|
277371
|
- |
|
cisco
|
web_security_appliance
|
Cross-site scripting (XSS) vulnerability in the Web Tracking Report page on Cisco Web Security Appliance (WSA) devices 8.5.0-497 allows remote attackers to inject arbitrary web script or HTML via an …
|
CWE-79
Cross-site Scripting
|
CVE-2015-0738
|
2024-11-21 11:23 |
2015-05-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277372
|
- |
|
cisco
|
unified_customer_voice_portal
|
Cross-site request forgery (CSRF) vulnerability in Cisco Unified Customer Voice Portal (CVP) 10.5(1) allows remote attackers to hijack the authentication of arbitrary users, aka Bug ID CSCut93970.
|
CWE-352
Origin Validation Error
|
CVE-2015-0735
|
2024-11-21 11:23 |
2015-05-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277373
|
- |
|
cisco
|
wide_area_application_services
|
The SMB module in Cisco Wide Area Application Services (WAAS) 6.0(1) allows remote attackers to cause a denial of service (module reload) via an invalid field in a Negotiate Protocol request, aka Bug…
|
CWE-20
Improper Input Validation
|
CVE-2015-0730
|
2024-11-21 11:23 |
2015-05-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277374
|
- |
|
cisco
|
secure_access_control_server
|
Cross-site scripting (XSS) vulnerability in Cisco Secure Access Control Server Solution Engine (ACSE) 5.5(0.1) allows remote attackers to inject arbitrary web script or HTML via a file-inclusion atta…
|
CWE-79
Cross-site Scripting
|
CVE-2015-0729
|
2024-11-21 11:23 |
2015-05-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277375
|
- |
|
cisco
|
wireless_lan_controller_software
|
The web administration interface on Cisco Wireless LAN Controller (WLC) devices before 7.0.241, 7.1.x through 7.4.x before 7.4.122, and 7.5.x and 7.6.x before 7.6.120 allows remote authenticated user…
|
CWE-20
Improper Input Validation
|
CVE-2015-0726
|
2024-11-21 11:23 |
2015-05-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277376
|
- |
|
cisco
|
wireless_lan_controller_software
|
The wireless web-authentication subsystem on Cisco Wireless LAN Controller (WLC) devices 7.5.x and 7.6.x before 7.6.120 allows remote attackers to cause a denial of service (process crash and device …
|
CWE-399
Resource Management Errors
|
CVE-2015-0723
|
2024-11-21 11:23 |
2015-05-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277377
|
- |
|
cisco
|
unified_communications_manager
|
Cisco Unified Communications Manager 10.0(1.10000.12) allows local users to gain privileges via a command string in an unspecified parameter, aka Bug ID CSCut19546.
|
CWE-264
CWE-20
Permissions, Privileges, and Access Controls
Improper Input Validation
|
CVE-2015-0717
|
2024-11-21 11:23 |
2015-05-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277378
|
- |
|
cisco
|
mediasense
|
Cross-site request forgery (CSRF) vulnerability in Cisco MediaSense 10.5(1) and earlier allows remote attackers to hijack the authentication of arbitrary users, aka Bug ID CSCuu16728.
|
CWE-352
Origin Validation Error
|
CVE-2015-0736
|
2024-11-21 11:23 |
2015-05-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277379
|
- |
|
cisco
|
ios
|
The ISDN implementation in Cisco IOS 15.3S allows remote attackers to cause a denial of service (device reload) via malformed Q931 SETUP messages, aka Bug ID CSCut37890.
|
CWE-399
Resource Management Errors
|
CVE-2015-0731
|
2024-11-21 11:23 |
2015-05-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277380
|
- |
|
cisco
|
email_security_appliance_firmware
|
Multiple cross-site scripting (XSS) vulnerabilities on the Cisco Email Security Appliance (ESA) 8.5.6-106 allow remote attackers to inject arbitrary web script or HTML via unspecified parameters in a…
|
CWE-79
Cross-site Scripting
|
CVE-2015-0734
|
2024-11-21 11:23 |
2015-05-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
