|
272221
|
- |
|
wikiwiki_project
|
wikiwiki
|
SQL injection vulnerability in the WikiWiki module before 6.x-1.2 for Drupal allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2015-3346
|
2024-11-21 11:29 |
2015-04-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272222
|
- |
|
phplist_integration_project
|
phplist_integration
|
SQL injection vulnerability in the PHPlist Integration Module before 6.x-1.7 for Drupal allows remote administrators to execute arbitrary SQL commands via unspecified vectors, related to the "phpList…
|
CWE-89
SQL Injection
|
CVE-2015-3345
|
2024-11-21 11:29 |
2015-04-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272223
|
- |
|
dlc_solutions
|
course
|
Cross-site scripting (XSS) vulnerability in the Course module 6.x-1.x before 6.x-1.2 and 7.x-1.x before 7.x-1.4 for Drupal allows remote authenticated users to inject arbitrary web script or HTML via…
|
CWE-79
Cross-site Scripting
|
CVE-2015-3344
|
2024-11-21 11:29 |
2015-04-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272224
|
- |
|
opac_project
|
opac
|
Cross-site request forgery (CSRF) vulnerability in the OPAC module before 7.x-2.3 for Drupal allows remote attackers to hijack the authentication of unspecified victims for requests that remove a map…
|
CWE-352
Origin Validation Error
|
CVE-2015-3343
|
2024-11-21 11:29 |
2015-04-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272225
|
- |
|
ubercart_currency_conversion_project
|
ubercart_currency_conversion
|
Open redirect vulnerability in the Ubercart Currency Conversion module before 6.x-1.2 for Drupal allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a UR…
|
NVD-CWE-Other
|
CVE-2015-3342
|
2024-11-21 11:29 |
2015-04-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272226
|
- |
|
google
debian
opensuse
|
chrome
debian_linux
opensuse
|
Google Chrome before 42.0.2311.90 does not always ask the user before proceeding with CONTENT_SETTINGS_TYPE_FULLSCREEN and CONTENT_SETTINGS_TYPE_MOUSELOCK changes, which allows user-assisted remote a…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-3336
|
2024-11-21 11:29 |
2015-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272227
|
- |
|
google
opensuse
|
chrome
opensuse
|
The NaClSandbox::InitializeLayerTwoSandbox function in components/nacl/loader/sandbox_linux/nacl_sandbox_linux.cc in Google Chrome before 42.0.2311.90 does not have RLIMIT_AS and RLIMIT_DATA limits f…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-3335
|
2024-11-21 11:29 |
2015-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272228
|
- |
|
google
debian
opensuse
|
chrome
debian_linux
opensuse
|
browser/ui/website_settings/website_settings.cc in Google Chrome before 42.0.2311.90 does not always display "Media: Allowed by you" in a Permissions table after the user has granted camera permissio…
|
CWE-17
Code
|
CVE-2015-3334
|
2024-11-21 11:29 |
2015-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272229
|
- |
|
google
debian
canonical
|
v8
debian_linux
ubuntu_linux
chrome
|
Multiple unspecified vulnerabilities in Google V8 before 4.2.77.14, as used in Google Chrome before 42.0.2311.90, allow attackers to cause a denial of service or possibly have other impact via unknow…
|
NVD-CWE-noinfo
|
CVE-2015-3333
|
2024-11-21 11:29 |
2015-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272230
|
- |
|
lenovo
|
thinkserver_system_manager_baseboard_management_controller_firmware
|
The ThinkServer System Manager (TSM) Baseboard Management Controller before firmware 1.27.73476 for ThinkServer RD350, RD450, RD550, RD650, and TD350 does not validate server certificates during an "…
|
CWE-310
Cryptographic Issues
|
CVE-2015-3324
|
2024-11-21 11:29 |
2015-04-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
