|
273111
|
- |
|
mybb
|
mybb
|
Cross-site scripting (XSS) vulnerability in member.php in MyBB (aka MyBulletinBoard) before 1.8.4 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2015-2332
|
2024-11-21 11:27 |
2015-03-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273112
|
- |
|
wpml
|
wpml
|
Cross-site scripting (XSS) vulnerability in the WPML plugin before 3.1.9 for WordPress allows remote attackers to inject arbitrary web script or HTML via the target parameter in a reminder_popup acti…
|
CWE-79
Cross-site Scripting
|
CVE-2015-2315
|
2024-11-21 11:27 |
2015-03-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273113
|
- |
|
wpml
|
wpml
|
SQL injection vulnerability in the WPML plugin before 3.1.9 for WordPress allows remote attackers to execute arbitrary SQL commands via the lang parameter in the HTTP Referer header in a wp-link-ajax…
|
CWE-89
SQL Injection
|
CVE-2015-2314
|
2024-11-21 11:27 |
2015-03-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273114
|
- |
|
yoast
|
wordpress_seo
|
Multiple cross-site request forgery (CSRF) vulnerabilities in admin/class-bulk-editor-list-table.php in the WordPress SEO by Yoast plugin before 1.5.7, 1.6.x before 1.6.4, and 1.7.x before 1.7.4 for …
|
CWE-352
Origin Validation Error
|
CVE-2015-2293
|
2024-11-21 11:27 |
2015-03-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273115
|
- |
|
yoast
|
wordpress_seo
|
Multiple SQL injection vulnerabilities in admin/class-bulk-editor-list-table.php in the WordPress SEO by Yoast plugin before 1.5.7, 1.6.x before 1.6.4, and 1.7.x before 1.7.4 for WordPress allow remo…
|
CWE-89
SQL Injection
|
CVE-2015-2292
|
2024-11-21 11:27 |
2015-03-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273116
|
- |
|
libarchive
canonical
opensuse
|
libarchive
ubuntu_linux
opensuse
|
Absolute path traversal vulnerability in bsdcpio in libarchive 3.1.2 and earlier allows remote attackers to write to arbitrary files via a full pathname in an archive.
|
CWE-22
Path Traversal
|
CVE-2015-2304
|
2024-11-21 11:27 |
2015-03-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273117
|
- |
|
telerik
|
analytics_monitor_library
|
Multiple untrusted search path vulnerabilities in (1) EQATEC.Analytics.Monitor.Win32_vc100.dll and (2) EQATEC.Analytics.Monitor.Win32_vc100-x64.dll in Telerik Analytics Monitor Library before 3.2.125…
|
NVD-CWE-Other
|
CVE-2015-2264
|
2024-11-21 11:27 |
2015-03-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273118
|
- |
|
wotlab
|
community_gallery
|
Cross-site scripting (XSS) vulnerability in WoltLab Community Gallery 2.0 before 2014-12-26 allows remote attackers to inject arbitrary web script or HTML via the parameters[data][7][title] parameter…
|
CWE-79
Cross-site Scripting
|
CVE-2015-2275
|
2024-11-21 11:27 |
2015-03-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273119
|
- |
|
betster_project
|
betster
|
Multiple SQL injection vulnerabilities in Betster (aka PHP Betoffice) 1.0.4 allow remote attackers to execute arbitrary SQL commands via the id parameter to (1) showprofile.php or (2) categoryedit.ph…
|
CWE-89
SQL Injection
|
CVE-2015-2237
|
2024-11-21 11:27 |
2015-03-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
273120
|
- |
|
ubuntu
|
upstart
vivid
|
The logrotation script (/etc/cron.daily/upstart) in the Ubuntu Upstart package before 1.13.2-0ubuntu9, as used in Ubuntu Vivid 15.04, allows local users to execute arbitrary commands and gain privile…
|
CWE-19
Data Processing Errors
|
CVE-2015-2285
|
2024-11-21 11:27 |
2015-03-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
