|
291681
|
- |
|
conceptronic
|
c54apm_firmware
c54apm
|
The Conceptronic C54APM access point with runtime code 1.26 has a default password of admin for the admin account, which makes it easier for remote attackers to obtain access via an HTTP request, as …
|
CWE-255
Credentials Management
|
CVE-2014-1408
|
2024-11-21 11:04 |
2014-01-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291682
|
- |
|
conceptronic
|
c54apm_firmware
c54apm
|
Multiple cross-site scripting (XSS) vulnerabilities on the Conceptronic C54APM access point with runtime code 1.26 allow remote attackers to inject arbitrary web script or HTML via (1) the submit-url…
|
CWE-79
Cross-site Scripting
|
CVE-2014-1407
|
2024-11-21 11:04 |
2014-01-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291683
|
- |
|
conceptronic
|
c54apm_firmware
c54apm
|
CRLF injection vulnerability in goform/formWlSiteSurvey on the Conceptronic C54APM access point with runtime code 1.26 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP respon…
|
CWE-20
Improper Input Validation
|
CVE-2014-1406
|
2024-11-21 11:04 |
2014-01-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291684
|
- |
|
conceptronic
|
c54apm_firmware
c54apm
|
Multiple open redirect vulnerabilities on the Conceptronic C54APM access point with runtime code 1.26 allow remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via …
|
CWE-20
Improper Input Validation
|
CVE-2014-1405
|
2024-11-21 11:04 |
2014-01-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291685
|
9.8 |
CRITICAL
Network
|
huge-it
|
portfolio_gallery
|
A vulnerability classified as critical has been found in Portfolio Gallery Plugin up to 1.1.8 on WordPress. This affects an unknown part. The manipulation leads to sql injection. It is possible to in…
|
CWE-89
SQL Injection
|
CVE-2014-125101
|
2024-11-21 11:03 |
2023-05-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291686
|
6.1 |
MEDIUM
Network
|
fancy_gallery_project
|
fancy_gallery
|
A vulnerability was found in Fancy Gallery Plugin 1.5.12 on WordPress. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file class.options.php of…
|
-
|
CVE-2014-125096
|
2024-11-21 11:03 |
2023-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291687
|
7.5 |
HIGH
Network
|
yuko-bot_project
|
yuko-bot
|
A vulnerability was found in emmflo yuko-bot. It has been declared as problematic. This vulnerability affects unknown code. The manipulation of the argument title leads to denial of service. The atta…
|
-
|
CVE-2014-125066
|
2024-11-21 11:03 |
2023-01-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291688
|
9.8 |
CRITICAL
Network
|
bitstorm_project
|
bitstorm
|
A vulnerability classified as critical was found in ananich bitstorm. Affected by this vulnerability is an unknown functionality of the file announce.php. The manipulation of the argument event leads…
|
CWE-89
SQL Injection
|
CVE-2014-125062
|
2024-11-21 11:03 |
2023-01-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291689
|
5.3 |
MEDIUM
Network
|
pylonsproject
|
horus
|
A vulnerability was found in Pylons horus and classified as problematic. Affected by this issue is some unknown functionality of the file horus/flows/local/services.py. The manipulation leads to obse…
|
-
|
CVE-2014-125056
|
2024-11-21 11:03 |
2023-01-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
291690
|
6.1 |
MEDIUM
Network
|
neoxplora_project
|
neoxplora
|
A vulnerability, which was classified as problematic, has been found in kkokko NeoXplora. Affected by this issue is some unknown functionality of the component Trainer Handler. The manipulation leads…
|
-
|
CVE-2014-125039
|
2024-11-21 11:03 |
2023-01-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
