CVE List - 2015 / January
Showing 1 - 100 of 713 CVEs for January 2015 (Page 1 of 8)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2011-5285 | 2015-01-01 | Multiple cross-site scripting (XSS) vulnerabilities in BugFree 2.1.3 allow remote... |
| CVE-2011-5286 | 2015-01-01 | SQL injection vulnerability in social-slider-2/ajax.php in the Social Slider plugin... |
| CVE-2011-5287 | 2015-01-01 | Multiple cross-site scripting (XSS) vulnerabilities in HESK before 2.4.1 allow... |
| CVE-2011-5288 | 2015-01-01 | Multiple buffer overflows in the ThreeDify.ThreeDifyDesigner.1 ActiveX control in ActiveSolid.dll... |
| CVE-2011-5289 | 2015-01-01 | The SaveDecrypted method in the ChilkatCrypt2.ChilkatOmaDrm.1 ActiveX control in ChilkatCrypt2.dll... |
| CVE-2011-5290 | 2015-01-01 | The SaveToFile method in the UniBasicPack.UniTextBox ActiveX control in UniBasic100_EDA1811C.ocx... |
| CVE-2011-5291 | 2015-01-01 | The SaveData method in the Cygnicon.ViewControl.1 ActiveX control in CyViewer.ocx... |
| CVE-2011-5292 | 2015-01-01 | The EaseWeFtp.FtpLibrary ActiveX control in EaseWeFtp.ocx in Easewe FTP OCX... |
| CVE-2011-5293 | 2015-01-01 | The cmdSave method in the ThreeDify.ThreeDifyDesigner.1 ActiveX control in ActiveSolid.dll... |
| CVE-2011-5294 | 2015-01-01 | The SaveMessage method in the LEADeMail.LEADSmtp.20 ActiveX control in LTCML14n.dll... |
| CVE-2011-5295 | 2015-01-01 | Buffer overflow in the Download method in a certain ActiveX... |
| CVE-2011-5296 | 2015-01-01 | Cross-site scripting (XSS) vulnerability in profilo.php in Happy Chat 1.0... |
| CVE-2011-5297 | 2015-01-01 | Multiple cross-site scripting (XSS) vulnerabilities in TTChat 1.0.4 allow remote... |
| CVE-2011-5298 | 2015-01-01 | Multiple cross-site request forgery (CSRF) vulnerabilities in Argyle Social 2011-04-26... |
| CVE-2011-5299 | 2015-01-01 | Multiple cross-site scripting (XSS) vulnerabilities in poMMo Aardvark PR16.1 allow... |
| CVE-2011-5300 | 2015-01-01 | Cross-site request forgery (CSRF) vulnerability in admin/setup/config/users.php in poMMo Aardvark... |
| CVE-2011-5301 | 2015-01-01 | Multiple cross-site scripting (XSS) vulnerabilities in PHPDug 2.0.0 allow remote... |
| CVE-2011-5302 | 2015-01-01 | Cross-site request forgery (CSRF) vulnerability in adm/admin_edit.php in PHPDug 2.0.0... |
| CVE-2011-5303 | 2015-01-01 | Cross-site scripting (XSS) vulnerability in Spitfire CMS 1.0.436 allows remote... |
| CVE-2011-5304 | 2015-01-01 | Multiple cross-site scripting (XSS) vulnerabilities in the Sodahead Polls plugin... |
| CVE-2011-5305 | 2015-01-01 | Multiple cross-site scripting (XSS) vulnerabilities in CosmoShop ePRO 10.05.00 allow... |
| CVE-2011-5306 | 2015-01-01 | Cross-site request forgery (CSRF) vulnerability in cgi-bin/admin/setup_edit.cgi in CosmoShop ePRO... |
| CVE-2011-5307 | 2015-01-01 | Cross-site scripting (XSS) vulnerability in index.php in the PhotoSmash plugin... |
| CVE-2011-5308 | 2015-01-01 | Multiple SQL injection vulnerabilities in cdnvote-post.php in the cdnvote plugin... |
| CVE-2011-5309 | 2015-01-01 | Cross-site scripting (XSS) vulnerability in pages.php in Wikipad 1.6.0 allows... |
| CVE-2011-5310 | 2015-01-01 | Directory traversal vulnerability in pages.php in Wikipad 1.6.0 allows remote... |
| CVE-2011-5311 | 2015-01-01 | Cross-site request forgery (CSRF) vulnerability in pages.php in Wikipad 1.6.0... |
| CVE-2011-5312 | 2015-01-01 | Multiple cross-site scripting (XSS) vulnerabilities in Gollos 2.8 allow remote... |
| CVE-2011-5313 | 2015-01-01 | Multiple SQL injection vulnerabilities in includes/password.php in Redaxscript 0.3.2 allow... |
| CVE-2011-5314 | 2015-01-01 | templates/default/index.php in Redaxscript 0.3.2 allows remote attackers to obtain sensitive... |
| CVE-2011-5315 | 2015-01-01 | Cross-site request forgery (CSRF) vulnerability in admin/index.php in whCMS 0.115... |
| CVE-2011-5316 | 2015-01-01 | Cross-site request forgery (CSRF) vulnerability in admin/index.php in Cambio 0.5a... |
