Browse CVEs
11,236 medium risk vulnerabilities
| CVE ID | Title | Severity | CVSS | Risk | Patch | Published |
|---|---|---|---|---|---|---|
| CVE-2016-6802 | Apache Shiro before 1.3.2 allows attackers to bypass inte... | High | 7.5 | Medium Risk | Patched | 20-Sep-16 |
| CVE-2016-3089 | Cross-site scripting (XSS) vulnerability in the SWF panel... | Medium | 6.1 | Medium Risk | Patched | 19-Aug-16 |
| CVE-2016-5000 | The XLSX2CSV example in Apache POI before 3.14 allows rem... | Medium | 5.5 | Medium Risk | Patched | 05-Aug-16 |
| CVE-2016-0782 | The administration web console in Apache ActiveMQ 5.x bef... | Medium | 5.4 | Medium Risk | Patched | 05-Aug-16 |
| CVE-2016-5005 | Cross-site scripting (XSS) vulnerability in Apache Archiv... | Medium | 4.8 | Medium Risk | 28-Jul-16 | |
| CVE-2016-5388 | Apache Tomcat 7.x through 7.0.70 and 8.x through 8.5.4, w... | High | 8.1 | Medium Risk | Patched | 19-Jul-16 |
| CVE-2016-4430 | Apache Struts 2 2.3.20 through 2.3.28.1 mishandles token ... | High | 8.8 | Medium Risk | Patched | 04-Jul-16 |
| CVE-2016-1182 | ActionServlet.java in Apache Struts 1 1.x through 1.3.10 ... | High | 8.2 | Medium Risk | Patched | 04-Jul-16 |
| CVE-2016-1181 | ActionServlet.java in Apache Struts 1 1.x through 1.3.10 ... | High | 8.1 | Medium Risk | Patched | 04-Jul-16 |
| CVE-2016-4433 | Apache Struts 2 2.3.20 through 2.3.28.1 allows remote att... | High | 7.5 | Medium Risk | Patched | 04-Jul-16 |