|
276711
|
5.4 |
MEDIUM
Network
|
redhat
|
satellite
spacewalk-java
|
Cross-site scripting (XSS) vulnerability in spacewalk-java in Spacewalk and Red Hat Satellite 5.7 allows remote authenticated users to inject arbitrary web script or HTML via crafted XML data to the …
|
CWE-79
Cross-site Scripting
|
CVE-2015-0284
|
2024-11-21 11:22 |
2016-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276712
|
7.1 |
HIGH
Network
|
apache
|
ranger
|
The Policy Admin Tool in Apache Ranger before 0.5.0 allows remote authenticated users to bypass intended access restrictions via direct access to module URLs.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-0266
|
2024-11-21 11:22 |
2016-04-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276713
|
6.1 |
MEDIUM
Network
|
apache
|
ranger
|
Cross-site scripting (XSS) vulnerability in the Policy Admin Tool in Apache Ranger before 0.5.0 allows remote attackers to inject arbitrary web script or HTML via the HTTP User-Agent header.
|
CWE-79
Cross-site Scripting
|
CVE-2015-0265
|
2024-11-21 11:22 |
2016-04-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276714
|
- |
|
gnome
suse
canonical
oracle
|
networkmanager
linux_enterprise_server
linux_enterprise_desktop
linux_enterprise_debuginfo
linux_enterprise_real_time_extension
linux_enterprise_software_development_kit
linux_enter…
|
GNOME NetworkManager allows remote attackers to cause a denial of service (IPv6 traffic disruption) via a crafted MTU value in an IPv6 Router Advertisement (RA) message, a different vulnerability tha…
|
NVD-CWE-noinfo
|
CVE-2015-0272
|
2024-11-21 11:22 |
2015-11-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276715
|
- |
|
linux
oracle
|
linux_kernel
linux
|
The ext4_zero_range function in fs/ext4/extents.c in the Linux kernel before 4.1 allows local users to cause a denial of service (BUG) via a crafted fallocate zero-range request.
|
CWE-17
Code
|
CVE-2015-0275
|
2024-11-21 11:22 |
2015-10-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276716
|
- |
|
ibm
|
content_template_catalog
|
Cross-site scripting (XSS) vulnerability in IBM Content Template Catalog 4.x before 4.1.4 for WebSphere Portal 8.0.x and 4.x before 4.3.1 for WebSphere Portal 8.5.x allows remote attackers to inject …
|
CWE-79
Cross-site Scripting
|
CVE-2015-0195
|
2024-11-21 11:22 |
2015-10-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276717
|
- |
|
ibm
|
openpages_grc_platform
|
Cross-site request forgery (CSRF) vulnerability in IBM OpenPages GRC Platform 6.2 before IF7, 6.2.1 before 6.2.1.1 IF5, 7.0 before FP4, and 7.1 before FP1 allows remote authenticated users to hijack …
|
CWE-352
Origin Validation Error
|
CVE-2015-0145
|
2024-11-21 11:22 |
2015-10-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276718
|
- |
|
ibm
|
openpages_grc_platform
|
Cross-site scripting (XSS) vulnerability in IBM OpenPages GRC Platform 6.2 before IF7, 6.2.1 before 6.2.1.1 IF5, 7.0 before FP4, and 7.1 before FP1 allows remote authenticated users to inject arbitra…
|
CWE-79
Cross-site Scripting
|
CVE-2015-0144
|
2024-11-21 11:22 |
2015-10-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276719
|
- |
|
ibm
|
openpages_grc_platform
|
IBM OpenPages GRC Platform 6.2 before IF7, 6.2.1 before 6.2.1.1 IF5, 7.0 before FP4, and 7.1 before FP1 allows remote authenticated users to obtain sensitive information by reading error messages.
|
CWE-200
Information Exposure
|
CVE-2015-0143
|
2024-11-21 11:22 |
2015-10-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276720
|
- |
|
ibm
|
openpages_grc_platform
|
IBM OpenPages GRC Platform 6.2 before IF7, 6.2.1 before 6.2.1.1 IF5, 7.0 before FP4, and 7.1 before FP1 allows remote authenticated users to cause a denial of service (maintenance-mode transition and…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-0142
|
2024-11-21 11:22 |
2015-10-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
