Browse CVEs
11,238 medium risk vulnerabilities
| CVE ID | Title | Severity | CVSS | Risk | Patch | Published |
|---|---|---|---|---|---|---|
| CVE-2016-4003 | Cross-site scripting (XSS) vulnerability in the URLDecode... | Medium | 6.1 | Medium Risk | Patched | 12-Apr-16 |
| CVE-2016-4009 | Integer overflow in the ImagingResampleHorizontal functio... | Critical | 9.8 | Medium Risk | Patched | 13-Apr-16 |
| CVE-2016-3082 | XSLTResult in Apache Struts 2.x before 2.3.20.2, 2.3.24.x... | Critical | 9.8 | Medium Risk | Patched | 26-Apr-16 |
| CVE-2016-4432 | The AMQP 0-8, 0-9, 0-91, and 0-10 connection handling in ... | Critical | 9.1 | Medium Risk | Patched | 01-Jun-16 |
| CVE-2016-2175 | Apache PDFBox before 1.8.12 and 2.x before 2.0.1 does not... | High | 7.8 | Medium Risk | Patched | 01-Jun-16 |
| CVE-2016-3094 | PlainSaslServer.java in Apache Qpid Java before 6.0.3, wh... | Medium | 5.9 | Medium Risk | Patched | 01-Jun-16 |
| CVE-2016-3093 | Apache Struts 2.0.0 through 2.3.24.1 does not properly ca... | Medium | 5.3 | Medium Risk | Patched | 07-Jun-16 |
| CVE-2016-2785 | Puppet Server before 2.3.2 and Ruby puppetmaster in Puppe... | Critical | 9.8 | Medium Risk | Patched | 10-Jun-16 |
| CVE-2016-3720 | XML external entity (XXE) vulnerability in XmlMapper in t... | Critical | 9.8 | Medium Risk | 10-Jun-16 | |
| CVE-2016-2174 | SQL injection vulnerability in the policy admin tool in A... | High | 7.2 | Medium Risk | Patched | 13-Jun-16 |