|
212441
|
6.1 |
MEDIUM
Network
|
cybozu
|
office
|
Cross-site scripting (XSS) vulnerability in Cybozu Office 9.0.0 through 10.3.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than C…
|
CWE-79
Cross-site Scripting
|
CVE-2015-7797
|
2024-11-21 11:37 |
2016-02-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212442
|
6.1 |
MEDIUM
Network
|
cybozu
|
office
|
Cross-site scripting (XSS) vulnerability in Cybozu Office 9.0.0 through 10.3.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than C…
|
CWE-79
Cross-site Scripting
|
CVE-2015-7796
|
2024-11-21 11:37 |
2016-02-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212443
|
6.1 |
MEDIUM
Network
|
cybozu
|
office
|
Cross-site scripting (XSS) vulnerability in Cybozu Office 9.0.0 through 10.3.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than C…
|
CWE-79
Cross-site Scripting
|
CVE-2015-7795
|
2024-11-21 11:37 |
2016-02-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212444
|
7.5 |
HIGH
Network
|
rubyonrails
|
rails
|
actionpack/lib/action_dispatch/routing/route_set.rb in Action Pack in Ruby on Rails 4.x before 4.2.5.1 and 5.x before 5.0.0.beta1.1 allows remote attackers to cause a denial of service (superfluous c…
|
CWE-399
Resource Management Errors
|
CVE-2015-7581
|
2024-11-21 11:37 |
2016-02-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212445
|
6.1 |
MEDIUM
Network
|
rubyonrails
|
html_sanitizer
|
Cross-site scripting (XSS) vulnerability in lib/rails/html/scrubbers.rb in the rails-html-sanitizer gem before 1.0.3 for Ruby on Rails 4.2.x and 5.x allows remote attackers to inject arbitrary web sc…
|
CWE-79
Cross-site Scripting
|
CVE-2015-7580
|
2024-11-21 11:37 |
2016-02-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212446
|
6.1 |
MEDIUM
Network
|
rubyonrails
|
html_sanitizer
|
Cross-site scripting (XSS) vulnerability in the rails-html-sanitizer gem 1.0.2 for Ruby on Rails 4.2.x and 5.x allows remote attackers to inject arbitrary web script or HTML via an HTML entity that i…
|
CWE-79
Cross-site Scripting
|
CVE-2015-7579
|
2024-11-21 11:37 |
2016-02-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212447
|
6.1 |
MEDIUM
Network
|
rubyonrails
|
html_sanitizer
|
Cross-site scripting (XSS) vulnerability in the rails-html-sanitizer gem before 1.0.3 for Ruby on Rails 4.2.x and 5.x allows remote attackers to inject arbitrary web script or HTML via crafted tag at…
|
CWE-79
Cross-site Scripting
|
CVE-2015-7578
|
2024-11-21 11:37 |
2016-02-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212448
|
5.3 |
MEDIUM
Network
|
rubyonrails
|
ruby_on_rails
rails
|
activerecord/lib/active_record/nested_attributes.rb in Active Record in Ruby on Rails 3.1.x and 3.2.x before 3.2.22.1, 4.0.x and 4.1.x before 4.1.14.1, 4.2.x before 4.2.5.1, and 5.x before 5.0.0.beta…
|
CWE-284
Improper Access Control
|
CVE-2015-7577
|
2024-11-21 11:37 |
2016-02-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212449
|
3.7 |
LOW
Network
|
rubyonrails
|
ruby_on_rails
rails
|
The http_basic_authenticate_with method in actionpack/lib/action_controller/metal/http_authentication.rb in the Basic Authentication implementation in Action Controller in Ruby on Rails before 3.2.22…
|
CWE-254
7PK - Security Features
|
CVE-2015-7576
|
2024-11-21 11:37 |
2016-02-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
212450
|
5.3 |
MEDIUM
Network
|
ipswitch
|
moveit_dmz
|
Ipswitch MOVEit DMZ before 8.2 provides different error messages for authentication attempts depending on whether the user account exists, which allows remote attackers to enumerate usernames via a s…
|
CWE-200
Information Exposure
|
CVE-2015-7680
|
2024-11-21 11:37 |
2016-02-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
