Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sql server 2017 vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2017-3221
Blind SQL injection in Inmarsat AmosConnect 8 login form allows remote malicious users to access user credentials, including user names and passwords.
Inmarsat Amosconnect 8 8.2.1
Inmarsat Amosconnect 8 8.2.2
Inmarsat Amosconnect 8 8.0.2
Inmarsat Amosconnect 8 8.2.0
Inmarsat Amosconnect 8 8.0
Inmarsat Amosconnect 8 8.3.0
Inmarsat Amosconnect 8 8.3.1
Inmarsat Amosconnect 8 8.0.1
Inmarsat Amosconnect 8 8.4.0
Inmarsat Amosconnect 8 8.4.0.1
5
CVSSv2
CVE-2017-9066
In WordPress prior to 4.7.5, there is insufficient redirect validation in the HTTP class, leading to SSRF.
Wordpress Wordpress
Debian Debian Linux 9.0
Debian Debian Linux 8.0
5
CVSSv2
CVE-2017-5598
An issue exists in eClinicalWorks healow@work 8.0 build 8. This is a blind SQL injection within the EmployeePortalServlet, which can be exploited by un-authenticated users via an HTTP POST request and which can be used to dump database data out to a malicious server, using an out...
Eclinicalworks Patient Portal 8.0
4.3
CVSSv2
CVE-2019-1332
A cross-site scripting (XSS) vulnerability exists when Microsoft SQL Server Reporting Services (SSRS) does not properly sanitize a specially-crafted web request to an affected SSRS server, aka 'Microsoft SQL Server Reporting Services XSS Vulnerability'.
Microsoft Power Bi Report Server -
Microsoft Sql Server 2017 Reporting Services -
Microsoft Sql Server 2019 Reporting Services -
1 Github repository
1 Article
4
CVSSv2
CVE-2020-1044
<p>A security feature bypass vulnerability exists in SQL Server Reporting Services (SSRS) when the server improperly validates attachments uploaded to reports. An attacker who successfully exploited this vulnerability could upload file types that were disallowed by an admin...
Microsoft Sql Server Reporting Services 2017
Microsoft Sql Server Reporting Services 2019
4
CVSSv2
CVE-2019-0819
An information disclosure vulnerability exists in Microsoft SQL Server Analysis Services when it improperly enforces metadata permissions, aka 'Microsoft SQL Server Analysis Services Information Disclosure Vulnerability'.
Microsoft Sql Server 2017
1 Article
4
CVSSv2
CVE-2017-5527
TIBCO Spotfire Server 7.0.X prior to 7.0.2, 7.5.x prior to 7.5.1, 7.6.x prior to 7.6.1, 7.7.x prior to 7.7.1, and 7.8.x prior to 7.8.1 and Spotfire Analytics Platform for AWS Marketplace 7.8.0 and previous versions contain multiple vulnerabilities which may allow authorized users...
Tibco Spotfire Server 7.8.0
Tibco Spotfire Server 7.5.0
Tibco Spotfire Server 7.6.0
Tibco Spotfire Server 7.7.0
Tibco Spotfire Analytics Platform For Aws
Tibco Spotfire Server 7.0.1
Tibco Spotfire Server 7.0.0
3.7
CVSSv2
CVE-2017-3486
Vulnerability in the SQL*Plus component of Oracle Database Server. Supported versions that are affected are 11.2.0.4 and 12.1.0.2. Difficult to exploit vulnerability allows high privileged attacker having Local Logon privilege with logon to the infrastructure where SQL*Plus execu...
Oracle Sql Plus 12.1.0.2
Oracle Sql Plus 11.2.0.4
3.5
CVSSv2
CVE-2017-17092
wp-includes/functions.php in WordPress prior to 4.9.1 does not require the unfiltered_html capability for upload of .js files, which might allow remote malicious users to conduct XSS attacks via a crafted file.
Wordpress Wordpress
Debian Debian Linux 7.0
Debian Debian Linux 9.0
Debian Debian Linux 8.0
3.5
CVSSv2
CVE-2017-17093
wp-includes/general-template.php in WordPress prior to 4.9.1 does not properly restrict the lang attribute of an HTML element, which might allow malicious users to conduct XSS attacks via the language setting of a site.
Wordpress Wordpress
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Debian Debian Linux 7.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7028
memory leak
log injection
CVE-2024-3400
CVE-2022-48695
CVE-2022-48675
CVE-2024-34487
CVE-2024-33792
spoof
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »