|
269501
|
- |
|
ibm
|
tivoli_storage_manager
|
The Reporting and Monitoring component in Tivoli Monitoring in IBM Tivoli Storage Manager 6.3 before 6.3.6 and 7.1 before 7.1.3 on Linux and AIX uses world-writable permissions for unspecified files,…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-4927
|
2024-11-21 11:32 |
2015-11-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269502
|
- |
|
wp-championship_project
|
wp-championship
|
Multiple SQL injection vulnerabilities in cs_admin_users.php in the wp-championship plugin 5.8 for WordPress allow remote attackers to execute arbitrary SQL commands via the (1) user, (2) isadmin, (3…
|
CWE-89
SQL Injection
|
CVE-2015-5308
|
2024-11-21 11:32 |
2015-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269503
|
- |
|
arm
polarssl
debian
fedoraproject
opensuse
|
mbed_tls
polarssl
debian_linux
fedora
leap
opensuse
|
Heap-based buffer overflow in PolarSSL 1.x before 1.2.17 and ARM mbed TLS (formerly PolarSSL) 1.3.x before 1.3.14 and 2.x before 2.1.2 allows remote SSL servers to cause a denial of service (client c…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-5291
|
2024-11-21 11:32 |
2015-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269504
|
- |
|
apache
|
ambari
|
Open redirect vulnerability in Apache Ambari before 2.1.2 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the targetURI parameter.
|
NVD-CWE-Other
|
CVE-2015-5210
|
2024-11-21 11:32 |
2015-11-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269505
|
- |
|
kallithea-scm
|
kallithea
|
CRLF injection vulnerability in Kallithea before 0.3 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via the came_from parameter to _admin/login.
|
NVD-CWE-Other
|
CVE-2015-5285
|
2024-11-21 11:32 |
2015-10-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269506
|
- |
|
fedoraproject
|
sssd
|
Memory leak in the Privilege Attribute Certificate (PAC) responder plugin (sssd_pac_plugin.so) in System Security Services Daemon (SSSD) 1.10 before 1.13.1 allows remote authenticated users to cause …
|
CWE-399
Resource Management Errors
|
CVE-2015-5292
|
2024-11-21 11:32 |
2015-10-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269507
|
- |
|
ibm
|
domino
|
Buffer overflow in IBM Domino 8.5.1 through 8.5.3 before 8.5.3 FP6 IF10 and 9.x before 9.0.1 FP4 IF3 allows remote attackers to execute arbitrary code or cause a denial of service (SMTP daemon crash)…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-5040
|
2024-11-21 11:32 |
2015-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269508
|
- |
|
ibm
|
websphere_portal
|
IBM WebSphere Portal 8.5.0 before CF08 allows remote attackers to bypass intended access restrictions via a crafted request.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-4997
|
2024-11-21 11:32 |
2015-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269509
|
- |
|
ibm
|
domino
|
Buffer overflow in IBM Domino 8.5.1 through 8.5.3 before 8.5.3 FP6 IF10 and 9.x before 9.0.1 FP4 IF3 allows remote attackers to execute arbitrary code or cause a denial of service (SMTP daemon crash)…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-4994
|
2024-11-21 11:32 |
2015-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269510
|
- |
|
fedoraproject
canonical
apache
|
fedora
ubuntu_linux
httpclient
|
http/conn/ssl/SSLConnectionSocketFactory.java in Apache HttpComponents HttpClient before 4.3.6 ignores the http.socket.timeout configuration setting during an SSL handshake, which allows remote attac…
|
CWE-399
Resource Management Errors
|
CVE-2015-5262
|
2024-11-21 11:32 |
2015-10-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
