|
271381
|
- |
|
websense
|
triton_ap_web
|
Websense TRITON AP-WEB before 8.0.0 allows remote attackers to enumerate Windows domain user accounts via vectors related to HTTP authentication.
|
CWE-200
Information Exposure
|
CVE-2015-2762
|
2024-11-21 11:28 |
2015-03-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271382
|
- |
|
websense
|
triton_ap_web
|
Cross-site scripting (XSS) vulnerability in the Exceptions and Scanning Exceptions Pages in Websense TRITON AP-WEB before 8.0.0 allows remote attackers to inject arbitrary web script or HTML via unsp…
|
CWE-79
Cross-site Scripting
|
CVE-2015-2761
|
2024-11-21 11:28 |
2015-03-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271383
|
- |
|
mcafee
|
data_loss_prevention_endpoint
|
Cross-site scripting (XSS) vulnerability in the ePO extension in McAfee Data Loss Prevention Endpoint (DLPe) before 9.3 Patch 4 Hotfix 16 (9.3.416.4) allows remote authenticated users to inject arbit…
|
CWE-79
Cross-site Scripting
|
CVE-2015-2760
|
2024-11-21 11:28 |
2015-03-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271384
|
- |
|
mcafee
|
data_loss_prevention_endpoint
|
Multiple cross-site request forgery (CSRF) vulnerabilities in the ePO extension in McAfee Data Loss Prevention Endpoint (DLPe) before 9.3 Patch 4 Hotfix 16 (9.3.416.4) allow remote attackers to hijac…
|
CWE-352
Origin Validation Error
|
CVE-2015-2759
|
2024-11-21 11:28 |
2015-03-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271385
|
- |
|
mcafee
|
data_loss_prevention_endpoint
|
The ePO extension in McAfee Data Loss Prevention Endpoint (DLPe) before 9.3 Patch 4 Hotfix 16 (9.3.416.4) allows remote authenticated users to obtain sensitive information, modify the database, or po…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-2758
|
2024-11-21 11:28 |
2015-03-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271386
|
- |
|
mcafee
|
data_loss_prevention_endpoint
|
The ePO extension in McAfee Data Loss Prevention Endpoint (DLPe) before 9.3 Patch 4 Hotfix 16 (9.3.416.4) allows remote authenticated users to cause a denial of service (database lock or license corr…
|
CWE-399
Resource Management Errors
|
CVE-2015-2757
|
2024-11-21 11:28 |
2015-03-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271387
|
5.4 |
MEDIUM
Network
|
netcracker
|
resource_management_system
|
Multiple cross-site scripting (XSS) vulnerabilities in NetCracker Resource Management System before 8.2 allow remote authenticated users to inject arbitrary web script or HTML via the (1) ctrl, (2) t…
|
CWE-79
Cross-site Scripting
|
CVE-2015-2207
|
2024-11-21 11:27 |
2020-02-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271388
|
5.4 |
MEDIUM
Network
|
synacor
|
zimbra_collaboration_server
|
Zimbra Collaboration before 8.6.0 patch5 has XSS.
|
CWE-79
Cross-site Scripting
|
CVE-2015-2249
|
2024-11-21 11:27 |
2020-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271389
|
7.5 |
HIGH
Network
|
torproject
|
tor
|
Tor before 0.2.4.26 and 0.2.5.x before 0.2.5.11 does not properly handle pending-connection resolve states during periods of high DNS load, which allows remote attackers to cause a denial of service …
|
CWE-20
Improper Input Validation
|
CVE-2015-2689
|
2024-11-21 11:27 |
2020-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271390
|
7.5 |
HIGH
Network
|
torproject
|
tor
|
buf_pullup in Tor before 0.2.4.26 and 0.2.5.x before 0.2.5.11 does not properly handle unexpected arrival times of buffers with invalid layouts, which allows remote attackers to cause a denial of ser…
|
CWE-755
Improper Handling of Exceptional Conditions
|
CVE-2015-2688
|
2024-11-21 11:27 |
2020-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
