|
278351
|
- |
|
antlabs
|
inngate_ssg_4
inngate_ig_3100
inngate_ig_3.01_e
inngate_ig_3.10_m
inngate_ig_3.10_e
inngate_sg_4
|
Cross-site scripting (XSS) vulnerability in index-login.ant in the ANTlabs InnGate firmware on IG 3100, InnGate 3.01 E, InnGate 3.10 E, InnGate 3.10 M, SG 4, and SSG 4 devices allows remote attackers…
|
CWE-79
Cross-site Scripting
|
CVE-2015-2850
|
2024-11-21 11:28 |
2015-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278352
|
- |
|
antlabs
|
inngate_ssg_4
inngate_ig_3100
inngate_ig_3.01_e
inngate_ig_3.10_m
inngate_ig_3.10_e
inngate_sg_4
|
SQL injection vulnerability in main.ant in the ANTlabs InnGate firmware on IG 3100, InnGate 3.01 E, InnGate 3.10 E, InnGate 3.10 M, SG 4, and SSG 4 devices, when https is used, allows remote attacker…
|
CWE-89
SQL Injection
|
CVE-2015-2849
|
2024-11-21 11:28 |
2015-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278353
|
- |
|
redhat
openssl
|
enterprise_linux
openssl
|
Race condition in a certain Red Hat patch to the PRNG lock implementation in the ssleay_rand_bytes function in OpenSSL, as distributed in openssl-1.0.1e-25.el7 in Red Hat Enterprise Linux (RHEL) 7 an…
|
CWE-189
CWE-362
Numeric Errors
Race Condition
|
CVE-2015-3216
|
2024-11-21 11:28 |
2015-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278354
|
- |
|
namshi
|
namshi\/jose
|
NAMSHI | JOSE 5.0.0 and earlier allows remote attackers to bypass signature verification via crafted tokens in a JSON Web Tokens (JWT) header.
|
CWE-20
Improper Input Validation
|
CVE-2015-2964
|
2024-11-21 11:28 |
2015-07-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278355
|
- |
|
debian
fuse_project
|
debian_linux
fuse
|
fusermount in FUSE before 2.9.3-15 does not properly clear the environment before invoking (1) mount or (2) umount as root, which allows local users to write to arbitrary files via a crafted LIBMOUNT…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-3202
|
2024-11-21 11:28 |
2015-07-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278356
|
- |
|
libreswan
|
libreswan
|
libreswan 3.9 through 3.12 allows remote attackers to cause a denial of service (daemon restart) via an IKEv1 packet with (1) unassigned bits set in the IPSEC DOI value or (2) the next payload value …
|
CWE-20
Improper Input Validation
|
CVE-2015-3204
|
2024-11-21 11:28 |
2015-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278357
|
- |
|
opensuse
x.org
|
opensuse
xorg-server
|
The authentication setup in XWayland 1.16.x and 1.17.x before 1.17.2 starts the server in non-authenticating mode, which allows local users to read from or send information to arbitrary X11 clients v…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-3164
|
2024-11-21 11:28 |
2015-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278358
|
- |
|
droidwareuk
|
explorer\+_file_manager
|
Directory traversal vulnerability in the Droidware UK Explorer+ File Manager application before 2.3.3 for Android allows remote attackers to write to arbitrary files via unspecified vectors.
|
CWE-22
Path Traversal
|
CVE-2015-2966
|
2024-11-21 11:28 |
2015-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278359
|
- |
|
oscommerce
|
oscommerce
|
Directory traversal vulnerability in osCommerce Japanese 2.2ms1j-R8 and earlier allows remote authenticated administrators to read arbitrary files via unspecified vectors.
|
CWE-22
Path Traversal
|
CVE-2015-2965
|
2024-11-21 11:28 |
2015-06-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278360
|
- |
|
adobe
|
bridge
photoshop_cc
|
Adobe Photoshop CC before 16.0 (aka 2015.0.0) and Adobe Bridge CC before 6.11 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-3112
|
2024-11-21 11:28 |
2015-06-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
