Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
project 2016 vulnerabilities and exploits
(subscribe to this query)
828
VMScore
CVE-2016-10682
massif is a Phantomjs fork massif downloads resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution (RCE) by swapping out the requested resources with an attacker controlled copy if the attacker is on the network or posit...
Massif Project Massif
694
VMScore
CVE-2016-10703
A regular expression Denial of Service (DoS) vulnerability in the file lib/ecstatic.js of the ecstatic npm package, before version 2.0.0, allows a remote malicious user to overload and crash a server by passing a maliciously crafted string.
Ecstatic Project Ecstatic
NA
CVE-2016-15005
CSRF tokens are generated using math/rand, which is not a cryptographically secure random number generator, allowing an malicious user to predict values and bypass CSRF protections with relatively few requests.
Golf Project Golf
NA
CVE-2016-15006
A vulnerability, which was classified as problematic, has been found in enigmaX up to 2.2. This issue affects the function getSeed of the file main.c of the component Scrambling Table Handler. The manipulation leads to predictable seed in pseudo-random number generator (prng). Th...
Enigmax Project Enigmax
1 Github repository
NA
CVE-2016-15019
A vulnerability was found in tombh jekbox. It has been rated as problematic. This issue affects some unknown processing of the file lib/server.rb. The manipulation leads to exposure of information through directory listing. The attack may be initiated remotely. The patch is named...
Jekbox Project Jekbox
NA
CVE-2016-15029
A vulnerability has been found in Ydalb mapicoin up to 1.9.0 and classified as problematic. This vulnerability affects unknown code of the file webroot/stats.php. The manipulation of the argument link/search leads to cross site scripting. The attack can be initiated remotely. Upg...
Mapicoin Project Mapicoin
605
VMScore
CVE-2016-8699
Heap-based buffer overflow in the bm_readbody_bmp function in bitmap_io.c in potrace prior to 1.13 allows remote malicious users to have unspecified impact via a crafted BMP image, a different vulnerability than CVE-2016-8698, CVE-2016-8700, CVE-2016-8701, CVE-2016-8702, and CVE-...
Potrace Project Potrace
605
VMScore
CVE-2016-8700
Heap-based buffer overflow in the bm_readbody_bmp function in bitmap_io.c in potrace prior to 1.13 allows remote malicious users to have unspecified impact via a crafted BMP image, a different vulnerability than CVE-2016-8698, CVE-2016-8699, CVE-2016-8701, CVE-2016-8702, and CVE-...
Potrace Project Potrace
605
VMScore
CVE-2016-8703
Heap-based buffer overflow in the bm_readbody_bmp function in bitmap_io.c in potrace prior to 1.13 allows remote malicious users to have unspecified impact via a crafted BMP image, a different vulnerability than CVE-2016-8698, CVE-2016-8699, CVE-2016-8700, CVE-2016-8701, and CVE-...
Potrace Project Potrace
445
VMScore
CVE-2016-9954
The backtrack compilation code in the Irregex package (aka IrRegular Expressions) prior to 0.9.6 for Scheme allows remote malicious users to cause a denial of service (memory consumption) via a crafted regular expression with a repeating pattern.
Irregex Project Irregex
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »