Export limit exceeded: 335840 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Export limit exceeded: 74896 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (74896 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2016-11022 | 1 Netgear | 6 Prosafe Wc7520, Prosafe Wc7520 Firmware, Prosafe Wc7600 and 3 more | 2024-11-21 | 7.2 High |
| NETGEAR Prosafe WC9500 5.1.0.17, WC7600 5.1.0.17, and WC7520 2.5.0.35 devices allow a remote attacker to execute code with root privileges via shell metacharacters in the reqMethod parameter to login_handler.php. | ||||
| CVE-2016-11004 | 1 Elegantthemes | 1 Monarch | 2024-11-21 | 8.8 High |
| The Elegant Themes Monarch plugin before 1.2.7 for WordPress has privilege escalation. | ||||
| CVE-2016-11002 | 1 Elegantthemes | 1 Extra | 2024-11-21 | 8.8 High |
| The Elegant Themes Extra theme before 1.2.4 for WordPress has privilege escalation. | ||||
| CVE-2016-10991 | 1 Imdb-widget Project | 1 Imdb-widget | 2024-11-21 | 7.5 High |
| The imdb-widget plugin before 1.0.9 for WordPress has Local File Inclusion. | ||||
| CVE-2016-10989 | 1 Leenk | 1 Leenk.me | 2024-11-21 | 8.8 High |
| The leenkme plugin before 2.6.0 for WordPress has wp-admin/admin.php?page=leenkme_facebook CSRF. | ||||
| CVE-2016-10982 | 1 Kentothemes | 1 Kento-post-view-counter | 2024-11-21 | 8.8 High |
| The kento-post-view-counter plugin through 2.8 for WordPress has wp-admin/admin.php?page=kentopvc_settings CSRF. | ||||
| CVE-2016-10978 | 1 Fossura | 1 Tag Miner | 2024-11-21 | 8.8 High |
| The fossura-tag-miner plugin before 1.1.5 for WordPress has CSRF. | ||||
| CVE-2016-10974 | 1 Tonjoostudio | 1 Fluid-responsive-slideshow | 2024-11-21 | 8.8 High |
| The fluid-responsive-slideshow plugin before 2.2.7 for WordPress has frs_save CSRF with resultant stored XSS. | ||||
| CVE-2016-10968 | 1 Peepso | 1 Peepso | 2024-11-21 | 8.8 High |
| The peepso-core plugin before 1.6.1 for WordPress has PeepSoProfilePreferencesAjax->save() privilege escalation. | ||||
| CVE-2016-10966 | 1 Creativeinteractivemedia | 1 Real3d Flipbook | 2024-11-21 | 7.5 High |
| The real3d-flipbook-lite plugin 1.0 for WordPress has bookName=../ directory traversal for file upload. | ||||
| CVE-2016-10965 | 1 Creativeinteractivemedia | 1 Real3d Flipbook | 2024-11-21 | 7.5 High |
| The real3d-flipbook-lite plugin 1.0 for WordPress has deleteBook=../ directory traversal for file deletion. | ||||
| CVE-2016-10960 | 1 Joomlaserviceprovider | 1 Wsecure | 2024-11-21 | 8.8 High |
| The wsecure plugin before 2.4 for WordPress has remote code execution via shell metacharacters in the wsecure-config.php publish parameter. | ||||
| CVE-2016-10958 | 1 Estatik | 1 Estatik | 2024-11-21 | 7.5 High |
| The estatik plugin before 2.3.0 for WordPress has unauthenticated arbitrary file upload via es_media_images[] to wp-admin/admin-ajax.php. | ||||
| CVE-2016-10956 | 1 Mail-masta Project | 1 Mail-masta | 2024-11-21 | 7.5 High |
| The mail-masta plugin 1.0 for WordPress has local file inclusion in count_of_send.php and csvexport.php. | ||||
| CVE-2016-10951 | 1 Firestormplugins | 1 Fs-shopping-cart | 2024-11-21 | 7.2 High |
| The fs-shopping-cart plugin 2.07.02 for WordPress has SQL injection via the pid parameter. | ||||
| CVE-2016-10950 | 1 Sirv | 1 Sirv | 2024-11-21 | 8.8 High |
| The sirv plugin before 1.3.2 for WordPress has SQL injection via the id parameter. | ||||
| CVE-2016-10949 | 1 Relevanssi | 1 Relevanssi | 2024-11-21 | 8.8 High |
| The Relevanssi Premium plugin before 1.14.6.1 for WordPress has SQL injection with resultant unsafe unserialization. | ||||
| CVE-2016-10948 | 1 Post Indexer Project | 1 Post Indexer | 2024-11-21 | 8.1 High |
| The Post Indexer plugin before 3.0.6.2 for WordPress has incorrect handling of data passed to the unserialize function. | ||||
| CVE-2016-10947 | 1 Post Indexer Project | 1 Post Indexer | 2024-11-21 | 7.2 High |
| The Post Indexer plugin before 3.0.6.2 for WordPress has SQL injection via the period parameter by a super admin. | ||||
| CVE-2016-10946 | 1 Wp-d3 Project | 1 Wp-d3 | 2024-11-21 | 8.8 High |
| The wp-d3 plugin before 2.4.1 for WordPress has CSRF. | ||||