|
270281
|
- |
|
network_applied_communication_laboratory
|
shimane_prefecture_cms
|
SQL injection vulnerability in Network Applied Communication Laboratory Pref Shimane CMS 2.x before 2.0.1 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2015-5659
|
2024-11-21 11:33 |
2015-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270282
|
- |
|
dojotoolkit
|
dojo
|
Cross-site scripting (XSS) vulnerability in Dojo Toolkit before 1.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2015-5654
|
2024-11-21 11:33 |
2015-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270283
|
- |
|
loenshotel
|
phprechnung
|
SQL injection vulnerability in list.php in phpRechnung before 1.6.5 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2015-5648
|
2024-11-21 11:33 |
2015-10-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270284
|
- |
|
apple
|
mac_os_x
|
The backup implementation in Time Machine in Apple OS X before 10.11 allows local users to obtain access to keychain items via unspecified vectors.
|
CWE-200
Information Exposure
|
CVE-2015-5854
|
2024-11-21 11:33 |
2015-10-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270285
|
- |
|
apple
|
mac_os_x
|
AirScan in Apple OS X before 10.11 allows man-in-the-middle attackers to obtain eSCL packet payload data via unspecified vectors.
|
CWE-200
Information Exposure
|
CVE-2015-5853
|
2024-11-21 11:33 |
2015-10-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270286
|
- |
|
apple
|
mac_os_x
|
The filtering implementation in AppleEvents in Apple OS X before 10.11 mishandles attempts to send events to a different user, which allows attackers to bypass intended access restrictions by leverag…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-5849
|
2024-11-21 11:33 |
2015-10-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270287
|
- |
|
apple
|
mac_os_x
|
Apple Online Store Kit in Apple OS X before 10.11 improperly validates iCloud keychain item ACLs, which allows attackers to obtain access to keychain items via a crafted app.
|
CWE-200
Information Exposure
|
CVE-2015-5836
|
2024-11-21 11:33 |
2015-10-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270288
|
- |
|
apple
|
mac_os_x
|
The Login Window component in Apple OS X before 10.11 does not ensure that the screen is locked at the intended time, which allows physically proximate attackers to obtain access by visiting an unatt…
|
CWE-254
7PK - Security Features
|
CVE-2015-5833
|
2024-11-21 11:33 |
2015-10-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270289
|
- |
|
apple
|
mac_os_x
|
The Intel Graphics Driver component in Apple OS X before 10.11 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerabilit…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-5830
|
2024-11-21 11:33 |
2015-10-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270290
|
- |
|
opensuse
apple
|
leap
safari
|
The API in the WebKit Plug-ins component in Apple Safari before 9 does not provide notification of an HTTP Redirection (aka 3xx) status code to a plugin, which allows remote attackers to bypass inten…
|
CWE-20
Improper Input Validation
|
CVE-2015-5828
|
2024-11-21 11:33 |
2015-10-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
