|
280511
|
- |
|
cisco
|
unity_connection
unity_connection_8.6
unity_connection_8.5
|
The Connection Conversation Manager (aka CuCsMgr) process in Cisco Unity Connection 8.5 before 8.5(1)SU6, 8.6 before 8.6(2a)SU4, and 9.x before 9.1(2)SU2, when SIP trunk integration is enabled, allow…
|
CWE-19
Data Processing Errors
|
CVE-2015-0612
|
2024-11-21 11:23 |
2015-04-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280512
|
- |
|
hidemaru
|
editor
|
Buffer overflow in Saitoh Kikaku Maruo Editor 8.51 and earlier allows remote attackers to execute arbitrary code via a crafted .hmbook file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-0903
|
2024-11-21 11:23 |
2015-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280513
|
- |
|
semperfiwebdesign
|
all_in_one_seo_pack
|
The Semper Fi All in One SEO Pack plugin before 2.2.6 for WordPress does not consider the presence of password protection during generation of the Meta Description field, which allows remote attacker…
|
CWE-200
Information Exposure
|
CVE-2015-0902
|
2024-11-21 11:23 |
2015-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280514
|
- |
|
cisco
|
unified_communications_domain_manager
|
SQL injection vulnerability in the Image Management component in Cisco Unified Communications Domain Manager 8.1(4) allows remote authenticated users to execute arbitrary SQL commands via unspecified…
|
CWE-89
SQL Injection
|
CVE-2015-0684
|
2024-11-21 11:23 |
2015-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280515
|
- |
|
cisco
|
unified_communications_domain_manager
|
Cisco Unified Communications Domain Manager 8.1(4) allows remote authenticated users to obtain sensitive information via a file-inclusion attack, aka Bug ID CSCup94744.
|
CWE-200
Information Exposure
|
CVE-2015-0683
|
2024-11-21 11:23 |
2015-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280516
|
- |
|
cisco
|
unified_communications_domain_manager
|
Cisco Unified Communications Domain Manager 8.1(4) allows remote authenticated users to execute arbitrary code by visiting a "deprecated page," aka Bug ID CSCup90168.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-0682
|
2024-11-21 11:23 |
2015-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280517
|
- |
|
cisco
|
ios
|
The SNMP implementation in Cisco IOS 15.1(2)SG4 on Catalyst 4500 devices, when single-switch Virtual Switching System (VSS) is configured, allows remote authenticated users to cause a denial of servi…
|
CWE-399
Resource Management Errors
|
CVE-2015-0687
|
2024-11-21 11:23 |
2015-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280518
|
- |
|
cisco
|
nx-os
|
The SNMP implementation in Cisco NX-OS 6.1(2)I2(3) on Nexus 9000 devices, when a Reset High Availability (HA) policy is configured, allows remote authenticated users to cause a denial of service (dev…
|
CWE-399
Resource Management Errors
|
CVE-2015-0686
|
2024-11-21 11:23 |
2015-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280519
|
- |
|
cisco
|
ios_xe
|
Cisco IOS XE before 3.7.5S on ASR 1000 devices does not properly handle route adjacencies, which allows remote attackers to cause a denial of service (device hang) via crafted IP packets, aka Bug ID …
|
CWE-20
Improper Input Validation
|
CVE-2015-0685
|
2024-11-21 11:23 |
2015-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280520
|
- |
|
mozilla
|
thunderbird
firefox
firefox_esr
|
Mozilla Firefox before 37.0, Firefox ESR 31.x before 31.6, and Thunderbird before 31.6 do not properly restrict resource: URLs, which makes it easier for remote attackers to execute arbitrary JavaScr…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-0816
|
2024-11-21 11:23 |
2015-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
