Skip to main content
CVE-2015-5530 MEDIUM POC This Month

Multiple cross-site request forgery (CSRF) vulnerabilities in Free Reprintables ArticleFR 3.0.6 allow remote attackers to hijack the authentication of administrators for requests that add an. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable. Public exploit code available and no vendor patch available.

CSRF Articlefr
NVD Exploit-DB
CVSS 2.0
6.8
EPSS
0.7%
CVE-2015-4460 MEDIUM POC This Month

Cross-site request forgery (CSRF) vulnerability in SecuritySetting/UserSecurity/UserManagement.aspx in B.A.S C2Box before 4.0.0 (r19171) allows remote attackers to hijack the authentication of. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable. Public exploit code available and no vendor patch available.

CSRF C2Box
NVD Exploit-DB
CVSS 2.0
6.8
EPSS
0.3%
CVE-2015-5529 MEDIUM POC This Month

Multiple cross-site scripting (XSS) vulnerabilities in Free Reprintables ArticleFR 3.0.6 allow remote attackers to inject arbitrary web script or HTML via the (1) name parameter to. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. Public exploit code available and no vendor patch available.

XSS Articlefr
NVD Exploit-DB
CVSS 2.0
4.3
EPSS
7.1%
CVE-2015-5528 MEDIUM POC This Month

Cross-site scripting (XSS) vulnerability in the save_order function in class-floating-social-bar.php in the Floating Social Bar plugin before 1.1.6 for WordPress allows remote attackers to inject. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. Public exploit code available and no vendor patch available.

XSS WordPress PHP Floating Social Bar
NVD
CVSS 2.0
4.3
EPSS
0.5%
CVE-2015-4782 MEDIUM PATCH This Month

Unspecified vulnerability in the Data Store component in Oracle Berkeley DB 11.2.5.1.29, 11.2.5.2.42, 11.2.5.3.28, and 12.1.6.0.35 allows local users to affect confidentiality, integrity, and. Rated medium severity (CVSS 6.9).

Information Disclosure Oracle Berkeley Db
NVD
CVSS 2.0
6.9
EPSS
0.2%
CVE-2015-4781 MEDIUM PATCH This Month

Unspecified vulnerability in the Data Store component in Oracle Berkeley DB 11.2.5.1.29, 11.2.5.2.42, 11.2.5.3.28, and 12.1.6.0.35 allows local users to affect confidentiality, integrity, and. Rated medium severity (CVSS 6.9).

Information Disclosure Oracle Berkeley Db
NVD
CVSS 2.0
6.9
EPSS
0.2%
CVE-2015-4778 MEDIUM PATCH This Month

Unspecified vulnerability in the Data Store component in Oracle Berkeley DB 11.2.5.1.29, 11.2.5.2.42, 11.2.5.3.28, and 12.1.6.0.35 allows local users to affect confidentiality, integrity, and. Rated medium severity (CVSS 6.9).

Information Disclosure Oracle Berkeley Db
NVD
CVSS 2.0
6.9
EPSS
0.2%
CVE-2015-4777 MEDIUM PATCH This Month

Unspecified vulnerability in the Data Store component in Oracle Berkeley DB 11.2.5.1.29, 11.2.5.2.42, 11.2.5.3.28, and 12.1.6.0.35 allows local users to affect confidentiality, integrity, and. Rated medium severity (CVSS 6.9).

Information Disclosure Oracle Berkeley Db
NVD
CVSS 2.0
6.9
EPSS
0.2%
CVE-2015-2664 MEDIUM PATCH This Month

Unspecified vulnerability in Oracle Java SE 6u95, 7u80, and 8u45 allows local users to affect confidentiality, integrity, and availability via unknown vectors related to Deployment. Rated medium severity (CVSS 6.9).

Information Disclosure Java Oracle Jdk Jre
NVD
CVSS 2.0
6.9
EPSS
0.2%
CVE-2015-4759 MEDIUM PATCH This Month

Unspecified vulnerability in the Oracle Data Integrator component in Oracle Fusion Middleware 11.1.1.3.0 allows remote attackers to affect confidentiality, integrity, and availability via unknown. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable.

