17515 Total CVEs
8815 AI Analyzed
268 CISA KEV
3550 Critical
All Vendors
Showing 17451-17500 of 17515 CVEs Page 350 of 351
CVE-2016-20052
Analyzed
9.8
HP executables to

Snews CMS 1.7 contains an unrestricted file upload vulnerability, allowing unauthenticated attackers to upload and execute arbitrary PHP files to achi...

2026-04-05
CVE-2016-20049
Analyzed
9.8
JAD Java Decompiler

JAD 1.5.8e-1kali1 and prior allows arbitrary code execution via a stack-based buffer overflow triggered by input strings exceeding 8150 bytes.

2026-03-29
CVE-2016-20048
8.4
Unknown Multiple Products

iSelect 1

2026-03-29
CVE-2016-20047
8.4
EKG Multiple Products

EKG Gadu 1

2026-03-29
CVE-2016-20046
8.4
Unknown Multiple Products

zFTP Client 20061220+dfsg3-4

2026-03-29
CVE-2016-20045
8.4
HNB Multiple Products

HNB Organizer 1

2026-03-29
CVE-2016-20044
8.4
PInfo Multiple Products

PInfo 0

2026-03-29
CVE-2016-20043
Analyzed
8.4
RSS Multiple Products

NRSS RSS Reader 0

2026-03-29
CVE-2016-20042
8.4
TRN Multiple Products

TRN 3

2026-03-29
CVE-2016-20041
8.4
Yasr Multiple Products

Yasr 0

2026-03-29
CVE-2016-20040
8.4
ROM Multiple Products

TiEmu 3

2026-03-29
CVE-2016-20039
8.4
Super Multiple Products

Multi Emulator Super System 0

2026-03-29
CVE-2016-20038
8.4
Unknown Multiple Products

yTree 1

2026-03-29
CVE-2016-20037
8.4
Unknown Multiple Products

xwpe 1

2026-03-29
CVE-2016-20034
8.8
Streaming Multiple Products

Wowza Streaming Engine 4

2026-03-17
CVE-2016-20033
7.8
Streaming Multiple Products

Wowza Streaming Engine 4

2026-03-17
CVE-2016-20032
7.2
Unknown Multiple Products

ZKTeco ZKAccess Security System 5

2026-03-17
CVE-2016-20030
Analyzed
9.8
ZKTeco ZKBioSecurity

ZKTeco ZKBioSecurity 3.0 contains a user enumeration vulnerability in the authLoginAction!login.do script, allowing unauthenticated attackers to disco...

2026-03-17
CVE-2016-20026
Analyzed
9.8
Apache ZKBioSecurity

ZKTeco ZKBioSecurity 3.0 uses hardcoded credentials in its bundled Apache Tomcat server, allowing unauthenticated attackers to execute arbitrary code...

2026-03-17
CVE-2016-20025
Analyzed
8.8
ZKAccess Multiple Products

ZKTeco ZKAccess Professional 3

2026-03-17
CVE-2016-20024
Analyzed
9.8
ZKTeco ZKTime.Net

ZKTeco ZKTime.Net 3.0.1.6 contains insecure file permissions that allow unprivileged users to escalate privileges by replacing executable files with m...

2026-03-17
CVE-2016-15058
Analyzed
8.1
Unknown HiLCOS Classic Platform switches (L2E, L2P, L3E, L3P)

Hirschmann HiLCOS Classic Platform switches Classic L2E, L2P, L3E, L3P versions prior to 09

2026-04-04
CVE-2016-15057
Analyzed
9.9
Apache Multiple Products

** UNSUPPORTED WHEN ASSIGNED ** Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability in Apache Continuum....

2026-01-27
CVE-2016-10033
KEV Analyzed
9.5
HP PHPMailer

PHPMailer Command Injection Vulnerability - Recently added to CISA KEV.

2025-07-07
CVE-2015-7755
KEV
9.5
Juniper ScreenOS

Juniper ScreenOS Improper Authentication Vulnerability - Active in CISA KEV catalog.

