|
265481
|
5.5 |
MEDIUM
Local
|
python
debian
|
pillow
debian_linux
|
Pillow before 3.3.2 allows context-dependent attackers to obtain sensitive information by using the "crafted image file" approach, related to an "Integer Overflow" issue affecting the Image.core.map_…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2016-9189
|
2024-11-21 12:00 |
2016-11-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265482
|
6.1 |
MEDIUM
Network
|
moodle
|
moodle
|
Cross-site scripting (XSS) vulnerabilities in Moodle CMS on or before 3.1.2 allow remote attackers to inject arbitrary web script or HTML via the s_additionalhtmlhead, s_additionalhtmltopofbody, and …
|
CWE-79
Cross-site Scripting
|
CVE-2016-9188
|
2024-11-21 12:00 |
2016-11-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265483
|
8.8 |
HIGH
Network
|
moodle
|
moodle
|
Unrestricted file upload vulnerability in the double extension support in the "image" module in Moodle 3.1.2 allows remote authenticated users to execute arbitrary code by uploading a file with an ex…
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2016-9187
|
2024-11-21 12:00 |
2016-11-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265484
|
8.8 |
HIGH
Network
|
moodle
|
moodle
|
Unrestricted file upload vulnerability in the "legacy course files" and "file manager" modules in Moodle 3.1.2 allows remote authenticated users to execute arbitrary code by uploading a file with an …
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2016-9186
|
2024-11-21 12:00 |
2016-11-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265485
|
4.3 |
MEDIUM
Network
|
openstack
|
heat
|
In OpenStack Heat, by launching a new Heat stack with a local URL an authenticated user may conduct network discovery revealing internal network configuration. Affected versions are <=5.0.3, >=6.0.0 …
|
CWE-200
Information Exposure
|
CVE-2016-9185
|
2024-11-21 12:00 |
2016-11-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265486
|
7.5 |
HIGH
Network
|
exponentcms
|
exponent_cms
|
In /framework/modules/core/controllers/expHTMLEditorController.php of Exponent CMS 2.4.0, untrusted input is used to construct a table name, and in the selectObject method in mysqli class, table name…
|
CWE-200
CWE-89
Information Exposure
SQL Injection
|
CVE-2016-9184
|
2024-11-21 12:00 |
2016-11-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265487
|
7.5 |
HIGH
Network
|
exponentcms
|
exponent_cms
|
In /framework/modules/ecommerce/controllers/orderController.php of Exponent CMS 2.4.0, untrusted input is passed into selectObjectsBySql. The method selectObjectsBySql of class mysqli_database uses t…
|
CWE-200
Information Exposure
|
CVE-2016-9183
|
2024-11-21 12:00 |
2016-11-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265488
|
7.5 |
HIGH
Network
|
sparkjava
|
spark
|
Directory traversal vulnerability in Spark 2.5 allows remote attackers to read arbitrary files via a .. (dot dot) in the URI.
|
CWE-22
Path Traversal
|
CVE-2016-9177
|
2024-11-21 12:00 |
2016-11-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265489
|
7.5 |
HIGH
Network
|
exponentcms
|
exponent_cms
|
Exponent CMS 2.4 uses PHP reflection to call a method of a controller class, and then uses the method name to check user permission. But, the method name in PHP reflection is case insensitive, and Ex…
|
CWE-284
Improper Access Control
|
CVE-2016-9182
|
2024-11-21 12:00 |
2016-11-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265490
|
9.8 |
CRITICAL
Network
|
microfocus
|
rumba
|
Stack buffer overflow in the send.exe and receive.exe components of Micro Focus Rumba 9.4 and earlier could be used by local attackers or attackers able to inject arguments to these binaries to execu…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-9176
|
2024-11-21 12:00 |
2016-11-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