Information Disclosure Oracle Fusion Middleware
NVD
CVSS 2.0
6.8
EPSS
0.6%
CVE-2015-4758 MEDIUM PATCH This Month

Unspecified vulnerability in the Oracle Data Integrator component in Oracle Fusion Middleware 11.1.1.3.0 allows remote attackers to affect confidentiality, integrity, and availability via unknown. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable.

Information Disclosure Oracle Fusion Middleware
NVD
CVSS 2.0
6.8
EPSS
0.6%
CVE-2015-4747 MEDIUM PATCH This Month

Unspecified vulnerability in the Oracle Event Processing component in Oracle Fusion Middleware 11.1.1.7 and 12.1.3.0 allows remote attackers to affect confidentiality, integrity, and availability via. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable.

Information Disclosure Oracle Fusion Middleware
NVD
CVSS 2.0
6.8
EPSS
0.6%
CVE-2015-2635 MEDIUM PATCH This Month

Unspecified vulnerability in the Oracle Data Integrator component in Oracle Fusion Middleware 11.1.1.3.0 allows remote attackers to affect confidentiality, integrity, and availability via unknown. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable.

Information Disclosure Oracle Fusion Middleware
NVD
CVSS 2.0
6.8
EPSS
0.6%
CVE-2015-2634 MEDIUM PATCH This Month

Unspecified vulnerability in the Oracle Data Integrator component in Oracle Fusion Middleware 11.1.1.3.0 allows remote attackers to affect confidentiality, integrity, and availability via unknown. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable.

Information Disclosure Oracle Fusion Middleware
NVD
CVSS 2.0
6.8
EPSS
0.6%
CVE-2015-0446 MEDIUM PATCH This Month

Unspecified vulnerability in the Oracle Data Integrator component in Oracle Fusion Middleware 11.1.1.3.0 allows remote attackers to affect confidentiality, integrity, and availability via unknown. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable.

Information Disclosure Oracle Fusion Middleware
NVD
CVSS 2.0
6.8
EPSS
0.6%
CVE-2015-0445 MEDIUM PATCH This Month

Unspecified vulnerability in the Oracle Data Integrator component in Oracle Fusion Middleware 11.1.1.3.0 allows remote attackers to affect confidentiality, integrity, and availability via unknown. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable.

Information Disclosure Oracle Fusion Middleware
NVD
CVSS 2.0
6.8
EPSS
0.6%
CVE-2015-0443 MEDIUM PATCH This Month

Unspecified vulnerability in the Oracle Data Integrator component in Oracle Fusion Middleware 11.1.1.3.0 allows remote attackers to affect confidentiality, integrity, and availability via unknown. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable.

Information Disclosure Oracle Fusion Middleware
NVD
CVSS 2.0
6.8
EPSS
0.6%
CVE-2015-0444 MEDIUM PATCH This Month

Unspecified vulnerability in the Oracle Data Integrator component in Oracle Fusion Middleware 11.1.1.3.0 allows remote attackers to affect confidentiality, integrity, and availability via unknown. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable.

Information Disclosure Oracle Fusion Middleware
NVD
CVSS 2.0
6.8
EPSS
0.6%
CVE-2015-4790 MEDIUM PATCH This Month

Unspecified vulnerability in the Data Store component in Oracle Berkeley DB 11.2.5.1.29, 11.2.5.2.42, 11.2.5.3.28, and 12.1.6.0.35 allows local users to affect confidentiality, integrity, and. Rated medium severity (CVSS 6.9).

Information Disclosure Oracle Berkeley Db
NVD
CVSS 2.0
6.9
EPSS
0.1%
CVE-2015-4789 MEDIUM PATCH This Month

Unspecified vulnerability in the Data Store component in Oracle Berkeley DB 11.2.5.1.29, 11.2.5.2.42, 11.2.5.3.28, and 12.1.6.0.35 allows local users to affect confidentiality, integrity, and. Rated medium severity (CVSS 6.9).

Information Disclosure Oracle Berkeley Db
NVD
CVSS 2.0
6.9
EPSS
0.1%
CVE-2015-4787 MEDIUM PATCH This Month

Unspecified vulnerability in the Data Store component in Oracle Berkeley DB 11.2.5.1.29, 11.2.5.2.42, 11.2.5.3.28, and 12.1.6.0.35 allows local users to affect confidentiality, integrity, and. Rated medium severity (CVSS 6.9).

