|
277511
|
- |
|
fedoraproject
rubyonrails
opensuse
|
fedora
jquery-rails
jquery-ujs
opensuse
|
jquery_ujs.js in jquery-rails before 3.1.3 and 4.x before 4.0.4 and rails.js in jquery-ujs before 1.0.4, as used with Ruby on Rails 3.x and 4.x, allow remote attackers to bypass the Same Origin Polic…
|
CWE-200
Information Exposure
|
CVE-2015-1840
|
2024-11-21 11:26 |
2015-07-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277512
|
- |
|
hp
|
system_management_homepage
|
Cross-site request forgery (CSRF) vulnerability in HP System Management Homepage (SMH) before 7.5.0 allows remote authenticated users to hijack the authentication of unspecified victims via unknown v…
|
CWE-352
Origin Validation Error
|
CVE-2015-2134
|
2024-11-21 11:26 |
2015-07-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277513
|
- |
|
ibm
|
business_process_manager
|
Cross-site scripting (XSS) vulnerability in the REST API in IBM Business Process Manager (BPM) 7.5.x through 7.5.1.2, 8.0.x through 8.0.1.3, 8.5.0 through 8.5.0.1, 8.5.5 through 8.5.5.0, and 8.5.6 th…
|
CWE-79
Cross-site Scripting
|
CVE-2015-1906
|
2024-11-21 11:26 |
2015-07-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277514
|
- |
|
ibm
|
business_process_manager
|
The REST API in IBM Business Process Manager (BPM) 7.5.x through 7.5.1.2, 8.0.x through 8.0.1.3, 8.5.0 through 8.5.0.1, 8.5.5 through 8.5.5.0, and 8.5.6 through 8.5.6.0 allows remote authenticated us…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-1905
|
2024-11-21 11:26 |
2015-07-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277515
|
- |
|
ibm
|
infosphere_master_data_management
|
IBM InfoSphere Master Data Management Collaborative Edition 9.1, 10.1, 11.0, 11.3, and 11.4 before FP03 allows remote authenticated users to bypass intended access restrictions and read arbitrary pro…
|
CWE-264
CWE-200
Permissions, Privileges, and Access Controls
Information Exposure
|
CVE-2015-1984
|
2024-11-21 11:26 |
2015-07-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277516
|
- |
|
ibm
|
infosphere_master_data_management
|
IBM InfoSphere Master Data Management Collaborative Edition 9.1, 10.1, 11.0, 11.3, and 11.4 before FP03 allows remote authenticated users to obtain sensitive information via a crafted request, which …
|
CWE-200
Information Exposure
|
CVE-2015-1982
|
2024-11-21 11:26 |
2015-07-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277517
|
- |
|
ibm
|
infosphere_master_data_management
|
IBM InfoSphere Master Data Management Collaborative Edition 9.1, 10.1, 11.0, 11.3, and 11.4 before FP03 allows remote authenticated users to conduct clickjacking attacks via unspecified vectors.
|
CWE-20
Improper Input Validation
|
CVE-2015-1980
|
2024-11-21 11:26 |
2015-07-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277518
|
- |
|
ibm
|
case_manager
|
Multiple cross-site scripting (XSS) vulnerabilities in the Error dialog in IBM Case Manager 5.2.1 before 5.2.1.2 allow remote authenticated users to inject arbitrary web script or HTML via crafted in…
|
CWE-79
Cross-site Scripting
|
CVE-2015-1979
|
2024-11-21 11:26 |
2015-07-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277519
|
- |
|
ibm
|
infosphere_master_data_management
|
Cross-site scripting (XSS) vulnerability in IBM InfoSphere Master Data Management Collaborative Edition 9.1, 10.1, 11.0, 11.3, and 11.4 before FP03 allows remote authenticated users to inject arbitra…
|
CWE-79
Cross-site Scripting
|
CVE-2015-1968
|
2024-11-21 11:26 |
2015-07-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277520
|
- |
|
ibm
|
db2
|
The scalar-function implementation in IBM DB2 9.7 through FP10, 9.8 through FP5, 10.1 before FP5, and 10.5 through FP5 on Linux, UNIX, and Windows allows remote attackers to cause a denial of service…
|
CWE-17
Code
|
CVE-2015-1935
|
2024-11-21 11:26 |
2015-07-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
