CVE.report search for "CVE-2016-9156"
Listed below are 50 relevant search results for "CVE-2016-9156" based on Vendor, Software, and CVE description
These results are gathered from attempted matches with listed vendor and software data, as well as a keyword search in the description of all known CVEs.
If you notice a "Not Listed" in either the vendor or software columns, the underlying source record does not currently include normalized affected-product data.
Search Results
| CVE ID | Vendor | Software | Description |
|---|---|---|---|
| CVE-2026-37536 | miaofng/uds-c commit e506334e270d77b20c0bc259ac6c7d8c9b702b7a (2016-10-05) contains a stack buffer overflow in send_diagnosti... | ||
| CVE-2026-34907 | Wirtualna Uczelnia is vulnerable to Reflected Cross‑Site Scripting (XSS) due to insecure handling of the locale parameter a... | ||
| CVE-2026-34906 | Server-Side Template Injection (SSTI) in Wirtualna Uczelnia allows an unauthenticated attacker to perform Remote Code Executi... | ||
| CVE-2026-25550 | Seagull Software BarTender 2010, 2016, and 2019 contain an unauthenticated remote code execution vulnerability in the .NET Re... | ||
| CVE-2025-70099 | A NULL pointer dereference in the ext4_dir_en_get_name_len function in include/ext4_dir.h of lwext4 1.0.0 allows attackers to... | ||
| CVE-2025-31735 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in C. Johnson Footnotes fo... | ||
| CVE-2025-15638 | Atrodo | Net | Net::Dropbear versions before 0.14 for Perl contains a vulnerable version of libtomcrypt. Net::Dropbear versions before 0.14... |
| CVE-2024-47745 | Debian | Debian Linux | In the Linux kernel, the following vulnerability has been resolved: mm: call the security_mmap_file() LSM hook in remap_file... |
| CVE-2024-36484 | Linux | Linux Kernel | In the Linux kernel, the following vulnerability has been resolved: net: relax socket state check at accept time. Christoph... |
| CVE-2023-47174 | Thorntech | Sftp Gateway | Thorn SFTP gateway 3.4.x before 3.4.4 uses Pivotal Spring Framework for Java deserialization of untrusted data, which is not ... |
| CVE-2023-38689 | Rs485 | Logisticspipes | Logistics Pipes is a modification (a.k.a. mod) for the computer game Minecraft Java Edition. The mod used Java's `ObjectInput... |
| CVE-2023-38408 | Fedoraproject | Fedora | The PKCS#11 feature in ssh-agent in OpenSSH before 9.3p2 has an insufficiently trustworthy search path, leading to remote cod... |
| CVE-2023-32219 | Mazda | Mazda | A Mazda model (2015-2016) can be unlocked via an unspecified method. |
| CVE-2023-22494 | ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2016-20018. Reason: This candidate is a reservation duplicate ... | ||
| CVE-2023-0426 | Abb | Ac700f | ABB is aware of vulnerabilities in the product versions listed below. An update is available that resolves the reported vuln... |
| CVE-2023-0425 | Abb | Ac700f | ABB is aware of vulnerabilities in the product versions listed below. An update is available that resolves the reported vuln... |
| CVE-2023-0296 | Redhat | Openshift | The Birthday attack against 64-bit block ciphers flaw (CVE-2016-2183) was reported for the health checks port (9979) on etcd ... |
| CVE-2022-43705 | Botan Project | Botan | In Botan before 2.19.3, it is possible to forge OCSP responses due to a certificate verification error. This issue was introd... |
| CVE-2022-42973 | Microsoft | Windows 10 | A CWE-798: Use of Hard-coded Credentials vulnerability exists that could cause local privilege escalation when local attacker... |
| CVE-2022-42972 | Microsoft | Windows 10 | A CWE-732: Incorrect Permission Assignment for Critical Resource vulnerability exists that could cause local privilege escala... |
| CVE-2022-42971 | Microsoft | Windows 10 | A CWE-434: Unrestricted Upload of File with Dangerous Type vulnerability exists that could cause remote code execution when t... |
| CVE-2022-42970 | Microsoft | Windows 10 | A CWE-306: Missing Authentication for Critical Function The software does not perform any authentication for functionality th... |
| CVE-2022-32159 | Infogami | Infogami | In openlibrary versions deploy-2016-07-0 through deploy-2021-12-22 are vulnerable to Stored XSS. |
| CVE-2022-31588 | Testplatform Project | Testplatform | The zippies/testplatform repository through 2016-07-19 on GitHub allows absolute path traversal because the Flask send_file f... |
