Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 5.4

    MEDIUM
    CVE-2016-10779

    cPanel before 60.0.25 allows stored XSS in api1_listautoresponders (SEC-179).... Read more

    Affected Products : cpanel
    • EPSS Score: %0.30
    • Published: Aug. 06, 2019
    • Modified: Nov. 21, 2024

  • 5.4

    MEDIUM
    CVE-2016-10778

    cPanel before 60.0.25 allows self stored XSS in the listftpstable API (SEC-178).... Read more

    Affected Products : cpanel
    • EPSS Score: %0.34
    • Published: Aug. 06, 2019
    • Modified: Nov. 21, 2024

  • 5.4

    MEDIUM
    CVE-2016-10777

    cPanel before 60.0.25 allows self XSS in WHM Tweak Settings for autodiscover_host (SEC-177).... Read more

    Affected Products : cpanel
    • EPSS Score: %0.32
    • Published: Aug. 06, 2019
    • Modified: Nov. 21, 2024

  • 5.4

    MEDIUM
    CVE-2016-10776

    cPanel before 60.0.25 allows stored XSS during the homedir removal phase of WHM Account termination (SEC-174).... Read more

    Affected Products : cpanel
    • EPSS Score: %0.34
    • Published: Aug. 06, 2019
    • Modified: Nov. 21, 2024

  • 6.8

    MEDIUM
    CVE-2016-10775

    cPanel before 60.0.25 allows arbitrary file-chown operations via reassign_post_terminate_cruft (SEC-173).... Read more

    Affected Products : cpanel
    • EPSS Score: %0.31
    • Published: Aug. 05, 2019
    • Modified: Nov. 21, 2024

  • 5.4

    MEDIUM
    CVE-2016-10774

    cPanel before 60.0.25 allows self XSS in the tail_ea4_migration.cgi interface (SEC-172).... Read more

    Affected Products : cpanel
    • EPSS Score: %0.30
    • Published: Aug. 05, 2019
    • Modified: Nov. 21, 2024

  • 8.8

    HIGH
    CVE-2016-10773

    cPanel before 60.0.25 allows format-string injection in exception-message handling (SEC-171).... Read more

    Affected Products : cpanel
    • EPSS Score: %0.51
    • Published: Aug. 05, 2019
    • Modified: Nov. 21, 2024

  • 3.3

    LOW
    CVE-2016-10772

    cPanel before 60.0.25 does not enforce feature-list restrictions when calling the multilang adminbin (SEC-168).... Read more

    Affected Products : cpanel
    • EPSS Score: %0.07
    • Published: Aug. 05, 2019
    • Modified: Nov. 21, 2024

  • 8.1

    HIGH
    CVE-2016-10771

    cPanel before 60.0.25 allows file-create and file-chmod operations during ModSecurity Audit logfile processing (SEC-165).... Read more

    Affected Products : cpanel
    • EPSS Score: %0.32
    • Published: Aug. 05, 2019
    • Modified: Nov. 21, 2024

  • 6.5

    MEDIUM
    CVE-2016-10770

    cPanel before 60.0.25 allows arbitrary file-overwrite operations during a Roundcube update (SEC-164).... Read more

    Affected Products : cpanel
    • EPSS Score: %0.23
    • Published: Aug. 05, 2019
    • Modified: Nov. 21, 2024

  • 6.1

    MEDIUM
    CVE-2016-10769

    cPanel before 60.0.25 allows an open redirect via /cgi-sys/FormMail-clone.cgi (SEC-162).... Read more

    Affected Products : cpanel
    • EPSS Score: %0.20
    • Published: Aug. 05, 2019
    • Modified: Nov. 21, 2024

  • 6.5

    MEDIUM
    CVE-2016-10768

    cPanel before 60.0.25 allows file-overwrite operations during preparation for MySQL upgrades (SEC-161).... Read more

    Affected Products : cpanel
    • EPSS Score: %0.23
    • Published: Aug. 05, 2019
    • Modified: Nov. 21, 2024

  • 5.4

    MEDIUM
    CVE-2016-10767

    cPanel before 60.0.25 allows stored XSS in the WHM Repair Mailbox Permissions interface (SEC-159).... Read more

    Affected Products : cpanel
    • EPSS Score: %0.22
    • Published: Aug. 05, 2019
    • Modified: Nov. 21, 2024

  • 8.8

    HIGH
    CVE-2016-10766

    edx-platform before 2016-06-06 allows CSRF.... Read more

    Affected Products : edx-platform
    • EPSS Score: %0.17
    • Published: Jul. 29, 2019
    • Modified: Nov. 21, 2024

  • 5.3

    MEDIUM
    CVE-2016-10765

    edx-platform before 2016-06-10 allows account activation with a spoofed e-mail address.... Read more

    Affected Products : edx-platform
    • EPSS Score: %0.24
    • Published: Jul. 29, 2019
    • Modified: Nov. 21, 2024

  • 9.8

    CRITICAL
    CVE-2016-10764

    In the Linux kernel before 4.9.6, there is an off by one in the drivers/mtd/spi-nor/cadence-quadspi.c cqspi_setup_flash() function. There are CQSPI_MAX_CHIPSELECT elements in the ->f_pdata array so the ">" should be ">=" instead.... Read more

    Affected Products : linux_kernel
    • EPSS Score: %0.82
    • Published: Jul. 27, 2019
    • Modified: Nov. 21, 2024

  • 4.8

    MEDIUM
    CVE-2016-10763

    The CampTix Event Ticketing plugin before 1.5 for WordPress allows XSS in the admin section via a ticket title or body.... Read more

    Affected Products : camptix_event_ticketing
    • EPSS Score: %0.41
    • Published: Jul. 18, 2019
    • Modified: Nov. 21, 2024

  • 7.5

    HIGH
    CVE-2016-10762

    The CampTix Event Ticketing plugin before 1.5 for WordPress allows CSV injection when the export tool is used.... Read more

    Affected Products : camptix_event_ticketing
    • EPSS Score: %0.94
    • Published: Jul. 18, 2019
    • Modified: Nov. 21, 2024

  • 6.5

    MEDIUM
    CVE-2016-10761

    Logitech Unifying devices before 2016-02-26 allow keystroke injection, bypassing encryption, aka MouseJack.... Read more

    • EPSS Score: %0.04
    • Published: Jun. 29, 2019
    • Modified: Nov. 21, 2024

  • 10.0

    HIGH
    CVE-2016-10760

    On Seowon Intech routers, there is a Command Injection vulnerability in diagnostic.cgi via shell metacharacters in the ping_ipaddr parameter.... Read more

    • EPSS Score: %6.63
    • Published: Jun. 11, 2019
    • Modified: Nov. 21, 2024
Showing 20 of 291887 Results