|
280641
|
- |
|
mediawiki
|
mediawiki
|
includes/upload/UploadBase.php in MediaWiki before 1.19.12, 1.20.x and 1.21.x before 1.21.6, and 1.22.x before 1.22.3 does not prevent use of invalid namespaces in SVG files, which allows remote atta…
|
CWE-79
Cross-site Scripting
|
CVE-2014-2242
|
2024-11-21 11:05 |
2014-03-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280642
|
- |
|
cisco
|
unified_communications_domain_manager
|
Multiple cross-site scripting (XSS) vulnerabilities in the Business Voice Services Manager (BVSM) page in Cisco Unified Communications Domain Manager 9.0(.1) allow remote attackers to inject arbitrar…
|
CWE-79
Cross-site Scripting
|
CVE-2014-2104
|
2024-11-21 11:05 |
2014-03-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280643
|
- |
|
ffmpeg
|
ffmpeg
|
The msrle_decode_frame function in libavcodec/msrle.c in FFmpeg before 2.1.4 does not properly calculate line sizes, which allows remote attackers to cause a denial of service (out-of-bounds array ac…
|
CWE-189
Numeric Errors
|
CVE-2014-2099
|
2024-11-21 11:05 |
2014-03-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280644
|
- |
|
ffmpeg
|
ffmpeg
|
libavcodec/wmalosslessdec.c in FFmpeg before 2.1.4 uses an incorrect data-structure size for certain coefficients, which allows remote attackers to cause a denial of service (memory corruption) or po…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-2098
|
2024-11-21 11:05 |
2014-03-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280645
|
- |
|
ffmpeg
|
ffmpeg
|
The tak_decode_frame function in libavcodec/takdec.c in FFmpeg before 2.1.4 does not properly validate a certain bits-per-sample value, which allows remote attackers to cause a denial of service (out…
|
CWE-20
Improper Input Validation
|
CVE-2014-2097
|
2024-11-21 11:05 |
2014-03-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280646
|
- |
|
ffmpeg
|
ffmpeg
|
The mpegts_write_pmt function in the MPEG2 transport stream (aka DVB) muxer (libavformat/mpegtsenc.c) in FFmpeg, possibly 2.1 and earlier, allows remote attackers to have unspecified impact and vecto…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-2263
|
2024-11-21 11:05 |
2014-03-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280647
|
- |
|
sas
|
base_sas
|
Buffer overflow in the client application in Base SAS 9.2 TS2M3, SAS 9.3 TS1M1 and TS1M2, and SAS 9.4 TS1M0 allows user-assisted remote attackers to execute arbitrary code via a crafted SAS program.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-2262
|
2024-11-21 11:05 |
2014-03-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280648
|
- |
|
python
apple
|
python
mac_os_x
|
Buffer overflow in the socket.recvfrom_into function in Modules/socketmodule.c in Python 2.5 before 2.7.7, 3.x before 3.3.4, and 3.4.x before 3.4rc1 allows remote attackers to execute arbitrary code …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-1912
|
2024-11-21 11:05 |
2014-03-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280649
|
- |
|
modx
|
modx_revolution
|
Cross-site scripting (XSS) vulnerability in manager/templates/default/header.tpl in ModX Revolution before 2.2.11 allows remote attackers to inject arbitrary web script or HTML via the "a" parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2014-2080
|
2024-11-21 11:05 |
2014-03-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280650
|
- |
|
jenkins
|
jenkins
|
Cross-site scripting (XSS) vulnerability in java/hudson/model/Cause.java in Jenkins before 1.551 and LTS before 1.532.2 allows remote authenticated users to inject arbitrary web script or HTML via a …
|
CWE-79
Cross-site Scripting
|
CVE-2014-2067
|
2024-11-21 11:05 |
2014-03-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
