Skip to main content
CVE-2017-5963 MEDIUM POC This Month

An issue was discovered in caddy (for TYPO3) before 7.2.10. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS PHP Caddy
NVD
CVSS 3.0
6.1
EPSS
0.2%
CVE-2017-5964 MEDIUM POC This Month

An issue was discovered in Emoncms through 9.8.0. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS PHP Emoncms
NVD GitHub
CVSS 3.1
6.1
EPSS
0.2%
CVE-2017-5961 MEDIUM POC This Month

An issue was discovered in ionize through 1.0.8. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS PHP Ionize
NVD GitHub
CVSS 3.0
6.1
EPSS
0.2%
CVE-2017-5960 MEDIUM POC This Month

An issue was discovered in Phalcon Eye through 0.4.1. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS PHP Phalconeye
NVD GitHub
CVSS 3.0
6.1
EPSS
0.2%
CVE-2017-3302 HIGH PATCH This Week

Crash in libmysqlclient.so in Oracle MySQL before 5.6.21 and 5.7.x before 5.7.5 and MariaDB through 5.5.54, 10.0.x through 10.0.29, 10.1.x through 10.1.21, and 10.2.x through 10.2.3. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Use After Free vulnerability could allow attackers to access freed memory to execute arbitrary code or crash the application.

Denial Of Service Memory Corruption Use After Free Oracle MySQL +7
NVD
CVSS 3.0
7.5
EPSS
2.5%
CVE-2017-5962 MEDIUM PATCH This Month

An issue was discovered in contexts_wurfl (for TYPO3) before 0.4.2. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Cross-Site Scripting (XSS) vulnerability could allow attackers to inject malicious scripts into web pages viewed by other users.

XSS PHP Contexts Wurfl
NVD
CVSS 3.0
6.1
EPSS
0.2%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy