|
271421
|
- |
|
drupal
|
drupal
|
Cross-site scripting (XSS) vulnerability in the Autocomplete system in Drupal 6.x before 6.37 and 7.x before 7.39 allows remote attackers to inject arbitrary web script or HTML via a crafted URL, rel…
|
CWE-79
Cross-site Scripting
|
CVE-2015-6658
|
2024-11-21 11:35 |
2015-08-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271422
|
- |
|
debian
libevent_project
|
debian_linux
libevent
|
Multiple integer overflows in the evbuffer API in Libevent 2.0.x before 2.0.22 and 2.1.x before 2.1.5-beta allow context-dependent attackers to cause a denial of service or possibly have other unspec…
|
CWE-189
Numeric Errors
|
CVE-2015-6525
|
2024-11-21 11:35 |
2015-08-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271423
|
- |
|
fedoraproject
apache
|
fedora
activemq
|
The LDAPLoginModule implementation in the Java Authentication and Authorization Service (JAAS) in Apache ActiveMQ 5.x before 5.10.1 allows wildcard operators in usernames, which allows remote attacke…
|
CWE-255
Credentials Management
|
CVE-2015-6524
|
2024-11-21 11:35 |
2015-08-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271424
|
- |
|
netfilter
debian
|
conntrack-tools
debian_linux
|
conntrackd in conntrack-tools 1.4.2 and earlier does not ensure that the optional kernel modules are loaded before using them, which allows remote attackers to cause a denial of service (crash) via a…
|
CWE-17
Code
|
CVE-2015-6496
|
2024-11-21 11:35 |
2015-08-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271425
|
- |
|
openbsd
|
openssh
|
sshd in OpenSSH 6.8 and 6.9 uses world-writable permissions for TTY devices, which allows local users to cause a denial of service (terminal disruption) or possibly have unspecified other impact by w…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-6565
|
2024-11-21 11:35 |
2015-08-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271426
|
- |
|
openbsd
|
openssh
|
Use-after-free vulnerability in the mm_answer_pam_free_ctx function in monitor.c in sshd in OpenSSH before 7.0 on non-OpenBSD platforms might allow local users to gain privileges by leveraging contro…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-6564
|
2024-11-21 11:35 |
2015-08-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271427
|
- |
|
openbsd
apple
|
openssh
mac_os_x
|
The monitor component in sshd in OpenSSH before 7.0 on non-OpenBSD platforms accepts extraneous username data in MONITOR_REQ_PAM_INIT_CTX requests, which allows local users to conduct impersonation a…
|
CWE-20
Improper Input Validation
|
CVE-2015-6563
|
2024-11-21 11:35 |
2015-08-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271428
|
- |
|
ibm
|
tivoli_storage_manager_for_mail_data_protection_for_microsoft_exchange_server
tivoli_storage_manager_for_databases_data_protection_for_microsoft_sql_server
tivoli_storage_flashcopy_manager
|
IBM Tivoli Storage Manager for Databases: Data Protection for Microsoft SQL Server 5.5 before 5.5.6.1, 6.3 before 6.3.1.5, 6.4 before 6.4.1.7, and 7.1 before 7.1.2; Tivoli Storage Manager for Mail: D…
|
CWE-200
Information Exposure
|
CVE-2015-6557
|
2024-11-21 11:35 |
2015-08-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271429
|
- |
|
opentext
|
secure_mft_2013
secure_mft_2014
|
Cross-site scripting (XSS) vulnerability in OpenText Secure MFT 2013 before 2013 R3 P6 and 2014 before 2014 R2 P2 allows remote attackers to inject arbitrary web script or HTML via the querytext para…
|
CWE-79
Cross-site Scripting
|
CVE-2015-6530
|
2024-11-21 11:35 |
2015-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271430
|
- |
|
phpipam
|
phpipam
|
Multiple cross-site scripting (XSS) vulnerabilities in phpipam 1.1.010 allow remote attackers to inject arbitrary web script or HTML via the (1) section parameter to site/error.php or (2) ip paramete…
|
CWE-79
Cross-site Scripting
|
CVE-2015-6529
|
2024-11-21 11:35 |
2015-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
