F*EX '/rup' HTTP Response Splitting Vulnerability IBM SPSS Modeler SSO Token Unspecified Remote Security Vulnerability Multiple RedHat JBoss Products CVE-2015-7501 Remote Code Execution Vulnerability PostgreSQL CVE-2014-8161 Information Disclosure Vulnerability WordPress Buddypress Plugin CVE-2014-1889 Privilege Escalation Vulnerability 'tog-pegasus' Package Hash Collision Denial Of Service Vulnerability 9base Insecure Temporary File Creation Vulnerability ALLPlayer '.wav' File Processing Memory Corruption Vulnerability ANA App CVE-2015-5666 SSL Certificate Validation Security Bypass Vulnerability ATutor LCMS CVE-2015-1583 Multiple Cross Site Request Forgery Vulnerabilities ATutor Multiple Security Vulnerabilities AVTECH AVN801 DVR CVE-2013-4982 Security Bypass Vulnerability AWS XMS 'what' Parameter Directory Traversal Vulnerability Abrt CVE-2015-1862 Local Privilege Escalation Vulnerability Abrt CVE-2015-3147 Remote Security Bypass Vulnerability Abrt CVE-2015-3150 Multiple Local Security Bypass Vulnerabilities Accentis SQL Injection and Cross Site Scripting Vulnerabilities AccountsService 'user.c' Local Information Disclosure Vulnerability Adobe Acrobat/Adobe Reader Arbitrary File Execution Vulnerability Adobe Acrobat/Adobe Reader Safari Frameworks Folder Permission Escalation Vulnerability AhnLab V3 Internet Security Local Kernel Pool Buffer Overflow Vulnerability Aircrack-ng 'buddy-ng.c' Denial of Service Vulnerability Aircrack-ng 'gps_tracker()' Function Stack Buffer Overflow Vulnerability Aircrack-ng 'network.c' Denial of Service Vulnerability Aircrack-ng 'src/aireplay-ng.c' Stack Buffer Overflow Vulnerability Airlive IP Camera CVE-2013-3691 Remote Denial Of Service Vulnerability AjaXplorer Multiple Arbitrary Command Execution Vulnerabilities Alcatel-Lucent 1830 Photonic Service Switch 'pop.html' Cross Site Scripting Vulnerability Alcatel-Lucent OmniTouch 8400 Instant Communications Suite Multiple Input Validation Vulnerabilities Android SQLite Journal CVE-2011-3901 Information Disclosure Vulnerability Ansible CVE-2014-4657 Remote Code Execution Vulnerability Ansible CVE-2014-4659 File Read Permission Information Disclosure Vulnerability Ansible CVE-2014-4678 Incomplete Fix Remote Code Execution Vulnerability Ansible CVE-2014-4966 Arbitrary Code Execution Vulnerability Ansible CVE-2014-4967 Arbitrary Code Execution Vulnerability Apache 'mod_wsgi' Module CVE-2014-0242 Information Disclosure Vulnerability Apache ActiveMQ Apollo CVE-2014-3579 XML External Entity Injection Vulnerability Apache ActiveMQ CVE-2014-3600 XML External Entity Injection Vulnerability Apache Cordova File-Transfer Unspecified Security Vulnerability Apache Cordova For Android CVE-2015-1835 Security Bypass Vulnerability Apache Cordova InAppBrowser Remote Privilege Escalation Vulnerability Apache Hadoop Symlink Attack Local Privilege Escalation Vulnerability Apache OFBiz Unspecified Remote Code Execution Vulnerability Apache Qpid CVE-2015-0203 Multiple Denial of Service Vulnerabilities Apache Qpid CVE-2015-0224 Incomplete Fix Multiple Denial of Service Vulnerabilities Apache Struts 'ParameterInterceptor' Class OGNL (CVE-2011-3923) Security Bypass Vulnerability Apache Struts CVE-2015-2992 Cross Site Scripting Vulnerability Apache Struts CVE-2015-5169 Cross Site Scripting Vulnerability Apache Tika CVE-2016-4434 XML External Entity Injection Vulnerability Apache VCL Multiple Input Validation Vulnerabilities Apache WSS4J CVE-2015-0226 Information Disclosure Vulnerability Apache XML-RPC CVE-2016-5003 Remote Code Execution Vulnerability Apache XML-RPC Multiple Security Vulnerabilities Apple Mac OS X APPLE-SA-2016-09-20 Multiple Security Vulnerabilities Apple Mac OS X Java 'updateSharingD's' Mach RPC Messages Local Command Injection Vulnerability Apple Mac OS X Java (CVE-2010-1827) Memory Corruption Vulnerability Apple Mac OS X Security Update 2006-001 Multiple Vulnerabilities Apple Mac OS X and iOS Multiple Security Vulnerabilities Apple Mac OS X v10.5.1 2007-009 Multiple Security Vulnerabilities Apple iPhone Passcode Lock Security Bypass Vulnerability Arbor Networks Peakflow X Multiple Cross Site Scripting and Security Bypass Vulnerabilities Archlinux Shaman Configuration File Local Privilege Escalation Vulnerability ArticleFR 'data.php' CVE-2014-4170 Access Bypass Vulnerability Aruba Networks Web Management Portal CVE-2014-2592 Arbitrary File Upload Vulnerability Atlassian Bamboo CVE-2015-6576 Remote Code Execution Vulnerability Atmail Email Server HTML Injection and Cross Site Request Forgery Vulnerabilities Authd CVE-2016-4981 Local Information Disclosure Vulnerability Autonomy KeyView Filter 'Text' Chunk Integer Overflow Vulnerability Autonomy KeyView Filter QLST Chunk Integer Overflow Vulnerability Autonomy KeyView Filter Text/QLST Chunk Heap Based Buffer Overflow Vulnerability Autonomy Keyview IDOL Multiple Remote Code Execution Vulnerabilities Avolve Software ProjectDox CVE-2014-5132 User Enumeration Vulnerability Axigen Mail Server CVE-2015-5379 Cross Site Scripting Vulnerability Aztech Modem Routers Information Disclosure Vulnerability BOINC CVE-2013-2018 Multiple SQL Injection Vulnerabilities BSD mailx CVE-2014-7844 Local Arbitrary Command Execution Vulnerability BabyGekko Multiple Input Validation Vulnerabilities Barracuda Web Application Firewall CVE-2014-2595 Authentication Bypass Vulnerability Baxter SIGMA Spectrum Infusion System Hardcoded Credentials Local Security Bypass Vulnerability Baxter Wireless Battery Module Multiple Security Vulnerabilities Belkin N300 Wi-Fi N Router Cross Site Request Forgery and Security Bypass Vulnerabilities Belkin N900 CVE-2013-3088 Remote Authentication Bypass Vulnerability Belkin Wemo Switch Arbitrary Firmware Upload Vulnerability Bitlbee Unauthorized Access Security Bypass Vulnerability Bitweaver Multiple Cross Site Scripting and Local File Include Vulnerabilities BlackBerry 10 OS 'qconnDoor' Service Stack Buffer Overflow Vulnerability BlackBerry PlayBook Unspecified Information Disclosure Vulnerability BlackCat CMS CVE-2015-5079 Directory Traversal Vulnerability Boat Browser WebView Class CVE-2014-4968 Remote Code Execution Vulnerability BoltWire CVE-2013-0737 Multiple Cross Site Scripting Vulnerabilities Bonita BPM Directory Traversal and Open Redirection Vulnerabilities Boonex Dolphin 'categories.php' SQL Injection Vulnerability Brother MFC-9970CDW Printer CVE-2013-2672 Information Disclosure Vulnerability Brother MFC-9970CDW Printer CVE-2013-2673 Auto-Complete Security Bypass Weakness Brother MFC-9970CDW Printer CVE-2013-2674 Information Disclosure Vulnerability Brother MFC-9970CDW Printer CVE-2013-2675 Unspecified Clickjacking Vulnerability Brother MFC-9970CDW Printer CVE-2013-2676 Information Disclosure Vulnerability Bytemark Symbiosis 'pattern.rb' Denial of Service Vulnerability CGILua Predictable Session ID CVE-2014-2875 Authentication Bypass Vulnerability CHICKEN POSIX 'select()' Function Incomplete Fix Remote Buffer Overflow Vulnerability CHICKEN POSIX 'select()' Function Remote Buffer Overflow Vulnerability CPAN Batch::BatchRun Module Insecure Temporary File Creation Vulnerability CPAN Data::UUID Module Insecure Temporary File Handling Vulnerability CUPS 'Listen localhost:631' Option Unauthorized Access Vulnerability CUPS CVE-2014-8166 Arbitrary Code Execution Vulnerability Campaign Enterprise Multiple Security Vulnerabilities Caucho Resin 'ioc-appconfig' Full Path Information Disclosure Vulnerability Chamilo Multiple Cross Site Scripting and HTML Injection Vulnerabilities Chamilo Multiple Remote Input Validation Vulnerabilities Check_MK File Processing Arbitrary File Disclosure Vulnerability Chrony CVE-2015-1853 Remote Denial of Service Vulnerability Chrony cmdmon Protocol Amplification Remote Denial of Service Vulnerability Chyrp 'ajax.php' HTML Injection Vulnerability Chyrp 'error.php' HTML Injection Vulnerability Cisco IronPort Web Security Appliance Multiple Security Bypass Vulnerabilities Cisco Linksys E1200 N300 Router 'submit_button' Parameter Cross Site Scripting Vulnerability Cisco Linksys E4200 Router CVE-2013-2678 Local File Include Vulnerability Cisco Linksys E4200 Router CVE-2013-2679 Multiple Cross Site Scripting Vulnerabilities Cisco Linksys E4200 Router CVE-2013-2680 Password Disclosure Vulnerability Cisco Linksys E4200 Router CVE-2013-2681 Security Bypass Vulnerability Cisco Linksys E4200 Router CVE-2013-2682 Clickjacking Vulnerability Cisco Linksys E4200 Router CVE-2013-2683 Information Disclosure Vulnerability Cisco Linksys E4200 Router CVE-2013-2684 Cross Site Scripting Vulnerability Cisco Linksys WRT310N Router CVE-2013-3067 Unspecified Cross Site Scripting Vulnerability Cisco Unified Communications Manager CVE-2015-0749 Multiple Security Vulnerabilities Citrix Receiver and Online Plug-in Unspecified Arbitrary Code Execution Vulnerability Citrix XenServer CVE-2012-4606 Local Privilege Escalation Vulnerability Citrix XenServer Windows Guest Tools Denial of Service Vulnerability ClamAV Multiple Memory Corruption Vulnerabilities ClickDesk Multiple HTML Injection Vulnerabilities Cloud-init CVE-2012-6639 Remote Privilege Escalation Vulnerability CodeIgniter 'CI_Security' Class 'xss_clean()' Filter Security Bypass Weakness CodeIgniter 'xss_clean()' Filter Security Bypass Vulnerability Codem-transcode 'lib/probe-handler.js' Remote Command Injection Vulnerability Comtrend CT-5361T ADSL Router Cross Site Scripting and Cross Site Request Forgery Vulnerabilities Condor CVE-2014-8126 Arbitrary Code Execution Vulnerability ConsoleKit VNC Session Policy Restriction Security Bypass