The interpreter in IBC Solar ServeMaster TLP+ and Danfoss TLX Pro+ allows remote attackers to discover script source code via unspecified vectors.
Monthly Archives: September 2015
CVE-2015-6470
Resource Data Management Data Manager before 2.2 allows remote authenticated users to modify arbitrary passwords via unspecified vectors.
CVE-2015-6474
IBC Solar ServeMaster TLP+ and Danfoss TLX Pro+ allow remote attackers to discover cleartext passwords by reading HTML source code.
CVE-2015-6475
Multiple cross-site scripting (XSS) vulnerabilities in IBC Solar ServeMaster TLP+ and Danfoss TLX Pro+ allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Bugtraq: CVE-2015-5076 – Vulnerability title: Reflective XSS In X2Engine Inc. X2Engine
CVE-2015-5076 – Vulnerability title: Reflective XSS In X2Engine Inc. X2Engine
Bugtraq: CVE-2015-5074 – Arbitrary File Upload In X2Engine Inc. X2Engine
CVE-2015-5074 – Arbitrary File Upload In X2Engine Inc. X2Engine
Bugtraq: CVE-2015-5075 – Cross-Site Request Forgery In X2Engine Inc. X2Engine
CVE-2015-5075 – Cross-Site Request Forgery In X2Engine Inc. X2Engine
Bugtraq: [SECURITY] [DSA 3368-1] cyrus-sasl2 security update
[SECURITY] [DSA 3368-1] cyrus-sasl2 security update
RHBA-2015:1839-1: rhev-hypervisor bug fix and enhancement update for RHEV 3.5.4-1
Red Hat Enterprise Linux: Updated rhev-hypervisor packages that fix several bugs and add various
enhancements are now available.
RHBA-2015:1838-1: Red Hat Certificate System with Advanced Access bug fix update
Red Hat Enterprise Linux: Red Hat Certificate System 8.1 Advanced Access is now available.
Updated Red Hat Certificate System 8.1 with Advanced Access that fixes
one bug is now available. This update should be applied on top of Red
Hat Certificate System 8.1.6.