|
286741
|
- |
|
cybozu
|
garoon
|
Cybozu Garoon 3.0 through 3.7 SP3 allows remote authenticated users to bypass intended access restrictions and delete schedule information via unspecified API calls.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-1989
|
2024-11-21 11:05 |
2014-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286742
|
- |
|
cybozu
|
garoon
|
The Phone Messages feature in Cybozu Garoon 2.0.0 through 3.7 SP2 allows remote authenticated users to cause a denial of service (resource consumption) via unspecified vectors.
|
NVD-CWE-noinfo
|
CVE-2014-1988
|
2024-11-21 11:05 |
2014-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286743
|
- |
|
ajenti
|
ajenti
|
Cross-site scripting (XSS) vulnerability in plugins/main/content/js/ajenti.coffee in Eugene Pankov Ajenti 1.2.13 allows remote authenticated users to inject arbitrary web script or HTML via the comma…
|
CWE-79
Cross-site Scripting
|
CVE-2014-2260
|
2024-11-21 11:05 |
2014-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286744
|
- |
|
fortinet
|
fortiweb
|
FortiGuard FortiWeb before 5.0.3 allows remote authenticated users to gain privileges via unspecified vectors.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-1957
|
2024-11-21 11:05 |
2014-04-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286745
|
- |
|
fortinet
|
fortiweb
|
CRLF injection vulnerability in FortiGuard FortiWeb before 5.0.3 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vectors.
|
NVD-CWE-Other
|
CVE-2014-1956
|
2024-11-21 11:05 |
2014-04-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286746
|
- |
|
fortinet
|
fortiweb
|
Cross-site scripting (XSS) vulnerability in FortiGuard FortiWeb before 5.0.3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2014-1955
|
2024-11-21 11:05 |
2014-04-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286747
|
- |
|
cisco
|
webex_meetings_server
|
Cross-site request forgery (CSRF) vulnerability in the web framework in Cisco WebEx Meetings Server allows remote attackers to hijack the authentication of arbitrary users, aka Bug ID CSCuj81777.
|
CWE-352
Origin Validation Error
|
CVE-2014-2186
|
2024-11-21 11:05 |
2014-04-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286748
|
- |
|
cisco
|
unified_communications_manager
|
The Call Detail Records (CDR) Management component in Cisco Unified Communications Manager (Unified CM) allows remote authenticated users to obtain sensitive information by reading extraneous fields …
|
CWE-200
Information Exposure
|
CVE-2014-2185
|
2024-11-21 11:05 |
2014-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286749
|
- |
|
cisco
|
unified_communications_manager
|
The IP Manager Assistant (IPMA) component in Cisco Unified Communications Manager (Unified CM) allows remote attackers to obtain sensitive information via a crafted URL, aka Bug ID CSCun74352.
|
CWE-20
Improper Input Validation
|
CVE-2014-2184
|
2024-11-21 11:05 |
2014-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286750
|
- |
|
cisco
|
ios_xe
asr_1001
asr_1002
asr_1002-x
asr_1002_fixed_router
asr_1004
asr_1006
asr_1013
asr_1023_router
|
The L2TP module in Cisco IOS XE 3.10S(.2) and earlier on ASR 1000 routers allows remote authenticated users to cause a denial of service (ESP card reload) via a malformed L2TP packet, aka Bug ID CSCu…
|
CWE-20
Improper Input Validation
|
CVE-2014-2183
|
2024-11-21 11:05 |
2014-04-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
