|
277861
|
- |
|
ibm
|
leads
|
Cross-site request forgery (CSRF) vulnerability in IBM Leads 7.x, 8.1.0 before 8.1.0.14, 8.2, 8.5.0 before 8.5.0.7.3, 8.6.0 before 8.6.0.8.1, 9.0.0 through 9.0.0.4, 9.1.0 before 9.1.0.6.1, and 9.1.1 …
|
CWE-352
Origin Validation Error
|
CVE-2015-0115
|
2024-11-21 11:22 |
2015-06-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277862
|
- |
|
ibm
|
websphere_mq_internet_pass_thru
|
The HTTP connection-management functionality in Internet Pass-Thru (IPT) before 2.1.0.2 in IBM WebSphere MQ, when HTTPS is disabled, does not properly generate MQIPT Session IDs, which makes it easie…
|
CWE-17
Code
|
CVE-2015-0173
|
2024-11-21 11:22 |
2015-06-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277863
|
- |
|
adobe
|
connect
|
Cross-site scripting (XSS) vulnerability in the web app in Adobe Connect before 9.4 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2015-0344
|
2024-11-21 11:22 |
2015-06-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277864
|
- |
|
adobe
|
connect
|
Cross-site scripting (XSS) vulnerability in admin/home/homepage/search in the web app in Adobe Connect before 9.4 allows remote attackers to inject arbitrary web script or HTML via the query paramete…
|
CWE-79
Cross-site Scripting
|
CVE-2015-0343
|
2024-11-21 11:22 |
2015-06-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277865
|
- |
|
ibm
|
rational_requirements_composer
rhapsody_design_manager
rational_team_concert
rational_quality_manager
rational_software_architect_design_manager
rational_collaborative_lifecycle_manage…
|
Jazz Team Server in Jazz Foundation in IBM Rational Collaborative Lifecycle Management (CLM) 3.0.1, 4.x before 4.0.7 IF5, and 5.x before 5.0.2 IF4; Rational Quality Manager (RQM) 2.0 through 2.0.1, 3…
|
NVD-CWE-Other
|
CVE-2015-0112
|
2024-11-21 11:22 |
2015-06-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277866
|
- |
|
apache
|
camel
|
Multiple XML external entity (XXE) vulnerabilities in builder/xml/XPathBuilder.java in Apache Camel before 2.13.4 and 2.14.x before 2.14.2 allow remote attackers to read arbitrary files via an extern…
|
NVD-CWE-Other
|
CVE-2015-0264
|
2024-11-21 11:22 |
2015-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277867
|
- |
|
apache
|
camel
|
XML external entity (XXE) vulnerability in the XML converter setup in converter/jaxp/XmlConverter.java in Apache Camel before 2.13.4 and 2.14.x before 2.14.2 allows remote attackers to read arbitrary…
|
NVD-CWE-Other
|
CVE-2015-0263
|
2024-11-21 11:22 |
2015-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277868
|
- |
|
moodle
|
moodle
|
Cross-site request forgery (CSRF) vulnerability in auth/shibboleth/logout.php in Moodle through 2.5.9, 2.6.x before 2.6.7, 2.7.x before 2.7.4, and 2.8.x before 2.8.2 allows remote attackers to hijack…
|
CWE-352
Origin Validation Error
|
CVE-2015-0218
|
2024-11-21 11:22 |
2015-06-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277869
|
- |
|
moodle
|
moodle
|
filter/mediaplugin/filter.php in Moodle through 2.5.9, 2.6.x before 2.6.7, 2.7.x before 2.7.4, and 2.8.x before 2.8.2 allows remote authenticated users to cause a denial of service (CPU consumption o…
|
CWE-399
Resource Management Errors
|
CVE-2015-0217
|
2024-11-21 11:22 |
2015-06-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277870
|
- |
|
moodle
|
moodle
|
access.php in the Lesson module in Moodle 2.8.x before 2.8.2 does not set the RISK_XSS bit for graders, which allows remote authenticated users to conduct cross-site scripting (XSS) attacks via craft…
|
CWE-79
Cross-site Scripting
|
CVE-2015-0216
|
2024-11-21 11:22 |
2015-06-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
