|
280431
|
- |
|
atcom
|
netvolution
|
SQL injection vulnerability in ATCOM Netvolution 3 allows remote attackers to execute arbitrary SQL commands via the m parameter.
|
CWE-89
SQL Injection
|
CVE-2014-2318
|
2024-11-21 11:06 |
2014-03-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280432
|
- |
|
opendocman
|
opendocman
|
SQL injection vulnerability in ajax_udf.php in OpenDocMan before 1.2.7.2 allows remote attackers to execute arbitrary SQL commands via the table parameter. NOTE: some of these details are obtained f…
|
CWE-89
SQL Injection
|
CVE-2014-2317
|
2024-11-21 11:06 |
2014-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280433
|
- |
|
zemanta
|
search_everything
|
SQL injection vulnerability in se_search_default in the Search Everything plugin before 7.0.3 for WordPress allows remote attackers to execute arbitrary SQL commands via the s parameter to index.php.…
|
CWE-89
SQL Injection
|
CVE-2014-2316
|
2024-11-21 11:06 |
2014-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280434
|
- |
|
atlassian
|
jira
|
Directory traversal vulnerability in the Issue Collector plugin in Atlassian JIRA before 6.0.4 allows remote attackers to create arbitrary files via unspecified vectors.
|
CWE-22
Path Traversal
|
CVE-2014-2314
|
2024-11-21 11:06 |
2014-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280435
|
- |
|
shinephp
|
thank_you_counter_button
|
Multiple cross-site scripting (XSS) vulnerabilities in the Thank You Counter Button plugin 1.8.7 for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) thanks_caption…
|
CWE-79
Cross-site Scripting
|
CVE-2014-2315
|
2024-11-21 11:06 |
2014-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280436
|
- |
|
atlassian
|
jira
|
Directory traversal vulnerability in the Importers plugin in Atlassian JIRA before 6.0.5 allows remote attackers to create arbitrary files via unspecified vectors.
|
CWE-22
Path Traversal
|
CVE-2014-2313
|
2024-11-21 11:06 |
2014-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280437
|
9.8 |
CRITICAL
Network
|
talend
|
restlet
|
The XStream extension in HP Fortify SCA before 2.2 RC3 allows remote attackers to execute arbitrary code via unsafe deserialization of XML messages.
|
CWE-776
XML Entity Expansion
|
CVE-2014-2228
|
2024-11-21 11:05 |
2020-02-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280438
|
7.8 |
HIGH
Local
|
imagemagick
suse
|
imagemagick
linux_enterprise_desktop
linux_enterprise_server
linux_enterprise_software_development_kit
|
Stack-based buffer overflow in the WritePSDImage function in coders/psd.c in ImageMagick 6.5.4 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary …
|
CWE-787
Out-of-bounds Write
|
CVE-2014-1947
|
2024-11-21 11:05 |
2020-02-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280439
|
9.8 |
CRITICAL
Network
|
owncloud
|
owncloud
|
Zend Framework, as used in ownCloud Server before 5.0.15 and 6.0.x before 6.0.2, allows remote attackers to read arbitrary files, cause a denial of service, or possibly have other impact via an XML E…
|
CWE-611
XXE
|
CVE-2014-2052
|
2024-11-21 11:05 |
2020-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280440
|
8.8 |
HIGH
Network
|
ui
|
unifi_controller
airvision_controller
mfi_controller
|
Multiple cross-site request forgery (CSRF) vulnerabilities in Ubiquiti Networks UniFi Controller before 3.2.1 allow remote attackers to hijack the authentication of administrators for requests that (…
|
CWE-352
Origin Validation Error
|
CVE-2014-2225
|
2024-11-21 11:05 |
2020-02-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
