|
277091
|
- |
|
joomla
|
joomla\!
|
The com_content component in Joomla! 3.x before 3.4.5 does not properly check ACLs, which allows remote attackers to obtain sensitive information via unspecified vectors.
|
CWE-284
Improper Access Control
|
CVE-2015-7899
|
2024-11-21 11:37 |
2015-10-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277092
|
- |
|
joomla
|
joomla\!
|
The com_contenthistory component in Joomla! 3.2 before 3.4.5 does not properly check ACLs, which allows remote attackers to obtain sensitive information via unspecified vectors.
|
CWE-200
Information Exposure
|
CVE-2015-7859
|
2024-11-21 11:37 |
2015-10-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277093
|
- |
|
joomla
|
joomla\!
|
SQL injection vulnerability in Joomla! 3.2 before 3.4.4 allows remote attackers to execute arbitrary SQL commands via unspecified vectors, a different vulnerability than CVE-2015-7297.
|
CWE-89
SQL Injection
|
CVE-2015-7858
|
2024-11-21 11:37 |
2015-10-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277094
|
- |
|
joomla
|
joomla\!
|
SQL injection vulnerability in the getListQuery function in administrator/components/com_contenthistory/models/history.php in Joomla! 3.2 before 3.4.5 allows remote attackers to execute arbitrary SQL…
|
CWE-89
SQL Injection
|
CVE-2015-7857
|
2024-11-21 11:37 |
2015-10-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277095
|
- |
|
openstack
|
nova
|
OpenStack Compute (Nova) before 2014.2.4 (juno) and 2015.1.x before 2015.1.2 (kilo) do not properly apply security group changes, which allows remote attackers to bypass intended restriction by lever…
|
CWE-254
7PK - Security Features
|
CVE-2015-7713
|
2024-11-21 11:37 |
2015-10-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277096
|
- |
|
adobe
|
shockwave_player
|
Adobe Shockwave Player before 12.2.1.171 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-7649
|
2024-11-21 11:37 |
2015-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277097
|
- |
|
infinite_automation_systems
|
mango_automation
|
Unrestricted file upload vulnerability in Infinite Automation Mango Automation 2.5.x and 2.6.x before 2.6.0 build 430 allows remote authenticated users to execute arbitrary JSP code via vectors invol…
|
NVD-CWE-Other
|
CVE-2015-7904
|
2024-11-21 11:37 |
2015-10-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277098
|
- |
|
infinite_automation_systems
|
mango_automation
|
SQL injection vulnerability in Infinite Automation Mango Automation 2.5.x and 2.6.x before 2.6.0 build 430 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2015-7903
|
2024-11-21 11:37 |
2015-10-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277099
|
- |
|
infinite_automation_systems
|
mango_automation
|
Infinite Automation Mango Automation 2.5.x and 2.6.x before 2.6.0 build 430 provides different error messages for failed login attempts in unspecified circumstances, which allows remote attackers to …
|
CWE-200
Information Exposure
|
CVE-2015-7902
|
2024-11-21 11:37 |
2015-10-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277100
|
- |
|
infinite_automation_systems
|
mango_automation
|
Infinite Automation Mango Automation 2.5.x and 2.6.x through 2.6.0 build 430 allows remote authenticated users to execute arbitrary OS commands via unspecified vectors.
|
CWE-78
OS Command
|
CVE-2015-7901
|
2024-11-21 11:37 |
2015-10-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
