Skip to main content
CVE-2016-6601 HIGH POC THREAT Act Now

Directory traversal vulnerability in the file download functionality in ZOHO WebNMS Framework 5.2 and 5.2 SP1 allows remote attackers to read arbitrary files via a .. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 92.8%.

Path Traversal Zoho Webnms Framework
NVD GitHub Exploit-DB VulDB
CVSS 3.0
7.5
EPSS
92.8%
Threat
5.8
CVE-2016-4338 HIGH POC THREAT Act Now

The mysql user parameter configuration script (userparameter_mysql.conf) in the agent in Zabbix before 2.0.18, 2.2.x before 2.2.13, and 3.0.x before 3.0.3, when used with a shell other than bash,. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. Public exploit code available and EPSS exploitation probability 45.0%.

RCE SQLi Zabbix
NVD Exploit-DB VulDB
CVSS 3.0
8.1
EPSS
45.0%
Threat
4.5
CVE-2016-1417 HIGH POC This Week

Untrusted search path vulnerability in Snort 2.9.7.0-WIN32 allows remote attackers to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse tcapi.dll that is located in the same. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

RCE Snort
NVD VulDB
CVSS 3.0
8.8
EPSS
4.3%
CVE-2016-4340 HIGH POC PATCH This Week

The impersonate feature in Gitlab 8.7.0, 8.6.0 through 8.6.7, 8.5.0 through 8.5.11, 8.4.0 through 8.4.9, 8.3.0 through 8.3.8, and 8.2.0 through 8.2.4 allows remote authenticated users to "log in" as. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

Gitlab Privilege Escalation
NVD Exploit-DB VulDB
CVSS 3.0
8.8
EPSS
2.5%
CVE-2016-0769 HIGH POC This Week

Multiple SQL injection vulnerabilities in eshop-orders.php in the eShop plugin 6.3.14 for WordPress allow (1) remote administrators to execute arbitrary SQL commands via the delid parameter or remote. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress SQLi PHP Eshop Plugin
NVD VulDB
CVSS 3.0
8.8
EPSS
2.1%
CVE-2016-4793 HIGH POC PATCH This Week

The clientIp function in CakePHP 3.2.4 and earlier allows remote attackers to spoof their IP via the CLIENT-IP HTTP header. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Information Disclosure Cakephp
NVD Exploit-DB VulDB
CVSS 3.0
7.5
EPSS
8.3%
CVE-2016-7792 HIGH POC This Week

Ubiquiti Networks UniFi 5.2.7 does not restrict access to the database, which allows remote attackers to modify the database by directly connecting to it. Rated high severity (CVSS 8.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Ubiquiti Authentication Bypass Unifi Ap Ac Lite Firmware
NVD VulDB
CVSS 3.0
8.8
EPSS
0.9%
CVE-2016-6521 HIGH POC PATCH This Week

Cross-site request forgery (CSRF) vulnerability in Grails console (aka Grails Debug Console and Grails Web Console) 2.0.7, 1.5.10, and earlier allows remote attackers to hijack the authentication of. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

CSRF Grails
NVD GitHub VulDB
CVSS 3.0
8.8
EPSS
0.3%
CVE-2016-10156 HIGH POC PATCH This Week

A flaw in systemd v228 in /src/basic/fs-util.c caused world writable suid files to be created when using the systemd timers features, allowing local attackers to escalate their privileges to root. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. Public exploit code available.

Privilege Escalation Systemd
NVD GitHub Exploit-DB VulDB
CVSS 3.0
7.8
EPSS
0.7%
CVE-2016-1281 HIGH POC PATCH This Week

Untrusted search path vulnerability in the installer for TrueCrypt 7.2 and 7.1a, VeraCrypt before 1.17-BETA, and possibly other products allows local users to execute arbitrary code with. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available.

RCE Truecrypt Veracrypt
NVD VulDB
CVSS 3.0
7.8
EPSS
0.2%
CVE-2015-8858 HIGH POC PATCH This Week

The uglify-js package before 2.6.0 for Node.js allows attackers to cause a denial of service (CPU consumption) via crafted input in a parse call, aka a "regular expression denial of service (ReDoS).". Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Denial Of Service Node.js Uglifyjs
NVD VulDB
CVSS 3.0
7.5
EPSS
0.9%
CVE-2015-8315 HIGH POC PATCH This Week

The ms package before 0.7.1 for Node.js allows attackers to cause a denial of service (CPU consumption) via a long version string, aka a "regular expression denial of service (ReDoS).". Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Denial Of Service Node.js Ms Vercel
NVD VulDB
CVSS 3.1
7.5
EPSS
0.9%
CVE-2016-5119 HIGH POC PATCH This Week

The automatic update feature in KeePass 2.33 and earlier allows man-in-the-middle attackers to execute arbitrary code by spoofing the version check response and supplying a crafted update. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required. Public exploit code available.

