Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sql server 2016 vulnerabilities and exploits
(subscribe to this query)
445
VMScore
CVE-2016-7270
The Data Provider for SQL Server in Microsoft .NET Framework 4.6.2 mishandles a developer-supplied key, which allows remote malicious users to bypass the Always Encrypted protection mechanism and obtain sensitive cleartext information by leveraging key guessability, aka ".NE...
Microsoft .net Framework 4.6.2
445
VMScore
CVE-2016-5049
Directory traversal vulnerability in chat/openattach.aspx in ReadyDesk 9.1 allows remote malicious users to read arbitrary files via a .. (dot dot) in the SESID parameter in conjunction with a filename in the FNAME parameter.
Readydesk Readydesk 9.1
445
VMScore
CVE-2016-1035
Adobe RoboHelp Server 9 prior to 9.0.1 mishandles SQL queries, which allows malicious users to obtain sensitive information via unspecified vectors.
Adobe Robohelp 9.0.0.228
Adobe Robohelp 9
Adobe Robohelp 9.0.1
435
VMScore
CVE-2016-1915
Multiple cross-site scripting (XSS) vulnerabilities in BlackBerry Enterprise Server 12 (BES12) Self-Service prior to 12.4 allow remote malicious users to inject arbitrary web script or HTML via the locale parameter to (1) mydevice/index.jsp or (2) mydevice/loggedOut.jsp.
Blackberry Blackberry Enterprise Service
1 EDB exploit
435
VMScore
CVE-2016-8019
Cross-site scripting (XSS) vulnerability in attributes in Intel Security VirusScan Enterprise Linux (VSEL) 2.0.3 (and previous versions) allows unauthenticated remote malicious users to inject arbitrary web script or HTML via a crafted user input.
Mcafee Virusscan Enterprise
1 EDB exploit
1 Article
409
VMScore
CVE-2019-0880
A local elevation of privilege vulnerability exists in how splwow64.exe handles certain calls, aka 'Microsoft splwow64 Elevation of Privilege Vulnerability'.
Microsoft Windows 10 1709
Microsoft Windows 10 1803
Microsoft Windows 10 1809
Microsoft Windows 10 1903
Microsoft Windows 8.1 -
Microsoft Windows Server 2019 -
Microsoft Windows 10 -
Microsoft Windows 10 1703
Microsoft Windows Server 2012 -
Microsoft Windows Server 2016 -
Microsoft Windows Server 2016 1903
Microsoft Windows Rt 8.1 -
Microsoft Windows 10 1607
Microsoft Windows Server 2012 R2
Microsoft Windows Server 2016 1803
3 Articles
409
VMScore
CVE-2016-5683
ReadyDesk 9.1 allows local users to determine cleartext SQL Server credentials by reading the SQL_Config.aspx file and decrypting data with a hardcoded key in the ReadyDesk.dll file.
Readydesk Readydesk 9.1
405
VMScore
CVE-2016-8017
Special element injection vulnerability in Intel Security VirusScan Enterprise Linux (VSEL) 2.0.3 (and previous versions) allows authenticated remote malicious users to read files on the webserver via a crafted user input.
Mcafee Virusscan Enterprise
1 EDB exploit
1 Article
383
VMScore
CVE-2016-7251
Cross-site scripting (XSS) vulnerability in the MDS API in Microsoft SQL Server 2016 allows remote malicious users to inject arbitrary web script or HTML via an unspecified parameter, aka "MDS API XSS Vulnerability."
Microsoft Sql Server 2016
383
VMScore
CVE-2016-3562
Unspecified vulnerability in the RDBMS Security and SQL*Plus components in Oracle Database Server 11.2.0.4 and 12.1.0.2 allows remote administrators to affect confidentiality via vectors related to DBA.
Oracle Database Server 12.1.0.2
Oracle Database Server 11.2.0.4
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
firmware
CVE-2023-52866
CVE-2024-4367
CVE-2024-1721
CVE-2023-34992
XML injection
CVE-2023-52817
SQL
CVE-2023-52855
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »