|
277201
|
- |
|
ibm
|
business_process_manager
|
Cross-site scripting (XSS) vulnerability in the Process Portal in IBM Business Process Manager 8.0 through 8.0.1.3, 8.5.0 through 8.5.0.1, and 8.5.5 allows remote authenticated users to inject arbitr…
|
CWE-79
Cross-site Scripting
|
CVE-2014-8914
|
2024-11-21 11:19 |
2015-01-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277202
|
- |
|
ibm
|
business_process_manager
|
Cross-site scripting (XSS) vulnerability in the Process Portal in IBM Business Process Manager 8.0 through 8.0.1.3, 8.5.0 through 8.5.0.1, and 8.5.5 allows remote authenticated users to inject arbitr…
|
CWE-79
Cross-site Scripting
|
CVE-2014-8913
|
2024-11-21 11:19 |
2015-01-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277203
|
- |
|
cagintranetworks
get-simple
|
getsimple_cms
|
XML external entity (XXE) vulnerability in admin/api.php in GetSimple CMS 3.1.1 through 3.3.x before 3.3.5 Beta 1, when in certain configurations, allows remote attackers to read arbitrary files via …
|
NVD-CWE-Other
|
CVE-2014-8790
|
2024-11-21 11:19 |
2015-01-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277204
|
- |
|
debian
|
dpkg
|
Multiple format string vulnerabilities in the parse_error_msg function in parsehelp.c in dpkg before 1.17.22 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary…
|
CWE-134
Use of Externally-Controlled Format String
|
CVE-2014-8625
|
2024-11-21 11:19 |
2015-01-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277205
|
- |
|
advantech
|
adamview
|
Multiple stack-based buffer overflows in Advantech AdamView 4.3 and earlier allow remote attackers to execute arbitrary code via a crafted (1) display properties or (2) conditional bitmap parameter i…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-8386
|
2024-11-21 11:19 |
2015-01-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277206
|
- |
|
ibm
|
vios
aix
|
lquerylv in cmdlvm in IBM AIX 5.3, 6.1, and 7.1 and VIOS 2.2.x allows local users to gain privileges via a crafted DBGCMD_LQUERYLV environment-variable value.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-8904
|
2024-11-21 11:19 |
2015-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277207
|
- |
|
tapatalk
|
tapatalk
|
Open redirect vulnerability in mobiquo/smartbanner/welcome.php in the Tapatalk (com.tapatalk.wbb4) plugin before 1.1.2 for Woltlab Burning Board 4.0 allows remote attackers to redirect users to arbit…
|
NVD-CWE-Other
|
CVE-2014-8870
|
2024-11-21 11:19 |
2015-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277208
|
- |
|
tapatalk
|
tapatalk
|
Multiple cross-site scripting (XSS) vulnerabilities in mobiquo/smartbanner/welcome.php in the Tapatalk (com.tapatalk.wbb4) plugin 1.x before 1.1.2 for Woltlab Burning Board 4.0 allow remote attackers…
|
CWE-79
Cross-site Scripting
|
CVE-2014-8869
|
2024-11-21 11:19 |
2015-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277209
|
- |
|
fedoraproject
debian
gnu
canonical
|
fedora
debian_linux
binutils
ubuntu_linux
|
The _bfd_slurp_extended_name_table function in bfd/archive.c in GNU binutils 2.24 and earlier allows remote attackers to cause a denial of service (invalid write, segmentation fault, and crash) via a…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-8738
|
2024-11-21 11:19 |
2015-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277210
|
- |
|
corel
|
fastflick
|
Multiple untrusted search path vulnerabilities in Corel FastFlick allow local users to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse (1) igfxcmrt32.dll, (2) ipl.dll, (3)…
|
NVD-CWE-Other
|
CVE-2014-8398
|
2024-11-21 11:19 |
2015-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
