|
278251
|
- |
|
kennziffer
|
ke_dompdf
|
Unspecified vulnerability in the ke DomPDF extension before 0.0.5 for TYPO3 allows remote attackers to execute arbitrary code via unknown vectors.
|
NVD-CWE-noinfo
|
CVE-2014-6235
|
2024-11-21 11:14 |
2014-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278252
|
- |
|
open_graph_protocol_project
|
open_graph_protocol
|
Cross-site scripting (XSS) vulnerability in the Open Graph protocol (jh_opengraphprotocol) extension before 1.0.2 for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecif…
|
CWE-79
Cross-site Scripting
|
CVE-2014-6234
|
2024-11-21 11:14 |
2014-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278253
|
- |
|
sap
|
netweaver
|
Buffer overflow in disp+work.exe 7000.52.12.34966 and 7200.117.19.50294 in the Dispatcher in SAP NetWeaver 7.00 and 7.20 allows remote authenticated users to cause a denial of service or execute arbi…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-6252
|
2024-11-21 11:14 |
2014-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278254
|
7.2 |
HIGH
Network
|
vasyltech
|
advanced_access_manager
|
WordPress Advanced Access Manager Plugin before 2.8.2 has an Arbitrary File Overwrite Vulnerability
|
NVD-CWE-noinfo
|
CVE-2014-6059
|
2024-11-21 11:13 |
2020-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278255
|
7.5 |
HIGH
Network
|
zohocorp
|
manageengine_eventlog_analyzer
|
ManageEngine EventLog Analyzer version 7 through 9.9 build 9002 has a Credentials Disclosure Vulnerability. Fixed version 10 Build 10000.
|
CWE-522
Insufficiently Protected Credentials
|
CVE-2014-6039
|
2024-11-21 11:13 |
2020-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278256
|
7.5 |
HIGH
Network
|
zohocorp
|
manageengine_eventlog_analyzer
|
Zoho ManageEngine EventLog Analyzer versions 7 through 9.9 build 9002 have a database Information Disclosure Vulnerability. Fixed in EventLog Analyzer 10.0 Build 10000.
|
CWE-200
Information Exposure
|
CVE-2014-6038
|
2024-11-21 11:13 |
2020-01-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278257
|
5.3 |
MEDIUM
Network
|
phpmyfaq
|
phpmyfaq
|
phpMyFAQ before 2.8.13 allows remote attackers to bypass the CAPTCHA protection mechanism by replaying the request.
|
CWE-254
7PK - Security Features
|
CVE-2014-6050
|
2024-11-21 11:13 |
2018-08-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278258
|
2.7 |
LOW
Network
|
phpmyfaq
|
phpmyfaq
|
phpMyFAQ before 2.8.13 allows remote authenticated users with admin privileges to bypass authorization via a crafted instance ID parameter.
|
CWE-285
Improper Authorization
|
CVE-2014-6049
|
2024-11-21 11:13 |
2018-08-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278259
|
5.3 |
MEDIUM
Network
|
phpmyfaq
|
phpmyfaq
|
phpMyFAQ before 2.8.13 allows remote attackers to read arbitrary attachments via a direct request.
|
CWE-200
Information Exposure
|
CVE-2014-6048
|
2024-11-21 11:13 |
2018-08-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278260
|
5.3 |
MEDIUM
Network
|
phpmyfaq
|
phpmyfaq
|
phpMyFAQ before 2.8.13 allows remote authenticated users with certain permissions to read arbitrary attachments by leveraging incorrect "download an attachment" permission checks.
|
CWE-275
Permission Issues
|
CVE-2014-6047
|
2024-11-21 11:13 |
2018-08-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
