2017-01-23
2017-01-23 21:59Z
CRIT

CVE-2016-6582 — Doorkeeper_project Doorkeeper: The Doorkeeper gem before 4.2.0 for Ruby might allow remote attackers to conduct replay

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2016-6582

The Doorkeeper gem before 4.2.0 for Ruby might allow remote attackers to conduct replay attacks or revoke arbitrary tokens by leveraging failure to implement the OAuth 2.0 Token Revocation specification. CVSSv3.1 9.1 (CRITICAL)

CWECWE 254VNDDoorkeeper ProjectVNDDoorkeeperTYPVulnerability
9.1
CVSS v3.1
96
Edit Score
2017-01-23
2017-01-23 21:59Z
HIGH

CVE-2016-6521 — Gopivotal Grails: Cross-site request forgery (CSRF) vulnerability in Grails console (aka Grails Debug Console and Grails

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2016-6521

Cross-site request forgery (CSRF) vulnerability in Grails console (aka Grails Debug Console and Grails Web Console) 2.0.7, 1.5.10, and earlier allows remote attackers to hijack the authentication of users for requests that execute arbitrary Groovy code via unspecified vectors. CVSSv3.1 8.8 (HIGH)

CWECWE 352VNDCsrfVNDGopivotalTYPVulnerability
8.8
CVSS v3.1
94
Edit Score
2017-01-23
2017-01-23 21:59Z
CRIT

CVE-2016-6517 — Liferay Liferay: Directory traversal vulnerability in Liferay 5.1.0 allows remote attackers to have unspecified impact via

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2016-6517

Directory traversal vulnerability in Liferay 5.1.0 allows remote attackers to have unspecified impact via a %2E%2E (encoded dot dot) in the minifierBundleDir parameter to barebone.jsp. CVSSv3.1 9.8 (CRITICAL)

CWECWE 22VNDLiferayTYPVulnerability
9.8
CVSS v3.1
99
Edit Score
2017-01-23
2017-01-23 21:59Z
CRIT

CVE-2016-6223 — Libtiff Libtiff: The TIFFReadRawStrip1 and TIFFReadRawTile1 functions in tif_read.c in libtiff before 4.0.7 allows remote attackers

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2016-6223

The TIFFReadRawStrip1 and TIFFReadRawTile1 functions in tif_read.c in libtiff before 4.0.7 allows remote attackers to cause a denial of service (crash) or possibly obtain sensitive information via a negative index in a file-content buffer. CVSSv3.1 9.1 (CRITICAL)

CWECWE 189VNDLibtiffVNDTiffreadrawstrip1TYPVulnerability
9.1
CVSS v3.1
96
Edit Score
2017-01-23
2017-01-23 21:59Z
CRIT

CVE-2016-6164 — Ffmpeg Ffmpeg: Integer overflow in the mov_build_index function in libavformat/mov.c in FFmpeg before 2.8.8, 3.0.x before

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2016-6164

Integer overflow in the mov_build_index function in libavformat/mov.c in FFmpeg before 2.8.8, 3.0.x before 3.0.3 and 3.1.x before 3.1.1 allows remote attackers to have unspecified impact via vectors involving sample size. CVSSv3.1 9.8 (CRITICAL)

CWECWE 190VNDFfmpegTYPVulnerability
9.8
CVSS v3.1
99
Edit Score
2017-01-23
2017-01-23 21:59Z
CRIT

CVE-2016-5873 — Php Pecl_http: Buffer overflow in the HTTP URL parsing functions in pecl_http before 3.0.1 might allow

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2016-5873

Buffer overflow in the HTTP URL parsing functions in pecl_http before 3.0.1 might allow remote attackers to execute arbitrary code via non-printable characters in a URL. CVSSv3.1 9.8 (CRITICAL)

CWECWE 119VNDBufferTYPVulnerability
9.8
CVSS v3.1
99
Edit Score
2017-01-23
2017-01-23 21:59Z
CRIT

