|
274091
|
6.1 |
MEDIUM
Network
|
ingnovarq_project
|
ingnovarq
|
A vulnerability, which was classified as problematic, has been found in admont28 Ingnovarq. Affected by this issue is some unknown functionality of the file app/controller/insertarSliderAjax.php. The…
|
-
|
CVE-2015-10006
|
2024-11-21 11:24 |
2023-01-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274092
|
7.5 |
HIGH
Network
|
json_web_token_project
|
json_web_token
|
Token validation methods are susceptible to a timing side-channel during HMAC comparison. With a large enough number of requests over a low latency connection, an attacker may use this to determine t…
|
CWE-668
Exposure of Resource to Wrong Sphere
|
CVE-2015-10004
|
2024-11-21 11:24 |
2022-12-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274093
|
7.5 |
HIGH
Network
|
markdown-it_project
|
markdown-it
|
A vulnerability was found in markdown-it up to 2.x. It has been classified as problematic. Affected is an unknown function of the file lib/common/html_re.js. The manipulation leads to inefficient reg…
|
-
|
CVE-2015-10005
|
2024-11-21 11:24 |
2022-12-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274094
|
4.3 |
MEDIUM
Network
|
filezilla-project
|
filezilla_server
|
A vulnerability, which was classified as problematic, was found in FileZilla Server up to 0.9.50. This affects an unknown part of the component PORT Handler. The manipulation leads to unintended inte…
|
CWE-610
Externally Controlled Reference to a Resource in Another Sphere
|
CVE-2015-10003
|
2024-11-21 11:24 |
2022-07-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274095
|
5.5 |
MEDIUM
Local
|
kiddoware
|
kids_place
|
A vulnerability classified as problematic has been found in Kiddoware Kids Place. This affects the Home Button Protection. A repeated pressing of the button causes a local denial of service. It is re…
|
NVD-CWE-noinfo
|
CVE-2015-10002
|
2024-11-21 11:24 |
2022-03-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274096
|
4.3 |
MEDIUM
Network
|
wp-stats_project
|
wp-stats
|
The WP-Stats WordPress plugin before 2.52 does not have CSRF check when saving its settings, and did not escape some of them when outputting them, allowing attacker to make logged in high privilege u…
|
-
|
CVE-2015-10001
|
2024-11-21 11:24 |
2021-11-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274097
|
7.8 |
HIGH
Local
|
dell
hp
|
latitude_e6430_firmware
elitebook_850_g1_firmware
|
The System Management Mode (SMM) implementation in Dell Latitude E6430 BIOS Revision A09, HP EliteBook 850 G1 BIOS revision L71 Ver. 01.09, and possibly other BIOS implementations does not ensure tha…
|
CWE-269
Improper Privilege Management
|
CVE-2015-0949
|
2024-11-21 11:24 |
2020-01-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274098
|
9.8 |
CRITICAL
Network
|
opto22
|
optodatalink
optoopcserver
pac_display
pac_project
|
A vulnerable file in Opto 22 PAC Project Professional versions prior to R9.4006, PAC Project Basic versions prior to R9.4006, PAC Display Basic versions prior to R9.4f, PAC Display Professional versi…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-1006
|
2024-11-21 11:24 |
2019-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274099
|
7.3 |
HIGH
Local
|
schneider-electric
|
opc_factory_server
|
A successful exploit of these vulnerabilities requires the local user to load a crafted DLL file in the system directory on servers running Schneider Electric OFS v3.5 with version v7.40 of SCADA Exp…
|
CWE-427
Uncontrolled Search Path Element
|
CVE-2015-1014
|
2024-11-21 11:24 |
2019-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274100
|
7.5 |
HIGH
Network
|
pfizer
|
lifecare_pca_infusion_system_firmware
|
Wireless keys are stored in plain text on version 5 of the Hospira LifeCare PCA Infusion System. According to Hospira, version 3 of the LifeCare PCA Infusion System is not indicated for wireless use,…
|
CWE-200
Information Exposure
|
CVE-2015-1012
|
2024-11-21 11:24 |
2019-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
