|
277581
|
- |
|
sap
|
enterprise_resource_planning
|
The Dealer Portal in SAP ERP does not properly restrict access, which allows remote attackers to obtain sensitive information, gain privileges, and possibly have other unspecified impact via unknown …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-1312
|
2024-11-21 11:25 |
2015-01-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277582
|
- |
|
sap
|
hana_extended_application_services
|
The Extended Application Services (XS) in SAP HANA allows remote attackers to inject arbitrary ABAP code via unspecified vectors, aka SAP Note 2098906. NOTE: the provenance of this information is un…
|
CWE-94
Code Injection
|
CVE-2015-1311
|
2024-11-21 11:25 |
2015-01-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277583
|
- |
|
sybase
|
adaptive_server_enterprise
|
SQL injection vulnerability in SAP Adaptive Server Enterprise (Sybase ASE) allows remote attackers to execute arbitrary SQL commands via unspecified vectors, aka SAP Note 2113333. NOTE: the provenan…
|
CWE-89
SQL Injection
|
CVE-2015-1310
|
2024-11-21 11:25 |
2015-01-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277584
|
- |
|
sap
|
netweaver_abap
|
XML external entity vulnerability in the Extended Computer Aided Test Tool (eCATT) in SAP NetWeaver AS ABAP 7.31 and earlier allows remote attackers to access arbitrary files via a crafted XML reques…
|
NVD-CWE-Other
|
CVE-2015-1309
|
2024-11-21 11:25 |
2015-01-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277585
|
- |
|
sympa
|
sympa
|
The newsletter posting area in the web interface in Sympa 6.0.x before 6.0.10 and 6.1.x before 6.1.24 allows remote attackers to read arbitrary files via unspecified vectors.
|
CWE-200
Information Exposure
|
CVE-2015-1306
|
2024-11-21 11:25 |
2015-01-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277586
|
5.9 |
MEDIUM
Network
|
samwilson
|
planet-freo
|
A vulnerability was found in planet-freo up to 20150116 and classified as problematic. Affected by this issue is some unknown functionality of the file admin/inc/auth.inc.php. The manipulation of the…
|
-
|
CVE-2015-10129
|
2024-11-21 11:24 |
2024-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277587
|
5.5 |
MEDIUM
Local
|
forget_it_project
|
forget_it
|
A vulnerability, which was classified as problematic, was found in InternalError503 Forget It up to 1.3. This affects an unknown part of the file js/settings.js. The manipulation of the argument setF…
|
-
|
CVE-2015-10103
|
2024-11-21 11:24 |
2023-04-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277588
|
9.8 |
CRITICAL
Network
|
grinnellplans
|
grinnellplans
|
A vulnerability was found in grinnellplans-php up to 3.0. It has been declared as critical. Affected by this vulnerability is the function interface_disp_page/interface_disp_page of the file read.php…
|
CWE-89
SQL Injection
|
CVE-2015-10097
|
2024-11-21 11:24 |
2023-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277589
|
8.1 |
HIGH
Network
|
irc_twitter_announcer_bot_project
|
irc_twitter_announcer_bot
|
A vulnerability, which was classified as critical, was found in Zarthus IRC Twitter Announcer Bot up to 1.1.0. This affects the function get_tweets of the file lib/twitterbot/plugins/twitter_announce…
|
-
|
CVE-2015-10096
|
2024-11-21 11:24 |
2023-03-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277590
|
9.8 |
CRITICAL
Network
|
shaarlier_project
|
shaarlier
|
A vulnerability was found in dimtion Shaarlier up to 1.2.2. It has been declared as critical. Affected by this vulnerability is the function createTag of the file app/src/main/java/com/dimtion/shaarl…
|
-
|
CVE-2015-10076
|
2024-11-21 11:24 |
2023-02-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
