|
273411
|
- |
|
dounokouno
|
transmitmail
|
Cross-site scripting (XSS) vulnerability in TAGAWA Takao TransmitMail 1.0.11 through 1.5.8 allows remote attackers to inject arbitrary web script or HTML via a crafted filename.
|
CWE-79
Cross-site Scripting
|
CVE-2015-0910
|
2024-11-21 11:23 |
2015-04-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273412
|
- |
|
cisco
|
firesight_system_software
|
Cross-site scripting (XSS) vulnerability in Cisco FireSIGHT System Software 5.3.1.1 and 6.0.0 in FireSIGHT Management Center allows remote authenticated users to inject arbitrary web script or HTML v…
|
CWE-79
Cross-site Scripting
|
CVE-2015-0707
|
2024-11-21 11:23 |
2015-04-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273413
|
- |
|
cisco
|
firesight_system_software
|
Open redirect vulnerability in Cisco FireSIGHT System Software 5.3.1.1, 5.3.1.2, and 6.0.0 in FireSIGHT Management Center allows remote attackers to redirect users to arbitrary web sites and conduct …
|
NVD-CWE-Other
|
CVE-2015-0706
|
2024-11-21 11:23 |
2015-04-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273414
|
- |
|
cisco
|
unified_meetingplace
|
Cross-site request forgery (CSRF) vulnerability in the SOAP API endpoints of the web-services directory in Cisco Unified MeetingPlace 8.6(1.9) allows remote attackers to hijack the authentication of …
|
CWE-352
Origin Validation Error
|
CVE-2015-0705
|
2024-11-21 11:23 |
2015-04-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273415
|
- |
|
cisco
|
unified_meetingplace
|
Multiple cross-site request forgery (CSRF) vulnerabilities in API features in Cisco Unified MeetingPlace 8.6(1.9) allow remote attackers to hijack the authentication of arbitrary users, aka Bug ID CS…
|
CWE-352
Origin Validation Error
|
CVE-2015-0704
|
2024-11-21 11:23 |
2015-04-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273416
|
- |
|
cisco
|
unified_meetingplace
|
Cross-site scripting (XSS) vulnerability in the administrative web interface in Cisco Unified MeetingPlace 8.6(1.9) allows remote attackers to inject arbitrary web script or HTML via unspecified vect…
|
CWE-79
Cross-site Scripting
|
CVE-2015-0703
|
2024-11-21 11:23 |
2015-04-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273417
|
- |
|
cisco
|
unified_meetingplace
|
Unrestricted file upload vulnerability in the Custom Prompts upload implementation in Cisco Unified MeetingPlace 8.6(1.9) allows remote authenticated users to execute arbitrary code by using the lang…
|
CWE-20
CWE-434
Improper Input Validation
Unrestricted Upload of File with Dangerous Type
|
CVE-2015-0702
|
2024-11-21 11:23 |
2015-04-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273418
|
- |
|
sixapart
|
movabletype
|
Format string vulnerability in Movable Type Pro, Open Source, and Advanced before 5.2.13 and Pro and Advanced 6.0.x before 6.0.8 allows remote attackers to execute arbitrary code via vectors related …
|
CWE-94
Code Injection
|
CVE-2015-0845
|
2024-11-21 11:23 |
2015-04-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273419
|
- |
|
cisco
|
secure_access_control_server_solution_engine
|
Cross-site request forgery (CSRF) vulnerability in the Dashboard page in the monitoring-and-report section in Cisco Secure Access Control Server Solution Engine before 5.5(0.46.5) allows remote attac…
|
CWE-352
Origin Validation Error
|
CVE-2015-0700
|
2024-11-21 11:23 |
2015-04-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273420
|
- |
|
cisco
|
ios_xr
|
Cisco IOS XR 4.3.4 through 5.3.0 on ASR 9000 devices, when uRPF, PBR, QoS, or an ACL is configured, does not properly handle bridge-group virtual interface (BVI) traffic, which allows remote attacker…
|
CWE-399
CWE-19
Resource Management Errors
Data Processing Errors
|
CVE-2015-0695
|
2024-11-21 11:23 |
2015-04-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