Information Disclosure Oracle Berkeley Db
NVD
CVSS 2.0
6.9
EPSS
0.1%
CVE-2015-4786 MEDIUM PATCH This Month

Unspecified vulnerability in the Data Store component in Oracle Berkeley DB 11.2.5.1.29, 11.2.5.2.42, 11.2.5.3.28, and 12.1.6.0.35 allows local users to affect confidentiality, integrity, and. Rated medium severity (CVSS 6.9).

Information Disclosure Oracle Berkeley Db
NVD
CVSS 2.0
6.9
EPSS
0.1%
CVE-2015-4785 MEDIUM PATCH This Month

Unspecified vulnerability in the Data Store component in Oracle Berkeley DB 11.2.5.1.29, 11.2.5.2.42, 11.2.5.3.28, and 12.1.6.0.35 allows local users to affect confidentiality, integrity, and. Rated medium severity (CVSS 6.9).

Information Disclosure Oracle Berkeley Db
NVD
CVSS 2.0
6.9
EPSS
0.1%
CVE-2015-4784 MEDIUM PATCH This Month

Unspecified vulnerability in the Data Store component in Oracle Berkeley DB 11.2.5.1.29, 11.2.5.2.42, 11.2.5.3.28, and 12.1.6.0.35 allows local users to affect confidentiality, integrity, and. Rated medium severity (CVSS 6.9).

Information Disclosure Oracle Berkeley Db
NVD
CVSS 2.0
6.9
EPSS
0.1%
CVE-2015-4783 MEDIUM PATCH This Month

Unspecified vulnerability in the Data Store component in Oracle Berkeley DB 11.2.5.1.29, 11.2.5.2.42, 11.2.5.3.28, and 12.1.6.0.35 allows local users to affect confidentiality, integrity, and. Rated medium severity (CVSS 6.9).

Information Disclosure Oracle Berkeley Db
NVD
CVSS 2.0
6.9
EPSS
0.1%
CVE-2015-4780 MEDIUM PATCH This Month

Unspecified vulnerability in the Data Store component in Oracle Berkeley DB 11.2.5.1.29, 11.2.5.2.42, 11.2.5.3.28, and 12.1.6.0.35 allows local users to affect confidentiality, integrity, and. Rated medium severity (CVSS 6.9).

Information Disclosure Oracle Berkeley Db
NVD
CVSS 2.0
6.9
EPSS
0.1%
CVE-2015-4776 MEDIUM PATCH This Month

Unspecified vulnerability in the Data Store component in Oracle Berkeley DB 11.2.5.1.29, 11.2.5.2.42, 11.2.5.3.28, and 12.1.6.0.35 allows local users to affect confidentiality, integrity, and. Rated medium severity (CVSS 6.9).

Information Disclosure Oracle Berkeley Db
NVD
CVSS 2.0
6.9
EPSS
0.1%
CVE-2015-4775 MEDIUM PATCH This Month

Unspecified vulnerability in the Data Store component in Oracle Berkeley DB 11.2.5.1.29, 11.2.5.2.42, 11.2.5.3.28, and 12.1.6.0.35 allows local users to affect confidentiality, integrity, and. Rated medium severity (CVSS 6.9).

Information Disclosure Oracle Berkeley Db
NVD
CVSS 2.0
6.9
EPSS
0.1%
CVE-2015-4764 MEDIUM PATCH This Month

Unspecified vulnerability in the Data Store component in Oracle Berkeley DB 11.2.5.1.29, 11.2.5.2.42, 11.2.5.3.28, and 12.1.6.0.35 allows local users to affect confidentiality, integrity, and. Rated medium severity (CVSS 6.9).

Information Disclosure Oracle Berkeley Db
NVD
CVSS 2.0
6.9
EPSS
0.1%
CVE-2015-4754 MEDIUM PATCH This Month

Unspecified vulnerability in the Data Store component in Oracle Berkeley DB 11.2.5.1.29, 11.2.5.2.42, 11.2.5.3.28, and 12.1.6.0.35 allows local users to affect confidentiality, integrity, and. Rated medium severity (CVSS 6.9).

