Lucene search
K

19 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2015-0169

Malware in sbrugna...

3.5CVSS6.4AI score0.00783EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.2 views

EUVD-2015-0154

Malware in sbrugna...

3.5CVSS6.4AI score0.00832EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2015-0165

Malware in sbrugna...

3.5CVSS6.4AI score0.00669EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.2 views

EUVD-2015-0153

Malware in sbrugna...

6CVSS6.4AI score0.00489EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2015-0164

Malware in sbrugna...

6.5CVSS6.4AI score0.01129EPSS
Exploits0References2
CNVD
CNVD
added 2015/06/29 12:0 a.m.3 views

IBM Leads Cross-Site Request Forgery Vulnerability (CNVD-2015-04110)

IBM Leads is a solution from IBM USA for improving the customer management process. The program provides functions such as finding prospects, assigning customers and sending notifications of new customer information. A security vulnerability exists in IBM Leads that stems from the program's failu...

3.5CVSS6.8AI score0.00832EPSS
Exploits0References1
NVD
NVD
added 2015/06/28 10:59 p.m.18 views

CVE-2015-0131

Cross-site scripting XSS vulnerability in IBM Leads 7.x, 8.1.0 before 8.1.0.14, 8.2, 8.5.0 before 8.5.0.7.3, 8.6.0 before 8.6.0.8.1, 9.0.0 through 9.0.0.4, 9.1.0 before 9.1.0.6.1, and 9.1.1 before 9.1.1.0.2 allows remote authenticated users to inject arbitrary web script or HTML via unspecified...

3.5CVSS5.2AI score0.00783EPSS
Exploits0References1
NVD
NVD
added 2015/06/28 10:59 p.m.14 views

CVE-2015-0127

IBM Leads 7.x, 8.1.0 before 8.1.0.14, 8.2, 8.5.0 before 8.5.0.7.3, 8.6.0 before 8.6.0.8.1, 9.0.0 through 9.0.0.4, 9.1.0 before 9.1.0.6.1, and 9.1.1 before 9.1.1.0.2 does not properly restrict use of FRAME elements, which allows remote authenticated users to conduct phishing attacks via a crafted...

3.5CVSS6AI score0.00669EPSS
Exploits0References1
NVD
NVD
added 2015/06/28 10:59 p.m.8 views

CVE-2015-0116

IBM Leads 7.x, 8.1.0 before 8.1.0.14, 8.2, 8.5.0 before 8.5.0.7.3, 8.6.0 before 8.6.0.8.1, 9.0.0 through 9.0.0.4, 9.1.0 before 9.1.0.6.1, and 9.1.1 before 9.1.1.0.2 does not properly restrict the addition of links, which makes it easier for remote authenticated users to conduct cross-site request...

3.5CVSS6.2AI score0.00832EPSS
Exploits0References1
NVD
NVD
added 2015/06/28 10:59 p.m.10 views

CVE-2015-0115

Cross-site request forgery CSRF vulnerability in IBM Leads 7.x, 8.1.0 before 8.1.0.14, 8.2, 8.5.0 before 8.5.0.7.3, 8.6.0 before 8.6.0.8.1, 9.0.0 through 9.0.0.4, 9.1.0 before 9.1.0.6.1, and 9.1.1 before 9.1.1.0.2 allows remote authenticated users to hijack the authentication of customer accounts...

6CVSS6.5AI score0.00489EPSS
Exploits0References1
Prion
Prion
added 2015/06/28 10:59 p.m.19 views

Cross site scripting

Cross-site scripting XSS vulnerability in IBM Leads 7.x, 8.1.0 before 8.1.0.14, 8.2, 8.5.0 before 8.5.0.7.3, 8.6.0 before 8.6.0.8.1, 9.0.0 through 9.0.0.4, 9.1.0 before 9.1.0.6.1, and 9.1.1 before 9.1.1.0.2 allows remote authenticated users to inject arbitrary web script or HTML via unspecified...

3.5CVSS5.5AI score0.00783EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2015/06/28 10:59 p.m.10 views

Cross site request forgery (csrf)

Cross-site request forgery CSRF vulnerability in IBM Leads 7.x, 8.1.0 before 8.1.0.14, 8.2, 8.5.0 before 8.5.0.7.3, 8.6.0 before 8.6.0.8.1, 9.0.0 through 9.0.0.4, 9.1.0 before 9.1.0.6.1, and 9.1.1 before 9.1.1.0.2 allows remote authenticated users to hijack the authentication of customer accounts...

