|
267981
|
- |
|
mozilla
|
firefox
|
The AnimationThread function in Mozilla Firefox before 41.0 and Firefox ESR 38.x before 38.3 uses an incorrect argument to the sscanf function, which might allow remote attackers to cause a denial of…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-7176
|
2024-11-21 11:36 |
2015-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267982
|
- |
|
mozilla
|
firefox
|
The XULContentSinkImpl::AddText function in Mozilla Firefox before 41.0 and Firefox ESR 38.x before 38.3 might allow remote attackers to cause a denial of service (memory corruption and application c…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-7175
|
2024-11-21 11:36 |
2015-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267983
|
- |
|
mozilla
|
firefox
|
The nsAttrAndChildArray::GrowBy function in Mozilla Firefox before 41.0 and Firefox ESR 38.x before 38.3 might allow remote attackers to cause a denial of service (memory corruption and application c…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-7174
|
2024-11-21 11:36 |
2015-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267984
|
- |
|
mcafee
|
enterprise_security_manager\/log_manager
enterprise_security_manager\/receiver
enterprise_security_manager
|
McAfee Enterprise Security Manager (ESM), Enterprise Security Manager/Log Manager (ESMLM), and Enterprise Security Manager/Receiver (ESMREC) before 9.3.2MR18, 9.4.x before 9.4.2MR8, and 9.5.x before …
|
CWE-78
OS Command
|
CVE-2015-7310
|
2024-11-21 11:36 |
2015-09-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267985
|
- |
|
boltcms
|
bolt
|
The theme editor in Bolt before 2.2.5 does not check the file extension when renaming files, which allows remote authenticated users to execute arbitrary code by renaming a crafted file and then dire…
|
CWE-74
Injection
|
CVE-2015-7309
|
2024-11-21 11:36 |
2015-09-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267986
|
- |
|
drupaldise
|
cms_updater
|
Cross-site scripting (XSS) vulnerability in the CMS Updater module 7.x-1.x before 7.x-1.3 for Drupal allows remote attackers to inject arbitrary web script or HTML via unspecified vectors involving t…
|
CWE-79
Cross-site Scripting
|
CVE-2015-7307
|
2024-11-21 11:36 |
2015-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267987
|
- |
|
drupaldise
|
cms_updater
|
The CMS Updater module 7.x-1.x before 7.x-1.3 for Drupal does not properly check access permissions, which allows remote authenticated users to access and change settings by leveraging the "access ad…
|
CWE-284
Improper Access Control
|
CVE-2015-7306
|
2024-11-21 11:36 |
2015-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267988
|
- |
|
ows
|
scald
|
The Scald module 7.x-1.x before 7.x-1.5 for Drupal does not properly restrict access to fields, which allows remote attackers to obtain sensitive atom property information via vectors involving a "de…
|
CWE-200
Information Exposure
|
CVE-2015-7305
|
2024-11-21 11:36 |
2015-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267989
|
- |
|
drupaljedi
|
amocrm
|
Cross-site scripting (XSS) vulnerability in the amoCRM module 7.x-1.x before 7.x-1.2 for Drupal allows remote attackers to inject arbitrary web script or HTML via unspecified HTTP POST data.
|
CWE-79
Cross-site Scripting
|
CVE-2015-7304
|
2024-11-21 11:36 |
2015-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267990
|
- |
|
avira
|
management_console
|
Use-after-free vulnerability in the Update Manager service in Avira Management Console allows remote attackers to execute arbitrary code via a large header.
|
NVD-CWE-Other
|
CVE-2015-7303
|
2024-11-21 11:36 |
2015-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
