|
274551
|
- |
|
mozilla
|
firefox
|
Mozilla Firefox before 41.0 on Android allows user-assisted remote attackers to spoof address-bar attributes by leveraging lack of navigation after a paste of a URL with a nonstandard scheme, as demo…
|
CWE-254
7PK - Security Features
|
CVE-2015-4476
|
2024-11-21 11:31 |
2015-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274552
|
- |
|
f5
|
big-ip_analytics
big-ip_protocol_security_module
big-ip_link_controller
big-ip_edge_gateway
big-ip_application_security_manager
big-ip_global_traffic_manager
big-ip_advanced_firewal…
|
The FastL4 virtual server in F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, GTM, Link Controller, and PEM 11.3.0 through 11.5.2 and 11.6.0 through 11.6.0 HF4, BIG-IP Edge Gateway, WebAccelerator, and …
|
CWE-20
Improper Input Validation
|
CVE-2015-4638
|
2024-11-21 11:31 |
2015-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274553
|
- |
|
mozilla
|
bugzilla
|
Util.pm in Bugzilla 2.x, 3.x, and 4.x before 4.2.15, 4.3.x and 4.4.x before 4.4.10, and 5.x before 5.0.1 mishandles long e-mail addresses during account registration, which allows remote attackers to…
|
CWE-20
Improper Input Validation
|
CVE-2015-4499
|
2024-11-21 11:31 |
2015-09-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274554
|
- |
|
emc
|
documentum_content_server
|
EMC Documentum Content Server before 7.1P20 and 7.2.x before 7.2P04 does not properly verify authorization for dm_job object access, which allows remote authenticated users to obtain superuser privil…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-4544
|
2024-11-21 11:31 |
2015-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274555
|
- |
|
emc
|
atmos
|
The XML parser in EMC Atmos before 2.2.3.426 and 2.3.x before 2.3.1.0 allows remote authenticated users to read arbitrary files or cause a denial of service (CPU and memory consumption) via an extern…
|
NVD-CWE-Other
|
CVE-2015-4538
|
2024-11-21 11:31 |
2015-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274556
|
- |
|
mybb
|
mybb
|
Cross-site scripting (XSS) vulnerability in the quick edit function in xmlhttp.php in MyBB (aka MyBulletinBoard) before 1.8.5 allows remote attackers to inject arbitrary web script or HTML via the co…
|
CWE-79
Cross-site Scripting
|
CVE-2015-4552
|
2024-11-21 11:31 |
2015-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274557
|
- |
|
linux
|
linux_kernel
|
The bpf_int_jit_compile function in arch/x86/net/bpf_jit_comp.c in the Linux kernel before 4.0.6 allows local users to cause a denial of service (system crash) by creating a packet filter and then lo…
|
CWE-17
Code
|
CVE-2015-4700
|
2024-11-21 11:31 |
2015-08-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274558
|
- |
|
tibco
|
rendezvous
rendezvous_network_server
messaging_appliance
substation_es
|
Buffer overflow in the HTTP administrative interface in TIBCO Rendezvous before 8.4.4, Rendezvous Network Server before 1.1.1, Substation ES before 2.9.0, and Messaging Appliance before 8.7.2 allows …
|
NVD-CWE-noinfo
|
CVE-2015-4555
|
2024-11-21 11:31 |
2015-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274559
|
- |
|
mozilla
|
firefox
|
The add-on installation feature in Mozilla Firefox before 40.0.3 and Firefox ESR 38.x before 38.2.1 allows remote attackers to bypass an intended user-confirmation requirement by constructing a craft…
|
CWE-254
7PK - Security Features
|
CVE-2015-4498
|
2024-11-21 11:31 |
2015-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
274560
|
- |
|
mozilla
|
firefox
|
Use-after-free vulnerability in the CanvasRenderingContext2D implementation in Mozilla Firefox before 40.0.3 and Firefox ESR 38.x before 38.2.1 allows remote attackers to execute arbitrary code by le…
|
NVD-CWE-Other
|
CVE-2015-4497
|
2024-11-21 11:31 |
2015-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
