|
266431
|
7.5 |
HIGH
Network
|
artifex
|
mujs
|
Heap-based buffer overflow in the Fp_toString function in jsfunction.c in Artifex Software MuJS allows attackers to cause a denial of service (crash) via crafted input.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-7564
|
2024-11-21 11:58 |
2017-01-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266432
|
7.5 |
HIGH
Network
|
artifex
|
mujs
|
The chartorune function in Artifex Software MuJS allows attackers to cause a denial of service (out-of-bounds read) via a * (asterisk) at the end of the input.
|
CWE-125
Out-of-bounds Read
|
CVE-2016-7563
|
2024-11-21 11:58 |
2017-01-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266433
|
8.0 |
HIGH
Network
|
cmsmadesimple
|
cms_made_simple
|
Cross-site request forgery (CSRF) vulnerability in CMS Made Simple before 2.1.6 allows remote attackers to hijack the authentication of administrators for requests that create accounts via an admin/a…
|
CWE-352
Origin Validation Error
|
CVE-2016-7904
|
2024-11-21 11:58 |
2017-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266434
|
7.5 |
HIGH
Network
|
brocade
|
network_advisor
|
A Directory Traversal vulnerability in CliMonitorReportServlet in the Brocade Network Advisor versions released prior to and including 14.0.2 could allow remote attackers to read arbitrary files incl…
|
CWE-22
Path Traversal
|
CVE-2016-8207
|
2024-11-21 11:58 |
2017-01-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266435
|
7.5 |
HIGH
Network
|
brocade
|
network_advisor
|
A Directory Traversal vulnerability in servlet SoftwareImageUpload in the Brocade Network Advisor versions released prior to and including 14.0.2 could allow remote attackers to write to arbitrary fi…
|
CWE-22
Path Traversal
|
CVE-2016-8206
|
2024-11-21 11:58 |
2017-01-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266436
|
9.8 |
CRITICAL
Network
|
brocade
|
network_advisor
|
A Directory Traversal vulnerability in DashboardFileReceiveServlet in the Brocade Network Advisor versions released prior to and including 14.0.2 could allow remote attackers to upload a malicious fi…
|
CWE-22
Path Traversal
|
CVE-2016-8205
|
2024-11-21 11:58 |
2017-01-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266437
|
9.8 |
CRITICAL
Network
|
broadcom
|
brocade_network_advisor
|
A Directory Traversal vulnerability in FileReceiveServlet in the Brocade Network Advisor versions released prior to and including 14.0.2 could allow remote attackers to upload a malicious file in a s…
|
CWE-22
Path Traversal
|
CVE-2016-8204
|
2024-11-21 11:58 |
2017-01-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266438
|
8.0 |
HIGH
Network
|
brocade
|
virtual_traffic_manager
|
A CSRF vulnerability in Brocade Virtual Traffic Manager versions released prior to and including 11.0 could allow an attacker to trick a logged-in user into making administrative changes on the traff…
|
CWE-352
Origin Validation Error
|
CVE-2016-8201
|
2024-11-21 11:58 |
2017-01-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266439
|
7.5 |
HIGH
Network
|
ntp
hpe
|
ntp
hpux-ntp
|
The read_mru_list function in NTP before 4.2.8p9 allows remote attackers to cause a denial of service (crash) via a crafted mrulist query.
|
CWE-20
Improper Input Validation
|
CVE-2016-7434
|
2024-11-21 11:58 |
2017-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266440
|
9.8 |
CRITICAL
Network
|
exponentcms
|
exponent_cms
|
Exponent CMS 2.3.9 suffers from a remote code execution vulnerability in /install/index.php. An attacker can upload an evil 'exploit.tar.gz' file to the website, then extract it by visiting '/install…
|
CWE-20
Improper Input Validation
|
CVE-2016-7791
|
2024-11-21 11:58 |
2017-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
