|
283691
|
- |
|
phpkit
|
phpkit
|
Cross-site scripting (XSS) vulnerability in the poll archive in PHPKIT 1.6.6 (Build 160014) allows remote attackers to inject arbitrary web script or HTML via the result parameter to upload_files/pk/…
|
CWE-79
Cross-site Scripting
|
CVE-2015-1052
|
2024-11-21 11:24 |
2015-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283692
|
- |
|
context_project
fedoraproject
|
context
fedora
|
Open redirect vulnerability in the Context UI module in the Context module 7.x-3.x before 7.x-3.6 for Drupal allows remote attackers to redirect users to arbitrary web sites and conduct phishing atta…
|
NVD-CWE-Other
|
CVE-2015-1051
|
2024-11-21 11:24 |
2015-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283693
|
- |
|
f5
|
big-ip_application_security_manager
|
Cross-site scripting (XSS) vulnerability in F5 BIG-IP Application Security Manager (ASM) before 11.6 allows remote attackers to inject arbitrary web script or HTML via the Response Body field when cr…
|
CWE-79
Cross-site Scripting
|
CVE-2015-1050
|
2024-11-21 11:24 |
2015-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283694
|
- |
|
e107
|
e107
|
Cross-site scripting (XSS) vulnerability in e107_admin/filemanager.php in e107 1.0.4 allows remote attackers to inject arbitrary web script or HTML via the e107_files/ file path in the QUERY_STRING.
|
CWE-79
Cross-site Scripting
|
CVE-2015-1041
|
2024-11-21 11:24 |
2015-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283695
|
- |
|
bedita
|
bedita
|
Multiple cross-site scripting (XSS) vulnerabilities in the administrative backend in BEdita 3.4.0 allow remote authenticated users to inject arbitrary web script or HTML via the (1) lrealname field i…
|
CWE-79
Cross-site Scripting
|
CVE-2015-1040
|
2024-11-21 11:24 |
2015-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283696
|
- |
|
zfcuser_project
|
zfcuser
|
Cross-site scripting (XSS) vulnerability in user/login.phtml in ZF-Commons ZfcUser before 1.2.2 allows remote attackers to inject arbitrary web script or HTML via the redirect parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2015-1039
|
2024-11-21 11:24 |
2015-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283697
|
- |
|
mcafee
|
epolicy_orchestrator
|
McAfee ePolicy Orchestrator (ePO) before 4.6.9 and 5.x before 5.1.2 uses the same secret key across different customers' installations, which allows attackers to obtain the administrator password by …
|
CWE-200
Information Exposure
|
CVE-2015-0922
|
2024-11-21 11:24 |
2015-01-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283698
|
- |
|
mcafee
|
epolicy_orchestrator
|
XML external entity (XXE) vulnerability in the Server Task Log in McAfee ePolicy Orchestrator (ePO) before 4.6.9 and 5.x before 5.1.2 allows remote authenticated users to read arbitrary files via the…
|
NVD-CWE-Other
|
CVE-2015-0921
|
2024-11-21 11:24 |
2015-01-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283699
|
5.9 |
MEDIUM
Network
|
line
|
line
|
LINE for Android version 5.0.2 and earlier and LINE for iOS version 5.0.0 and earlier are vulnerable to MITM (man-in-the-middle) attack since the application allows non-SSL/TLS communications. As a r…
|
CWE-924
Improper Enforcement of Message Integrity During Transmission in a Communication Channel
|
CVE-2015-0897
|
2024-11-21 11:23 |
2023-10-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283700
|
10.0 |
CRITICAL
Network
|
google
|
native_client
|
NaCl in 2015 allowed the CLFLUSH instruction, making rowhammer attacks possible.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-0565
|
2024-11-21 11:23 |
2020-02-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
