|
266961
|
- |
|
xen
|
xen
|
Xen 4.6.x and earlier does not properly enforce limits on page order inputs for the (1) XENMEM_increase_reservation, (2) XENMEM_populate_physmap, (3) XENMEM_exchange, and possibly other HYPERVISOR_me…
|
CWE-254
7PK - Security Features
|
CVE-2015-8338
|
2024-11-21 11:38 |
2015-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266962
|
- |
|
redhat
linuxfoundation
canonical
debian
|
enterprise_linux_server_eus
enterprise_linux_hpc_node
enterprise_linux_desktop
enterprise_linux_server
enterprise_linux_workstation
foomatic-filters
ubuntu_linux
cups-filters
…
|
Incomplete blacklist vulnerability in util.c in foomatic-rip in cups-filters 1.0.42 before 1.2.0 and in foomatic-filters in Foomatic 4.0.x allows remote attackers to execute arbitrary commands via ` …
|
NVD-CWE-Other
|
CVE-2015-8327
|
2024-11-21 11:38 |
2015-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266963
|
- |
|
foxitsoftware
|
foxit_reader
phantompdf
|
Multiple use-after-free vulnerabilities in the (1) Print method and (2) App object handling in Foxit Reader before 7.2.2 and Foxit PhantomPDF before 7.2.2 allow remote attackers to execute arbitrary …
|
NVD-CWE-Other
|
CVE-2015-8580
|
2024-11-21 11:38 |
2015-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266964
|
- |
|
joomla
|
session
|
The Session package 1.x before 1.3.1 for Joomla! Framework allows remote attackers to execute arbitrary code via unspecified session values.
|
NVD-CWE-noinfo
|
CVE-2015-8566
|
2024-11-21 11:38 |
2015-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266965
|
- |
|
joomla
|
joomla\!
|
Directory traversal vulnerability in Joomla! 3.2.0 through 3.3.x and 3.4.x before 3.4.6 allows remote attackers to have unspecified impact via unknown vectors.
|
CWE-22
CWE-20
Path Traversal
Improper Input Validation
|
CVE-2015-8565
|
2024-11-21 11:38 |
2015-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266966
|
- |
|
joomla
|
joomla\!
|
Directory traversal vulnerability in Joomla! 3.4.x before 3.4.6 allows remote attackers to have unspecified impact via directory traversal sequences in the XML install file in an extension package ar…
|
CWE-22
CWE-20
Path Traversal
Improper Input Validation
|
CVE-2015-8564
|
2024-11-21 11:38 |
2015-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266967
|
- |
|
joomla
|
joomla\!
|
Cross-site request forgery (CSRF) vulnerability in the com_templates component in Joomla! 3.2.0 through 3.3.x and 3.4.x before 3.4.6 allows remote attackers to hijack the authentication of unspecifie…
|
CWE-352
Origin Validation Error
|
CVE-2015-8563
|
2024-11-21 11:38 |
2015-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266968
|
- |
|
joomla
|
joomla\!
|
Joomla! 1.5.x, 2.x, and 3.x before 3.4.6 allow remote attackers to conduct PHP object injection attacks and execute arbitrary PHP code via the HTTP User-Agent header, as exploited in the wild in Dece…
|
CWE-20
Improper Input Validation
|
CVE-2015-8562
|
2024-11-21 11:38 |
2015-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266969
|
- |
|
debian
phpmailer_project
|
debian_linux
phpmailer
|
Multiple CRLF injection vulnerabilities in PHPMailer before 5.2.14 allow attackers to inject arbitrary SMTP commands via CRLF sequences in an (1) email address to the validateAddress function in clas…
|
CWE-20
Improper Input Validation
|
CVE-2015-8476
|
2024-11-21 11:38 |
2015-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266970
|
- |
|
gnu
fedoraproject
|
grub2
fedora
|
Multiple integer underflows in Grub2 1.98 through 2.02 allow physically proximate attackers to bypass authentication, obtain sensitive information, or cause a denial of service (disk corruption) via …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-8370
|
2024-11-21 11:38 |
2015-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
