|
269161
|
- |
|
wpslideshow
|
powerplay_gallery
|
Unrestricted file upload vulnerability in upload.php in the Powerplay Gallery plugin 3.3 for WordPress allows remote attackers to execute arbitrary code by uploading a file with an executable extensi…
|
NVD-CWE-Other
|
CVE-2015-5681
|
2024-11-21 11:33 |
2015-08-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269162
|
- |
|
powerplay_gallery_project
|
powerplay_gallery
|
Multiple SQL injection vulnerabilities in upload.php in the Powerplay Gallery plugin 3.3 for WordPress allow remote attackers to execute arbitrary SQL commands via the (1) albumid or (2) name paramet…
|
CWE-89
SQL Injection
|
CVE-2015-5599
|
2024-11-21 11:33 |
2015-08-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269163
|
- |
|
theeventscalendar
|
eventbrite_tickets
|
Cross-site scripting (XSS) vulnerability in the Event Import page (import-eventbrite-events.php) in the Modern Tribe Eventbrite Tickets plugin before 3.10.2 for WordPress allows remote attackers to i…
|
CWE-79
Cross-site Scripting
|
CVE-2015-5485
|
2024-11-21 11:33 |
2015-08-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269164
|
- |
|
elasticsearch
|
elasticsearch
|
Directory traversal vulnerability in Elasticsearch before 1.6.1 allows remote attackers to read arbitrary files via unspecified vectors related to snapshot API calls.
|
CWE-22
Path Traversal
|
CVE-2015-5531
|
2024-11-21 11:33 |
2015-08-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269165
|
- |
|
apple
|
mac_os_x
|
runner in Install.framework in the Install Framework Legacy component in Apple OS X before 10.10.5 does not properly drop privileges, which allows attackers to execute arbitrary code in a privileged …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-5784
|
2024-11-21 11:33 |
2015-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269166
|
- |
|
apple
|
mac_os_x
|
IOGraphics in Apple OS X before 10.10.5 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted app, a different vulnerability than CVE-2015-3770.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-5783
|
2024-11-21 11:33 |
2015-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269167
|
- |
|
apple
|
iphone_os
mac_os_x
|
ImageIO in Apple iOS before 8.4.1 and OS X before 10.10.5 does not properly initialize an unspecified data structure, which allows remote attackers to obtain sensitive information from process memory…
|
CWE-200
Information Exposure
|
CVE-2015-5782
|
2024-11-21 11:33 |
2015-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269168
|
- |
|
apple
|
iphone_os
mac_os_x
|
ImageIO in Apple iOS before 8.4.1 and OS X before 10.10.5 does not properly initialize an unspecified data structure, which allows remote attackers to obtain sensitive information from process memory…
|
CWE-200
Information Exposure
|
CVE-2015-5781
|
2024-11-21 11:33 |
2015-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269169
|
- |
|
apple
|
quicktime
|
QuickTime 7 in Apple OS X before 10.10.5 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted file, a different vulne…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-5779
|
2024-11-21 11:33 |
2015-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269170
|
- |
|
apple
|
mac_os_x
iphone_os
|
CoreMedia Playback in Apple iOS before 8.4.1 and OS X before 10.10.5 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a cra…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-5778
|
2024-11-21 11:33 |
2015-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
