Total
22706 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2015-0140 | 1 Ibm | 1 Spss Statistics | 2015-05-26 | 6.8 MEDIUM | N/A |
| An unspecified ActiveX control in IBM SPSS Statistics 22.0 through FP1 on 32-bit platforms allows remote attackers to execute arbitrary code via a crafted HTML document. | |||||
| CVE-2015-0912 | 1 Kozos | 1 Easyctf | 2015-05-01 | 6.5 MEDIUM | N/A |
| EasyCTF before 1.4 allows remote authenticated users to write executable content to files via unspecified vectors. | |||||
| CVE-2013-4866 | 1 Lixil | 1 My Satis Genius Toilet | 2015-04-22 | 3.3 LOW | N/A |
| The LIXIL Corporation My SATIS Genius Toilet application for Android has a hardcoded Bluetooth PIN, which allows physically proximate attackers to trigger physical resource consumption (water or heat) or user discomfort. | |||||
| CVE-2015-0495 | 1 Oracle | 1 Commerce Guided Search And Experience Manager | 2015-04-20 | 7.5 HIGH | N/A |
| Unspecified vulnerability in the Oracle Commerce Guided Search / Oracle Commerce Experience Manager component in Oracle Commerce Platform 3.x and 11.x allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Workbench. | |||||
| CVE-2015-0440 | 1 Oracle | 1 Right Now Service Cloud | 2015-04-17 | 5.0 MEDIUM | N/A |
| Unspecified vulnerability in the Oracle Knowledge component in Oracle Right Now Service Cloud 8.2.3.10.1 and 8.4.7.2 allows remote attackers to affect integrity via unknown vectors related to Information Manager Console. | |||||
| CVE-2015-0476 | 1 Oracle | 1 Sql Trace Analyzer | 2015-04-17 | 5.5 MEDIUM | N/A |
| Unspecified vulnerability in the SQL Trace Analyzer component in Oracle Support Tools before 12.1.11 allows remote authenticated users to affect confidentiality and integrity via unknown vectors. | |||||
| CVE-2015-0510 | 1 Oracle | 1 Commerce Platform | 2015-04-17 | 4.3 MEDIUM | N/A |
| Unspecified vulnerability in the Oracle Commerce Platform component in Oracle Commerce Platform 9.4, 10.0, and 10.2 allows remote attackers to affect integrity via vectors related to Dynamo Application Framework - HTML Admin User Interface. | |||||
| CVE-2014-3477 | 1 D-bus Project | 1 D-bus | 2015-04-14 | 2.1 LOW | N/A |
| The dbus-daemon in D-Bus 1.2.x through 1.4.x, 1.6.x before 1.6.20, and 1.8.x before 1.8.4, sends an AccessDenied error to the service instead of a client when the client is prohibited from accessing the service, which allows local users to cause a denial of service (initialization failure and exit) or possibly conduct a side-channel attack via a D-Bus message to an inactive service. | |||||
| CVE-2015-2247 | 1 Boosted | 1 Boosted Boards | 2015-04-13 | 8.3 HIGH | N/A |
| Unspecified vulnerability in Boosted Boards skateboards allows physically proximate attackers to modify skateboard movement, cause human injury, or cause physical damage via vectors related to an "injection attack" that blocks and hijacks a Bluetooth signal. | |||||
| CVE-2014-9688 | 1 Ninjaforms | 1 Ninja Forms | 2015-03-05 | 7.5 HIGH | N/A |
| Unspecified vulnerability in the Ninja Forms plugin before 2.8.10 for WordPress has unknown impact and remote attack vectors related to admin users. | |||||
| CVE-2015-0890 | 1 Bestwebsoft | 1 Google Captcha | 2015-03-03 | 5.0 MEDIUM | N/A |
| The BestWebSoft Google Captcha (aka reCAPTCHA) plugin before 1.13 for WordPress allows remote attackers to bypass the CAPTCHA protection mechanism and obtain administrative access via unspecified vectors. | |||||
| CVE-2014-9283 | 1 Bestwebsoft | 1 Captcha | 2015-03-03 | 5.0 MEDIUM | N/A |
| The BestWebSoft Captcha plugin before 4.0.7 for WordPress allows remote attackers to bypass the CAPTCHA protection mechanism and obtain administrative access via unspecified vectors. | |||||
| CVE-2015-0888 | 1 Kent-web | 1 Clip Board | 2015-03-02 | 6.4 MEDIUM | N/A |
| KENT-WEB Clip Board before 4.1 allows remote attackers to delete arbitrary files via unspecified vectors. | |||||
| CVE-2015-0889 | 1 Kent-web | 1 Joyful Note | 2015-03-02 | 7.5 HIGH | N/A |
| KENT-WEB Joyful Note before 5.3 allows remote attackers to delete files or write to files, and consequently execute arbitrary code, via vectors involving an article. | |||||
| CVE-2015-0883 | 1 Synck Graphica | 1 Mailform Pro Cgi | 2015-02-27 | 6.8 MEDIUM | N/A |
| SYNCK GRAPHICA Mailform Pro CGI 4.1.4 and 4.1.5, when the mailauth module is enabled, does not properly send e-mail messages, which allows remote attackers to execute arbitrary code via unspecified vectors. | |||||
| CVE-2015-0311 | 4 Adobe, Apple, Linux and 1 more | 4 Flash Player, Mac Os X, Linux Kernel and 1 more | 2015-02-13 | 10.0 HIGH | N/A |
| Unspecified vulnerability in Adobe Flash Player through 13.0.0.262 and 14.x, 15.x, and 16.x through 16.0.0.287 on Windows and OS X and through 11.2.202.438 on Linux allows remote attackers to execute arbitrary code via unknown vectors, as exploited in the wild in January 2015. | |||||
| CVE-2014-9047 | 1 Owncloud | 1 Owncloud | 2015-02-05 | 4.3 MEDIUM | N/A |
| Multiple unspecified vulnerabilities in the preview system in ownCloud 6.x before 6.0.6 and 7.x before 7.0.3 allow remote attackers to read arbitrary files via unknown vectors. | |||||
| CVE-2014-6385 | 1 Juniper | 1 Junos | 2015-01-26 | 6.1 MEDIUM | N/A |
| Juniper Junos 11.4 before 11.4R13, 12.1X44 before 12.1X44-D45, 12.1X46 before 12.1X46-D30, 12.1X47 before 12.1X47-D15, 12.2 before 12.2R9, 12.3R7 before 12.3R7-S1, 12.3 before 12.3R8, 13.1 before 13.1R5, 13.2 before 13.2R6, 13.3 before 13.3R4, 14.1 before 14.1R2, and 14.2 before 14.2R1 allows remote attackers to cause a denial of service (kernel crash and restart) via a crafted fragmented OSPFv3 packet with an IPsec Authentication Header (AH). | |||||
| CVE-2015-1201 | 1 Privoxy | 1 Privoxy | 2015-01-22 | 5.0 MEDIUM | N/A |
| Privoxy before 3.0.22 allows remote attackers to cause a denial of service (file descriptor consumption) via unspecified vectors. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. | |||||
| CVE-2014-10002 | 1 Jetbrains | 1 Teamcity | 2015-01-13 | 5.0 MEDIUM | N/A |
| Unspecified vulnerability in JetBrains TeamCity before 8.1 allows remote attackers to obtain sensitive information via unknown vectors. | |||||