Vulnerability Contao CMS Multiple PHP Object Injection Vulnerabilities Contexis 'image' Parameter Cross Site Scripting Vulnerability Coppermine Photo Gallery 'keywordmgr.php' Cross Site Scripting Vulnerability Core FTP CVE-2014-1215 Multiple Local Buffer Overflow Vulnerabilities Corel WordPerfect Office X6 CVE-2012-4900 Denial of Service Vulnerability Creative Contact Form 'wp-content/plugins/sexy-contact-form' Arbitrary File Upload Vulnerability Crescendo - Sales CRM 'login.aspx' Multiple SQL Injection Vulnerabilities Cryptocat 'Cryptocat.random()' Function Entropy Weakness Cryptocat 'strophe.js' Information Disclosure Vulnerability Cryptocat CVE-2013-2258 Nickname User Impersonation Vulnerability Cryptocat CVE-2013-2259 Multiple Arbitrary Code Execution Vulnerabilities Cryptocat CVE-2013-4100 Remote Denial of Service Vulnerability Cryptocat CVE-2013-4102 Random Number Generator Weakness Cryptocat CVE-2013-4103 Arbitrary Script Injection Vulnerability Cryptocat CVE-2013-4104 Key Exchange Insecure Encryption Weakness Cryptocat CVE-2013-4106 HTML Injection Vulnerability Cryptocat CVE-2013-4107 DOM Based Cross Site Scripting Vulnerability Cryptocat CVE-2013-4108 Multiple Unspecified Security Vulnerabilities Cryptocat CVE-2013-4109 Unspecified HTML Injection Vulnerability Cryptocat CVE-2013-4110 Unspecified Information Disclosure Vulnerability Cryptocat Chrome Extension 'img/keygen.gif' File Information Disclosure Vulnerability Cryptocat ECC Private Key Multiple Information Disclosure Vulnerabilities Cryptocat Link Markup Decorator 'addLinks()' Function Remote Security Weakness Cryptocat Multiparty Encryption Scheme Information Disclosure Vulnerability CyaSSL Multiple Security Vulnerabilities Cyber-Ark Vault CVE-2012-6344 User Enumeration Information Disclosure Vulnerability Cyber-Ark Vault CVE-2012-6345 User Enumeration Information Disclosure Vulnerability Cyberduck CVE-2014-2845 X.509 Certificate Validation Security Bypass Vulnerability D-Link DIR-100 Multiple Security Vulnerabilities D-Link DIR-636L CVE-2015-1187 Remote Command Injection and Authentication Bypass Vulnerabilities D-Link DIR-865L CVE-2013-3096 Unspecified Security Bypass Vulnerability D-Link DSL-6740U CVE-2013-6811 Cross Site Request Forgery Vulnerability D-Link DSR Router Series CVE-2013-5945 SQL Injection Vulnerability D-Link DWR-113 CVE-2014-3136 Cross Site Request Forgery Vulnerability DD-WRT CVE-2012-6297 Command Injection Vulnerability DameWare Mini Remote Control CVE-2014-1221 Arbitrary Code Execution Vulnerability Dassault Systemes Catia Stack Buffer Overflow Vulnerability Debian devscripts 'licensecheck' Utility Command Injection Vulnerability Debian devscripts 'uscan' CVE-2013-7325 Insecure Temporary File Creation Vulnerability Debian rawstudio Package 'rs_filter_graph()' Function Insecure Temporary File Handling Vulnerability Debian xcfa Package Race Condition Multiple Insecure Temporary File Handling Vulnerabilities Debian zfsonlinux 'nfs.c' Security Bypass Vulnerability DedeCMS CVE-2015-4553 Arbitrary Code Execution Vulnerability Djblets 'eval()' Routine Remote Code Execution Vulnerability Docker CVE-2014-0047 Multiple Unspecified Temporary File Creation Vulnerabilities Docker CVE-2014-0048 Multiple Remote Code Execution Vulnerabilities Docker CVE-2014-9356 Multiple Directory Traversal Vulnerabilities Dropbox SDK for Android CVE-2014-8889 Security Bypass Vulnerability Drupal BrowserID (Mozilla Persona) Module Multiple Security Vulnerabilities Drupal CKEditor Module CVE-2011-4972 Access Bypass Vulnerability Drupal Compass Rose Module Cross Site Scripting Vulnerability Drupal Core Overlay Module CVE-2015-7943 Incomplete Fix Open Redirection Vulnerability Drupal Entity API Module Multiple Access Bypass Vulnerabilities Drupal Flippy Module Access Bypass Vulnerability Drupal Login Security Module Security Bypass Vulnerability Drupal Organic Groups Module Multiple Security Vulnerabilities Drupal RESTful Web Services Module Multiple Access Bypass and Security Bypass Vulnerabilities Drupal Simplenews Module Information Disclosure Vulnerability Drupal Storage API Module CVE-2014-5170 Arbitrary Code Execution Vulnerability Drupal Taxonomy Find Module CVE-2015-7878 Unspecified Security Vulnerability Drupal VideoWhisper Module 'special_textscroller.php' Cross Site Scripting Vulnerability Drupal Views Bulk Operations 'Modify node taxonomy terms' Action HTML Injection Vulnerability Drupal Zen Theme DRUPAL-SA-CONTRIB-2013-070 Cross Site Scripting Vulnerability Dwarfdump Use After Free Memory Denial of Service Vulnerability EC-CUBE CVE-2013-0507 Session Fixation Vulnerability EDK1 UEFI 'FSVariable.c' Local Buffer Overflow Vulnerability EDK2 Capsule Update Mechanism CVE-2014-4859 Local Integer Overflow Vulnerability EDK2 Capsule Update Mechanism CVE-2014-4860 Multiple Local Integer Overflow Vulnerabilities ERDAS ER Viewer Multiple DLL Loading Arbitrary Code Execution Vulnerabilities Elasticsearch CVE-2015-5377 Remote Code Execution Vulnerability Enlightenment Window Manager 'Helper' Variable Local Privilege Escalation Vulnerability Etherpad Lite ep_imageconvert Plugin Remote Command Injection Vulnerability Ettercap GTK Insecure Temporary File Creation and Format String Vulnerabilities Eventum 'hostname' Parameter Remote Code Execution Vulnerability Eventum CVE-2014-1631 Insecure File Permissions Vulnerability Evergreen CVE-2013-7435 Information Disclosure Vulnerability Evergreen CVE-2015-2203 Information Disclosure Vulnerability Evergreen CVE-2015-2204 Information Disclosure Vulnerability Evernote For Android CVE-2013-5112 Multiple Local Security Bypass Vulnerabilities Evernote For Android CVE-2013-5116 Local Security Bypass Vulnerabiliy Ex Libris ALEPH 500 CVE-2014-3718 Multiple HTML Injection Vulnerabilities Ezhometech EzServer AMF Request Remote Heap Corruption Vulnerability FFmpeg LZO 'LZ4_decompress_generic()' Function Memory Corruption Vulnerability FFmpeg Multiple Remote Code Execution Vulnerabilities FOSCAM IP-Cameras CVE-2013-2574 Unauthorized Access Vulnerabilities FUDforum CVE-2013-2267 Multiple Remote PHP Code Injection Vulnerabilities Family Connections 'prays.php' Cross Site Scripting Vulnerability Fedora 'mom' PID File Insecure File Permissions Vulnerability Fish-shell 'funced' Function Insecure Temporary File Creation Vulnerability Fish-shell 'psub' Function Insecure Temporary File Creation Vulnerability Fish-shell CVE-2014-2914 Remote Code Execution Vulnerability Fiyo CMS CVE-2015-3934 Multiple SQL Injection Vulnerabilities Fiyo CMS Multiple Security Vulnerabilities FlashCanvas 'proxy.php' Cross Site Scripting Vulnerability Flowplayer 'linkUrl' Parameter Cross Site Scripting Vulnerability Fork CMS 'loadForm()' Function Cross Site Scripting Vulnerability FortiBalancer SSH Access CVE-2014-2721 Security Bypass Vulnerability FortiBalancer SSH Access CVE-2014-2722 Security Bypass Vulnerability FortiBalancer SSH Access CVE-2014-2723 Security Bypass Vulnerability Foswiki 'MAKETEXT' Macro CVE-2013-1666 Code Injection Vulnerability FreeBSD 'netinet6/nd6_rtr.c' Denial of Service Vulnerability FreeBSD CVE-2015-5675 Local Privilege Escalation Vulnerability FreeBSD Crontab Multiple Information Disclosure Vulnerabilities FreeBSD Linux Compatibility Layer Local Privilege Escalation Vulnerabiity FreeBSD OpenPAM Login Policy Parser Unauthorized Access Vulnerability FreeBSD patch(1) Utility CVE-2015-1416 Command Injection Vulnerability FreeBSD patch(1) Utility CVE-2015-1418 Command Injection Vulnerability FreeBSD routed(8) CVE-2015-5674 Denial of Service Vulnerability FreeIPA Cookie Handling CVE-2012-5631 Security Vulnerability FreeNAS Blank Password Authentication Bypass Vulnerability Freebox OS Web interface Cross Site Request Forgery and Cross Site Scripting Vulnerabilities Freeciv Multiple Remote Denial Of Service Vulnerabilities Frog CMS file_manager Plugin Arbitrary File Upload Vulnerability FuzeZip Buffer Overflow Vulnerability G Data Total Protection CVE-2014-3752 Local Arbitrary Code Execution Vulnerability GANMA App for iOS CVE-2015-7785 SSL Certificate Validation Security Bypass Vulnerability GEAR Software CD DVD Filter Driver 'GEARAspiWDM.sys' Multiple Denial of Service Vulnerabilities GEAR Software CD DVD Filter Driver IOCTL Handling Local Privilege Escalation Vulnerabilities GIGAPOD Product Series CVE-2014-5329 Remote Denial of Service Vulnerability GLPI 'filetype' Parameter Local File Include Vulnerability GNOME Evolution CVE-2013-4166 Local Information Disclosure Vulnerability GNOME Gnome-keyring 'gnome_keyring_lock_all_sync()' Security Vulnerability GNOME NetworkManager (CVE-2006-7246) SSL Certificate Validation Security Bypass Vulnerability GNOME NetworkManager CVE-2012-2736 AdHoc Wireless Security Vulnerability GNOME System Log CVE-2012-5535 Information Disclosure Vulnerability GNU Coreutils 'src/sort.c' Multiple Buffer Overflow Vulnerabilities GNU Coreutils 'su - user -c program' Local Privilege Escalation Vulnerability GNU GCC CVE-2002-2439 Local Integer Overflow Vulnerability GNU Mailman Multiple Remote Vulnerabilities GNU glibc 'getaddrinfo()' CVE-2013-4357 Remote Denial of Service Vulnerability GNU glibc 'stdio-common/vfscanf.c' Denial of Service Vulnerability GNU patch CVE-2015-1396 Incomplete Fix Directory Traversal Vulnerability Gambas Insecure Temporary Directory Creation Vulnerability Gamera Insecure Temporary File Creation Vulnerability Gecko CMS Multiple Input Validation Vulnerabilities Gemalto Tokend CVE-2013-1867 Arbitrary File Creation or Overwrite Vulnerability GetSimple CMS CVE-2013-1420 Multiple Cross Site Scripting Vulnerabilities