CVE List - 2016 / May
Showing 501 - 600 of 612 CVEs for May 2016 (Page 6 of 7)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2016-2221 | 2016-05-22 | Open redirect vulnerability in the wp_validate_redirect function in wp-includes/pluggable.php in... |
| CVE-2016-2222 | 2016-05-22 | The wp_http_validate_url function in wp-includes/http.php in WordPress before 4.4.2 allows... |
| CVE-2016-4342 | 2016-05-22 | ext/phar/phar_object.c in PHP before 5.5.32, 5.6.x before 5.6.18, and 7.x... |
| CVE-2016-4343 | 2016-05-22 | The phar_make_dirstream function in ext/phar/dirstream.c in PHP before 5.6.18 and... |
| CVE-2016-4344 | 2016-05-22 | Integer overflow in the xml_utf8_encode function in ext/xml/xml.c in PHP... |
| CVE-2016-4345 | 2016-05-22 | Integer overflow in the php_filter_encode_url function in ext/filter/sanitizing_filters.c in PHP... |
| CVE-2016-4346 | 2016-05-22 | Integer overflow in the str_pad function in ext/standard/string.c in PHP... |
| CVE-2016-4537 | 2016-05-22 | The bcpowmod function in ext/bcmath/bcmath.c in PHP before 5.5.35, 5.6.x... |
| CVE-2016-4538 | 2016-05-22 | The bcpowmod function in ext/bcmath/bcmath.c in PHP before 5.5.35, 5.6.x... |
| CVE-2016-4539 | 2016-05-22 | The xml_parse_into_struct function in ext/xml/xml.c in PHP before 5.5.35, 5.6.x... |
| CVE-2016-4540 | 2016-05-22 | The grapheme_stripos function in ext/intl/grapheme/grapheme_string.c in PHP before 5.5.35, 5.6.x... |
| CVE-2016-4541 | 2016-05-22 | The grapheme_strpos function in ext/intl/grapheme/grapheme_string.c in PHP before 5.5.35, 5.6.x... |
| CVE-2016-4542 | 2016-05-22 | The exif_process_IFD_TAG function in ext/exif/exif.c in PHP before 5.5.35, 5.6.x... |
| CVE-2016-4543 | 2016-05-22 | The exif_process_IFD_in_JPEG function in ext/exif/exif.c in PHP before 5.5.35, 5.6.x... |
| CVE-2016-4544 | 2016-05-22 | The exif_process_TIFF_in_JPEG function in ext/exif/exif.c in PHP before 5.5.35, 5.6.x... |
| CVE-2016-4566 | 2016-05-22 | Cross-site scripting (XSS) vulnerability in plupload.flash.swf in Plupload before 2.1.9,... |
| CVE-2016-4567 | 2016-05-22 | Cross-site scripting (XSS) vulnerability in flash/FlashMediaElement.as in MediaElement.js before 2.21.0,... |
| CVE-2015-8878 | 2016-05-22 | main/php_open_temporary_file.c in PHP before 5.5.28 and 5.6.x before 5.6.12 does... |
| CVE-2015-8880 | 2016-05-22 | Double free vulnerability in the format printer in PHP 7.x... |
| CVE-2016-2151 | 2016-05-22 | user/index.php in Moodle through 2.6.11, 2.7.x before 2.7.13, 2.8.x before... |
| CVE-2016-2152 | 2016-05-22 | Multiple cross-site scripting (XSS) vulnerabilities in auth/db/auth.php in Moodle through... |
| CVE-2016-2153 | 2016-05-22 | Cross-site scripting (XSS) vulnerability in the advanced-search feature in mod_data... |
| CVE-2016-2154 | 2016-05-22 | admin/tool/monitor/lib.php in Event Monitor in Moodle 2.8.x before 2.8.11, 2.9.x... |
| CVE-2016-2155 | 2016-05-22 | The grade-reporting feature in Singleview (aka Single View) in Moodle... |
| CVE-2016-2156 | 2016-05-22 | calendar/externallib.php in Moodle through 2.6.11, 2.7.x before 2.7.13, 2.8.x before... |
| CVE-2016-2157 | 2016-05-22 | Cross-site request forgery (CSRF) vulnerability in mod/assign/adminmanageplugins.php in Moodle through... |
| CVE-2016-2158 | 2016-05-22 | lib/ajax/getnavbranch.php in Moodle through 2.6.11, 2.7.x before 2.7.13, 2.8.x before... |
| CVE-2016-2159 | 2016-05-22 | The save_submission function in mod/assign/externallib.php in Moodle through 2.6.11, 2.7.x... |
| CVE-2016-2190 | 2016-05-22 | Moodle through 2.6.11, 2.7.x before 2.7.13, 2.8.x before 2.8.11, 2.9.x... |
| CVE-2016-4482 | 2016-05-23 | The proc_connectinfo function in drivers/usb/core/devio.c in the Linux kernel through... |
