Vulnerabilities > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-04-10 | CVE-2016-5075 | Cross-site Scripting vulnerability in Cloudviewnms Cloudview NMS CloudView NMS before 2.10a has XSS via a TELNET login. | 6.1 |
| 2017-04-10 | CVE-2016-5073 | Cross-site Scripting vulnerability in Cloudviewnms Cloudview NMS CloudView NMS before 2.10a has XSS via SNMP. | 6.1 |
| 2017-04-10 | CVE-2016-5059 | Information Exposure vulnerability in Osram Lightify PRO OSRAM SYLVANIA Osram Lightify Pro before 2016-07-26 allows attackers to obtain sensitive information by reading screenshots under /private/var/mobile/Containers/Data/Application. | 6.5 |
| 2017-04-10 | CVE-2016-5055 | Cross-site Scripting vulnerability in Osram Lightify PRO OSRAM SYLVANIA Osram Lightify Pro before 2016-07-26 has XSS in the username field and Wireless Client Mode configuration page. | 6.1 |
| 2017-04-10 | CVE-2016-4334 | Open Redirect vulnerability in Jivesoftware Jive Jive before 2016.3.1 has an open redirect from the external-link.jspa page. | 6.1 |
| 2017-04-10 | CVE-2016-4320 | Path Traversal vulnerability in Atlassian Bitbucket Atlassian Bitbucket Server before 4.7.1 allows remote attackers to read the first line of an arbitrary file via a directory traversal attack on the pull requests resource. | 4.3 |
| 2017-04-10 | CVE-2016-4318 | Cross-site Scripting vulnerability in Atlassian Jira Atlassian JIRA Server before 7.1.9 has XSS in project/ViewDefaultProjectRoleActors.jspa via a role name. | 4.8 |
| 2017-04-10 | CVE-2016-4317 | Cross-site Scripting vulnerability in Atlassian Confluence Atlassian Confluence Server before 5.9.11 has XSS on the viewmyprofile.action page. | 5.4 |
| 2017-04-10 | CVE-2016-1517 | Improper Input Validation vulnerability in Opencv 3.0.0 OpenCV 3.0.0 allows remote attackers to cause a denial of service (segfault) via vectors involving corrupt chunks. | 5.5 |
| 2017-04-10 | CVE-2015-8276 | Information Exposure vulnerability in Eparaksts Edoc-Libraries and Eparakstitajs 3 LVRTC eParakstitajs 3.0 (1.3.0) and edoc-libraries-2.5.4_01 allow attackers to read arbitrary files via crafted EDOC files. | 5.5 |