|
277481
|
- |
|
kde
|
plasma-workspace
kde-workspace
|
kde-workspace 4.2.0 and plasma-workspace before 5.1.95 allows remote attackers to obtain input events, and consequently obtain passwords, by leveraging access to the X server when the screen is locke…
|
CWE-200
Information Exposure
|
CVE-2015-1308
|
2024-11-21 11:25 |
2015-01-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277482
|
- |
|
kde
|
plasma-workspace
|
plasma-workspace before 5.1.95 allows remote attackers to obtain passwords via a Trojan horse Look and Feel package.
|
CWE-284
Improper Access Control
|
CVE-2015-1307
|
2024-11-21 11:25 |
2015-01-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277483
|
- |
|
osticket
|
osticket
|
Cross-site scripting (XSS) vulnerability in client.inc.php in osTicket before 1.9.5.1 allows remote attackers to inject arbitrary web script or HTML via the lang parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2015-1347
|
2024-11-21 11:25 |
2015-01-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277484
|
- |
|
google
chromium
canonical
|
chrome
chromium
ubuntu_linux
v8
|
Multiple unspecified vulnerabilities in Google V8 before 3.30.33.15, as used in Google Chrome before 40.0.2214.91, allow attackers to cause a denial of service or possibly have other impact via unkno…
|
NVD-CWE-noinfo
|
CVE-2015-1346
|
2024-11-21 11:25 |
2015-01-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277485
|
- |
|
sap
|
enterprise_resource_planning
|
The Dealer Portal in SAP ERP does not properly restrict access, which allows remote attackers to obtain sensitive information, gain privileges, and possibly have other unspecified impact via unknown …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-1312
|
2024-11-21 11:25 |
2015-01-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277486
|
- |
|
sap
|
hana_extended_application_services
|
The Extended Application Services (XS) in SAP HANA allows remote attackers to inject arbitrary ABAP code via unspecified vectors, aka SAP Note 2098906. NOTE: the provenance of this information is un…
|
CWE-94
Code Injection
|
CVE-2015-1311
|
2024-11-21 11:25 |
2015-01-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277487
|
- |
|
sybase
|
adaptive_server_enterprise
|
SQL injection vulnerability in SAP Adaptive Server Enterprise (Sybase ASE) allows remote attackers to execute arbitrary SQL commands via unspecified vectors, aka SAP Note 2113333. NOTE: the provenan…
|
CWE-89
SQL Injection
|
CVE-2015-1310
|
2024-11-21 11:25 |
2015-01-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277488
|
- |
|
sap
|
netweaver_abap
|
XML external entity vulnerability in the Extended Computer Aided Test Tool (eCATT) in SAP NetWeaver AS ABAP 7.31 and earlier allows remote attackers to access arbitrary files via a crafted XML reques…
|
NVD-CWE-Other
|
CVE-2015-1309
|
2024-11-21 11:25 |
2015-01-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277489
|
- |
|
sympa
|
sympa
|
The newsletter posting area in the web interface in Sympa 6.0.x before 6.0.10 and 6.1.x before 6.1.24 allows remote attackers to read arbitrary files via unspecified vectors.
|
CWE-200
Information Exposure
|
CVE-2015-1306
|
2024-11-21 11:25 |
2015-01-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277490
|
5.9 |
MEDIUM
Network
|
samwilson
|
planet-freo
|
A vulnerability was found in planet-freo up to 20150116 and classified as problematic. Affected by this issue is some unknown functionality of the file admin/inc/auth.inc.php. The manipulation of the…
|
-
|
CVE-2015-10129
|
2024-11-21 11:24 |
2024-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