Git CVE-2014-9390 Arbitrary File Overwrite Vulnerability Git GitWeb CVE-2011-2186 HTML Injection Vulnerability Gitlab 'groups' API Security Bypass Vulnerability Gitolite 'Rc.pm' Information Disclosure Vulnerability Gitolite Multiple Insecure File Permissions Vulnerabilities GnuTLS Padding Oracle Information Disclosure Vulnerability Gnupg2 CVE-2015-1606 Use After Free Denial of Service Vulnerability Gnupg2 CVE-2015-1607 Information Disclosure Vulnerability Golang Go CVE-2015-5739 HTTP Header Injection Vulnerability Golang Go CVE-2015-5741 HTTP Header Injection Vulnerability Google Android 'BnAudioPolicyService::onTransact()' Function Integer Overflow Vulnerability Google Android 'SQLiteDatabase.java' Remote Security Bypass Vulnerability Google Android API WebView Component CVE-2014-7224 Remote Code Execution Vulnerability Google Android APK Signature Security Bypass Vulnerability Google Android CVE-2013-6272 Remote Security Bypass Vulnerability Google Android CVE-2014-7914 Bluetooth Forced Pairing Remote Code Execution Vulnerability Google Android CVE-2014-7952 Security Bypass Vulnerability Google Android CVE-2015-1526 Denial of Service Vulnerability Google Android CVE-2015-1537 Integer Overflow Vulnerability Google Android adb backup 'server/BackupManagerService.java' Directory Traversal Vulnerability Google Chrome 'chromehtml:' Protocol Handler Same Origin Policy Bypass Vulnerability Google Chrome OS Security Bypass and Arbitrary Code Execution Vulnerabilities Google Chrome Prior to 54.0.2840.59 Multiple Security Vulnerabilities Grand MA 300 Multiple Security Weaknesses Grandstream Multiple IP Cameras CVE-2013-3542 Multiple Security Bypass Vulnerabilities Group-Office HTTPOnly Cookies Flag Information Disclosure Vulnerabilities Gurunavi App for iOS CVE-2015-7778 SSL Certificate Validation Security Bypass Vulnerability HMS Testimonials CVE-2013-4241 Multiple Cross Site Scripting Vulnerabilities HP OpenVMS 'SMGSHR.EXE' Local Buffer Overflow Vulnerability HP OpenView Network Node Manager Multiple Remote Command Execution Vulnerabilities HP OpenView Network Node Manager Unspecified Remote Code Execution Vulnerability HP SiteScope Remote Unspecified Information Disclosure Vulnerability HP Systems Insight Manager Unspecified Multiple Remote Security Vulnerabilities HP-UX Directory Server and Red Hat Directory Server for HP-UX Local Unspecified Vulnerability HT Editor File Open Remote Stack Buffer Overflow Vulnerability HelpDEZk 'uploadify.php' Arbitrary File Upload Vulnerability Hero Framework CVE-2013-2649 Multiple Cross-Site Scripting Vulnerabilities Hikvision DS-2CD7153-E IP Camera CVE-2013-4975 Privilege Escalation Vulnerability Hikvision DS-2CD7153-E IP Camera CVE-2013-4976 Hardcoded Credentials Security Bypass Vulnerability Hikvision DVR DS-7204 CVE-2014-4878 Remote Buffer Overflow Vulnerability Hikvision DVR DS-7204 RTSP Request Header Handling Remote Buffer Overflow Vulnerability Honeywell Experion PKS 'confd.exe' Module Directory Traversal Vulnerability Honeywell Experion PKS 'dual_onsrv.exe' Module Remote Code Execution Vulnerability Honeywell Experion PKS CVE-2014-9186 Remote File Include Vulnerability Honeywell Experion PKS CVE-2014-9187 Multiple Remote Heap Buffer Overflow Vulnerabilities Honeywell Experion PKS CVE-2014-9189 Multiple Stack Based Buffer Overflow Vulnerabilities Horde GroupWare Web Mail Edition Cross Site Scripting and Cross Site Request Forgery Vulnerabilities Horde Groupware Webmail Edition CVE-2013-6275 Multiple Cross Site Request Forgery Vulnerabilities Horde Groupware Webmail Edition Unique Token Cross Site Request Forgery Vulnerability Horde_Ldap Authentication Bypass Vulnerability Hospira Lifecare PCA Infusion Pump CVE-2015-1012 Information Disclosure Vulnerability Hospira Symbiq Infusion System CVE-2015-3965 Unauthorized Access Vulnerability Huawei Campus Series Switches User Enumeration Weakness Huawei E587 CVE-2013-2612 Command Injection Vulnerability Huawei FusionServer products Security Bypass and Command Injection Vulnerabilities Huawei Mate 7 Smartphone Multiple Local Privilege Escalation Vulnerabilities Huawei Mobile Partner Local Privilege Escalation Vulnerability Huawei UAP2105 'VxWorks shell' Local Command Injection Vulnerability Hubot Scripts 'email.coffee' Module Remote Command Injection Vulnerability IBM Algo One Algo Risk Application CVE-2016-0207 Click Jacking Vulnerability IBM BigFix Platform CVE-2016-0291 OS Command Injection Vulnerability IBM BigFix Platform CVE-2016-0295 Cross Site Request Forgery Vulnerability IBM Capacity Management Analytics CVE-2015-7432 Local Information Disclosure Vulnerability IBM Capacity Management Analytics CVE-2105-7434 Local Information Disclosure Vulnerability IBM Curam Social Program Management CVE-2015-7401 Information Disclosure Vulnerability IBM CĂșram Social Program Management CVE-2016-0261 Unspecified Cross Site Scripting Vulnerability IBM DB2 Prior to 8.1 Fixpack 18 Multiple Security Vulnerabilities IBM Emptoris Sourcing CVE-2016-0329 Open Redirect Vulnerability IBM Financial Transaction Manager CVE-2016-0253 Unspecified Cross Site Scripting Vulnerability IBM Financial Transaction Manager CVE-2016-0272 Cross Site Request Forgery Vulnerability IBM Financial Transaction Manager CVE-2016-0274 Click Jacking Vulnerability IBM Financial Transaction Manager CVE-2016-0275 Local Information Disclosure Vulnerability IBM Financial Transaction Manager CVE-2016-0276 Remote Code Execution Vulnerability IBM Financial Transaction Manager XML External Entity Information Disclosure Vulnerability IBM Forms Server CVE-2016-0223 Cross Site Scripting Vulnerability IBM InfoSphere Information Governance Catalog XML External Entity Injection Vulnerability IBM InfoSphere Information Server CVE-2013-0507 Session Fixation Vulnerability IBM Informix 'librpc.dll' Spoofing Vulnerability IBM Jazz Foundation CVE-2015-7440 Unspecified Local Privilege Escalation Vulnerability IBM Jazz Reporting Service CVE-2015-7453 Cross Site Scripting Vulnerability IBM Lotus Notes CVE-2013-0522 Password Disclosure Vulnerability IBM RLKS Administration and Reporting Tool Unspecified Local Information Disclosure Vulnerability IBM Rational Engineering Lifecycle Manager CVE-2015-7484 Information Disclosure Vulnerability IBM Rational Engineering Lifecycle Manager CVE-2015-7485 Cross Site Scripting Vulnerability IBM Rational Engineering Lifecycle Manager CVE-2015-7486 Cross Site Scripting Vulnerability IBM Rational Engineering Lifecycle Manager and Jazz Foundation HTML Injection Vulnerability IBM Rational Team Concert CVE-2015-7471 Unspecified HTML Injection Vulnerability IBM SDK Java Security Components CVE-2015-1931 Local Information Disclosure Vulnerability IBM SDK for Node.js CVE-2014-9748 Local Denial of Service Vulnerability IBM SONAS and Storwize V7000 Unified CVE-2013-0497 Session Hijacking Vulnerability IBM Security Guardium Database Activity Monitor Local Information Disclosure Vulnerability IBM Security Guardium Database Activity Monitor Local Information Disclosure Vulnerability IBM Security Identity Manager Virtual Appliance CVE-2016-0324 OS Command Injection Vulnerability IBM Security Identity Manager Virtual Appliance CVE-2016-0327 Local Command Injection Vulnerability IBM Security Identity Manager Virtual Appliance CVE-2016-0332 Security Bypass Vulnerability IBM Security Identity Manager Virtual Appliance Cross Site Request Forgery Vulnerability IBM Security Identity Manager Virtual Appliance Unspecified Cross Site Scripting Vulnerability IBM Security Key Lifecycle Manager CVE-2014-0872 Information Disclosure Vulnerability IBM Sterling External Authentication Server CVE-2013-0514 Information Disclosure Vulnerability IBM Sterling External Authentication Server Local Arbitrary Command Execution Vulnerability IBM TRIRIGA Application Platform CVE-2016-0312 Unauthorized Access Vulnerability IBM TRIRIGA Application Platform CVE-2016-0342 Unspecified Remote Privilege Escalation Vulnerability IBM TRIRIGA Application Platform CVE-2016-0344 Unspecified Cross Site Scripting Vulnerability IBM Tealeaf Customer Experience CVE-2015-4987 Authentication Bypass Vulnerability IBM Tivoli Storage Manager Server CVE-2012-5944 Local Unauthorized Access Vulnerability IBM Tririga Application Platform CVE-2016-0299 Information Disclosure Vulnerability IBM Tririga Application Platform CVE-2016-0345 Information Disclosure Vulnerability IBM WebSphere Application Server Virtual Member Manager Security Bypass Vulnerability IBM WebSphere Cast Iron CVE-2013-2972 Unspecified Security Vulnerability IBM Workflow for Bluemix CVE-2015-0102 Information Disclosure Vulnerability INSTEON Hub CVE-2013-4859 Multiple Security Bypass Vulnerabilities ISC BIND 'name.c' Remote Denial of Service Vulnerability ISPConfig '/content.php' Arbitrary PHP Code Execution Vulnerability ISPConfig 'webdav_user_edit.php' Security Bypass Vulnerability IZON IP Camera Hardcoded Credentials Security Bypass Vulnerability ImageMagick Multiple Heap Overflow Vulnerabilities ImageMagick PSD Image File Handling CVE-2014-1947 Remote Buffer Overflow Vulnerability ImageMagick PSD Image File Handling Remote Buffer Overflow Vulnerability ImageMagick PSD Image File Processing 'DecodePSDPixels()' Function Buffer Overflow Vulnerability Info-ZIP UnZip CVE-2014-8139 Remote Heap Buffer Overflow Vulnerability Info-ZIP UnZip CVE-2014-8140 Out of Bounds Write Heap Buffer Overflow Vulnerability Info-ZIP UnZip CVE-2014-8141 Out of Bounds Read Heap Buffer Overflow Vulnerability Info-Zip Wiz CVE-2013-5659 Write Access Violation Arbitrary Code Execution Vulnerability Intel Chipsets CVE-2014-8273 Local Race Condition Security Bypass Vulnerability Internet TRiLOGI Server User Account Creation Local Security Bypass Vulnerability Intrexx CVE-2014-2025 Unspecified Arbitrary File Upload Vulnerability Invision Power Board Multiple Local File Include Vulnerabilities IrfanView FlashPix PlugIn CVE-2013-3486 Integer Overflow Vulnerability IrfanView Formats PlugIn 'MrSID.dll' Remote Arbitrary Code Execution Vulnerability IrfanView Formats PlugIn 'MrSID.dll' Stack Buffer Overflow Vulnerability IrfanView Formats PlugIn CVE-2013-3946 Heap Buffer Overflow Vulnerability JBoss AS Administration Cross Site Request Forgery Vulnerability JBoss Application Server Administrative Console Cross-Site Scripting Vulnerability JBoss Enterprise Application Platform CVE-2011-2487 Information Disclosure Vulnerability JBoss Enterprise Application Platform CVE-2014-5401 Remote Code Execution Vulnerability JPEGsnoop Remote Arbitrary Code Execution Vulnerability JSoup CVE-2015-6748 Cross Site Scripting Vulnerability JasPer 'jas_matrix_create()' Function Integer Overflow Vulnerability Jasig Multiple CAS Clients CVE-2014-4172 Security Bypass Vulnerability Joomla! CVE-2012-2412 Cross Site Scripting Vulnerability Joomla! Googlemaps Plugin Multiple Remote Security Vulnerabilities Joomla! Jomres Component 'id' Parameter SQL Injection Vulnerability Joomla! Jomres Component 'property_name' Parameter HTML Injection Vulnerability Joomla! Komento Component 'helpers/comment.php' HTML injection Vulnerability Joomla! MijoSearch Cross Site Scripting and Path Disclosure Vulnerabilities Joomla! Multiple SQL Injection Vulnerabilities Joomla! Projoom NovaSFH Plugin 'upload.php' Arbitrary File Upload Vulnerability Joomla! Unspecified Information Disclosure Vulnerabilities Juniper Junos CVE-2016-1261 Cross Site Request Forgery and Denial of Service Vulnerabilities Juniper Junos CVE-2016-4921 Denial of Service Vulnerability Juniper Junos CVE-2016-4922 Multiple Local Privilege Escalation Vulnerabilities Juniper Junos J-Web CVE-2014-6447 Multiple Cross Site Scripting Vulnerabilities Juniper Junos J-Web CVE-2016-4923 Cross Site Scripting Vulnerability Juniper Junos Space CVE-2016-1265 Multiple Unspecified Security Vulnerabilities Juniper JunosE CVE-2016-4925 Denial of Service Vulnerability Juniper QFX3500 and QFX3600 switches CVE-2015-3006 Insufficient Entropy Vulnerability Juniper vMX CVE-2016-4924 Local Security Bypass Vulnerability KDE Konqueror Multiple Security Vulnerabilities KDE Plasma Paste Applet CVE-2013-2213 Insufficient Entropy Random Number Generator Weakness KDE Plasma Paste Applet Local Password Generation Vulnerability KDE Sc 'plasma-desktop' CVE-2013-4133 Denial of Service Vulnerability KDE kmail CVE-2014-8878 Encryption Security Weakness KMPlayer CVE-2014-3212 Remote Buffer Overflow Vulnerability Kallithea CVE-2015-0276 Cross Site Request Forgery Vulnerability Kaseya Virtual System Administrator Arbitrary File Upload and Privilege Escalation Vulnerability Kaseya Virtual System Administrator CVE-2015-6589 Arbitrary File Upload Vulnerability Keitai Kit for Movable Type CVE-2016-1204 Unspecified OS Command Injection Vulnerability Kingsoft Office CVE-2014-2271 Remote Code Execution Vulnerability Knot DNS CVE-2014-0486 Unspecified Denial of Service Vulnerability Koha Multiple Security Vulnerabilities Koha Multiple Security Vulnerabilities Kolibri CVE-2014-5289 Buffer Overflow Vulnerability KonaKart CVE-2014-5516 Cross Site Request Forgery Vulnerability LANDesk Management Gateway Multiple Security Vulnerabilities LINE CVE-2015-0897 Remote Code Execution Vulnerability LINE@ CVE-2015-2968 Code Injection Vulnerability LLVM Package Local Privilege Escalation Vulnerability LPAR2RRD CVE-2014-4981 Unspecified Command Injection Vulnerability LPAR2RRD CVE-2014-4982 Unspecified Command Injection Vulnerability LastPass For Android CVE-2013-5113 Local Security Bypass Vulnerability LastPass For Android CVE-2013-5114 Local Security Bypass Vulnerability Lazarus Guestbook Multiple HTML injection and SQL Injection Vulnerabilities LetoDMS Multiple Cross Site Scripting Vulnerabilities LetoDMS Multiple Cross Site Scripting and SQL Injection Vulnerabilities Lexmark MarkVision CVE-2014-8742 Remote Information Disclosure Vulnerability Lexmark MarkVision Enterprise CVE-2014-8741 Remote Code Execution Vulnerability LibRaw Buffer Overflow and Security Vulnerabilities LibTIFF 'PixarLogDecode()' Function Out of Bounds Read Denial of Service Vulnerability LibTIFF 'libtiff/tif_pixarlog.c' Heap Buffer Overflow Vulnerability LibTIFF 'tif_write.c' Denial of Service Vulnerability LibTIFF CVE-2014-8128 Out of Bounds Write Multiple Remote Denial of Service Vulnerabilities LibTIFF CVE-2014-8129 Out of Bounds Read and Write Multiple Remote Denial of Service Vulnerabilities Libav LZO 'av_lzo1x_decode' Function Memory Corruption Vulnerability Libgcrypt CVE-2015-0837 Local Information Disclosure Vulnerability LibreSSL 'OBJ_obj2txt()' Function Buffer Overflow and Information Disclosure Vulnerabilities LightDM Symlink Attack Local Privilege Escalation Vulnerability Linksys WRT110 Cross Site Request Forgery and Command Injection Vulnerabilities Linux Kernel 'x509_cert_parser.c' Information Disclosure Vulnerability Linux Kernel Auerswald USB Device Driver Buffer Overflow Vulnerability Linux Kernel CVE-2012-0810 Local Denial of Service Vulnerability Linux Kernel CVE-2014-8171 Denial of Service Vulnerability Linux Kernel GFS2 Access Control List (ACL) Security Bypass Vulnerability Linux Kernel PTE Pages OOM Score Denial of Service Vulnerability Linux Kernel SCSI 'blk_rq_map_user' Function Local Information Disclosure Vulnerability Linux Mint Multiple Insecure Temporary File Creation Vulnerabilities Livefyre LiveComments 'name' Parameter HTML Injection Vulnerability Loaded Commerce 7 Address Book Multiple SQL Injection Vulnerabilities Loftek Nexus 543 CVE-2013-3311 Directory Traversal Vulnerability Loftek Nexus 543 CVE-2013-3313 Information Disclosure Vulnerability Loftek Nexus 543 CVE-2013-3314 Multiple Information Disclosure Vulnerabilities LongTail JW Player CVE-2012-3351 Cross Site Scripting Vulnerability Lorex LNC116 and LNC104 IP Cameras Remote Authentication Bypass Vulnerability MPFR 'strtofr.c' Buffer Overflow Vulnerability Magento 'Zend_XmlRpc' Class Information Disclosure Vulnerability Magento CMS CVE-2015-6497 Remote File Inclusion Vulnerability Magnolia CMS CVE-2013-4621 Multiple Access Bypass Vulnerabilities Mahara Multiple Cross Site Scripting and HTML Injection Vulnerabilities Mambo CMS CVE-2013-2565 Multiple Path Disclosure Vulnerabilities ManageEngine Applications Manager CVE-2014-7863 Information Disclosure Vulnerability ManageEngine Desktop Central CVE-2014-7862 Remote Security Bypass Vulnerability ManageEngine Desktop Central MSP CVE-2014-9404 Remote Code Execution Vulnerability ManageEngine DesktopCentral 'AgentLogUploadServlet' Directory Traversal Vulnerability ManageEngine DesktopCentral Incomplete Fix Arbitrary File Upload Vulnerability ManageEngine EventLog Analyzer CVE-2014-6038 Information Disclosure Vulnerability ManageEngine EventLog Analyzer CVE-2014-6039 Password Disclosure Vulnerability ManageEngine Password Manager Pro CVE-2016-1159 Security Bypass Vulnerability MantisBT 'Close' Button Security Bypass Vulnerability MantisBT 'adm_config_report.php' HTML Injection Vulnerability MapSuite MapAPI CVE-2014-2843 Cross Site Scripting Vulnerability Mapserver for Windows CVE-2012-2950 Local File Include Vulnerability MaraDNS CVE-2014-2032 Remote Denial of Service Vulnerability Marked Module Multiple Content Injection Vulnerabilities Media Player Classic File Processing Multiple Buffer Overflow Vulnerabilities MediaWiki CVE-2013-1816 Denial of Service Vulnerability MediaWiki CVE-2013-1817 Information Disclosure Vulnerability MediaWiki Multiple Remote Vulnerabilities MediaWiki Multiple Remote Vulnerabilities MediaWiki Multiple Security Vulnerabilities Mediawiki CVE-2013-4303 Cross Site Scripting Vulnerability Mediawiki CVE-2014-1686 Full Path Information Disclosure Vulnerability Mediawiki Caching Session Cookies Information Disclosure Vulnerability Mediawiki OAuth Extension CVE-2015-8008 Security Bypass Vulnerability Mi Casa Verde VeraLite Directory Traversal Vulnerability Mi Casa Verde VeraLite Multiple Privilege Escalation And Information Disclosure Vulnerabilities Mi Casa Verde VeraLite Remote Authentication Bypass Vulnerability Mi Casa Verde VeraLite Security Bypass Vulnerability Microsoft Internet Explorer CVE-2014-4112 Memory Corruption Vulnerability Microsoft Internet Explorer CVE-2014-4145 Remote Memory Corruption Vulnerability Microsoft Visual Studio 'MSCOMM32.OCX' ActiveX Control Heap Buffer Overflow Vulnerability MiniUPnP 'Minissdp.c' Information Disclosure Vulnerability MobileIron VSP and Sentry 'j_username' Parameter XPath Injection Weakness MobileIron VSP and Sentry CVE-2013-7286 Weak Encryption Security Weakness Module::Signature Multiple Remote Command Execution and Security Bypass Vulnerabilities Monitorix HTTP Server 'handle_request()' Remote Command Execution Vulnerability Monitorix HTTP Server 'handle_request()' Session Fixation and Cross Site Scripting Vulnerabilities Monkey HTTP Daemon CVE-2013-2183 Local Security Bypass Vulnerability Mono ASP.NET Web Form Hash Collision Denial of Service Vulnerability Mono CVE-2015-2318 Man in the Middle Spoofing Vulnerability Mono CVE-2015-2319 Man in the Middle Security Bypass Vulnerability Mono SSLv2 Fallback CVE-2015-2320 Man in the Middle Security Bypass Vulnerability Moodle Multiple Access Permissions Security Bypass Vulnerabilities Moxa SoftCMS Multiple Unspecified Buffer Overflow Vulnerabilities Multiple AirLive Products Multiple OS Command Injection Vulnerabilities Multiple Android Devices CVE-2014-0997 Denial of Service Vulnerability Multiple Arubanetworks Products Multiple Security Vulnerabilities Multiple Avira Products PDF Handling Remote Denial Of Service Vulnerability Multiple Aztech Modem Routers Session Hijacking Vulnerability Multiple Aztech Routers '/cgi-bin/AZ_Retrain.cgi' Denial of Service Vulnerability Multiple Cisco Linksys Products Security Bypass Vulnerability Multiple Cisco Products CVE-2015-6358 Man in the Middle Information Disclosure Vulnerability Multiple D-Link Products CVE-2013-1599 Command Injection Vulnerability Multiple D-Link Products CVE-2013-1600 Authentication Bypass Vulnerability Multiple D-Link Products CVE-2013-1601 Information Disclosure Vulnerability Multiple D-Link Products CVE-2013-1602 Information Disclosure Vulnerability Multiple D-Link Products CVE-2013-1603 Hardcoded Credentials Security Bypass Vulnerability Multiple Dedicated Micros DVR Products CVE-2015-2909 Unauthorized Access Vulnerability Multiple F5 Networks Products CVE-2014-4024 Information Disclosure Vulnerability Multiple Hospira Products CVE-2015-3952 Information Disclosure Vulnerability Multiple Hospira Products CVE-2015-3953 Hardcoded Password Security Bypass Vulnerability Multiple Hospira Products CVE-2015-3954 Authorization Security Bypass Vulnerability Multiple Hospira Products CVE-2015-3956 Multiple Security Bypass Vulnerabilities Multiple Huawei Products CF Card Local Information Disclosure Vulnerability Multiple Huawei Products RADIUS Component Denial of Service Vulnerability Multiple Hunt CCTV Information Disclosure Vulnerability Multiple IBM Products Multiple Security Vulnerabilities Multiple IBM products CVE-2013-5461 Insecure Password Storage Information Disclosure Vulnerability Multiple OTRS Products CVE-2013-2625 Access Bypass Vulnerability Multiple OTRS Products CVE-2013-3551 Information Disclosure Vulnerability Multiple OTRS Products CVE-2013-4718 Unspecified HTML Injection Vulnerability Multiple OpenStack Products SSL Certificate Validation CVE-2013-2255 Security Bypass Vulnerability Multiple Opto 22 Products CVE-2015-1006 Remote Heap Buffer Overflow Vulnerability Multiple Opto 22 Products CVE-2015-1007 Local Stack Buffer Overflow Vulnerability Multiple Products 'index.js' Multiple HTML Injection Vulnerabilities Multiple Products SMM CVE-2015-0949 Local Code Execution Vulnerability Multiple Products UEFI Secure Boot CVE-2014-2961 Local Security Bypass Vulnerability Multiple Products UEFI Systems CVE-2014-8274 Local Security Bypass Vulnerability Multiple Products Windows Platform Binary Table Remote Code Execution Vulnerability Multiple RubyGems CVE-2014-4993 Local Information Disclosure Vulnerability Multiple Schneider Electric Modicon M340 PLC Products Unspecified Cross Site Scripting Vulnerability Multiple SonicWALL Products CVE-2013-1359 Authentication Bypass Vulnerability Multiple SonicWALL Products CVE-2013-1360 Authentication Bypass Vulnerability Multiple Sprite Software Products for LG Android Devices Local Privilege Escalation Vulnerability Multiple Synametrics Products Cross Site Request Forgery and HTML Injection Vulnerabilities Multiple Ubiquiti Networks Products CVE-2014-2225 Cross Site Request Forgery Vulnerability Multiple Unify Products CVE-2015-8238 Remote Code Execution Vulnerability Multiple Unify VoIP Phones CVE-2015-8251 Man in the Middle Information Disclosure Vulnerability Multiple Vendors libc 'regcomp()' Stack Exhaustion Denial Of Service Vulnerability Multiple Vendors' Operating System IPv6 Weakness Denial of Service Vulnerability Multiple Vendors' Operating Systems IPv6 Implementation Denial of Service Vulnerability Multiple Vivotek IP Camera Products CVE-2013-1594 Information Disclosue Vulnerability Multiple Vivotek IP Camera Products CVE-2013-1595 Remote Buffer Overflow Vulnerability Multiple Vivotek IP Camera Products CVE-2013-1596 Remote Authentication Bypass Vulnerability Multiple Vivotek IP Camera Products CVE-2013-1597 Directory Traversal Vulnerability Multiple Vivotek IP Camera Products CVE-2013-1598 Command Injection Vulnerability Multiple Vivotek IP Cameras CVE-2013-4985 Remote Authentication Bypass Vulnerability Multiple WebGate Products CVE-2015-2100 Multiple Remote Stack Based Buffer Overflow Vulnerabilities Multiple WordPress Plugins CVE-2015-4557 Multiple Cross Site Scripting Vulnerabilities Multiple Yokogawa Products Multiple Stack Based Buffer Overflow Vulnerabilities Multiple ZHONE Routers Multiple Security Vulnerabilities Multiple ZyXEL Products CVE-2015-7256 Man in the Middle Information Disclosure Vulnerability MySecureShell Local Denial of Service Vulnerability Nano-10 PLC Remote Denial of Service Vulnerability NetApp OnCommand System Manager Multiple Cross Site Scripting and HTML Injection Vulnerabilities NetApp Snap Creator Framework CVE-2016-5710 Clickjacking Vulnerability NetBSD Multiple 'libc/net' Functions Stack Buffer Overflow Vulnerability NetGear WNDR4700 CVE-2013-3070 Unspecified Information Disclosure Vulnerability NetGear WNDR4700 CVE-2013-3073 Symlink Directory Traversal Vulnerability NetGear WNDR4700 Media Server CVE-2013-3074 Denial of Service Vulnerability NetMove SaAT Netizen CVE-2016-1203 Arbitrary Code Execution Vulnerability NetSurf 'netsurf/Cookies' Local Information Disclosure Vulnerability Netgear WNDR4700 Router CVE-2013-3071 Remote Authentication Bypass Vulnerability Netgear WNDR4700 Router Remote Authentication Bypass Vulnerability Netty and Play Framework CVE-2015-2156 Session Hijacking Vulnerability Network Instruments Observer Multiple Security Vulnerabilities Network Time Protocol 'ntp_control.c' Directory Traversal Vulnerability Newsfetch SScanf Remote Buffer Overflow Vulnerability Newsgrab Multiple Local And Remote Vulnerabilities Nghttp2 CVE-2016-1544 Local Denial of Service Vulnerability Nitro PDF 'bcgcbproresen.dll' DLL Loading Arbitrary Code Execution Vulnerability Nitro Pro and Nitro Reader CVE-2013-3552 Remote Memory Corruption Vulnerability Novell ZENworks Handheld Management 'Common.dll' Directory Traversal Vulnerability NumPy '__init__.py' Insecure Temporary File Creation Vulnerability NumPy 'mktemp' Insecure Temporary File Creation Vulnerability OTRS CVE-2013-4088 Remote Security Bypass Vulnerability OTRS ITSM/FAQ Module CVE-2013-2637 Multiple HTML Injection Vulnerabilities OTRS and OTRS ITSM CVE-2013-4717 Unspecified SQL Injection Vulnerabilitiy OXID eShop 'index.php' Multiple HTTP Response Splitting Vulnerabilities Oberhumer LZO CVE-2014-4607 Multiple Memory Corruption Vulnerabilities Open Web Analytics 'owa_event' Parameter PHP Object Injection Vulnerability Open Web Analytics CVE-2014-1457 Cross Site Request Forgery Vulnerability Open-Xchange AppSuite CVE-2013-6242 Multiple HTML Injection and Cross Site Scripting Vulnerabilities Open-Xchange AppSuite CVE-2014-2078 Information Disclosure Vulnerability Open-Xchange AppSuite CVE-2014-5236 Directory Traversal Vulnerability Open-Xchange AppSuite CVE-2014-5238 XML External Entity Information Disclosure Vulnerability Open-Xchange AppSuite Multiple Content Spoofing Vulnerabilities OpenCart 'Cart::getProducts()' Method PHP Object Injection Vulnerability OpenCart 'filemanager.php' Multiple Directory Traversal Vulnerabilities OpenDocMan '/signup.php' Access Bypass Vulnerability OpenJDK 'IcedTea' Plugin Information Disclosure Vulnerability OpenJDK CVE-2013-4578 Security Bypass Vulnerability OpenJDK Java Virtual Machine (JVM) CVE-2012-4420 Remote Information Disclosure Vulnerability OpenJPEG 'opj_free()' Function Remote Heap Based Buffer Overflow Vulnerability OpenJPEG CVE-2016-3182 Remote Heap Based Buffer Overflow Vulnerability OpenJPEG Out of Bounds Read Denial of Service Vulnerability OpenKM 'frontend/index.jsp' HTML Injection Vulnerability OpenPNE 3 XML External Entity Injection Vulnerability OpenSC.tokend CVE-2013-1866 Arbitrary File Creation or Overwrite Vulnerability OpenSLP 'ParseExtension()' Function Denial of Service Vulnerability OpenSLP 'SLPDProcessMessage()' Function Double Free Denial of Service Vulnerability OpenSLP 'SLPIntersectStringList()' Function Denial of Service Vulnerability OpenSMTPD CVE-2015-7687 Use After Free Remote Code Execution Vulnerability OpenStack 'qcow2' File Local Security Bypass Vulnerability OpenStack Cinder And Nova Information Disclosure Vulnerability OpenStack Nova 'EC2_SECRET_KEY' Man In The Middle Security Bypass Vulnerability OpenStack python-keystoneclient CVE-2013-2166 Security Bypass Vulnerability OpenStack python-keystoneclient CVE-2013-2167 Security Bypass Vulnerability OpenTTD 'pause on join' Feature Denial Of Service Vulnerability OpenVZ 'open_by_handle_at()' Function Local Security Bypass Vulnerability OpenX 'flowplayer-3.1.1.min.js' Backdoor Vulnerability Opsview Core CVE-2013-3935 Cross Site Request Forgery Vulnerability Opsview Core CVE-2013-3936 Multiple Cross Site Scripting Vulnerabilities Oracle Java Runtime Environment 'HsbParser.getSoundBank()' Remote Heap Buffer Overflow Vulnerability Oracle Supply Chain Products Suite CVE-2016-3430 Remote Security Vulnerability Oracle WebLogic Server Apache Connector Stack Based Buffer Overflow Vulnerability OverlayFS inode Security Checks 'inode.c' Local Security Bypass Vulnerability PCRE 'compile_branch()' Function Heap Buffer Overflow Vulnerability PCRE 'pcre_compile2()' Function Heap Buffer Overflow Vulnerability PHP 'efree()' Function Remote Code