CVE-2025-15364

creationtimestamp| type| source ---|---|--- 2026-01-06 03:00:52+00:00| published-proof-of-concept| Telegram/rxZzs7ray3g1wpNHhJrywO9yfcDTcZCq5FMaTnag1faYKo...

CVE-2020-15364

The Nexos theme through 1.7 for WordPress allows top-map/?searchlocation= reflected XSS...

CVE-2017-15364

creationtimestamp| type| source ---|---|--- 2025-01-06 22:38:57+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/276...

CVE-2019-15364

creationtimestamp| type| source ---|---|--- 2024-02-14 16:26:39+00:00| seen| https://t.me/ctinow/184768...

CVE-2021-46570

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Bentley View 10.16.0.80. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within th...

Design/Logic Flaw

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Bentley View 10.16.0.80. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within th...

CVE-2021-46570

CVE-2021-46570 affects Bentley View 10.16.0.80. The issue lies in parsing JT files where memory is accessed without prior proper initialization, enabling an attacker to disclose sensitive information and, with other vulnerabilities, execute arbitrary code in the current process after user interac...

WordPress Theme NexosReal Estate 1.7 - 'search_order' SQL Injection

Exploit Title: WordPress Theme NexosReal Estate 1.7 - 'searchorder' SQL Injection Google Dork: inurl:/wp-content/themes/nexos/ Date: 2020-06-17 Exploit Author: Vlad Vector Vendor: Sanljiljan https://themeforest.net/user/sanljiljan Software Version: 1.7 Software Link:...

WordPress NexosReal Estate 1.7 Theme - (search_order) SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: WordPress Theme NexosReal Estate 1.7 - 'searchorder' SQL Injection Google Dork: inurl:/wp-content/themes/nexos/ Exploit Author: Vlad Vector Vendor: Sanljiljan https://themeforest.net/user/sanljiljan Software Version: 1.7 Softwar...

WordPress NexosReal Estate Theme 1.7 Cross Site Scripting / SQL Injection

Exploit Title: WordPress Theme NexosReal Estate 1.7 - 'searchorder' SQL Injection Google Dork: inurl:/wp-content/themes/nexos/ Date: 2020-06-17 Exploit Author: Vlad Vector Vendor: Sanljiljan https://themeforest.net/user/sanljiljan Software Version: 1.7 Software Link:...

CVE-2020-15364

The CVE-2020-15364 entry corresponds to the Nexos Real Estate WordPress Theme (up to v1.7). Connected sources confirm concrete details: vulnerable components are the frontend endpoints top-map/?search_location= (reflected XSS) and side-map/?search_order= (SQL Injection). Attacker could trigger un...

CVE-2019-15364

The CVE-2019-15364 entry concerns the Dexp BL250 Android device (build fingerprint DEXP/BL250/BL250:8.1.0/O11019/1530858027:user/release-keys) featuring a pre-installed app (package: com.mediatek.wfo.impl, versionCode 27, versionName 8.1.0). This component exposes an interface that allows any co-...

CVE-2019-15364

The Dexp BL250 Android device with a build fingerprint of DEXP/BL250/BL250:8.1.0/O11019/1530858027:user/release-keys contains a pre-installed app with a package name of com.mediatek.wfo.impl app versionCode=27, versionName=8.1.0 that allows any app co-located on the device to modify a system...

Trend Micro OfficeScan Information Disclosure Vulnerability (1120678)

Trend Micro OfficeScan is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

CVE-2018-15364

The CVE-2018-15364 entry concerns Trend Micro OfficeScan XG 12.0. It describes a local, information-disclosure vulnerability in the Named Pipe Request Processing path. The root cause is a lack of input validation when processing data from a named pipe, specifically within the Ntrtscan.exe pathway...

CVE-2018-15364

A Named Pipe Request Processing Out-of-Bounds Read Information Disclosure vulnerability in Trend Micro OfficeScan XG 12.0 could allow a local attacker to disclose sensitive information on vulnerable installations. An attacker must first obtain the ability to execute low-privileged code on the...

CVE-2017-15364

The foreach function in ext/ccsv.c in Ccsv 1.1.0 allows remote attackers to cause a denial of service double free and application crash or possibly have unspecified other impact via a crafted file. NOTE: This has been disputed and it is argued that this is not present in version 1.1.0...

CVE-2017-15364

The CVE describes a vulnerability in Ccsv 1.1.0 where the foreach function in ext/ccsv.c can be triggered by a crafted file to cause a denial of service (double free and application crash) or other impact. The connected sources consistently reference ext/ccsv.c and Ccsv 1.1.0; some note disputes ...