CVE-2015-3993

Actian Matrix vulnerable versions: 5.1.x (up to 5.1.2.4) and 5.2.x (up to 5.2.0.1). Affected component/function allows remote authenticated users to bypass write-access restrictions and execute UPDATE statements by referencing a table. Root cause details are not explicitly provided in the connect...

Code injection

The IKE implementation in the WS-IPSEC-3 service module in Cisco IOS 12.2 on Catalyst 6500 devices allows remote authenticated users to cause a denial of service device reload by sending a crafted message during IPsec tunnel setup, aka Bug ID CSCur70505...

Medusa - Speedy, Parallel and Modular Login Brute-Forcer

Medusa is intended to be a speedy, massively parallel, modular, login brute-forcer. The goal is to support as many services which allow remote authentication as possible. The author considers following items as some of the key features of this application: Thread-based parallel testing. Brute-for...

Design/Logic Flaw

The Buffalo WHR-1166DHP 1.60 and earlier, WSR-600DHP 1.60 and earlier, WHR-600D 1.60 and earlier, WHR-300HP2 1.60 and earlier, WMR-300 1.60 and earlier, WEX-300 1.60 and earlier, and BHR-4GRV2 1.04 and earlier routers allow remote authenticated users to execute arbitrary OS commands via unspecifi...

CVE-2014-9284

The CVE-2014-9284 entry concerns Buffalo wireless routers, specifically WHR-1166DHP, WSR-600DHP, WHR-600D, WHR-300HP2, WMR-300, WEX-300, and BHR-4GRV2 with affected versions 1.60 (or 1.04 for BHR-4GRV2) and earlier. The issue is an OS command injection vulnerability that can be exploited by an au...

CVE-2015-0760

The IKEv1 implementation in Cisco ASA Software 7.x, 8.0.x, 8.1.x, and 8.2.x before 8.2.2.13 allows remote authenticated users to bypass XAUTH authentication via crafted IKEv1 packets, aka Bug ID CSCus47259...

CVE-2014-8391

CVE-2014-8391 (and CVE-2014-0999) affect Sendio ESP prior to version 7.2.4. The Web interface mishandles sessions, allowing remote authenticated users to access other users’ session data and, in one variant, to disclose session identifiers via URLs in HTTP traffic and similar responses. Two infor...

CVE-2015-4162

XML external entity XXE vulnerability in the management interface in PAN-OS before 5.0.16, 6.x before 6.0.8, and 6.1.x before 6.1.4 allows remote authenticated administrators to obtain sensitive information via crafted XML data...

CVE-2015-2269

Multiple cross-site scripting XSS vulnerabilities in lib/javascript-static.js in Moodle through 2.5.9, 2.6.x before 2.6.9, 2.7.x before 2.7.6, and 2.8.x before 2.8.4 allow remote authenticated users to inject arbitrary web script or HTML via a 1 alt or 2 title attribute in an IMG element...

CVE-2015-0211

mod/lti/ajax.php in Moodle through 2.5.9, 2.6.x before 2.6.7, 2.7.x before 2.7.4, and 2.8.x before 2.8.2 does not consider the moodle/course:manageactivities and mod/lti:addinstance capabilities before proceeding with registered-tool list searches, which allows remote authenticated users to obtai...

CVE-2015-1493

Directory traversal vulnerability in the mingetslashargument function in lib/configonlylib.php in Moodle through 2.5.9, 2.6.x before 2.6.8, 2.7.x before 2.7.5, and 2.8.x before 2.8.3 allows remote authenticated users to read arbitrary files via a .. dot dot in the file parameter, as demonstrated ...

Design/Logic Flaw

files/externallib.php in Moodle through 2.5.9, 2.6.x before 2.6.11, 2.7.x before 2.7.8, and 2.8.x before 2.8.6 does not consider the moodle/user:manageownfiles capability before approving a private-file upload, which allows remote authenticated users to bypass intended file-management restriction...

UBUNTU-CVE-2015-0216

access.php in the Lesson module in Moodle 2.8.x before 2.8.2 does not set the RISKXSS bit for graders, which allows remote authenticated users to conduct cross-site scripting XSS attacks via crafted essay feedback...

WellinTech KingSCADA < 3.1.2.13-EN KAEClientManager Console Remote Authentication Credential Disclosure

Binary data scadakingscadakaeclientmanager.nbin...

CVE-2015-0193

Cross-site scripting XSS vulnerability in IBM Business Process Manager BPM 7.5.x through 7.5.1.2, 8.0.x through 8.0.1.3, and 8.5.x through 8.5.5.0 and WebSphere Lombardi Edition WLE 7.2.x through 7.2.0.5 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL th...

CVE-2015-0754

Cisco Finesse 10.51 allows remote authenticated users to obtain sensitive information or cause a denial of service CPU and memory consumption via a crafted XML document, aka Bug ID CSCut95810...

Session fixation

The grant.xsfunc application in testApps/grantAccess/ in the XS Engine in SAP HANA DB 1.00.73.00.389160 NewDB100REL allows remote authenticated users to spoof log entries via a crafted request, aka SAP Security Note 2109818...

CVE-2015-3995

CVE-2015-3995 concerns SAP HANA DB 1.00.73.00.389160 (NewDB100_REL). A remote, authenticated user can read arbitrary files via an IMPORT FROM SQL statement due to an improper access control weakness. Onapsis’ advisory (linked to CVE-2015-3995) documents the vulnerability class as Improper Access ...

CVE-2015-2123

Unspecified vulnerability in HP NonStop Safeguard Security Software H06.x, L15.02, and J06.x before J06.19 allows remote authenticated users to gain privileges by leveraging Expand access...

CVE-2015-2118

Unspecified vulnerability in the Secure Pull Print and Security Pull Print components in HP Access Control AC Software 12.x through 14.x before 14.1.2 allows remote authenticated users to obtain sensitive information via unknown vectors...