|
278321
|
- |
|
shiromuku
|
guestbook
|
Cross-site scripting (XSS) vulnerability in Mrs. Shiromuku Perl CGI shiromuku(u1)GUESTBOOK 1.62 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2015-0871
|
2024-11-21 11:23 |
2015-02-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278322
|
- |
|
cisco
|
unified_ip_phones_9900_series_firmware
|
The mobility extension on Cisco Unified IP 9900 phones with firmware 9.4(.1) and earlier allows remote attackers to obtain sensitive information by sniffing the network, aka Bug ID CSCuq12117.
|
CWE-200
Information Exposure
|
CVE-2015-0602
|
2024-11-21 11:23 |
2015-02-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278323
|
- |
|
cisco
|
unified_ip_phones_9900_series_firmware
|
The mobility extension on Cisco Unified IP 9900 phones with firmware 9.4(.1) and earlier allows remote attackers to cause a denial of service (logoff) via crafted packets, aka Bug ID CSCuq12139.
|
CWE-20
Improper Input Validation
|
CVE-2015-0600
|
2024-11-21 11:23 |
2015-02-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278324
|
- |
|
cisco
|
webex_meetings_server
|
The administrative web interface in Cisco WebEx Meetings Server 1.0 through 1.5 allows remote authenticated users to execute arbitrary OS commands with root privileges via unspecified fields, aka Bug…
|
CWE-20
Improper Input Validation
|
CVE-2015-0589
|
2024-11-21 11:23 |
2015-02-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278325
|
- |
|
cisco
|
asyncos
|
The uuencode inspection engine in Cisco AsyncOS on Cisco Email Security Appliance (ESA) devices 8.5 and earlier allows remote attackers to bypass intended content restrictions via a crafted e-mail at…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-0605
|
2024-11-21 11:23 |
2015-02-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278326
|
- |
|
cisco
|
unified_ip_phones_9971_firmware
unified_ip_phones_9951_firmware
|
The web framework on Cisco Unified IP 9900 phones with firmware 9.4(.1) and earlier allows remote attackers to upload files to arbitrary locations on a phone's filesystem via crafted HTTP requests, a…
|
CWE-20
Improper Input Validation
|
CVE-2015-0604
|
2024-11-21 11:23 |
2015-02-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278327
|
- |
|
cisco
|
unified_ip_phones_9900_series_firmware
|
Cisco Unified IP 9900 phones with firmware 9.4(.1) and earlier use weak permissions for unspecified files, which allows local users to cause a denial of service (persistent hang or reboot) by writing…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2015-0603
|
2024-11-21 11:23 |
2015-02-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278328
|
- |
|
cisco
|
unified_ip_phones_9971_firmware
unified_ip_phones_9951_firmware
|
Cisco Unified IP 9900 phones with firmware 9.4(.1) and earlier allow local users to cause a denial of service (device reload) via crafted commands, aka Bug ID CSCup92790.
|
CWE-20
Improper Input Validation
|
CVE-2015-0601
|
2024-11-21 11:23 |
2015-02-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278329
|
- |
|
cisco
|
unified_computing_system
|
The web interface in Cisco Integrated Management Controller in Cisco Unified Computing System (UCS) on C-Series Rack Servers does not properly restrict use of IFRAME elements, which makes it easier f…
|
CWE-254
7PK - Security Features
|
CVE-2015-0599
|
2024-11-21 11:23 |
2015-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278330
|
- |
|
zohocorp
|
manageengine_supportcenter_plus
|
Multiple cross-site scripting (XSS) vulnerabilities in Zoho ManageEngine SupportCenter Plus 7.9 before hotfix 7941 allow remote attackers to inject arbitrary web script or HTML via the (1) fromCustom…
|
CWE-79
Cross-site Scripting
|
CVE-2015-0866
|
2024-11-21 11:23 |
2015-02-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
