|
280611
|
- |
|
microsoft
|
internet_explorer
|
Use-after-free vulnerability in Microsoft Internet Explorer 6 through 11 allows remote attackers to execute arbitrary code via crafted JavaScript code that interacts improperly with a CollectGarbage …
|
CWE-399
Resource Management Errors
|
CVE-2014-1770
|
2024-11-21 11:05 |
2014-05-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280612
|
- |
|
seopanel
|
seo_panel
|
Multiple cross-site scripting (XSS) vulnerabilities in Seo Panel before 3.5.0 allow remote attackers to inject arbitrary web script or HTML via the (1) capcheck parameter to directories.php or (2) ke…
|
CWE-79
Cross-site Scripting
|
CVE-2014-1855
|
2024-11-21 11:05 |
2014-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280613
|
- |
|
cisco
|
webex_business_suite
webex_training_center
webex_meeting_center
webex_sales_center
webex_event_center
webex_meetings_server
|
meetinginfo.do in Cisco WebEx Event Center, WebEx Meeting Center, WebEx Sales Center, WebEx Training Center, WebEx Meetings Server 1.5(.1.131) and earlier, and WebEx Business Suite (WBS) 27 before 27…
|
CWE-200
Information Exposure
|
CVE-2014-2199
|
2024-11-21 11:05 |
2014-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280614
|
- |
|
cisco
|
asyncos
content_security_management_appliance
email_security_appliance_firmware
|
Cisco AsyncOS on Email Security Appliance (ESA) and Content Security Management Appliance (SMA) devices, when Active Directory is enabled, does not properly handle group names, which allows remote at…
|
CWE-20
Improper Input Validation
|
CVE-2014-2195
|
2024-11-21 11:05 |
2014-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280615
|
- |
|
cisco
|
unified_web_and_e-mail_interaction_manager
|
system/egain/chat/entrypoint in Cisco Unified Web and E-mail Interaction Manager 9.0(2) allows remote attackers to have an unspecified impact by injecting a spoofed XML external entity.
|
CWE-20
Improper Input Validation
|
CVE-2014-2194
|
2024-11-21 11:05 |
2014-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280616
|
- |
|
cisco
|
unified_web_and_e-mail_interaction_manager
|
Cisco Unified Web and E-Mail Interaction Manager places session identifiers in GET requests, which allows remote attackers to inject conversation text by obtaining a valid identifier, aka Bug ID CSCu…
|
CWE-20
Improper Input Validation
|
CVE-2014-2193
|
2024-11-21 11:05 |
2014-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280617
|
- |
|
cisco
|
unified_web_and_e-mail_interaction_manager
|
Cross-site scripting (XSS) vulnerability in Cisco Unified Web and E-mail Interaction Manager 9.0(2) allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter, aka Bu…
|
CWE-79
Cross-site Scripting
|
CVE-2014-2192
|
2024-11-21 11:05 |
2014-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280618
|
- |
|
skyboxsecurity
|
skybox_view_appliance_iso
skybox_view_appliance
|
Skybox View Appliances with ISO 6.3.33-2.14, 6.3.31-2.14, 6.4.42-2.54, 6.4.45-2.56, and 6.4.46-2.57 does not properly restrict access to the Admin interface, which allows remote attackers to obtain s…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-2084
|
2024-11-21 11:05 |
2014-05-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280619
|
- |
|
microsoft
|
internet_explorer
|
Microsoft Internet Explorer 6 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, as exploited in the wild in May 201…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-1815
|
2024-11-21 11:05 |
2014-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280620
|
- |
|
microsoft
|
web_applications
|
Microsoft Web Applications 2010 SP1 and SP2 allows remote authenticated users to execute arbitrary code via crafted page content, aka "Web Applications Page Content Vulnerability."
|
CWE-94
Code Injection
|
CVE-2014-1813
|
2024-11-21 11:05 |
2014-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
