v.26.4.2314

Critical Severity Vulnerabilities

Found 1593 vulnerabilities at Critical severity.

Vulnerability Name

CVE

CWE

Severity

IBMHttpServer Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2015-4947)

CVE-2015-4947

CWE-119

Critical

Apache Traffic Server CVE-2015-5168 Vulnerability (CVE-2015-5168)

CVE-2015-5168

-

Critical

Apache Traffic Server CVE-2015-5206 Vulnerability (CVE-2015-5206)

CVE-2015-5206

-

Critical

PHP Improper Input Validation Vulnerability (CVE-2015-5589)

CVE-2015-5589

CWE-20

Critical

Sqlite CVE-2015-5895 Vulnerability (CVE-2015-5895)

CVE-2015-5895

-

Critical

PHP Other Vulnerability (CVE-2015-6834)

CVE-2015-6834

-

Critical

PHP Other Vulnerability (CVE-2015-6835)

CVE-2015-6835

-

Critical

GlassFish Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2015-7182)

CVE-2015-7182

CWE-119

Critical

Jboss EAP Deserialization of Untrusted Data Vulnerability (CVE-2015-7501)

CVE-2015-7501

CWE-502

Critical

ownCloud Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') Vulnerability (CVE-2015-7698)

CVE-2015-7698

CWE-138

Critical

ownCloud Improper Input Validation Vulnerability (CVE-2015-7699)

CVE-2015-7699

CWE-20

Critical

MediaWiki Credentials Management Errors Vulnerability (CVE-2015-8009)

CVE-2015-8009

-

Critical

Jenkins Deserialization of Untrusted Data Vulnerability (CVE-2015-8103)

CVE-2015-8103

CWE-502

Critical

ZenCart Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2015-8352)

CVE-2015-8352

CWE-22

Critical

PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2015-8383)

CVE-2015-8383

CWE-119

Critical

PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2015-8386)

CVE-2015-8386

CWE-119

Critical

PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2015-8389)

CVE-2015-8389

CWE-119

Critical

PHP Use of Uninitialized Resource Vulnerability (CVE-2015-8390)

CVE-2015-8390

CWE-908

Critical

PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2015-8391)

CVE-2015-8391

CWE-119

Critical

PHP Integer Overflow or Wraparound Vulnerability (CVE-2015-8394)

CVE-2015-8394

CWE-190

Critical

Perl Out-of-bounds Read Vulnerability (CVE-2015-8608)

CVE-2015-8608

CWE-125

Critical

PHP Use of Externally-Controlled Format String Vulnerability (CVE-2015-8617)

CVE-2015-8617

CWE-134

Critical

MediaWiki Credentials Management Errors Vulnerability (CVE-2015-8626)

CVE-2015-8626

-

Critical

Magento Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-8707)

CVE-2015-8707

CWE-200

Critical

PHP Other Vulnerability (CVE-2015-8835)

CVE-2015-8835

-

Critical

PHP Other Vulnerability (CVE-2015-8866)

CVE-2015-8866

-

Critical

PHP Other Vulnerability (CVE-2015-8876)

CVE-2015-8876

-

Critical

PHP Other Vulnerability (CVE-2015-8880)

CVE-2015-8880

-

Critical

MyBB Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2015-8974)

CVE-2015-8974

CWE-138

Critical

Oracle Database Server CVE-2016-0499 Vulnerability (CVE-2016-0499)

CVE-2016-0499

-

Critical

WebLogic CVE-2016-0638 Vulnerability (CVE-2016-0638)

CVE-2016-0638

-

Critical

MySQL CVE-2016-0639 Vulnerability (CVE-2016-0639)

CVE-2016-0639

-

Critical

OpenSSL Other Vulnerability (CVE-2016-0705)

CVE-2016-0705

-

Critical

MySQL Other Vulnerability (CVE-2016-0705)

CVE-2016-0705

-

Critical

Python Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2016-0718)

CVE-2016-0718

CWE-119

Critical

Nginx Other Vulnerability (CVE-2016-0746)

CVE-2016-0746

-

Critical

Jenkins Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-0788)

CVE-2016-0788

CWE-264

Critical

Jenkins Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-0791)