| CVE-2016-4485 | 2016-05-23 | The llc_cmsg_rcv function in net/llc/af_llc.c in the Linux kernel before... |
| CVE-2016-4486 | 2016-05-23 | The rtnl_fill_link_ifmap function in net/core/rtnetlink.c in the Linux kernel before... |
| CVE-2016-4557 | 2016-05-23 | The replace_map_fd_with_map_ptr function in kernel/bpf/verifier.c in the Linux kernel before... |
| CVE-2016-4558 | 2016-05-23 | The BPF subsystem in the Linux kernel before 4.5.5 mishandles... |
| CVE-2016-4565 | 2016-05-23 | The InfiniBand (aka IB) stack in the Linux kernel before... |
| CVE-2016-4568 | 2016-05-23 | drivers/media/v4l2-core/videobuf2-v4l2.c in the Linux kernel before 4.5.3 allows local users... |
| CVE-2016-4569 | 2016-05-23 | The snd_timer_user_params function in sound/core/timer.c in the Linux kernel through... |
| CVE-2016-4578 | 2016-05-23 | sound/core/timer.c in the Linux kernel through 4.6 does not initialize... |
| CVE-2016-4580 | 2016-05-23 | The x25_negotiate_facilities function in net/x25/x25_facilities.c in the Linux kernel before... |
| CVE-2016-4581 | 2016-05-23 | fs/pnode.c in the Linux kernel before 4.5.4 does not properly... |
| CVE-2016-4794 | 2016-05-23 | Use-after-free vulnerability in mm/percpu.c in the Linux kernel through 4.6... |
| CVE-2016-4805 | 2016-05-23 | Use-after-free vulnerability in drivers/net/ppp/ppp_generic.c in the Linux kernel before 4.5.2... |
| CVE-2016-4913 | 2016-05-23 | The get_rock_ridge_filename function in fs/isofs/rock.c in the Linux kernel before... |
| CVE-2016-4951 | 2016-05-23 | The tipc_nl_publ_dump function in net/tipc/socket.c in the Linux kernel through... |
| CVE-2015-8558 | 2016-05-23 | The ehci_process_itd function in hw/usb/hcd-ehci.c in QEMU allows local guest... |
| CVE-2016-2855 | 2016-05-23 | The Huawei Mobile Broadband HL Service 22.001.25.00.03 and earlier uses... |
| CVE-2016-3664 | 2016-05-23 | Trend Micro Mobile Security for iOS before 3.2.1188 does not... |
| CVE-2016-3958 | 2016-05-23 | Untrusted search path vulnerability in Go before 1.5.4 and 1.6.x... |
| CVE-2016-3959 | 2016-05-23 | The Verify function in crypto/dsa/dsa.go in Go before 1.5.4 and... |
| CVE-2016-4001 | 2016-05-23 | Buffer overflow in the stellaris_enet_receive function in hw/net/stellaris_enet.c in QEMU,... |
| CVE-2016-4037 | 2016-05-23 | The ehci_advance_state function in hw/usb/hcd-ehci.c in QEMU allows local guest... |
| CVE-2016-4049 | 2016-05-23 | The bgp_dump_routes_func function in bgpd/bgp_dump.c in Quagga does not perform... |
| CVE-2016-4087 | 2016-05-23 | Huawei S12700 switches with software before V200R008C00SPC500 and S5700 switches... |
| CVE-2016-4576 | 2016-05-23 | Buffer overflow in the Application Specific Packet Filtering (ASPF) functionality... |
| CVE-2016-4577 | 2016-05-23 | Buffer overflow in the Smart DNS functionality in the Huawei... |
| CVE-2016-4782 | 2016-05-23 | Lenovo SHAREit before 3.5.98_ww on Android before 4.2 allows remote... |
| CVE-2016-4783 | 2016-05-23 | Cross-site scripting (XSS) vulnerability in Lenovo SHAREit before 3.5.98_ww on... |
| CVE-2016-0264 | 2016-05-24 | Buffer overflow in the Java Virtual Machine (JVM) in IBM... |
| CVE-2016-1380 | 2016-05-25 | Cisco AsyncOS 8.0 before 8.0.6-119 on Web Security Appliance (WSA)... |
| CVE-2016-1381 | 2016-05-25 | Memory leak in Cisco AsyncOS 8.5 through 9.0 before 9.0.1-162... |
| CVE-2016-1382 | 2016-05-25 | Cisco AsyncOS before 8.5.3-069 and 8.6 through 8.8 on Web... |
| CVE-2016-1383 | 2016-05-25 | Memory leak in Cisco AsyncOS through 8.8 on Web Security... |
| CVE-2016-1400 | 2016-05-25 | Cisco TelePresence Video Communications Server (VCS) X8.x before X8.7.2 allows... |
| CVE-2016-1406 | 2016-05-25 | The API web interface in Cisco Prime Infrastructure before 3.1... |
