|
280241
|
- |
|
dynamixsolutions
|
arabic_prawn
|
lib/string_utf_support.rb in the Arabic Prawn 0.0.1 gem for Ruby allows remote attackers to execute arbitrary commands via shell metacharacters in the (1) downloaded_file or (2) url variable.
|
NVD-CWE-Other
|
CVE-2014-2322
|
2024-11-21 11:06 |
2014-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280242
|
- |
|
bluecoat
|
content_analysis_system_software
content_analysis_system
|
The commandline interface in Blue Coat Content Analysis System (CAS) 1.1 before 1.1.4.2 allows remote administrators to execute arbitrary commands via unspecified vectors, related to "command injecti…
|
CWE-78
OS Command
|
CVE-2014-2565
|
2024-11-21 11:06 |
2014-04-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280243
|
- |
|
tibco
|
slingshot
vault
managed_file_transfer_command_center
managed_file_transfer_internet_server
|
TIBCO Managed File Transfer Internet Server before 7.2.2, Managed File Transfer Command Center before 7.2.2, Slingshot before 1.9.1, and Vault before 1.0.1 allow remote attackers to obtain sensitive …
|
CWE-200
Information Exposure
|
CVE-2014-2545
|
2024-11-21 11:06 |
2014-04-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280244
|
- |
|
videowhisper
|
videowhisper
|
Multiple cross-site scripting (XSS) vulnerabilities in vwrooms\templates\logout.tpl.php in the VideoWhisper Webcam plugins for Drupal 7.x allow remote attackers to inject arbitrary web script or HTML…
|
CWE-79
Cross-site Scripting
|
CVE-2014-2715
|
2024-11-21 11:06 |
2014-04-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280245
|
- |
|
papercut
|
papercut_ng
papercut_mf
|
Unspecified vulnerability in Papercut MF and NG before 14.1 (Build 26983) allows attacker to cause a denial of service via unknown vectors.
|
NVD-CWE-noinfo
|
CVE-2014-2658
|
2024-11-21 11:06 |
2014-04-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280246
|
- |
|
papercut
|
papercut_mf
|
Unspecified vulnerability in the print release functionality in PaperCut MF before 14.1 (Build 26983) has unknown impact and remote vectors, related to embedded MFPs.
|
NVD-CWE-noinfo
|
CVE-2014-2657
|
2024-11-21 11:06 |
2014-04-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280247
|
- |
|
dompdf
|
dompdf
|
dompdf.php in dompdf before 0.6.1, when DOMPDF_ENABLE_PHP is enabled, allows context-dependent attackers to bypass chroot protections and read arbitrary files via a PHP protocol and wrappers in the i…
|
CWE-200
Information Exposure
|
CVE-2014-2383
|
2024-11-21 11:06 |
2014-04-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280248
|
- |
|
net-snmp
|
net-snmp
|
The perl_trapd_handler function in perl/TrapReceiver/TrapReceiver.xs in Net-SNMP 5.7.3.pre3 and earlier, when using certain Perl versions, allows remote attackers to cause a denial of service (snmptr…
|
CWE-20
Improper Input Validation
|
CVE-2014-2285
|
2024-11-21 11:06 |
2014-04-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280249
|
- |
|
xcloner
|
xcloner
|
Multiple cross-site request forgery (CSRF) vulnerabilities in XCloner Standalone 3.5 and earlier allow remote attackers to hijack the authentication of administrators for requests that (1) change the…
|
CWE-352
Origin Validation Error
|
CVE-2014-2579
|
2024-11-21 11:06 |
2014-04-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280250
|
- |
|
ektron
|
ektron_content_management_system
|
Cross-site scripting (XSS) vulnerability in content.aspx in Ektron CMS 8.7 before 8.7.0.055 allows remote authenticated users to inject arbitrary web script or HTML via the category0 parameter, which…
|
CWE-79
Cross-site Scripting
|
CVE-2014-2729
|
2024-11-21 11:06 |
2014-04-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
