|
277571
|
- |
|
lhaplus
|
lhaplus
|
Directory traversal vulnerability in Lhaplus before 1.70 allows remote attackers to write to arbitrary files via a crafted archive.
|
CWE-22
Path Traversal
|
CVE-2015-0906
|
2024-11-21 11:23 |
2015-04-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277572
|
- |
|
cisco
|
unified_communications_domain_manager
|
SQL injection vulnerability in the Interactive Voice Response (IVR) component in Cisco Unified Communications Manager (UCM) 10.5(1.98991.13) allows remote attackers to execute arbitrary SQL commands …
|
CWE-89
SQL Injection
|
CVE-2015-0699
|
2024-11-21 11:23 |
2015-04-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277573
|
- |
|
cisco
|
web_security_appliance
|
Multiple cross-site scripting (XSS) vulnerabilities in filter search forms in admin web pages on Cisco Web Security Appliance (WSA) devices with software 8.5.0-497 allow remote attackers to inject ar…
|
CWE-79
Cross-site Scripting
|
CVE-2015-0698
|
2024-11-21 11:23 |
2015-04-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277574
|
- |
|
cisco
|
telepresence_tc_software
|
Open redirect vulnerability in the login page in Cisco TC Software before 6.3-26 and 7.x before 7.3.0 on Cisco TelePresence Collaboration Desk and Room Endpoints devices allows remote attackers to re…
|
CWE-601
Open Redirect
|
CVE-2015-0697
|
2024-11-21 11:23 |
2015-04-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277575
|
- |
|
cisco
|
telepresence_tc_software
|
Cross-site scripting (XSS) vulnerability in the login page in Cisco TC Software before 7.1.0 on Cisco TelePresence Collaboration Desk and Room Endpoints devices allows remote attackers to inject arbi…
|
CWE-79
Cross-site Scripting
|
CVE-2015-0696
|
2024-11-21 11:23 |
2015-04-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277576
|
- |
|
cisco
|
web_security_appliance
|
Cisco Web Security Appliance (WSA) devices with software 8.5.0-ise-147 do not properly restrict use of the pickle Python module during certain tunnel-status checks, which allows local users to execut…
|
CWE-20
Improper Input Validation
|
CVE-2015-0693
|
2024-11-21 11:23 |
2015-04-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277577
|
- |
|
wesnoth
fedoraproject
|
battle_for_wesnoth
fedora
|
The WML/Lua API in Battle for Wesnoth 1.7.x through 1.11.x and 1.12.x before 1.12.2 allows remote attackers to read arbitrary files via a crafted (1) campaign or (2) map file.
|
CWE-200
Information Exposure
|
CVE-2015-0844
|
2024-11-21 11:23 |
2015-04-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277578
|
- |
|
debian
canonical
|
dpkg
ubuntu_linux
|
The dpkg-source command in Debian dpkg before 1.16.16 and 1.17.x before 1.17.25 allows remote attackers to bypass signature verification via a crafted Debian source control file (.dsc).
|
CWE-284
Improper Access Control
|
CVE-2015-0840
|
2024-11-21 11:23 |
2015-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277579
|
- |
|
cisco
|
adaptive_security_appliance_software
|
The XML parser in Cisco Adaptive Security Appliance (ASA) Software 8.4 before 8.4(7.28), 8.6 before 8.6(1.17), 9.0 before 9.0(4.33), 9.1 before 9.1(6), 9.2 before 9.2(3.4), and 9.3 before 9.3(3), whe…
|
CWE-20
Improper Input Validation
|
CVE-2015-0677
|
2024-11-21 11:23 |
2015-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277580
|
- |
|
cisco
|
adaptive_security_appliance_software
|
The DNS implementation in Cisco Adaptive Security Appliance (ASA) Software 7.2 before 7.2(5.16), 8.2 before 8.2(5.57), 8.3 before 8.3(2.44), 8.4 before 8.4(7.28), 8.5 before 8.5(1.24), 8.6 before 8.6…
|
CWE-20
Improper Input Validation
|
CVE-2015-0676
|
2024-11-21 11:23 |
2015-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
