CVE List - 2015 / September
Showing 1 - 100 of 493 CVEs for September 2015 (Page 1 of 5)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2013-7444 | 2015-09-01 | The Special:Contributions page in MediaWiki before 1.22.0 allows remote attackers... |
| CVE-2015-2807 | 2015-09-01 | Cross-site scripting (XSS) vulnerability in js/window.php in the Navis DocumentCloud... |
| CVE-2015-6520 | 2015-09-01 | IPPUSBXD before 1.22 listens on all interfaces, which allows remote... |
| CVE-2015-6727 | 2015-09-01 | The Special:DeletedContributions page in MediaWiki before 1.23.10, 1.24.x before 1.24.3,... |
| CVE-2015-6728 | 2015-09-01 | The ApiBase::getWatchlistUser function in MediaWiki before 1.23.10, 1.24.x before 1.24.3,... |
| CVE-2015-6729 | 2015-09-01 | Cross-site scripting (XSS) vulnerability in thumb.php in MediaWiki before 1.23.10,... |
| CVE-2015-6730 | 2015-09-01 | Cross-site scripting (XSS) vulnerability in thumb.php in MediaWiki before 1.23.10,... |
| CVE-2015-6731 | 2015-09-01 | Multiple cross-site scripting (XSS) vulnerabilities in the SemanticForms extension for... |
| CVE-2015-6732 | 2015-09-01 | Multiple cross-site scripting (XSS) vulnerabilities in the SemanticForms extension for... |
| CVE-2015-6733 | 2015-09-01 | GeSHi, as used in the SyntaxHighlight_GeSHi extension and MediaWiki before... |
| CVE-2015-6734 | 2015-09-01 | Cross-site scripting (XSS) vulnerability in contrib/cssgen.php in the GeSHi, as... |
| CVE-2015-6735 | 2015-09-01 | The reset functionality in the TimedMediaHandler extension for MediaWiki does... |
| CVE-2015-6736 | 2015-09-01 | The Quiz extension for MediaWiki allows remote attackers to cause... |
| CVE-2015-6737 | 2015-09-01 | Cross-site scripting (XSS) vulnerability in the Widgets extension for MediaWiki... |
| CVE-2015-6587 | 2015-09-02 | The vlserver in OpenAFS before 1.6.13 allows remote authenticated users... |
| CVE-2015-3308 | 2015-09-02 | Double free vulnerability in lib/x509/x509_ext.c in GnuTLS before 3.3.14 allows... |
| CVE-2015-6805 | 2015-09-02 | Cross-site scripting (XSS) vulnerability in the MDC Private Message plugin... |
| CVE-2015-4330 | 2015-09-02 | A local file script in Cisco TelePresence Video Communication Server... |
| CVE-2015-6274 | 2015-09-02 | The IPv4 implementation on Cisco ASR 1000 devices with software... |
| CVE-2015-6277 | 2015-09-02 | The ARP implementation in Cisco NX-OS on Nexus 1000V devices... |
| CVE-2015-4077 | 2015-09-03 | The (1) mdare64_48.sys, (2) mdare32_48.sys, (3) mdare32_52.sys, and (4) mdare64_52.sys... |
| CVE-2015-5189 | 2015-09-03 | Race condition in pcsd in PCS 0.9.139 and earlier uses... |
| CVE-2015-5190 | 2015-09-03 | The pcsd web UI in PCS 0.9.139 and earlier allows... |
| CVE-2015-5735 | 2015-09-03 | The (1) mdare64_48.sys, (2) mdare32_48.sys, (3) mdare32_52.sys, and (4) mdare64_52.sys... |
| CVE-2015-5736 | 2015-09-03 | The Fortishield.sys driver in Fortinet FortiClient before 5.2.4 allows local... |
| CVE-2015-5737 | 2015-09-03 | The (1) mdare64_48.sys, (2) mdare32_48.sys, (3) mdare32_52.sys, (4) mdare64_52.sys, and... |
| CVE-2015-6506 | 2015-09-03 | Cross-site scripting (XSS) vulnerability in the cryptography interface in Request... |
| CVE-2015-6654 | 2015-09-03 | The xenmem_add_to_physmap_one function in arch/arm/mm.c in Xen 4.5.x, 4.4.x, and... |
| CVE-2015-1516 | 2015-09-03 | Cross-site scripting (XSS) vulnerability in Polycom RealPresence CloudAXIS Suite before... |
| CVE-2015-4552 | 2015-09-03 | Cross-site scripting (XSS) vulnerability in the quick edit function in... |
| CVE-2015-6545 | 2015-09-03 | Cross-site request forgery (CSRF) vulnerability in ajax.php in Cerb before... |
| CVE-2015-1291 | 2015-09-03 | The ContainerNode::parserRemoveChild function in core/dom/ContainerNode.cpp in Blink, as used in... |
