|
278421
|
- |
|
easy_banners_plugin_project
|
easy_banners
|
Cross-site scripting (XSS) vulnerability in the Easy Banners plugin 1.4 for WordPress allows remote attackers to inject arbitrary web script or HTML via the name parameter to wp-admin/options-general…
|
CWE-79
Cross-site Scripting
|
CVE-2014-4723
|
2024-11-21 11:10 |
2014-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278422
|
- |
|
ocsinventory-ng
|
ocsinventory_ng
|
Multiple cross-site scripting (XSS) vulnerabilities in the OCS Reports Web Interface in OCS Inventory NG allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2014-4722
|
2024-11-21 11:10 |
2014-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278423
|
- |
|
foxitsoftware
|
foxit_pdf_sdk_dll
|
Buffer overflow in the FPDFBookmark_GetTitle method in Foxit PDF SDK DLL before 3.1.1.5005 allows context-dependent attackers to execute arbitrary code via unspecified vectors.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-4646
|
2024-11-21 11:10 |
2014-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278424
|
- |
|
php
debian
|
php
debian_linux
|
The phpinfo implementation in ext/standard/info.c in PHP before 5.4.30 and 5.5.x before 5.5.14 does not ensure use of the string data type for the PHP_AUTH_PW, PHP_AUTH_TYPE, PHP_AUTH_USER, and PHP_S…
|
CWE-200
Information Exposure
|
CVE-2014-4721
|
2024-11-21 11:10 |
2014-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278425
|
- |
|
email\
|
\
|
Email::Address module before 1.904 for Perl uses an inefficient regular expression, which allows remote attackers to cause a denial of service (CPU consumption) via vectors related to "backtracking i…
|
NVD-CWE-Other
|
CVE-2014-4720
|
2024-11-21 11:10 |
2014-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278426
|
- |
|
yiiframework
|
yiiframework
|
The CDetailView widget in Yii PHP Framework 1.1.14 allows remote attackers to execute arbitrary PHP scripts via vectors related to the value property.
|
CWE-94
Code Injection
|
CVE-2014-4672
|
2024-11-21 11:10 |
2014-07-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278427
|
- |
|
usvn
|
user-friendly_svn
|
Cross-site scripting (XSS) vulnerability in the login panel (svn/login/) in User-Friendly SVN (aka USVN) before 1.0.7 allows remote attackers to inject arbitrary web script or HTML via the username f…
|
CWE-79
Cross-site Scripting
|
CVE-2014-4719
|
2024-11-21 11:10 |
2014-07-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278428
|
- |
|
lunarcms
|
lunar_cms
|
Multiple cross-site request forgery (CSRF) vulnerabilities in Lunar CMS before 3.3-3 allow remote attackers to hijack the authentication of administrators for requests that (1) add Super users via a …
|
CWE-352
Origin Validation Error
|
CVE-2014-4718
|
2024-11-21 11:10 |
2014-07-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278429
|
- |
|
sharethis
|
simple_share_buttons_adder
|
Multiple cross-site request forgery (CSRF) vulnerabilities in the Simple Share Buttons Adder plugin before 4.5 for WordPress allow remote attackers to hijack the authentication of administrators for …
|
CWE-352
Origin Validation Error
|
CVE-2014-4717
|
2024-11-21 11:10 |
2014-07-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278430
|
- |
|
thomson
|
twg87ouir
|
Cross-site request forgery (CSRF) vulnerability in Thomson TWG87OUIR allows remote attackers to hijack the authentication of unspecified victims for requests that change passwords via the Password an…
|
CWE-352
Origin Validation Error
|
CVE-2014-4716
|
2024-11-21 11:10 |
2014-07-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
