|
290501
|
- |
|
southrivertech
|
titan_ftp_server
|
Directory traversal vulnerability in the web interface in Titan FTP Server before 10.40 build 1829 allows remote attackers to copy an arbitrary user's home folder via a Move action with a .. (dot dot…
|
CWE-22
Path Traversal
|
CVE-2014-1841
|
2024-11-21 11:05 |
2014-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290502
|
- |
|
livetecs
|
timeline
|
Unrestricted file upload vulnerability in the Manage Project functionality in Livetecs Timelive before 6.5.1 allows remote authenticated users to execute arbitrary code by uploading a file with an ex…
|
NVD-CWE-Other
|
CVE-2014-2042
|
2024-11-21 11:05 |
2014-04-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290503
|
- |
|
cisco
|
adaptive_security_appliance_software
|
Memory leak in the SIP inspection engine in Cisco Adaptive Security Appliance (ASA) Software allows remote attackers to cause a denial of service (memory consumption and instability) via crafted SIP …
|
CWE-399
Resource Management Errors
|
CVE-2014-2154
|
2024-11-21 11:05 |
2014-04-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290504
|
- |
|
vtiger
|
vtiger_crm
|
modules/Users/ForgotPassword.php in vTiger 6.0 before Security Patch 2 allows remote attackers to reset the password for arbitrary users via a request containing the username, password, and confirmPa…
|
CWE-20
Improper Input Validation
|
CVE-2014-2269
|
2024-11-21 11:05 |
2014-04-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290505
|
- |
|
cisco
|
cns_network_registrar
|
The DHCPv6 server module in Cisco CNS Network Registrar 7.1 allows remote attackers to cause a denial of service (daemon reload) via a malformed DHCPv6 packet, aka Bug ID CSCuo07437.
|
CWE-20
Improper Input Validation
|
CVE-2014-2155
|
2024-11-21 11:05 |
2014-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290506
|
- |
|
toshibatec
|
e-studio-282
e-studio-283
e-studio-232
e-studio-233
|
Cross-site request forgery (CSRF) vulnerability in TopAccess (aka the web-based management utility) on TOSHIBA TEC e-Studio 232, 233, 282, and 283 devices allows remote attackers to hijack the authen…
|
CWE-352
Origin Validation Error
|
CVE-2014-1990
|
2024-11-21 11:05 |
2014-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290507
|
- |
|
cybozu
|
remote_service_manager
|
Session fixation vulnerability in the management screen in Cybozu Remote Service Manager through 2.3.0 and 3.x before 3.1.1 allows remote attackers to hijack web sessions via unspecified vectors.
|
CWE-287
Improper Authentication
|
CVE-2014-1984
|
2024-11-21 11:05 |
2014-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290508
|
- |
|
cybozu
|
remote_service_manager
|
Unspecified vulnerability in Cybozu Remote Service Manager through 2.3.0 and 3.x before 3.1.1 allows remote attackers to cause a denial of service (CPU consumption) via unknown vectors.
|
NVD-CWE-noinfo
|
CVE-2014-1983
|
2024-11-21 11:05 |
2014-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290509
|
- |
|
lyesoft
|
andexplorer
|
Directory traversal vulnerability in the LYSESOFT AndExplorer application before 20140403 and AndExplorerPro application before 20140405 for Android allows attackers to overwrite or create arbitrary …
|
CWE-22
Path Traversal
|
CVE-2014-1974
|
2024-11-21 11:05 |
2014-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290510
|
- |
|
imapsync_project
|
imapsync
|
imapsync before 1.584, when running with the --tls option, attempts a cleartext login when a certificate verification failure occurs, which allows remote attackers to obtain credentials by sniffing t…
|
CWE-255
Credentials Management
|
CVE-2014-2014
|
2024-11-21 11:05 |
2014-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
