|
276471
|
6.1 |
MEDIUM
Network
|
wordpress_backup_to_dropbox_project
|
wordpress_backup_to_dropbox
|
Cross-site scripting (XSS) vulnerability in the WordPress Backup to Dropbox plugin before 4.1 for WordPress.
|
CWE-79
Cross-site Scripting
|
CVE-2014-9310
|
2024-11-21 11:20 |
2017-06-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276472
|
8.8 |
HIGH
Network
|
huawei
|
fusionmanager
usg9500_firmware
usg2100_firmware
usg2200_firmware
usg5100_firmware
usg5500_firmware
|
Huawei USG9500 with software V200R001C01SPC800 and earlier versions, V300R001C00; USG2100 with software V300R001C00SPC900 and earlier versions; USG2200 with software V300R001C00SPC900; USG5100 with s…
|
CWE-352
Origin Validation Error
|
CVE-2014-9137
|
2024-11-21 11:20 |
2017-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276473
|
8.8 |
HIGH
Network
|
huawei
|
fusionmanager
usg9500_firmware
usg2100_firmware
usg2200_firmware
usg5100_firmware
usg5500_firmware
|
Huawei FusionManager with software V100R002C03 and V100R003C00 could allow an unauthenticated, remote attacker to conduct a CSRF attack against the user of the web interface.
|
CWE-352
Origin Validation Error
|
CVE-2014-9136
|
2024-11-21 11:20 |
2017-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276474
|
7.8 |
HIGH
Local
|
opensuse
fedoraproject
kernel
|
opensuse
fedora
util-linux
|
Blkid in util-linux before 2.26rc-1 allows local users to execute arbitrary code.
|
CWE-77
Command Injection
|
CVE-2014-9114
|
2024-11-21 11:20 |
2017-04-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276475
|
9.8 |
CRITICAL
Network
|
linux
|
linux_kernel
|
The vfe31_proc_general function in drivers/media/video/msm/vfe/msm_vfe31.c in the MSM-VFE31 driver for the Linux kernel 3.x, as used in Qualcomm Innovation Center (QuIC) Android contributions for MSM…
|
CWE-20
Improper Input Validation
|
CVE-2014-9410
|
2024-11-21 11:20 |
2016-08-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276476
|
- |
|
advantech
|
webaccess
|
Multiple stack-based buffer overflows in an unspecified DLL file in Advantech WebAccess before 8.0_20150816 allow remote attackers to execute arbitrary code via a crafted file that triggers long stri…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-9202
|
2024-11-21 11:20 |
2015-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276477
|
- |
|
symantec
|
endpoint_protection
|
Multiple SQL injection vulnerabilities in interface PHP scripts in the Manager component in Symantec Endpoint Protection (SEP) before 12.1.6 allow remote authenticated users to execute arbitrary SQL …
|
CWE-89
SQL Injection
|
CVE-2014-9229
|
2024-11-21 11:20 |
2015-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276478
|
- |
|
symantec
|
endpoint_protection
|
sysplant.sys in the Manager component in Symantec Endpoint Protection (SEP) before 12.1.6 allows local users to cause a denial of service (blocked system shutdown) by triggering an unspecified deadlo…
|
CWE-399
Resource Management Errors
|
CVE-2014-9228
|
2024-11-21 11:20 |
2015-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276479
|
- |
|
symantec
|
endpoint_protection
|
Multiple untrusted search path vulnerabilities in the Manager component in Symantec Endpoint Protection (SEP) before 12.1.6 allow local users to gain privileges via a Trojan horse DLL in an unspecifi…
|
NVD-CWE-Other
|
CVE-2014-9227
|
2024-11-21 11:20 |
2015-09-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276480
|
- |
|
advantech
|
webaccess
|
Multiple stack-based buffer overflows in unspecified DLL files in Advantech WebAccess before 8.0.1 allow remote attackers to execute arbitrary code via unknown vectors.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-9208
|
2024-11-21 11:20 |
2015-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
