Vulnerabilities > Critical

DATE	CVE	VULNERABILITY TITLE	RISK
2017-12-27	CVE-2017-9944	Improper Privilege Management vulnerability in Siemens 7KT Pac1200 Data Manager Firmware A vulnerability has been identified in Siemens 7KT PAC1200 data manager (7KT1260) in all versions < V2.03. network low complexity siemens CWE-269 critical	9.8
2017-12-27	CVE-2017-17931	SQL Injection vulnerability in Resume Clone Script Project Resume Clone Script 2.0.5 PHP Scripts Mall Resume Clone Script has SQL Injection via the forget.php username parameter. network low complexity resume-clone-script-project CWE-89 critical	9.8
2017-12-27	CVE-2017-17928	SQL Injection vulnerability in Ordermanagementscript Professional Service Script PHP Scripts Mall Professional Service Script has SQL injection via the admin/review.php id parameter. network low complexity ordermanagementscript CWE-89 critical	9.8
2017-12-27	CVE-2017-17906	SQL Injection vulnerability in CAR Rental Script Project CAR Rental Script 2.0.8 PHP Scripts Mall Car Rental Script has SQL Injection via the admin/carlistedit.php carid parameter. network low complexity car-rental-script-project CWE-89 critical	9.8
2017-12-27	CVE-2017-17900	SQL Injection vulnerability in Dolibarr Erp/Crm 6.0.4 SQL injection vulnerability in fourn/index.php in Dolibarr ERP/CRM version 6.0.4 allows remote attackers to execute arbitrary SQL commands via the socid parameter. network low complexity dolibarr CWE-89 critical	9.8
2017-12-27	CVE-2017-17899	SQL Injection vulnerability in Dolibarr Erp/Crm 6.0.4 SQL injection vulnerability in adherents/subscription/info.php in Dolibarr ERP/CRM version 6.0.4 allows remote attackers to execute arbitrary SQL commands via the rowid parameter. network low complexity dolibarr CWE-89 critical	9.8
2017-12-27	CVE-2017-17897	SQL Injection vulnerability in Dolibarr Erp/Crm 6.0.4 SQL injection vulnerability in comm/multiprix.php in Dolibarr ERP/CRM version 6.0.4 allows remote attackers to execute arbitrary SQL commands via the id parameter. network low complexity dolibarr CWE-89 critical	9.8
2017-12-27	CVE-2017-17895	SQL Injection vulnerability in Basic JOB Site Script Project Basic JOB Site Script Readymade Job Site Script has SQL Injection via the location_name array parameter to the /job URI. network low complexity basic-job-site-script-project CWE-89 critical	9.8
2017-12-27	CVE-2017-17892	SQL Injection vulnerability in Readymade Video Sharing Script Project Readymade Video Sharing Script 3.2 Readymade Video Sharing Script has SQL Injection via the viewsubs.php chnlid parameter or the search_video.php search parameter. network low complexity readymade-video-sharing-script-project CWE-89 critical	9.8
2017-12-27	CVE-2017-17878	Use of a Broken or Risky Cryptographic Algorithm vulnerability in Valvesoftware Steam Link Firmware An issue was discovered in Valve Steam Link build 643. network low complexity valvesoftware CWE-327 critical	9.8

Vulnerabilities > Critical {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Critical"}]}

Vulnerabilities > Critical