Vulnerabilities > High

DATE	CVE	VULNERABILITY TITLE	RISK
2016-10-06	CVE-2015-1000012	Information Exposure vulnerability in Mypixs Project Mypixs 0.3 Local File Inclusion Vulnerability in mypixs v0.3 wordpress plugin network low complexity mypixs-project CWE-200	7.5
2016-10-06	CVE-2015-1000010	Improper Access Control vulnerability in Simple-Image-Manipulator Project Simple-Image-Manipulator 1.0 Remote file download in simple-image-manipulator v1.0 wordpress plugin network low complexity simple-image-manipulator-project CWE-284	7.5
2016-10-06	CVE-2015-1000007	Improper Authorization vulnerability in Wptf-Image-Gallery Project Wptf-Image-Gallery 1.03 Remote file download vulnerability in wptf-image-gallery v1.03 network low complexity wptf-image-gallery-project CWE-285	7.5
2016-10-06	CVE-2015-1000006	Path Traversal vulnerability in Recent-Backups Project Recent-Backups 0.7 Remote file download vulnerability in recent-backups v0.7 wordpress plugin network low complexity recent-backups-project CWE-22	7.5
2016-10-06	CVE-2015-1000005	Path Traversal vulnerability in Candidate-Application-Form Project Candidate-Application-Form 1.0 Remote file download vulnerability in candidate-application-form v1.0 wordpress plugin network low complexity candidate-application-form-project CWE-22	7.5
2016-10-06	CVE-2015-1000002	Improper Input Validation vulnerability in Filedownload Project Filedownload 1.4 Open Proxy in filedownload v1.4 wordpress plugin network low complexity filedownload-project CWE-20	8.2
2016-10-06	CVE-2016-6653	Information Exposure vulnerability in Pivotal Software Cloud Foundry CF Mysql 27.0/28.0 The MariaDB audit_plugin component in Pivotal Cloud Foundry (PCF) cf-mysql-release 27 and 28 allows remote attackers to obtain sensitive information by reading syslog messages, as demonstrated by cleartext credentials. network low complexity pivotal-software CWE-200	7.5
2016-10-06	CVE-2016-6434	Improper Authentication vulnerability in Cisco Secure Firewall Management Center 6.0.1 Cisco Firepower Management Center 6.0.1 has hardcoded database credentials, which allows local users to obtain sensitive information by leveraging CLI access, aka Bug ID CSCva30370. local low complexity cisco CWE-287	7.8
2016-10-06	CVE-2016-6433	Improper Input Validation vulnerability in Cisco Secure Firewall Management Center The Threat Management Console in Cisco Firepower Management Center 5.2.0 through 6.0.1 allows remote authenticated users to execute arbitrary commands via crafted web-application parameters, aka Bug ID CSCva30872. network low complexity cisco CWE-20	8.8
2016-10-06	CVE-2016-6428	Permissions, Privileges, and Access Controls vulnerability in Cisco IOS XR 6.1.1 Cisco IOS XR 6.1.1 allows local users to execute arbitrary OS commands as root by leveraging admin privileges, aka Bug ID CSCva38349. local low complexity cisco CWE-264	7.8

Vulnerabilities > High {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"High"}]}

Vulnerabilities > High