Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sql server 2016 vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2016-7251
Cross-site scripting (XSS) vulnerability in the MDS API in Microsoft SQL Server 2016 allows remote malicious users to inject arbitrary web script or HTML via an unspecified parameter, aka "MDS API XSS Vulnerability."
Microsoft Sql Server 2016
4.3
CVSSv2
CVE-2016-3562
Unspecified vulnerability in the RDBMS Security and SQL*Plus components in Oracle Database Server 11.2.0.4 and 12.1.0.2 allows remote administrators to affect confidentiality via vectors related to DBA.
Oracle Database Server 12.1.0.2
Oracle Database Server 11.2.0.4
4
CVSSv2
CVE-2016-10310
Buffer overflow in the MobiLink Synchronization Server component in SAP SQL Anywhere 17 and possibly earlier allows remote authenticated users to cause a denial of service (resource consumption and process crash) by sending a crafted packet several times, aka SAP Security Note 23...
Sap Sql Anywhere
4
CVSSv2
CVE-2016-8017
Special element injection vulnerability in Intel Security VirusScan Enterprise Linux (VSEL) 2.0.3 (and previous versions) allows authenticated remote malicious users to read files on the webserver via a crafted user input.
Mcafee Virusscan Enterprise
1 EDB exploit
1 Article
4
CVSSv2
CVE-2016-7252
Microsoft SQL Server 2016 mishandles the FILESTREAM path, which allows remote authenticated users to gain privileges via unspecified vectors, aka "SQL Analysis Services Information Disclosure Vulnerability."
Microsoft Sql Server 2016
4
CVSSv2
CVE-2016-4530
OSIsoft PI SQL Data Access Server (aka OLE DB) 2016 1.5 allows remote authenticated users to cause a denial of service (service outage and data loss) via a message.
Osisoft Pi Sql Data Access Server 2016 1.5
4
CVSSv2
CVE-2016-1562
The REST API in the DTE Energy Insight application prior to 1.7.8 for Android allows remote authenticated users to obtain unspecified customer information via a SQL expression in the filter parameter.
Dte Energy Insight 1.7.7
3.5
CVSSv2
CVE-2019-1137
A cross-site-scripting (XSS) vulnerability exists when Microsoft Exchange Server does not properly sanitize a specially crafted web request to an affected Exchange server, aka 'Microsoft Exchange Server Spoofing Vulnerability'.
Microsoft Exchange Server 2013
Microsoft Exchange Server 2016
Microsoft Exchange Server 2019
2 Articles
3.5
CVSSv2
CVE-2016-8016
Information exposure in Intel Security VirusScan Enterprise Linux (VSEL) 2.0.3 (and previous versions) allows authenticated remote malicious users to obtain the existence of unauthorized files on the system via a URL parameter.
Mcafee Virusscan Enterprise
1 EDB exploit
1 Article
3.5
CVSSv2
CVE-2016-8021
Improper verification of cryptographic signature vulnerability in Intel Security VirusScan Enterprise Linux (VSEL) 2.0.3 (and previous versions) allows remote authenticated users to spoof update server and execute arbitrary code via a crafted input file.
Mcafee Virusscan Enterprise
1 EDB exploit
1 Article
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-26978
CVE-2024-26982
wireless
CVE-2023-6949
CVE-2024-26980
CVE-2024-32766
CVE-2024-26939
cache poisoning
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »