|
290151
|
- |
|
fortinet
|
fortiweb
|
Cross-site scripting (XSS) vulnerability in FortiGuard FortiWeb before 5.0.3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2014-1955
|
2024-11-21 11:05 |
2014-04-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290152
|
- |
|
cisco
|
webex_meetings_server
|
Cross-site request forgery (CSRF) vulnerability in the web framework in Cisco WebEx Meetings Server allows remote attackers to hijack the authentication of arbitrary users, aka Bug ID CSCuj81777.
|
CWE-352
Origin Validation Error
|
CVE-2014-2186
|
2024-11-21 11:05 |
2014-04-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290153
|
- |
|
cisco
|
unified_communications_manager
|
The Call Detail Records (CDR) Management component in Cisco Unified Communications Manager (Unified CM) allows remote authenticated users to obtain sensitive information by reading extraneous fields …
|
CWE-200
Information Exposure
|
CVE-2014-2185
|
2024-11-21 11:05 |
2014-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290154
|
- |
|
cisco
|
unified_communications_manager
|
The IP Manager Assistant (IPMA) component in Cisco Unified Communications Manager (Unified CM) allows remote attackers to obtain sensitive information via a crafted URL, aka Bug ID CSCun74352.
|
CWE-20
Improper Input Validation
|
CVE-2014-2184
|
2024-11-21 11:05 |
2014-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290155
|
- |
|
cisco
|
ios_xe
asr_1001
asr_1002
asr_1002-x
asr_1002_fixed_router
asr_1004
asr_1006
asr_1013
asr_1023_router
|
The L2TP module in Cisco IOS XE 3.10S(.2) and earlier on ASR 1000 routers allows remote authenticated users to cause a denial of service (ESP card reload) via a malformed L2TP packet, aka Bug ID CSCu…
|
CWE-20
Improper Input Validation
|
CVE-2014-2183
|
2024-11-21 11:05 |
2014-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290156
|
- |
|
cisco
|
adaptive_security_appliance_software
|
Cisco Adaptive Security Appliance (ASA) Software, when DHCPv6 replay is configured, allows remote attackers to cause a denial of service (device reload) via a crafted DHCPv6 packet, aka Bug ID CSCun4…
|
CWE-20
Improper Input Validation
|
CVE-2014-2182
|
2024-11-21 11:05 |
2014-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290157
|
- |
|
cisco
|
unified_contact_center_express_editor_software
unified_contact_center_enterprise
|
The Document Management component in Cisco Unified Contact Center Express does not properly validate a parameter, which allows remote authenticated users to upload files to arbitrary pathnames via a …
|
CWE-20
Improper Input Validation
|
CVE-2014-2180
|
2024-11-21 11:05 |
2014-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290158
|
- |
|
southrivertech
|
titan_ftp_server
|
Directory traversal vulnerability in the web interface in Titan FTP Server before 10.40 build 1829 allows remote attackers to obtain the property information of an arbitrary home folder via a Propert…
|
CWE-22
Path Traversal
|
CVE-2014-1843
|
2024-11-21 11:05 |
2014-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290159
|
- |
|
southrivertech
|
titan_ftp_server
|
Directory traversal vulnerability in the web interface in Titan FTP Server before 10.40 build 1829 allows remote attackers to list all usernames via a Go action with a .. (dot dot) in the search-bar …
|
CWE-22
Path Traversal
|
CVE-2014-1842
|
2024-11-21 11:05 |
2014-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290160
|
- |
|
southrivertech
|
titan_ftp_server
|
Directory traversal vulnerability in the web interface in Titan FTP Server before 10.40 build 1829 allows remote attackers to copy an arbitrary user's home folder via a Move action with a .. (dot dot…
|
CWE-22
Path Traversal
|
CVE-2014-1841
|
2024-11-21 11:05 |
2014-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
