|
264601
|
6.1 |
MEDIUM
Network
|
theforeman
|
foreman
|
Cross-site scripting (XSS) vulnerability in app/helpers/form_helper.rb in Foreman before 1.12.2, as used by Remote Execution and possibly other plugins, allows remote attackers to inject arbitrary we…
|
CWE-79
Cross-site Scripting
|
CVE-2016-6319
|
2024-11-21 11:55 |
2016-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264602
|
9.1 |
CRITICAL
Network
|
debian
collectd
fedoraproject
|
debian_linux
collectd
fedora
|
Heap-based buffer overflow in the parse_packet function in network.c in collectd before 5.4.3 and 5.x before 5.5.2 allows remote attackers to cause a denial of service (daemon crash) or possibly exec…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-6254
|
2024-11-21 11:55 |
2016-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264603
|
5.8 |
MEDIUM
Local
|
sap
|
sapcar_archive_tool
|
SAP SAPCAR allows local users to change the permissions of arbitrary files and consequently gain privileges via a hard link attack on files extracted from an archive, possibly related to SAP Security…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2016-5847
|
2024-11-21 11:55 |
2016-08-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264604
|
5.5 |
MEDIUM
Local
|
sap
|
sapcar
|
SAP SAPCAR does not check the return value of file operations when extracting files, which allows remote attackers to cause a denial of service (program crash) via an invalid file name in an archive …
|
NVD-CWE-Other
|
CVE-2016-5845
|
2024-11-21 11:55 |
2016-08-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264605
|
6.5 |
MEDIUM
Network
|
libgd
debian
opensuse
|
libgd
debian_linux
leap
|
gd_tga.c in the GD Graphics Library (aka libgd) before 2.2.3 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted TGA file.
|
CWE-125
Out-of-bounds Read
|
CVE-2016-6214
|
2024-11-21 11:55 |
2016-08-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264606
|
6.5 |
MEDIUM
Network
|
libgd
debian
opensuse
php
|
libgd
debian_linux
leap
php
|
Integer overflow in the _gdContributionsAlloc function in gd_interpolation.c in GD Graphics Library (aka libgd) before 2.2.3 allows remote attackers to cause a denial of service (out-of-bounds memory…
|
CWE-119
CWE-787
CWE-190
Incorrect Access of Indexable Resource ('Range Error')
Out-of-bounds Write
Integer Overflow or Wraparound
|
CVE-2016-6207
|
2024-11-21 11:55 |
2016-08-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264607
|
6.5 |
MEDIUM
Network
|
libgd
debian
opensuse
|
libgd
debian_linux
leap
|
The output function in gd_gif_out.c in the GD Graphics Library (aka libgd) allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted image.
|
CWE-125
Out-of-bounds Read
|
CVE-2016-6161
|
2024-11-21 11:55 |
2016-08-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264608
|
6.5 |
MEDIUM
Network
|
libgd
debian
opensuse
|
libgd
debian_linux
leap
|
The gdImageCreateFromTgaCtx function in the GD Graphics Library (aka libgd) before 2.2.3 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted TGA file.
|
CWE-125
Out-of-bounds Read
|
CVE-2016-6132
|
2024-11-21 11:55 |
2016-08-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264609
|
6.8 |
MEDIUM
Network
|
ibm
|
filenet_workplace
|
Open redirect vulnerability in IBM FileNet Workplace 4.0.2 before 4.0.2.14 allows remote authenticated users to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vect…
|
CWE-601
Open Redirect
|
CVE-2016-5878
|
2024-11-21 11:55 |
2016-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264610
|
9.8 |
CRITICAL
Network
|
moxa
|
softcms
|
SQL injection vulnerability in Moxa SoftCMS before 1.5 allows remote attackers to execute arbitrary SQL commands via unspecified fields.
|
CWE-89
SQL Injection
|
CVE-2016-5792
|
2024-11-21 11:55 |
2016-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
