|
277381
|
- |
|
openldap
opensuse
apple
|
openldap
opensuse
mac_os_x
|
Double free vulnerability in the get_vrFilter function in servers/slapd/filter.c in OpenLDAP 2.4.40 allows remote attackers to cause a denial of service (crash) via a crafted search query with a matc…
|
NVD-CWE-Other
|
CVE-2015-1546
|
2024-11-21 11:25 |
2015-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277382
|
- |
|
openldap
|
openldap
|
The deref_parseCtrl function in servers/slapd/overlays/deref.c in OpenLDAP 2.4.13 through 2.4.40 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via an empty…
|
NVD-CWE-Other
|
CVE-2015-1545
|
2024-11-21 11:25 |
2015-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277383
|
- |
|
pragyan_cms_project
|
pragyan_cms
|
SQL injection vulnerability in userprofile.lib.php in Pragyan CMS 3.0 allows remote attackers to execute arbitrary SQL commands via the user parameter to the default URI.
|
CWE-89
SQL Injection
|
CVE-2015-1471
|
2024-11-21 11:25 |
2015-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277384
|
- |
|
gnu
opensuse
|
grep
opensuse
|
The bmexec_trans function in kwset.c in grep 2.19 through 2.21 allows local users to cause a denial of service (out-of-bounds heap read and crash) via crafted input when using the -F option.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-1345
|
2024-11-21 11:25 |
2015-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277385
|
- |
|
web-dorado
|
spider_facebook
|
Multiple cross-site scripting (XSS) vulnerabilities in the Spider Facebook plugin before 1.0.11 for WordPress allow (1) remote attackers to inject arbitrary web script or HTML via the appid parameter…
|
CWE-79
Cross-site Scripting
|
CVE-2015-1582
|
2024-11-21 11:25 |
2015-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277386
|
- |
|
mobile_domain_project
|
mobile_domain
|
Multiple cross-site request forgery (CSRF) vulnerabilities in the Mobile Domain plugin 1.5.2 for WordPress allow remote attackers to hijack the authentication of administrators for requests that (1) …
|
CWE-352
Origin Validation Error
|
CVE-2015-1581
|
2024-11-21 11:25 |
2015-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277387
|
- |
|
redirection_project
|
redirection
|
Multiple cross-site request forgery (CSRF) vulnerabilities in the Redirection Page plugin 1.2 for WordPress allow remote attackers to hijack the authentication of administrators for requests that (1)…
|
CWE-352
Origin Validation Error
|
CVE-2015-1580
|
2024-11-21 11:25 |
2015-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277388
|
- |
|
elegant_themes
|
divi
|
Directory traversal vulnerability in the Elegant Themes Divi theme for WordPress allows remote attackers to read arbitrary files via a .. (dot dot) in the img parameter in a revslider_show_image acti…
|
CWE-22
Path Traversal
|
CVE-2015-1579
|
2024-11-21 11:25 |
2015-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277389
|
- |
|
yuba
|
u5cms
|
Multiple open redirect vulnerabilities in u5CMS before 3.9.4 allow remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the (1) pidvesa cookie to u5admi…
|
NVD-CWE-Other
|
CVE-2015-1578
|
2024-11-21 11:25 |
2015-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277390
|
- |
|
yuba
|
u5cms
|
Directory traversal vulnerability in u5admin/deletefile.php in u5CMS before 3.9.4 allows remote attackers to write to arbitrary files via a (1) .. (dot dot) or (2) full pathname in the f parameter.
|
CWE-22
Path Traversal
|
CVE-2015-1577
|
2024-11-21 11:25 |
2015-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
