Vulnerabilities > Critical

DATE CVE VULNERABILITY TITLE RISK
2016-10-06 CVE-2016-1000124 SQL Injection vulnerability in Huge-It Portfolio Gallery 1.0.6
Unauthenticated SQL Injection in Huge-IT Portfolio Gallery Plugin v1.0.6
network
low complexity
huge-it CWE-89
critical
 9.8
9.8
2016-10-06 CVE-2016-1000123 SQL Injection vulnerability in Huge-It Video Gallery 1.0.9
Unauthenticated SQL Injection in Huge-IT Video Gallery v1.0.9 for Joomla
network
low complexity
huge-it CWE-89
critical
 9.8
9.8
2016-10-06 CVE-2016-1000113 SQL Injection vulnerability in Huge-It Gallery 1.1.5
XSS and SQLi in huge IT gallery v1.1.5 for Joomla
network
low complexity
huge-it CWE-89
critical
 9.8
9.8
2016-10-06 CVE-2016-1000112 Path Traversal vulnerability in Contussupport Contus-Video-Comments 1.0
Unauthenticated remote .jpg file upload in contus-video-comments v1.0 wordpress plugin
network
low complexity
contussupport CWE-22
critical
 9.1
9.1
2016-10-06 CVE-2015-1000011 SQL Injection vulnerability in Dukapress Project Dukapress 2.5.9
Blind SQL Injection in wordpress plugin dukapress v2.5.9
network
low complexity
dukapress-project CWE-89
critical
 9.8
9.8
2016-10-06 CVE-2015-1000009 Improper Access Control vulnerability in Google-Adsense-And-Hotel-Booking Project Google-Adsense-And-Hotel-Booking 1.05
Open proxy in Wordpress plugin google-adsense-and-hotel-booking v1.05
network
low complexity
google-adsense-and-hotel-booking-project CWE-284
critical
 9.1
9.1
2016-10-06 CVE-2015-1000003 SQL Injection vulnerability in Filedownload Project Filedownload 1.4
Blind SQL Injection in filedownload v1.4 wordpress plugin
network
low complexity
filedownload-project CWE-89
critical
 9.8
9.8
2016-10-06 CVE-2015-1000001 Unrestricted Upload of File with Dangerous Type vulnerability in Fast-Image-Adder Project Fast-Image-Adder 1.1
Remote file upload vulnerability in fast-image-adder v1.1 Wordpress plugin
network
low complexity
fast-image-adder-project CWE-434
critical
 9.8
9.8
2016-10-06 CVE-2015-1000000 Unrestricted Upload of File with Dangerous Type vulnerability in Mailcwp Project Mailcwp 1.99
Remote file upload vulnerability in mailcwp v1.99 wordpress plugin
network
low complexity
mailcwp-project CWE-434
critical
 9.8
9.8
2016-10-06 CVE-2016-1453 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Cisco Nx-Os
Buffer overflow in the Overlay Transport Virtualization (OTV) GRE feature in Cisco NX-OS 5.0 through 7.3 on Nexus 7000 and 7700 devices allows remote attackers to execute arbitrary code via long parameters in a packet header, aka Bug ID CSCuy95701.
network
low complexity
cisco CWE-119
critical
 9.8
9.8