|
271771
|
- |
|
nvidia
|
gpu_driver
|
nvSCPAPISvr.exe in the Stereoscopic 3D Driver Service in the NVIDIA GPU graphics driver R340 before 341.92, R352 before 354.35, and R358 before 358.87 on Windows does not properly restrict access to …
|
CWE-284
Improper Access Control
|
CVE-2015-7865
|
2024-11-21 11:37 |
2015-11-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271772
|
- |
|
vbulletin
|
vbulletin
|
The vB_Api_Hook::decodeArguments method in vBulletin 5 Connect 5.1.2 through 5.1.9 allows remote attackers to conduct PHP object injection attacks and execute arbitrary PHP code via a crafted seriali…
|
CWE-20
Improper Input Validation
|
CVE-2015-7808
|
2024-11-21 11:37 |
2015-11-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271773
|
- |
|
tibbo
|
aggregate
|
ag_server_service.exe in the AggreGate Server Service in Tibbo AggreGate before 5.30.06 allows local users to execute arbitrary Java code with SYSTEM privileges by using the Apache Axis AdminService …
|
NVD-CWE-Other
|
CVE-2015-7913
|
2024-11-21 11:37 |
2015-11-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271774
|
- |
|
tibbo
|
aggregate
|
The Ice Faces servlet in ag_server_service.exe in the AggreGate Server Service in Tibbo AggreGate before 5.30.06 allows remote attackers to upload and execute arbitrary Java code via a crafted XML do…
|
NVD-CWE-Other
|
CVE-2015-7912
|
2024-11-21 11:37 |
2015-11-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271775
|
- |
|
void_project
|
void
|
Cross-site scripting (XSS) vulnerability in index.php in JosephErnest Void before 2015-10-02 allows remote attackers to inject arbitrary web script or HTML via a crafted URI.
|
CWE-79
Cross-site Scripting
|
CVE-2015-7777
|
2024-11-21 11:37 |
2015-11-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271776
|
- |
|
bastian_allgeier
|
kirby
|
Unrestricted file upload vulnerability in the Panel component in Bastian Allgeier Kirby before 2.1.2 allows remote authenticated users to execute arbitrary PHP code by uploading a file that lacks an …
|
NVD-CWE-Other
|
CVE-2015-7773
|
2024-11-21 11:37 |
2015-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271777
|
- |
|
newphoria_corporation
|
applican
|
Cross-site scripting (XSS) vulnerability in the runtime engine in the Newphoria applican framework before 1.13.0 for Android and iOS allows remote attackers to inject arbitrary web script or HTML via…
|
CWE-79
Cross-site Scripting
|
CVE-2015-7772
|
2024-11-21 11:37 |
2015-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271778
|
- |
|
newphoria_corporation
|
applican
|
Cross-site scripting (XSS) vulnerability in the runtime engine in the Newphoria applican framework before 1.13.0 for Android and iOS allows remote attackers to inject arbitrary web script or HTML via…
|
CWE-79
Cross-site Scripting
|
CVE-2015-7771
|
2024-11-21 11:37 |
2015-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271779
|
- |
|
huawei
|
ne_router_software
|
Huawei NE20E-S, NE40E-M, and NE40E-M2 routers with software before V800R007C10SPC100 and NE40E and NE80E routers with software before V800R007C00SPC100 allows remote attackers to send packets to othe…
|
CWE-399
Resource Management Errors
|
CVE-2015-8087
|
2024-11-21 11:37 |
2015-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
271780
|
- |
|
huawei
|
espace_firmware
|
An unspecified module in Huawei eSpace U1910, U1911, U1930, U1960, U1980, and U1981 unified gateways with software before V200R003C00SPC300 does not properly initialize memory when processing timeout…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-8083
|
2024-11-21 11:37 |
2015-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
