CVE List - 2015 / June
Showing 1 - 100 of 495 CVEs for June 2015 (Page 1 of 5)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2015-0211 | 2015-06-01 | mod/lti/ajax.php in Moodle through 2.5.9, 2.6.x before 2.6.7, 2.7.x before... |
| CVE-2015-0212 | 2015-06-01 | Cross-site scripting (XSS) vulnerability in course/pending.php in Moodle through 2.5.9,... |
| CVE-2015-0213 | 2015-06-01 | Multiple cross-site request forgery (CSRF) vulnerabilities in (1) editcategories.html and... |
| CVE-2015-0214 | 2015-06-01 | message/externallib.php in Moodle through 2.5.9, 2.6.x before 2.6.7, 2.7.x before... |
| CVE-2015-0215 | 2015-06-01 | calendar/externallib.php in Moodle through 2.5.9, 2.6.x before 2.6.7, 2.7.x before... |
| CVE-2015-0216 | 2015-06-01 | access.php in the Lesson module in Moodle 2.8.x before 2.8.2... |
| CVE-2015-0217 | 2015-06-01 | filter/mediaplugin/filter.php in Moodle through 2.5.9, 2.6.x before 2.6.7, 2.7.x before... |
| CVE-2015-0218 | 2015-06-01 | Cross-site request forgery (CSRF) vulnerability in auth/shibboleth/logout.php in Moodle through... |
| CVE-2015-1493 | 2015-06-01 | Directory traversal vulnerability in the min_get_slash_argument function in lib/configonlylib.php in... |
| CVE-2015-2266 | 2015-06-01 | message/index.php in Moodle through 2.5.9, 2.6.x before 2.6.9, 2.7.x before... |
| CVE-2015-2267 | 2015-06-01 | mdeploy.php in Moodle through 2.5.9, 2.6.x before 2.6.9, 2.7.x before... |
| CVE-2015-2268 | 2015-06-01 | filter/urltolink/filter.php in Moodle through 2.5.9, 2.6.x before 2.6.9, 2.7.x before... |
| CVE-2015-2269 | 2015-06-01 | Multiple cross-site scripting (XSS) vulnerabilities in lib/javascript-static.js in Moodle through... |
| CVE-2015-2270 | 2015-06-01 | lib/moodlelib.php in Moodle through 2.5.9, 2.6.x before 2.6.9, 2.7.x before... |
| CVE-2015-2271 | 2015-06-01 | tag/user.php in Moodle through 2.5.9, 2.6.x before 2.6.9, 2.7.x before... |
| CVE-2015-2272 | 2015-06-01 | login/token.php in Moodle through 2.5.9, 2.6.x before 2.6.9, 2.7.x before... |
| CVE-2015-2273 | 2015-06-01 | Cross-site scripting (XSS) vulnerability in mod/quiz/report/statistics/statistics_question_table.php in Moodle through 2.5.9,... |
| CVE-2015-3174 | 2015-06-01 | mod/quiz/db/access.php in Moodle through 2.5.9, 2.6.x before 2.6.11, 2.7.x before... |
| CVE-2015-3175 | 2015-06-01 | Multiple open redirect vulnerabilities in Moodle through 2.5.9, 2.6.x before... |
| CVE-2015-3176 | 2015-06-01 | The account-confirmation feature in login/confirm.php in Moodle through 2.5.9, 2.6.x... |
| CVE-2015-3177 | 2015-06-01 | Moodle 2.8.x before 2.8.6 does not consider the tool/monitor:subscribe capability... |
| CVE-2015-3178 | 2015-06-01 | Cross-site scripting (XSS) vulnerability in the external_format_text function in lib/externallib.php... |
| CVE-2015-3179 | 2015-06-01 | login/confirm.php in Moodle through 2.5.9, 2.6.x before 2.6.11, 2.7.x before... |
| CVE-2015-3180 | 2015-06-01 | lib/navigationlib.php in Moodle through 2.5.9, 2.6.x before 2.6.11, 2.7.x before... |
| CVE-2015-3181 | 2015-06-01 | files/externallib.php in Moodle through 2.5.9, 2.6.x before 2.6.11, 2.7.x before... |
| CVE-2014-0999 | 2015-06-02 | Sendio before 7.2.4 includes the session identifier in URLs in... |
| CVE-2014-8391 | 2015-06-02 | The Web interface in Sendio before 7.2.4 does not properly... |
| CVE-2015-0759 | 2015-06-02 | Cross-site request forgery (CSRF) vulnerability in Cisco Headend Digital Broadband... |
| CVE-2015-0850 | 2015-06-02 | The Git plugin for FusionForge before 6.0rc4 allows remote attackers... |
| CVE-2015-1945 | 2015-06-02 | Unspecified vulnerability in the Reference Data Management component in IBM... |
| CVE-2015-2278 | 2015-06-02 | The LZH decompression implementation (CsObjectInt::BuildHufTree function in vpa108csulzh.cpp) in SAP... |