| CVE-2015-1292 | 2015-09-03 | The NavigatorServiceWorker::serviceWorker function in modules/serviceworkers/NavigatorServiceWorker.cpp in Blink, as used in... |
| CVE-2015-1293 | 2015-09-03 | The DOM implementation in Blink, as used in Google Chrome... |
| CVE-2015-1294 | 2015-09-03 | Use-after-free vulnerability in the SkMatrix::invertNonIdentity function in core/SkMatrix.cpp in Skia,... |
| CVE-2015-1295 | 2015-09-03 | Multiple use-after-free vulnerabilities in the PrintWebViewHelper class in components/printing/renderer/print_web_view_helper.cc in... |
| CVE-2015-1296 | 2015-09-03 | The UnescapeURLWithAdjustmentsImpl implementation in net/base/escape.cc in Google Chrome before 45.0.2454.85... |
| CVE-2015-1297 | 2015-09-03 | The WebRequest API implementation in extensions/browser/api/web_request/web_request_api.cc in Google Chrome before... |
| CVE-2015-1298 | 2015-09-03 | The RuntimeEventRouter::OnExtensionUninstalled function in extensions/browser/api/runtime/runtime_api.cc in Google Chrome before 45.0.2454.85... |
| CVE-2015-1299 | 2015-09-03 | Use-after-free vulnerability in the shared-timer implementation in Blink, as used... |
| CVE-2015-1300 | 2015-09-03 | The FrameFetchContext::updateTimingInfoForIFrameNavigation function in core/loader/FrameFetchContext.cpp in Blink, as used in... |
| CVE-2015-1301 | 2015-09-03 | Multiple unspecified vulnerabilities in Google Chrome before 45.0.2454.85 allow attackers... |
| CVE-2015-6580 | 2015-09-03 | Multiple unspecified vulnerabilities in Google V8 before 4.5.103.29, as used... |
| CVE-2015-6581 | 2015-09-03 | Double free vulnerability in the opj_j2k_copy_default_tcp_and_create_tcd function in j2k.c in... |
| CVE-2015-6582 | 2015-09-03 | The decompose function in platform/transforms/TransformationMatrix.cpp in Blink, as used in... |
| CVE-2015-6583 | 2015-09-03 | Google Chrome before 45.0.2454.85 does not display a location bar... |
| CVE-2015-4538 | 2015-09-04 | The XML parser in EMC Atmos before 2.2.3.426 and 2.3.x... |
| CVE-2015-4544 | 2015-09-04 | EMC Documentum Content Server before 7.1P20 and 7.2.x before 7.2P04... |
| CVE-2015-6259 | 2015-09-04 | The JavaServer Pages (JSP) component in Cisco Integrated Management Controller... |
| CVE-2014-9605 | 2015-09-04 | WebUpgrade in Netsweeper before 3.1.10, 4.0.x before 4.0.9, and 4.1.x... |
| CVE-2015-5612 | 2015-09-04 | Cross-site scripting (XSS) vulnerability in October CMS build 271 and... |
| CVE-2015-5688 | 2015-09-04 | Directory traversal vulnerability in lib/app/index.js in Geddy before 13.0.8 for... |
| CVE-2015-6807 | 2015-09-04 | Cross-site scripting (XSS) vulnerability in the Mass Contact module 6.x-1.x... |
| CVE-2015-6808 | 2015-09-04 | Cross-site scripting (XSS) vulnerability in the Spotlight module 7.x-1.x before... |
| CVE-2015-6809 | 2015-09-04 | Multiple cross-site scripting (XSS) vulnerabilities in BEdita before 3.6.0 allow... |
| CVE-2015-6810 | 2015-09-04 | Cross-site scripting (XSS) vulnerability in Invision Power Services IPS Community... |
| CVE-2015-6811 | 2015-09-04 | SQL injection vulnerability in the Sophos Cyberoam CR500iNG-XP firewall appliance... |
| CVE-2015-6812 | 2015-09-04 | Invision Power Services IPS Community Suite (aka Invision Power Board,... |
| CVE-2015-2990 | 2015-09-05 | Directory traversal vulnerability in zhtml.cgi in NEOJAPAN desknet NEO 2.0R1.0... |
| CVE-2015-2991 | 2015-09-05 | Buffer overflow in NScripter before 3.00 allows remote attackers to... |
| CVE-2015-5722 | 2015-09-05 | buffer.c in named in ISC BIND 9.x before 9.9.7-P3 and... |
| CVE-2015-5986 | 2015-09-05 | openpgpkey_61.c in named in ISC BIND 9.9.7 before 9.9.7-P3 and... |
| CVE-2015-6276 | 2015-09-05 | Cisco TelePresence IX5000 8.0.3 stores a private key associated with... |
| CVE-2015-2985 | 2015-09-05 | Cross-site scripting (XSS) vulnerability in guide-park.com BBS X102 1.03 allows... |
