CVE-2023-7315 Nagios XI < 5.11.3 XSS via Graph Explorer

Nagios XI versions prior to 5.11.3 are vulnerable to cross-site scripting XSS via the Graph Explorer component. Insufficient validation or escaping of user-supplied input may allow an attacker to inject and execute arbitrary script in the context of a victim's browser...

Linux Distros Unpatched Vulnerability : CVE-2008-7315

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - UI-Dialog 1.09 and earlier allows remote attackers to execute arbitrary commands. CVE-2008-7315 Note that Nessus relies on the presence of the package as report...

MAL-2025-7315 Malicious code in @crabas0npm/facere-cum-commodi (npm)

The package @crabas0npm/facere-cum-commodi was found to contain malicious code...

CVE-2025-7315

IrfanView CADImage Plugin DWG File Parsing Memory Corruption Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView CADImage Plugin. User interaction is required to exploit this vulnerability in that the...

CVE-2025-7315

Affected software/component: IrfanView CADImage Plugin. Vulnerability: Memory corruption and resulting remote code execution during parsing of DWG files due to improper validation of user-supplied data. Root cause: Lack of proper input validation in DWG file parsing leading to memory corruption. ...

CVE-2025-7315

creationtimestamp| type| source ---|---|--- 2025-07-08 03:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-25-562/...

Linux Distros Unpatched Vulnerability : CVE-2015-7315

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Plone 3.3.0 through 3.3.6, 4.0.0 through 4.0.10, 4.1.0 through 4.1.6, 4.2.0 through 4.2.7, 4.3.0 through 4.3.6, and 5.0rc1 allows remote attackers to add a new...

Ubuntu: Security Advisory (USN-7315-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2020-7315

creationtimestamp| type| source ---|---|--- 2025-03-03 06:58:05+00:00| seen| https://poliverso.org/objects/0477a01e-424ebad0-6bee0cbd5f75d218...

CVE-2024-7315

creationtimestamp| type| source ---|---|--- 2024-10-02 08:50:06+00:00| seen| https://t.me/cvedetector/6808...

CVE-2024-7315 Migration, Backup, Staging – WPvivid < 0.9.106 - Unauthenticated Sensitive Data Exposure

The Migration, Backup, Staging WordPress plugin before 0.9.106 does not use sufficient randomness in the filename that is created when generating a backup, which could be bruteforced by attackers to leak sensitive information about said backups...

Security Bulletin: Multiple Security Vulnerabilities in Spring Framework Affect IBM Sterling B2B Integrator

Summary IBM Sterling B2B Integrator has addressed multiple Spring Framework security vulnerabilites. Vulnerability Details CVEID:CVE-2013-4152 DESCRIPTION: Pivotal Spring Framework could allow a remote attacker to obtain sensitive information, caused by an XML External Entity Injection XXE error...

ch.hsr.mas.oms-financialanalyzer:indicators (=1.2.0), ch.hsr.mas.oms-financialanalyzer:oms-api (=1.2.0) +239 more potentially affected by CVE-2013-7315 via org.springframework:spring-oxm (>=3.0.0.RELEASE <=3.2.3.RELEASE)

org.springframework:spring-oxm MAVEN version =3.0.0.RELEASE, =2.6.20, =1.0-RELEASE, =0.9.3, =0.9.3, =0.9.3, =0.9.8, =0.9.3, =0.8.0, =0.8.0, =0.8.0, =1.0.1-RELEASE and more Source cves: CVE-2013-7315 Source advisory: OSV:GHSA-VP63-RRCM-9MPH...

CVE-2020-7315

CVE-2020-7315 is a DLL-injection vulnerability in McAfee Agent (Windows) prior to version 5.6.6. The issue allows local attackers to execute arbitrary code by carefully placing a malicious DLL. Technical details from connected sources indicate the root cause involves improper filtering during con...

Joomla Ek Rishta SQL Injection (CVE-2018-7315)

An SQL injection vulnerability exists in Joomla Ek Rishta component. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary SQL commands on the affected system...

scc.ac.uk Cross Site Scripting vulnerability

Open Bug Bounty ID: OBB-1160342 Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website...

CVE-2019-7315

CVE-2019-7315 affects Genie Access WIP3BVAF WISH IP 3MP IR Auto Focus Bullet Camera devices running 3.x. The connected Nuclei template documents a Local File Inclusion (LFI) vulnerability exposed via the web interface, enabling an attacker to read sensitive files (demonstrated with /etc/shadow). ...

Security Bulletin: Pivotal Spring Framework vulnerabilities affect IBM Tivoli Application Dependency Discovery Manager (TADDM)

Summary Multiple vulnerabilities have been identified in the OpenSource/Pivotal Spring Framework version that is embeddded in IBM Tivoli Application Dependency Discovery Manager TADDM thus requiring an upgrade to Spring Framework version 3.2.13. Vulnerability Details CVEID: CVE-2014-3578...

Security Bulletin: Pivotal Spring Framework as used in IBM QRadar SIEM is vulnerable to various CVE's

Summary OpenSource Pivotal Spring Framework as used in IBM QRadar is susceptible to several vulnerabilities. Vulnerability Details CVEID: CVE-2013-7315 DESCRIPTION: Pivotal Spring Framework could allow a remote attacker to obtain sensitive information, caused by an XML External Entity Injection X...

Security Bulletin: OpenSource Spring Source/Pivotal Spring Framework Vulnerabilities affect IBM Security Guardium (CVE-2013-7315, CVE-2013-4152, CVE-2014-0054)

Summary Pivotal Spring Framework could allow a remote attacker to obtain sensitive information. Vulnerability Details CVEID: CVE-2013-7315 DESCRIPTION: Pivotal Spring Framework could allow a remote attacker to obtain sensitive information, caused by an XML External Entity Injection XXE error when...