Execution Vulnerability PHP-Fusion 'administration/robots.php' HTML Injection Vulnerability POSH CVE-2014-2213 Multiple Cross Site Scripting Vulnerabilities POSH CVE-2014-2214 Arbitrary URI Redirection Vulnerability PRTG Multiple Cross-Site Scripting Vulnerabilities Pacemaker Insecure Temporary File Creation Vulnerability PackageKit Signature Verification Security Bypass Vulnerability PacketFence Multiple Cross Site Scripting Vulnerabilities Page Scroller CVE-2013-5989 Cross Site Scripting Vulnerability Parallel::ForkManager Insecure Temporary File Creation Vulnerability Paypal for Android Arbitrary Remote Code Execution Vulnerability Paypal for Android CVE-2013-7201 SSL Certificate Validation Security Bypass Vulnerability PcwRunAsGui And PcwRunAs CVE-2012-1793 Security Weakness Pearson eSIS CVE-2014-1454 HTML Injection Vulnerability Pen 'penctl.cgi' Multiple Insecure Temporary File Creation Vulnerabilities Percona Toolkit for MySQL Automatic Version Check Information Disclosure Vulnerability Perdition SSL/TLS Certificate Validation Security Bypass Vulnerability Perl 'XML::Atom' Module Information Disclosure Vulnerability Perl Clipboard Module 'clipedit.pl' Insecure Temporary File Handling Vulnerability Perl Perltidy Package CVE-2014-2277 Insecure File Creation Vulnerability Perl libwww-perl (LWP) Module Peer Certificate Validation Security Bypass Vulnerability Pete Stein GoScript Remote Command Execution Vulnerability PhonerLite CVE-2014-2560 Remote Information Disclosure Vulnerability Piwigo 'username_or_email' Parameter Cross Site Scripting Vulnerability Piwigo 'ws.php' Cross-Site Request Forgery Vulnerability Plone and Zope 'BrowserIdManager.py' Cross Site Scripting Vulnerability Plone and Zope 'Image.py' Cross Site Scripting Vulnerability PolarBear CMS 'upload.php' Arbitrary File Upload Vulnerability PolarSSL Diffie Hellman And RSA Key Exchange Security Bypass Vulnerability Polipo POST/PUT Requests HTTP Header Processing Denial Of Service Vulnerability Poppler and xpdf CVE-2012-2142 Security Vulnerability Postfix Admin Multiple SQL Injection and Cross Site Scripting Vulnerabilities PostgreSQL 'pgcrypto' Module Stack-Based Buffer Overflow Vulnerability PostgreSQL 'to_char()' Function Buffer Overflow Vulnerability PostgreSQL CVE-2015-0244 Security Bypass Vulnerability PostgreSQL CVE-2015-3166 Security Vulnerability PostgreSQL CVE-2015-3167 Key Enumeration Information Disclosure Vulnerability Potplayer DLL Loading Arbitrary Code Execution Vulnerability PowerDNS 'pdns/distributor.hh' Denial of Service Vulnerability PowerTCP WebServer for ActiveX 'DartWebserver.dll' Denial of Service Vulnerability PragmaMX CVE-2012-2452 Multiple Cross Site Scripting Vulnerabilities PrestaShop Multiple Cross Site Scripting Vulnerabilities Prizm Content Connect Arbitrary File Upload Vulnerability Project Atomic CVE-2015-3229 Security Bypass Vulnerability ProjectDox CVE-2014-5130 Unauthorized Access Vulnerability ProjectDox CVE-2014-5131 Information Disclosure Vulnerability ProjectPier CVE-2013-3635 Multiple HTML Injection Vulnerabilities ProjectPier CVE-2013-3636 Remote Information Disclosure Weakness ProjectPier CVE-2013-3637 Remote Information Disclosure Weakness Proxychains-ng 'LD_PRELOAD' Arbitrary Code Execution Vulnerability Pulp CVE-2015-5164 Security Bypass Vulnerability Puppet Enterprise Cross Site Scripting and Security Bypass Vulnerabilities Pwstore CVE-2013-5657 Denial of Service Vulnerability Pwstore CVE-2013-5658 Cross Site Scripting Vulnerability PyXML CVE-2012-0877 Remote Denial of Service Vulnerability Python 'mwlib' Library CVE-2012-1109 Denial Of Service Vulnerability Python 'py-bcrypt' Module CVE-2013-1895 Authentication Bypass Vulnerability Python 'readline()' Function Denial of Service Vulnerability Python 'trytond' Module Button Model Security Bypass Vulnerability Python CGIHTTPServer Module Path Separators Handling Information Disclosure Vulnerability Python XMLRPC Client Library Denial of Service Vulnerability Python kdcproxy CVE-2015-5159 Remote Denial of Service Vulnerability Python pip CVE-2013-5123 Security Bypass Vulnerability Python rhn-setup CVE-2015-1777 SSL Certificate Validation Security Bypass Vulnerability Q-Pulse 'LookupListType' Parameter Cross Site Scripting Vulnerability QEMU 'e1000.c' Denial of Service Vulnerability QEMU 'hw/net/pcnet.c' Heap Based Buffer Overflow Vulnerability QEMU 'hw/pci/msix.c' Null Pointer Dereference Denial of Service Vulnerability QEMU 'ne2000.c' Denial of Service Vulnerability QEMU 'savevm' Data Multiple Buffer Overflow Vulnerabilities QEMU 'vhdx' Block Driver Local Denial of Service Vulnerability QEMU 'virtio-serial-bus.c' Local Buffer Overflow Vulnerability QEMU 'vnc.c' Denial of Service Vulnerability QEMU CVE-2013-2016 Out of Bounds Local Privilege Escalation Vulnerability QEMU CVE-2014-0147 Multiple Local Denial of Service Vulnerabilities QEMU CVE-2014-3471 Denial of Service Vulnerability QEMU Multiple Memory Corruption Vulnerabilities Quagga CVE-2012-5521 Remote Denial of Service Vulnerability QuiXplorer CVE-2013-1642 Multiple Cross Site Scripting Vulnerabilities RETIRED: Linux Kernel CVE-2014-0691 Local Memory Corruption Vulnerability RSLinx Enterprise 'LogReceiver.exe' Integer Overflow Denial of Service Vulnerability RSLinx Enterprise 'LogReceiver.exe' Integer Overflow Denial of Service Vulnerability RSLinx Enterprise 'LogReceiver.exe' Out-of-bounds Remote Denial of Service Vulnerability Rackspace jclouds Insecure Temporary File Creation Vulnerability Railo CVE-2014-5468 Remote File Include Vulnerability Rakuten card for iOS CVE-2015-2988 SSL Certificate Validation Security Bypass Vulnerability Rapid7 Nexpose Multiple Session Hijacking and Cross Site Request Forgery Vulnerabilities ReadyMedia CVE-2013-2739 Remote Heap Buffer Overflow Vulnerability RealVNC 4.1.3 'ClientCutText' Message Remote Denial of Service Vulnerability Red Hat CloudForms Unspecified Multiple HTML Injection Vulnerabilities Red Hat Enterprise Virtualization Manager SSL Certificate Verification Security Bypass Vulnerability Red Hat JBoss Application Server CVE-2013-3734 Password Information Disclosure Vulnerability Red Hat OpenShift Enterprise CVE-2014-0234 Insecure Default Password Vulnerability Red Hat OpenShift Origin CVE-2013-2060 Remote Command Execution Vulnerability Red Hat VDSM Module CVE-2012-5518 Security Bypass Vulnerability RedHat redhat-support-plugin-rhev package CVE-2015-7544 Local Code Execution Vulnerability Redis Insecure Temporary File Handling Privilege Escalation Vulnerability Retired: Autonomy KeyView Filter 'jtdsr.dll' Multiple Buffer Overflow Vulnerabilities Review Board CVE-2013-4410 Access Bypass Vulnerability Review Board CVE-2013-4411 Remote Security Bypass Vulnerability Review Board CVE-2013-4796 Arbitrary File Upload Vulnerability Review Board CVE-2014-5028 Unauthorized Access Vulnerability Ruby CVE-2015-1855 Security Bypass Vulnerability Ruby CVE-2016-2338 Remote Code Execution and Buffer Overflow Vulnerabilities Ruby Nokogiri Gem XML Parsing Multiple Denial of Service Vulnerabilities Ruby PDFKit CVE-2013-1607 Parameter Parsing Vulnerability Ruby VladTheEnterprising Gem Local Information Disclosure Vulnerability RubyGems BSON Multiple Denial of Service Vulnerabilities RubyGems brbackup SQL Injection and Information Disclosure Vulnerabilities RubyGems cap-strap CVE-2014-4992 Local Information Disclosure Vulnerability RubyGems ciborg '/tmp/perlbrew-installer' Insecure Temporary File Creation Vulnerability RubyGems echor 'backplane.rb' Remote Command Injection Vulnerability RubyGems echor Plaintext Credential Local Information Disclosure Vulnerability RubyGems gyazo 'gyazo/client.rb' Insecure Temporary File Creation Vulnerability RubyGems kajam CVE-2014-4999 Information Disclosure Vulnerability RubyGems kcapifony CVE-2014-5001 Information Disclosure Vulnerability RubyGems lawn-login CVE-2014-5000 Local Information Disclosure Vulnerability RubyGems lean-ruport MySQL Credential Local Information Disclosure Vulnerability RubyGems lynx CVE-2014-5002 Information Disclosure Vulnerability RubyGems passenger CVE-2012-6135 Security Bypass Vulnerability RubyGems point-cli CVE-2014-4997 Local Information Disclosure Vulnerability SAP Adaptive Server Enterprise CVE-2015-8518 Security Bypass Vulnerability SAP Business Objects CVE-2014-9320 Remote Privilege Escalation Vulnerability SAP BusinessObjects Edge CVE-2015-2073 Unauthorized Access Vulnerability SAP BussinessObjects Edge CVE-2015-2074 Unauthorized Access Vulnerability SAP NetWeaver 'msg_server.exe' Remote Code Execution and Denial of Service Vulnerabilities SAP Sybase Event Stream Processor CVE-2014-3458 Multiple Remote Code Execution Vulnerabilities SAP Sybase Event Stream Processor Multiple Remote Code Execution Vulnerabilities SDDM CVE-2014-7271 Local Authentication Bypass Vulnerability SDDM CVE-2014-7272 Multiple Security Vulnerabilities SGI Tempo '/opt/sgi/sgimc/bin/vx' Insecure File Permissions Vulnerability SGI Tempo System '/etc/odapw' Insecure File Permissions Vulnerability SGI Tempo System CVE-2014-7303 Insecure File Permissions Vulnerability SIS XGI VGA Display Manager CVE-2015-5466 Remote Privilege Escalation Vulnerability SLiM NULL Pointer Dereference Denial of Service Vulnerability SMB4K CVE-2014-2581 Information Disclosure Vulnerability SOPlanning Multiple Security Vulnerabilities SOS Webpages CVE-2014-3445 Unauthorized Access Vulnerability Safend Data Protector Agent Multiple Local Security Vulnerabilities SaltStack Salt Multiple Security Bypass and Command Injection Vulnerabilities Samba 'mtab' Lock File Handling