|
276761
|
- |
|
allomani
|
allomani_weblinks
|
Multiple cross-site scripting (XSS) vulnerabilities in Allomani Weblinks 1.0 allow remote attackers to inject arbitrary web script or HTML via the (1) default URI to admin.php or the (2) id parameter…
|
CWE-79
Cross-site Scripting
|
CVE-2014-8593
|
2024-11-21 11:19 |
2014-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276762
|
- |
|
sap
|
netweaver
|
Unspecified vulnerability in SAP Host Agent, as used in SAP NetWeaver 7.02 and 7.3, allows remote attackers to cause a denial of service (process termination) via a crafted request.
|
NVD-CWE-noinfo
|
CVE-2014-8592
|
2024-11-21 11:19 |
2014-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276763
|
- |
|
sap
|
netweaver
|
Unspecified vulnerability in SAP Internet Communication Manager (ICM), as used in SAP NetWeaver 7.02 and 7.3, allows remote attackers to cause a denial of service (process termination) via unknown ve…
|
NVD-CWE-noinfo
|
CVE-2014-8591
|
2024-11-21 11:19 |
2014-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276764
|
- |
|
sap
|
netweaver_java_application_server
|
XML external entity (XXE) vulnerability in the Web Service Navigator in SAP NetWeaver Application Server (AS) Java allows remote attackers to access arbitrary files via a crafted request.
|
NVD-CWE-Other
|
CVE-2014-8590
|
2024-11-21 11:19 |
2014-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276765
|
- |
|
sap
|
network_interface_router
|
Integer overflow in SAP Network Interface Router (SAProuter) 40.4 allows remote attackers to cause a denial of service (resource consumption) via crafted requests.
|
CWE-189
Numeric Errors
|
CVE-2014-8589
|
2024-11-21 11:19 |
2014-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276766
|
- |
|
sap
|
hana
|
SQL injection vulnerability in metadata.xsjs in SAP HANA 1.00.60.379371 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2014-8588
|
2024-11-21 11:19 |
2014-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276767
|
- |
|
sap
|
commoncryptolib
sapcryptolib
sapseculib
hana
netweaver
|
SAPCRYPTOLIB before 5.555.38, SAPSECULIB, and CommonCryptoLib before 8.4.30, as used in SAP NetWeaver AS for ABAP and SAP HANA, allows remote attackers to spoof Digital Signature Algorithm (DSA) sign…
|
CWE-310
Cryptographic Issues
|
CVE-2014-8587
|
2024-11-21 11:19 |
2014-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276768
|
- |
|
cp_multi_view_event_calendar_project
|
cp_multi_view_event_calendar
|
SQL injection vulnerability in the CP Multi View Event Calendar plugin 1.01 for WordPress allows remote attackers to execute arbitrary SQL commands via the calid parameter.
|
CWE-89
SQL Injection
|
CVE-2014-8586
|
2024-11-21 11:19 |
2014-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276769
|
- |
|
wpdownloadmanager
|
wordpress_download_manager
|
Directory traversal vulnerability in the WordPress Download Manager plugin for WordPress allows remote attackers to read arbitrary files via a .. (dot dot) in the fname parameter to (1) views/file_do…
|
CWE-59
Link Following
|
CVE-2014-8585
|
2024-11-21 11:19 |
2014-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276770
|
- |
|
web-dorado
|
web-dorado_spider_video_player
|
Cross-site scripting (XSS) vulnerability in the Web Dorado Spider Video Player (aka WordPress Video Player) plugin before 1.5.2 for WordPress allows remote attackers to inject arbitrary web script or…
|
CWE-79
Cross-site Scripting
|
CVE-2014-8584
|
2024-11-21 11:19 |
2014-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