| CVE-2015-2282 | 2015-06-02 | Stack-based buffer overflow in the LZC decompression implementation (CsObjectInt::CsDecomprLZC function... |
| CVE-2015-2944 | 2015-06-02 | Multiple cross-site scripting (XSS) vulnerabilities in Apache Sling API before... |
| CVE-2015-3982 | 2015-06-02 | The session.flush function in the cached_db backend in Django 1.8.x... |
| CVE-2015-4050 | 2015-06-02 | FragmentListener in the HttpKernel component in Symfony 2.3.19 through 2.3.28,... |
| CVE-2015-4094 | 2015-06-02 | The Thycotic Password Manager Secret Server application through 2.3 for... |
| CVE-2015-4155 | 2015-06-02 | GNU Parallel before 20150422, when using (1) --pipe, (2) --tmux,... |
| CVE-2015-4156 | 2015-06-02 | GNU Parallel before 20150522 (Nepal), when using (1) --cat or... |
| CVE-2015-4157 | 2015-06-02 | SAP Content Server allows remote attackers to cause a denial... |
| CVE-2015-4158 | 2015-06-02 | SAP ABAP & Java Server allows remote attackers to cause... |
| CVE-2015-4159 | 2015-06-02 | SQL injection vulnerability in SAP HANA Web-based Development Workbench allows... |
| CVE-2015-4160 | 2015-06-02 | SQL injection vulnerability in SAP ASE Database Platform allows remote... |
| CVE-2015-4161 | 2015-06-02 | SAP Afaria does not properly restrict access to unspecified functionality,... |
| CVE-2015-4162 | 2015-06-02 | XML external entity (XXE) vulnerability in the management interface in... |
| CVE-2014-9721 | 2015-06-03 | libzmq before 4.0.6 and 4.1.x before 4.1.1 allows remote attackers... |
| CVE-2015-0263 | 2015-06-03 | XML external entity (XXE) vulnerability in the XML converter setup... |
| CVE-2015-0264 | 2015-06-03 | Multiple XML external entity (XXE) vulnerabilities in builder/xml/XPathBuilder.java in Apache... |
| CVE-2015-4038 | 2015-06-03 | The WP Membership plugin 1.2.3 for WordPress allows remote authenticated... |
| CVE-2015-4103 | 2015-06-03 | Xen 3.3.x through 4.5.x does not properly restrict write access... |
| CVE-2015-4104 | 2015-06-03 | Xen 3.3.x through 4.5.x does not properly restrict access to... |
| CVE-2015-4105 | 2015-06-03 | Xen 3.3.x through 4.5.x enables logging for PCI MSI-X pass-through... |
| CVE-2015-4106 | 2015-06-03 | QEMU does not properly restrict write access to the PCI... |
| CVE-2015-0760 | 2015-06-04 | The IKEv1 implementation in Cisco ASA Software 7.x, 8.0.x, 8.1.x,... |
| CVE-2015-0761 | 2015-06-04 | Cisco AnyConnect Secure Mobility Client before 3.1(8009) and 4.x before... |
| CVE-2015-0762 | 2015-06-04 | Cross-site scripting (XSS) vulnerability in the management interface in Cisco... |
| CVE-2015-0763 | 2015-06-04 | Cisco Unified MeetingPlace 8.6(1.2) does not properly validate session IDs... |
| CVE-2015-0764 | 2015-06-04 | Cisco Unified MeetingPlace 8.6(1.9) allows remote attackers to read arbitrary... |
| CVE-2015-0765 | 2015-06-04 | Cisco ONS 15454 System Software 10.30 and 10.301 allows remote... |
| CVE-2015-0766 | 2015-06-04 | Multiple cross-site scripting (XSS) vulnerabilities in the administrative web interface... |
| CVE-2014-9201 | 2015-06-05 | Beckwith Electric M-6200 Digital Voltage Regulator Control with firmware before... |
| CVE-2015-0541 | 2015-06-05 | Cross-site request forgery (CSRF) vulnerability in EMC RSA Web Threat... |
| CVE-2015-1000 | 2015-06-05 | Stack-based buffer overflow in the OpenForIPCamTest method in the RTSPVIDEO.rtspvideoCtrl.1... |
| CVE-2015-2124 | 2015-06-05 | Unspecified vulnerability in Easy Setup Wizard in HP ThinPro Linux... |
| CVE-2015-2950 | 2015-06-05 | Directory traversal vulnerability in the Brandon Bowles Open Explorer application... |
| CVE-2015-2951 | 2015-06-05 | JWT.php in F21 JWT before 2.0 allows remote attackers to... |
