CVE.report search for "CVE-2016-9159"
Listed below are 50 relevant search results for "CVE-2016-9159" based on Vendor, Software, and CVE description
These results are gathered from attempted matches with listed vendor and software data, as well as a keyword search in the description of all known CVEs.
If you notice a "Not Listed" in either the vendor or software columns, the underlying source record does not currently include normalized affected-product data.
Search Results
| CVE ID | Vendor | Software | Description |
|---|---|---|---|
| CVE-2025-31735 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in C. Johnson Footnotes fo... | ||
| CVE-2023-47174 | Thorntech | Sftp Gateway | Thorn SFTP gateway 3.4.x before 3.4.4 uses Pivotal Spring Framework for Java deserialization of untrusted data, which is not ... |
| CVE-2023-38689 | Rs485 | Logisticspipes | Logistics Pipes is a modification (a.k.a. mod) for the computer game Minecraft Java Edition. The mod used Java's `ObjectInput... |
| CVE-2023-38408 | Fedoraproject | Fedora | The PKCS#11 feature in ssh-agent in OpenSSH before 9.3p2 has an insufficiently trustworthy search path, leading to remote cod... |
| CVE-2023-32219 | Mazda | Mazda | A Mazda model (2015-2016) can be unlocked via an unspecified method. |
| CVE-2023-22494 | ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2016-20018. Reason: This candidate is a reservation duplicate ... | ||
| CVE-2023-0426 | Abb | Ac700f | ABB is aware of vulnerabilities in the product versions listed below. An update is available that resolves the reported vuln... |
| CVE-2023-0425 | Abb | Ac700f | ABB is aware of vulnerabilities in the product versions listed below. An update is available that resolves the reported vuln... |
| CVE-2023-0296 | Redhat | Openshift | The Birthday attack against 64-bit block ciphers flaw (CVE-2016-2183) was reported for the health checks port (9979) on etcd ... |
| CVE-2022-43705 | Botan Project | Botan | In Botan before 2.19.3, it is possible to forge OCSP responses due to a certificate verification error. This issue was introd... |
| CVE-2022-42973 | Microsoft | Windows 10 | A CWE-798: Use of Hard-coded Credentials vulnerability exists that could cause local privilege escalation when local attacker... |
| CVE-2022-42972 | Microsoft | Windows 10 | A CWE-732: Incorrect Permission Assignment for Critical Resource vulnerability exists that could cause local privilege escala... |
| CVE-2022-42971 | Microsoft | Windows 10 | A CWE-434: Unrestricted Upload of File with Dangerous Type vulnerability exists that could cause remote code execution when t... |
| CVE-2022-42970 | Microsoft | Windows 10 | A CWE-306: Missing Authentication for Critical Function The software does not perform any authentication for functionality th... |
| CVE-2022-32159 | Infogami | Infogami | In openlibrary versions deploy-2016-07-0 through deploy-2021-12-22 are vulnerable to Stored XSS. |
| CVE-2022-31588 | Testplatform Project | Testplatform | The zippies/testplatform repository through 2016-07-19 on GitHub allows absolute path traversal because the Flask send_file f... |
| CVE-2022-31557 | Golem Project | Golem | The seveas/golem repository through 2016-05-17 on GitHub allows absolute path traversal because the Flask send_file function ... |
| CVE-2022-31532 | Travel Blahg Project | Travel Blahg | The dankolbman/travel_blahg repository through 2016-01-16 on GitHub allows absolute path traversal because the Flask send_fil... |
| CVE-2022-23081 | Openlibrary | Openlibrary | In openlibrary versions deploy-2016-07-0 through deploy-2021-12-22 are vulnerable to Reflected XSS. |
| CVE-2021-39365 | Debian | Debian Linux | In GNOME grilo though 0.3.13, grl-net-wc.c does not enable TLS certificate verification on the SoupSessionAsync objects it cr... |
| CVE-2021-39361 | Gnome | Evolution-rss | In GNOME evolution-rss through 0.3.96, network-soup.c does not enable TLS certificate verification on the SoupSessionSync obj... |
| CVE-2021-39360 | Fedoraproject | Fedora | In GNOME libzapojit through 0.0.3, zpj-skydrive.c does not enable TLS certificate verification on the SoupSessionSync objects... |
| CVE-2021-39359 | Fedoraproject | Fedora | In GNOME libgda through 6.0.0, gda-web-provider.c does not enable TLS certificate verification on the SoupSessionSync objects... |
| CVE-2021-39358 | Fedoraproject | Fedora | In GNOME libgfbgraph through 0.2.4, gfbgraph-photo.c does not enable TLS certificate verification on the SoupSessionSync obje... |
