|
292021
|
- |
|
cisco
|
identity_services_engine_software
|
Cross-site scripting (XSS) vulnerability in Cisco Identity Services Engine (ISE) 1.2 patch 2 and earlier allows remote attackers to inject arbitrary web script or HTML via a report containing a craft…
|
CWE-79
Cross-site Scripting
|
CVE-2014-0681
|
2024-11-21 11:02 |
2014-01-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292022
|
- |
|
cisco
|
identity_services_engine
|
Cross-site scripting (XSS) vulnerability in the HTTP control interface in the NAC Web Agent component in Cisco Identity Services Engine (ISE) allows remote attackers to inject arbitrary web script or…
|
CWE-79
Cross-site Scripting
|
CVE-2014-0680
|
2024-11-21 11:02 |
2014-01-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292023
|
- |
|
justsystems
|
sanshiro
|
Unspecified vulnerability in JustSystems Sanshiro 2007 before update 3, 2008 before update 5, 2009 before update 6, and 2010 before update 6, and Sanshiro Viewer before 2.0.2.0, allows remote attacke…
|
NVD-CWE-noinfo
|
CVE-2014-0810
|
2024-11-21 11:02 |
2014-01-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292024
|
- |
|
starbucks
|
starbucks
|
The Starbucks 2.6.1 application for iOS stores sensitive information in plaintext in the Crashlytics log file (/Library/Caches/com.crashlytics.data/com.starbucks.mystarbucks/session.clslog), which al…
|
CWE-255
Credentials Management
|
CVE-2014-0647
|
2024-11-21 11:02 |
2014-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292025
|
- |
|
joomla
|
com_jvcomment
|
SQL injection vulnerability in the JV Comment (com_jvcomment) component before 3.0.3 for Joomla! allows remote authenticated users to execute arbitrary SQL commands via the id parameter in a comment.…
|
CWE-79
Cross-site Scripting
|
CVE-2014-0794
|
2024-11-21 11:02 |
2014-01-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292026
|
- |
|
ge
|
intelligent_platforms_proficy_hmi\/scada_cimplicity
intelligent_platforms_proficy_process_systems_with_cimplicity
intelligent_platforms_proficy_hmi\%2fscada_cimplicity
|
Directory traversal vulnerability in CimWebServer.exe (aka the WebView component) in GE Intelligent Platforms Proficy HMI/SCADA - CIMPLICITY before 8.2 SIM 24, and Proficy Process Systems with CIMPLI…
|
CWE-22
Path Traversal
|
CVE-2014-0751
|
2024-11-21 11:02 |
2014-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292027
|
- |
|
ge
|
intelligent_platforms_proficy_hmi\/scada_cimplicity
intelligent_platforms_proficy_process_systems_with_cimplicity
intelligent_platforms_proficy_hmi\%2fscada_cimplicity
|
Directory traversal vulnerability in gefebt.exe in the WebView CimWeb components in GE Intelligent Platforms Proficy HMI/SCADA - CIMPLICITY through 8.2 SIM 24, and Proficy Process Systems with CIMPLI…
|
CWE-22
Path Traversal
|
CVE-2014-0750
|
2024-11-21 11:02 |
2014-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292028
|
- |
|
cisco
|
secure_access_control_system
|
The portal interface in Cisco Secure Access Control System (ACS) does not properly manage sessions, which allows remote authenticated users to hijack sessions and gain privileges via unspecified vect…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-0678
|
2024-11-21 11:02 |
2014-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292029
|
- |
|
cisco
|
video_surveillance_indoor_fixed_dome_ip_hd_camera
|
Multiple cross-site scripting (XSS) vulnerabilities in the web interface on Cisco Video Surveillance 5000 HD IP Dome cameras allow remote attackers to inject arbitrary web script or HTML via a crafte…
|
CWE-79
Cross-site Scripting
|
CVE-2014-0673
|
2024-11-21 11:02 |
2014-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292030
|
- |
|
gapless_player
|
simzip
|
Directory traversal vulnerability in the Gapless Player SimZip (aka Simple Zip Viewer) application before 1.2.1 for Android allows remote attackers to overwrite or create arbitrary files via a crafte…
|
CWE-22
Path Traversal
|
CVE-2014-0809
|
2024-11-21 11:02 |
2014-01-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
