|
274931
|
- |
|
free-counter
|
free_counter
|
Cross-site scripting (XSS) vulnerability in the Free Counter plugin 1.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the value_ parameter in a check_stat action to…
|
CWE-79
Cross-site Scripting
|
CVE-2015-4084
|
2024-11-21 11:30 |
2015-05-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274932
|
- |
|
tri
|
gigpress
|
Multiple SQL injection vulnerabilities in admin/handlers.php in the GigPress plugin before 2.3.9 for WordPress allow remote authenticated users to execute arbitrary SQL commands via the (1) show_arti…
|
CWE-89
SQL Injection
|
CVE-2015-4066
|
2024-11-21 11:30 |
2015-05-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274933
|
- |
|
landing_pages_project
|
landing_pages
|
Cross-site scripting (XSS) vulnerability in shared/shortcodes/inbound-shortcodes.php in the Landing Pages plugin before 1.8.5 for WordPress allows remote authenticated users to inject arbitrary web s…
|
CWE-79
Cross-site Scripting
|
CVE-2015-4065
|
2024-11-21 11:30 |
2015-05-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274934
|
- |
|
landing_pages_project
|
landing_pages
|
SQL injection vulnerability in modules/module.ab-testing.php in the Landing Pages plugin before 1.8.5 for WordPress allows remote authenticated users to execute arbitrary SQL commands via the post pa…
|
CWE-89
SQL Injection
|
CVE-2015-4064
|
2024-11-21 11:30 |
2015-05-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274935
|
- |
|
newstatpress_project
|
newstatpress
|
Cross-site scripting (XSS) vulnerability in includes/nsp_search.php in the NewStatPress plugin before 0.9.9 for WordPress allows remote authenticated users to inject arbitrary web script or HTML via …
|
CWE-79
Cross-site Scripting
|
CVE-2015-4063
|
2024-11-21 11:30 |
2015-05-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274936
|
- |
|
newstatpress_project
|
newstatpress
|
SQL injection vulnerability in includes/nsp_search.php in the NewStatPress plugin before 0.9.9 for WordPress allows remote authenticated users to execute arbitrary SQL commands via the where1 paramet…
|
CWE-89
SQL Injection
|
CVE-2015-4062
|
2024-11-21 11:30 |
2015-05-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274937
|
- |
|
coppermine-gallery
|
coppermine_photo_gallery
|
Open redirect vulnerability in mode.php in Coppermine Photo Gallery before 1.5.36 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the refere…
|
NVD-CWE-Other
|
CVE-2015-3922
|
2024-11-21 11:30 |
2015-05-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274938
|
- |
|
coppermine-gallery
|
coppermine_photo_gallery
|
Cross-site scripting (XSS) vulnerability in contact.php in Coppermine Photo Gallery before 1.5.36 allows remote authenticated users to inject arbitrary web script or HTML via the referer parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2015-3921
|
2024-11-21 11:30 |
2015-05-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274939
|
- |
|
wireshark
|
wireshark
|
The logcat_dump_text function in wiretap/logcat.c in the Android Logcat file parser in Wireshark 1.12.x before 1.12.5 does not properly handle a lack of \0 termination, which allows remote attackers …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-3906
|
2024-11-21 11:30 |
2015-05-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274940
|
- |
|
phpmyadmin
|
phpmyadmin
|
libraries/Config.class.php in phpMyAdmin 4.0.x before 4.0.10.10, 4.2.x before 4.2.13.3, 4.3.x before 4.3.13.1, and 4.4.x before 4.4.6.1 disables X.509 certificate verification for GitHub API calls ov…
|
CWE-310
Cryptographic Issues
|
CVE-2015-3903
|
2024-11-21 11:30 |
2015-05-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
