Skip to main content
CVE-2015-6914 HIGH POC This Week

Absolute path traversal vulnerability in SiteFactory CMS 5.5.9 allows remote attackers to read arbitrary files via a full pathname in the file parameter to assets/download.aspx. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Path Traversal Sitefactory Cms
NVD
CVSS 2.0
7.8
EPSS
0.4%
CVE-2015-6911 HIGH POC This Week

SQL injection vulnerability in Synology Video Station before 1.5-0763 allows remote attackers to execute arbitrary SQL commands via the id parameter to watchstatus.cgi. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Synology SQLi Video Station
NVD Exploit-DB
CVSS 2.0
7.5
EPSS
1.6%
CVE-2015-6910 HIGH POC This Week

SQL injection vulnerability in Synology Video Station before 1.5-0757 allows remote attackers to execute arbitrary SQL commands via the id parameter to audiotrack.cgi. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Synology SQLi Video Station
NVD
CVSS 2.0
7.5
EPSS
0.6%
CVE-2015-6915 HIGH POC This Week

SQL injection vulnerability in Montala Limited ResourceSpace 7.3.7009 and earlier allows remote attackers to execute arbitrary SQL commands via the "user" cookie to. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP SQLi Resourcespace
NVD
CVSS 2.0
7.5
EPSS
0.3%
CVE-2015-6464 HIGH PATCH This Week

The administrative web interface on Moxa EDS-405A and EDS-408A switches with firmware before 3.6 allows remote authenticated users to bypass a read-only protection mechanism by using Firefox with a. Rated high severity (CVSS 8.5), this vulnerability is remotely exploitable, low attack complexity.

Mozilla Authentication Bypass Eds 405A Firmware Eds 408A Firmware
NVD
CVSS 2.0
8.5
EPSS
0.2%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy