKA INTEREST Security Scanner up to 1.8. Affected by this issue is some unknown functionality of the component Webspider. The manipulation with an unknown input leads to denial of se...

Affected Products : interest_security_scanner
Published: Mar. 28, 2022

Modified: Nov. 21, 2024
5.5

MEDIUM

CVE-2017-20013

A vulnerability classified as problematic was found in WEKA INTEREST Security Scanner up to 1.8. Affected by this vulnerability is the Stresstest Configuration Handler. A manipulation leads to a local denial of service. The exploit has been disclosed to t...

Affected Products : interest_security_scanner
Published: Mar. 28, 2022

Modified: Nov. 21, 2024
5.5

MEDIUM

CVE-2017-20012

A vulnerability classified as problematic has been found in WEKA INTEREST Security Scanner up to 1.8. Affected is Stresstest Scheme Handler which leads to a denial of service. The attack needs to be approached locally. The exploit has been disclosed to th...

Affected Products : interest_security_scanner
Published: Mar. 28, 2022

Modified: Nov. 21, 2024
5.5

MEDIUM

CVE-2017-20011

A vulnerability was found in WEKA INTEREST Security Scanner 1.8. It has been rated as problematic. This issue affects some unknown processing of the component HTTP Handler. The manipulation with an unknown input leads to denial of service. It is possible ...

Affected Products : interest_security_scanner
Published: Mar. 28, 2022

Modified: Nov. 21, 2024
6.1

MEDIUM

CVE-2017-20008

The myCred WordPress plugin before 1.7.8 does not sanitise and escape the user parameter before outputting it back in the Points Log admin dashboard, leading to a Reflected Cross-Site Scripting...

Affected Products : mycred
Published: Nov. 29, 2021

Modified: Nov. 21, 2024
5.3

MEDIUM

CVE-2017-20007

Ingeteam INGEPAC DA AU AUC_1.13.0.28 (and before) web application allows access to a certain path that contains sensitive information that could be used by an attacker to execute more sophisticated attacks. An unauthenticated remote attacker with access t...

Affected Products : ingepac_da_au_firmware ingepac_da_au
Published: Oct. 25, 2021

Modified: Nov. 21, 2024
7.8

HIGH

CVE-2017-20006

UnRAR 5.6.1.2 and 5.6.1.3 has a heap-based buffer overflow in Unpack::CopyString (called from Unpack::Unpack5 and CmdExtract::ExtractCurrentFile)....

Affected Products : linux_kernel unrar
Published: Jul. 01, 2021

Modified: Nov. 21, 2024
9.8

CRITICAL

CVE-2017-20005

NGINX before 1.13.6 has a buffer overflow for years that exceed four digits, as demonstrated by a file with a modification date in 1969 that causes an integer overflow (or a false modification date far in the future), when encountered by the autoindex mod...

Affected Products : debian_linux nginx
Published: Jun. 06, 2021

Modified: Nov. 21, 2024

Showing 20 of 293330 Results

Browse by Apps

Latest CVE Feed

6.1

6.1

9.8

7.5

9.8

9.8

8.8

7.5

7.8

8.8

7.5

5.5

5.5

5.5

5.5

5.5

6.1

5.3

7.8

9.8

Theme Customizer

Layout

Vertical

Horizontal

Two Column

Color Scheme

Light

Dark

Layout Width

Fluid

Boxed

Layout Position

Topbar Color

Light

Dark

Sidebar Size

Default

Compact

Small (Icon View)

Small Hover View

Sidebar View

Default

Detached

Sidebar Color

Light

Dark

Gradient

Preloader

Enable

Disable