RCE Keepass
NVD VulDB
CVSS 3.0
7.5
EPSS
0.3%
CVE-2015-4626 HIGH POC This Week

B.A.S C2Box before 4.0.0 (r19171) relies on client-side validation, which allows remote attackers to "corrupt the business logic" via a negative value in an overdraft. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure C2Box
NVD VulDB
CVSS 3.0
7.5
EPSS
0.2%
CVE-2016-9012 HIGH This Week

CloudVision Portal (CVP) before 2016.1.2.1 allows remote authenticated users to gain access to the internal configuration mechanisms via the management plane, related to a request to. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Privilege Escalation Cloudvision Portal
NVD VulDB
CVSS 3.0
8.8
EPSS
0.7%
CVE-2017-5563 HIGH This Week

LibTIFF version 4.0.7 is vulnerable to a heap-based buffer over-read in tif_lzw.c resulting in DoS or code execution via a crafted bmp image to tools/bmp2tiff. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow RCE Information Disclosure Libtiff
NVD VulDB
CVSS 3.0
8.8
EPSS
0.4%
CVE-2017-5570 HIGH This Week

An issue was discovered in eClinicalWorks Patient Portal 7.0 build 13. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

SQLi Patient Portal
NVD GitHub VulDB
CVSS 3.0
8.8
EPSS
0.3%
CVE-2016-9383 HIGH PATCH This Week

Xen, when running on a 64-bit hypervisor, allows local x86 guest OS users to modify arbitrary memory and consequently obtain sensitive information, cause a denial of service (host crash), or execute. Rated high severity (CVSS 8.8), this vulnerability is low attack complexity.

Denial Of Service RCE Xen Xenserver
NVD VulDB
CVSS 3.0
8.8
EPSS
0.1%
CVE-2016-5091 HIGH PATCH This Week

Extbase in TYPO3 4.3.0 before 6.2.24, 7.x before 7.6.8, and 8.1.1 allows remote attackers to obtain sensitive information or possibly execute arbitrary code via a crafted Extbase action. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required.

RCE Typo3
NVD VulDB
CVSS 3.0
8.1
EPSS
2.4%
CVE-2016-7102 HIGH This Week

ownCloud Desktop before 2.2.3 allows local users to execute arbitrary code and possibly gain privileges via a Trojan library in a "special path" in the C: drive. Rated high severity (CVSS 8.4), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

RCE Code Injection Owncloud Desktop Client
NVD VulDB
CVSS 3.0
8.4
EPSS
0.2%
CVE-2017-5554 HIGH This Week

An issue was discovered in ABOOT in OnePlus 3 and 3T OxygenOS before 4.0.2. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Authentication Bypass Oxygenos
NVD VulDB
CVSS 3.0
8.1
EPSS
1.6%
CVE-2017-5371 HIGH This Week

Odata Server in SAP Adaptive Server Enterprise (ASE) 16 allows remote attackers to cause a denial of service (process crash) via a series of crafted requests, aka SAP Security Note 2330422. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service SAP Adaptive Server Enterprise
NVD VulDB
CVSS 3.0
7.5
EPSS
4.0%
CVE-2017-5556 HIGH This Week

The ConvertToPDF plugin in Foxit Reader before 8.2 and PhantomPDF before 8.2 on Windows, when the gflags app is enabled, allows remote attackers to cause a denial of service (out-of-bounds read and. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Denial Of Service Microsoft Information Disclosure Foxit Reader +1
NVD VulDB
CVSS 3.0
8.1
EPSS
0.8%
CVE-2016-10101 HIGH This Week

Information Disclosure can occur in Hitek Software's Automize 10.x and 11.x passManager.jsd. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Authentication Bypass Information Disclosure Automize
NVD VulDB
CVSS 3.0
8.1
EPSS
0.3%
CVE-2016-10103 HIGH This Week

