|
276881
|
- |
|
easy_social_project
|
easy_social
|
Cross-site scripting (XSS) vulnerability in the easy_social_admin_summary function in the Easy Social module 7.x-2.x before 7.x-2.11 for Drupal allows remote authenticated users with certain permissi…
|
CWE-79
Cross-site Scripting
|
CVE-2014-8319
|
2024-11-21 11:18 |
2014-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276882
|
- |
|
webform_project
|
webform
|
Cross-site scripting (XSS) vulnerability in the Webform module 6.x-3.x before 6.x-3.20, 7.x-3.x before 7.x-3.20, and 7.x-4.x before 7.x-4.0-beta2 for Drupal allows remote authenticated users with cer…
|
CWE-79
Cross-site Scripting
|
CVE-2014-8318
|
2024-11-21 11:18 |
2014-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276883
|
- |
|
webform_validation_project
|
webform_validation
|
Cross-site scripting (XSS) vulnerability in the Webform Validation module 6.x-1.x before 6.x-1.6 and 7.x-1.x before 7.x-1.4 for Drupal allows remote authenticated users with certain permissions to in…
|
CWE-79
Cross-site Scripting
|
CVE-2014-8317
|
2024-11-21 11:18 |
2014-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276884
|
- |
|
sap
|
businessobjects_explorer
|
XML External Entity (XXE) vulnerability in polestar_xml.jsp in SAP BusinessObjects Explorer 14.0.5 build 882 allows remote attackers to read arbitrary files via the xmlParameter parameter in an explo…
|
NVD-CWE-Other
|
CVE-2014-8316
|
2024-11-21 11:18 |
2014-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276885
|
- |
|
sap
|
businessobjects_explorer
|
polestar_xml.jsp in SAP BusinessObjects Explorer 14.0.5 build 882 replies with different timing depending on if a connection can be made, which allows remote attackers to conduct port scanning attack…
|
CWE-200
Information Exposure
|
CVE-2014-8315
|
2024-11-21 11:18 |
2014-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276886
|
- |
|
sap
|
hana
|
Multiple cross-site scripting (XSS) vulnerabilities in SAP HANA Developer Edition Revision 70 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors to (1) epm/admin/Da…
|
CWE-79
Cross-site Scripting
|
CVE-2014-8314
|
2024-11-21 11:18 |
2014-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276887
|
- |
|
sap
|
hana
|
Eval injection in ide/core/base/server/net.xsjs in the Developer Workbench in SAP HANA allows remote attackers to execute arbitrary XSJX code via unspecified vectors.
|
CWE-94
Code Injection
|
CVE-2014-8313
|
2024-11-21 11:18 |
2014-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276888
|
- |
|
sap
|
netweaver_abap
|
Business Warehouse (BW) in SAP Netweaver AS ABAP 7.31 allows remote authenticated users to obtain sensitive information via a request to the RSDU_CCMS_GET_PROFILE_PARAM RFC function.
|
NVD-CWE-Other
|
CVE-2014-8312
|
2024-11-21 11:18 |
2014-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276889
|
- |
|
sap
|
businessobjects
|
SAP BusinessObjects Edge 4.0 allows remote attackers to obtain sensitive information via an InfoStore query to a CORBA listener.
|
NVD-CWE-Other
|
CVE-2014-8311
|
2024-11-21 11:18 |
2014-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
276890
|
- |
|
sap
|
businessobjects
|
The CMS CORBA listener in SAP BusinessObjects BI Edge 4.0 allows remote attackers to cause a denial of service (server shutdown) via crafted OSCAFactory::Session ORB message.
|
CWE-20
Improper Input Validation
|
CVE-2014-8310
|
2024-11-21 11:18 |
2014-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
