|
281871
|
- |
|
silexlabs
|
silex
|
Cross-site scripting (XSS) vulnerability in Silex before 2.0.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2014-1971
|
2024-11-21 11:05 |
2014-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281872
|
- |
|
estrongs
|
es_file_explorer
|
Directory traversal vulnerability in the ES File Explorer File Manager application before 3.0.4 for Android allows remote attackers to overwrite or create arbitrary files via unspecified vectors.
|
CWE-22
Path Traversal
|
CVE-2014-1970
|
2024-11-21 11:05 |
2014-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281873
|
- |
|
nttdocomo
|
spmode_mail_android
|
The NTT DOCOMO sp mode mail application 5900 through 6300 for Android 4.0.x and 6000 through 6620 for Android 4.1 through 4.4 allows remote attackers to execute arbitrary Java methods via Deco-mail e…
|
CWE-94
Code Injection
|
CVE-2014-1979
|
2024-11-21 11:05 |
2014-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281874
|
- |
|
nttdocomo
|
spmode_mail_android
|
The application link interface in the NTT DOCOMO sp mode mail application 6100 through 6300 for Android 4.0.x and 6130 through 6700 for Android 4.1 through 4.4 writes message content to the SD card d…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-1978
|
2024-11-21 11:05 |
2014-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281875
|
- |
|
nttdocomo
|
spmode_mail_android
|
The NTT DOCOMO sp mode mail application 6300 and earlier for Android 4.0.x and 6700 and earlier for Android 4.1 through 4.4 uses weak permissions for attachments during processing of incoming e-mail …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-1977
|
2024-11-21 11:05 |
2014-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281876
|
- |
|
cisco
|
hosted_collaboration_solution
|
Memory leak in the GUI in the Impact server in Cisco Hosted Collaboration Solution (HCS) allows remote attackers to cause a denial of service (memory consumption) via unspecified vectors, aka Bug ID …
|
CWE-20
Improper Input Validation
|
CVE-2014-2122
|
2024-11-21 11:05 |
2014-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281877
|
- |
|
cisco
|
hosted_collaboration_solution
|
The Java-based software in Cisco Hosted Collaboration Solution (HCS) allows remote attackers to cause a denial of service (closing of TCP ports) via unspecified vectors, aka Bug IDs CSCug77633, CSCug…
|
CWE-20
Improper Input Validation
|
CVE-2014-2121
|
2024-11-21 11:05 |
2014-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281878
|
- |
|
freetype
canonical
|
freetype
ubuntu_linux
|
The (1) cf2_initLocalRegionBuffer and (2) cf2_initGlobalRegionBuffer functions in cff/cf2ft.c in FreeType before 2.5.3 do not properly check if a subroutine exists, which allows remote attackers to c…
|
CWE-20
Improper Input Validation
|
CVE-2014-2241
|
2024-11-21 11:05 |
2014-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281879
|
- |
|
freedownloadmanager
|
free_download_manager
|
Stack-based buffer overflow in the CDownloads_Deleted::UpdateDownload function in Downloads_Deleted.cpp in Free Download Manager 3.9.3 build 1360, 3.8 build 1173, 3.0 build 852, and earlier allows us…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-2087
|
2024-11-21 11:05 |
2014-03-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281880
|
- |
|
yumenomachi
|
demaecan
|
The Demaecan application 2.1.0 and earlier for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information …
|
CWE-310
Cryptographic Issues
|
CVE-2014-1976
|
2024-11-21 11:05 |
2014-03-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
