|
283401
|
- |
|
dlink
|
dap-1320_firmware
|
D-Link DAP-1320 Rev Ax with firmware before 1.21b05 allows attackers to execute arbitrary commands via unspecified vectors.
|
NVD-CWE-noinfo
|
CVE-2015-2050
|
2024-11-21 11:26 |
2015-02-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283402
|
- |
|
dlink
|
dcs-931l_firmware
|
Unrestricted file upload vulnerability in D-Link DCS-931L with firmware 1.04 and earlier allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension.
|
NVD-CWE-Other
|
CVE-2015-2049
|
2024-11-21 11:26 |
2015-02-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283403
|
- |
|
dlink
|
dcs-931l_firmware
|
Cross-site request forgery (CSRF) vulnerability in D-Link DCS-931L with firmware 1.04 and earlier allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.
|
CWE-352
Origin Validation Error
|
CVE-2015-2048
|
2024-11-21 11:26 |
2015-02-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283404
|
- |
|
typo3
debian
|
typo3
debian_linux
|
The rsaauth extension in TYPO3 4.3.0 through 4.3.14, 4.4.0 through 4.4.15, 4.5.0 through 4.5.39, and 4.6.0 through 4.6.18, when configured for the frontend, allows remote attackers to bypass authenti…
|
CWE-287
Improper Authentication
|
CVE-2015-2047
|
2024-11-21 11:26 |
2015-02-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283405
|
- |
|
cfdbplugin
|
contact_form_db
|
Cross-site scripting (XSS) vulnerability in the Contact Form DB (aka CFDB and contact-form-7-to-database-extension) plugin 2.8.26 for WordPress allows remote attackers to inject arbitrary web script …
|
CWE-79
Cross-site Scripting
|
CVE-2015-2040
|
2024-11-21 11:26 |
2015-02-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283406
|
- |
|
acobot_live_chat_\&_contact_form_project
|
acobot_live_chat_\&_contact_form
|
Multiple cross-site request forgery (CSRF) vulnerabilities in the Acobot Live Chat & Contact Form plugin 2.0 for WordPress allow remote attackers to hijack the authentication of administrators for re…
|
CWE-352
Origin Validation Error
|
CVE-2015-2039
|
2024-11-21 11:26 |
2015-02-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283407
|
- |
|
piwigo
|
piwigo
|
SQL injection vulnerability in the administrative backend in Piwigo before 2.7.4 allows remote administrators to execute arbitrary SQL commands via the user parameter in the history page to admin.php.
|
CWE-89
SQL Injection
|
CVE-2015-2035
|
2024-11-21 11:26 |
2015-02-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283408
|
- |
|
piwigo
|
piwigo
|
Cross-site scripting (XSS) vulnerability in the administrative backend in Piwigo before 2.7.4 allows remote attackers to inject arbitrary web script or HTML via the page parameter to admin.php.
|
CWE-79
Cross-site Scripting
|
CVE-2015-2034
|
2024-11-21 11:26 |
2015-02-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283409
|
- |
|
infoblox
|
netmri
|
Anyterm Daemon in Infoblox Network Automation NetMRI before NETMRI-23483 allows remote attackers to execute arbitrary commands with root privileges via a crafted terminal/anyterm-module request.
|
CWE-287
Improper Authentication
|
CVE-2015-2033
|
2024-11-21 11:26 |
2015-02-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283410
|
- |
|
google_doc_embedder
|
google_doc_embedder
|
Cross-site scripting (XSS) vulnerability in the Google Doc Embedder plugin before 2.5.19 for WordPress allows remote attackers to inject arbitrary web script or HTML via the profile parameter in an e…
|
CWE-79
Cross-site Scripting
|
CVE-2015-1879
|
2024-11-21 11:26 |
2015-02-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
