|
281131
|
- |
|
digium
|
asterisk
certified_asterisk
|
Asterisk Open Source 11.x before 11.10.1 and 12.x before 12.3.1 and Certified Asterisk 11.6 before 11.6-cert3 allows remote authenticated Manager users to execute arbitrary shell commands via a MixMo…
|
NVD-CWE-Other
|
CVE-2014-4046
|
2024-11-21 11:09 |
2014-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281132
|
- |
|
digium
|
asterisk
|
The Publish/Subscribe Framework in the PJSIP channel driver in Asterisk Open Source 12.x before 12.3.1, when sub_min_expiry is set to zero, allows remote attackers to cause a denial of service (asser…
|
CWE-189
Numeric Errors
|
CVE-2014-4045
|
2024-11-21 11:09 |
2014-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281133
|
- |
|
openafs
|
openafs
|
OpenAFS 1.6.8 does not properly clear the fields in the host structure, which allows remote attackers to cause a denial of service (uninitialized memory access and crash) via unspecified vectors rela…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-4044
|
2024-11-21 11:09 |
2014-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281134
|
- |
|
shoutcast
|
dnas
|
Cross-site scripting (XSS) vulnerability in the song history in SHOUTcast DNAS 2.2.1 allows remote attackers to inject arbitrary web script or HTML via the mp3 title field.
|
CWE-79
Cross-site Scripting
|
CVE-2014-4166
|
2024-11-21 11:09 |
2014-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281135
|
- |
|
opensuse
ntop
|
opensuse
ntop
|
Cross-site scripting (XSS) vulnerability in ntop allows remote attackers to inject arbitrary web script or HTML via the title parameter in a list action to plugins/rrdPlugin.
|
CWE-79
Cross-site Scripting
|
CVE-2014-4165
|
2024-11-21 11:09 |
2014-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281136
|
- |
|
algosec
|
fireflow
|
Cross-site scripting (XSS) vulnerability in AlgoSec FireFlow 6.3-b230 allows remote attackers to inject arbitrary web script or HTML via a user signature to SelfService/Prefs.html.
|
CWE-79
Cross-site Scripting
|
CVE-2014-4164
|
2024-11-21 11:09 |
2014-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281137
|
- |
|
featured_comments_plugin_project
|
featured_comments
|
Multiple cross-site request forgery (CSRF) vulnerabilities in the Featured Comments plugin 1.2.1 for WordPress allow remote attackers to hijack the authentication of administrators for requests that …
|
CWE-352
Origin Validation Error
|
CVE-2014-4163
|
2024-11-21 11:09 |
2014-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281138
|
- |
|
zyxel
|
p-660hw
|
Multiple cross-site request forgery (CSRF) vulnerabilities in the Zyxel P-660HW-T1 (v3) wireless router allow remote attackers to hijack the authentication of administrators for requests that change …
|
CWE-352
Origin Validation Error
|
CVE-2014-4162
|
2024-11-21 11:09 |
2014-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281139
|
- |
|
reviewboard
|
djblets
|
Cross-site scripting (XSS) vulnerability in gravatars/templatetags/gravatars.py in Djblets before 0.7.30 and 0.8.x before 0.8.3 for Django allows remote attackers to inject arbitrary web script or HT…
|
CWE-79
Cross-site Scripting
|
CVE-2014-3995
|
2024-11-21 11:09 |
2014-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281140
|
- |
|
reviewboard
|
djblets
reviewboard
|
Cross-site scripting (XSS) vulnerability in util/templatetags/djblets_js.py in Djblets before 0.7.30 and 0.8.x before 0.8.3 for Django, as used in Review Board, allows remote attackers to inject arbi…
|
CWE-79
Cross-site Scripting
|
CVE-2014-3994
|
2024-11-21 11:09 |
2014-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