2025-10-02
CVE-2015-20121
8.2
HP and the

Next Click Ventures RealtyScript 4

2026-03-17
CVE-2015-20120
8.2
Ventures Multiple Products

Next Click Ventures RealtyScript 4

2026-03-17
CVE-2015-20118
7.2
HP endpoint with

Next Click Ventures RealtyScript 4

2026-03-17
CVE-2015-20115
7.2
HP when accessed

Next Click Ventures RealtyScript 4

2026-03-17
CVE-2015-10148
Analyzed
8.2
Unknown HiLCOS devices (OpenBAT, WLC, BAT300, BAT54)

Hirschmann HiLCOS devices OpenBAT, WLC, BAT300, BAT54 prior to 8

2026-04-04
CVE-2015-10140
8.8
Unknown Multiple Products

The Ajax Load More plugin before 2

2025-07-23
CVE-2015-10139
Analyzed
8.8
WordPress Multiple Products

The WPLMS theme for WordPress is vulnerable to Privilege Escalation in versions 1

2025-07-21
CVE-2015-10137
Analyzed
9.8
WordPress Multiple Products

The Website Contact Form With File Upload plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'upl...

2025-07-24
CVE-2015-10136
Analyzed
7.5
WordPress Multiple Products

The GI-Media Library plugin for WordPress is vulnerable to Directory Traversal in versions before 3

2025-07-21
CVE-2015-10134
Analyzed
7.5
WordPress Multiple Products

The Simple Backup plugin for WordPress is vulnerable to Arbitrary File Download in versions up to, and including, 2

2025-07-21
CVE-2015-10133
Analyzed
7.2
WordPress Multiple Products

The Subscribe to Comments for WordPress is vulnerable to Local File Inclusion in versions up to, and including, 2

2025-07-21
CVE-2014-6278
KEV
9.5
GNU GNU Bash

GNU Bash OS Command Injection Vulnerability - Active in CISA KEV catalog.

2025-10-02
CVE-2014-3931
KEV Analyzed
9.5
Looking Glass Multi-Router Looking Glass (MRLG)

Multi-Router Looking Glass (MRLG) Buffer Overflow Vulnerability - Recently added to CISA KEV.

2025-07-07
CVE-2014-125127
Analyzed
7.5
HP Multiple Products

The mikecao/flight PHP framework in versions prior to v1

2025-09-03
CVE-2014-125112
Analyzed
9.8
Plack Middleware::Session::Cookie

Plack::Middleware::Session::Cookie through version 0.21 for Perl is vulnerable to remote code execution during cookie deserialization when no secret k...

2026-03-27
CVE-2013-3918
KEV
9.5
Microsoft Windows

Microsoft Windows Out-of-Bounds Write Vulnerability - Active in CISA KEV catalog.

2025-10-06
CVE-2013-3893
KEV
9.5
Microsoft Internet Explorer

Microsoft Internet Explorer Resource Management Errors Vulnerability - Active in CISA KEV catalog.

2025-08-12
CVE-2013-20006
7.5
Qool Multiple Products

Qool CMS contains multiple persistent cross-site scripting vulnerabilities in several administrative scripts where POST parameters are not properly sa...

2026-03-17
CVE-2013-10075
Analyzed
9.1
Apache Apache::Session

Apache::Session for Perl fails to properly handle session deletion, allowing for the potential revival of deleted session data.

2026-05-09
CVE-2013-10050
Analyzed
8.8
D-Link Routers (DIR-300)

An OS command injection vulnerability exists in multiple D-Link routers (confirmed on DIR-300 rev A v1

2026-05-27
CVE-2012-1854
KEV
9.5
Microsoft Visual Basic for Applications (VBA)

Microsoft Visual Basic for Applications Insecure Library Loading Vulnerability - Active in CISA KEV catalog.

2026-04-14
CVE-2012-10020
Analyzed
9.8
HP Multiple Products

The FoxyPress plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the uploadify.php file in versions u...

2025-07-24
CVE-2011-3402
KEV
9.5
Microsoft Windows

Microsoft Windows Remote Code Execution Vulnerability - Active in CISA KEV catalog.

2025-10-06
CVE-2011-10043
Analyzed
9.8
BINGOS Module::Load

A vulnerability in the Perl Module::Load library allows unauthenticated attackers to load arbitrary modules from unauthorized paths, potentially leadi...

2026-07-08
CVE-2011-10018
Analyzed
9.8
HP Multiple Products

myBB version 1.6.4 was distributed with an unauthorized backdoor embedded in the source code. The backdoor allowed remote attackers to execute arbitra...

2025-08-14