| CVE-2015-3950 | 2015-06-05 | Cross-site request forgery (CSRF) vulnerability in XZERES 442SR OS on... |
| CVE-2014-6175 | 2015-06-07 | Cross-site scripting (XSS) vulnerability in IBM Marketing Operations 7.x and... |
| CVE-2014-6222 | 2015-06-07 | Directory traversal vulnerability in IBM Marketing Operations 7.x and 8.x... |
| CVE-2014-8887 | 2015-06-07 | IBM Marketing Operations 7.x and 8.x before 8.5.0.7.2, 8.6.x before... |
| CVE-2015-0112 | 2015-06-07 | Jazz Team Server in Jazz Foundation in IBM Rational Collaborative... |
| CVE-2015-0767 | 2015-06-07 | Cisco Edge 300 software 1.0 and 1.1 on Edge 340... |
| CVE-2015-0770 | 2015-06-07 | CRLF injection vulnerability in Cisco TelePresence TC 6.x before 6.3.4... |
| CVE-2015-2125 | 2015-06-07 | Unspecified vulnerability in HP WebInspect 7.x through 10.4 before 10.4... |
| CVE-2010-5323 | 2015-06-07 | Directory traversal vulnerability in UploadServlet in the Remote Management component... |
| CVE-2010-5324 | 2015-06-07 | Directory traversal vulnerability in UploadServlet in the Remote Management component... |
| CVE-2014-0230 | 2015-06-07 | Apache Tomcat 6.x before 6.0.44, 7.x before 7.0.55, and 8.x... |
| CVE-2014-7810 | 2015-06-07 | The Expression Language (EL) implementation in Apache Tomcat 6.x before... |
| CVE-2015-0779 | 2015-06-07 | Directory traversal vulnerability in UploadServlet in Novell ZENworks Configuration Management... |
| CVE-2015-4001 | 2015-06-07 | Integer signedness error in the oz_hcd_get_desc_cnf function in drivers/staging/ozwpan/ozhcd.c in... |
| CVE-2015-4002 | 2015-06-07 | drivers/staging/ozwpan/ozusbsvc1.c in the OZWPAN driver in the Linux kernel through... |
| CVE-2015-4003 | 2015-06-07 | The oz_usb_handle_ep_data function in drivers/staging/ozwpan/ozusbsvc1.c in the OZWPAN driver in... |
| CVE-2015-4004 | 2015-06-07 | The OZWPAN driver in the Linux kernel through 4.0.5 relies... |
| CVE-2014-6284 | 2015-06-08 | SAP Adaptive Server Enterprise (ASE) before 15.7 SP132 and 16.0... |
| CVE-2015-2993 | 2015-06-08 | SysAid Help Desk before 15.2 does not properly restrict access... |
| CVE-2015-2994 | 2015-06-08 | Unrestricted file upload vulnerability in ChangePhoto.jsp in SysAid Help Desk... |
| CVE-2015-2995 | 2015-06-08 | The RdsLogsEntry servlet in SysAid Help Desk before 15.2 does... |
| CVE-2015-2996 | 2015-06-08 | Multiple directory traversal vulnerabilities in SysAid Help Desk before 15.2... |
| CVE-2015-2997 | 2015-06-08 | SysAid Help Desk before 15.2 allows remote attackers to obtain... |
| CVE-2015-2998 | 2015-06-08 | SysAid Help Desk before 15.2 uses a hardcoded encryption key,... |
| CVE-2015-2999 | 2015-06-08 | Multiple SQL injection vulnerabilities in SysAid Help Desk before 15.2... |
| CVE-2015-3000 | 2015-06-08 | SysAid Help Desk before 15.2 allows remote attackers to cause... |
| CVE-2015-3001 | 2015-06-08 | SysAid Help Desk before 15.2 uses a hardcoded password of... |
| CVE-2015-3201 | 2015-06-08 | Thermostat before 2.0.0 uses world-readable permissions for the web.xml configuration... |
| CVE-2015-3905 | 2015-06-08 | Buffer overflow in the set_cs_start function in t1disasm.c in t1utils... |
| CVE-2015-4051 | 2015-06-08 | Beckhoff IPC Diagnostics before 1.8 does not properly restrict access... |
| CVE-2015-4053 | 2015-06-08 | The admin command in ceph-deploy before 1.5.25 uses world-readable permissions... |
| CVE-2014-9284 | 2015-06-09 | The Buffalo WHR-1166DHP 1.60 and earlier, WSR-600DHP 1.60 and earlier,... |
| CVE-2015-2959 | 2015-06-09 | Zoho NetFlow Analyzer build 10250 and earlier does not check... |
| CVE-2015-2960 | 2015-06-09 | Cross-site scripting (XSS) vulnerability in Zoho NetFlow Analyzer build 10250... |
| CVE-2015-2961 | 2015-06-09 | Cross-site request forgery (CSRF) vulnerability in Zoho NetFlow Analyzer build... |