|
283381
|
- |
|
panopoly_magic_project
|
panopoly_magic
|
Cross-site scripting (XSS) vulnerability in the live preview in the Panopoly Magic module before 7.x-1.17 for Drupal allows remote authenticated users to inject arbitrary web script or HTML via a pan…
|
CWE-79
Cross-site Scripting
|
CVE-2015-2086
|
2024-11-21 11:26 |
2015-02-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283382
|
- |
|
cybernetikz
|
easy_social_icons
|
Cross-site request forgery (CSRF) vulnerability in the Easy Social Icons plugin before 1.2.3 for WordPress allows remote attackers to hijack the authentication of administrators for requests that con…
|
CWE-352
Origin Validation Error
|
CVE-2015-2084
|
2024-11-21 11:26 |
2015-02-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283383
|
- |
|
ilch
|
cms
|
Cross-site request forgery (CSRF) vulnerability in Ilch CMS allows remote attackers to hijack the authentication of administrators for requests that add a value to a profile field via a profilefields…
|
CWE-352
Origin Validation Error
|
CVE-2015-2083
|
2024-11-21 11:26 |
2015-02-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283384
|
- |
|
unit4
|
prosoft_hrms
|
Cross-site scripting (XSS) vulnerability in Login.aspx in UNIT4 Prosoft HRMS before 8.14.330.43 allows remote attackers to inject arbitrary web script or HTML via the txtUserID parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2015-2082
|
2024-11-21 11:26 |
2015-02-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283385
|
- |
|
visualware
|
myconnection_server
|
Multiple cross-site scripting (XSS) vulnerabilities in Visualware MyConnection Server 8.2b allow remote attackers to inject arbitrary web script or HTML via the (1) bt, (2) variable, or (3) et parame…
|
CWE-79
Cross-site Scripting
|
CVE-2015-2043
|
2024-11-21 11:26 |
2015-02-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283386
|
- |
|
komodia
|
redirector_sdk
|
The SDK for Komodia Redirector with SSL Digestor, as used in Lavasoft Ad-Aware Web Companion 1.1.885.1766 and Ad-Aware AdBlocker (alpha) 1.3.69.1, Qustodio for Windows, Atom Security, Inc. StaffCop 5…
|
CWE-310
Cryptographic Issues
|
CVE-2015-2078
|
2024-11-21 11:26 |
2015-02-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283387
|
- |
|
komodia
|
redirector_sdk
|
The SDK for Komodia Redirector with SSL Digestor, as used in Lavasoft Ad-Aware Web Companion 1.1.885.1766 and Ad-Aware AdBlocker (alpha) 1.3.69.1, Qustodio for Windows, Atom Security, Inc. StaffCop 5…
|
CWE-200
Information Exposure
|
CVE-2015-2077
|
2024-11-21 11:26 |
2015-02-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283388
|
- |
|
etouch
|
samepage
|
Directory traversal vulnerability in cm/newui/blog/export.jsp in eTouch SamePage Enterprise Edition 4.4.0.0.239 allows remote authenticated users to read arbitrary files via a .. (dot dot) in the fil…
|
CWE-22
Path Traversal
|
CVE-2015-2071
|
2024-11-21 11:26 |
2015-02-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283389
|
- |
|
etouch
|
samepage
|
SQL injection vulnerability in eTouch SamePage Enterprise Edition 4.4.0.0.239 allows remote attackers to execute arbitrary SQL commands via the catId parameter to cm/blogrss/feed.
|
CWE-89
SQL Injection
|
CVE-2015-2070
|
2024-11-21 11:26 |
2015-02-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283390
|
- |
|
woothemes
|
woocommerce
|
Cross-site scripting (XSS) vulnerability in the WooCommerce plugin before 2.2.11 for WordPress allows remote attackers to inject arbitrary web script or HTML via the QUERY_STRING in the wc-reports pa…
|
CWE-79
Cross-site Scripting
|
CVE-2015-2069
|
2024-11-21 11:26 |
2015-02-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
