|
290081
|
- |
|
debian
|
dpkg-dev
|
Multiple directory traversal vulnerabilities in dpkg-source in dpkg-dev 1.3.0 allow remote attackers to modify files outside of the intended directories via a source package with a crafted Index: pse…
|
CWE-22
Path Traversal
|
CVE-2014-3865
|
2024-11-21 11:09 |
2014-05-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290082
|
- |
|
debian
|
dpkg-dev
|
Directory traversal vulnerability in dpkg-source in dpkg-dev 1.3.0 allows remote attackers to modify files outside of the intended directories via a crafted source package that lacks a --- header lin…
|
CWE-22
Path Traversal
|
CVE-2014-3864
|
2024-11-21 11:09 |
2014-05-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290083
|
- |
|
webmin
|
webmin
userwin
|
Multiple cross-site scripting (XSS) vulnerabilities in Webmin before 1.690 and Usermin before 1.600 allow remote attackers to inject arbitrary web script or HTML via vectors related to popup windows.
|
CWE-79
Cross-site Scripting
|
CVE-2014-3924
|
2024-11-21 11:09 |
2014-05-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290084
|
- |
|
digitalzoomstudio
|
video_gallery
|
Multiple cross-site scripting (XSS) vulnerabilities in the Digital Zoom Studio (DZS) Video Gallery plugin for WordPress allow remote attackers to inject arbitrary web script or HTML via the logoLink …
|
CWE-79
Cross-site Scripting
|
CVE-2014-3923
|
2024-11-21 11:09 |
2014-05-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290085
|
- |
|
trendmicro
|
interscan_messaging_security_virtual_appliance
|
Cross-site scripting (XSS) vulnerability in Trend Micro InterScan Messaging Security Virtual Appliance 8.5.1.1516 allows remote authenticated users to inject arbitrary web script or HTML via the addW…
|
CWE-79
Cross-site Scripting
|
CVE-2014-3922
|
2024-11-21 11:09 |
2014-05-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290086
|
- |
|
simple_popup_project
|
simple_popup
|
Cross-site scripting (XSS) vulnerability in popup.php in the Simple Popup Images plugin for WordPress allows remote attackers to inject arbitrary web script or HTML via the z parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2014-3921
|
2024-11-21 11:09 |
2014-05-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290087
|
- |
|
dlink
|
dap-1350_firmware
dap-1350
|
Multiple SQL injection vulnerabilities in the administration login page in D-Link DAP-1350 (Rev. A1) with firmware 1.14 and earlier allow remote attackers to execute arbitrary SQL commands via the (1…
|
CWE-89
SQL Injection
|
CVE-2014-3872
|
2024-11-21 11:09 |
2014-05-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290088
|
- |
|
geodesicsolutions
|
geocore_max
|
Multiple SQL injection vulnerabilities in register.php in Geodesic Solutions GeoCore MAX 7.3.3 (formerly GeoClassifieds and GeoAuctions) allow remote attackers to execute arbitrary SQL commands via t…
|
CWE-89
SQL Injection
|
CVE-2014-3871
|
2024-11-21 11:09 |
2014-05-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290089
|
- |
|
bib2html_project
|
bib2html
|
Cross-site scripting (XSS) vulnerability in the bib2html plugin 0.9.3 for WordPress allows remote attackers to inject arbitrary web script or HTML via the styleShortName parameter in an adminStyleAdd…
|
CWE-79
Cross-site Scripting
|
CVE-2014-3870
|
2024-11-21 11:09 |
2014-05-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290090
|
- |
|
usercake
|
usercake
|
Multiple cross-site request forgery (CSRF) vulnerabilities in user_settings.php in Usercake 2.0.2 and earlier allow remote attackers to hijack the authentication of administrators for requests that c…
|
CWE-352
Origin Validation Error
|
CVE-2014-3866
|
2024-11-21 11:09 |
2014-05-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
