Dell Integrated Remote Access Controller (iDRAC) 7/8 before 2.21.21.21 has XXE.
Category Archives: NVD
National Vulnerability Database – This feed contains the most recent CVE cyber vulnerabilities published within the National Vulnerability Database.
CVE-2016-4334
Jive before 2016.3.1 has an open redirect from the external-link.jspa page.
CVE-2015-2887
iBaby M3S has a password of admin for the backdoor admin account.
CVE-2016-1516
OpenCV 3.0.0 has a double free issue that allows attackers to execute arbitrary code.
CVE-2015-2880
TRENDnet WiFi Baby Cam TV-IP743SIC has a password of admin for the backdoor root account.
CVE-2016-5058
OSRAM SYLVANIA Osram Lightify Pro through 2016-07-26 allows Zigbee replay.
CVE-2015-7272
Dell Integrated Remote Access Controller (iDRAC) 6 before 2.80 and 7/8 before 2.21.21.21 allows attackers to cause a denial of service (buffer overflow) or possibly have unspecified other impact via a long SSH username or input.
CVE-2016-4320
Atlassian Bitbucket Server before 4.7.1 allows remote attackers to read the first line of an arbitrary file via a directory traversal attack on the pull requests resource.
CVE-2015-2889
Summer Baby Zoom Wifi Monitor & Internet Viewing System allows remote attackers to gain privileges via manual entry of a Settings URL.
CVE-2016-5078
Paessler PRTG before 16.2.24.4045 has XSS via SNMP.