|
267511
|
- |
|
bastian_allgeier
|
kirby
|
Unrestricted file upload vulnerability in the Panel component in Bastian Allgeier Kirby before 2.1.2 allows remote authenticated users to execute arbitrary PHP code by uploading a file that lacks an …
|
NVD-CWE-Other
|
CVE-2015-7773
|
2024-11-21 11:37 |
2015-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267512
|
- |
|
newphoria_corporation
|
applican
|
Cross-site scripting (XSS) vulnerability in the runtime engine in the Newphoria applican framework before 1.13.0 for Android and iOS allows remote attackers to inject arbitrary web script or HTML via…
|
CWE-79
Cross-site Scripting
|
CVE-2015-7772
|
2024-11-21 11:37 |
2015-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267513
|
- |
|
newphoria_corporation
|
applican
|
Cross-site scripting (XSS) vulnerability in the runtime engine in the Newphoria applican framework before 1.13.0 for Android and iOS allows remote attackers to inject arbitrary web script or HTML via…
|
CWE-79
Cross-site Scripting
|
CVE-2015-7771
|
2024-11-21 11:37 |
2015-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267514
|
- |
|
huawei
|
ne_router_software
|
Huawei NE20E-S, NE40E-M, and NE40E-M2 routers with software before V800R007C10SPC100 and NE40E and NE80E routers with software before V800R007C00SPC100 allows remote attackers to send packets to othe…
|
CWE-399
Resource Management Errors
|
CVE-2015-8087
|
2024-11-21 11:37 |
2015-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267515
|
- |
|
huawei
|
espace_firmware
|
An unspecified module in Huawei eSpace U1910, U1911, U1930, U1960, U1980, and U1981 unified gateways with software before V200R003C00SPC300 does not properly initialize memory when processing timeout…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-8083
|
2024-11-21 11:37 |
2015-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267516
|
- |
|
horde
debian
|
horde_application_framework
groupware
debian_linux
|
Multiple cross-site request forgery (CSRF) vulnerabilities in Horde before 5.2.8, Horde Groupware before 5.2.11, and Horde Groupware Webmail Edition before 5.2.11 allow remote attackers to hijack the…
|
CWE-352
Origin Validation Error
|
CVE-2015-7984
|
2024-11-21 11:37 |
2015-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267517
|
- |
|
huawei
|
espace_firmware
|
The exception handling mechanism in the CLI Module in Huawei eSpace U1910, U1911, U1930, U1960, U1980, and U1981 unified gateways with software before V100R001C20SPH605 allows remote attackers to cau…
|
CWE-20
Improper Input Validation
|
CVE-2015-7845
|
2024-11-21 11:37 |
2015-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267518
|
- |
|
exemys
|
telemetry_web_server
|
Exemys Telemetry Web Server relies on an HTTP Location header to indicate that a client is unauthorized, which allows remote attackers to bypass intended access restrictions by disregarding this head…
|
CWE-200
CWE-284
Information Exposure
Improper Access Control
|
CVE-2015-7910
|
2024-11-21 11:37 |
2015-11-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267519
|
- |
|
adobe
|
coldfusion
|
Cross-site scripting (XSS) vulnerability in Adobe ColdFusion 10 before Update 18 and 11 before Update 7 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a diffe…
|
CWE-79
Cross-site Scripting
|
CVE-2015-8053
|
2024-11-21 11:37 |
2015-11-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267520
|
- |
|
adobe
|
coldfusion
|
Cross-site scripting (XSS) vulnerability in Adobe ColdFusion 10 before Update 18 and 11 before Update 7 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a diffe…
|
CWE-79
Cross-site Scripting
|
CVE-2015-8052
|
2024-11-21 11:37 |
2015-11-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
