CVE-2025-15380

creationtimestamp| type| source ---|---|--- 2026-01-20 15:49:42+00:00| seen| https://gist.github.com/Darkcrai86/d68667a9da77d005a228a52c0e4ed0e3 2026-01-20 16:18:02+00:00| seen| https://gist.github.com/Darkcrai86/0835fc88520335094d5e25113acf81aa 2026-01-20 16:56:11+00:00| seen|...

CVE-2019-15380

The Fly Photo Pro Android device with a build fingerprint of Fly/PhotoPro/PhotoPro:8.1.0/O11019/1528117003:user/release-keys contains a pre-installed app with a package name of com.mediatek.wfo.impl app versionCode=27, versionName=8.1.0 that allows any app co-located on the device to modify a...

CVE-2021-46586

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Bentley MicroStation CONNECT 10.16.0.80. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists...

CVE-2021-46586

Bentley MicroStation CONNECT (affected version 10.16.0.80) is vulnerable due to a flaw in 3DS file parsing that can trigger a write past the end of an allocated buffer, enabling remote code execution. Exploitation requires user interaction (visiting a malicious page or opening a malicious file); ...

CVE-2020-15380

Brocade SANnav before version 2.1.1 logs account credentials at the ‘trace’ logging level...

CVE-2020-15380

Brocade SANnav before version 2.1.1 logs account credentials at the trace logging level, exposing sensitive information. Affected product: Broadcom/Brocade SANnav prior to 2.1.1. Root cause: verbose logging of credentials. Impact: credential exposure risk; no exploitation details are provided in ...

Cisco HyperFlex Software Command Injection (cisco-sa-20190220-hyperflex-injection)

According to its self-reported version, Cisco HyperFlex HX Data Platform is affected by a vulnerability in the cluster service manager due to insufficient input validation. An unauthenticated, adjacent attacker can exploit this, by connecting to the cluster service manager and injecting commands...

CVE-2019-15380

The CVE-2019-15380 entry describes a vulnerability in Fly Photo Pro (Android 8.1.0) where a pre-installed app (com.mediatek.wfo.impl, versionCode 27) exposes an interface that allows any co-located app to modify a system property without proper authorization. This is achieved via an exported inte...

CVE-2019-15380

The Fly Photo Pro Android device with a build fingerprint of Fly/PhotoPro/PhotoPro:8.1.0/O11019/1528117003:user/release-keys contains a pre-installed app with a package name of com.mediatek.wfo.impl app versionCode=27, versionName=8.1.0 that allows any app co-located on the device to modify a...

CVE-2018-15380

creationtimestamp| type| source ---|---|--- 2019-02-21 03:14:08+00:00| seen| https://t.me/cibsecurity/2649...

CVE-2018-15380 Cisco HyperFlex Software Command Injection Vulnerability

A vulnerability in the cluster service manager of Cisco HyperFlex Software could allow an unauthenticated, adjacent attacker to execute commands as the root user. The vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by connecting to the cluster...

CVE-2018-15380

Cisco HyperFlex Software contains a vulnerability in the cluster service manager due to insufficient input validation. An unauthenticated, adjacent attacker can connect to the cluster service manager and inject commands into the bound process, enabling execution of commands on the affected host a...

CVE-2017-15380

The CVE-2017-15380 entry corresponds to a cross‑site scripting (XSS) vulnerability in E‑SIC version 1.0, exploitable via the /cadastro/index.php registration page and the nome parameter. Public references indicate a potential remote script injection vector, with impacts limited to user context (n...