2016 CVE Vulnerabilities

10,645 CVEs published in 2016.

CRITICAL217

2.0%

7.0%

4.5%

0.2%

86.3%

Filter:HIGHClear

CVE ID	Severity	CVSS	EPSS	Published	Description
CVE-2016-2032	HIGH	7.5	2.7%	Jan 31, 2020	A vulnerability exists in the Aruba AirWave Management Platform 8.x prior to 8.2 in the management interface of an under...
CVE-2016-4761	HIGH	8.8	1.4%	Jan 22, 2020	WebKitGTK+ before 2.14.0: A use-after-free vulnerability can allow remote attackers to cause a DoS
CVE-2016-6592	HIGH	7.8	1.0%	Jan 14, 2020	A vulnerability was found in Symantec Norton Download Manager versions prior to 5.6. A remote user can create a speciall...
CVE-2016-5311	HIGH	7.8	0.7%	Jan 9, 2020	A Privilege Escalation vulnerability exists in Symantec Norton Antivirus, Norton AntiVirus with Backup, Norton Security,...
CVE-2016-6593	HIGH	7.8	0.8%	Jan 8, 2020	A code-execution vulnerability exists during startup in jhi.dll and otpiha.dll in Symantec VIP Access Desktop before 2.2...
CVE-2016-6591	HIGH	7.1	0.3%	Jan 8, 2020	A security bypass vulnerability exists in Symantec Norton App Lock 1.0.3.186 and earlier if application pinning is enabl...
CVE-2016-6590	HIGH	7.8	0.3%	Jan 8, 2020	A privilege escalation vulnerability exists when loading DLLs during boot up and reboot in Symantec IT Management Suite ...
CVE-2016-1000104	HIGH	8.8	2.2%	Dec 3, 2019	A security Bypass vulnerability exists in the FcgidPassHeader Proxy in mod_fcgid through 2016-07-07.
CVE-2016-5724	HIGH	7.5	1.2%	Nov 26, 2019	Cloudera CDH before 5.9 has Potentially Sensitive Information in Diagnostic Support Bundles.
CVE-2016-4572	HIGH	8.8	0.9%	Nov 26, 2019	In Cloudera CDH before 5.7.1, Impala REVOKE ALL ON SERVER commands do not revoke all privileges.
CVE-2016-5285	HIGH	7.5	2.3%	Nov 15, 2019	A Null pointer dereference vulnerability exists in Mozilla Network Security Services due to a missing NULL check in PK11...
CVE-2016-11004	HIGH	8.8	1.9%	Sep 20, 2019	The Elegant Themes Monarch plugin before 1.2.7 for WordPress has privilege escalation.
CVE-2016-11003	HIGH	8.8	1.9%	Sep 20, 2019	The Elegant Themes Bloom plugin before 1.1.1 for WordPress has privilege escalation.
CVE-2016-11002	HIGH	8.8	1.9%	Sep 20, 2019	The Elegant Themes Extra theme before 1.2.4 for WordPress has privilege escalation.
CVE-2016-10991	HIGH	7.5	1.6%	Sep 17, 2019	The imdb-widget plugin before 1.0.9 for WordPress has Local File Inclusion.
CVE-2016-10989	HIGH	8.8	0.9%	Sep 17, 2019	The leenkme plugin before 2.6.0 for WordPress has wp-admin/admin.php?page=leenkme_facebook CSRF.
CVE-2016-10982	HIGH	8.8	0.7%	Sep 17, 2019	The kento-post-view-counter plugin through 2.8 for WordPress has wp-admin/admin.php?page=kentopvc_settings CSRF.
CVE-2016-10978	HIGH	8.8	0.7%	Sep 17, 2019	The fossura-tag-miner plugin before 1.1.5 for WordPress has CSRF.
CVE-2016-10974	HIGH	8.8	0.7%	Sep 17, 2019	The fluid-responsive-slideshow plugin before 2.2.7 for WordPress has frs_save CSRF with resultant stored XSS.
CVE-2016-10968	HIGH	8.8	1.6%	Sep 16, 2019	The peepso-core plugin before 1.6.1 for WordPress has PeepSoProfilePreferencesAjax->save() privilege escalation.
CVE-2016-10966	HIGH	7.5	2.6%	Sep 16, 2019	The real3d-flipbook-lite plugin 1.0 for WordPress has bookName=../ directory traversal for file upload.
CVE-2016-10965	HIGH	7.5	2.2%	Sep 16, 2019	The real3d-flipbook-lite plugin 1.0 for WordPress has deleteBook=../ directory traversal for file deletion.
CVE-2016-10960	HIGH	8.8	9.0%	Sep 16, 2019	The wsecure plugin before 2.4 for WordPress has remote code execution via shell metacharacters in the wsecure-config.php...
CVE-2016-10958	HIGH	7.5	1.9%	Sep 16, 2019	The estatik plugin before 2.3.0 for WordPress has unauthenticated arbitrary file upload via es_media_images[] to wp-admi...
CVE-2016-10956	HIGH	7.5	10.6%	Sep 16, 2019	The mail-masta plugin 1.0 for WordPress has local file inclusion in count_of_send.php and csvexport.php.

Check if your code is affected by 2016 CVEs

Strix scans your code and infrastructure for known vulnerabilities automatically.

Scan your code now