2016 CVE Vulnerabilities
10,645 CVEs published in 2016.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2016-2139 | MEDIUM | 6.4 | 0.5% | Jul 28, 2022 | In kippo-graph before version 1.5.1, there is a cross-site scripting vulnerability in $file_link in class/KippoInput.cla... |
| CVE-2016-2138 | MEDIUM | 6.4 | 0.5% | Jul 28, 2022 | In kippo-graph before version 1.5.1, there is a cross-site scripting vulnerability in xss_clean() in class/KippoInput.cl... |
| CVE-2016-2124 | MEDIUM | 5.9 | 1.8% | Feb 18, 2022 | A flaw was found in the way samba implemented SMB1 authentication. An attacker could use this flaw to retrieve the plain... |
| CVE-2016-6556 | MEDIUM | 6.1 | 0.8% | Sep 24, 2021 | OpenNMS version 18.0.1 and prior are vulnerable to a stored XSS issue due to insufficient filtering of SNMP agent suppli... |
| CVE-2016-6555 | MEDIUM | 6.1 | 0.8% | Sep 24, 2021 | OpenNMS version 18.0.1 and prior are vulnerable to a stored XSS issue due to insufficient filtering of SNMP trap supplie... |
| CVE-2016-20012 | MEDIUM | 5.3 | 5.0% | Sep 15, 2021 | OpenSSH through 8.7 allows remote attackers, who have a suspicion that a certain combination of username and public key ... |
| CVE-2016-11085 | MEDIUM | 6.5 | 1.0% | Aug 16, 2020 | php/qmn_options_questions_tab.php in the quiz-master-next plugin before 4.7.9 for WordPress allows CSRF, with resultant ... |
| CVE-2016-11084 | MEDIUM | 6.1 | 0.3% | Jun 19, 2020 | An issue was discovered in Mattermost Server before 2.1.0. It allows XSS via CSRF. |
| CVE-2016-11083 | MEDIUM | 6.1 | 0.7% | Jun 19, 2020 | An issue was discovered in Mattermost Server before 2.2.0. It allows XSS because it configures files to be opened in a b... |
| CVE-2016-11082 | MEDIUM | 6.1 | 0.7% | Jun 19, 2020 | An issue was discovered in Mattermost Server before 2.2.0. It allows XSS via a crafted link. |
| CVE-2016-11081 | MEDIUM | 4.3 | 0.7% | Jun 19, 2020 | An issue was discovered in Mattermost Server before 2.2.0. It allows unintended access to information stored by a web br... |
| CVE-2016-11080 | MEDIUM | 4.3 | 0.7% | Jun 19, 2020 | An issue was discovered in Mattermost Server before 3.0.0. It offers superfluous APIs for a Team Administrator to view a... |
| CVE-2016-11079 | MEDIUM | 6.1 | 0.7% | Jun 19, 2020 | An issue was discovered in Mattermost Server before 3.0.0. It allows XSS via a redirect URL. |
| CVE-2016-11078 | MEDIUM | 6.5 | 0.9% | Jun 19, 2020 | An issue was discovered in Mattermost Server before 3.0.0. It potentially allows attackers to obtain sensitive informati... |
| CVE-2016-11076 | MEDIUM | 5.3 | 0.9% | Jun 19, 2020 | An issue was discovered in Mattermost Server before 3.0.0. It does not ensure that a cookie is used over SSL. |
| CVE-2016-11075 | MEDIUM | 5.3 | 0.9% | Jun 19, 2020 | An issue was discovered in Mattermost Server before 3.0.0. It allows attackers to obtain sensitive information about tea... |
| CVE-2016-11073 | MEDIUM | 6.1 | 0.7% | Jun 19, 2020 | An issue was discovered in Mattermost Server before 3.0.0. It allows XSS via a Legal or Support setting. |
| CVE-2016-11072 | MEDIUM | 6.5 | 0.7% | Jun 19, 2020 | An issue was discovered in Mattermost Server before 3.0.2. The purposes of a session ID and a Session Token were mishand... |
| CVE-2016-11071 | MEDIUM | 6.1 | 0.7% | Jun 19, 2020 | An issue was discovered in Mattermost Server before 3.1.0. It allows XSS because the noreferrer and noopener protection ... |
| CVE-2016-11070 | MEDIUM | 5.4 | 0.6% | Jun 19, 2020 | An issue was discovered in Mattermost Server before 3.1.0. It allows XSS via theme color-code values. |
| CVE-2016-11068 | MEDIUM | 5.3 | 0.9% | Jun 19, 2020 | An issue was discovered in Mattermost Server before 3.2.0. Attackers could read LDAP fields via injection. |
| CVE-2016-11067 | MEDIUM | 5.3 | 1.1% | Jun 19, 2020 | An issue was discovered in Mattermost Server before 3.2.0. It allowed crafted posts that could cause a web browser to ha... |
| CVE-2016-11065 | MEDIUM | 4.3 | 0.6% | Jun 19, 2020 | An issue was discovered in Mattermost Server before 3.3.0. An attacker could use the WebSocket feature to send pop-up me... |
| CVE-2016-11063 | MEDIUM | 6.1 | 0.7% | Jun 19, 2020 | An issue was discovered in Mattermost Server before 3.5.1. XSS can occur via file preview. |
| CVE-2016-11062 | MEDIUM | 5.3 | 0.8% | Jun 19, 2020 | An issue was discovered in Mattermost Server before 3.5.1. E-mail address verification can be bypassed. |
Check if your code is affected by 2016 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now