| CVE-2015-2986 | 2015-09-05 | Cross-site scripting (XSS) vulnerability in rakuto.net hitSuji (rktSNS2) 0.2.2b allows... |
| CVE-2015-6818 | 2015-09-06 | The decode_ihdr_chunk function in libavcodec/pngdec.c in FFmpeg before 2.7.2 does... |
| CVE-2015-6819 | 2015-09-06 | Multiple integer underflows in the ff_mjpeg_decode_frame function in libavcodec/mjpegdec.c in... |
| CVE-2015-6820 | 2015-09-06 | The ff_sbr_apply function in libavcodec/aacsbr.c in FFmpeg before 2.7.2 does... |
| CVE-2015-6821 | 2015-09-06 | The ff_mpv_common_init function in libavcodec/mpegvideo.c in FFmpeg before 2.7.2 does... |
| CVE-2015-6822 | 2015-09-06 | The destroy_buffers function in libavcodec/sanm.c in FFmpeg before 2.7.2 does... |
| CVE-2015-6823 | 2015-09-06 | The allocate_buffers function in libavcodec/alac.c in FFmpeg before 2.7.2 does... |
| CVE-2015-6824 | 2015-09-06 | The sws_init_context function in libswscale/utils.c in FFmpeg before 2.7.2 does... |
| CVE-2015-6825 | 2015-09-06 | The ff_frame_thread_init function in libavcodec/pthread_frame.c in FFmpeg before 2.7.2 mishandles... |
| CVE-2015-6826 | 2015-09-06 | The ff_rv34_decode_init_thread_copy function in libavcodec/rv34.c in FFmpeg before 2.7.2 does... |
| CVE-2015-2989 | 2015-09-07 | Cross-site scripting (XSS) vulnerability in index.php in LEMON-S PHP Twit... |
| CVE-2015-5624 | 2015-09-07 | Buffer overflow in the ExecCall method in c2lv6.ocx in the... |
| CVE-2015-5625 | 2015-09-07 | Cross-site scripting (XSS) vulnerability in OpenDocMan before 1.3.4 allows remote... |
| CVE-2015-1841 | 2015-09-08 | The Web Admin interface in Red Hat Enterprise Virtualization Manager... |
| CVE-2015-3241 | 2015-09-08 | OpenStack Compute (nova) 2015.1 through 2015.1.1, 2014.2.3, and earlier does... |
| CVE-2015-3247 | 2015-09-08 | Race condition in the worker_update_monitors_config function in SPICE 0.12.4 allows... |
| CVE-2015-5198 | 2015-09-08 | libvdpau before 1.1.1, when used in a setuid or setgid... |
| CVE-2015-5199 | 2015-09-08 | Directory traversal vulnerability in dlopen in libvdpau before 1.1.1 allows... |
| CVE-2015-5200 | 2015-09-08 | The trace functionality in libvdpau before 1.1.1, when used in... |
| CVE-2015-5250 | 2015-09-08 | The API server in OpenShift Origin 1.0.5 allows remote attackers... |
| CVE-2015-2483 | 2015-09-09 | Microsoft Internet Explorer 10 and 11 allows remote attackers to... |
| CVE-2015-2484 | 2015-09-09 | Microsoft Internet Explorer 10 and 11 uses an incorrect flag... |
| CVE-2015-2485 | 2015-09-09 | Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow... |
| CVE-2015-2486 | 2015-09-09 | Microsoft Internet Explorer 7 through 11 and Microsoft Edge allow... |
| CVE-2015-2487 | 2015-09-09 | Microsoft Internet Explorer 7 through 11 allows remote attackers to... |
| CVE-2015-2489 | 2015-09-09 | Microsoft Internet Explorer 11 allows remote attackers to gain privileges... |
| CVE-2015-2490 | 2015-09-09 | Microsoft Internet Explorer 7 through 11 allows remote attackers to... |
| CVE-2015-2491 | 2015-09-09 | Microsoft Internet Explorer 9 through 11 allows remote attackers to... |
| CVE-2015-2492 | 2015-09-09 | Microsoft Internet Explorer 7 through 11 allows remote attackers to... |
| CVE-2015-2493 | 2015-09-09 | The (1) VBScript and (2) JScript engines in Microsoft Internet... |
| CVE-2015-2494 | 2015-09-09 | Microsoft Internet Explorer 7 through 11 and Microsoft Edge allow... |
| CVE-2015-2498 | 2015-09-09 | Microsoft Internet Explorer 7 through 11 allows remote attackers to... |
| CVE-2015-2499 | 2015-09-09 | Microsoft Internet Explorer 7 through 11 allows remote attackers to... |
| CVE-2015-2500 | 2015-09-09 | Microsoft Internet Explorer 7 and 8 allows remote attackers to... |
| CVE-2015-2501 | 2015-09-09 | Microsoft Internet Explorer 9 allows remote attackers to execute arbitrary... |
| CVE-2015-2504 | 2015-09-09 | Microsoft .NET Framework 2.0 SP2, 3.5, 3.5.1, 4, 4.5, 4.5.1,... |