| CVE-2021-31607 | Fedoraproject | Fedora | In SaltStack Salt 2016.9 through 3002.6, a command injection vulnerability exists in the snapper module that allows for local... |
| CVE-2021-21087 | Adobe | Coldfusion | Adobe Coldfusion versions 2016 (update 16 and earlier), 2018 (update 10 and earlier) and 2021.0.0.323925 are affected by an I... |
| CVE-2021-20318 | Redhat | Jboss Enterprise Application Platform | The HornetQ component of Artemis in EAP 7 was not updated with the fix for CVE-2016-4978. A remote attacker could use this fl... |
| CVE-2021-4160 | Debian | Debian Linux | There is a carry propagation bug in the MIPS32 and MIPS64 squaring procedure. Many EC algorithms are affected, including some... |
| CVE-2021-3396 | Opennms | Horizon | OpenNMS Meridian 2016, 2017, 2018 before 2018.1.25, 2019 before 2019.1.16, and 2020 before 2020.1.5, Horizon 1.2 through 27.0... |
| CVE-2021-3351 | Openplcproject | Openplc | OpenPLC runtime V3 through 2016-03-14 allows stored XSS via the Device Name to the web server's Add New Device page. |
| CVE-2020-29573 | Gnu | Glibc | sysdeps/i386/ldbl2mpn.c in the GNU C Library (aka glibc or libc6) before 2.23 on x86 targets has a stack-based buffer overflo... |
| CVE-2020-27618 | Debian | Debian Linux | The iconv function in the GNU C Library (aka glibc or libc6) 2.32 and earlier, when processing invalid multi-byte input seque... |
| CVE-2020-19229 | Jeesite | Jeesite | Jeesite 1.2.7 uses the apache shiro version 1.2.3 affected by CVE-2016-4437. Because of this version of the java deserializat... |
| CVE-2020-14300 | Docker | Docker | The docker packages version docker-1.13.1-108.git4ef4b30.el7 as released for Red Hat Enterprise Linux 7 Extras via RHBA-2020:... |
| CVE-2020-14203 | Ibi | Webfocus Business Intelligence | WebFOCUS Business Intelligence 8.0 (SP6) allows a Cross-Site Request Forgery (CSRF) attack against administrative users withi... |
| CVE-2020-9673 | Adobe | Coldfusion | Adobe ColdFusion 2016 update 15 and earlier versions, and ColdFusion 2018 update 9 and earlier versions have a dll search-ord... |
| CVE-2020-9672 | Adobe | Coldfusion | Adobe ColdFusion 2016 update 15 and earlier versions, and ColdFusion 2018 update 9 and earlier versions have a dll search-ord... |
| CVE-2020-5551 | Toyota | Display Control Unit | Toyota 2017 Model Year DCU (Display Control Unit) allows an unauthenticated attacker within Bluetooth range to cause a denial... |
| CVE-2020-3796 | Adobe | Coldfusion | ColdFusion versions ColdFusion 2016, and ColdFusion 2018 have an improper access control vulnerability. Successful exploitati... |
| CVE-2020-3794 | Adobe | Coldfusion | ColdFusion versions ColdFusion 2016, and ColdFusion 2018 have a file inclusion vulnerability. Successful exploitation could l... |
| CVE-2020-3768 | Adobe | Coldfusion | ColdFusion versions ColdFusion 2016, and ColdFusion 2018 have a dll search-order hijacking vulnerability. Successful exploita... |
| CVE-2020-3767 | Adobe | Coldfusion | ColdFusion versions ColdFusion 2016, and ColdFusion 2018 have an insufficient input validation vulnerability. Successful expl... |
| CVE-2020-3761 | Adobe | Coldfusion | ColdFusion versions ColdFusion 2016, and ColdFusion 2018 have a remote file read vulnerability. Successful exploitation could... |
| CVE-2019-18348 | Python | Python | An issue was discovered in urllib2 in Python 2.x through 2.7.17 and urllib in Python 3.x through 3.8.0. CRLF injection is pos... |
| CVE-2019-18263 | Philips | Endura | An issue was found in Philips Veradius Unity, Pulsera, and Endura Dual WAN Router, Veradius Unity (718132) with wireless opti... |
| CVE-2019-17590 | Csrf Magic Project | Csrf Magic | ** DISPUTED ** The csrf_callback function in the CSRF Magic library through 2016-03-27 is vulnerable to CSRF protection bypas... |
| CVE-2019-17514 | Python | Python | library/glob.html in the Python 2 and 3 documentation before 2016 has potentially misleading information about whether sortin... |
| CVE-2019-17391 | Espressif | Esp32-d0wd | An issue was discovered in the Espressif ESP32 mask ROM code 2016-06-08 0 through 2. Lack of anti-glitch mitigations in the f... |
| CVE-2019-16192 | Doccms | Doccms | upload_model() in /admini/controllers/system/managemodel.php in DocCms 2016.5.17 allow remote attackers to execute arbitrary ... |
| CVE-2019-15404 | Asus | Zenfone 4 Max | The Asus ZenFone Max 4 Android device with a build fingerprint of asus/WW_Phone/ASUS_X00HD_4:7.1.1/NMF26F/14.2016.1712.367-20... |