|
281681
|
- |
|
freereprintables
|
articlefr
|
SQL injection vulnerability in the getProfile function in system/profile.functions.php in Free Reprintables ArticleFR 3.0.5 allows remote attackers to execute arbitrary SQL commands via the username …
|
CWE-89
SQL Injection
|
CVE-2015-1364
|
2024-11-21 11:25 |
2015-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281682
|
- |
|
freereprintables
|
articlefr
|
Cross-site scripting (XSS) vulnerability in Free Reprintables ArticleFR 3.0.5 allows remote attackers to inject arbitrary web script or HTML via the q parameter to search/v/.
|
CWE-79
Cross-site Scripting
|
CVE-2015-1363
|
2024-11-21 11:25 |
2015-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281683
|
- |
|
two_pilots
|
exif_pilot
|
Buffer overflow in the Customize 35mm tab in Two Pilots Exif Pilot 4.7.2 allows remote attackers to execute arbitrary code via a long string in the maker element in an XML file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-1362
|
2024-11-21 11:25 |
2015-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281684
|
- |
|
google
|
chrome
|
platform/image-decoders/ImageFrame.h in Blink, as used in Google Chrome before 40.0.2214.91, does not initialize a variable that is used in calls to the Skia SkBitmap::setAlphaType function, which mi…
|
CWE-17
Code
|
CVE-2015-1361
|
2024-11-21 11:25 |
2015-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281685
|
- |
|
google
|
chrome
|
Skia, as used in Google Chrome before 40.0.2214.91, allows remote attackers to cause a denial of service (buffer over-read) or possibly have unspecified other impact via crafted data that is improper…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2015-1360
|
2024-11-21 11:25 |
2015-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281686
|
- |
|
google
|
chrome
|
Multiple off-by-one errors in fpdfapi/fpdf_font/font_int.h in PDFium, as used in Google Chrome before 40.0.2214.91, allow remote attackers to cause a denial of service (buffer overflow) or possibly h…
|
CWE-189
Numeric Errors
|
CVE-2015-1359
|
2024-11-21 11:25 |
2015-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281687
|
- |
|
kde
|
plasma-workspace
kde-workspace
|
kde-workspace 4.2.0 and plasma-workspace before 5.1.95 allows remote attackers to obtain input events, and consequently obtain passwords, by leveraging access to the X server when the screen is locke…
|
CWE-200
Information Exposure
|
CVE-2015-1308
|
2024-11-21 11:25 |
2015-01-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281688
|
- |
|
kde
|
plasma-workspace
|
plasma-workspace before 5.1.95 allows remote attackers to obtain passwords via a Trojan horse Look and Feel package.
|
CWE-284
Improper Access Control
|
CVE-2015-1307
|
2024-11-21 11:25 |
2015-01-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281689
|
- |
|
osticket
|
osticket
|
Cross-site scripting (XSS) vulnerability in client.inc.php in osTicket before 1.9.5.1 allows remote attackers to inject arbitrary web script or HTML via the lang parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2015-1347
|
2024-11-21 11:25 |
2015-01-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281690
|
- |
|
google
chromium
canonical
|
chrome
chromium
ubuntu_linux
v8
|
Multiple unspecified vulnerabilities in Google V8 before 3.30.33.15, as used in Google Chrome before 40.0.2214.91, allow attackers to cause a denial of service or possibly have other impact via unkno…
|
NVD-CWE-noinfo
|
CVE-2015-1346
|
2024-11-21 11:25 |
2015-01-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