CVE-2016-5742 — Sixapart Movable_type: SQL injection vulnerability in the XML-RPC interface in Movable Type Pro and Advanced 6.x

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2016-5742

SQL injection vulnerability in the XML-RPC interface in Movable Type Pro and Advanced 6.x before 6.1.3 and 6.2.x before 6.2.6 and Movable Type Open Source 5.2.13 and earlier allows remote attackers to execute arbitrary SQL commands via unspecified vectors. CVSSv3.1 9.8 (CRITICAL)

CWECWE 89VNDSixapartTYPVulnerability
9.8
CVSS v3.1
99
Edit Score
728 × 90 / responsive · programmatic ad slot
2017-01-23
2017-01-23 21:59Z
HIGH

CVE-2016-5091 — Typo3 Typo3: Extbase in TYPO3 4.3.0 before 6.2.24, 7.x before 7.6.8, and 8.1.1 allows remote attackers

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2016-5091

Extbase in TYPO3 4.3.0 before 6.2.24, 7.x before 7.6.8, and 8.1.1 allows remote attackers to obtain sensitive information or possibly execute arbitrary code via a crafted Extbase action. CVSSv3.1 8.1 (HIGH)

CWECWE 254VNDTypo3VNDExtbaseTYPVulnerability
8.1
CVSS v3.1
91
Edit Score
2017-01-23
2017-01-23 21:59Z
HIGH

CVE-2016-4340 — Gitlab Gitlab: The impersonate feature in Gitlab 8.7.0, 8.6.0 through 8.6.7, 8.5.0 through 8.5.11, 8.4.0 through

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2016-4340

The impersonate feature in Gitlab 8.7.0, 8.6.0 through 8.6.7, 8.5.0 through 8.5.11, 8.4.0 through 8.4.9, 8.3.0 through 8.3.8, and 8.2.0 through 8.2.4 allows remote authenticated users to "log in" as any other user via unspecified vectors. CVSSv3.1 8.8 (HIGH)

CWECWE 264VNDGitlabTYPVulnerability
8.8
CVSS v3.1
94
Edit Score
2017-01-23
2017-01-23 21:59Z
HIGH

CVE-2016-4338 — Zabbix Zabbix: The mysql user parameter configuration script (userparameter_mysql.conf) in the agent in Zabbix before 2.0.18

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2016-4338

The mysql user parameter configuration script (userparameter_mysql.conf) in the agent in Zabbix before 2.0.18, 2.2.x before 2.2.13, and 3.0.x before 3.0.3, when used with a shell other than bash, allows context-dependent attackers to execute arbitrary code or SQL commands via the mysql.size parameter. CVSSv3.1 8.1 (HIGH)

CWECWE 89VNDZabbixTYPVulnerability
8.1
CVSS v3.1
91
Edit Score
2017-01-23
2017-01-23 21:59Z
CRIT

CVE-2016-4010 — Magento Magento: CE and EE before 2.0.6 allows remote attackers to conduct PHP objection injection

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2016-4010

Magento CE and EE before 2.0.6 allows remote attackers to conduct PHP objection injection attacks and execute arbitrary PHP code via crafted serialized shopping cart data. CVSSv3.1 9.8 (CRITICAL)

CWECWE 74VNDMagentoTYPVulnerability
9.8
CVSS v3.1
99
Edit Score
2017-01-23
2017-01-23 21:59Z
CRIT

CVE-2016-3177 — Giflib_project Giflib: Multiple use-after-free and double-free vulnerabilities in gifcolor.c in GIFLIB 5.1.2 have unspecified impact and

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2016-3177

Multiple use-after-free and double-free vulnerabilities in gifcolor.c in GIFLIB 5.1.2 have unspecified impact and attack vectors. CVSSv3.1 9.8 (CRITICAL)

CWECWE 416CWECWE 415VNDGiflib ProjectTYPVulnerability
9.8
CVSS v3.1
99
Edit Score
2017-01-23
2017-01-23 21:59Z
CRIT

