|
277841
|
- |
|
linux
oracle
|
linux_kernel
linux
|
The ext4_zero_range function in fs/ext4/extents.c in the Linux kernel before 4.1 allows local users to cause a denial of service (BUG) via a crafted fallocate zero-range request.
|
CWE-17
Code
|
CVE-2015-0275
|
2024-11-21 11:22 |
2015-10-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277842
|
- |
|
ibm
|
content_template_catalog
|
Cross-site scripting (XSS) vulnerability in IBM Content Template Catalog 4.x before 4.1.4 for WebSphere Portal 8.0.x and 4.x before 4.3.1 for WebSphere Portal 8.5.x allows remote attackers to inject …
|
CWE-79
Cross-site Scripting
|
CVE-2015-0195
|
2024-11-21 11:22 |
2015-10-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277843
|
- |
|
ibm
|
openpages_grc_platform
|
Cross-site request forgery (CSRF) vulnerability in IBM OpenPages GRC Platform 6.2 before IF7, 6.2.1 before 6.2.1.1 IF5, 7.0 before FP4, and 7.1 before FP1 allows remote authenticated users to hijack …
|
CWE-352
Origin Validation Error
|
CVE-2015-0145
|
2024-11-21 11:22 |
2015-10-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277844
|
- |
|
ibm
|
openpages_grc_platform
|
Cross-site scripting (XSS) vulnerability in IBM OpenPages GRC Platform 6.2 before IF7, 6.2.1 before 6.2.1.1 IF5, 7.0 before FP4, and 7.1 before FP1 allows remote authenticated users to inject arbitra…
|
CWE-79
Cross-site Scripting
|
CVE-2015-0144
|
2024-11-21 11:22 |
2015-10-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277845
|
- |
|
ibm
|
openpages_grc_platform
|
IBM OpenPages GRC Platform 6.2 before IF7, 6.2.1 before 6.2.1.1 IF5, 7.0 before FP4, and 7.1 before FP1 allows remote authenticated users to obtain sensitive information by reading error messages.
|
CWE-200
Information Exposure
|
CVE-2015-0143
|
2024-11-21 11:22 |
2015-10-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277846
|
- |
|
ibm
|
openpages_grc_platform
|
IBM OpenPages GRC Platform 6.2 before IF7, 6.2.1 before 6.2.1.1 IF5, 7.0 before FP4, and 7.1 before FP1 allows remote authenticated users to cause a denial of service (maintenance-mode transition and…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-0142
|
2024-11-21 11:22 |
2015-10-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277847
|
- |
|
ibm
|
openpages_grc_platform
|
IBM OpenPages GRC Platform 6.2 before IF7, 6.2.1 before 6.2.1.1 IF5, 7.0 before FP4, and 7.1 before FP1 allows remote authenticated users to modify arbitrary user filters via a JSON request.
|
CWE-284
Improper Access Control
|
CVE-2015-0141
|
2024-11-21 11:22 |
2015-10-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277848
|
- |
|
open_source_point_of_sale_project
|
open_source_point_of_sale
|
Multiple cross-site scripting (XSS) vulnerabilities in Open Source Point of Sale 2.3.1 allow remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2015-0299
|
2024-11-21 11:22 |
2015-09-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277849
|
- |
|
redhat
|
mod_cluster
|
Cross-site scripting (XSS) vulnerability in the manager web interface in mod_cluster before 1.3.2.Alpha1 allows remote attackers to inject arbitrary web script or HTML via a crafted MCMP message.
|
CWE-79
Cross-site Scripting
|
CVE-2015-0298
|
2024-11-21 11:22 |
2015-08-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277850
|
- |
|
picketlink
|
picketlink
|
The Service Provider (SP) in PicketLink before 2.7.0 does not ensure that it is a member of an Audience element when an AudienceRestriction is specified, which allows remote attackers to log in to ot…
|
CWE-284
Improper Access Control
|
CVE-2015-0277
|
2024-11-21 11:22 |
2015-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
