|
272631
|
- |
|
mcafee
|
advanced_threat_defense
|
The web interface in McAfee Advanced Threat Defense (MATD) before 3.4.4.63 does not properly restrict access, which allows remote authenticated users to obtain sensitive information via unspecified v…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-3029
|
2024-11-21 11:28 |
2015-04-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272632
|
- |
|
mcafee
|
advanced_threat_defense
|
McAfee Advanced Threat Defense (MATD) before 3.4.4.63 allows remote authenticated users to bypass intended restrictions and change or update configuration settings via crafted parameters.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-3028
|
2024-11-21 11:28 |
2015-04-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272633
|
- |
|
debian
fedoraproject
arj_software
|
debian_linux
fedora
arj_archiver
|
Buffer overflow in Open-source ARJ archiver 3.10.22 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted ARJ archive.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-2782
|
2024-11-21 11:28 |
2015-04-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272634
|
- |
|
siemens
|
wincc
|
Siemens SIMATIC HMI Basic Panels 2nd Generation before WinCC (TIA Portal) 13 SP1 Upd2, SIMATIC HMI Comfort Panels before WinCC (TIA Portal) 13 SP1 Upd2, SIMATIC WinCC Runtime Advanced before WinCC (T…
|
CWE-287
Improper Authentication
|
CVE-2015-2823
|
2024-11-21 11:28 |
2015-04-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272635
|
- |
|
siemens
|
wincc
|
Siemens SIMATIC HMI Comfort Panels before WinCC (TIA Portal) 13 SP1 Upd2 and SIMATIC WinCC Runtime Advanced before WinCC (TIA Portal) 13 SP1 Upd2 allow man-in-the-middle attackers to cause a denial o…
|
CWE-20
Improper Input Validation
|
CVE-2015-2822
|
2024-11-21 11:28 |
2015-04-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272636
|
- |
|
broadcom
|
spectrum
|
CA Spectrum 9.2.x and 9.3.x before 9.3 H02 does not properly validate serialized Java objects, which allows remote authenticated users to obtain administrative privileges via crafted object data.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-2828
|
2024-11-21 11:28 |
2015-04-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272637
|
- |
|
broadcom
|
spectrum
|
Cross-site scripting (XSS) vulnerability in CA Spectrum 9.2.x and 9.3.x before 9.3 H02 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2015-2827
|
2024-11-21 11:28 |
2015-04-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272638
|
- |
|
simple_ads_manager_project
|
simple_ads_manager
|
Multiple SQL injection vulnerabilities in the Simple Ads Manager plugin before 2.7.97 for WordPress allow remote attackers to execute arbitrary SQL commands via a (1) hits[][] parameter in a sam_hits…
|
CWE-89
SQL Injection
|
CVE-2015-2824
|
2024-11-21 11:28 |
2015-04-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272639
|
- |
|
citrix
|
netscaler
|
Citrix NetScaler AppFirewall, as used in NetScaler 10.5, allows remote attackers to bypass intended firewall restrictions via a crafted Content-Type header, as demonstrated by the application/octet-s…
|
CWE-284
Improper Access Control
|
CVE-2015-2841
|
2024-11-21 11:28 |
2015-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
272640
|
- |
|
citrix
|
netscaler
|
Cross-site scripting (XSS) vulnerability in help/rt/large_search.html in Citrix NetScaler before 10.5 build 52.3nc allows remote attackers to inject arbitrary web script or HTML via the searchQuery p…
|
CWE-79
Cross-site Scripting
|
CVE-2015-2840
|
2024-11-21 11:28 |
2015-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
