CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
  Take a third party risk management course for FREE
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Security Vulnerabilities Published In October 2016

CVSS Scores Greater Than: 0   1   2   3   4   5   6   7   8   9  
Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
1 CVE-2016-1000217 89 Sql 2016-10-06 2016-12-22
7.5
 None Remote Low Not required Partial Partial Partial
Zotpress plugin for WordPress SQLi in zp_get_account()
2 CVE-2016-1000216 78 2016-10-10 2017-07-07
9.0
 None Remote Low ??? Complete Complete Complete
Ruckus Wireless H500 web management interface authenticated command injection
3 CVE-2016-1000215 DoS 2016-10-25 2017-07-07
5.0
 None Remote Low Not required None None Partial
Ruckus Wireless H500 web management interface denial of service
4 CVE-2016-1000214 287 Bypass 2016-10-25 2017-07-07
5.0
 None Remote Low Not required Partial None None
Ruckus Wireless H500 web management interface authentication bypass
5 CVE-2016-1000213 352 CSRF 2016-10-25 2017-07-07
6.8
 None Remote Medium Not required Partial Partial Partial
Ruckus Wireless H500 web management interface CSRF
6 CVE-2016-1000155 79 XSS 2016-10-10 2016-12-22
4.3
 None Remote Medium Not required None Partial None
Reflected XSS in wordpress plugin wpsolr-search-engine v7.6
7 CVE-2016-1000154 79 XSS 2016-10-10 2016-11-28
4.3
 None Remote Medium Not required None Partial None
Reflected XSS in wordpress plugin whizz v1.0.7
8 CVE-2016-1000153 79 XSS 2016-10-10 2016-12-22
4.3
 None Remote Medium Not required None Partial None
Reflected XSS in wordpress plugin tidio-gallery v1.1
9 CVE-2016-1000152 79 XSS 2016-10-10 2016-12-22
4.3
 None Remote Medium Not required None Partial None
Reflected XSS in wordpress plugin tidio-form v1.0
10 CVE-2016-1000151 79 XSS 2016-10-10 2016-12-22
4.3
 None Remote Medium Not required None Partial None
Reflected XSS in wordpress plugin tera-charts v1.0
11 CVE-2016-1000150 79 XSS 2016-10-10 2016-12-22
4.3
 None Remote Medium Not required None Partial None
Reflected XSS in wordpress plugin simplified-content v1.0.0
12 CVE-2016-1000149 79 XSS 2016-10-10 2016-11-28
4.3
 None Remote Medium Not required None Partial None
Reflected XSS in wordpress plugin simpel-reserveren v3.5.2
13 CVE-2016-1000148 79 XSS 2016-10-10 2016-11-28
4.3
 None Remote Medium Not required None Partial None
Reflected XSS in wordpress plugin s3-video v0.983
14 CVE-2016-1000147 79 XSS 2016-10-10 2016-12-22
4.3
 None Remote Medium Not required None Partial None
Reflected XSS in wordpress plugin recipes-writer v1.0.4
15 CVE-2016-1000146 79 XSS 2016-10-10 2016-11-28
4.3
 None Remote Medium Not required None Partial None
Reflected XSS in wordpress plugin pondol-formmail v1.1
16 CVE-2016-1000145 79 XSS 2016-10-10 2016-12-22
4.3
 None Remote Medium Not required None Partial None
Reflected XSS in wordpress plugin pondol-carousel v1.0
17 CVE-2016-1000144 79 XSS 2016-10-10 2016-12-22
4.3
 None Remote Medium Not required None Partial None
Reflected XSS in wordpress plugin photoxhibit v2.1.8
18 CVE-2016-1000143 79 XSS 2016-10-10 2016-11-28
4.3
 None Remote Medium Not required None Partial None
Reflected XSS in wordpress plugin photoxhibit v2.1.8
19 CVE-2016-1000142 79 XSS 2016-10-10 2016-12-22
4.3
 None Remote Medium Not required None Partial None
Reflected XSS in wordpress plugin parsi-font v4.2.5
20 CVE-2016-1000141 79 XSS 2016-10-10 2016-11-28
4.3
 None Remote Medium Not required None Partial None
Reflected XSS in wordpress plugin page-layout-builder v1.9.3
21 CVE-2016-1000140 79 XSS 2016-10-10 2016-11-28
4.3
 None Remote Medium Not required None Partial None
Reflected XSS in wordpress plugin new-year-firework v1.1.9
22 CVE-2016-1000139 79 XSS 2016-10-10 2016-12-22
4.3
 None Remote Medium Not required None Partial None
Reflected XSS in wordpress plugin infusionsoft v1.5.11
23 CVE-2016-1000138 79 XSS 2016-10-10 2016-11-28
4.3
 None Remote Medium Not required None Partial None
Reflected XSS in wordpress plugin indexisto v1.0.5
24 CVE-2016-1000137 79 XSS 2016-10-10 2016-12-22
4.3
 None Remote Medium Not required None Partial None
Reflected XSS in wordpress plugin hero-maps-pro v2.1.0
25 CVE-2016-1000136 79 XSS 2016-10-10 2022-04-21
4.3
 None Remote Medium Not required None Partial None
Reflected XSS in wordpress plugin heat-trackr v1.0
