|
271391
|
- |
|
mediawiki
|
mediawiki
|
Cross-site scripting (XSS) vulnerability in contrib/cssgen.php in the GeSHi, as used in the SyntaxHighlight_GeSHi extension and MediaWiki before 1.23.10, 1.24.x before 1.24.3, and 1.25.x before 1.25.…
|
CWE-79
Cross-site Scripting
|
CVE-2015-6734
|
2024-11-21 11:35 |
2015-09-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271392
|
- |
|
mediawiki
|
mediawiki
|
GeSHi, as used in the SyntaxHighlight_GeSHi extension and MediaWiki before 1.23.10, 1.24.x before 1.24.3, and 1.25.x before 1.25.2, allows remote attackers to cause a denial of service (resource cons…
|
CWE-399
Resource Management Errors
|
CVE-2015-6733
|
2024-11-21 11:35 |
2015-09-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271393
|
- |
|
semanticforms_project
|
semanticforms
|
Multiple cross-site scripting (XSS) vulnerabilities in the SemanticForms extension for MediaWiki allow remote attackers to inject arbitrary web script or HTML via the (1) wpSummary parameter to Speci…
|
CWE-79
Cross-site Scripting
|
CVE-2015-6732
|
2024-11-21 11:35 |
2015-09-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271394
|
- |
|
semanticforms_project
|
semanticforms
|
Multiple cross-site scripting (XSS) vulnerabilities in the SemanticForms extension for MediaWiki allow remote attackers to inject arbitrary web script or HTML via a (1) section_*, (2) template_*, (3)…
|
CWE-79
Cross-site Scripting
|
CVE-2015-6731
|
2024-11-21 11:35 |
2015-09-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271395
|
- |
|
mediawiki
|
mediawiki
|
Cross-site scripting (XSS) vulnerability in thumb.php in MediaWiki before 1.23.10, 1.24.x before 1.24.3, and 1.25.x before 1.25.2 allows remote attackers to inject arbitrary web script or HTML via th…
|
CWE-79
Cross-site Scripting
|
CVE-2015-6730
|
2024-11-21 11:35 |
2015-09-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271396
|
- |
|
mediawiki
|
mediawiki
|
Cross-site scripting (XSS) vulnerability in thumb.php in MediaWiki before 1.23.10, 1.24.x before 1.24.3, and 1.25.x before 1.25.2 allows remote attackers to inject arbitrary web script or HTML via th…
|
CWE-79
Cross-site Scripting
|
CVE-2015-6729
|
2024-11-21 11:35 |
2015-09-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271397
|
- |
|
mediawiki
|
mediawiki
|
The ApiBase::getWatchlistUser function in MediaWiki before 1.23.10, 1.24.x before 1.24.3, and 1.25.x before 1.25.2 does not perform token comparison in constant time, which allows remote attackers to…
|
CWE-352
Origin Validation Error
|
CVE-2015-6728
|
2024-11-21 11:35 |
2015-09-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271398
|
- |
|
mediawiki
canonical
|
mediawiki
ubuntu_linux
|
The Special:DeletedContributions page in MediaWiki before 1.23.10, 1.24.x before 1.24.3, and 1.25.x before 1.25.2 allows remote attackers to determine if an IP is autoblocked via the "Change block" t…
|
CWE-200
Information Exposure
|
CVE-2015-6727
|
2024-11-21 11:35 |
2015-09-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271399
|
- |
|
ippusbxd_project
|
ippusbxd
|
IPPUSBXD before 1.22 listens on all interfaces, which allows remote attackers to obtain access to USB connected printers via a direct request.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-6520
|
2024-11-21 11:35 |
2015-09-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271400
|
- |
|
linux
|
linux_kernel
|
The perf_callchain_user_64 function in arch/powerpc/perf/callchain.c in the Linux kernel before 4.0.2 on ppc64 platforms allows local users to cause a denial of service (infinite loop) via a deep 64-…
|
CWE-399
Resource Management Errors
|
CVE-2015-6526
|
2024-11-21 11:35 |
2015-09-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
