search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2014-07-07 2014-07-07 2014-07-25 VU#960193 6.0 AVG Safeguard and Secure Search ActiveX controls provides insecure methods
2014-07-24 2014-07-24 2014-07-25 VU#565580 2.9 BulletProof FTP Client 2010 is vulnerable to a stack-based buffer overflow
2013-11-07 2013-10-28 2014-07-24 VU#596990 0.8 IBM Tivoli Federated Identity Manager and IBM Tivoli Federated Identity Manager Business Gateway contain a URL redirection vulnerability
2013-12-05 2013-12-03 2014-07-24 VU#268662 0.8 NagiosQL 3.2 Service Pack 2 contains a reflected cross-site scripting vulnerability
2012-02-03 2012-02-01 2014-07-24 VU#732115 0.9 Project Open cross-site scripting vulnerability
2014-01-23 2014-01-17 2014-07-24 VU#869702 1.4 Avanset Visual CertExam Manager 3.3 SQL injection vulnerability
2014-04-25 2014-04-24 2014-07-24 VU#719225 6.9 Apache Struts2 ClassLoader allows access to class properties via request parameters
2014-04-11 2014-03-05 2014-07-24 VU#901156 1.3 PivotX 2.3.8 contains multiple vulnerabilities
2012-12-17 2012-12-17 2014-07-24 VU#519137 3.2 Adobe Shockwave player installs Xtras without prompting
2012-12-17 2012-12-17 2014-07-24 VU#546769 3.2 Adobe Shockwave player vulnerable to downgrading
2013-04-03 2013-04-03 2014-07-24 VU#418923 1.1 C2 WebResource web interface XSS vulnerability
2012-01-27 2012-01-17 2014-07-24 VU#470151 5.6 Linux Kernel local privilege escalation via SUID /proc/pid/mem write
2012-03-14 2012-03-14 2014-07-24 VU#339177 5.5 Cisco AnyConnect Clientless SSL VPN Portforwarder ActiveX control buffer overflow
2014-07-24 2014-07-24 2014-07-24 VU#669804 0 TestRail cross-site scripting vulnerability
2014-07-23 2014-07-23 2014-07-23 VU#162308 1.3 Resin Pro improperly performs Unicode transformations

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis