|
282811
|
- |
|
huawei
|
echo_life_hg8247_firmware
echo_life
|
Cross-site scripting (XSS) vulnerability in the web interface on Huawei Echo Life HG8247 routers with software before V100R006C00SPC127 allows remote attackers to inject arbitrary web script or HTML …
|
CWE-79
Cross-site Scripting
|
CVE-2014-0337
|
2024-11-21 11:01 |
2014-04-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282812
|
- |
|
redhat
|
jboss_enterprise_application_platform
|
Red Hat JBoss Enterprise Application Platform (JBEAP) 6.2.2, when using a Java Security Manager (JSM), does not properly apply permissions defined by a policy file, which causes applications to be gr…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-0093
|
2024-11-21 11:01 |
2014-04-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282813
|
- |
|
oracle
apache
|
retail_applications
tomcat
commons_fileupload
|
MultipartStream.java in Apache Commons FileUpload before 1.3.1, as used in Apache Tomcat, JBoss Web, and other products, allows remote attackers to cause a denial of service (infinite loop and CPU co…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-0050
|
2024-11-21 11:01 |
2014-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282814
|
- |
|
redhat
|
richfaces
jboss_web_framework_kit
|
The doFilter function in webapp/PushHandlerFilter.java in JBoss RichFaces 4.3.4, 4.3.5, and 5.x allows remote attackers to cause a denial of service (memory consumption and out-of-memory error) via a…
|
CWE-20
Improper Input Validation
|
CVE-2014-0086
|
2024-11-21 11:01 |
2014-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282815
|
- |
|
apple
postgresql
|
mac_os_x
mac_os_x_server
postgresql
|
The "make check" command for the test suites in PostgreSQL 9.3.3 and earlier does not properly invoke initdb to specify the authentication requirements for a database cluster to be used for the tests…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-0067
|
2024-11-21 11:01 |
2014-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282816
|
- |
|
postgresql
|
postgresql
|
The chkpass extension in PostgreSQL before 8.4.20, 9.0.x before 9.0.16, 9.1.x before 9.1.12, 9.2.x before 9.2.7, and 9.3.x before 9.3.3 does not properly check the return value of the crypt library f…
|
CWE-20
Improper Input Validation
|
CVE-2014-0066
|
2024-11-21 11:01 |
2014-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282817
|
- |
|
postgresql
|
postgresql
|
Multiple buffer overflows in PostgreSQL before 8.4.20, 9.0.x before 9.0.16, 9.1.x before 9.1.12, 9.2.x before 9.2.7, and 9.3.x before 9.3.3 allow remote authenticated users to have unspecified impact…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-0065
|
2024-11-21 11:01 |
2014-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282818
|
- |
|
postgresql
|
postgresql
|
Multiple integer overflows in the path_in and other unspecified functions in PostgreSQL before 8.4.20, 9.0.x before 9.0.16, 9.1.x before 9.1.12, 9.2.x before 9.2.7, and 9.3.x before 9.3.3 allow remot…
|
CWE-189
Numeric Errors
|
CVE-2014-0064
|
2024-11-21 11:01 |
2014-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282819
|
- |
|
postgresql
|
postgresql
|
Multiple stack-based buffer overflows in PostgreSQL before 8.4.20, 9.0.x before 9.0.16, 9.1.x before 9.1.12, 9.2.x before 9.2.7, and 9.3.x before 9.3.3 allow remote authenticated users to cause a den…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-0063
|
2024-11-21 11:01 |
2014-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282820
|
- |
|
postgresql
|
postgresql
|
Race condition in the (1) CREATE INDEX and (2) unspecified ALTER TABLE commands in PostgreSQL before 8.4.20, 9.0.x before 9.0.16, 9.1.x before 9.1.12, 9.2.x before 9.2.7, and 9.3.x before 9.3.3 allow…
|
CWE-362
Race Condition
|
CVE-2014-0062
|
2024-11-21 11:01 |
2014-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
