|
274601
|
- |
|
church_admin_project
|
church_admin
|
Cross-site scripting (XSS) vulnerability in the church_admin plugin before 0.810 for WordPress allows remote attackers to inject arbitrary web script or HTML via the address parameter, as demonstrate…
|
CWE-79
Cross-site Scripting
|
CVE-2015-4127
|
2024-11-21 11:30 |
2015-05-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274602
|
- |
|
free-counter
|
free_counter
|
Cross-site scripting (XSS) vulnerability in the Free Counter plugin 1.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the value_ parameter in a check_stat action to…
|
CWE-79
Cross-site Scripting
|
CVE-2015-4084
|
2024-11-21 11:30 |
2015-05-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274603
|
- |
|
tri
|
gigpress
|
Multiple SQL injection vulnerabilities in admin/handlers.php in the GigPress plugin before 2.3.9 for WordPress allow remote authenticated users to execute arbitrary SQL commands via the (1) show_arti…
|
CWE-89
SQL Injection
|
CVE-2015-4066
|
2024-11-21 11:30 |
2015-05-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274604
|
- |
|
landing_pages_project
|
landing_pages
|
Cross-site scripting (XSS) vulnerability in shared/shortcodes/inbound-shortcodes.php in the Landing Pages plugin before 1.8.5 for WordPress allows remote authenticated users to inject arbitrary web s…
|
CWE-79
Cross-site Scripting
|
CVE-2015-4065
|
2024-11-21 11:30 |
2015-05-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274605
|
- |
|
landing_pages_project
|
landing_pages
|
SQL injection vulnerability in modules/module.ab-testing.php in the Landing Pages plugin before 1.8.5 for WordPress allows remote authenticated users to execute arbitrary SQL commands via the post pa…
|
CWE-89
SQL Injection
|
CVE-2015-4064
|
2024-11-21 11:30 |
2015-05-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274606
|
- |
|
newstatpress_project
|
newstatpress
|
Cross-site scripting (XSS) vulnerability in includes/nsp_search.php in the NewStatPress plugin before 0.9.9 for WordPress allows remote authenticated users to inject arbitrary web script or HTML via …
|
CWE-79
Cross-site Scripting
|
CVE-2015-4063
|
2024-11-21 11:30 |
2015-05-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274607
|
- |
|
newstatpress_project
|
newstatpress
|
SQL injection vulnerability in includes/nsp_search.php in the NewStatPress plugin before 0.9.9 for WordPress allows remote authenticated users to execute arbitrary SQL commands via the where1 paramet…
|
CWE-89
SQL Injection
|
CVE-2015-4062
|
2024-11-21 11:30 |
2015-05-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274608
|
- |
|
coppermine-gallery
|
coppermine_photo_gallery
|
Open redirect vulnerability in mode.php in Coppermine Photo Gallery before 1.5.36 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the refere…
|
NVD-CWE-Other
|
CVE-2015-3922
|
2024-11-21 11:30 |
2015-05-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274609
|
- |
|
coppermine-gallery
|
coppermine_photo_gallery
|
Cross-site scripting (XSS) vulnerability in contact.php in Coppermine Photo Gallery before 1.5.36 allows remote authenticated users to inject arbitrary web script or HTML via the referer parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2015-3921
|
2024-11-21 11:30 |
2015-05-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274610
|
- |
|
wireshark
|
wireshark
|
The logcat_dump_text function in wiretap/logcat.c in the Android Logcat file parser in Wireshark 1.12.x before 1.12.5 does not properly handle a lack of \0 termination, which allows remote attackers …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-3906
|
2024-11-21 11:30 |
2015-05-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
