|
292271
|
- |
|
rockwellautomation
|
rslogix_5000_design_and_configuration_software
|
Rockwell Automation RSLogix 5000 7 through 20.01, and 21.0, does not properly implement password protection for .ACD files (aka project files), which allows local users to obtain sensitive informatio…
|
CWE-255
Credentials Management
|
CVE-2014-0755
|
2024-11-21 11:02 |
2014-02-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292272
|
- |
|
ibm
|
general_parallel_file_system
|
IBM General Parallel File System (GPFS) 3.4 through 3.4.0.27 and 3.5 through 3.5.0.16 allows attackers to cause a denial of service (daemon crash) via crafted arguments to a setuid program.
|
CWE-20
Improper Input Validation
|
CVE-2014-0834
|
2024-11-21 11:02 |
2014-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292273
|
- |
|
cisco
|
unified_communications_manager
|
Cisco Unified Communications Manager (aka Unified CM) 9.1 (2.10000.28) and earlier allows local users to gain privileges by leveraging incorrect file permissions, aka Bug IDs CSCul24917 and CSCul2490…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-0686
|
2024-11-21 11:02 |
2014-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292274
|
- |
|
ibm
|
financial_transaction_manager
|
The OAC component in IBM Financial Transaction Manager (FTM) 2.0 before 2.0.0.3 does not properly enforce operator-intervention requirements, which allows remote authenticated users to bypass intende…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-0833
|
2024-11-21 11:02 |
2014-02-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292275
|
- |
|
ibm
|
financial_transaction_manager
|
Multiple cross-site scripting (XSS) vulnerabilities in configuration-details screens in the OAC component in IBM Financial Transaction Manager (FTM) 2.0 before 2.0.0.3 allow remote authenticated user…
|
CWE-79
Cross-site Scripting
|
CVE-2014-0832
|
2024-11-21 11:02 |
2014-02-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292276
|
- |
|
ibm
|
financial_transaction_manager
|
Cross-site request forgery (CSRF) vulnerability in the OAC component in IBM Financial Transaction Manager (FTM) 2.0 before 2.0.0.3 allows remote attackers to hijack the authentication of arbitrary us…
|
CWE-352
Origin Validation Error
|
CVE-2014-0831
|
2024-11-21 11:02 |
2014-02-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292277
|
- |
|
ibm
|
financial_transaction_manager
|
Directory traversal vulnerability in the table-export implementation in the OAC component in IBM Financial Transaction Manager (FTM) 2.0 before 2.0.0.3 and 2.1 before 2.1.0.1 allows remote authentica…
|
CWE-22
Path Traversal
|
CVE-2014-0830
|
2024-11-21 11:02 |
2014-02-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292278
|
- |
|
kent-web
|
joyful_note
|
Cross-site scripting (XSS) vulnerability in KENT-WEB Joyful Note 2.8 and earlier, when Internet Explorer 7 or earlier is used, allows remote attackers to inject arbitrary web script or HTML via unspe…
|
CWE-79
Cross-site Scripting
|
CVE-2014-0812
|
2024-11-21 11:02 |
2014-02-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292279
|
- |
|
3s-software
|
codesys_runtime_toolkit
|
Smart Software Solutions (3S) CoDeSys Runtime Toolkit before 2.4.7.44 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via unspecified vectors.
|
CWE-399
Resource Management Errors
|
CVE-2014-0757
|
2024-11-21 11:02 |
2014-01-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292280
|
- |
|
stackideas
|
komento
|
Multiple cross-site scripting (XSS) vulnerabilities in the StackIdeas Komento (com_komento) component before 1.7.3 for Joomla! allow remote attackers to inject arbitrary web script or HTML via the (1…
|
CWE-79
Cross-site Scripting
|
CVE-2014-0793
|
2024-11-21 11:02 |
2014-01-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
