|
277191
|
- |
|
apple
|
mac_os_x
|
coresymbolicationd in CoreSymbolication in Apple OS X before 10.10.2 does not verify that expected data types are present in XPC messages, which allows attackers to execute arbitrary code in a privil…
|
CWE-19
Data Processing Errors
|
CVE-2014-8817
|
2024-11-21 11:19 |
2015-01-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277192
|
- |
|
apple
|
mac_os_x
|
CoreGraphics in Apple OS X before 10.10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted PDF document.
|
CWE-399
Resource Management Errors
|
CVE-2014-8816
|
2024-11-21 11:19 |
2015-01-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277193
|
- |
|
ibm
|
tririga_application_platform
|
IBM TRIRIGA Application Platform 3.2.1.x, 3.3.2 before 3.3.2.3, and 3.4.1 before 3.4.1.1 allows remote attackers to bypass intended access restrictions and read the image files of arbitrary users via…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-8895
|
2024-11-21 11:19 |
2015-01-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277194
|
- |
|
ibm
|
tririga_application_platform
|
Open redirect vulnerability in IBM TRIRIGA Application Platform 3.2.1.x, 3.3.2 before 3.3.2.3, and 3.4.1 before 3.4.1.1 allows remote authenticated users to redirect users to arbitrary web sites and …
|
NVD-CWE-Other
|
CVE-2014-8894
|
2024-11-21 11:19 |
2015-01-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277195
|
- |
|
ibm
|
tririga_application_platform
|
Multiple cross-site scripting (XSS) vulnerabilities in (1) mainpage.jsp and (2) GetImageServlet.img in IBM TRIRIGA Application Platform 3.2.1.x, 3.3.2 before 3.3.2.3, and 3.4.1 before 3.4.1.1 allow r…
|
CWE-79
Cross-site Scripting
|
CVE-2014-8893
|
2024-11-21 11:19 |
2015-01-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277196
|
- |
|
ibm
|
i_access
|
Buffer overflow in the Data Transfer Program in IBM i Access 5770-XE1 5R4, 6.1, and 7.1 on Windows allows local users to gain privileges via unspecified vectors.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-8920
|
2024-11-21 11:19 |
2015-01-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277197
|
- |
|
ibm
|
social_media_analytics
financial_transaction_manager
financial_transaction_manager_for_check_services
financial_transaction_manager_for_corporate_payment_services
|
Multiple cross-site scripting (XSS) vulnerabilities in (1) dojox/form/resources/uploader.swf (aka upload.swf), (2) dojox/form/resources/fileuploader.swf (aka fileupload.swf), (3) dojox/av/resources/a…
|
CWE-79
Cross-site Scripting
|
CVE-2014-8917
|
2024-11-21 11:19 |
2015-01-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277198
|
- |
|
genetechsolutions
|
pie_register
|
The Pie Register plugin before 2.0.14 for WordPress does not properly restrict access to certain functions in pie-register.php, which allows remote attackers to (1) add a user by uploading a crafted …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-8802
|
2024-11-21 11:19 |
2015-01-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277199
|
- |
|
siemens
|
scalance_x-408_firmware
scalance_x-300_series_firmware
|
The FTP server on Siemens SCALANCE X-300 switches with firmware before 4.0 and SCALANCE X 408 switches with firmware before 4.0 allows remote authenticated users to cause a denial of service (reboot)…
|
CWE-20
Improper Input Validation
|
CVE-2014-8479
|
2024-11-21 11:19 |
2015-01-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277200
|
- |
|
siemens
|
scalance_x-300_series_firmware
scalance_x-408_firmware
|
The web server on Siemens SCALANCE X-300 switches with firmware before 4.0 and SCALANCE X 408 switches with firmware before 4.0 allows remote attackers to cause a denial of service (reboot) via malfo…
|
CWE-22
Path Traversal
|
CVE-2014-8478
|
2024-11-21 11:19 |
2015-01-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
