Skip to main content
CVE-2016-4807 MEDIUM POC This Month

Web2py versions 2.14.5 and below was affected by Reflected XSS vulnerability, which allows an attacker to perform an XSS attack on logged in user (admin). Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Web2Py
NVD Exploit-DB
CVSS 3.0
4.8
EPSS
0.4%
CVE-2017-2938 MEDIUM PATCH This Month

Adobe Flash Player versions 24.0.0.186 and earlier have a security bypass vulnerability related to handling TCP connections. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Adobe Authentication Bypass Flash Player
NVD
CVSS 3.1
6.5
EPSS
2.0%
CVE-2017-2947 MEDIUM PATCH This Month

Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have a security bypass vulnerability when manipulating Form Data Format (FDF). Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity.

Adobe Authentication Bypass Acrobat Acrobat Dc Acrobat Reader Dc +1
NVD
CVSS 3.0
5.5
EPSS
2.5%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy