|
269241
|
- |
|
solarwinds
|
n-able_n-central
|
The RSM (aka RSMWinService) service in SolarWinds N-Able N-Central before 9.5.1.4514 uses the same password decryption key across different customers' installations, which makes it easier for remote …
|
CWE-200
Information Exposure
|
CVE-2015-5610
|
2024-11-21 11:33 |
2015-07-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269242
|
- |
|
freereprintables
|
articlefr
|
Multiple cross-site request forgery (CSRF) vulnerabilities in Free Reprintables ArticleFR 3.0.6 allow remote attackers to hijack the authentication of administrators for requests that add an administ…
|
CWE-352
Origin Validation Error
|
CVE-2015-5530
|
2024-11-21 11:33 |
2015-07-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269243
|
- |
|
freereprintables
|
articlefr
|
Multiple cross-site scripting (XSS) vulnerabilities in Free Reprintables ArticleFR 3.0.6 allow remote attackers to inject arbitrary web script or HTML via the (1) name parameter to dashboard/settings…
|
CWE-79
Cross-site Scripting
|
CVE-2015-5529
|
2024-11-21 11:33 |
2015-07-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269244
|
- |
|
wpbeginner
|
floating_social_bar
|
Cross-site scripting (XSS) vulnerability in the save_order function in class-floating-social-bar.php in the Floating Social Bar plugin before 1.1.6 for WordPress allows remote attackers to inject arb…
|
CWE-79
Cross-site Scripting
|
CVE-2015-5528
|
2024-11-21 11:33 |
2015-07-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269245
|
4.8 |
MEDIUM
Network
|
blackcat-cms
|
blackcat_cms
|
Cross-site scripting (XSS) vulnerability in BlackCat CMS 1.1.2 allows remote attackers to inject arbitrary web script or HTML via the name in a new group to backend/groups/index.php.
|
CWE-79
Cross-site Scripting
|
CVE-2015-5521
|
2024-11-21 11:33 |
2015-07-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269246
|
- |
|
orchardproject
|
orchard
|
Cross-site scripting (XSS) vulnerability in the Users module in Orchard 1.7.3 through 1.8.2 and 1.9.x before 1.9.1 allows remote attackers to inject arbitrary web script or HTML via the username when…
|
CWE-79
Cross-site Scripting
|
CVE-2015-5520
|
2024-11-21 11:33 |
2015-07-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269247
|
- |
|
wideimage_project
|
wideimage
|
Cross-site scripting (XSS) vulnerability in the applyConvolution demo in WideImage 11.02.19 allows remote attackers to inject arbitrary web script or HTML via the matrix parameter to demo/index.php.
|
CWE-79
Cross-site Scripting
|
CVE-2015-5519
|
2024-11-21 11:33 |
2015-07-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269248
|
- |
|
stageshow_project
|
stageshow
|
Open redirect vulnerability in the Redirect function in stageshow_redirect.php in the StageShow plugin before 5.0.9 for WordPress allows remote attackers to redirect users to arbitrary web sites and …
|
NVD-CWE-Other
|
CVE-2015-5461
|
2024-11-21 11:33 |
2015-07-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269249
|
- |
|
snorby_project
|
snorby
|
Cross-site scripting (XSS) vulnerability in app/views/events/_menu.html.erb in Snorby 2.6.2 allows remote attackers to inject arbitrary web script or HTML via the title (cls.name variable) when creat…
|
CWE-79
Cross-site Scripting
|
CVE-2015-5460
|
2024-11-21 11:33 |
2015-07-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269250
|
- |
|
zohocorp
|
manageengine_password_manager_pro
|
SQL injection vulnerability in the AdvanceSearch.class in AdventNetPassTrix.jar in ManageEngine Password Manager Pro (PMP) before 8.1 Build 8101 allows remote authenticated users to execute arbitrary…
|
CWE-89
SQL Injection
|
CVE-2015-5459
|
2024-11-21 11:33 |
2015-07-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