Information Disclosure can occur in encryptionProfiles.jsd in Hitek Software's Automize because of the Read attribute being set for Users. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Authentication Bypass Information Disclosure Automize
NVD VulDB
CVSS 3.0
8.1
EPSS
0.2%
CVE-2016-10102 HIGH This Week

hitek.jar in Hitek Software's Automize uses weak encryption when encrypting SSH/SFTP and Encryption profile passwords. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Information Disclosure Automize
NVD VulDB
CVSS 3.0
8.1
EPSS
0.1%
CVE-2016-5720 HIGH This Week

Multiple untrusted search path vulnerabilities in Microsoft Skype allow local users to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse (1) msi.dll, (2) dpapi.dll, or (3). Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

RCE Microsoft Privilege Escalation Skype
NVD VulDB
CVSS 3.0
7.8
EPSS
1.0%
CVE-2016-9445 HIGH This Week

An integer overflow vulnerability exists in the vmnc decoder component of GStreamer that allows remote attackers to trigger a buffer overflow and crash the application. GStreamer version 1.10.0 is confirmed affected, with exploitation requiring no authentication or user interaction over the network. A public proof-of-concept exploit exists (published on Scary Beasts Security blog), and EPSS indicates a 2.41% probability of exploitation in the wild (85th percentile), making this a moderate real-world risk.

Denial Of Service Buffer Overflow Integer Overflow
NVD VulDB
CVSS 3.1
7.5
EPSS
2.4%
CVE-2015-8971 HIGH PATCH This Week

Terminology 0.7.0 allows remote attackers to execute arbitrary commands via escape sequences that modify the window title and then are written to the terminal, a similar issue to CVE-2003-0063. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. This Command Injection vulnerability could allow attackers to inject arbitrary commands into system command execution.

Command Injection Debian Linux Terminology
NVD VulDB
CVSS 3.1
7.8
EPSS
0.6%
CVE-2016-9379 HIGH PATCH This Week

The pygrub boot loader emulator in Xen, when S-expression output format is requested, allows local pygrub-using guest OS administrators to read or delete arbitrary files on the host via string quotes. Rated high severity (CVSS 7.9), this vulnerability is low attack complexity.

Information Disclosure Xen Xenserver
NVD VulDB
CVSS 3.0
7.9
EPSS
0.1%
CVE-2016-9447 HIGH This Week

A vulnerability in the ROM mappings of the NSF decoder in GStreamer 0.10.x allows remote attackers to trigger out-of-bounds memory access through crafted NSF music files, potentially leading to arbitrary code execution or denial of service. The vulnerability affects all GStreamer 0.10.x versions and requires user interaction to open a malicious NSF file. With an EPSS score of 0.48% (65th percentile) and proof-of-concept exploit code publicly available, this represents a moderate real-world risk for systems processing untrusted media files.

RCE Denial Of Service Buffer Overflow Information Disclosure
NVD VulDB
CVSS 3.0
7.8
EPSS
0.5%
CVE-2016-6920 HIGH This Week

Heap-based buffer overflow in the decode_block function in libavcodec/exr.c in FFmpeg before 3.1.3 allows remote attackers to cause a denial of service (application crash) via vectors involving tile. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Buffer Overflow Denial Of Service Ffmpeg
NVD VulDB
CVSS 3.0
7.5
EPSS
1.7%
CVE-2016-9382 HIGH PATCH This Week

Xen 4.0.x through 4.7.x mishandle x86 task switches to VM86 mode, which allows local 32-bit x86 HVM guest OS users to gain privileges or cause a denial of service (guest OS crash) by leveraging a. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

Denial Of Service Privilege Escalation Xen Xenserver
NVD VulDB
CVSS 3.0
7.8
EPSS
0.1%
CVE-2016-9386 HIGH PATCH This Week

The x86 emulator in Xen does not properly treat x86 NULL segments as unusable when accessing memory, which might allow local HVM guest users to gain privileges via vectors involving "unexpected". Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

Privilege Escalation Xenserver Xen
NVD VulDB
CVSS 3.0
7.8
EPSS
0.1%
CVE-2016-6668 HIGH This Week

The Atlassian Hipchat Integration Plugin for Bitbucket Server 6.26.0 before 6.27.5, 6.28.0 before 7.3.7, and 7.4.0 before 7.8.17; Confluence HipChat plugin 6.26.0 before 7.8.17; and HipChat for JIRA. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Atlassian Information Disclosure Confluence Server Jira Integration For Hipchat
NVD VulDB
CVSS 3.1
7.5
EPSS
1.3%
CVE-2016-9446 HIGH This Week

The GStreamer multimedia framework contains an uninitialized memory vulnerability in its VMNC (VMware VNC) decoder that allows remote attackers to read sensitive information from process memory. When processing specially crafted VMNC video files (such as a single-frame movie that doesn't draw to the canvas), the decoder exposes uninitialized memory contents that may contain passwords, cryptographic keys, or other sensitive data from the application's memory space. A proof-of-concept exploit exists and has been publicly disclosed, with an EPSS score of 1.28% indicating moderate real-world exploitation likelihood.

Information Disclosure
NVD VulDB
CVSS 3.1
7.5
EPSS
1.3%
CVE-2015-8855 HIGH PATCH This Week

The semver package before 4.3.2 for Node.js allows attackers to cause a denial of service (CPU consumption) via a long version string, aka a "regular expression denial of service (ReDoS).". Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Denial Of Service Node.js Node Js
NVD VulDB
CVSS 3.0
7.5
EPSS
1.1%
CVE-2017-5182 HIGH This Week

Remote Manager in Open Enterprise Server (OES) allows unauthenticated remote attackers to read any arbitrary file, via a specially crafted URL, that allows complete directory traversal and total. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Path Traversal Information Disclosure Open Enterprise Server
NVD VulDB
CVSS 3.0
7.5
EPSS
1.0%
CVE-2015-8854 HIGH PATCH This Week

The marked package before 0.3.4 for Node.js allows attackers to cause a denial of service (CPU consumption) via unspecified vectors that trigger a "catastrophic backtracking issue for the em inline. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Denial Of Service Node.js Marked Fedora
NVD VulDB
CVSS 3.1
7.5
EPSS
0.9%
CVE-2017-5372 HIGH This Week

The function msp (aka MSPRuntimeInterface) in the P4 SERVERCORE component in SAP AS JAVA allows remote attackers to obtain sensitive system information by leveraging a missing authorization check for. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Java SAP Information Disclosure Netweaver
NVD VulDB
CVSS 3.0
7.5
EPSS
0.7%
CVE-2016-6160 HIGH PATCH This Week

tcprewrite in tcpreplay before 4.1.2 allows remote attackers to cause a denial of service (segmentation fault) via a large frame, a related issue to CVE-2017-14266. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Denial Of Service Tcpreplay
NVD GitHub VulDB
CVSS 3.0
7.5
EPSS
0.6%
CVE-2016-5697 HIGH PATCH This Week

Ruby-saml before 1.3.0 allows attackers to perform XML signature wrapping attacks via unspecified vectors. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Information Disclosure Ruby Saml
NVD VulDB
CVSS 3.0
7.5
EPSS
0.4%
CVE-2015-8860 HIGH PATCH This Week

The tar package before 2.0.0 for Node.js allows remote attackers to write to arbitrary files via a symlink attack in an archive. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Node.js Information Disclosure Node Js
NVD VulDB
CVSS 3.0
7.5
EPSS
0.4%
CVE-2016-7037 HIGH PATCH This Week

The verify function in Encryption/Symmetric.php in Malcolm Fell jwt before 1.0.3 does not use a timing-safe function for hash comparison, which allows attackers to spoof signatures via a timing. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

PHP Information Disclosure Jwt
NVD GitHub
CVSS 3.0
7.5
EPSS
0.1%
CVE-2016-9381 HIGH This Week

Race condition in QEMU in Xen allows local x86 HVM guest OS administrators to gain privileges by changing certain data on shared rings, aka a "double fetch" vulnerability. Rated high severity (CVSS 7.5). No vendor patch available.

Race Condition Information Disclosure Qemu Xenserver
NVD VulDB
CVSS 3.1
7.5
EPSS
0.1%
CVE-2016-9380 HIGH PATCH This Week

The pygrub boot loader emulator in Xen, when nul-delimited output format is requested, allows local pygrub-using guest OS administrators to read or delete arbitrary files on the host via NUL bytes in. Rated high severity (CVSS 7.5).

Information Disclosure Xen Xenserver
NVD VulDB
CVSS 3.0
7.5
EPSS
0.1%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy