Skip to main content
CVE-2015-6522 HIGH POC THREAT Act Now

SQL injection vulnerability in the WP Symposium plugin before 15.8 for WordPress allows remote attackers to execute arbitrary SQL commands via the size parameter to get_album_item.php. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 79.8%.

WordPress SQLi PHP Wp Symposium
NVD Exploit-DB
CVSS 2.0
7.5
EPSS
79.8%
Threat
5.4
CVE-2015-2502 HIGH POC KEV PATCH THREAT Act Now

Microsoft Internet Explorer 7 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Memory Corruption. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Actively exploited in the wild (cisa kev) and public exploit code available.

Buffer Overflow Memory Corruption Denial Of Service RCE Microsoft
NVD VulDB
CVSS 3.1
8.8
EPSS
22.6%
Threat
5.4
CVE-2015-5621 HIGH POC THREAT Act Now

The snmp_pdu_parse function in snmp_api.c in net-snmp 5.7.2 and earlier does not remove the varBind variable in a netsnmp_variable_list item when parsing of the SNMP PDU fails, which allows remote. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 17.7%.

RCE Denial Of Service Net Snmp
NVD Exploit-DB
CVSS 3.1
7.5
EPSS
17.7%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy