|
285991
|
- |
|
hiox
|
hiox_guest_book
|
Multiple cross-site scripting (XSS) vulnerabilities in add.php in HIOX Guest Book (HGB) 5.0 allow remote attackers to inject arbitrary web script or HTML via the (1) name1, (2) email, or (3) cmt para…
|
CWE-79
Cross-site Scripting
|
CVE-2014-1620
|
2024-11-21 11:04 |
2014-01-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285992
|
- |
|
cubicfactory
|
cubic_cms
|
Multiple SQL injection vulnerabilities in Cubic CMS 5.1.1, 5.1.2, and 5.2 allow remote attackers to execute arbitrary SQL commands via the (1) resource_id or (2) version_id parameter to recursos/agen…
|
CWE-89
SQL Injection
|
CVE-2014-1619
|
2024-11-21 11:04 |
2014-01-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285993
|
- |
|
uaepd
|
shopping_cart_script
|
Multiple SQL injection vulnerabilities in UAEPD Shopping Cart Script allow remote attackers to execute arbitrary SQL commands via the (1) cat_id or (2) p_id parameter to products.php or id parameter …
|
CWE-89
SQL Injection
|
CVE-2014-1618
|
2024-11-21 11:04 |
2014-01-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285994
|
- |
|
freebsd
|
freebsd
|
Stack-based buffer overflow in lib/snmpagent.c in bsnmpd, as used in FreeBSD 8.3 through 10.0, allows remote attackers to cause a denial of service (daemon crash) and possibly execute arbitrary code …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-1452
|
2024-11-21 11:04 |
2014-01-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285995
|
- |
|
linux
|
linux_kernel
|
The yam_ioctl function in drivers/net/hamradio/yam.c in the Linux kernel before 3.12.8 does not initialize a certain structure member, which allows local users to obtain sensitive information from ke…
|
CWE-399
Resource Management Errors
|
CVE-2014-1446
|
2024-11-21 11:04 |
2014-01-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285996
|
- |
|
linux
|
linux_kernel
|
The wanxl_ioctl function in drivers/net/wan/wanxl.c in the Linux kernel before 3.11.7 does not properly initialize a certain data structure, which allows local users to obtain sensitive information f…
|
CWE-399
Resource Management Errors
|
CVE-2014-1445
|
2024-11-21 11:04 |
2014-01-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285997
|
- |
|
linux
|
linux_kernel
|
The fst_get_iface function in drivers/net/wan/farsync.c in the Linux kernel before 3.11.7 does not properly initialize a certain data structure, which allows local users to obtain sensitive informati…
|
CWE-399
Resource Management Errors
|
CVE-2014-1444
|
2024-11-21 11:04 |
2014-01-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285998
|
- |
|
linux
|
linux_kernel
|
The restore_fpu_checking function in arch/x86/include/asm/fpu-internal.h in the Linux kernel before 3.12.8 on the AMD K7 and K8 platforms does not clear pending exceptions before proceeding to an EMM…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-1438
|
2024-11-21 11:04 |
2014-01-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285999
|
- |
|
mcafee
|
vulnerability_manager
|
Multiple cross-site request forgery (CSRF) vulnerabilities in the Enterprise Manager in McAfee Vulnerability Manager (MVM) 7.5.5 and earlier allow remote attackers to hijack the authentication of use…
|
CWE-352
Origin Validation Error
|
CVE-2014-1473
|
2024-11-21 11:04 |
2014-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286000
|
- |
|
mcafee
|
vulnerability_manager
|
Multiple cross-site scripting (XSS) vulnerabilities in the Enterprise Manager in McAfee Vulnerability Manager (MVM) 7.5.5 and earlier allow remote attackers to inject arbitrary web script or HTML via…
|
CWE-79
Cross-site Scripting
|
CVE-2014-1472
|
2024-11-21 11:04 |
2014-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
