|
271521
|
- |
|
apple
xmlsoft
|
watchos
iphone_os
mac_os_x
tvos
libxslt
|
The xsltStylePreCompute function in preproc.c in libxslt 1.1.28 does not check if the parent node is an element, which allows attackers to cause a denial of service via a crafted XML file, related to…
|
NVD-CWE-Other
|
CVE-2015-7995
|
2024-11-21 11:37 |
2015-11-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271522
|
- |
|
xen
|
xen
|
The hypercall_create_continuation function in arch/arm/domain.c in Xen 4.4.x through 4.6.x allows local guest users to cause a denial of service (host crash) via a preemptible hypercall to the multic…
|
CWE-254
7PK - Security Features
|
CVE-2015-7812
|
2024-11-21 11:37 |
2015-11-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271523
|
- |
|
opensuse
mega-nerd
|
opensuse
libsndfile
|
Heap-based buffer overflow in libsndfile 1.0.25 allows remote attackers to have unspecified impact via the headindex value in the header in an AIFF file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-7805
|
2024-11-21 11:37 |
2015-11-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271524
|
- |
|
samsung
|
galaxy_s6
|
The media scanning functionality in the face recognition library in android.media.process in Samsung Galaxy S6 Edge before G925VVRU4B0G9 allows remote attackers to gain privileges or cause a denial o…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-7897
|
2024-11-21 11:37 |
2015-11-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271525
|
- |
|
matomo
|
matomo
|
The DisplayTopKeywords function in plugins/Referrers/Controller.php in Piwik before 2.15.0 allows remote attackers to conduct PHP object injection attacks, conduct Server-Side Request Forgery (SSRF) …
|
NVD-CWE-Other
|
CVE-2015-7816
|
2024-11-21 11:37 |
2015-11-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271526
|
- |
|
matomo
|
matomo
|
Directory traversal vulnerability in core/ViewDataTable/Factory.php in Piwik before 2.15.0 allows remote attackers to include and execute arbitrary local files via the viewDataTable parameter.
|
CWE-22
Path Traversal
|
CVE-2015-7815
|
2024-11-21 11:37 |
2015-11-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271527
|
- |
|
atutor
|
atutor
|
Multiple eval injection vulnerabilities in mods/_standard/gradebook/edit_marks.php in ATutor 2.2 and earlier allow remote authenticated users with the AT_PRIV_GRADEBOOK privilege to execute arbitrary…
|
NVD-CWE-Other
|
CVE-2015-7712
|
2024-11-21 11:37 |
2015-11-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271528
|
- |
|
linux
|
linux_kernel
|
The key_gc_unused_keys function in security/keys/gc.c in the Linux kernel through 4.2.6 allows local users to cause a denial of service (OOPS) via crafted keyctl commands.
|
CWE-20
Improper Input Validation
|
CVE-2015-7872
|
2024-11-21 11:37 |
2015-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271529
|
- |
|
oracle
wireshark
|
solaris
wireshark
|
The pcapng_read_if_descr_block function in wiretap/pcapng.c in the pcapng parser in Wireshark 1.12.x before 1.12.8 uses too many levels of pointer indirection, which allows remote attackers to cause …
|
CWE-20
Improper Input Validation
|
CVE-2015-7830
|
2024-11-21 11:37 |
2015-11-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271530
|
- |
|
pc-egg
|
pwebmanager
|
PC-EGG pWebManager before 3.3.10, and before 2.2.2 for PHP 4.x, allows remote authenticated users to execute arbitrary OS commands by leveraging the editor role.
|
CWE-78
OS Command
|
CVE-2015-7774
|
2024-11-21 11:37 |
2015-11-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
