|
265981
|
8.8 |
HIGH
Network
|
buffalotech
|
wnc01wh_firmware
|
Buffalo NC01WH devices with firmware version 1.0.0.8 and earlier allows authenticated attackers to bypass access restriction to enable the debug option via unspecified vectors.
|
CWE-284
Improper Access Control
|
CVE-2016-7824
|
2024-11-21 11:58 |
2017-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265982
|
4.3 |
MEDIUM
Adjacent
|
buffalotech
|
wnc01wh_firmware
|
Cross-site scripting vulnerability in Buffalo WNC01WH devices with firmware version 1.0.0.8 and earlier allows authenticated attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2016-7823
|
2024-11-21 11:58 |
2017-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265983
|
8.8 |
HIGH
Network
|
buffalotech
|
wnc01wh_firmware
|
Cross-site request forgery (CSRF) vulnerability in Buffalo WNC01WH devices with firmware version 1.0.0.8 and earlier allows remote attackers to hijack the authentication of a logged in user to perfor…
|
CWE-352
Origin Validation Error
|
CVE-2016-7822
|
2024-11-21 11:58 |
2017-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265984
|
6.5 |
MEDIUM
Network
|
buffalotech
|
wnc01wh_firmware
|
Buffalo WNC01WH devices with firmware version 1.0.0.8 and earlier allow remote attackers to cause a denial of service against the management screen via unspecified vectors.
|
CWE-20
Improper Input Validation
|
CVE-2016-7821
|
2024-11-21 11:58 |
2017-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265985
|
7.2 |
HIGH
Network
|
iodata
|
ts-wrlp_firmware
ts-wrla_firmware
|
Buffer overflow in I-O DATA DEVICE TS-WRLP firmware version 1.01.02 and earlier and TS-WRLA firmware version 1.01.02 and earlier allows an attacker with administrator rights to cause a denial-of-serv…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-7820
|
2024-11-21 11:58 |
2017-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265986
|
7.2 |
HIGH
Network
|
iodata
|
ts-wrlp_firmware
ts-wrla_firmware
|
I-O DATA DEVICE TS-WRLP firmware version 1.01.02 and earlier and TS-WRLA firmware version 1.01.02 and earlier allows an attacker with administrator rights to execute arbitrary OS commands via unspeci…
|
CWE-78
OS Command
|
CVE-2016-7819
|
2024-11-21 11:58 |
2017-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265987
|
7.8 |
HIGH
Local
|
japan_pension_service
|
todokesho_creation_program
device_data_encryption_program
specification_check_program
todokesho_print_program
|
Untrusted search path vulnerability in Installers for Specification check program (social insurance) Ver. 9.00 and earlier, TODOKESHO print program Ver. 5.00 and earlier, Device data encryption progr…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2016-7818
|
2024-11-21 11:58 |
2017-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265988
|
6.1 |
MEDIUM
Network
|
simple_keitai_chat_project
|
simple_keitai_chat
|
Cross-site scripting vulnerability in Simple keitai chat 2.0 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2016-7817
|
2024-11-21 11:58 |
2017-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265989
|
5.9 |
MEDIUM
Network
|
cybozu
|
kintone
|
The Cybozu kintone mobile for Android 1.0.6 and earlier does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information…
|
CWE-295
Improper Certificate Validation
|
CVE-2016-7816
|
2024-11-21 11:58 |
2017-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265990
|
7.5 |
HIGH
Network
|
iodata
|
ts-wrlp_firmware
ts-wrla_firmware
|
I-O DATA DEVICE TS-WRLP firmware version 1.00.01 and earlier and TS-WRLA firmware version 1.00.01 and earlier allow remote attackers to obtain authentication credentials via unspecified vectors.
|
CWE-200
Information Exposure
|
CVE-2016-7814
|
2024-11-21 11:58 |
2017-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
