CVE List - 2015 / September
Showing 101 - 200 of 493 CVEs for September 2015 (Page 2 of 5)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2015-2505 | 2015-09-09 | Outlook Web Access (OWA) in Microsoft Exchange Server 2013 Cumulative... |
| CVE-2015-2506 | 2015-09-09 | atmfd.dll in the Adobe Type Manager Library in Microsoft Windows... |
| CVE-2015-2507 | 2015-09-09 | The Adobe Type Manager Library in Microsoft Windows Vista SP2,... |
| CVE-2015-2508 | 2015-09-09 | The Adobe Type Manager Library in Microsoft Windows 10 allows... |
| CVE-2015-2509 | 2015-09-09 | Windows Media Center in Microsoft Windows Vista SP2, Windows 7... |
| CVE-2015-2510 | 2015-09-09 | Buffer overflow in the Adobe Type Manager Library in Microsoft... |
| CVE-2015-2511 | 2015-09-09 | The kernel-mode driver in Microsoft Windows Vista SP2, Windows Server... |
| CVE-2015-2512 | 2015-09-09 | The Adobe Type Manager Library in Microsoft Windows Vista SP2,... |
| CVE-2015-2513 | 2015-09-09 | Windows Journal in Microsoft Windows Vista SP2, Windows Server 2008... |
| CVE-2015-2514 | 2015-09-09 | Windows Journal in Microsoft Windows Vista SP2, Windows Server 2008... |
| CVE-2015-2516 | 2015-09-09 | Windows Journal in Microsoft Windows Vista SP2, Windows Server 2008... |
| CVE-2015-2517 | 2015-09-09 | The kernel-mode driver in Microsoft Windows Vista SP2, Windows Server... |
| CVE-2015-2518 | 2015-09-09 | The kernel-mode driver in Microsoft Windows Vista SP2, Windows Server... |
| CVE-2015-2519 | 2015-09-09 | Integer overflow in Windows Journal in Microsoft Windows Vista SP2,... |
| CVE-2015-2520 | 2015-09-09 | Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel for Mac... |
| CVE-2015-2521 | 2015-09-09 | Microsoft Excel 2007 SP3, Excel 2010 SP2, Office Compatibility Pack... |
| CVE-2015-2522 | 2015-09-09 | Cross-site scripting (XSS) vulnerability in Microsoft SharePoint Foundation 2013 SP1... |
| CVE-2015-2523 | 2015-09-09 | Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel 2013 SP1,... |
| CVE-2015-2524 | 2015-09-09 | Microsoft Windows 8, Windows 8.1, Windows Server 2012 Gold and... |
| CVE-2015-2525 | 2015-09-09 | Task Scheduler in Microsoft Windows Vista SP2, Windows Server 2008... |
| CVE-2015-2526 | 2015-09-09 | Microsoft .NET Framework 4.5, 4.5.1, 4.5.2, and 4.6 allows remote... |
| CVE-2015-2527 | 2015-09-09 | The process-initialization implementation in win32k.sys in the kernel-mode drivers in... |
| CVE-2015-2528 | 2015-09-09 | Microsoft Windows 8, Windows 8.1, Windows Server 2012 Gold and... |
| CVE-2015-2529 | 2015-09-09 | The kernel in Microsoft Windows 8.1, Windows Server 2012 R2,... |
| CVE-2015-2530 | 2015-09-09 | Windows Journal in Microsoft Windows Vista SP2, Windows Server 2008... |
| CVE-2015-2531 | 2015-09-09 | Cross-site scripting (XSS) vulnerability in the jQuery engine in Microsoft... |
| CVE-2015-2532 | 2015-09-09 | Cross-site scripting (XSS) vulnerability in Microsoft Lync Server 2013 allows... |
| CVE-2015-2534 | 2015-09-09 | Hyper-V in Microsoft Windows 8.1, Windows Server 2012 R2, and... |
| CVE-2015-2535 | 2015-09-09 | Active Directory in Microsoft Windows Server 2008 SP2 and R2... |
| CVE-2015-2536 | 2015-09-09 | Cross-site scripting (XSS) vulnerability in Microsoft Lync Server 2013 and... |
| CVE-2015-2541 | 2015-09-09 | Microsoft Internet Explorer 9 through 11 allows remote attackers to... |
| CVE-2015-2542 | 2015-09-09 | Microsoft Internet Explorer 10 and 11 and Microsoft Edge allow... |
| CVE-2015-2543 | 2015-09-09 | Cross-site scripting (XSS) vulnerability in Outlook Web Access (OWA) in... |
| CVE-2015-2544 | 2015-09-09 | Cross-site scripting (XSS) vulnerability in Outlook Web Access (OWA) in... |
