Skip to main content
CVE-2017-5954 CRITICAL POC PATCH Act Now

An issue was discovered in the serialize-to-js package 0.5.0 for Node.js. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Deserialization Node.js RCE Serialize To Js
NVD GitHub
CVSS 3.0
9.8
EPSS
1.7%
CVE-2016-8709 HIGH POC This Week

A remote out of bound write / memory corruption vulnerability exists in the PDF parsing functionality of Nitro Pro 10. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Memory Corruption Nitro Pdf Pro
NVD
CVSS 3.1
7.8
EPSS
0.0%
CVE-2017-5945 MEDIUM POC This Month

An issue was discovered in the PoodLL Filter plugin through 3.0.20 for Moodle. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS PHP Moodle Filter Poodll
NVD GitHub
CVSS 3.0
6.1
EPSS
0.3%
CVE-2016-10216 MEDIUM POC This Month

An issue was discovered in IT ITems DataBase (ITDB) through 1.23. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS PHP It Items Database
NVD GitHub
CVSS 3.0
6.1
EPSS
0.2%
CVE-2017-5942 MEDIUM POC This Month

An issue was discovered in the WP Mail plugin before 1.2 for WordPress. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS WordPress Wp Mail
NVD
CVSS 3.1
6.1
EPSS
0.2%
CVE-2017-5953 CRITICAL PATCH Act Now

vim before patch 8.0.0322 does not properly validate values for tree length when handling a spell file, which may result in an integer overflow at a memory allocation site and a resultant buffer. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Integer Overflow Buffer Overflow Vim
NVD GitHub
CVSS 3.0
9.8
EPSS
0.8%
CVE-2016-8711 HIGH This Week

A potential remote code execution vulnerability exists in the PDF parsing functionality of Nitro Pro 10. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

RCE Nitro Pdf Pro
NVD
CVSS 3.1
7.8
EPSS
0.0%
CVE-2016-8713 HIGH This Week

A remote out of bound write / memory corruption vulnerability exists in the PDF parsing functionality of Nitro Pro 10.5.9.9. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Memory Corruption Nitro Pdf Pro
NVD
CVSS 3.1
7.8
EPSS
0.0%
CVE-2016-10215 MEDIUM This Month

An issue was discovered in Fastspot BigTree bigtree-form-builder before 1.2. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS PHP Bigtree Form Builder
NVD GitHub
CVSS 3.0
6.1
EPSS
0.2%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy