|
276621
|
- |
|
cisco
|
hostscan_engine
anyconnect_secure_mobility_client
|
Cross-site scripting (XSS) vulnerability in Cisco AnyConnect Secure Mobility Client 3.1(.02043) and earlier and Cisco HostScan Engine 3.1(.05183) and earlier allows remote attackers to inject arbitra…
|
CWE-79
Cross-site Scripting
|
CVE-2014-8021
|
2024-11-21 11:18 |
2015-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276622
|
- |
|
cisco
|
nx-os
|
The TACACS+ command-authorization implementation in Cisco NX-OS allows local users to cause a denial of service (device reload) via a long CLI command, aka Bug ID CSCur54182.
|
CWE-20
Improper Input Validation
|
CVE-2014-8013
|
2024-11-21 11:18 |
2015-02-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276623
|
- |
|
hp
|
sitescope
|
Unspecified vulnerability in HP SiteScope 11.1x and 11.2x allows remote authenticated users to gain privileges via unknown vectors.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-7882
|
2024-11-21 11:18 |
2015-02-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276624
|
- |
|
qpr
|
portal
|
QPR Portal before 2012.2.1 allows remote attackers to modify or delete notes via a direct request.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-8268
|
2024-11-21 11:18 |
2015-02-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276625
|
- |
|
qpr
|
portal
|
Cross-site scripting (XSS) vulnerability in QPR Portal 2014.1.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the RID parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2014-8267
|
2024-11-21 11:18 |
2015-02-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276626
|
- |
|
qpr
|
portal
|
Multiple cross-site scripting (XSS) vulnerabilities in the note-creation page in QPR Portal 2014.1.1 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) title or (2)…
|
CWE-79
Cross-site Scripting
|
CVE-2014-8266
|
2024-11-21 11:18 |
2015-02-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276627
|
- |
|
vmware
|
player
fusion
workstation
esxi
|
VMware Workstation 10.x before 10.0.5, VMware Player 6.x before 6.0.5, VMware Fusion 6.x before 6.0.5, and VMware ESXi 5.0 through 5.5 allow host OS users to gain host OS privileges or cause a denial…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-8370
|
2024-11-21 11:18 |
2015-01-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276628
|
- |
|
gnome
opensuse
|
vala
opensuse
|
The Gst.MapInfo function in Vala 0.26.0 and 0.26.1 uses an incorrect buffer length declaration for the Gstreamer bindings, which allows context-dependent attackers to cause a denial of service (crash…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-8154
|
2024-11-21 11:18 |
2015-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276629
|
- |
|
jasper_project
debian
redhat
opensuse
|
jasper
debian_linux
enterprise_linux
opensuse
|
Multiple stack-based buffer overflows in jpc_qmfb.c in JasPer 1.900.1 and earlier allow remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted JPEG 200…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-8158
|
2024-11-21 11:18 |
2015-01-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276630
|
- |
|
opensuse
debian
redhat
jasper_project
|
opensuse
debian_linux
enterprise_linux
jasper
|
Off-by-one error in the jpc_dec_process_sot function in JasPer 1.900.1 and earlier allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted JPEG 2…
|
CWE-189
Numeric Errors
|
CVE-2014-8157
|
2024-11-21 11:18 |
2015-01-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