CVE-2016-3147 — Ivanti Landesk_management_suite: Buffer overflow in the collector.exe listener of the Landesk Management Suite 10.0.0.271 and earlier

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2016-3147

Buffer overflow in the collector.exe listener of the Landesk Management Suite 10.0.0.271 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via a large packet. CVSSv3.1 9.8 (CRITICAL)

CWECWE 119VNDIvantiVNDBufferTYPVulnerability
9.8
CVSS v3.1
99
Edit Score
2017-01-23
2017-01-23 21:59Z
CRIT

CVE-2016-2783 — Avaya Vsp_operating_system_software: Fabric Connect Virtual Services Platform (VSP) Operating System Software (VOSS) before 4.2.3.0 and

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2016-2783

Avaya Fabric Connect Virtual Services Platform (VSP) Operating System Software (VOSS) before 4.2.3.0 and 5.x before 5.0.1.0 does not properly handle VLAN and I-SIS indexes, which allows remote attackers to obtain unauthorized access via crafted Ethernet frames. CVSSv3.1 9.8 (CRITICAL)

CWECWE 19VNDAvayaTYPVulnerability
9.8
CVSS v3.1
99
Edit Score
2017-01-23
2017-01-23 21:59Z
CRIT

CVE-2016-2242 — Exponentcms Exponent_cms: Exponent CMS 2.x before 2.3.7 Patch 3 allows remote attackers to execute arbitrary code

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2016-2242

Exponent CMS 2.x before 2.3.7 Patch 3 allows remote attackers to execute arbitrary code via the sc parameter to install/index.php. CVSSv3.1 9.8 (CRITICAL)

CWECWE 94VNDExponentcmsVNDExponentTYPVulnerability
9.8
CVSS v3.1
99
Edit Score
2017-01-23
2017-01-23 21:59Z
CRIT

CVE-2016-1925 — Lha_for_unix_project Lha_for_unix: Integer underflow in header.c in lha allows remote attackers to have unspecified impact via

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2016-1925

Integer underflow in header.c in lha allows remote attackers to have unspecified impact via a large header size value for the (1) level0 or (2) level1 header in a lha archive, which triggers a buffer overflow. CVSSv3.1 9.8 (CRITICAL)

CWECWE 191VNDLha For Unix ProjectTYPVulnerability
9.8
CVSS v3.1
99
Edit Score
2017-01-23
2017-01-23 21:59Z
HIGH

CVE-2016-1417 — Snort Snort: Untrusted search path vulnerability in Snort 2.9.7.0-WIN32 allows remote attackers to execute arbitrary code

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2016-1417

Untrusted search path vulnerability in Snort 2.9.7.0-WIN32 allows remote attackers to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse tcapi.dll that is located in the same folder on a remote file share as a pcap file that is being processed. CVSSv3.1 8.8 (HIGH)

CWECWE 426VNDUntrustedVNDSnortTYPVulnerability
8.8
CVSS v3.1
94
Edit Score
2017-01-23
2017-01-23 21:59Z
HIGH

CVE-2016-0769 — Elfden Eshop_plugin: Multiple SQL injection vulnerabilities in eshop-orders.php in the eShop plugin 6.3.14 for WordPress allow

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2016-0769

Multiple SQL injection vulnerabilities in eshop-orders.php in the eShop plugin 6.3.14 for WordPress allow (1) remote administrators to execute arbitrary SQL commands via the delid parameter or remote authenticated users to execute arbitrary SQL commands via the (2) view, (3) mark, or (4) change parameter. CVSSv3.1 8.8 (HIGH)

CWECWE 89VNDElfdenTYPVulnerability
8.8
CVSS v3.1
94
Edit Score
2017-01-23
2017-01-23 21:59Z
CRIT

CVE-2015-8972 — Gnu Chess: Stack-based buffer overflow in the ValidateMove function in frontend/move.cc in GNU Chess (aka gnuchess)

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2015-8972

Stack-based buffer overflow in the ValidateMove function in frontend/move.cc in GNU Chess (aka gnuchess) before 6.2.4 might allow context-dependent attackers to execute arbitrary code via a large input, as demonstrated when in UCI mode. CVSSv3.1 9.8 (CRITICAL)

