|
283541
|
- |
|
arubanetworks
|
clearpass_policy_manager
|
Multiple SQL injection vulnerabilities in Aruba Networks ClearPass Policy Manager (CPPM) before 6.4.5 allow remote administrators to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2015-1392
|
2024-11-21 11:25 |
2015-05-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283542
|
- |
|
arubanetworks
|
clearpass_policy_manager
|
Cross-site scripting (XSS) vulnerability in Aruba Networks ClearPass Policy Manager (CPPM) before 6.4.5 allows remote attackers to inject arbitrary web script or HTML via the username parameter to ti…
|
CWE-79
Cross-site Scripting
|
CVE-2015-1389
|
2024-11-21 11:25 |
2015-05-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283543
|
- |
|
debian
google
|
debian_linux
chrome
|
Multiple unspecified vulnerabilities in Google Chrome before 43.0.2357.65 allow attackers to cause a denial of service or possibly have other impact via unknown vectors.
|
NVD-CWE-noinfo
|
CVE-2015-1265
|
2024-11-21 11:25 |
2015-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283544
|
- |
|
google
debian
|
chrome
debian_linux
|
Cross-site scripting (XSS) vulnerability in Google Chrome before 43.0.2357.65 allows user-assisted remote attackers to inject arbitrary web script or HTML via crafted data that is improperly handled …
|
CWE-79
Cross-site Scripting
|
CVE-2015-1264
|
2024-11-21 11:25 |
2015-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283545
|
- |
|
google
debian
|
chrome
debian_linux
|
The Spellcheck API implementation in Google Chrome before 43.0.2357.65 does not use an HTTPS session for downloading a Hunspell dictionary, which allows man-in-the-middle attackers to deliver incorre…
|
CWE-17
Code
|
CVE-2015-1263
|
2024-11-21 11:25 |
2015-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283546
|
- |
|
google
debian
|
chrome
debian_linux
|
platform/fonts/shaping/HarfBuzzShaper.cpp in Blink, as used in Google Chrome before 43.0.2357.65, does not initialize a certain width field, which allows remote attackers to cause a denial of service…
|
CWE-17
Code
|
CVE-2015-1262
|
2024-11-21 11:25 |
2015-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283547
|
- |
|
debian
google
|
debian_linux
chrome
|
android/java/src/org/chromium/chrome/browser/WebsiteSettingsPopup.java in Google Chrome before 43.0.2357.65 on Android does not properly restrict use of a URL's fragment identifier during constructio…
|
CWE-20
Improper Input Validation
|
CVE-2015-1261
|
2024-11-21 11:25 |
2015-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283548
|
- |
|
debian
google
|
debian_linux
chrome
|
Multiple use-after-free vulnerabilities in content/renderer/media/user_media_client_impl.cc in the WebRTC implementation in Google Chrome before 43.0.2357.65 allow remote attackers to cause a denial …
|
NVD-CWE-Other
|
CVE-2015-1260
|
2024-11-21 11:25 |
2015-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283549
|
- |
|
debian
google
|
debian_linux
chrome
|
PDFium, as used in Google Chrome before 43.0.2357.65, does not properly initialize memory, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via unk…
|
CWE-17
Code
|
CVE-2015-1259
|
2024-11-21 11:25 |
2015-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283550
|
- |
|
debian
google
|
debian_linux
chrome
|
Google Chrome before 43.0.2357.65 relies on libvpx code that was not built with an appropriate --size-limit value, which allows remote attackers to trigger a negative value for a size field, and cons…
|
CWE-189
Numeric Errors
|
CVE-2015-1258
|
2024-11-21 11:25 |
2015-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
