|
289971
|
- |
|
boonex
|
dolphin
|
Cross-site request forgery (CSRF) vulnerability in administration/profiles.php in Dolphin 7.1.4 and earlier allows remote attackers to hijack the authentication of administrators for requests that co…
|
CWE-352
Origin Validation Error
|
CVE-2014-4333
|
2024-11-21 11:09 |
2014-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289972
|
- |
|
zte
|
zxv10_w300_firmware
zxv10_w300
|
Cross-site request forgery (CSRF) vulnerability in the ZTE ZXV10 W300 router with firmware W300V1.0.0a_ZRD_LK allows remote attackers to hijack the authentication of administrators for requests that …
|
CWE-352
Origin Validation Error
|
CVE-2014-4155
|
2024-11-21 11:09 |
2014-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289973
|
- |
|
ntop
|
ntopng
|
Cross-site scripting (XSS) vulnerability in lua/host_details.lua in ntopng 1.1 allows remote attackers to inject arbitrary web script or HTML via the host parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2014-4329
|
2024-11-21 11:09 |
2014-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289974
|
- |
|
alienvault
|
open_source_security_information_management
|
The av-centerd SOAP service in AlienVault OSSIM before 4.8.0 allows remote attackers to read arbitrary files via a crafted get_file request.
|
CWE-200
Information Exposure
|
CVE-2014-4153
|
2024-11-21 11:09 |
2014-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289975
|
- |
|
alienvault
|
open_source_security_information_management
|
The av-centerd SOAP service in AlienVault OSSIM before 4.8.0 allows remote attackers to execute arbitrary code via a crafted remote_task request, related to injecting an ssh public key.
|
CWE-94
Code Injection
|
CVE-2014-4152
|
2024-11-21 11:09 |
2014-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289976
|
- |
|
alienvault
|
open_source_security_information_management
|
The av-centerd SOAP service in AlienVault OSSIM before 4.8.0 allows remote attackers to create arbitrary files and execute arbitrary code via a crafted set_file request.
|
CWE-94
Code Injection
|
CVE-2014-4151
|
2024-11-21 11:09 |
2014-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289977
|
- |
|
opensuse
php
debian
|
opensuse
php
debian_linux
|
Heap-based buffer overflow in the php_parserr function in ext/standard/dns.c in PHP 5.6.0beta4 and earlier allows remote servers to cause a denial of service (crash) and possibly execute arbitrary co…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-4049
|
2024-11-21 11:09 |
2014-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289978
|
- |
|
xen
|
xen
|
Xen 3.2.x through 4.4.x does not properly clean memory pages recovered from guests, which allows local guest OS users to obtain sensitive information via unspecified vectors.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-4021
|
2024-11-21 11:09 |
2014-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289979
|
- |
|
wireshark
|
wireshark
|
wiretap/libpcap.c in the libpcap file parser in Wireshark 1.10.x before 1.10.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash)…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-4174
|
2024-11-21 11:09 |
2014-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289980
|
- |
|
wireshark
|
wireshark
|
The dissect_frame function in epan/dissectors/packet-frame.c in the frame metadissector in Wireshark 1.10.x before 1.10.8 interprets a negative integer as a length value even though it was intended t…
|
CWE-189
Numeric Errors
|
CVE-2014-4020
|
2024-11-21 11:09 |
2014-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
