Vulnerabilities > Medium

DATE	CVE	VULNERABILITY TITLE	RISK
2017-01-23	CVE-2015-8859	Unspecified vulnerability in Send Project Send The send package before 0.11.1 for Node.js allows attackers to obtain the root path via unspecified vectors. network low complexity send-project	5.3
2017-01-23	CVE-2015-8856	Cross-site Scripting vulnerability in Openjsf Serve-Index Cross-site scripting (XSS) vulnerability in the serve-index package before 1.6.3 for Node.js allows remote attackers to inject arbitrary web script or HTML via a crafted file or directory name. network low complexity openjsf CWE-79	6.1
2017-01-23	CVE-2015-7743	XXE vulnerability in Paessler Prtg Network Monitor XML external entity vulnerability in PRTG Network Monitor before 16.2.23.3077/3078 allows remote authenticated users to read arbitrary files by creating a new HTTP XML/REST Value sensor that accesses a crafted XML file. network low complexity paessler CWE-611	6.5
2017-01-23	CVE-2014-9772	Cross-site Scripting vulnerability in Nodejs Node.Js The validator package before 2.0.0 for Node.js allows remote attackers to bypass the cross-site scripting (XSS) filter via hex-encoded characters. network low complexity nodejs CWE-79	6.1
2017-01-23	CVE-2013-7454	Cross-site Scripting vulnerability in Nodejs Node.Js The validator module before 1.1.0 for Node.js allows remote attackers to bypass the cross-site scripting (XSS) filter via nested forbidden strings. network low complexity nodejs CWE-79	6.1
2017-01-23	CVE-2013-7453	Cross-site Scripting vulnerability in Nodejs Node.Js The validator module before 1.1.0 for Node.js allows remote attackers to bypass the cross-site scripting (XSS) filter via vectors related to UI redressing. network low complexity nodejs CWE-79	6.1
2017-01-23	CVE-2013-7452	Cross-site Scripting vulnerability in Nodejs Node.Js The validator module before 1.1.0 for Node.js allows remote attackers to bypass the cross-site scripting (XSS) filter via a crafted javascript URI. network low complexity nodejs CWE-79	6.1
2017-01-23	CVE-2013-7451	Cross-site Scripting vulnerability in Nodejs Node.Js 1.0.4 The validator module before 1.1.0 for Node.js allows remote attackers to bypass the XSS filter via a nested tag. network low complexity nodejs CWE-79	6.1
2017-01-23	CVE-2017-5553	Cross-site Scripting vulnerability in B2Evolution Cross-site scripting (XSS) vulnerability in plugins/markdown_plugin/_markdown.plugin.php in b2evolution before 6.8.5 allows remote authenticated users to inject arbitrary web script or HTML via a javascript: URL. network low complexity b2evolution CWE-79	5.4
2017-01-23	CVE-2017-5544	Resource Exhaustion vulnerability in Fiberhome Fengine S5800 Firmware V210R240 An issue was discovered on FiberHome Fengine S5800 switches V210R240. network high complexity fiberhome CWE-400	5.9

Vulnerabilities > Medium {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Medium"}]}

Vulnerabilities > Medium