|
277251
|
- |
|
symantec
|
encryption_management_server
pgp_universal_server
|
The key-management component in Symantec PGP Universal Server and Encryption Management Server before 3.3.2 MP7 allows remote attackers to trigger unintended content in outbound e-mail messages via a…
|
CWE-74
Injection
|
CVE-2014-7287
|
2024-11-21 11:16 |
2015-02-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277252
|
- |
|
broadcom
symantec
|
symantec_critical_system_protection
data_center_security
|
SQL injection vulnerability in the management server in Symantec Critical System Protection (SCSP) 5.2.9 before MP6 and Symantec Data Center Security: Server Advanced (SDCS:SA) 6.0.x before 6.0 MP1 a…
|
CWE-89
SQL Injection
|
CVE-2014-7289
|
2024-11-21 11:16 |
2015-01-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277253
|
- |
|
debian
|
mime-support
|
run-mailcap in the Debian mime-support package before 3.52-1+deb7u1 allows context-dependent attackers to execute arbitrary commands via shell metacharacters in a filename.
|
CWE-77
Command Injection
|
CVE-2014-7209
|
2024-11-21 11:16 |
2015-01-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277254
|
- |
|
nyu
|
opensso_integration
|
Open redirect vulnerability in the logon page in NYU OpenSSO Integration 2.1 and earlier for Ex Libris Patron Directory Services (PDS) allows remote attackers to redirect users to arbitrary web sites…
|
NVD-CWE-Other
|
CVE-2014-7294
|
2024-11-21 11:16 |
2015-01-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277255
|
- |
|
nyu
|
opensso_integration
|
Cross-site scripting (XSS) vulnerability in the logon page in NYU OpenSSO Integration 2.1 and earlier for Ex Libris Patron Directory Services (PDS) allows remote attackers to inject arbitrary web scr…
|
CWE-79
Cross-site Scripting
|
CVE-2014-7293
|
2024-11-21 11:16 |
2015-01-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277256
|
- |
|
gnome
redhat
|
gnome-shell
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux_hpc_node
|
GNOME Shell 3.14.x before 3.14.1, when the Screen Lock feature is used, does not limit the aggregate memory consumption of all active PrtSc requests, which allows physically proximate attackers to ex…
|
CWE-399
Resource Management Errors
|
CVE-2014-7300
|
2024-11-21 11:16 |
2014-12-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277257
|
- |
|
sideway
|
hapi_crumb
|
The Crumb plugin before 3.0.0 for Node.js does not properly restrict token access in situations where a hapi route handler has CORS enabled, which allows remote attackers to obtain sensitive informat…
|
CWE-284
Improper Access Control
|
CVE-2014-7193
|
2024-11-21 11:16 |
2014-12-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277258
|
- |
|
symantec
|
deployment_solution
|
Buffer overflow in AClient in Symantec Deployment Solution 6.9 and earlier on Windows XP and Server 2003 allows local users to gain privileges via unspecified vectors.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-7286
|
2024-11-21 11:16 |
2014-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277259
|
- |
|
gparted
|
gparted
|
GParted before 0.15.0 allows local users to execute arbitrary commands with root privileges via shell metacharacters in a crafted filesystem label.
|
CWE-77
Command Injection
|
CVE-2014-7208
|
2024-11-21 11:16 |
2014-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
277260
|
- |
|
ricksoft
|
wbs_gantt-chart
|
Cross-site scripting (XSS) vulnerability in the data-export feature in the Ricksoft WBS Gantt-Chart add-on 7.8.1 and earlier for JIRA allows remote attackers to inject arbitrary web script or HTML vi…
|
CWE-79
Cross-site Scripting
|
CVE-2014-7268
|
2024-11-21 11:16 |
2014-12-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
