Vulnerabilities > Medium

DATE CVE VULNERABILITY TITLE RISK
2017-03-02 CVE-2017-6397 Cross-site Scripting vulnerability in Flightairmap 1.0
An issue was discovered in FlightAirMap v1.0-beta.10.
network
low complexity
flightairmap CWE-79
6.1
6.1
2017-03-02 CVE-2017-6396 Cross-site Scripting vulnerability in Webpagetest Project Webpagetest 3.0
An issue was discovered in WPO-Foundation WebPageTest 3.0.
network
low complexity
webpagetest-project CWE-79
6.1
6.1
2017-03-02 CVE-2017-6395 Cross-site Scripting vulnerability in Hashover Project Hashover 2.0
An issue was discovered in HashOver 2.0.
network
low complexity
hashover-project CWE-79
6.1
6.1
2017-03-02 CVE-2017-6394 Cross-site Scripting vulnerability in Open-Emr Openemr 5.0.1
Multiple Cross-Site Scripting (XSS) issues were discovered in OpenEMR 5.0.0 and 5.0.1-dev.
network
low complexity
open-emr CWE-79
6.1
6.1
2017-03-02 CVE-2017-6393 Cross-site Scripting vulnerability in Nagvis 1.9
An issue was discovered in NagVis 1.9b12.
network
low complexity
nagvis CWE-79
6.1
6.1
2017-03-02 CVE-2017-6392 Cross-site Scripting vulnerability in Kaltura Server
An issue was discovered in Kaltura server Lynx-12.11.0.
network
low complexity
kaltura CWE-79
6.1
6.1
2017-03-02 CVE-2017-6391 Cross-site Scripting vulnerability in Kaltura Server
An issue was discovered in Kaltura server Lynx-12.11.0.
network
low complexity
kaltura CWE-79
6.1
6.1
2017-03-02 CVE-2017-6390 Cross-site Scripting vulnerability in Soruly Whatanime.Ga 34C7155C6Fd82B7746Fe8B56Eb89Bf278553C421
An issue was discovered in whatanime.ga before c334dd8499a681587dd4199e90b0aa0eba814c1d.
network
low complexity
soruly CWE-79
6.1
6.1
2017-03-02 CVE-2017-6415 NULL Pointer Dereference vulnerability in Radare Radare2 1.2.1
The dex_parse_debug_item function in libr/bin/p/bin_dex.c in radare2 1.2.1 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted DEX file.
local
low complexity
radare CWE-476
5.5
5.5
2017-03-02 CVE-2017-6387 Out-of-bounds Read vulnerability in Radare Radare2 1.2.1
The dex_loadcode function in libr/bin/p/bin_dex.c in radare2 1.2.1 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted DEX file.
local
low complexity
radare CWE-125
5.5
5.5