|
292371
|
- |
|
ibm
|
content_navigator
|
IBM Content Navigator 2.x before 2.0.2.2-ICN-FP002 allows remote authenticated users to bypass intended access restrictions and conduct deleteAction attacks via a modified URL.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-0858
|
2024-11-21 11:02 |
2014-02-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292372
|
- |
|
cisco
|
prime_infrastructure
|
Cisco Prime Infrastructure 1.2 and 1.3 before 1.3.0.20-2, 1.4 before 1.4.0.45-2, and 2.0 before 2.0.0.0.294-2 allows remote authenticated users to execute arbitrary commands with root privileges via …
|
CWE-20
Improper Input Validation
|
CVE-2014-0679
|
2024-11-21 11:02 |
2014-02-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292373
|
- |
|
cybozu
|
garoon
|
SQL injection vulnerability in the download feature in Cybozu Garoon 2.x through 2.5.4 and 3.x through 3.7 SP3 allows remote authenticated users to execute arbitrary SQL commands via unspecified vect…
|
CWE-89
SQL Injection
|
CVE-2014-0821
|
2024-11-21 11:02 |
2014-02-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292374
|
- |
|
cybozu
|
garoon
|
Directory traversal vulnerability in the download feature in Cybozu Garoon 2.x through 2.5.4 and 3.x through 3.7 SP3 allows remote authenticated users to read arbitrary files via unspecified vectors.
|
CWE-22
Path Traversal
|
CVE-2014-0820
|
2024-11-21 11:02 |
2014-02-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292375
|
- |
|
cybozu
|
garoon
|
Cybozu Garoon 2.x through 2.5.4 and 3.x through 3.7 SP3 does not properly manage sessions, which allows remote authenticated users to impersonate arbitrary users via unspecified vectors.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-0817
|
2024-11-21 11:02 |
2014-02-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292376
|
- |
|
norman
|
security_suite
|
Unspecified vulnerability in Norman Security Suite 10.1 and earlier allows local users to gain privileges via unknown vectors.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-0816
|
2024-11-21 11:02 |
2014-02-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292377
|
- |
|
cisco
|
unified_communications_manager
|
The Certificate Authority Proxy Function (CAPF) CLI implementation in Cisco Unified Communications Manager (Unified CM) 10.0(1) and earlier allows local users to inject commands via unspecified CAPF …
|
CWE-20
Improper Input Validation
|
CVE-2014-0747
|
2024-11-21 11:02 |
2014-02-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292378
|
- |
|
cisco
|
unified_contact_center_express_editor_software
|
The disaster recovery system (DRS) in Cisco Unified Contact Center Express (Unified CCX) allows remote authenticated users to obtain sensitive information by reading extraneous fields in an HTML docu…
|
CWE-200
Information Exposure
|
CVE-2014-0746
|
2024-11-21 11:02 |
2014-02-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292379
|
- |
|
cisco
|
unified_contact_center_express_editor_software
|
Cross-site request forgery (CSRF) vulnerability in the Unified Serviceability subsystem in Cisco Unified Contact Center Express (Unified CCX) allows remote attackers to hijack the authentication of a…
|
CWE-352
Origin Validation Error
|
CVE-2014-0745
|
2024-11-21 11:02 |
2014-02-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292380
|
- |
|
cisco
|
unified_communications_manager
|
The Certificate Authority Proxy Function (CAPF) component in Cisco Unified Communications Manager (Unified CM) 10.0(1) and earlier allows remote attackers to bypass authentication and modify register…
|
CWE-287
Improper Authentication
|
CVE-2014-0743
|
2024-11-21 11:02 |
2014-02-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
