Vulnerabilities > Critical

DATE CVE VULNERABILITY TITLE RISK
2017-05-22 CVE-2016-4905 SQL Injection vulnerability in Wp-Olivecart Olivecart and Olivecartpro
SQL injection vulnerability in the WP-OliveCart versions prior to 3.1.3 and WP-OliveCartPro versions prior to 3.1.8 allows attackers with administrator rights to execute arbitrary SQL commands via unspecified vectors.
network
low complexity
wp-olivecart CWE-89
critical
 9.8
9.8
2017-05-22 CVE-2017-2527 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple mac OS X
An issue was discovered in certain Apple products.
network
low complexity
apple CWE-119
critical
 9.8
9.8
2017-05-22 CVE-2017-2524 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple products
An issue was discovered in certain Apple products.
network
low complexity
apple CWE-119
critical
 9.8
9.8
2017-05-22 CVE-2017-2523 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple products
An issue was discovered in certain Apple products.
network
low complexity
apple CWE-119
critical
 9.8
9.8
2017-05-22 CVE-2017-2522 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Apple products
An issue was discovered in certain Apple products.
network
low complexity
apple CWE-119
critical
 9.8
9.8
2017-05-22 CVE-2017-2520 Out-of-bounds Write vulnerability in multiple products
An issue was discovered in certain Apple products.
network
low complexity
apple debian CWE-787
critical
 9.8
9.8
2017-05-22 CVE-2017-2519 An issue was discovered in certain Apple products.
network
low complexity
apple debian
critical
 9.8
9.8
2017-05-22 CVE-2017-2518 Use After Free vulnerability in multiple products
An issue was discovered in certain Apple products.
network
low complexity
apple debian CWE-416
critical
 9.8
9.8
2017-05-22 CVE-2017-2513 Use After Free vulnerability in Apple products
An issue was discovered in certain Apple products.
network
low complexity
apple CWE-416
critical
 9.8
9.8
2017-05-21 CVE-2017-9119 Resource Exhaustion vulnerability in multiple products
The i_zval_ptr_dtor function in Zend/zend_variables.h in PHP 7.1.5 allows attackers to cause a denial of service (memory consumption and application crash) or possibly have unspecified other impact by triggering crafted operations on array data structures.
network
low complexity
php netapp CWE-400
critical
 9.8
9.8