CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2016-5312

Malware in sbrugna...

7.5CVSS7.7AI score0.05424EPSS

Exploits5References9

NVD•added 2017/02/17 2:59 a.m.•9 views

CVE-2016-4311

Cross-site request forgery CSRF vulnerability in the XACML flow feature in WSO2 Identity Server 5.1.0 allows remote attackers to hijack the authentication of privileged users for requests that process XACML requests via an entitlement/eval-policy-submit.jsp request...

8.8CVSS7.9AI score0.0028EPSS

Exploits5References6

OSV•added 2017/02/17 2:59 a.m.•0 views

CVE-2016-4312

XML external entity XXE vulnerability in the XACML flow feature in WSO2 Identity Server 5.1.0 before WSO2-CARBON-PATCH-4.4.0-0231 allows remote authenticated users with access to XACML features to read arbitrary files, cause a denial of service, conduct server-side request forgery SSRF attacks, o...

7.5CVSS5.9AI score

Exploits0References6

OSV•added 2017/02/17 2:59 a.m.•0 views

CVE-2016-4311

8.8CVSS5.8AI score

Exploits0References6

Prion•added 2017/02/17 2:59 a.m.•10 views

Cross site request forgery (csrf)

6.8CVSS7.7AI score0.0028EPSS

Exploits5References6Affected Software1

ATTACKERKB•added 2017/02/17 2:59 a.m.•2 views

CVE-2016-4311

8.8CVSS5.7AI score0.0028EPSS

Exploits5References6

Prion•added 2017/02/17 2:59 a.m.•16 views

Server side request forgery (ssrf)

6CVSS8.6AI score0.05424EPSS

Exploits6References6Affected Software1

Cvelist•added 2017/02/16 6:0 p.m.•17 views

CVE-2016-4312

8.2AI score0.05424EPSS

Exploits5References6

CVE•added 2017/02/16 6:0 p.m.•66 views

CVE-2016-4311

CVE-2016-4311 is a CSRF vulnerability in the XACML flow feature of WSO2 Identity Server 5.1.0. The issue allows remote attackers to hijack the authentication of privileged users by crafting requests to entitlement/eval-policy-submit.jsp that process XACML requests. Public references note an in-th...

8.8CVSS8.2AI score0.0028EPSS

Exploits5References6Affected Software1

CVE•added 2017/02/16 6:0 p.m.•52 views

CVE-2016-4312

CVE-2016-4312 affects WSO2 Identity Server 5.1.0 prior to WSO2-CARBON-PATCH-4.4.0-0231. The issue is an XML External Entity (XXE) vulnerability in the XACML flow feature that allows remote authenticated users with XACML access to read arbitrary files, cause a denial of service, perform SSRF, or i...

7.5CVSS8.1AI score0.05424EPSS

Exploits5References6Affected Software1

Cvelist•added 2017/02/16 6:0 p.m.•12 views

CVE-2016-4311

8.3AI score0.0028EPSS

Exploits5References5

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by