26 CVE-2016-1000135 79 XSS 2016-10-10 2016-12-22
4.3
 None Remote Medium Not required None Partial None
Reflected XSS in wordpress plugin hdw-tube v1.2
27 CVE-2016-1000134 79 XSS 2016-10-10 2016-12-22
4.3
 None Remote Medium Not required None Partial None
Reflected XSS in wordpress plugin hdw-tube v1.2
28 CVE-2016-1000133 79 XSS 2016-10-10 2022-04-21
4.3
 None Remote Medium Not required None Partial None
Reflected XSS in wordpress plugin forget-about-shortcode-buttons v1.1.1
29 CVE-2016-1000132 79 XSS 2016-10-10 2021-10-12
4.3
 None Remote Medium Not required None Partial None
Reflected XSS in wordpress plugin enhanced-tooltipglossary v3.2.8
30 CVE-2016-1000131 79 XSS 2016-10-10 2016-12-22
4.3
 None Remote Medium Not required None Partial None
Reflected XSS in wordpress plugin e-search v1.0
31 CVE-2016-1000130 79 XSS 2016-10-10 2016-12-22
4.3
 None Remote Medium Not required None Partial None
Reflected XSS in wordpress plugin e-search v1.0
32 CVE-2016-1000129 79 XSS 2016-10-10 2016-11-28
4.3
 None Remote Medium Not required None Partial None
Reflected XSS in wordpress plugin defa-online-image-protector v3.3
33 CVE-2016-1000128 79 XSS 2016-10-10 2016-12-22
4.3
 None Remote Medium Not required None Partial None
Reflected XSS in wordpress plugin anti-plagiarism v3.60
34 CVE-2016-1000127 79 XSS 2016-10-10 2016-11-28
4.3
 None Remote Medium Not required None Partial None
Reflected XSS in wordpress plugin ajax-random-post v2.00
35 CVE-2016-1000126 79 XSS 2016-10-10 2016-11-28
4.3
 None Remote Medium Not required None Partial None
Reflected XSS in wordpress plugin admin-font-editor v1.8
36 CVE-2016-1000125 89 Sql 2016-10-06 2017-09-06
7.5
 None Remote Low Not required Partial Partial Partial
Unauthenticated SQL Injection in Huge-IT Catalog v1.0.7 for Joomla
37 CVE-2016-1000124 89 Sql 2016-10-06 2017-09-06
7.5
 None Remote Low Not required Partial Partial Partial
Unauthenticated SQL Injection in Huge-IT Portfolio Gallery Plugin v1.0.6
38 CVE-2016-1000123 89 Sql 2016-10-06 2017-09-06
7.5
 None Remote Low Not required Partial Partial Partial
Unauthenticated SQL Injection in Huge-IT Video Gallery v1.0.9 for Joomla
39 CVE-2016-1000122 89 Sql XSS 2016-10-27 2016-12-22
6.5
 None Remote Low ??? Partial Partial Partial
XSS and SQLi in Huge IT Joomla Slider v1.0.9 extension
40 CVE-2016-1000121 79 XSS 2016-10-27 2016-11-28
3.5
 None Remote Medium ??? None Partial None
XSS and SQLi in Huge IT Joomla Slider v1.0.9 extension
41 CVE-2016-1000120 89 Sql XSS 2016-10-27 2016-12-22
6.5
 None Remote Low ??? Partial Partial Partial
SQLi and XSS in Huge IT catalog extension v1.0.4 for Joomla
42 CVE-2016-1000119 79 XSS 2016-10-21 2018-05-02
6.5
 None Remote Low ??? Partial Partial Partial
SQLi and XSS in Huge IT catalog extension v1.0.4 for Joomla
43 CVE-2016-1000118 79 XSS 2016-10-21 2018-05-02
6.5
 None Remote Low ??? Partial Partial Partial
XSS & SQLi in HugeIT slideshow v1.0.4
44 CVE-2016-1000117 79 XSS 2016-10-21 2017-01-06
6.5
 None Remote Low ??? Partial Partial Partial
XSS & SQLi in HugeIT slideshow v1.0.4
45 CVE-2016-1000116 79 Sql XSS 2016-10-21 2017-03-28
6.5
 None Remote Low ??? Partial Partial Partial
Huge-IT Portfolio Gallery manager v1.1.0 SQL Injection and XSS
46 CVE-2016-1000115 79 Sql XSS 2016-10-21 2017-11-13
6.5
 None Remote Low ??? Partial Partial Partial
Huge-IT Portfolio Gallery manager v1.1.0 SQL Injection and XSS
47 CVE-2016-1000114 79 XSS 2016-10-06 2019-12-19
4.3
 None Remote Medium Not required None Partial None
XSS in huge IT gallery v1.1.5 for Joomla
48 CVE-2016-1000113 89 Sql XSS 2016-10-06 2019-12-19
7.5
 None Remote Low Not required Partial Partial Partial
XSS and SQLi in huge IT gallery v1.1.5 for Joomla
49 CVE-2016-1000112 22 Dir. Trav. 2016-10-06 2020-04-29
9.4
 None Remote Low Not required Complete Complete None
Unauthenticated remote .jpg file upload in contus-video-comments v1.0 wordpress plugin
50 CVE-2016-1000033 295 2016-10-25 2020-02-24
4.3
 None Remote Medium Not required Partial None None
Shotwell version 0.22.0 (and possibly other versions) is vulnerable to a TLS/SSL certification validation flaw resulting in a potential for man in the middle attacks.
Total number of vulnerabilities : 681   Page : 1 (This Page)2 3 4 5 6 7 8 9 10 11 12 13 14
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.