Information Disclosure Oracle Berkeley Db
NVD
CVSS 2.0
6.9
EPSS
0.1%
CVE-2015-2656 MEDIUM PATCH This Month

Unspecified vulnerability in the Data Store component in Oracle Berkeley DB 11.2.5.1.29, 11.2.5.2.42, 11.2.5.3.28, and 12.1.6.0.35 allows local users to affect confidentiality, integrity, and. Rated medium severity (CVSS 6.9).

Information Disclosure Oracle Berkeley Db
NVD
CVSS 2.0
6.9
EPSS
0.1%
CVE-2015-2654 MEDIUM PATCH This Month

Unspecified vulnerability in the Data Store component in Oracle Berkeley DB 11.2.5.1.29, 11.2.5.2.42, 11.2.5.3.28, and 12.1.6.0.35 allows local users to affect confidentiality, integrity, and. Rated medium severity (CVSS 6.9).

Information Disclosure Oracle Berkeley Db
NVD
CVSS 2.0
6.9
EPSS
0.1%
CVE-2015-2640 MEDIUM PATCH This Month

Unspecified vulnerability in the Data Store component in Oracle Berkeley DB 11.2.5.1.29, 11.2.5.2.42, 11.2.5.3.28, and 12.1.6.0.35 allows local users to affect confidentiality, integrity, and. Rated medium severity (CVSS 6.9).

Information Disclosure Oracle Berkeley Db
NVD
CVSS 2.0
6.9
EPSS
0.1%
CVE-2015-2626 MEDIUM PATCH This Month

Unspecified vulnerability in the Data Store component in Oracle Berkeley DB 11.2.5.1.29, 11.2.5.2.42, 11.2.5.3.28, and 12.1.6.0.35 allows local users to affect confidentiality, integrity, and. Rated medium severity (CVSS 6.9).

Information Disclosure Oracle Berkeley Db
NVD
CVSS 2.0
6.9
EPSS
0.1%
CVE-2015-2624 MEDIUM PATCH This Month

Unspecified vulnerability in the Data Store component in Oracle Berkeley DB 11.2.5.1.29, 11.2.5.2.42, 11.2.5.3.28, and 12.1.6.0.35 allows local users to affect confidentiality, integrity, and. Rated medium severity (CVSS 6.9).

Information Disclosure Oracle Berkeley Db
NVD
CVSS 2.0
6.9
EPSS
0.1%
CVE-2015-2583 MEDIUM PATCH This Month

Unspecified vulnerability in the Data Store component in Oracle Berkeley DB 11.2.5.1.29, 11.2.5.2.42, 11.2.5.3.28, and 12.1.6.0.35 allows local users to affect confidentiality, integrity, and. Rated medium severity (CVSS 6.9).

Information Disclosure Oracle Berkeley Db
NVD
CVSS 2.0
6.9
EPSS
0.1%
CVE-2015-4274 MEDIUM This Month

Cross-site request forgery (CSRF) vulnerability in the web framework in Cisco Unified Intelligence Center 10.0(1) and 10.6(1) allows remote attackers to hijack the authentication of arbitrary users,. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable. No vendor patch available.

CSRF Cisco Unified Intelligence Center
NVD
CVSS 2.0
6.8
EPSS
0.1%
CVE-2015-3259 MEDIUM PATCH This Month

Stack-based buffer overflow in the xl command line utility in Xen 4.1.x through 4.5.x allows local guest administrators to gain privileges via a long configuration argument. Rated medium severity (CVSS 6.8), this vulnerability is low attack complexity.

Privilege Escalation Buffer Overflow Xen
NVD
CVSS 2.0
6.8
EPSS
0.1%
CVE-2015-4276 MEDIUM This Month

Cisco WebEx Meetings Server 2.5MR1 allows remote authenticated users to execute arbitrary code via a crafted command parameter, aka Bug ID CSCus56138. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Cisco RCE Webex Meetings Server
NVD
CVSS 2.0
6.5
EPSS
1.2%
CVE-2015-2617 MEDIUM PATCH This Month

Unspecified vulnerability in Oracle MySQL Server 5.6.24 and earlier allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors related to Partition. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity.

Information Disclosure Oracle MySQL Ubuntu Linux
NVD
CVSS 2.0
6.5
EPSS
0.8%
CVE-2015-2594 MEDIUM PATCH This Month

Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtualization VirtualBox prior to 4.0.32, 4.1.40, 4.2.32, and 4.3.30 allows local users to affect confidentiality,. Rated medium severity (CVSS 6.6).

