|
278981
|
8.8 |
HIGH
Network
|
sphiderpro
|
sphider_pro
|
A Command Execution vulnerability exists in Sphider Pro 3.2 due to insufficient sanitization of fwrite, which could let a remote malicious user execute arbitrary code. CVE-2014-5084 pertains to insta…
|
CWE-74
Injection
|
CVE-2014-5084
|
2024-11-21 11:11 |
2020-02-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278982
|
8.8 |
HIGH
Network
|
sphider
|
sphider
|
A Command Execution vulnerability exists in Sphider before 1.3.6 due to insufficient sanitization of fwrite to conf.php, which could let a remote malicious user execute arbitrary code. CVE-2014-5083 …
|
CWE-74
Injection
|
CVE-2014-5083
|
2024-11-21 11:11 |
2020-02-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278983
|
5.3 |
MEDIUM
Network
|
docker
|
docker
|
A vulnerability exists in Docker before 1.2 via container names, which may collide with and override container IDs.
|
NVD-CWE-noinfo
|
CVE-2014-5278
|
2024-11-21 11:11 |
2020-02-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278984
|
9.8 |
CRITICAL
Network
|
status2k
|
status2k
|
A vulnerability exits in Status2K 2.5 Server Monitoring Software via the multies parameter to includes/functions.php, which could let a malicious user execute arbitrary PHP code.
|
CWE-20
Improper Input Validation
|
CVE-2014-5091
|
2024-11-21 11:11 |
2020-02-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278985
|
9.8 |
CRITICAL
Network
|
sphider
sphider-plus
sphiderpro
|
sphider
sphider-plus
sphider_pro
|
A vulnerability exists in Sphider Search Engine prior to 1.3.6 due to exec calls in admin/spiderfuncs.php, which could let a remote malicious user execute arbitrary code.
|
CWE-20
Improper Input Validation
|
CVE-2014-5087
|
2024-11-21 11:11 |
2020-02-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278986
|
8.8 |
HIGH
Network
|
kemptechnologies
|
load_master
|
A CSRF Vulnerability exists in Kemp Load Master before 7.0-18a via unspecified vectors in administrative pages.
|
CWE-352
Origin Validation Error
|
CVE-2014-5288
|
2024-11-21 11:11 |
2020-02-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278987
|
7.5 |
HIGH
Network
|
open-xchange
|
open-xchange_appsuite
|
Multiple absolute path traversal vulnerabilities in documentconverter in Open-Xchange (OX) AppSuite before 7.4.2-rev10 and 7.6.x before 7.6.0-rev10 allow remote attackers to read application files vi…
|
CWE-22
Path Traversal
|
CVE-2014-5236
|
2024-11-21 11:11 |
2020-02-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278988
|
9.6 |
CRITICAL
Network
|
eucalyptus
|
eucalyptus_management_console
|
Cross-site scripting (XSS) vulnerability in Eucalyptus Management Console (EMC) 4.0.x before 4.0.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2014-5039
|
2024-11-21 11:11 |
2020-02-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278989
|
6.8 |
MEDIUM
Physics
|
tianocore
|
edk2
|
Multiple integer overflows in the Pre-EFI Initialization (PEI) boot phase in the Capsule Update feature in the UEFI implementation in EDK2 allow physically proximate attackers to bypass intended acce…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2014-4860
|
2024-11-21 11:11 |
2020-02-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278990
|
6.8 |
MEDIUM
Physics
|
tianocore
|
edk2
|
Integer overflow in the Drive Execution Environment (DXE) phase in the Capsule Update feature in the UEFI implementation in EDK2 allows physically proximate attackers to bypass intended access restri…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2014-4859
|
2024-11-21 11:11 |
2020-02-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