| CVE-2015-6680 | 2015-09-09 | Adobe Shockwave Player before 12.2.0.162 allows attackers to execute arbitrary... |
| CVE-2015-6681 | 2015-09-09 | Adobe Shockwave Player before 12.2.0.162 allows attackers to execute arbitrary... |
| CVE-2015-2545 | 2015-09-09 | Microsoft Office 2007 SP3, 2010 SP2, 2013 SP1, and 2013... |
| CVE-2015-2546 | 2015-09-09 | The kernel-mode driver in Microsoft Windows Vista SP2, Windows Server... |
| CVE-2015-6584 | 2015-09-11 | Cross-site scripting (XSS) vulnerability in the DataTables plugin 1.10.8 and... |
| CVE-2015-6827 | 2015-09-11 | Cross-site request forgery (CSRF) vulnerability in Auto-Exchanger 5.1.0 allows remote... |
| CVE-2014-9208 | 2015-09-11 | Multiple stack-based buffer overflows in unspecified DLL files in Advantech... |
| CVE-2015-3964 | 2015-09-11 | SMA Solar Sunny WebBox has hardcoded passwords, which makes it... |
| CVE-2015-5631 | 2015-09-11 | Cross-site request forgery (CSRF) vulnerability in the Remote UI on... |
| CVE-2015-6464 | 2015-09-11 | The administrative web interface on Moxa EDS-405A and EDS-408A switches... |
| CVE-2015-6465 | 2015-09-11 | The GoAhead web server on Moxa EDS-405A and EDS-408A switches... |
| CVE-2015-6466 | 2015-09-11 | Cross-site scripting (XSS) vulnerability in the Diagnosis Ping feature in... |
| CVE-2015-6675 | 2015-09-11 | Siemens RUGGEDCOM ROS 3.8.0 through 4.1.x permanently enables the IP... |
| CVE-2015-6908 | 2015-09-11 | The ber_get_next function in libraries/liblber/io.c in OpenLDAP 2.4.42 and earlier... |
| CVE-2015-6909 | 2015-09-11 | Cross-site scripting (XSS) vulnerability in the "Create download task via... |
| CVE-2015-6910 | 2015-09-11 | SQL injection vulnerability in Synology Video Station before 1.5-0757 allows... |
| CVE-2015-6911 | 2015-09-11 | SQL injection vulnerability in Synology Video Station before 1.5-0763 allows... |
| CVE-2015-6912 | 2015-09-11 | Synology Video Station before 1.5-0763 allows remote attackers to execute... |
| CVE-2015-6913 | 2015-09-11 | Cross-site scripting (XSS) vulnerability in the "Create download task via... |
| CVE-2015-6914 | 2015-09-11 | Absolute path traversal vulnerability in SiteFactory CMS 5.5.9 allows remote... |
| CVE-2015-6915 | 2015-09-11 | SQL injection vulnerability in Montala Limited ResourceSpace 7.3.7009 and earlier... |
| CVE-2014-7216 | 2015-09-11 | Multiple stack-based buffer overflows in Yahoo! Messenger 11.5.0.228 and earlier... |
| CVE-2015-6920 | 2015-09-11 | Cross-site scripting (XSS) vulnerability in js/window.php in the sourceAFRICA plugin... |
| CVE-2015-6919 | 2015-09-11 | Cross-site scripting (XSS) vulnerability in the googleSearch (CSE) (com_googlesearch_cse) component... |
| CVE-2015-6921 | 2015-09-11 | Cross-site scripting (XSS) vulnerability in the Zendesk Feedback Tab module... |
| CVE-2015-5629 | 2015-09-11 | The NTT Broadband Platform Japan Connected-free Wi-Fi application 1.6.0 and... |
| CVE-2015-5630 | 2015-09-11 | Cross-site scripting (XSS) vulnerability in the NTT Broadband Platform Japan... |
| CVE-2015-2013 | 2015-09-14 | IBM WebSphere MQ 7.0.1 before 7.0.1.13 allows remote attackers to... |
| CVE-2015-4499 | 2015-09-14 | Util.pm in Bugzilla 2.x, 3.x, and 4.x before 4.2.15, 4.3.x... |
| CVE-2015-6285 | 2015-09-14 | Format string vulnerability in Cisco Email Security Appliance (ESA) 7.6.0... |
| CVE-2015-6286 | 2015-09-14 | Cisco Application Visibility and Control (AVC) 15.3(3)JA, when FlexConnect is... |
| CVE-2015-6287 | 2015-09-14 | Cisco Web Security Appliance (WSA) 8.0.6-078 and 8.0.6-115 allows remote... |
| CVE-2015-6288 | 2015-09-14 | Cisco Content Security Management Appliance (SMA) 7.8.0-000 does not properly... |
| CVE-2015-6290 | 2015-09-14 | Cisco Web Security Appliance (WSA) 8.0.7 allows remote HTTP servers... |
| CVE-2015-6830 | 2015-09-14 | libraries/plugins/auth/AuthenticationCookie.class.php in phpMyAdmin 4.3.x before 4.3.13.2 and 4.4.x before 4.4.14.1... |
| CVE-2015-5997 | 2015-09-14 | Impero Education Pro before 5105 uses a hardcoded CBC key... |
| CVE-2015-5998 | 2015-09-14 | Impero Education Pro before 5105 relies on the -1|AUTHENTICATE\x02PASSWORD string... |
| CVE-2014-9745 | 2015-09-14 | The parse_encoding function in type1/t1load.c in FreeType before 2.5.3 allows... |
| CVE-2015-1943 | 2015-09-14 | IBM WebSphere Portal 6.1.0.x through 6.1.0.6 CF27, 6.1.5.x through 6.1.5.3... |
| CVE-2015-4980 | 2015-09-14 | Unspecified vulnerability in IBM WebSphere Commerce 7.0.0.6 through 7.0.0.9 allows... |
| CVE-2015-4947 | 2015-09-15 | Stack-based buffer overflow in the Administration Server in IBM HTTP... |
| CVE-2015-5472 | 2015-09-15 | Absolute path traversal vulnerability in lib/download.php in the IBS Mappro... |
| CVE-2015-6943 | 2015-09-15 | SQL injection vulnerability in the serendipity_checkCommentToken function in include/functions_comments.inc.php in... |
| CVE-2015-6944 | 2015-09-15 | Cross-site request forgery (CSRF) vulnerability in JSP/MySQL Administrador Web 1... |
| CVE-2015-6945 | 2015-09-15 | Cross-site scripting (XSS) vulnerability in JSP/MySQL Administrador Web 1 allows... |
| CVE-2015-6946 | 2015-09-15 | Multiple stack-based buffer overflows in the Reprise License Manager service... |
| CVE-2015-6948 | 2015-09-15 | Heap-based buffer overflow in the Microsoft Word document conversion feature... |
| CVE-2015-6949 | 2015-09-15 | Stack-based buffer overflow in the ASUS TM-AC1900 router allows remote... |
| CVE-2015-5426 | 2015-09-16 | Unspecified vulnerability in HP LoadRunner Controller before 12.50 allows local... |
| CVE-2015-2136 | 2015-09-16 | HP ArcSight Logger before 6.0 P2 allows remote authenticated users... |
| CVE-2015-5440 | 2015-09-16 | HP UCMDB 10.00 and 10.01 before 10.01CUP12, 10.10 and 10.11... |
| CVE-2015-5956 | 2015-09-16 | The sanitizeLocalUrl function in TYPO3 6.x before 6.2.15, 7.x before... |
| CVE-2015-6828 | 2015-09-16 | The tweet_info function in class/__functions.php in the SecureMoz Security Audit... |
| CVE-2015-6829 | 2015-09-16 | Multiple SQL injection vulnerabilities in the getip function in wp-limit-login-attempts.php... |
| CVE-2015-6965 | 2015-09-16 | Multiple cross-site request forgery (CSRF) vulnerabilities in the Contact Form... |
| CVE-2015-6966 | 2015-09-16 | Multiple cross-site request forgery (CSRF) vulnerabilities in Nibbleblog before 4.0.5... |
| CVE-2015-6967 | 2015-09-16 | Unrestricted file upload vulnerability in the My Image plugin in... |
| CVE-2015-6968 | 2015-09-16 | Multiple incomplete blacklist vulnerabilities in the serendipity_isActiveFile function in include/functions_images.inc.php... |
| CVE-2015-6969 | 2015-09-16 | Cross-site scripting (XSS) vulnerability in js/2k11.min.js in the 2k11 theme... |
| CVE-2014-8778 | 2015-09-16 | Checkmarx CxSAST (formerly CxSuite) before 7.1.8 allows remote authenticated users... |
| CVE-2015-1173 | 2015-09-16 | Unit4 Polska TETA Web (formerly TETA Galactica) 22.62.3.4 does not... |
| CVE-2015-3623 | 2015-09-16 | XML external entity (XXE) vulnerability in QlikTech Qlikview before 11.20... |
| CVE-2015-5465 | 2015-09-16 | Silicon Integrated Systems WindowsXP Display Manager (aka VGA Driver Manager... |
| CVE-2015-6929 | 2015-09-16 | Multiple cross-site scripting (XSS) vulnerabilities in Nokia Networks (formerly Nokia... |
| CVE-2015-6972 | 2015-09-16 | Multiple cross-site scripting (XSS) vulnerabilities in Ignite Realtime Openfire 3.10.2... |
| CVE-2015-6973 | 2015-09-16 | Multiple cross-site request forgery (CSRF) vulnerabilities in Ignite Realtime Openfire... |