Information Disclosure Oracle Vm Virtualbox Debian Linux
NVD
CVSS 2.0
6.6
EPSS
0.1%
CVE-2015-2595 MEDIUM PATCH This Month

Unspecified vulnerability in the Oracle OLAP component in Oracle Database Server 12.1.0.1 and 12.1.0.2 allows remote authenticated users to affect confidentiality, integrity, and availability via. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity.

Information Disclosure Oracle Database Server
NVD
CVSS 2.0
6.5
EPSS
0.4%
CVE-2015-2581 MEDIUM PATCH This Month

Unspecified vulnerability in the Oracle Secure Global Desktop component in Oracle Virtualization 5.1 and 5.2 allows remote attackers to affect confidentiality and availability via unknown vectors. Rated medium severity (CVSS 6.4), this vulnerability is remotely exploitable, low attack complexity.

Information Disclosure Oracle Virtualization
NVD
CVSS 2.0
6.4
EPSS
0.7%
CVE-2015-2653 MEDIUM PATCH This Month

Unspecified vulnerability in the Oracle Commerce Guided Search / Oracle Commerce Experience Manager component in Oracle Commerce Platform 3.1.1, 3.1.2, 11.0, and 11.1 allows remote attackers to. Rated medium severity (CVSS 6.4), this vulnerability is remotely exploitable, low attack complexity.

Information Disclosure Oracle Commerce Platform
NVD
CVSS 2.0
6.4
EPSS
0.3%
CVE-2015-0468 MEDIUM PATCH This Month

Unspecified vulnerability in the Core RDBMS component in Oracle Database Server 11.1.0.7, 11.2.0.3, and 12.1.0.1 allows remote authenticated users to affect confidentiality, integrity, and. Rated medium severity (CVSS 6.0), this vulnerability is remotely exploitable.

Information Disclosure Oracle Database Server
NVD
CVSS 2.0
6.0
EPSS
0.5%
CVE-2015-4740 MEDIUM PATCH This Month

Unspecified vulnerability in the RDBMS Partitioning component in Oracle Database Server 11.1.0.7, 11.2.0.3, 11.2.0.4, 12.1.0.1, and 12.1.0.2 allows remote authenticated users to affect. Rated medium severity (CVSS 6.0), this vulnerability is remotely exploitable.

Information Disclosure Oracle Database Server
NVD
CVSS 2.0
6.0
EPSS
0.4%
CVE-2015-4529 MEDIUM This Month

Open redirect vulnerability in EMC Documentum WebTop before 6.8P02, Documentum Administrator before 7.2P01, Documentum Digital Assets Manager through 6.5SP6, Documentum Web Publishers through 6.5SP7,. Rated medium severity (CVSS 5.8), this vulnerability is remotely exploitable. No vendor patch available.

Open Redirect Documentum Administrator Documentum Digital Asset Manager Documentum Taskspace Documentum Web Publisher +1
NVD
CVSS 2.0
5.8
EPSS
0.3%
CVE-2015-2621 MEDIUM PATCH This Month

Unspecified vulnerability in Oracle Java SE 6u95, 7u80, and 8u45, and Java SE Embedded 7u75 and 8u33, allows remote attackers to affect confidentiality via vectors related to JMX. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity.

Information Disclosure Java Oracle Jdk Jre
NVD
CVSS 2.0
5.0
EPSS
3.1%
CVE-2015-2601 MEDIUM PATCH This Month

Unspecified vulnerability in Oracle Java SE 6u95, 7u80, and 8u45, JRockit R28.3.6, and Java SE Embedded 7u75 and 8u33 allows remote attackers to affect confidentiality via vectors related to JCE. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity.

Information Disclosure Java Oracle Jrockit Jdk +1
NVD
CVSS 2.0
5.0
EPSS
3.1%
CVE-2015-2637 MEDIUM PATCH This Month

Unspecified vulnerability in Oracle Java SE 6u95, 7u80, and 8u45; JavaFX 2.2.80; and Java SE Embedded 7u75 and 8u33 allows remote attackers to affect confidentiality via unknown vectors related to 2D. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity.

Information Disclosure Java Oracle Javafx Jdk +1
NVD
CVSS 2.0
5.0
EPSS
2.8%
Page 1 of 3 Next

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy