|
285401
|
- |
|
hp
|
system_management_homepage
|
Cross-site scripting (XSS) vulnerability in HP System Management Homepage (SMH) before 7.4 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2014-2640
|
2024-11-21 11:06 |
2014-10-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285402
|
- |
|
hp
|
mpio_device_specific_module_manager
|
Unspecified vulnerability in HP MPIO Device Specific Module Manager before 4.02.00 allows local users to gain privileges via unknown vectors.
|
CWE-94
Code Injection
|
CVE-2014-2639
|
2024-11-21 11:06 |
2014-09-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285403
|
- |
|
ecava
|
integraxor
|
Ecava IntegraXor SCADA Server Stable 4.1.4360 and earlier and Beta 4.1.4392 and earlier allows remote attackers to discover full pathnames via an application tag.
|
CWE-200
Information Exposure
|
CVE-2014-2377
|
2024-11-21 11:06 |
2014-09-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285404
|
- |
|
ecava
|
integraxor
|
SQL injection vulnerability in Ecava IntegraXor SCADA Server Stable 4.1.4360 and earlier and Beta 4.1.4392 and earlier allows remote attackers to execute arbitrary SQL commands via unspecified vector…
|
CWE-89
SQL Injection
|
CVE-2014-2376
|
2024-11-21 11:06 |
2014-09-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285405
|
- |
|
ecava
|
integraxor
|
Ecava IntegraXor SCADA Server Stable 4.1.4360 and earlier and Beta 4.1.4392 and earlier allows remote attackers to read or write to arbitrary files, and obtain sensitive information or cause a denial…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-2375
|
2024-11-21 11:06 |
2014-09-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285406
|
- |
|
hp
|
network_node_manager_i
|
Unspecified vulnerability in HP Network Node Manager i (NNMi) 9.0x, 9.1x, and 9.2x allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-2264.
|
NVD-CWE-noinfo
|
CVE-2014-2624
|
2024-11-21 11:06 |
2014-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285407
|
- |
|
microsoft
|
internet_explorer
|
Microsoft Internet Explorer 6 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corru…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-2799
|
2024-11-21 11:06 |
2014-09-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285408
|
- |
|
sensysnetworks
|
trafficdot
vsn240-f
vsn240-t
vds
|
Sensys Networks VSN240-F and VSN240-T sensors VDS before 2.10.1 and TrafficDOT before 2.10.3 do not use encryption, which allows remote attackers to interfere with traffic control by replaying transm…
|
CWE-310
Cryptographic Issues
|
CVE-2014-2379
|
2024-11-21 11:06 |
2014-09-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285409
|
- |
|
sensysnetworks
|
trafficdot
vsn240-f
vsn240-t
vds
|
Sensys Networks VSN240-F and VSN240-T sensors VDS before 2.10.1 and TrafficDOT before 2.10.3 do not verify the integrity of downloaded updates, which allows remote attackers to execute arbitrary code…
|
CWE-94
Code Injection
|
CVE-2014-2378
|
2024-11-21 11:06 |
2014-09-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285410
|
- |
|
zend
|
zend_framework
zendopenid
|
The GenericConsumer class in the Consumer component in ZendOpenId before 2.0.2 and the Zend_OpenId_Consumer class in Zend Framework 1 before 1.12.4 violate the OpenID 2.0 protocol by ensuring only th…
|
CWE-287
Improper Authentication
|
CVE-2014-2685
|
2024-11-21 11:06 |
2014-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