Local Denial of Service Vulnerability Samsung Galaxy S3 And S4 CVE-2013-4763 Local Security Bypass Vulnerability Samsung Galaxy S3 And S4 CVE-2013-4764 Local Security Bypass Vulnerability Samsung Kies Multiple Security Vulnerabilities Samsung SecEmailComposer CVE-2015-7889 Local Privilege Escalation Vulnerability Samsung Sieren Kernel Driver CVE-2015-7890 Local Buffer Overflow Vulnerability Samsung m2m1shot Driver CVE-2015-7892 Local Buffer Overflow Vulnerability Scheme 48 'scheme48-send-definition' Insecure Temporary File Handling Vulnerability Schneider Electric Modicon M340 PLC Station P34 Module Modicon Multiple Security Vulnerabilities Schneider Electric OPC Factory Server DLL Loading Arbitrary Code Execution Vulnerability SciPy 'scipy.weave' Insecure Temporary Directory Creation Privilege Escalation Vulnerability Scrutinizer Multiple Security Vulnerabilities Seafile Server CVE-2014-5443 Local Privilege Escalation Vulnerability Sectool DBus File Local Privilege Escalation Vulnerability Secure Entry Server CVE-2013-2764 URI Redirection Vulnerability Sencha Labs Connect '_method' Parameter Cross Site Scripting Vulnerability Sencha Labs Connect '_method' Parameter Incomplete Fix Cross Site Scripting Vulnerability Shaarli 'index.php' Multiple Cross Site Scripting Vulnerabilities Sierra CVE-2014-5138 Security Bypass Vulnerability Silent Circle Blackphone CVE-2015-6841 Security Bypass Vulnerability Simple Machines Forum Multiple Security Vulnerabilities SimpleHRM 'user_manager.php' Authentication Bypass Vulnerability SingTel 2Wire Hardcoded Password Security Bypass Vulnerability Smartphone Passbook CVE-2015-0874 SSL Certificate Security Bypass Vulnerability Smartphone Pentest Framework Multiple Remote Command Execution Vulnerabilities Smartphone Pentest Framework Multiple Security Vulnerabilities SmokePing 'displaymode' Parameter CVE-2013-4158 Incomplete Fix Cross Site Scripting Vulnerability SmokePing CVE-2013-4168 Multiple Cross Site Scripting Vulnerabilities Snare for Linux Multiple Security Vulnerabilities SniffIt 'sn_cfgfile.c' Multiple Stack Buffer Overflow Vulnerabilities Snoopy CVE-2002-2444 Arbitrary Command Execution Vulnerability SocialEngine Multiple Input Validation Vulnerabilities SpagoBI CVE-2013-6231 Remote Privilege Escalation Vulnerability SpagoBI CVE-2013-6234 Arbitrary File Upload Vulnerability Sphider 'auth.php' Authentication Bypass Vulnerability Spring Framework 'JavaScriptUtils.javaScriptEscape()' Method Cross Site Scripting Vulnerability St Module Directory Traversal Vulnerability Status2k 'editpl.php' Arbitrary PHP Code Execution Vulnerability Status2k 'functions.php' Arbitrary PHP Code Execution Vulnerability Status2k CVE-2014-5093 Security Vulnerability Sterling Trader Remote Stack Based Overflow Vulnerability SugarCRM 'RSSDashlet.php' XML External Entity Injection Vulnerability SugarCRM Community Edition 'unserialize()' Multiple PHP Code Execution Vulnerabilities Sumatra PDF and MuPDF 'lex_number()' Function Remote Integer Overflow Vulnerability Swagger Code Generator CVE-2016-5641 Multiple Remote Code Execution Vulnerabilities Symfony CVE-2013-4751 Multiple Security Bypass Vulnerabilities Symfony CVE-2013-4752 HTTP Header Spoofing Security Bypass Vulnerability Symfony CVE-2014-4931 PHP Code Injection Vulnerability Symfony CVE-2014-5244 Remote Denial of Service Vulnerability Symfony CVE-2014-6061 Authentication Bypass Vulnerability Symfony Web Profiler Cross Site Request Forgery Vulnerability TLS Protocol CVE-2013-3587 Information Disclosure Vulnerability TP-LINK IP Cameras CVE-2013-2573 Command Injection Vulnerability TP-LINK TL-WDR4300 Router CVE-2013-4848 Multiple Cross Site Request Forgery Vulnerabilities TP-LINK TL-WR1043ND Unspecified Denial of Service Vulnerability TP-Link IP Camera Hardcoded Credentials Security Bypass Vulnerability TWiki 'MAKETEXT' Variable CVE-2013-1751 Arbitrary Command Execution Vulnerability TWiki 'debugenableplugins' Parameter Remote Code Execution Vulnerability TYPO3 Direct Mail Extension Authentication Bypass Vulnerability TYPO3 Dynamic Content Elements Extension CVE-2014-8328 Information Disclosure Vulnerability Tapatalk for vBulletin CVE-2014-2023 Multiple SQL Injection Vulnerabilities TeX Live CVE-2015-0296 Local Arbitrary File Deletion Vulnerability TeamSpeak Client Multiple Buffer Overflow Vulnerabilities Telaen CVE-2013-2621 Open Redirection Vulnerability Telaen CVE-2013-2623 Cross Site Scripting Vulnerability Telaen CVE-2013-2624 Information Disclosure Vulnerability TestTrack For Linux 'pidofproc()' Function Local Race Condition Vulnerability The Bug Genie Multiple Cross Site Scripting and HTML Injection Vulnerabilities Thomson Reuters FATCA CVE-2015-5951 Arbitrary File Upload Vulnerability Thunar 'thunar_transfer_job_copy_node()' Format String Vulnerability TigerVNC CVE-2014-0011 Heap Buffer Overflow Vulnerability Tiki Wiki CMS Groupware 'id' Parameter Cross Site Scripting Vulnerability Tiki Wiki CMS Groupware 'snarf_ajax.php' Cross Site Scripting Vulnerability Tiki Wiki CMS Groupware Multiple Cross Site Scripting Vulnerabilities Tiki Wiki CMS Groupware Plugin Snarf 'snarf_ajax.php' PHP Code Injection Vulnerability TinyWebGallery Multiple Cross Site Request Forgery and PHP Code Injection Vulnerabilities Tor 'buffers.c' Denial of Service Vulnerability Tor CVE-2015-2928 Denial of Service Vulnerability Tor CVE-2015-2929 Denial of Service Vulnerability Toshiba ConfigFree 'CF7' File Multiple Stack Based Buffer Overflow Vulnerabilities Toshiba ConfigFree 'CF7' File Remote Command Execution Vulnerability Trend Micro Deep Security CVE-2015-6950 Security Bypass Vulnerability Trend Micro InterScan Messaging Security Virtual Appliance Multiple Security vulnerabilities TrueCrypt and VeraCrypt Multiple Local Privilege Escalation Vulnerabilities Tube Map Live Underground for Android Information Disclosure Vulnerability Tucan Manager CVE-2012-0063 Plugin Update Security Bypass Vulnerability UDisks Kernel 'mount' Module Loading Security Vulnerability UI::Dialog CVE-2008-7315 Arbitrary Command Execution Vulnerability Ubuntu Vivid CVE-2015-1336 Local Privilege Escalation Vulnerability Ubuntu cobbler 'cobbler-ubuntu-import' GPG Signature Verification Security Bypass Vulnerability UebiMiau 'selected_theme' Parameter Cross Site Scripting Vulnerability Unify OpenScape Fault Management CVE-2015-8237 Remote Code Execution Vulnerability VLC Media Player Multiple Security Vulnerabilities Verax NMS Multiple Security Bypass and Information Disclosure Vulnerabilities Verizon FiOS Router CVE-2013-3097 Unspecified Cross Site Scripting Vulnerability Vesta Control Panel 'index.php' OS Command Injection Vulnerability ViewGit Multiple HTML Injection Vulnerabilities Violet Karotz API Session Token Information Disclosure Vulnerability Viscosity 'ViscosityHelper' Symlink Attack Local Privilege Escalation Vulnerability Visual Mining NetCharts Server CVE-2014-8516 Arbitrary File Upload Vulnerability VladTheEnterprising Ruby Gem Symlink Attack Local Security Bypass Vulnerability WatchGuard XTM 'poll_name' Parameter Cross Site Scripting Vulnerability WebCalendar CVE-2013-1422 User Enumeration Weakness WebCalendar Local File Include and PHP code Injection Vulnerabilities WebGL Library Multiple Memory Corruption Vulnerabilities WebGate Control Multiple ActiveX Controls Multiple Remote Buffer Overflow Vulnerabilities Websense TRITON Unified Security Center Multiple Security Vulnerabilities Wesnoth CVE-2015-5069 Information Disclosure Vulnerability Wesnoth CVE-2015-5070 Information Disclosure Vulnerability Winamp CVE-2013-4695 Invalid Pointer Dereference Denial of Service Vulnerability Wing FTP Server Remote Code Execution and Cross Site Request Forgery Vulnerabilities WordPress Advanced Access Manager Plugin CVE-2014-6059 Arbitrary File Overwrite Vulnerability WordPress CVE-2014-6412 Security Weakness WordPress Cart66 Lite Plugin CVE-2013-5978 Multiple HTML Injection Vulnerabilities WordPress Contact Bank Plugin 'contact_bank_frontend-class.php' Cross Site Scripting Vulnerabilities WordPress Count per Day Plugin 'videogalleryrss.php' SQL Injection Vulnerability WordPress Easy2Map Photos Plugin Directory Traversal and SQL Injection Vulnerabilities WordPress Huge ITSlider Plugin 'admin.php' SQL Injection Vulnerability WordPress NextGEN Gallery 'upload.php' Arbitrary File Upload Vulnerability WordPress NextGEN Gallery Plugin Path Disclosure Vulnerability WordPress Ninja Forms Plugin 'update_message' Parameter Cross Site Scripting Vulnerability WordPress PageflipBook Plugin 'pageflipbook_language' Parameter Local File Include Vulnerability WordPress Photo Gallery Plugin CVE-2015-1394 Multiple Cross Site Scripting Vulnerabilities WordPress Plotly Plugin CVE-2015-5484 HTML Injection Vulnerability WordPress Poll Plugin Multiple SQL Injection and Security Bypass Vulnerabilities WordPress Portable phpMyAdmin Plugin Multiple Security Bypass Vulnerabilities WordPress Private Only Plugin Cross Site Scripting and Cross Site Request Forgery Vulnerabilities WordPress Super Cache Plugin CVE-2013-2008 Cross Site Scripting Vulnerability WordPress TheCartPress Plugin Multiple Security Vulnerabilities WordPress UK Cookie Plugin CVE-2013-2180 Cross Site Request Forgery Vulnerability WordPress User Photo 'user-photo.php' Arbitrary File Upload Vulnerability WordPress W3 Super Cache Plugin CVE-2013-2011 Remote PHP Code Execution Vulnerability WordPress W3 Total Cache Plugin CVE-2013-2010 Remote PHP Code Execution Vulnerability WordPress WP Cleanfix Plugin 'wpCleanFixAjax.php' Remote PHP Code Execution Vulnerability