|
290311
|
- |
|
micropact
|
icomplaints
|
Cross-site scripting (XSS) vulnerability in AddStdLetter.jsp in MicroPact iComplaints before 8.0.2.1.8.8014 allows remote authenticated users to inject arbitrary web script or HTML via the descriptio…
|
CWE-79
Cross-site Scripting
|
CVE-2014-2971
|
2024-11-21 11:07 |
2014-07-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290312
|
- |
|
huawei
|
e355_web_ui
e355_firmware
e355
|
Cross-site scripting (XSS) vulnerability in the web interface on the Huawei E355 CH1E355SM modem with software 21.157.37.01.910 and Web UI 11.001.08.00.03 allows remote attackers to inject arbitrary …
|
CWE-79
Cross-site Scripting
|
CVE-2014-2968
|
2024-11-21 11:07 |
2014-07-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290313
|
- |
|
debian
google
|
debian_linux
chrome
|
Multiple unspecified vulnerabilities in Google Chrome before 36.0.1985.125 allow attackers to cause a denial of service or possibly have other impact via unknown vectors.
|
NVD-CWE-noinfo
|
CVE-2014-3162
|
2024-11-21 11:07 |
2014-07-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290314
|
- |
|
google
|
chrome
|
The WebMediaPlayerAndroid::load function in content/renderer/media/android/webmediaplayer_android.cc in Google Chrome before 36.0.1985.122 on Android does not properly interact with redirects, which …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-3161
|
2024-11-21 11:07 |
2014-07-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290315
|
- |
|
debian
google
|
debian_linux
chrome
|
The ResourceFetcher::canRequest function in core/fetch/ResourceFetcher.cpp in Blink, as used in Google Chrome before 36.0.1985.125, does not properly restrict subresource requests associated with SVG…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-3160
|
2024-11-21 11:07 |
2014-07-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290316
|
- |
|
google
|
chrome
|
The WebContentsDelegateAndroid::OpenURLFromTab function in components/web_contents_delegate_android/web_contents_delegate_android.cc in Google Chrome before 36.0.1985.122 on Android does not properly…
|
CWE-20
Improper Input Validation
|
CVE-2014-3159
|
2024-11-21 11:07 |
2014-07-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290317
|
- |
|
cisco
|
unified_customer_voice_portal
|
Multiple cross-site scripting (XSS) vulnerabilities in Cisco Unified Customer Voice Portal (CVP) allow remote attackers to inject arbitrary web script or HTML via a crafted parameter, aka Bug IDs CSC…
|
CWE-79
Cross-site Scripting
|
CVE-2014-3325
|
2024-11-21 11:07 |
2014-07-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290318
|
- |
|
ibm
|
infosphere_master_data_management_server_for_product_information_management
infosphere_master_data_management_collaboration_server
|
The GDS component in IBM InfoSphere Master Data Management - Collaborative Edition 10.x and 11.x before 11.0 FP4 and InfoSphere Master Data Management Server for Product Information Management 9.0 an…
|
CWE-200
Information Exposure
|
CVE-2014-3064
|
2024-11-21 11:07 |
2014-07-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290319
|
- |
|
ibm
|
scale_out_network_attached_storage
|
IBM Scale Out Network Attached Storage (SONAS) 1.3.x and 1.4.x before 1.4.3.3 places an administrative password in the shell history upon use of the -p option to chuser, which allows local users to o…
|
CWE-200
Information Exposure
|
CVE-2014-3045
|
2024-11-21 11:07 |
2014-07-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290320
|
- |
|
ibm
|
storwize_unified_v7000_software
storwize_unified_v7000
|
IBM Storwize V7000 Unified 1.3.x and 1.4.x before 1.4.3.3 allows remote authenticated users to gain privileges by leveraging access to the service account.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-3043
|
2024-11-21 11:07 |
2014-07-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
