Browse CVEs
16,477 medium risk vulnerabilities
| CVE ID | Title | Severity | CVSS | Risk | Patch | Published |
|---|---|---|---|---|---|---|
| CVE-2016-5019 | CoreResponseStateManager in Apache MyFaces Trinidad 1.0.0... | Critical | 9.8 | Medium Risk | Patched | 03-Oct-16 |
| CVE-2015-1832 | XML external entity (XXE) vulnerability in the SqlXmlUtil... | Critical | 9.1 | Medium Risk | Patched | 03-Oct-16 |
| CVE-2016-6637 | Multiple cross-site request forgery (CSRF) vulnerabilitie... | Critical | 9.6 | Medium Risk | Patched | 30-Sep-16 |
| CVE-2016-7191 | The Microsoft Azure Active Directory Passport (aka Passpo... | High | 8.1 | Medium Risk | Patched | 28-Sep-16 |
| CVE-2016-4978 | The getObject method of the javax.jms.ObjectMessage class... | High | 7.2 | Medium Risk | Patched | 27-Sep-16 |
| CVE-2016-4972 | OpenStack Murano before 1.0.3 (liberty) and 2.x before 2.... | Critical | 9.8 | Medium Risk | Patched | 26-Sep-16 |
| CVE-2016-5395 | Cross-site scripting (XSS) vulnerability in the create us... | Medium | 4.8 | Medium Risk | Patched | 26-Sep-16 |
| CVE-2016-4658 | xpointer.c in libxml2 before 2.9.5 (as used in Apple iOS ... | Critical | 9.8 | Medium Risk | Patched | 25-Sep-16 |
| CVE-2016-4464 | The application plugins in Apache CXF Fediz 1.2.x before ... | Critical | 9.8 | Medium Risk | Patched | 21-Sep-16 |
| CVE-2016-6802 | Apache Shiro before 1.3.2 allows attackers to bypass inte... | High | 7.5 | Medium Risk | Patched | 20-Sep-16 |