CVE-2016-0791

CWE-200

Critical

OpenSSL Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2016-0799)

CVE-2016-0799

CWE-119

Critical

Joomla Improper Neutralization of Argument Delimiters in a Command ('Argument Injection') Vulnerability (CVE-2016-10033)

CVE-2016-10033

CWE-707

Critical

WordPress Improper Neutralization of Argument Delimiters in a Command ('Argument Injection') Vulnerability (CVE-2016-10033)

CVE-2016-10033

CWE-707

Critical

Artifactory Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2016-10036)

CVE-2016-10036

CWE-434

Critical

WordPress Improper Neutralization of Special Elements used in a Command ('Command Injection') Vulnerability (CVE-2016-10045)

CVE-2016-10045

CWE-138

Critical

Joomla Improper Neutralization of Special Elements used in a Command ('Command Injection') Vulnerability (CVE-2016-10045)

CVE-2016-10045

CWE-138

Critical

Serendipity Improper Access Control Vulnerability (CVE-2016-10082)

CVE-2016-10082

CWE-284

Critical

Piwigo Improper Access Control Vulnerability (CVE-2016-10105)

CVE-2016-10105

CWE-284

Critical

PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2016-10160)

CVE-2016-10160

CWE-119

Critical

Serendipity Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2016-10752)

CVE-2016-10752

CWE-434

Critical

PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2016-1283)

CVE-2016-1283

CWE-119

Critical

PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2016-1903)

CVE-2016-1903

CWE-119

Critical

OpenSSL Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2016-2108)

CVE-2016-2108

CWE-119

Critical

Jboss EAP Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-2141)

CVE-2016-2141

CWE-264

Critical

OpenSSL Integer Overflow or Wraparound Vulnerability (CVE-2016-2177)

CVE-2016-2177

CWE-190

Critical

OpenSSL Out-of-bounds Write Vulnerability (CVE-2016-2182)

CVE-2016-2182

CWE-787

Critical

Ruby Other Vulnerability (CVE-2016-2336)

CVE-2016-2336

-

Critical

Ruby Other Vulnerability (CVE-2016-2337)

CVE-2016-2337

-

Critical

Ruby Out-of-bounds Write Vulnerability (CVE-2016-2338)

CVE-2016-2338

CWE-787

Critical

Ruby Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2016-2339)

CVE-2016-2339

CWE-119

Critical

Dot CMS Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2016-2355)

CVE-2016-2355

CWE-138

Critical

PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2016-2554)

CVE-2016-2554

CWE-119

Critical

ATutor Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2016-2555)

CVE-2016-2555

CWE-138

Critical

OpenSSL Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2016-2842)

CVE-2016-2842

CWE-119

Critical

IBM WebSEAL Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') Vulnerability (CVE-2016-3028)

CVE-2016-3028

CWE-138

Critical

PostgreSQL Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-3065)

CVE-2016-3065

CWE-264

Critical

PHP Incorrect Conversion between Numeric Types Vulnerability (CVE-2016-3074)

CVE-2016-3074

CWE-681

Critical

PHP Integer Overflow or Wraparound Vulnerability (CVE-2016-3078)

CVE-2016-3078

CWE-190

Critical

PHP Double Free Vulnerability (CVE-2016-3132)

CVE-2016-3132

CWE-415

Critical

PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2016-3141)

CVE-2016-3141

CWE-119

Critical

WebLogic CVE-2016-3499 Vulnerability (CVE-2016-3499)

CVE-2016-3499

-

Critical

WebLogic CVE-2016-3510 Vulnerability (CVE-2016-3510)

CVE-2016-3510

-

Critical

WebLogic CVE-2016-3551 Vulnerability (CVE-2016-3551)

CVE-2016-3551

-

Critical

WebLogic CVE-2016-3586 Vulnerability (CVE-2016-3586)

CVE-2016-3586

-

Critical

GlassFish CVE-2016-3607 Vulnerability (CVE-2016-3607)

CVE-2016-3607

-

Critical

Jboss EAP Deserialization of Untrusted Data Vulnerability (CVE-2016-3690)

CVE-2016-3690

CWE-502

Critical

Magento Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') Vulnerability (CVE-2016-4010)

CVE-2016-4010

CWE-138

Critical