|
271881
|
- |
|
sap
|
hana
|
The index server (hdbindexserver) in SAP HANA 1.00.095 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via an HTTP request, aka SAP Security Note 21…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-7986
|
2024-11-21 11:37 |
2015-10-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271882
|
- |
|
canonical
gnome
opensuse
|
ubuntu_linux
gdk-pixbuf
opensuse
|
Integer overflow in the pixops_scale_nearest function in pixops/pixops.c in gdk-pixbuf before 2.32.1 allows remote attackers to cause a denial of service (application crash) and possibly execute arbi…
|
CWE-189
Numeric Errors
|
CVE-2015-7674
|
2024-11-21 11:37 |
2015-10-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271883
|
- |
|
opensuse
gnome
|
opensuse
gdk-pixbuf
|
io-tga.c in gdk-pixbuf before 2.32.0 uses heap memory after its allocation failed, which allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) and po…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-7673
|
2024-11-21 11:37 |
2015-10-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271884
|
- |
|
owncloud
|
owncloud
|
The files_external app in ownCloud Server before 7.0.9, 8.0.x before 8.0.7, and 8.1.x before 8.1.2 allows remote authenticated users to instantiate arbitrary classes and possibly execute arbitrary co…
|
CWE-20
Improper Input Validation
|
CVE-2015-7699
|
2024-11-21 11:37 |
2015-10-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271885
|
- |
|
colorbox_project
|
colorbox
|
The Colorbox module 7.x-2.x before 7.x-2.10 for Drupal allows remote authenticated users with certain permissions to bypass intended access restrictions and "add unexpected content to a Colorbox" via…
|
CWE-284
Improper Access Control
|
CVE-2015-7881
|
2024-11-21 11:37 |
2015-10-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271886
|
- |
|
owncloud
|
smb
owncloud
|
icewind1991 SMB before 1.0.3 allows remote authenticated users to execute arbitrary SMB commands via shell metacharacters in the user argument in the (1) listShares function in Server.php or the (2) …
|
CWE-78
OS Command
|
CVE-2015-7698
|
2024-11-21 11:37 |
2015-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271887
|
- |
|
kentico
|
kentico_cms
|
Open redirect vulnerability in CMSPages/GetDocLink.ashx in Kentico CMS 8.2 through 8.2.41 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in th…
|
NVD-CWE-Other
|
CVE-2015-7823
|
2024-11-21 11:37 |
2015-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271888
|
- |
|
kentico
|
kentico_cms
|
Multiple cross-site scripting (XSS) vulnerabilities in Kentico CMS 8.2 allow remote attackers to inject arbitrary web script or HTML via a (1) parameter name to CMSModules/AdminControls/Pages/UIPage.…
|
CWE-79
Cross-site Scripting
|
CVE-2015-7822
|
2024-11-21 11:37 |
2015-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271889
|
- |
|
drupal_7_driver_for_sql_server_and_sql_azure_project
|
drupal_7_driver_for_sql_server_and_sql_azure
|
The escapeLike function in sqlsrv/database.inc in the Drupal 7 driver for SQL Server and SQL Azure 7.x-1.x before 7.x-1.4 does not properly escape certain characters, which allows remote attackers to…
|
CWE-89
SQL Injection
|
CVE-2015-7876
|
2024-11-21 11:37 |
2015-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271890
|
- |
|
accelerite
|
radia_client_automation
|
The default configuration of Persistent Accelerite Radia Client Automation (formerly HP Client Automation) 7.9 through 9.1 before 2015-02-19 enables a remote Notify capability without the Extended No…
|
CWE-254
7PK - Security Features
|
CVE-2015-7863
|
2024-11-21 11:37 |
2015-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