| CVE-2011-5317 | 2015-01-01 | Cross-site scripting (XSS) vulnerability in editText.php in WonderCMS before 0.4... |
| CVE-2011-5318 | 2015-01-01 | Multiple cross-site request forgery (CSRF) vulnerabilities in diafan.CMS before 5.1... |
| CVE-2013-7417 | 2015-01-02 | Cross-site scripting (XSS) vulnerability in cgi-bin/ipinfo.cgi in IPCop (aka IPCop... |
| CVE-2014-9436 | 2015-01-02 | Absolute path traversal vulnerability in SysAid On-Premise before 14.4.2 allows... |
| CVE-2014-9437 | 2015-01-02 | Multiple cross-site request forgery (CSRF) vulnerabilities in the Sliding Social... |
| CVE-2014-9438 | 2015-01-02 | Cross-site request forgery (CSRF) vulnerability in the Moderator Control Panel... |
| CVE-2014-9439 | 2015-01-02 | Cross-site scripting (XSS) vulnerability in Easy File Sharing Web Server... |
| CVE-2014-9440 | 2015-01-02 | SQL injection vulnerability in browse.php in phpMyRecipes 1.2.2 allows remote... |
| CVE-2014-9441 | 2015-01-02 | Multiple cross-site request forgery (CSRF) vulnerabilities in the Lightbox Photo... |
| CVE-2014-9434 | 2015-01-02 | Cross-site scripting (XSS) vulnerability in admin/managerrelated.php in the administrative backend... |
| CVE-2014-9435 | 2015-01-02 | Multiple SQL injection vulnerabilities in Absolut Engine 1.73 allow remote... |
| CVE-2014-9442 | 2015-01-02 | SQL injection vulnerability in models/Cart66Ajax.php in the Cart66 Lite plugin... |
| CVE-2014-9443 | 2015-01-02 | Cross-site scripting (XSS) vulnerability in the Relevanssi plugin before 3.3.8... |
| CVE-2014-7293 | 2015-01-02 | Cross-site scripting (XSS) vulnerability in the logon page in NYU... |
| CVE-2014-7294 | 2015-01-02 | Open redirect vulnerability in the logon page in NYU OpenSSO... |
| CVE-2014-9445 | 2015-01-02 | SQL injection vulnerability in incl/create.inc.php in Installatron GQ File Manager... |
| CVE-2014-9447 | 2015-01-02 | Directory traversal vulnerability in the read_long_names function in libelf/elf_begin.c in... |
| CVE-2014-9449 | 2015-01-02 | Buffer overflow in the RiffVideo::infoTagsHandler function in riffvideo.cpp in Exiv2... |
| CVE-2014-9451 | 2015-01-02 | Multiple stack-based buffer overflows in the DIVA web service API... |
| CVE-2014-9452 | 2015-01-02 | Directory traversal vulnerability in VDG Security SENSE (formerly DIVA) 2.3.13... |
| CVE-2014-9453 | 2015-01-02 | Multiple cross-site scripting (XSS) vulnerabilities in simple-visitor-stat.php in the Simple... |
| CVE-2014-9454 | 2015-01-02 | Multiple cross-site request forgery (CSRF) vulnerabilities in the Simple Sticky... |
| CVE-2014-9456 | 2015-01-02 | Buffer overflow in NotePad++ 6.6.9 allows remote attackers to have... |
| CVE-2014-9458 | 2015-01-02 | Heap-based buffer overflow in the GDB debugger module in Hex-Rays... |
| CVE-2014-9459 | 2015-01-02 | Cross-site request forgery (CSRF) vulnerability in the AdminObserver function in... |
| CVE-2014-9460 | 2015-01-02 | Multiple cross-site request forgery (CSRF) vulnerabilities in the WP-ViperGB plugin... |
| CVE-2014-9444 | 2015-01-02 | Cross-site scripting (XSS) vulnerability in the Frontend Uploader plugin 0.9.2... |
| CVE-2014-9446 | 2015-01-02 | Multiple cross-site scripting (XSS) vulnerabilities in the Staff client in... |
| CVE-2014-9448 | 2015-01-02 | Buffer overflow in Mini-stream RM-MP3 Converter 3.1.2.1.2010.03.30 allows remote attackers... |
| CVE-2014-9450 | 2015-01-02 | Multiple SQL injection vulnerabilities in chart_bar.php in the frontend in... |
| CVE-2014-9455 | 2015-01-02 | SQL injection vulnerability in showads.php in CTS Projects & Software... |
| CVE-2014-9457 | 2015-01-02 | SQL injection vulnerability in classes/mono_display.class.php in PMB 4.1.3 and earlier... |
| CVE-2014-9428 | 2015-01-02 | The batadv_frag_merge_packets function in net/batman-adv/fragmentation.c in the B.A.T.M.A.N. implementation in... |
| CVE-2013-7418 | 2015-01-02 | cgi-bin/iptablesgui.cgi in IPCop (aka IPCop Firewall) before 2.1.5 allows remote... |
