CVE List - 2015 / June
Showing 301 - 400 of 495 CVEs for June 2015 (Page 4 of 5)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2015-4152 | 2015-06-15 | Directory traversal vulnerability in the file output plugin in Elasticsearch... |
| CVE-2015-4163 | 2015-06-15 | GNTTABOP_swap_grant_ref in Xen 4.2 through 4.5 does not check the... |
| CVE-2015-4164 | 2015-06-15 | The compat_iret function in Xen 3.1 through 4.5 iterates the... |
| CVE-2015-4559 | 2015-06-15 | Cross-site scripting (XSS) vulnerability in the product deployment feature in... |
| CVE-2015-2804 | 2015-06-16 | The management web interface in Alcatel-Lucent OmniSwitch 6450, 6250, 6850E,... |
| CVE-2015-2805 | 2015-06-16 | Cross-site request forgery (CSRF) vulnerability in sec/content/sec_asa_users_local_db_add.html in the management... |
| CVE-2015-3010 | 2015-06-16 | ceph-deploy before 1.5.23 uses weak permissions (644) for ceph/ceph.client.admin.keyring, which... |
| CVE-2015-3205 | 2015-06-16 | libmimedir allows remote attackers to execute arbitrary code via a... |
| CVE-2015-3395 | 2015-06-16 | The msrle_decode_pal4 function in msrledec.c in Libav before 10.7 and... |
| CVE-2015-4606 | 2015-06-16 | Unrestricted file upload vulnerability in the Job Fair (jobfair) extension... |
| CVE-2015-4607 | 2015-06-16 | Unrestricted file upload vulnerability in the Frontend User Upload (feupload)... |
| CVE-2015-4608 | 2015-06-16 | Cross-site scripting (XSS) vulnerability in the BE User Log (beko_beuserlog)... |
| CVE-2015-4609 | 2015-06-16 | SQL injection vulnerability in the wt_directory extension before 1.4.2 for... |
| CVE-2015-4610 | 2015-06-16 | SQL injection vulnerability in the Store Locator (locator) extension before... |
| CVE-2015-4611 | 2015-06-16 | SQL injection vulnerability in the Smoelenboek (ncgov_smoelenboek) extension before 1.0.9... |
| CVE-2015-4612 | 2015-06-16 | SQL injection vulnerability in the "FAQ - Frequently Asked Questions"... |
| CVE-2015-4613 | 2015-06-16 | SQL injection vulnerability in the backend module in the Developer... |
| CVE-2015-4374 | 2015-06-16 | Cross-site scripting (XSS) vulnerability in the Webform module before 6.x-3.23,... |
| CVE-2015-4398 | 2015-06-16 | Open redirect vulnerability in the Chaos tool suite (ctools) module... |
| CVE-2015-0546 | 2015-06-17 | EMC Unified Infrastructure Manager/Provisioning (UIM/P) 4.1 allows remote attackers to... |
| CVE-2015-3316 | 2015-06-17 | CA Common Services, as used in CA Client Automation r12.5... |
| CVE-2015-3317 | 2015-06-17 | CA Common Services, as used in CA Client Automation r12.5... |
| CVE-2015-3318 | 2015-06-17 | CA Common Services, as used in CA Client Automation r12.5... |
| CVE-2015-4183 | 2015-06-17 | Cisco UCS Central Software 1.2(1a) allows local users to gain... |
| CVE-2015-4186 | 2015-06-17 | The diagnostics subsystem in the administrative web interface on Cisco... |
| CVE-2015-4188 | 2015-06-17 | SQL injection vulnerability in the Manager interface in Cisco Prime... |
| CVE-2015-4190 | 2015-06-17 | Cisco Cloud Portal in Cisco Prime Service Catalog 9.4.1_vortex on... |
| CVE-2015-4550 | 2015-06-17 | The Cavium cryptographic-module firmware on Cisco Adaptive Security Appliance (ASA)... |
| CVE-2012-6692 | 2015-06-17 | Cross-site scripting (XSS) vulnerability in js/wp-seo-metabox.js in the WordPress SEO... |
| CVE-2015-2665 | 2015-06-17 | Cross-site scripting (XSS) vulnerability in Cacti before 0.8.8d allows remote... |
| CVE-2015-2803 | 2015-06-17 | SQL injection vulnerability in mod1/index.php in the Akronymmanager (sb_akronymmanager) extension... |
| CVE-2015-3429 | 2015-06-17 | Cross-site scripting (XSS) vulnerability in example.html in Genericons before 3.3.1,... |
| CVE-2015-4336 | 2015-06-17 | cloner.functions.php in the XCloner plugin 3.1.2 for WordPress allows remote... |
| CVE-2015-4337 | 2015-06-17 | Cross-site scripting (XSS) vulnerability in the XCloner plugin 3.1.2 for... |
| CVE-2015-4338 | 2015-06-17 | Static code injection vulnerability in the XCloner plugin 3.1.2 for... |
| CVE-2015-4342 | 2015-06-17 | SQL injection vulnerability in Cacti before 0.8.8d allows remote attackers... |
| CVE-2015-4414 | 2015-06-17 | Directory traversal vulnerability in download_audio.php in the SE HTML5 Album... |
| CVE-2015-4454 | 2015-06-17 | SQL injection vulnerability in the get_hash_graph_template function in lib/functions.php in... |
| CVE-2015-2861 | 2015-06-18 | Cross-site request forgery (CSRF) vulnerability in Vesta Control Panel before... |
| CVE-2015-4628 | 2015-06-18 | SQL injection vulnerability in application/controllers/admin/questiongroups.php in LimeSurvey before 2.06+ Build... |
| CVE-2015-3422 | 2015-06-18 | Cross-site scripting (XSS) vulnerability in SearchBlox before 8.2.1 allows remote... |
| CVE-2015-3897 | 2015-06-18 | Directory traversal vulnerability in Bonita BPM Portal before 6.5.3 allows... |
| CVE-2015-4139 | 2015-06-18 | Cross-site scripting (XSS) vulnerability in smilies4wp.php in the WP Smiley... |
| CVE-2015-4140 | 2015-06-18 | Cross-site request forgery (CSRF) vulnerability in the WP Smiley plugin... |
| CVE-2015-4420 | 2015-06-18 | Multiple cross-site scripting (XSS) vulnerabilities in Opsview 4.6.2 and earlier... |
| CVE-2015-4587 | 2015-06-18 | Cross-site scripting (XSS) vulnerability in the Alcatel-Lucent CellPipe 7130 router... |
| CVE-2015-4654 | 2015-06-18 | SQL injection vulnerability in the EQ Event Calendar component for... |
| CVE-2015-4655 | 2015-06-18 | Cross-site scripting (XSS) vulnerability in Synology DiskStation Manager (DSM) before... |
| CVE-2015-4656 | 2015-06-18 | Multiple cross-site scripting (XSS) vulnerabilities in Synology Photo Station before... |
| CVE-2015-4657 | 2015-06-18 | Cross-site scripting (XSS) vulnerability in Mailbird 2.0.16.0 and earlier allows... |
| CVE-2015-4659 | 2015-06-18 | Cross-site request forgery (CSRF) vulnerability in ClickHeat 1.14 and earlier... |
| CVE-2015-4660 | 2015-06-18 | Cross-site scripting (XSS) vulnerability in Enhanced SQL Portal 5.0.7961 allows... |
| CVE-2015-4661 | 2015-06-18 | Cross-site scripting (XSS) vulnerability in Symphony CMS 2.6.2 allows remote... |
| CVE-2015-4658 | 2015-06-18 | Multiple SQL injection vulnerabilities in admin/login.php in Milw0rm Clone Script... |
| CVE-2015-4191 | 2015-06-19 | Cisco IOS XR 5.2.1 allows remote attackers to cause a... |
| CVE-2015-4194 | 2015-06-19 | The web-based administrative interface in Cisco WebEx Meeting Center provides... |
| CVE-2015-4195 | 2015-06-19 | Cisco IOS XR 5.1.1.K9SEC allows remote authenticated users to cause... |
| CVE-2015-2797 | 2015-06-19 | Stack-based buffer overflow in AirTies Air 6372, 5760, 5750, 5650TT,... |
| CVE-2015-4640 | 2015-06-19 | The SwiftKey language-pack update implementation on Samsung Galaxy S4, S4... |
| CVE-2015-4641 | 2015-06-19 | Directory traversal vulnerability in the SwiftKey language-pack update implementation on... |
| CVE-2015-4675 | 2015-06-19 | Buffer overflow in the Tiny SRP library (aka TinySRP) allows... |
| CVE-2015-4676 | 2015-06-19 | SQL injection vulnerability in ticket.php in TickFa 1.x allows remote... |
| CVE-2015-4677 | 2015-06-19 | Cross-site request forgery (CSRF) vulnerability in FiverrScript (aka Fiverr Script)... |
| CVE-2015-4678 | 2015-06-19 | SQL injection vulnerability in Persian Car CMS 1.0 allows remote... |
| CVE-2015-4679 | 2015-06-19 | Multiple cross-site scripting (XSS) vulnerabilities in the web interface in... |