6CVSS7AI score0.00489EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2015/06/28 10:59 p.m.14 views

Design/Logic Flaw

IBM Leads 7.x, 8.1.0 before 8.1.0.14, 8.2, 8.5.0 before 8.5.0.7.3, 8.6.0 before 8.6.0.8.1, 9.0.0 through 9.0.0.4, 9.1.0 before 9.1.0.6.1, and 9.1.1 before 9.1.1.0.2 allows remote authenticated users to bypass intended file-upload restrictions via a modified extension...

6.5CVSS6.5AI score0.01129EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2015/06/28 10:0 p.m.37 views

CVE-2015-0131

CVE-2015-0131 describes a Cross-site scripting (XSS) vulnerability in IBM Leads across multiple versions (7.x; 8.1.0 prior to 8.1.0.14; 8.2; 8.5.0 prior to 8.5.0.7.3; 8.6.0 prior to 8.6.0.8.1; 9.0.0 through 9.0.0.4; 9.1.0 prior to 9.1.0.6.1; 9.1.1 before 9.1.1.0.2) that allows remote authenticate...

3.5CVSS5.2AI score0.00783EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2015/06/28 10:0 p.m.19 views

CVE-2015-0131

Cross-site scripting XSS vulnerability in IBM Leads 7.x, 8.1.0 before 8.1.0.14, 8.2, 8.5.0 before 8.5.0.7.3, 8.6.0 before 8.6.0.8.1, 9.0.0 through 9.0.0.4, 9.1.0 before 9.1.0.6.1, and 9.1.1 before 9.1.1.0.2 allows remote authenticated users to inject arbitrary web script or HTML via unspecified...

5.2AI score0.00783EPSS
Exploits0References1
CVE
CVE
added 2015/06/28 10:0 p.m.38 views

CVE-2015-0115

CVE-2015-0115 is a CSRF vulnerability in IBM Leads affecting multiple versions (7.x; 8.1.0 before 8.1.0.14; 8.2; 8.5.0 before 8.5.0.7.3; 8.6.0 before 8.6.0.8.1; 9.0.0 through 9.0.0.4; 9.1.0 before 9.1.0.6.1; 9.1.1 before 9.1.1.0.2) that allows remote authenticated users to hijack the authenticati...

6CVSS6.7AI score0.00489EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2015/06/28 10:0 p.m.23 views

CVE-2015-0127

IBM Leads 7.x, 8.1.0 before 8.1.0.14, 8.2, 8.5.0 before 8.5.0.7.3, 8.6.0 before 8.6.0.8.1, 9.0.0 through 9.0.0.4, 9.1.0 before 9.1.0.6.1, and 9.1.1 before 9.1.1.0.2 does not properly restrict use of FRAME elements, which allows remote authenticated users to conduct phishing attacks via a crafted...

6AI score0.00669EPSS
Exploits0References1
Cvelist
Cvelist
added 2015/06/28 10:0 p.m.14 views

CVE-2015-0115

Cross-site request forgery CSRF vulnerability in IBM Leads 7.x, 8.1.0 before 8.1.0.14, 8.2, 8.5.0 before 8.5.0.7.3, 8.6.0 before 8.6.0.8.1, 9.0.0 through 9.0.0.4, 9.1.0 before 9.1.0.6.1, and 9.1.1 before 9.1.1.0.2 allows remote authenticated users to hijack the authentication of customer accounts...

6.5AI score0.00489EPSS
Exploits0References1
CVE
CVE
added 2015/06/28 10:0 p.m.44 views

CVE-2015-0116

CVE-2015-0116 affects IBM Leads versions including 7.x, 8.1.0 up to 8.1.0.14, 8.2, 8.5.0 up to 8.5.0.7.3, 8.6.0 up to 8.6.0.8.1, 9.0.0 through 9.0.0.4, 9.1.0 up to 9.1.0.6.1, and 9.1.1 up to 9.1.1.0.2. The issue is a CSRF risk caused by improper restriction of link additions, enabling remote auth...

3.5CVSS6.4AI score0.00832EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder