Vulnerabilities
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-03-15 | CVE-2017-6907 | Cross-site Scripting vulnerability in Open.Gl Project Open.Gl 20170212 An issue was discovered in Open.GL before 2017-03-13. | 6.1 |
| 2017-03-15 | CVE-2017-6906 | Cross-site Scripting vulnerability in Siberiancms An issue was discovered in SiberianCMS before 4.10.0. | 6.1 |
| 2017-03-15 | CVE-2017-6905 | Cross-site Scripting vulnerability in Concrete5 An issue was discovered in concrete5 <= 5.6.3.4. | 6.1 |
| 2017-03-14 | CVE-2017-6903 | Unspecified vulnerability in Ioquake3 20170227 In ioquake3 before 2017-03-14, the auto-downloading feature has insufficient content restrictions. | 7.8 |
| 2017-03-14 | CVE-2017-3899 | SQL Injection vulnerability in Mcafee Advanced Threat Defense SQL injection vulnerability in Intel Security Advanced Threat Defense (ATD) Linux 3.6.0 and earlier allows remote authenticated users to obtain product information via a crafted HTTP request parameter. | 6.5 |
| 2017-03-14 | CVE-2016-8027 | SQL Injection vulnerability in Mcafee Epolicy Orchestrator SQL injection vulnerability in core services in Intel Security McAfee ePolicy Orchestrator (ePO) 5.3.2 and earlier and 5.1.3 and earlier allows attackers to alter a SQL query, which can result in disclosure of information within the database or impersonation of an agent without authentication via a specially crafted HTTP post. | 10.0 |
| 2017-03-14 | CVE-2016-8026 | Permissions, Privileges, and Access Controls vulnerability in Mcafee Security Scan Plus 2.0.181.2/3.11.376/3.11.469 Arbitrary command execution vulnerability in Intel Security McAfee Security Scan Plus (SSP) 3.11.469 and earlier allows authenticated users to gain elevated privileges via unspecified vectors. | 7.8 |
| 2017-03-14 | CVE-2016-8025 | SQL Injection vulnerability in Mcafee Virusscan Enterprise SQL injection vulnerability in Intel Security VirusScan Enterprise Linux (VSEL) 2.0.3 (and earlier) allows remote authenticated users to obtain product information via a crafted HTTP request parameter. | 6.2 |
| 2017-03-14 | CVE-2016-8024 | HTTP Response Splitting vulnerability in Mcafee Virusscan Enterprise Improper neutralization of CRLF sequences in HTTP headers vulnerability in Intel Security VirusScan Enterprise Linux (VSEL) 2.0.3 (and earlier) allows remote unauthenticated attacker to obtain sensitive information via the server HTTP response spoofing. | 8.1 |
| 2017-03-14 | CVE-2016-8023 | Improper Authentication vulnerability in Mcafee Virusscan Enterprise Authentication bypass by assumed-immutable data vulnerability in Intel Security VirusScan Enterprise Linux (VSEL) 2.0.3 (and earlier) allows remote unauthenticated attacker to bypass server authentication via a crafted authentication cookie. | 8.1 |