| CVE-2015-4201 | 2015-06-20 | The Gateway General Packet Radio Service Support Node (GGSN) component... |
| CVE-2015-4197 | 2015-06-20 | Cisco NX-OS 5.2(5) on Nexus 7000 devices allows remote attackers... |
| CVE-2015-4198 | 2015-06-20 | Cross-site scripting (XSS) vulnerability in the web framework on Cisco... |
| CVE-2015-4202 | 2015-06-20 | Cisco IOS 12.2SCH on uBR10000 router Cable Modem Termination Systems... |
| CVE-2015-0526 | 2015-06-22 | Multiple cross-site scripting (XSS) vulnerabilities in EMC RSA Validation Manager... |
| CVE-2015-4590 | 2015-06-22 | The extractFrom function in Internals/QuotedString.cpp in Arduino JSON before 4.5... |
| CVE-2015-4713 | 2015-06-22 | SQL injection vulnerability in ApPHP Hotel Site 3.x.x allows remote... |
| CVE-2015-4714 | 2015-06-22 | Cross-site scripting (XSS) vulnerability in the DreamBox DM500-S allows remote... |
| CVE-2015-3231 | 2015-06-22 | The Render cache system in Drupal 7.x before 7.38, when... |
| CVE-2015-3232 | 2015-06-22 | Open redirect vulnerability in the Field UI module in Drupal... |
| CVE-2015-3233 | 2015-06-22 | Open redirect vulnerability in the Overlay module in Drupal 7.x... |
| CVE-2015-3234 | 2015-06-22 | The OpenID module in Drupal 6.x before 6.36 and 7.x... |
| CVE-2015-3236 | 2015-06-22 | cURL and libcurl 7.40.0 through 7.42.1 send the HTTP Basic... |
| CVE-2015-3237 | 2015-06-22 | The smb_request_state function in cURL and libcurl 7.40.0 through 7.42.1... |
| CVE-2015-4200 | 2015-06-23 | Memory leak in the IPv6-to-IPv4 functionality in Cisco IOS 15.3S... |
| CVE-2015-4204 | 2015-06-23 | Memory leak in Cisco IOS 12.2 in the Performance Routing... |
| CVE-2015-4189 | 2015-06-23 | Cross-site request forgery (CSRF) vulnerability in Cisco Data Center Analytics... |
| CVE-2015-4203 | 2015-06-23 | Race condition in Cisco IOS 12.2SCH in the Performance Routing... |
| CVE-2015-4205 | 2015-06-23 | Cisco IOS XR 5.3.1 on ASR 9000 devices allows remote... |
| CVE-2015-4207 | 2015-06-23 | Cisco WebEx Meeting Center places a meeting's access number in... |
| CVE-2015-4209 | 2015-06-23 | Cisco WebEx Meeting Center does not properly determine authorization for... |
| CVE-2015-4210 | 2015-06-23 | Cross-site scripting (XSS) vulnerability in Cisco WebEx Meeting Center allows... |
| CVE-2015-4586 | 2015-06-23 | Cross-site request forgery (CSRF) vulnerability in Alcatel-Lucent CellPipe 7130 RG... |
| CVE-2015-4725 | 2015-06-23 | Cross-site scripting (XSS) vulnerability in forgot.php in AudioShare 2.0.2 allows... |
| CVE-2015-4726 | 2015-06-23 | PHP remote file inclusion vulnerability in ajax/myajaxphp.php in AudioShare 2.0.2... |
| CVE-2014-4882 | 2015-06-23 | Aptexx Resident Anywhere does not require authentication, which allows remote... |
| CVE-2015-0972 | 2015-06-23 | Pearson ProctorCache before 2015.1.17 uses the same hardcoded password across... |
| CVE-2015-2860 | 2015-06-23 | Directory traversal vulnerability in Avigilon Control Center (ACC) 4 before... |
| CVE-2015-2859 | 2015-06-23 | Intel McAfee ePolicy Orchestrator (ePO) 4.x through 4.6.9 and 5.x... |
| CVE-2015-3113 | 2015-06-23 | Heap-based buffer overflow in Adobe Flash Player before 13.0.0.296 and... |
| CVE-2014-4875 | 2015-06-24 | CreateBossCredentials.jar in Toshiba CHEC before 6.6 build 4014 and 6.7... |
| CVE-2015-2308 | 2015-06-24 | Eval injection vulnerability in the HttpCache class in HttpKernel in... |
| CVE-2015-3109 | 2015-06-24 | Adobe Photoshop CC before 16.0 (aka 2015.0.0) allows attackers to... |
| CVE-2015-3110 | 2015-06-24 | Integer overflow in Adobe Photoshop CC before 16.0 (aka 2015.0.0)... |
| CVE-2015-3111 | 2015-06-24 | Heap-based buffer overflow in Adobe Photoshop CC before 16.0 (aka... |