|
267081
|
9.8 |
CRITICAL
Network
|
progress
|
whatsup_gold
|
The DroneDeleteOldMeasurements implementation in Ipswitch WhatsUp Gold before 16.4 does not properly validate serialized XML objects, which allows remote attackers to conduct SQL injection attacks vi…
|
CWE-89
SQL Injection
|
CVE-2015-8261
|
2024-11-21 11:38 |
2016-01-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267082
|
3.5 |
LOW
Network
|
mozilla
|
bugzilla
|
Template.pm in Bugzilla 2.x, 3.x, and 4.x before 4.2.16, 4.3.x and 4.4.x before 4.4.11, and 4.5.x and 5.0.x before 5.0.2 does not properly construct CSV files, which allows remote attackers to obtain…
|
CWE-200
Information Exposure
|
CVE-2015-8509
|
2024-11-21 11:38 |
2016-01-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267083
|
4.7 |
MEDIUM
Network
|
mozilla
|
bugzilla
|
Cross-site scripting (XSS) vulnerability in showdependencygraph.cgi in Bugzilla 2.x, 3.x, and 4.x before 4.2.16, 4.3.x and 4.4.x before 4.4.11, and 4.5.x and 5.0.x before 5.0.2, when a local dot conf…
|
CWE-79
Cross-site Scripting
|
CVE-2015-8508
|
2024-11-21 11:38 |
2016-01-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267084
|
6.5 |
MEDIUM
Network
|
zte
|
zxhn_h108n_r1a_firmware
zxv10_w300_firmware
|
ZTE ZXHN H108N R1A devices before ZTE.bhs.ZXHNH108NR1A.k_PE and ZXV10 W300 devices W300V1.0.0f_ER1_PE allow remote authenticated users to bypass intended access restrictions, and discover credentials…
|
CWE-200
Information Exposure
|
CVE-2015-8703
|
2024-11-21 11:38 |
2015-12-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267085
|
7.5 |
HIGH
Network
|
samba
debian
canonical
|
samba
debian_linux
ubuntu_linux
|
The samldb_check_user_account_control_acl function in dsdb/samdb/ldb_modules/samldb.c in Samba 4.x before 4.1.22, 4.2.x before 4.2.7, and 4.3.x before 4.3.3 does not properly check for administrative…
|
CWE-269
Improper Privilege Management
|
CVE-2015-8467
|
2024-11-21 11:38 |
2015-12-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267086
|
8.8 |
HIGH
Network
|
adobe
|
air_sdk
air_sdk_\&_compiler
flash_player
air
|
Use-after-free vulnerability in Adobe Flash Player before 18.0.0.324 and 19.x and 20.x before 20.0.0.267 on Windows and OS X and before 11.2.202.559 on Linux, Adobe AIR before 20.0.0.233, Adobe AIR S…
|
NVD-CWE-Other
|
CVE-2015-8650
|
2024-11-21 11:38 |
2015-12-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267087
|
8.8 |
HIGH
Network
|
adobe
|
flash_player
air_sdk
air_sdk_\&_compiler
air
|
Use-after-free vulnerability in Adobe Flash Player before 18.0.0.324 and 19.x and 20.x before 20.0.0.267 on Windows and OS X and before 11.2.202.559 on Linux, Adobe AIR before 20.0.0.233, Adobe AIR S…
|
NVD-CWE-Other
|
CVE-2015-8649
|
2024-11-21 11:38 |
2015-12-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267088
|
8.8 |
HIGH
Network
|
adobe
|
air
flash_player
air_sdk
air_sdk_\&_compiler
|
Use-after-free vulnerability in Adobe Flash Player before 18.0.0.324 and 19.x and 20.x before 20.0.0.267 on Windows and OS X and before 11.2.202.559 on Linux, Adobe AIR before 20.0.0.233, Adobe AIR S…
|
NVD-CWE-Other
|
CVE-2015-8648
|
2024-11-21 11:38 |
2015-12-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267089
|
8.8 |
HIGH
Network
|
adobe
|
air
flash_player
air_sdk
air_sdk_\&_compiler
|
Use-after-free vulnerability in Adobe Flash Player before 18.0.0.324 and 19.x and 20.x before 20.0.0.267 on Windows and OS X and before 11.2.202.559 on Linux, Adobe AIR before 20.0.0.233, Adobe AIR S…
|
NVD-CWE-Other
|
CVE-2015-8647
|
2024-11-21 11:38 |
2015-12-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267090
|
8.8 |
HIGH
Network
|
adobe
|
air
flash_player
air_sdk
air_sdk_\&_compiler
|
Adobe Flash Player before 18.0.0.324 and 19.x and 20.x before 20.0.0.267 on Windows and OS X and before 11.2.202.559 on Linux, Adobe AIR before 20.0.0.233, Adobe AIR SDK before 20.0.0.233, and Adobe …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-8645
|
2024-11-21 11:38 |
2015-12-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
