|
277481
|
- |
|
cimon
|
cmnview
ultimateaccess
|
Untrusted search path vulnerability in CmnView.exe in CIMON CmnView 2.14.0.1 and 3.x before UltimateAccess 3.02 allows local users to gain privileges via a Trojan horse DLL in the current working dir…
|
NVD-CWE-Other
|
CVE-2014-9207
|
2024-11-21 11:20 |
2015-03-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277482
|
- |
|
schneider-electric
|
device_type_manager
|
Stack-based buffer overflow in Device Type Manager (DTM) 3.1.6 and earlier for Schneider Electric Invensys SRD Control Valve Positioner devices 960 and 991 allows local users to gain privileges via a…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-9206
|
2024-11-21 11:20 |
2015-03-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277483
|
- |
|
openkm
|
openkm
|
Cross-site scripting (XSS) vulnerability in OpenKM before 6.4.19 (build 23338) allows remote authenticated users to inject arbitrary web script or HTML via the Subject field in a Task to frontend/ind…
|
CWE-79
Cross-site Scripting
|
CVE-2014-9017
|
2024-11-21 11:20 |
2015-03-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277484
|
- |
|
debian
fedoraproject
bestpractical
|
debian_linux
fedora
request_tracker
|
The email gateway in RT (aka Request Tracker) 3.0.0 through 4.x before 4.0.23 and 4.2.x before 4.2.10 allows remote attackers to cause a denial of service (CPU and disk consumption) via a crafted ema…
|
CWE-399
Resource Management Errors
|
CVE-2014-9472
|
2024-11-21 11:20 |
2015-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277485
|
- |
|
siemens
|
spc5000_firmware
spc4000_firmware
spc6000_firmware
|
Siemens SPC controllers SPC4000, SPC5000, and SPC6000 before 3.6.0 allow remote attackers to cause a denial of service (device restart) via crafted packets.
|
CWE-20
Improper Input Validation
|
CVE-2014-9369
|
2024-11-21 11:20 |
2015-03-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277486
|
- |
|
bestwebsoft
|
captcha
|
The BestWebSoft Captcha plugin before 4.0.7 for WordPress allows remote attackers to bypass the CAPTCHA protection mechanism and obtain administrative access via unspecified vectors.
|
NVD-CWE-noinfo
|
CVE-2014-9283
|
2024-11-21 11:20 |
2015-03-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277487
|
- |
|
speed_software
|
explorer
root_explorer
|
Directory traversal vulnerability in the Speed Root Explorer application before 3.2 for Android and the Speed Explorer application before 2.2 for Android allows remote attackers to write to arbitrary…
|
CWE-22
Path Traversal
|
CVE-2014-9282
|
2024-11-21 11:20 |
2015-02-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277488
|
- |
|
gnu
canonical
opensuse
|
glibc
ubuntu_linux
opensuse
|
The nss_dns implementation of getnetbyname in GNU C Library (aka glibc) before 2.21, when the DNS backend in the Name Service Switch configuration is enabled, allows remote attackers to cause a denia…
|
CWE-399
Resource Management Errors
|
CVE-2014-9402
|
2024-11-21 11:20 |
2015-02-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277489
|
- |
|
instantasp
|
instantforum
|
Multiple cross-site scripting (XSS) vulnerabilities in InstantASP InstantForum.NET 4.1.3, 4.1.2, 4.1.1, 4.0.0, 4.1.0, and 3.4.0 allow remote attackers to inject arbitrary web script or HTML via the S…
|
CWE-79
Cross-site Scripting
|
CVE-2014-9468
|
2024-11-21 11:20 |
2015-02-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277490
|
- |
|
fedoraproject
zarafa
|
fedora
zarafa_collaboration_platform
webapp
|
senddocument.php in Zarafa WebApp before 2.0 beta 3 and WebAccess in Zarafa Collaboration Platform (ZCP) 7.x before 7.1.12 beta 1 and 7.2.x before 7.2.0 beta 1 allows remote attackers to cause a deni…
|
CWE-399
Resource Management Errors
|
CVE-2014-9465
|
2024-11-21 11:20 |
2015-02-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
