|
275931
|
- |
|
boosted
|
boosted_boards
|
Unspecified vulnerability in Boosted Boards skateboards allows physically proximate attackers to modify skateboard movement, cause human injury, or cause physical damage via vectors related to an "in…
|
NVD-CWE-noinfo
|
CVE-2015-2247
|
2024-11-21 11:27 |
2015-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
275932
|
- |
|
netgate
|
pfsense
|
Cross-site request forgery (CSRF) vulnerability in system_firmware_restorefullbackup.php in the WebGUI in pfSense before 2.2.1 allows remote attackers to hijack the authentication of administrators f…
|
CWE-352
Origin Validation Error
|
CVE-2015-2295
|
2024-11-21 11:27 |
2015-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
275933
|
- |
|
fedoraproject
xen
|
fedora
xen
|
The XEN_DOMCTL_memory_mapping hypercall in Xen 3.2.x through 4.5.x, when using a PCI passthrough device, is not preemptible, which allows local x86 HVM domain users to cause a denial of service (host…
|
CWE-20
Improper Input Validation
|
CVE-2015-2752
|
2024-11-21 11:27 |
2015-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
275934
|
- |
|
xen
fedoraproject
|
xen
fedora
|
Xen 4.3.x, 4.4.x, and 4.5.x, when using toolstack disaggregation, allows remote domains with partial management control to cause a denial of service (host lock) via unspecified domctl operations.
|
CWE-17
Code
|
CVE-2015-2751
|
2024-11-21 11:27 |
2015-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
275935
|
- |
|
netgate
|
pfsense
|
Multiple cross-site scripting (XSS) vulnerabilities in the WebGUI in pfSense before 2.2.1 allow remote attackers to inject arbitrary web script or HTML via the (1) zone parameter to status_captivepor…
|
CWE-79
Cross-site Scripting
|
CVE-2015-2294
|
2024-11-21 11:27 |
2015-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
275936
|
- |
|
gaia-gis
debian
|
freexl
debian_linux
|
FreeXL before 1.0.0i allows remote attackers to cause a denial of service (stack corruption) and possibly execute arbitrary code via a crafted workbook, related to a "premature EOF."
|
CWE-20
Improper Input Validation
|
CVE-2015-2754
|
2024-11-21 11:27 |
2015-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
275937
|
- |
|
debian
gaia-gis
|
debian_linux
freexl
|
FreeXL before 1.0.0i allows remote attackers to cause a denial of service (stack corruption) or possibly execute arbitrary code via a crafted sector in a workbook.
|
CWE-20
Improper Input Validation
|
CVE-2015-2753
|
2024-11-21 11:27 |
2015-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
275938
|
- |
|
shibboleth
debian
|
service_provider
debian_linux
|
Shibboleth Service Provider (SP) before 2.5.4 allows remote authenticated users to cause a denial of service (crash) via a crafted SAML message.
|
CWE-20
Improper Input Validation
|
CVE-2015-2684
|
2024-11-21 11:27 |
2015-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
275939
|
- |
|
nih
php
fedoraproject
debian
opensuse
|
libzip
php
fedora
debian_linux
opensuse
|
Integer overflow in the _zip_cdir_new function in zip_dirent.c in libzip 0.11.2 and earlier, as used in the ZIP extension in PHP before 5.4.39, 5.5.x before 5.5.23, and 5.6.x before 5.6.7 and other p…
|
CWE-189
Numeric Errors
|
CVE-2015-2331
|
2024-11-21 11:27 |
2015-03-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
275940
|
- |
|
redhat
apple
opensuse
php
|
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux_hpc_node
enterprise_linux_server_eus
enterprise_linux_hpc_node_eus
mac_os_x
opensus…
|
The move_uploaded_file implementation in ext/standard/basic_functions.c in PHP before 5.4.39, 5.5.x before 5.5.23, and 5.6.x before 5.6.7 truncates a pathname upon encountering a \x00 character, whic…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-2348
|
2024-11-21 11:27 |
2015-03-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