| CVE-2014-9461 | 2015-01-02 | Directory traversal vulnerability in models/Cart66.php in the Cart66 Lite plugin... |
| CVE-2014-9427 | 2015-01-03 | sapi/cgi/cgi_main.c in the CGI component in PHP through 5.4.36, 5.5.x... |
| CVE-2010-5314 | 2015-01-03 | Cross-site scripting (XSS) vulnerability in controllers/home_controller.php in BEdita before 3.1... |
| CVE-2010-5315 | 2015-01-03 | Multiple cross-site request forgery (CSRF) vulnerabilities in BEdita before 3.1... |
| CVE-2010-5316 | 2015-01-03 | Cross-site scripting (XSS) vulnerability in as/index.php in SweetRice CMS before... |
| CVE-2010-5317 | 2015-01-03 | Multiple SQL injection vulnerabilities in index.php in SweetRice CMS before... |
| CVE-2010-5318 | 2015-01-03 | The password-reset feature in as/index.php in SweetRice CMS before 0.6.7.1... |
| CVE-2010-5319 | 2015-01-03 | Multiple cross-site request forgery (CSRF) vulnerabilities in Kandidat CMS 1.4.2... |
| CVE-2010-5320 | 2015-01-03 | Multiple cross-site request forgery (CSRF) vulnerabilities in MemHT Portal 4.0.1... |
| CVE-2014-9464 | 2015-01-03 | SQL injection vulnerability in Category.php in Microweber CMS 0.95 before... |
| CVE-2013-2131 | 2015-01-04 | Format string vulnerability in the rrdtool module 1.4.7 for Python,... |
| CVE-2014-9276 | 2015-01-04 | Cross-site request forgery (CSRF) vulnerability in the Special:ExpandedTemplates page in... |
| CVE-2014-9277 | 2015-01-04 | The wfMangleFlashPolicy function in OutputHandler.php in MediaWiki before 1.19.22, 1.20.x... |
| CVE-2014-9506 | 2015-01-04 | MantisBT before 1.2.18 does not properly check permissions when sending... |
| CVE-2014-9507 | 2015-01-04 | MediaWiki 1.21.x, 1.22.x before 1.22.14, and 1.23.x before 1.23.7, when... |
| CVE-2014-9508 | 2015-01-04 | The frontend rendering component in TYPO3 4.5.x before 4.5.39, 4.6.x... |
| CVE-2014-9509 | 2015-01-04 | The frontend rendering component in TYPO3 4.5.x before 4.5.39, 4.6.x... |
| CVE-2014-1679 | 2015-01-05 | Cross-site scripting (XSS) vulnerability in Open-Xchange (OX) AppSuite before 7.2.2-rev31,... |
| CVE-2014-2598 | 2015-01-05 | Cross-site request forgery (CSRF) vulnerability in the Quick Page/Post Redirect... |
| CVE-2014-8083 | 2015-01-05 | SQL injection vulnerability in the Search::setJsonAlert method in OSClass before... |
| CVE-2014-8084 | 2015-01-05 | Directory traversal vulnerability in oc-includes/osclass/controller/ajax.php in OSClass before 3.4.3 allows... |
| CVE-2014-8085 | 2015-01-05 | Unrestricted file upload vulnerability in the CWebContact::doModel method in oc-includes/osclass/controller/contact.php... |
| CVE-2014-9389 | 2015-01-05 | Directory traversal vulnerability in Sonatype Nexus OSS and Pro before... |
| CVE-2014-9517 | 2015-01-05 | Cross-site scripting (XSS) vulnerability in D-link IP camera DCS-2103 with... |
| CVE-2014-9522 | 2015-01-05 | Multiple cross-site scripting (XSS) vulnerabilities in CMS Papoo Light 6.0.0... |
| CVE-2014-9525 | 2015-01-05 | Multiple cross-site request forgery (CSRF) vulnerabilities in the Timed Popup... |
| CVE-2014-9516 | 2015-01-05 | Cross-site scripting (XSS) vulnerability in Social Microblogging PRO 1.5 allows... |
| CVE-2014-9518 | 2015-01-05 | Cross-site scripting (XSS) vulnerability in login.cgi in D-Link router DIR-655... |
| CVE-2014-9519 | 2015-01-05 | SQL injection vulnerability in login.php in InfiniteWP Admin Panel before... |
| CVE-2014-9520 | 2015-01-05 | SQL injection vulnerability in execute.php in InfiniteWP Admin Panel before... |
| CVE-2014-9521 | 2015-01-05 | Unrestricted file upload vulnerability in uploadScript.php in InfiniteWP Admin Panel... |
| CVE-2014-9523 | 2015-01-05 | Multiple cross-site request forgery (CSRF) vulnerabilities in the Our Team... |
| CVE-2014-9524 | 2015-01-05 | Multiple cross-site request forgery (CSRF) vulnerabilities in the Facebook Like... |
| CVE-2014-9526 | 2015-01-05 | Multiple cross-site scripting (XSS) vulnerabilities in concrete5 5.7.2.1, 5.7.2, and... |