|
267601
|
- |
|
xen
|
xen
|
Race condition in the relinquish_memory function in arch/arm/domain.c in Xen 4.6.x and earlier allows local domains with partial management control to cause a denial of service (host crash) via vecto…
|
CWE-119
CWE-362
Incorrect Access of Indexable Resource ('Range Error')
Race Condition
|
CVE-2015-7814
|
2024-11-21 11:37 |
2015-10-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267602
|
- |
|
xen
|
xen
|
Xen 4.4.x, 4.5.x, and 4.6.x does not limit the number of printk console messages when reporting unimplemented hypercalls, which allows local guests to cause a denial of service via a sequence of (1) …
|
CWE-399
Resource Management Errors
|
CVE-2015-7813
|
2024-11-21 11:37 |
2015-10-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267603
|
- |
|
joomla
|
joomla\!
|
The com_content component in Joomla! 3.x before 3.4.5 does not properly check ACLs, which allows remote attackers to obtain sensitive information via unspecified vectors.
|
CWE-284
Improper Access Control
|
CVE-2015-7899
|
2024-11-21 11:37 |
2015-10-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267604
|
- |
|
joomla
|
joomla\!
|
The com_contenthistory component in Joomla! 3.2 before 3.4.5 does not properly check ACLs, which allows remote attackers to obtain sensitive information via unspecified vectors.
|
CWE-200
Information Exposure
|
CVE-2015-7859
|
2024-11-21 11:37 |
2015-10-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267605
|
- |
|
joomla
|
joomla\!
|
SQL injection vulnerability in Joomla! 3.2 before 3.4.4 allows remote attackers to execute arbitrary SQL commands via unspecified vectors, a different vulnerability than CVE-2015-7297.
|
CWE-89
SQL Injection
|
CVE-2015-7858
|
2024-11-21 11:37 |
2015-10-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267606
|
- |
|
joomla
|
joomla\!
|
SQL injection vulnerability in the getListQuery function in administrator/components/com_contenthistory/models/history.php in Joomla! 3.2 before 3.4.5 allows remote attackers to execute arbitrary SQL…
|
CWE-89
SQL Injection
|
CVE-2015-7857
|
2024-11-21 11:37 |
2015-10-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267607
|
- |
|
openstack
|
nova
|
OpenStack Compute (Nova) before 2014.2.4 (juno) and 2015.1.x before 2015.1.2 (kilo) do not properly apply security group changes, which allows remote attackers to bypass intended restriction by lever…
|
CWE-254
7PK - Security Features
|
CVE-2015-7713
|
2024-11-21 11:37 |
2015-10-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267608
|
- |
|
adobe
|
shockwave_player
|
Adobe Shockwave Player before 12.2.1.171 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-7649
|
2024-11-21 11:37 |
2015-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267609
|
- |
|
infinite_automation_systems
|
mango_automation
|
Unrestricted file upload vulnerability in Infinite Automation Mango Automation 2.5.x and 2.6.x before 2.6.0 build 430 allows remote authenticated users to execute arbitrary JSP code via vectors invol…
|
NVD-CWE-Other
|
CVE-2015-7904
|
2024-11-21 11:37 |
2015-10-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267610
|
- |
|
infinite_automation_systems
|
mango_automation
|
SQL injection vulnerability in Infinite Automation Mango Automation 2.5.x and 2.6.x before 2.6.0 build 430 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2015-7903
|
2024-11-21 11:37 |
2015-10-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