WordPress WP Cleanfix Plugin Cross Site Request Forgery Vulnerability WordPress WP GPX Maps Plugin Arbitrary File Upload Vulnerability WordPress WP Marketplace Plugin 'wpmarketplace\libs\cart.php' Arbitrary File Download Vulnerability WordPress WP Membership Plugin Multiple Security Vulnerabilities WordPress WP Photo Album Plus Plugin CVE-2014-8814 Cross Site Scripting Vulnerability WordPress WP Super Cache Plugin CVE-2013-2009 Remote PHP Code Execution Vulnerability WordPress Xorbin Digital Flash Clock 'widgetUrl' Parameter Cross Site Scripting Vulnerability WordPress podPress Plugin 'playerID' Parameter Cross Site Scripting Vulnerability Wordpress Gallery Plugin 'load' Parameter Remote File Include Vulnerability X File Explorer 'FilePanel::onCmdNewFile' Function Access Bypass Vulnerability X2CRM 'ProfileController.php' CVE-2014-2664 Arbitrary File Upload Vulnerability XPIENT IRIS CVE-2013-2571 Security Bypass Vulnerability XStream CVE-2013-7285 Remote Code Execution Vulnerability Xerces2-j CVE-2012-0881 Remote Denial of Service Vulnerability Xilisoft Video Converter Ultimate 'quserex.dll' DLL Loading Arbitrary Code Execution Vulnerability XnView 'Xjp2.dll' Heap Based Buffer Overflow Vulnerability XnView BMP Image Processing Heap Based Buffer Overflow Vulnerability XnView CVE-2013-3246 Stack Based Buffer Overflow Vulnerability XnView CVE-2013-3247 Heap Based Buffer Overflow Vulnerability XnView CVE-2013-3492 Stack Based Buffer Overflow Vulnerability XnView CVE-2013-3493 Remote Integer Overflow Vulnerability XnView RGB File Handling Heap Based Buffer Overflow Vulnerability Xorbin Analog Flash Clock 'widgetUrl' Parameter Cross Site Scripting Vulnerability Xpdf Multiple Remote Code Execution Vulnerabilities YaBB 'guestlanguage' Cookie Parameter Local File Include Vulnerability Yeager Multiple Security Vulnerabilities YingZhi Python Programming Language for iOS Arbitrary File Upload Vulnerability Yodobashi for Android CVE-2015-2981 SSL Certificate Validation Security Bypass Vulnerability ZABBIX API and Frontend CVE-2013-5743 Multiple SQL Injection Vulnerabilities ZOHO ManageEngine ADSelfService Plus Authentication Bypass Vulnerability ZPanel Multiple Remote Security Vulnerabilities ZTE WXV10 W300 Multiple Security Vulnerabilities Zabbix CVE-2013-3628 Arbitrary Command Execution Vulnerability Zabbix CVE-2014-3005 XML External Entity Injection Vulnerability Zarafa '/etc/zarafa/license/' Directory Multiple Local Information Disclosure Vulnerabilities Zavio IP Cameras CVE-2013-2568 Arbitrary Command Injection Vulnerability Zavio IP Cameras CVE-2013-2569 Security Bypass Vulnerability Zavio IP Cameras CVE-2013-2570 Command Injection Vulnerability Zavio IP Cameras Hard Coded Credentials Authentication Security Bypass Vulnerability Zend Framework 'PDO_MySql' Security Bypass Vulnerability Zend Framework 'Zend_Db_Select::order()' Function SQL Injection Vulnerability Zend Framework CVE-2015-7503 Information Disclosure Vulnerability Zend Framework HTML Attributes Multiple Cross Site Scripting Vulnerabilities Zend Framework Multiple Cross Site Scripting Vulnerabilities Zend Framework Sqlsrv Driver Multiple SQL Injection Vulnerabilities Zenoss Core CVE-2014-6262 Denial of Service Vulnerability ZeusCart 'prodid' Parameter SQL Injection Vulnerability Zikula CVE-2014-2293 Multiple Arbitrary PHP Code Injection Vulnerabilities Zimbra 'aspell.php' Cross Site Scripting Vulnerability Zope 'standard_error_message' Cross-Site Scripting Vulnerability abrt CVE-2015-1869 Local Privilege Escalation Vulnerability abrt CVE-2015-3151 Multiple Directory Traversal Vulnerabilities abrt CVE-2015-3159 Local Privilege Escalation Vulnerability abrt Information Disclosure Vulnerability akpop3d 'pszQuery' Remote Memory Corruption Vulnerability ansible '/utils/vault.py' CVE-2014-4658 Security Bypass Vulnerability ansible 'paramiko_ssh.py' Security Bypass Vulnerability ansible CVE-2014-4660 Remote Information Disclosure Vulnerability autojump 'custom_install' Directory Local Privilege Escalation Vulnerability ax25-tools Local Privilege Escalation Vulnerability cabextract CVE-2015-2060 Local Directory Traversal Vulnerability codders-dataset Multiple Local Information Disclosure Vulnerabilities eCryptfs CVE-2012-3409 Local Privilege Escalation Vulnerability eZ Publish BC Collected Information Export Extension Information Disclosure Vulnerability easyXDM CVE-2013-5212 Multiple HTML Injection Vulnerabilities eshtery CMS 'FileManager.aspx' Local File Disclosure Vulnerability features Ruby Gem '/tmp/out.html' Insecure Temporary File Creation Vulnerability fedora-business-cards Insecure Temporary File Creation Vulnerability foomatic Insecure Temporary File Creation Vulnerability freesmartphone.org CVE-2014-8156 Local Security Bypass Vulnerability gitlab-shell 'gitlab_projects.rb' Information Disclosure Vulnerability gksu-polkit CVE-2012-5617 Local Privilege Escalation Vulnerability gksu-polkit CVE-2013-4161 Incomplete Fix Local Privilege Escalation Vulnerability gollum 'grit_adapter' Adapter Remote Command Execution Vulnerability hardlink Multiple Remote Integer Overflow Vulnerabilities hardlink Multiple Remote Stack Buffer Overflow Vulnerabilities hardlink Symlink Attack Local Privilege Escalation Vulnerability hostapd CVE-2015-5314 Denial of Service Vulnerability iODBC Multiple Local Privilege Escalation Vulnerabilities ikiwiki 'openid_identifier' Parameter Cross Site Scripting Vulnerability klibc DHCP Options Processing Remote Shell Command Execution Vulnerability ktsuss Local Security Bypass and Arbitrary Code Execution Vulnerabilities libTIFF CVE-2016-5320 Remote Code Execution Vulnerability libbluray Symlink Attack Local Security Bypass Vulnerability libgcrypt Elgamal Decryption 'cipher/elgamal.c' Information Disclosure Vulnerability libgfortran CVE-2014-5044 Multiple Unspecified Integer Overflow Vulnerabilities libjpeg-turbo CVE-2014-9092 Stack Based Buffer Overflow Vulnerability libpurple CVE-2012-1257 OTR Information Disclosure Vulnerability libuser CVE-2012-5630 Symlink Attack Local Security Bypass Vulnerability libuser CVE-2012-5644 Information Disclosure Vulnerability libvirt CVE-2015-5160 Local Information Disclosure Vulnerability lldp 'assert()' Function Denial of Service Vulnerability lldp 'protocols/lldp.c' Buffer Overflow Vulnerability miniunzip 'minizip.c' Directory Traversal Vulnerability mod_nss Module CVE-2011-4973 Authentication Bypass Vulnerability monopd/libcapsinetwork CVE-2015-0841 Off-By-One Error Memory Corruption Vulnerability musl Remote Stack Buffer Overflow Vulnerability mwlib '#iferror magic' Function Denial Of Service Vulnerability netcf CVE-2014-8119 Remote Denial of Service Vulnerability nginx CVE-2011-4968 Man in The Middle Vulnerability niconico App for iOS CVE-2015-56 SSL Certificate Validation Security Bypass Vulnerability node-libnotify 'libnotify.notify' Remote Command Injection Vulnerability node-printer 'printDirect()' Function Remote Command Injection Vulnerability node-uuid CVE-2015-8851 Insufficient Entropy Security Weakness oVirt Node CVE-2013-0293 Local Privilege Escalation Vulnerability opOpenSocialPlugin Multiple XML External Entity Injection Vulnerabilities opWebAPIPlugin Multiple XML External Entity Injection Vulnerabilities ownCloud CVE-2014-1665 Multiple Cross Site Request Forgery and HTML Injection Vulnerabilities ownCloud CVE-2014-2050 Cross-Site Request Forgery Vulnerability ownCloud CVE-2014-2052 XML External Entity Injection vulnerability ownCloud CVE-2015-4715 Arbitrary File Read Vulnerability ownCloud Multiple Security Vulnerabilities phpCAS Multiple Local Information Disclosure Vulnerabilities phpFox 'ajax.php' Remote Command Execution Vulnerability phpLDAPadmin Multiple Cross Site Scripting Vulnerabilities pngcrush CVE-2015-2158 Remote Code Execution Vulnerability pwgen CVE-2013-4441 Insecure Password Generation Weakness pyrad Password Hash Information Disclosure Vulnerability and Packet Spoofing Vulnerability python-dbusmock CVE-2015-1326 Local Code Execution Vulnerability python-rply CVE-2014-1938 Insecure Temporary File Creation Vulnerability radvd Multiple Local and Remote Vulnerabilities requests-kerberos 'requests_kerberos/kerberos_.py' Remote Security Bypass Vulnerability s3dvt 'main.c' Multiple Local Privilege Escalation Vulnerabilities s3dvt 'setuid()' Function Incomplete Fix Local Privilege Escalation Vulnerability softing FG-100 PB PROFIBUS CVE-2014-6617 Backdoor Unauthorized Access Vulnerability sos 2015-7529 Insecure File Permissions Vulnerability suPHP 'source-highlighting' Feature Local Restriction-Bypass Vulnerability surf 'cookie jar' Local Information Disclosure Vulnerability usb-creator Local Authentication Bypass Vulnerability uzbl Cookie File Information Disclosure Vulnerability vTiger CRM 'files' Upload Folder Arbitrary PHP Code Execution Vulnerability vtiger CRM 'customerportal.php' Multiple Local File Include Vulnerabilities vtiger CRM 'validateSession()' Authentication Bypass Vulnerability vtiger CRM 'vtigerolservice.php' PHP Code Injection Vulnerability web2Project CVE-2014-3119 Multiple SQL Injection Vulnerabilities webEdition CMS 'setup.php' CVE-2014-2302 Remote Command Execution Vulnerability wpa_supplicant CVE-2015-5315 Denial of Service Vulnerability wpa_supplicant CVE-2015-5316 Null Pointer Deference Denial of Service Vulnerability xdg-utils 'xdg-open' CVE-2015-1877 Remote Command Injection Vulnerability xguest CVE-2016-4980 Insecure Password Generation Weakness xlockmore 'dclock' Mode Security Bypass Vulnerability yubico-pam NULL Password Authentication Bypass Vulnerability