|
267231
|
7.5 |
HIGH
Network
|
fedoraproject
opensuse
canonical
gnome
|
fedora
leap
opensuse
ubuntu_linux
eye_of_gnome
|
Eye of GNOME (aka eog) 3.16.5, 3.17.x, 3.18.x before 3.18.3, 3.19.x, and 3.20.x before 3.20.4, when used with glib before 2.44.1, allow remote attackers to cause a denial of service (out-of-bounds wr…
|
CWE-787
Out-of-bounds Write
|
CVE-2016-6855
|
2024-11-21 11:56 |
2016-09-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267232
|
8.1 |
HIGH
Network
|
cisco
|
media_origination_system_suite
|
Media Origination System Suite Software 2.6 and earlier in Cisco Virtual Media Packager (VMP) allows remote attackers to bypass authentication and make arbitrary Platform and Applications Manager (PA…
|
CWE-287
Improper Authentication
|
CVE-2016-6377
|
2024-11-21 11:56 |
2016-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267233
|
8.6 |
HIGH
Network
|
vbulletin
|
vbulletin
|
The media-file upload feature in vBulletin before 3.8.7 Patch Level 6, 3.8.8 before Patch Level 2, 3.8.9 before Patch Level 1, 4.x before 4.2.2 Patch Level 6, 4.2.3 before Patch Level 2, 5.x before 5…
|
CWE-918
Server-Side Request Forgery (SSRF)
|
CVE-2016-6483
|
2024-11-21 11:56 |
2016-09-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267234
|
6.5 |
MEDIUM
Adjacent
|
cisco
|
wireless_lan_controller
wireless_lan_controller_7.2
wireless_lan_controller_7.0
wireless_lan_controller_7.4
wireless_lan_controller_6.0
wireless_lan_controller_7.1
|
The Adaptive Wireless Intrusion Prevention System (wIPS) feature on Cisco Wireless LAN Controller (WLC) devices before 8.0.140.0, 8.1.x and 8.2.x before 8.2.121.0, and 8.3.x before 8.3.102.0 allows r…
|
CWE-399
Resource Management Errors
|
CVE-2016-6376
|
2024-11-21 11:56 |
2016-09-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267235
|
9.8 |
CRITICAL
Network
|
citrix
|
xenapp
xendesktop
|
Citrix XenApp 6.x before 6.5 HRP07 and 7.x before 7.9 and Citrix XenDesktop before 7.9 might allow attackers to weaken an unspecified security mitigation via vectors related to memory permission.
|
CWE-254
7PK - Security Features
|
CVE-2016-6493
|
2024-11-21 11:56 |
2016-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267236
|
8.6 |
HIGH
Network
|
sophos
|
mobile_control_eas_proxy
|
Sophos EAS Proxy before 6.2.0 for Sophos Mobile Control, when Lotus Traveler is enabled, allows remote attackers to access arbitrary web-resources from the backend mail system via a request for the r…
|
CWE-254
7PK - Security Features
|
CVE-2016-6597
|
2024-11-21 11:56 |
2016-08-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267237
|
7.8 |
HIGH
Local
|
siemens
|
sinema_server
|
Siemens SINEMA Server uses weak permissions for the application folder, which allows local users to gain privileges via unspecified vectors.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2016-6486
|
2024-11-21 11:56 |
2016-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267238
|
7.5 |
HIGH
Network
|
openbsd
fedoraproject
|
openssh
fedora
|
The auth_password function in auth-passwd.c in sshd in OpenSSH before 7.3 does not limit password lengths for password authentication, which allows remote attackers to cause a denial of service (cryp…
|
CWE-20
Improper Input Validation
|
CVE-2016-6515
|
2024-11-21 11:56 |
2016-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267239
|
8.8 |
HIGH
Network
|
wordpress
|
wordpress
|
Cross-site request forgery (CSRF) vulnerability in the wp_ajax_wp_compression_test function in wp-admin/includes/ajax-actions.php in WordPress before 4.5 allows remote attackers to hijack the authent…
|
CWE-352
Origin Validation Error
|
CVE-2016-6635
|
2024-11-21 11:56 |
2016-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267240
|
6.1 |
MEDIUM
Network
|
wordpress
|
wordpress
|
Cross-site scripting (XSS) vulnerability in the network settings page in WordPress before 4.5 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2016-6634
|
2024-11-21 11:56 |
2016-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
