|
280031
|
- |
|
accuenergy
|
axm-net
acuvim_ii
|
The web server on the AXN-NET Ethernet module accessory 3.04 for the Accuenergy Acuvim II allows remote attackers to bypass authentication and modify settings via a direct request to an unspecified U…
|
CWE-287
Improper Authentication
|
CVE-2014-2373
|
2024-11-21 11:06 |
2014-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280032
|
- |
|
t-mobile
asus
|
tm-ac1900
rt_series_firmware
|
ASUS RT-AC68U, RT-AC66R, RT-AC66U, RT-AC56R, RT-AC56U, RT-N66R, RT-N66U, RT-N56R, RT-N56U, and possibly other RT-series routers before firmware 3.0.0.4.376.x do not verify the integrity of firmware (…
|
CWE-345
Insufficient Verification of Data Authenticity
|
CVE-2014-2718
|
2024-11-21 11:06 |
2014-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280033
|
- |
|
fortinet
|
fortimanager
fortianalyzer_firmware
|
Multiple cross-site scripting (XSS) vulnerabilities in the Web User Interface in Fortinet FortiManager before 5.0.7 and FortiAnalyzer before 5.0.7 allow remote attackers to inject arbitrary web scrip…
|
CWE-79
Cross-site Scripting
|
CVE-2014-2336
|
2024-11-21 11:06 |
2014-10-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280034
|
- |
|
fortinet
|
fortianalyzer_firmware
|
Multiple cross-site scripting (XSS) vulnerabilities in the Web User Interface in Fortinet FortiManager before 5.0.7 allow remote attackers to inject arbitrary web script or HTML via unspecified vecto…
|
CWE-79
Cross-site Scripting
|
CVE-2014-2335
|
2024-11-21 11:06 |
2014-10-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280035
|
- |
|
fortinet
|
fortianalyzer_firmware
|
Multiple cross-site scripting (XSS) vulnerabilities in the Web User Interface in Fortinet FortiAnalyzer before 5.0.7 allow remote attackers to inject arbitrary web script or HTML via unspecified vect…
|
CWE-79
Cross-site Scripting
|
CVE-2014-2334
|
2024-11-21 11:06 |
2014-10-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280036
|
- |
|
interworx
|
web_control_panel
|
SQL injection vulnerability in xhr.php in InterWorx Web Control Panel (aka InterWorx Hosting Control Panel and InterWorx-CP) before 5.0.14 build 577 allows remote authenticated users to execute arbit…
|
CWE-89
SQL Injection
|
CVE-2014-2531
|
2024-11-21 11:06 |
2014-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280037
|
- |
|
hp
|
operations_agent
|
Cross-site scripting (XSS) vulnerability in HP Operations Agent in HP Operations Manager (formerly OpenView Communications Broker) before 11.14 allows remote attackers to inject arbitrary web script …
|
CWE-79
Cross-site Scripting
|
CVE-2014-2647
|
2024-11-21 11:06 |
2014-10-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280038
|
- |
|
fox-it
|
fox_datadiode
|
Multiple cross-site request forgery (CSRF) vulnerabilities in the administrative web interface in the proxy server on Fox-IT Fox DataDiode appliances before 1.7.2 allow remote attackers to hijack the…
|
CWE-352
Origin Validation Error
|
CVE-2014-2358
|
2024-11-21 11:06 |
2014-10-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280039
|
- |
|
twitget_project
|
twitget
|
Multiple cross-site request forgery (CSRF) vulnerabilities in twitget.php in the Twitget plugin before 3.3.3 for WordPress allow remote attackers to hijack the authentication of administrators for re…
|
CWE-352
Origin Validation Error
|
CVE-2014-2559
|
2024-11-21 11:06 |
2014-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280040
|
- |
|
oracle
|
database_server
|
Unspecified vulnerability in the Core RDBMS component in Oracle Database Server 11.1.0.7, 11.2.0.3, 11.2.0.4, and 12.1.0.1 allows remote attackers to affect confidentiality via unknown vectors.
|
NVD-CWE-noinfo
|
CVE-2014-2478
|
2024-11-21 11:06 |
2014-10-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