| CVE-2022-31557 | Golem Project | Golem | The seveas/golem repository through 2016-05-17 on GitHub allows absolute path traversal because the Flask send_file function ... |
| CVE-2022-31532 | Travel Blahg Project | Travel Blahg | The dankolbman/travel_blahg repository through 2016-01-16 on GitHub allows absolute path traversal because the Flask send_fil... |
| CVE-2022-23081 | Openlibrary | Openlibrary | In openlibrary versions deploy-2016-07-0 through deploy-2021-12-22 are vulnerable to Reflected XSS. |
| CVE-2021-39365 | Debian | Debian Linux | In GNOME grilo though 0.3.13, grl-net-wc.c does not enable TLS certificate verification on the SoupSessionAsync objects it cr... |
| CVE-2021-39361 | Gnome | Evolution-rss | In GNOME evolution-rss through 0.3.96, network-soup.c does not enable TLS certificate verification on the SoupSessionSync obj... |
| CVE-2021-39360 | Fedoraproject | Fedora | In GNOME libzapojit through 0.0.3, zpj-skydrive.c does not enable TLS certificate verification on the SoupSessionSync objects... |
| CVE-2021-39359 | Fedoraproject | Fedora | In GNOME libgda through 6.0.0, gda-web-provider.c does not enable TLS certificate verification on the SoupSessionSync objects... |
| CVE-2021-39358 | Fedoraproject | Fedora | In GNOME libgfbgraph through 0.2.4, gfbgraph-photo.c does not enable TLS certificate verification on the SoupSessionSync obje... |
| CVE-2021-31607 | Fedoraproject | Fedora | In SaltStack Salt 2016.9 through 3002.6, a command injection vulnerability exists in the snapper module that allows for local... |
| CVE-2021-21087 | Adobe | Coldfusion | Adobe Coldfusion versions 2016 (update 16 and earlier), 2018 (update 10 and earlier) and 2021.0.0.323925 are affected by an I... |
| CVE-2021-20318 | Redhat | Jboss Enterprise Application Platform | The HornetQ component of Artemis in EAP 7 was not updated with the fix for CVE-2016-4978. A remote attacker could use this fl... |
| CVE-2021-4160 | Debian | Debian Linux | There is a carry propagation bug in the MIPS32 and MIPS64 squaring procedure. Many EC algorithms are affected, including some... |
| CVE-2021-3396 | Opennms | Horizon | OpenNMS Meridian 2016, 2017, 2018 before 2018.1.25, 2019 before 2019.1.16, and 2020 before 2020.1.5, Horizon 1.2 through 27.0... |
| CVE-2021-3351 | Openplcproject | Openplc | OpenPLC runtime V3 through 2016-03-14 allows stored XSS via the Device Name to the web server's Add New Device page. |
| CVE-2020-29573 | Gnu | Glibc | sysdeps/i386/ldbl2mpn.c in the GNU C Library (aka glibc or libc6) before 2.23 on x86 targets has a stack-based buffer overflo... |
| CVE-2020-27618 | Debian | Debian Linux | The iconv function in the GNU C Library (aka glibc or libc6) 2.32 and earlier, when processing invalid multi-byte input seque... |
| CVE-2020-19229 | Jeesite | Jeesite | Jeesite 1.2.7 uses the apache shiro version 1.2.3 affected by CVE-2016-4437. Because of this version of the java deserializat... |
| CVE-2020-14300 | Docker | Docker | The docker packages version docker-1.13.1-108.git4ef4b30.el7 as released for Red Hat Enterprise Linux 7 Extras via RHBA-2020:... |
| CVE-2020-14203 | Ibi | Webfocus Business Intelligence | WebFOCUS Business Intelligence 8.0 (SP6) allows a Cross-Site Request Forgery (CSRF) attack against administrative users withi... |
| CVE-2020-9673 | Adobe | Coldfusion | Adobe ColdFusion 2016 update 15 and earlier versions, and ColdFusion 2018 update 9 and earlier versions have a dll search-ord... |
| CVE-2020-9672 | Adobe | Coldfusion | Adobe ColdFusion 2016 update 15 and earlier versions, and ColdFusion 2018 update 9 and earlier versions have a dll search-ord... |
| CVE-2020-5551 | Toyota | Display Control Unit | Toyota 2017 Model Year DCU (Display Control Unit) allows an unauthenticated attacker within Bluetooth range to cause a denial... |
| CVE-2020-3796 | Adobe | Coldfusion | ColdFusion versions ColdFusion 2016, and ColdFusion 2018 have an improper access control vulnerability. Successful exploitati... |
| CVE-2020-3794 | Adobe | Coldfusion | ColdFusion versions ColdFusion 2016, and ColdFusion 2018 have a file inclusion vulnerability. Successful exploitation could l... |
| CVE-2020-3768 | Adobe | Coldfusion | ColdFusion versions ColdFusion 2016, and ColdFusion 2018 have a dll search-order hijacking vulnerability. Successful exploita... |
| CVE-2020-3767 | Adobe | Coldfusion | ColdFusion versions ColdFusion 2016, and ColdFusion 2018 have an insufficient input validation vulnerability. Successful expl... |