Search
Search Results (323223 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2015-9398 | 1 Webmaster-source | 1 Gocodes | 2024-11-21 | 8.8 High |
| The gocodes plugin through 1.3.5 for WordPress has wp-admin/tools.php gcid SQL injection. | ||||
| CVE-2015-9397 | 1 Webmaster-source | 1 Gocodes | 2024-11-21 | 5.4 Medium |
| The gocodes plugin through 1.3.5 for WordPress has wp-admin/tools.php deletegc XSS. | ||||
| CVE-2015-9396 | 1 Attosoft | 1 Auto Thickbox Plus | 2024-11-21 | 6.1 Medium |
| The auto-thickbox-plus plugin through 1.9 for WordPress has wp-content/plugins/auto-thickbox-plus/download.min.php?file= XSS. | ||||
| CVE-2015-9395 | 1 Usersultra | 1 Users Ultra Membership | 2024-11-21 | 8.8 High |
| The users-ultra plugin before 1.5.64 for WordPress has SQL Injection via an ajax action. | ||||
| CVE-2015-9394 | 1 Usersultra | 1 Users Ultra Membership | 2024-11-21 | 8.8 High |
| The users-ultra plugin before 1.5.63 for WordPress has CSRF via action=package_add_new to wp-admin/admin-ajax.php. | ||||
| CVE-2015-9393 | 1 Usersultra | 1 Users Ultra Membership | 2024-11-21 | 5.4 Medium |
| The users-ultra plugin before 1.5.63 for WordPress has XSS via the p_desc parameter. | ||||
| CVE-2015-9392 | 1 Usersultra | 1 Users Ultra Membership | 2024-11-21 | 5.4 Medium |
| The users-ultra plugin before 1.5.63 for WordPress has XSS via the p_name parameter. | ||||
| CVE-2015-9391 | 1 Ostenta | 1 Yawpp | 2024-11-21 | 6.1 Medium |
| The yawpp plugin through 1.2.2 for WordPress has XSS via the field1 parameter. | ||||
| CVE-2015-9390 | 1 Admin Management Xtended Project | 1 Admin Management Xtended | 2024-11-21 | 4.3 Medium |
| The admin-management-xtended plugin before 2.4.0.1 for WordPress has privilege escalation because wp_ajax functions are mishandled. | ||||
| CVE-2015-9389 | 1 Mtouch Quiz Project | 1 Mtouch Quiz | 2024-11-21 | 5.4 Medium |
| The mtouch-quiz plugin before 3.1.3 for WordPress has XSS via a quiz name. | ||||
| CVE-2015-9388 | 1 Mtouch Quiz Project | 1 Mtouch Quiz | 2024-11-21 | 6.5 Medium |
| The mtouch-quiz plugin before 3.1.3 for WordPress has wp-admin/edit.php CSRF with resultant XSS. | ||||
| CVE-2015-9387 | 1 Mtouch Quiz Project | 1 Mtouch Quiz | 2024-11-21 | 6.5 Medium |
| The mtouch-quiz plugin before 3.1.3 for WordPress has wp-admin/options-general.php CSRF. | ||||
| CVE-2015-9386 | 1 Mtouch Quiz Project | 1 Mtouch Quiz | 2024-11-21 | 6.1 Medium |
| The mtouch-quiz plugin before 3.1.3 for WordPress has XSS via the quiz parameter during a Quiz Manage operation. | ||||
| CVE-2015-9385 | 1 Bestwebsoft | 1 Quotes And Tips | 2024-11-21 | 6.1 Medium |
| The quotes-and-tips plugin before 1.20 for WordPress has XSS. | ||||
| CVE-2015-9384 | 1 Bestwebsoft | 1 Relevant | 2024-11-21 | 6.1 Medium |
| The relevant plugin before 1.0.8 for WordPress has XSS. | ||||
| CVE-2015-9383 | 3 Canonical, Debian, Freetype | 3 Ubuntu Linux, Debian Linux, Freetype | 2024-11-21 | 6.5 Medium |
| FreeType before 2.6.2 has a heap-based buffer over-read in tt_cmap14_validate in sfnt/ttcmap.c. | ||||
| CVE-2015-9382 | 3 Debian, Freetype, Redhat | 3 Debian Linux, Freetype, Enterprise Linux | 2024-11-21 | N/A |
| FreeType before 2.6.1 has a buffer over-read in skip_comment in psaux/psobjs.c because ps_parser_skip_PS_token is mishandled in an FT_New_Memory_Face operation. | ||||
| CVE-2015-9381 | 3 Debian, Freetype, Redhat | 3 Debian Linux, Freetype, Enterprise Linux | 2024-11-21 | N/A |
| FreeType before 2.6.1 has a heap-based buffer over-read in T1_Get_Private_Dict in type1/t1parse.c. | ||||
| CVE-2015-9380 | 1 10web | 1 Photo Gallery | 2024-11-21 | N/A |
| The photo-gallery plugin before 1.2.42 for WordPress has CSRF. | ||||
| CVE-2015-9379 | 1 Ithemes | 1 Builder Style Manager | 2024-11-21 | N/A |
| iThemes Builder Style Manager before 0.7.7 for WordPress has XSS via add_query_arg() and remove_query_arg(). | ||||