CWECWE 119VNDGnuVNDStackTYPVulnerability
9.8
CVSS v3.1
99
Edit Score
2017-01-23
2017-01-23 21:59Z
CRIT

CVE-2015-8857 — Uglifyjs_project Uglifyjs: The uglify-js package before 2.4.24 for Node.js does not properly account for non-boolean values

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2015-8857

The uglify-js package before 2.4.24 for Node.js does not properly account for non-boolean values when rewriting boolean expressions, which might allow attackers to bypass security mechanisms or possibly have unspecified other impact by leveraging improperly rewritten Javascript. CVSSv3.1 9.8 (CRITICAL)

CWECWE 254VNDUglifyjs ProjectTYPVulnerability
9.8
CVSS v3.1
99
Edit Score
2017-01-23
2017-01-23 21:59Z
CRIT

CVE-2014-8362 — Vivint Sky_control_panel_firmware: Sky Control Panel 1.1.1.9926 allows remote attackers to enable and disable the alarm

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2014-8362

Vivint Sky Control Panel 1.1.1.9926 allows remote attackers to enable and disable the alarm system and modify other security settings via the Web-enabled interface. CVSSv3.1 9.8 (CRITICAL)

CWECWE 284VNDVivintTYPVulnerability
9.8
CVSS v3.1
99
Edit Score
2017-01-23
2017-01-23 17:59Z
HIGH

CVE-2017-5570 — Eclinicalworks Patient_portal: This is a blind SQL injection within the messageJson.jsp, which can only be exploited

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2017-5570

An issue was discovered in eClinicalWorks Patient Portal 7.0 build 13. This is a blind SQL injection within the messageJson.jsp, which can only be exploited by authenticated users via an HTTP POST request and which can be used to dump database data out to a malicious server, using an out-of-band technique such as select_loadfile(). CVSSv3.1 8.8 (HIGH)

CWECWE 89VNDEclinicalworksTYPVulnerability
8.8
CVSS v3.1
94
Edit Score
2017-01-23
2017-01-23 17:59Z
CRIT

CVE-2017-5569 — Eclinicalworks Patient_portal: This is a blind SQL injection within the template.jsp, which can be exploited without

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2017-5569

An issue was discovered in eClinicalWorks Patient Portal 7.0 build 13. This is a blind SQL injection within the template.jsp, which can be exploited without the need of authentication and via an HTTP POST request, and which can be used to dump database data out to a malicious server, using an out-of-band technique such as select_loadfile(). CVSSv3.1 9.8 (CRITICAL)

CWECWE 89VNDEclinicalworksTYPVulnerability
9.8
CVSS v3.1
99
Edit Score
2017-01-23
2017-01-23 07:59Z
CRIT

CVE-2017-5575 — Metalgenix Genixcms: SQL injection vulnerability in inc/lib/Options.class.php in GeniXCMS before 1.0.0 allows remote attackers to execute

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2017-5575

SQL injection vulnerability in inc/lib/Options.class.php in GeniXCMS before 1.0.0 allows remote attackers to execute arbitrary SQL commands via the modules parameter. CVSSv3.1 9.8 (CRITICAL)

CWECWE 89VNDMetalgenixTYPVulnerability
9.8
CVSS v3.1
99
Edit Score
2017-01-23
2017-01-23 07:59Z
CRIT

CVE-2017-5574 — Metalgenix Genixcms: SQL injection vulnerability in register.php in GeniXCMS before 1.0.0 allows unauthenticated users to execute

NVD (auto-promoted CVEs)·nvd.nist.govCVE-2017-5574

SQL injection vulnerability in register.php in GeniXCMS before 1.0.0 allows unauthenticated users to execute arbitrary SQL commands via the activation parameter. CVSSv3.1 9.8 (CRITICAL)

CWECWE 89VNDMetalgenixTYPVulnerability
9.8
CVSS v3.1
99
Edit Score