|
265111
|
6.1 |
MEDIUM
Network
|
google
|
chrome
|
Cross-site scripting (XSS) vulnerability in Blink, as used in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux, allows remote attackers to inject arbitrary web s…
|
CWE-79
Cross-site Scripting
|
CVE-2016-5148
|
2024-11-21 11:53 |
2016-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265112
|
6.1 |
MEDIUM
Network
|
google
|
chrome
|
Blink, as used in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux, mishandles deferred page loads, which allows remote attackers to inject arbitrary web script …
|
CWE-79
Cross-site Scripting
|
CVE-2016-5147
|
2024-11-21 11:53 |
2016-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265113
|
9.8 |
CRITICAL
Network
|
f5
|
big-ip_link_controller
big-ip_policy_enforcement_manager
big-ip_access_policy_manager
big-ip_global_traffic_manager
big-iq_cloud
big-ip_webaccelerator
big-iq_application_delivery_co…
|
F5 BIG-IP LTM, Analytics, APM, ASM, and Link Controller 11.2.x before 11.2.1 HF16, 11.3.x, 11.4.x, 11.5.x before 11.5.4 HF2, 11.6.x before 11.6.1 HF1, and 12.x before 12.0.0 HF3; BIG-IP AAM, AFM, and…
|
CWE-284
Improper Access Control
|
CVE-2016-5022
|
2024-11-21 11:53 |
2016-09-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265114
|
6.0 |
MEDIUM
Local
|
qemu
canonical
debian
|
qemu
ubuntu_linux
debian_linux
|
The megasas_lookup_frame function in QEMU, when built with MegaRAID SAS 8708EM2 Host Bus Adapter emulation support, allows local guest OS administrators to cause a denial of service (out-of-bounds re…
|
CWE-125
Out-of-bounds Read
|
CVE-2016-5107
|
2024-11-21 11:53 |
2016-09-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265115
|
6.0 |
MEDIUM
Local
|
qemu
canonical
debian
|
qemu
ubuntu_linux
debian_linux
|
The megasas_dcmd_set_properties function in hw/scsi/megasas.c in QEMU, when built with MegaRAID SAS 8708EM2 Host Bus Adapter emulation support, allows local guest administrators to cause a denial of …
|
CWE-787
Out-of-bounds Write
|
CVE-2016-5106
|
2024-11-21 11:53 |
2016-09-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265116
|
4.4 |
MEDIUM
Local
|
qemu
canonical
debian
|
qemu
ubuntu_linux
debian_linux
|
The megasas_dcmd_cfg_read function in hw/scsi/megasas.c in QEMU, when built with MegaRAID SAS 8708EM2 Host Bus Adapter emulation support, uses an uninitialized variable, which allows local guest admi…
|
CWE-908
Use of Uninitialized Resource
|
CVE-2016-5105
|
2024-11-21 11:53 |
2016-09-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265117
|
6.0 |
MEDIUM
Local
|
qemu
canonical
debian
|
qemu
ubuntu_linux
debian_linux
|
QEMU (aka Quick Emulator), when built with VMWARE PVSCSI paravirtual SCSI bus emulation support, allows local guest OS administrators to cause a denial of service (out-of-bounds array access) via vec…
|
CWE-787
Out-of-bounds Write
|
CVE-2016-4952
|
2024-11-21 11:53 |
2016-09-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265118
|
7.8 |
HIGH
Local
|
akabei_soft2
|
happy_wardrobe
|
AKABEi SOFT2 games allow remote attackers to execute arbitrary OS commands via crafted saved data, as demonstrated by Happy Wardrobe.
|
CWE-78
OS Command
|
CVE-2016-4853
|
2024-11-21 11:53 |
2016-09-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265119
|
6.1 |
MEDIUM
Network
|
let\'s_php\!
|
simple_chat
|
Cross-site scripting (XSS) vulnerability in Let's PHP! simple chat before 2016-08-15 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2016-4851
|
2024-11-21 11:53 |
2016-09-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265120
|
6.1 |
MEDIUM
Network
|
clip-bucket
|
clipbucket
|
Cross-site scripting (XSS) vulnerability in ClipBucket before 2.8.1 RC2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2016-4848
|
2024-11-21 11:53 |
2016-09-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
