|
280851
|
- |
|
sap
|
netweaver
|
Unspecified vulnerability in the Portal WebDynPro in SAP NetWeaver allows remote attackers to obtain sensitive path information via unknown attack vectors.
|
NVD-CWE-noinfo
|
CVE-2014-1961
|
2024-11-21 11:05 |
2014-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280852
|
- |
|
sap
|
netweaver_solution_manager
netweaver
|
The Solution Manager in SAP NetWeaver does not properly restrict access, which allows remote attackers to obtain sensitive information via unspecified vectors.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-1960
|
2024-11-21 11:05 |
2014-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280853
|
- |
|
xen
|
xen
|
Use-after-free vulnerability in the xc_cpupool_getinfo function in Xen 4.1.x through 4.3.x, when using a multithreaded toolstack, does not properly handle a failure by the xc_cpumap_alloc function, w…
|
CWE-399
Resource Management Errors
|
CVE-2014-1950
|
2024-11-21 11:05 |
2014-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280854
|
- |
|
openstack
|
image_registry_and_delivery_service_\(glance\)
|
OpenStack Image Registry and Delivery Service (Glance) 2013.2 through 2013.2.1 and Icehouse before icehouse-2 logs a URL containing the Swift store backend password when authentication fails and WARN…
|
CWE-255
Credentials Management
|
CVE-2014-1948
|
2024-11-21 11:05 |
2014-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280855
|
- |
|
parcimonie_project
|
parcimonie
|
parcimonie before 0.8.1, when using a large keyring, sleeps for the same amount of time between fetches, which allows attackers to correlate key fetches via unspecified vectors.
|
CWE-362
Race Condition
|
CVE-2014-1921
|
2024-11-21 11:05 |
2014-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280856
|
- |
|
oracle
|
openjdk
|
The unpacker::redirect_stdio function in unpack.cpp in unpack200 in OpenJDK 6, 7, and 8; Oracle Java SE 5.0u61, 6u71, 7u51, and 8; JRockit R27.8.1 and R28.3.1; and Java SE Embedded 7u51 does not secu…
|
CWE-59
Link Following
|
CVE-2014-1876
|
2024-11-21 11:05 |
2014-02-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280857
|
- |
|
visibility_software
|
cyber_recruiter
|
The user login page in Visibility Software Cyber Recruiter before 8.1.00 generates different responses for invalid password-retrieval attempts depending on which data elements are incorrect, which mi…
|
CWE-200
Information Exposure
|
CVE-2014-1931
|
2024-11-21 11:05 |
2014-02-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280858
|
- |
|
visibility_software
|
cyber_recruiter
|
Visibility Software Cyber Recruiter before 8.1.00 does not use the appropriate combination of HTTPS transport and response headers to prevent access to (1) AppSelfService.aspx and (2) AgencyPortal.as…
|
CWE-200
Information Exposure
|
CVE-2014-1930
|
2024-11-21 11:05 |
2014-02-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280859
|
- |
|
light_speed_gaming
|
mumble
mumblekit
|
The (1) opus_packet_get_nb_frames and (2) opus_packet_get_samples_per_frame functions in the client in MumbleKit before commit fd190328a9b24d37382b269a5674b0c0c7a7e36d and Mumble for iOS 1.1 through …
|
CWE-399
Resource Management Errors
|
CVE-2014-1916
|
2024-11-21 11:05 |
2014-02-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280860
|
- |
|
zeroclipboard_project
redhat
|
zeroclipboard
openshift
|
Multiple cross-site scripting (XSS) vulnerabilities in ZeroClipboard.swf in ZeroClipboard before 1.3.2, as maintained by Jon Rohan and James M. Greene, allow remote attackers to inject arbitrary web …
|
CWE-79
Cross-site Scripting
|
CVE-2014-1869
|
2024-11-21 11:05 |
2014-02-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
