|
293341
|
- |
|
pivotx
|
pivotx
|
Multiple unrestricted file upload vulnerabilities in fileupload.php in PivotX before 2.3.9 allow remote authenticated users to execute arbitrary PHP code by uploading a file with a (1) .php or (2) .p…
|
NVD-CWE-Other
|
CVE-2014-0342
|
2024-11-21 11:01 |
2014-04-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293342
|
- |
|
pivotx
|
pivotx
|
Multiple cross-site scripting (XSS) vulnerabilities in PivotX before 2.3.9 allow remote authenticated users to inject arbitrary web script or HTML via the title field to (1) templates_internal/pages.…
|
CWE-79
Cross-site Scripting
|
CVE-2014-0341
|
2024-11-21 11:01 |
2014-04-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293343
|
- |
|
linux
|
linux_kernel
|
The ioapic_deliver function in virt/kvm/ioapic.c in the Linux kernel through 3.14.1 does not properly validate the kvm_irq_delivery_to_apic return value, which allows guest OS users to cause a denial…
|
CWE-20
Improper Input Validation
|
CVE-2014-0155
|
2024-11-21 11:01 |
2014-04-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293344
|
- |
|
linux
|
linux_kernel
|
drivers/vhost/net.c in the Linux kernel before 3.13.10, when mergeable buffers are disabled, does not properly validate packet lengths, which allows guest OS users to cause a denial of service (memor…
|
CWE-787
Out-of-bounds Write
|
CVE-2014-0077
|
2024-11-21 11:01 |
2014-04-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293345
|
- |
|
openafs
debian
|
openafs
debian_linux
|
Buffer overflow in the GetStatistics64 remote procedure call (RPC) in OpenAFS 1.4.8 before 1.6.7 allows remote attackers to cause a denial of service (crash) via a crafted statsVersion argument.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-0159
|
2024-11-21 11:01 |
2014-04-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293346
|
- |
|
squid-cache
opensuse
|
squid
opensuse
|
Squid 3.1 before 3.3.12 and 3.4 before 3.4.4, when SSL-Bump is enabled, allows remote attackers to cause a denial of service (assertion failure) via a crafted range request, related to state manageme…
|
CWE-20
Improper Input Validation
|
CVE-2014-0128
|
2024-11-21 11:01 |
2014-04-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293347
|
- |
|
j2k-codec
|
j2k-codec
|
Multiple unspecified vulnerabilities in J2k-Codec allow remote attackers to execute arbitrary code via a crafted JPEG 2000 file.
|
NVD-CWE-noinfo
|
CVE-2014-0349
|
2024-11-21 11:01 |
2014-04-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293348
|
- |
|
websense
|
triton_web_security_gateway_anywhere
triton_web_security
triton_unified_security_center
triton_web_filter
triton_web_security_gateway
|
The Settings module in Websense Triton Unified Security Center 7.7.3 before Hotfix 31, Web Filter 7.7.3 before Hotfix 31, Web Security 7.7.3 before Hotfix 31, Web Security Gateway 7.7.3 before Hotfix…
|
CWE-255
Credentials Management
|
CVE-2014-0347
|
2024-11-21 11:01 |
2014-04-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293349
|
- |
|
elfutils_project
|
elfutils
|
Integer overflow in the check_section function in dwarf_begin_elf.c in the libdw library, as used in elfutils 0.153 and possibly through 0.158 allows remote attackers to cause a denial of service (ap…
|
CWE-189
Numeric Errors
|
CVE-2014-0172
|
2024-11-21 11:01 |
2014-04-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293350
|
- |
|
fortinet
|
fortiadc_firmware
fortiadc-1000e
fortiadc-1500d
fortiadc-2000d
fortiadc-200d
fortiadc-300e
fortiadc-4000d
fortiadc-400e
fortiadc-600e
|
Cross-site scripting (XSS) vulnerability in the web administration interface in FortiADC with firmware before 3.2.1 allows remote attackers to inject arbitrary web script or HTML via the locale param…
|
CWE-79
Cross-site Scripting
|
CVE-2014-0331
|
2024-11-21 11:01 |
2014-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
