|
277771
|
- |
|
openafs
|
openafs
|
vos in OpenAFS before 1.6.13, when updating VLDB entries, allows remote attackers to obtain stack data by sniffing the network.
|
CWE-200
Information Exposure
|
CVE-2015-3282
|
2024-11-21 11:29 |
2015-08-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277772
|
- |
|
fortinet
|
fortios
|
Cross-site scripting (XSS) vulnerability in the DHCP Monitor page in the Web User Interface (WebUI) in Fortinet FortiOS before 5.2.4 on FortiGate devices allows remote attackers to inject arbitrary w…
|
CWE-79
Cross-site Scripting
|
CVE-2015-3626
|
2024-11-21 11:29 |
2015-08-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277773
|
- |
|
redhat
|
jboss_operations_network
|
Cross-site scripting (XSS) vulnerability in the 404 error page in Red Hat JBoss Operations Network before 3.3.3 allows remote attackers to inject arbitrary web script or HTML via a crafted URL.
|
CWE-79
Cross-site Scripting
|
CVE-2015-3267
|
2024-11-21 11:29 |
2015-08-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277774
|
- |
|
linux
redhat
debian
canonical
|
linux_kernel
enterprise_linux
debian_linux
ubuntu_linux
|
The ping_unhash function in net/ipv4/ping.c in the Linux kernel before 4.0.3 does not initialize a certain list data structure during an unhash operation, which allows local users to gain privileges …
|
NVD-CWE-Other
|
CVE-2015-3636
|
2024-11-21 11:29 |
2015-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277775
|
- |
|
debian
wordpress
|
debian_linux
wordpress
|
Cross-site scripting (XSS) vulnerability in the Ephox (formerly Moxiecode) plupload.flash.swf shim 2.1.2 in Plupload, as used in WordPress 3.9.x, 4.0.x, and 4.1.x before 4.1.2 and other products, all…
|
CWE-79
Cross-site Scripting
|
CVE-2015-3439
|
2024-11-21 11:29 |
2015-08-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277776
|
- |
|
wordpress
debian
|
wordpress
debian_linux
|
Multiple cross-site scripting (XSS) vulnerabilities in WordPress before 4.1.2, when MySQL is used without strict mode, allow remote attackers to inject arbitrary web script or HTML via a (1) four-byt…
|
CWE-79
Cross-site Scripting
|
CVE-2015-3438
|
2024-11-21 11:29 |
2015-08-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277777
|
- |
|
debian
wordpress
|
debian_linux
wordpress
|
Cross-site scripting (XSS) vulnerability in wp-includes/wp-db.php in WordPress before 4.2.1 allows remote attackers to inject arbitrary web script or HTML via a long comment that is improperly stored…
|
CWE-79
Cross-site Scripting
|
CVE-2015-3440
|
2024-11-21 11:29 |
2015-08-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277778
|
- |
|
nvidia
|
gpu_driver
|
The NVIDIA GPU driver for FreeBSD R352 before 352.09, 346 before 346.72, R349 before 349.16, R343 before 343.36, R340 before 340.76, R337 before 337.25, R334 before 334.21, R331 before 331.113, and R…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-3625
|
2024-11-21 11:29 |
2015-07-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277779
|
- |
|
sap
|
enterprise_central_component
|
Untrusted search path vulnerability in SAP Enterprise Central Component (ECC) allows local users to gain privileges via a Trojan horse program.
|
CWE-20
Improper Input Validation
|
CVE-2015-3621
|
2024-11-21 11:29 |
2015-07-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277780
|
- |
|
sap
|
afaria
|
The Windows client in SAP Afaria 7.0.6398.0 uses weak permissions (Everyone: read and Everyone: write) for the install folder, which allows local users to gain privileges via a Trojan horse XeService…
|
CWE-254
7PK - Security Features
|
CVE-2015-3449
|
2024-11-21 11:29 |
2015-07-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
