|
268221
|
7.5 |
HIGH
Network
|
cybozu
|
dezie
|
Cybozu Dezie 8.0.0 to 8.1.1 allows remote attackers to bypass access restrictions to delete an arbitrary DBM (Cybozu Dezie proprietary format) file via unspecified vectors.
|
CWE-284
Improper Access Control
|
CVE-2016-7833
|
2024-11-21 11:58 |
2017-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268222
|
5.3 |
MEDIUM
Network
|
cybozu
|
dezie
|
Cybozu Dezie 8.0.0 to 8.1.1 allows remote attackers to bypass access restrictions to obtain an arbitrary DBM (Cybozu Dezie proprietary format) file via unspecified vectors.
|
CWE-200
Information Exposure
|
CVE-2016-7832
|
2024-11-21 11:58 |
2017-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268223
|
6.1 |
MEDIUM
Network
|
fenrir-inc
|
sleipnir
|
Sleipnir 4 Black Edition for Mac 4.5.3 and earlier and Sleipnir 4 for Mac 4.5.3 and earlier (Mac App Store) may allow a remote attacker to spoof the URL display via a specially crafted webpage.
|
CWE-601
Open Redirect
|
CVE-2016-7831
|
2024-11-21 11:58 |
2017-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268224
|
8.8 |
HIGH
Adjacent
|
sony
|
pcs-xg100_firmware
pcs-xg77_firmware
pcs-xc1_firmware
|
Sony PCS-XG100, PCS-XG100S, PCS-XG100C, PCS-XG77, PCS-XG77S, PCS-XG77C devices with firmware versions prior to Ver.1.51 and PCS-XC1 devices with firmware version prior to Ver.1.22 allow an attacker o…
|
CWE-306
Missing Authentication for Critical Function
|
CVE-2016-7830
|
2024-11-21 11:58 |
2017-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268225
|
6.5 |
MEDIUM
Network
|
buffalotech
|
wnc01wh_firmware
|
Directory traversal vulnerability in Buffalo WNC01WH devices with firmware version 1.0.0.8 and earlier allows authenticated attackers to read arbitrary files via specially crafted POST requests.
|
CWE-22
Path Traversal
|
CVE-2016-7826
|
2024-11-21 11:58 |
2017-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268226
|
6.5 |
MEDIUM
Network
|
buffalotech
|
wnc01wh_firmware
|
Directory traversal vulnerability in Buffalo WNC01WH devices with firmware version 1.0.0.8 and earlier allows authenticated attackers to read arbitrary files via specially crafted commands.
|
CWE-22
Path Traversal
|
CVE-2016-7825
|
2024-11-21 11:58 |
2017-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268227
|
8.8 |
HIGH
Network
|
buffalotech
|
wnc01wh_firmware
|
Buffalo NC01WH devices with firmware version 1.0.0.8 and earlier allows authenticated attackers to bypass access restriction to enable the debug option via unspecified vectors.
|
CWE-284
Improper Access Control
|
CVE-2016-7824
|
2024-11-21 11:58 |
2017-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268228
|
4.3 |
MEDIUM
Adjacent
|
buffalotech
|
wnc01wh_firmware
|
Cross-site scripting vulnerability in Buffalo WNC01WH devices with firmware version 1.0.0.8 and earlier allows authenticated attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2016-7823
|
2024-11-21 11:58 |
2017-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268229
|
8.8 |
HIGH
Network
|
buffalotech
|
wnc01wh_firmware
|
Cross-site request forgery (CSRF) vulnerability in Buffalo WNC01WH devices with firmware version 1.0.0.8 and earlier allows remote attackers to hijack the authentication of a logged in user to perfor…
|
CWE-352
Origin Validation Error
|
CVE-2016-7822
|
2024-11-21 11:58 |
2017-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268230
|
6.5 |
MEDIUM
Network
|
buffalotech
|
wnc01wh_firmware
|
Buffalo WNC01WH devices with firmware version 1.0.0.8 and earlier allow remote attackers to cause a denial of service against the management screen via unspecified vectors.
|
CWE-20
Improper Input Validation
|
CVE-2016-7821
|
2024-11-21 11:58 |
2017-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
