|
265251
|
9.8 |
CRITICAL
Network
|
joomla
|
joomla\!
|
The file scanning mechanism of JFilterInput::isFileSafe() in Joomla! CMS before 3.6.5 does not consider alternative PHP file extensions when checking uploaded files for PHP content, which enables a u…
|
CWE-284
Improper Access Control
|
CVE-2016-9836
|
2024-11-21 12:01 |
2016-12-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265252
|
9.8 |
CRITICAL
Network
|
zikula
|
zikula_application_framework
|
Directory traversal vulnerability in file "jcss.php" in Zikula 1.3.x before 1.3.11 and 1.4.x before 1.4.4 on Windows allows a remote attacker to launch a PHP object injection by uploading a serialize…
|
CWE-77
CWE-284
Command Injection
Improper Access Control
|
CVE-2016-9835
|
2024-11-21 12:01 |
2016-12-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265253
|
5.3 |
MEDIUM
Network
|
bluez
|
bluez
|
In BlueZ 5.42, a buffer overflow was observed in "commands_dump" function in "tools/parser/csr.c" source file. The issue exists because "commands" array is overflowed by supplied parameter due to lac…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-9804
|
2024-11-21 12:01 |
2016-12-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265254
|
5.3 |
MEDIUM
Network
|
bluez
|
bluez
|
In BlueZ 5.42, an out-of-bounds read was observed in "le_meta_ev_dump" function in "tools/parser/hci.c" source file. This issue exists because 'subevent' (which is used to read correct element from '…
|
CWE-119
CWE-125
Incorrect Access of Indexable Resource ('Range Error')
Out-of-bounds Read
|
CVE-2016-9803
|
2024-11-21 12:01 |
2016-12-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265255
|
5.3 |
MEDIUM
Network
|
bluez
|
bluez
|
In BlueZ 5.42, a buffer over-read was identified in "l2cap_packet" function in "monitor/packet.c" source file. This issue can be triggered by processing a corrupted dump file and will result in btmon…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-9802
|
2024-11-21 12:01 |
2016-12-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265256
|
5.3 |
MEDIUM
Network
|
bluez
|
bluez
|
In BlueZ 5.42, a buffer overflow was observed in "set_ext_ctrl" function in "tools/parser/l2cap.c" source file when processing corrupted dump file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-9801
|
2024-11-21 12:01 |
2016-12-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265257
|
5.3 |
MEDIUM
Network
|
bluez
|
bluez
|
In BlueZ 5.42, a buffer overflow was observed in "pin_code_reply_dump" function in "tools/parser/hci.c" source file. The issue exists because "pin" array is overflowed by supplied parameter due to la…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-9800
|
2024-11-21 12:01 |
2016-12-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265258
|
5.3 |
MEDIUM
Network
|
bluez
|
bluez
|
In BlueZ 5.42, a buffer overflow was observed in "pklg_read_hci" function in "btsnoop.c" source file. This issue can be triggered by processing a corrupted dump file and will result in btmon crash.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-9799
|
2024-11-21 12:01 |
2016-12-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265259
|
5.3 |
MEDIUM
Network
|
bluez
|
bluez
|
In BlueZ 5.42, a use-after-free was identified in "conf_opt" function in "tools/parser/l2cap.c" source file. This issue can be triggered by processing a corrupted dump file and will result in hcidump…
|
CWE-416
Use After Free
|
CVE-2016-9798
|
2024-11-21 12:01 |
2016-12-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265260
|
5.3 |
MEDIUM
Network
|
bluez
|
bluez
|
In BlueZ 5.42, a buffer over-read was observed in "l2cap_dump" function in "tools/parser/l2cap.c" source file. This issue can be triggered by processing a corrupted dump file and will result in hcidu…
|
CWE-119
CWE-125
Incorrect Access of Indexable Resource ('Range Error')
Out-of-bounds Read
|
CVE-2016-9797
|
2024-11-21 12:01 |
2016-12-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
