|
267041
|
8.6 |
HIGH
Network
|
php
|
php
|
Use-after-free vulnerability in the Collator::sortWithSortKeys function in ext/intl/collator/collator_sort.c in PHP 7.x before 7.0.1 allows remote attackers to cause a denial of service (application …
|
NVD-CWE-Other
|
CVE-2015-8616
|
2024-11-21 11:38 |
2016-01-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267042
|
5.4 |
MEDIUM
Network
|
gajim
|
gajim
|
Gajim before 0.16.5 allows remote attackers to modify the roster and intercept messages via a crafted roster-push IQ stanza.
|
CWE-20
Improper Input Validation
|
CVE-2015-8688
|
2024-11-21 11:38 |
2016-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267043
|
6.1 |
MEDIUM
Network
|
dolibarr
|
dolibarr
|
Multiple cross-site scripting (XSS) vulnerabilities in Dolibarr ERP/CRM 3.8.3 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) external calendar url or (2) the ba…
|
CWE-79
Cross-site Scripting
|
CVE-2015-8685
|
2024-11-21 11:38 |
2016-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267044
|
6.2 |
MEDIUM
Local
|
huawei
|
s5300_firmware
|
Huawei S5300 Campus Series switches with software before V200R005SPH008 do not mask the password when uploading files, which allows physically proximate attackers to obtain sensitive password informa…
|
CWE-255
Credentials Management
|
CVE-2015-8675
|
2024-11-21 11:38 |
2016-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267045
|
7.5 |
HIGH
Network
|
samsung
|
web_viewer
|
Web Viewer 1.0.0.193 on Samsung SRN-1670D devices allows attackers to bypass filesystem encryption via XOR calculations.
|
CWE-310
Cryptographic Issues
|
CVE-2015-8281
|
2024-11-21 11:38 |
2016-01-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267046
|
7.5 |
HIGH
Network
|
samsung
|
web_viewer
|
Web Viewer 1.0.0.193 on Samsung SRN-1670D devices allows remote attackers to discover credentials by reading detailed error messages.
|
CWE-200
Information Exposure
|
CVE-2015-8280
|
2024-11-21 11:38 |
2016-01-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267047
|
8.6 |
HIGH
Network
|
samsung
|
web_viewer
|
Web Viewer 1.0.0.193 on Samsung SRN-1670D devices allows remote attackers to read arbitrary files via a request to an unspecified PHP script.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-8279
|
2024-11-21 11:38 |
2016-01-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267048
|
6.5 |
MEDIUM
Adjacent
|
sophos
isc
debian
canonical
|
unified_threat_management_up2date
dhcp
debian_linux
ubuntu_linux
|
ISC DHCP 4.x before 4.1-ESV-R12-P1, 4.2.x, and 4.3.x before 4.3.3-P1 allows remote attackers to cause a denial of service (application crash) via an invalid length field in a UDP IPv4 packet.
|
CWE-20
Improper Input Validation
|
CVE-2015-8605
|
2024-11-21 11:38 |
2016-01-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267049
|
7.3 |
HIGH
Network
|
canonical
perl
debian
|
ubuntu_linux
pathtools
debian_linux
|
The canonpath function in the File::Spec module in PathTools before 3.62, as used in Perl, does not properly preserve the taint attribute of data, which might allow context-dependent attackers to byp…
|
CWE-20
Improper Input Validation
|
CVE-2015-8607
|
2024-11-21 11:38 |
2016-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267050
|
7.4 |
HIGH
Network
|
fedoraproject
openstack
|
fedora
swift3
|
Swift3 before 1.9 allows remote attackers to conduct replay attacks via an Authorization request that lacks a Date header.
|
CWE-20
Improper Input Validation
|
CVE-2015-8466
|
2024-11-21 11:38 |
2016-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
