|
278131
|
- |
|
npds
|
revolution
|
SQL injection vulnerability in search.php in NPDS Revolution 13 allows remote attackers to execute arbitrary SQL commands via the query parameter.
|
CWE-89
SQL Injection
|
CVE-2015-1400
|
2024-11-21 11:25 |
2015-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278132
|
- |
|
banner_effect_header_project
|
banner_effect_header
|
Cross-site scripting (XSS) vulnerability in the Banner Effect Header plugin before 1.2.8 for WordPress allows remote attackers to inject arbitrary web script or HTML via the banner_effect_divid param…
|
CWE-79
Cross-site Scripting
|
CVE-2015-1384
|
2024-11-21 11:25 |
2015-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278133
|
- |
|
debian
privoxy
opensuse
|
debian_linux
privoxy
opensuse
|
parsers.c in Privoxy before 3.0.23 allows remote attackers to cause a denial of service (invalid read and crash) via vectors related to an HTTP time header.
|
CWE-20
Improper Input Validation
|
CVE-2015-1382
|
2024-11-21 11:25 |
2015-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278134
|
- |
|
opensuse
debian
privoxy
|
opensuse
debian_linux
privoxy
|
Multiple unspecified vulnerabilities in pcrs.c in Privoxy before 3.0.23 allow remote attackers to cause a denial of service (segmentation fault or memory consumption) via unspecified vectors.
|
CWE-399
Resource Management Errors
|
CVE-2015-1381
|
2024-11-21 11:25 |
2015-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278135
|
- |
|
privoxy
oracle
opensuse
|
privoxy
solaris
opensuse
|
jcc.c in Privoxy before 3.0.23 allows remote attackers to cause a denial of service (abort) via a crafted chunk-encoded body.
|
CWE-20
Improper Input Validation
|
CVE-2015-1380
|
2024-11-21 11:25 |
2015-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278136
|
- |
|
arubanetworks
|
instant_access_point_firmware
|
Heap-based buffer overflow in Aruba Instant (IAP) with firmware before 4.0.0.7 and 4.1.x before 4.1.1.2 allows remote attackers to cause a denial of service (crash or reset to factory default) via a …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-1348
|
2024-11-21 11:25 |
2015-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278137
|
- |
|
bluecoat
|
proxyclient
unified_agent
|
Blue Coat ProxyClient before 3.3.3.3 and 3.4.x before 3.4.4.10 and Unified Agent before 4.1.3.151952 does not properly validate certain certificates, which allows man-in-the-middle attackers to spoof…
|
CWE-310
Cryptographic Issues
|
CVE-2015-1454
|
2024-11-21 11:25 |
2015-02-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278138
|
- |
|
fortinet
|
forticlient
|
The qm class in Fortinet FortiClient 5.2.3.091 for Android uses a hardcoded encryption key of FoRtInEt!AnDrOiD, which makes it easier for attackers to obtain passwords and possibly other sensitive da…
|
CWE-310
Cryptographic Issues
|
CVE-2015-1453
|
2024-11-21 11:25 |
2015-02-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278139
|
- |
|
fortinet
|
fortios
|
The Control and Provisioning of Wireless Access Points (CAPWAP) daemon in Fortinet FortiOS 5.0 Patch 7 build 4457 allows remote attackers to cause a denial of service (locked CAPWAP Access Controller…
|
CWE-17
Code
|
CVE-2015-1452
|
2024-11-21 11:25 |
2015-02-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278140
|
- |
|
fortinet
|
fortios
|
Multiple cross-site scripting (XSS) vulnerabilities in Fortinet FortiOS 5.0 Patch 7 build 4457 allow remote authenticated users to inject arbitrary web script or HTML via the (1) WTP Name or (2) WTP …
|
CWE-79
Cross-site Scripting
|
CVE-2015-1451
|
2024-11-21 11:25 |
2015-02-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
