|
271991
|
- |
|
betster_project
|
betster
|
Multiple SQL injection vulnerabilities in Betster (aka PHP Betoffice) 1.0.4 allow remote attackers to execute arbitrary SQL commands via the id parameter to (1) showprofile.php or (2) categoryedit.ph…
|
CWE-89
SQL Injection
|
CVE-2015-2237
|
2024-11-21 11:27 |
2015-03-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271992
|
- |
|
ubuntu
|
upstart
vivid
|
The logrotation script (/etc/cron.daily/upstart) in the Ubuntu Upstart package before 1.13.2-0ubuntu9, as used in Ubuntu Vivid 15.04, allows local users to execute arbitrary commands and gain privile…
|
CWE-19
Data Processing Errors
|
CVE-2015-2285
|
2024-11-21 11:27 |
2015-03-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271993
|
- |
|
djangoproject
|
django
|
Cross-site scripting (XSS) vulnerability in the contents function in admin/helpers.py in Django before 1.7.6 and 1.8 before 1.8b2 allows remote attackers to inject arbitrary web script or HTML via a …
|
CWE-79
Cross-site Scripting
|
CVE-2015-2241
|
2024-11-21 11:27 |
2015-03-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271994
|
- |
|
avinu
|
phpmoadmin
|
The saveObject function in moadmin.php in phpMoAdmin 1.1.2 allows remote attackers to execute arbitrary commands via shell metacharacters in the object parameter.
|
CWE-77
Command Injection
|
CVE-2015-2208
|
2024-11-21 11:27 |
2015-03-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271995
|
- |
|
myupb
|
ultimate_php_board
|
Multiple cross-site scripting (XSS) vulnerabilities in Ultimate PHP Board (aka myUPB) before 2.2.8 allow remote attackers to inject arbitrary web script or HTML via the (1) q parameter to search.php …
|
CWE-79
Cross-site Scripting
|
CVE-2015-2217
|
2024-11-21 11:27 |
2015-03-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271996
|
- |
|
webshophun
|
webshop_hun
|
Multiple cross-site scripting (XSS) vulnerabilities in Webshop hun 1.062S allow remote attackers to inject arbitrary web script or HTML via the (1) param, (2) center, (3) lap, (4) termid, or (5) nyel…
|
CWE-79
Cross-site Scripting
|
CVE-2015-2244
|
2024-11-21 11:27 |
2015-03-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271997
|
- |
|
webshophun
|
webshop_hun
|
Directory traversal vulnerability in Webshop hun 1.062S allows remote attackers to have unspecified impact via directory traversal sequences in the mappa parameter to index.php.
|
CWE-22
Path Traversal
|
CVE-2015-2243
|
2024-11-21 11:27 |
2015-03-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271998
|
- |
|
webshophun
|
webshop_hun
|
Multiple SQL injection vulnerabilities in Webshop hun 1.062S allow remote attackers to execute arbitrary SQL commands via the (1) termid or (2) nyelv_id parameter to index.php.
|
CWE-89
SQL Injection
|
CVE-2015-2242
|
2024-11-21 11:27 |
2015-03-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271999
|
- |
|
fedoraproject
phpmyadmin
|
fedora
phpmyadmin
|
libraries/select_lang.lib.php in phpMyAdmin 4.0.x before 4.0.10.9, 4.2.x before 4.2.13.2, and 4.3.x before 4.3.11.1 includes invalid language values in unknown-language error responses that contain a…
|
CWE-200
Information Exposure
|
CVE-2015-2206
|
2024-11-21 11:27 |
2015-03-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272000
|
- |
|
google
|
chrome
|
Google Chrome before 41.0.2272.76, when Instant Extended mode is used, does not properly consider the interaction between the "1993 search" features and restore-from-disk RELOAD transitions, which ma…
|
CWE-19
Data Processing Errors
|
CVE-2015-2239
|
2024-11-21 11:27 |
2015-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