| CVE-2016-1407 | 2016-05-25 | Cisco IOS XR through 5.3.2 mishandles Local Packet Transport Services... |
| CVE-2014-3672 | 2016-05-25 | The qemu implementation in libvirt before 1.3.0 and Xen allows... |
| CVE-2015-8853 | 2016-05-25 | The (1) S_reghop3, (2) S_reghop4, and (3) S_reghopmaybe3 functions in... |
| CVE-2016-1886 | 2016-05-25 | Integer signedness error in the genkbd_commonioctl function in sys/dev/kbd/kbd.c in... |
| CVE-2016-1887 | 2016-05-25 | Integer signedness error in the sockargs function in sys/kern/uipc_syscalls.c in... |
| CVE-2016-4020 | 2016-05-25 | The patch_instruction function in hw/i386/kvmvapic.c in QEMU does not initialize... |
| CVE-2016-4575 | 2016-05-25 | Cross-site scripting (XSS) vulnerability in the email APP in Huawei... |
| CVE-2016-2784 | 2016-05-26 | CMS Made Simple 2.x before 2.1.3 and 1.x before 1.12.2,... |
| CVE-2016-4021 | 2016-05-26 | The read_binary function in buffer.c in pgpdump before 0.30 allows... |
| CVE-2016-4786 | 2016-05-26 | Pulse Connect Secure (PCS) 8.2 before 8.2r1, 8.1 before 8.1r3,... |
| CVE-2016-4787 | 2016-05-26 | Pulse Connect Secure (PCS) 8.2 before 8.2r1, 8.1 before 8.1r2,... |
| CVE-2016-4788 | 2016-05-26 | Pulse Connect Secure (PCS) 8.2 before 8.2r1, 8.1 before 8.1r2,... |
| CVE-2016-4789 | 2016-05-26 | Cross-site scripting (XSS) vulnerability in the system configuration section in... |
| CVE-2016-4790 | 2016-05-26 | Cross-site scripting (XSS) vulnerability in the administrative user interface in... |
| CVE-2016-4791 | 2016-05-26 | The administrative user interface in Pulse Connect Secure (PCS) 8.2... |
| CVE-2016-4792 | 2016-05-26 | Pulse Connect Secure (PCS) 8.2 before 8.2r1 allows remote attackers... |
| CVE-2015-7360 | 2016-05-26 | Multiple cross-site scripting (XSS) vulnerabilities in the Web User Interface... |
| CVE-2016-1385 | 2016-05-26 | The XML parser in Cisco Adaptive Security Appliance (ASA) Software... |
| CVE-2016-0718 | 2016-05-26 | Expat allows context-dependent attackers to cause a denial of service... |
| CVE-2016-3680 | 2016-05-26 | Buffer overflow in the Wi-Fi driver in Huawei Mate 8... |
| CVE-2016-3681 | 2016-05-26 | Buffer overflow in the Wi-Fi driver in Huawei Mate 8... |
| CVE-2016-1379 | 2016-05-28 | Cisco Adaptive Security Appliance (ASA) Software 9.0 through 9.5.1 mishandles... |
| CVE-2016-1410 | 2016-05-28 | Cisco WebEx Meeting Center Original Release Base allows remote attackers... |
| CVE-2016-1413 | 2016-05-28 | The web interface in Cisco Firepower Management Center 5.4.0 through... |
| CVE-2016-1404 | 2016-05-29 | Cisco UCS Invicta 4.3, 4.5, and 5.0.1 on Invicta appliances... |
| CVE-2016-1409 | 2016-05-29 | The Neighbor Discovery (ND) protocol implementation in the IPv6 stack... |
| CVE-2016-0907 | 2016-05-30 | EMC Isilon OneFS 7.1.x and 7.2.x before 7.2.1.3 and 8.0.x... |
| CVE-2016-1999 | 2016-05-30 | The server in HP Release Control 9.13, 9.20, and 9.21... |
| CVE-2016-2023 | 2016-05-30 | HPE RESTful Interface Tool 1.40 allows local users to obtain... |
| CVE-2016-2025 | 2016-05-30 | HPE Service Manager 9.30, 9.31, 9.32, 9.33, 9.34, 9.35, 9.40,... |
| CVE-2016-2309 | 2016-05-30 | iRZ RUH2 before 2b does not validate firmware patches, which... |
| CVE-2016-2311 | 2016-05-30 | Black Box AlertWerks ServSensor with firmware before SP473, AlertWerks ServSensor... |
| CVE-2016-4118 | 2016-05-30 | Untrusted search path vulnerability in the installer in Adobe Connect... |
| CVE-2016-0875 | 2016-05-31 | Moxa Secure Router EDR-G903 devices before 3.4.12 allow remote attackers... |
| CVE-2016-0876 | 2016-05-31 | Moxa Secure Router EDR-G903 devices before 3.4.12 allow remote attackers... |
| CVE-2016-0877 | 2016-05-31 | Memory leak on Moxa Secure Router EDR-G903 devices before 3.4.12... |