|
290621
|
- |
|
cisco
|
unified_communications_manager
|
SQL injection vulnerability in the CallManager Interactive Voice Response (CMIVR) interface in Cisco Unified Communications Manager (UCM) allows remote attackers to execute arbitrary SQL commands via…
|
CWE-89
SQL Injection
|
CVE-2014-0727
|
2024-11-21 11:02 |
2014-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290622
|
- |
|
cisco
|
unified_communications_manager
|
SQL injection vulnerability in the IP Manager Assistant (IPMA) interface in Cisco Unified Communications Manager (UCM) 10.0(1) and earlier allows remote attackers to execute arbitrary SQL commands vi…
|
CWE-89
SQL Injection
|
CVE-2014-0726
|
2024-11-21 11:02 |
2014-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290623
|
- |
|
cisco
|
unified_communications_manager
|
Cisco Unified Communications Manager (UCM) does not require authentication for reading WAR files, which allows remote attackers to obtain sensitive information via unspecified access to a "file stora…
|
CWE-287
Improper Authentication
|
CVE-2014-0725
|
2024-11-21 11:02 |
2014-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290624
|
- |
|
cisco
|
unified_communications_manager
|
The bulk administration interface in Cisco Unified Communications Manager (UCM) 10.0(1) and earlier allows remote attackers to bypass authentication and read arbitrary files by using an unspecified p…
|
CWE-20
Improper Input Validation
|
CVE-2014-0724
|
2024-11-21 11:02 |
2014-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290625
|
- |
|
cisco
|
unified_communications_manager
|
Cross-site scripting (XSS) vulnerability in the IP Manager Assistant (IPMA) interface in Cisco Unified Communications Manager (UCM) allows remote attackers to inject arbitrary web script or HTML via …
|
CWE-79
Cross-site Scripting
|
CVE-2014-0723
|
2024-11-21 11:02 |
2014-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290626
|
- |
|
cisco
|
unified_communications_manager
|
The log4jinit web application in Cisco Unified Communications Manager (UCM) does not properly validate authentication, which allows remote attackers to cause a denial of service (performance degradat…
|
CWE-287
Improper Authentication
|
CVE-2014-0722
|
2024-11-21 11:02 |
2014-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290627
|
- |
|
adobe
|
shockwave_player
|
Adobe Shockwave Player before 12.0.9.149 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-0501
|
2024-11-21 11:02 |
2014-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290628
|
- |
|
adobe
|
shockwave_player
|
Adobe Shockwave Player before 12.0.9.149 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-0500
|
2024-11-21 11:02 |
2014-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290629
|
- |
|
ibm
|
lotus_domino
|
The IMAP server in IBM Domino 8.5.x before 8.5.3 FP6 IF1 and 9.0.x before 9.0.1 FP1 allows remote attackers to cause a denial of service (daemon crash) via unspecified vectors, aka SPR KLYH9F4S2Z.
|
NVD-CWE-noinfo
|
CVE-2014-0822
|
2024-11-21 11:02 |
2014-02-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290630
|
- |
|
opera
|
opera_browser
|
The intent: URL implementation in Opera before 18 on Android allows attackers to read local files by leveraging an interaction error, as demonstrated by reading stored cookies.
|
CWE-200
Information Exposure
|
CVE-2014-0815
|
2024-11-21 11:02 |
2014-02-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
