|
280161
|
- |
|
opensuse
ntop
|
opensuse
ntop
|
Cross-site scripting (XSS) vulnerability in ntop allows remote attackers to inject arbitrary web script or HTML via the title parameter in a list action to plugins/rrdPlugin.
|
CWE-79
Cross-site Scripting
|
CVE-2014-4165
|
2024-11-21 11:09 |
2014-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280162
|
- |
|
algosec
|
fireflow
|
Cross-site scripting (XSS) vulnerability in AlgoSec FireFlow 6.3-b230 allows remote attackers to inject arbitrary web script or HTML via a user signature to SelfService/Prefs.html.
|
CWE-79
Cross-site Scripting
|
CVE-2014-4164
|
2024-11-21 11:09 |
2014-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280163
|
- |
|
featured_comments_plugin_project
|
featured_comments
|
Multiple cross-site request forgery (CSRF) vulnerabilities in the Featured Comments plugin 1.2.1 for WordPress allow remote attackers to hijack the authentication of administrators for requests that …
|
CWE-352
Origin Validation Error
|
CVE-2014-4163
|
2024-11-21 11:09 |
2014-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280164
|
- |
|
zyxel
|
p-660hw
|
Multiple cross-site request forgery (CSRF) vulnerabilities in the Zyxel P-660HW-T1 (v3) wireless router allow remote attackers to hijack the authentication of administrators for requests that change …
|
CWE-352
Origin Validation Error
|
CVE-2014-4162
|
2024-11-21 11:09 |
2014-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280165
|
- |
|
reviewboard
|
djblets
|
Cross-site scripting (XSS) vulnerability in gravatars/templatetags/gravatars.py in Djblets before 0.7.30 and 0.8.x before 0.8.3 for Django allows remote attackers to inject arbitrary web script or HT…
|
CWE-79
Cross-site Scripting
|
CVE-2014-3995
|
2024-11-21 11:09 |
2014-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280166
|
- |
|
reviewboard
|
djblets
reviewboard
|
Cross-site scripting (XSS) vulnerability in util/templatetags/djblets_js.py in Djblets before 0.7.30 and 0.8.x before 0.8.3 for Django, as used in Review Board, allows remote attackers to inject arbi…
|
CWE-79
Cross-site Scripting
|
CVE-2014-3994
|
2024-11-21 11:09 |
2014-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280167
|
- |
|
sap
|
supplier_relationship_management
|
Cross-site scripting (XSS) vulnerability in la/umTestSSO.jsp in SAP Supplier Relationship Management (SRM) allows remote attackers to inject arbitrary web script or HTML via the url parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2014-4161
|
2024-11-21 11:09 |
2014-06-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280168
|
- |
|
sap
|
netweaver_business_client
|
Multiple cross-site scripting (XSS) vulnerabilities in the testcanvas node in SAP NetWeaver Business Client (NWBC) allow remote attackers to inject arbitrary web script or HTML via the (1) title or (…
|
CWE-79
Cross-site Scripting
|
CVE-2014-4160
|
2024-11-21 11:09 |
2014-06-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280169
|
- |
|
sap
|
supplier_relationship_management
|
Open redirect vulnerability in in la/umTestSSO.jsp in SAP Supplier Relationship Management (SRM) allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a …
|
NVD-CWE-Other
|
CVE-2014-4159
|
2024-11-21 11:09 |
2014-06-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280170
|
- |
|
senkas
|
kolibri
|
Stack-based buffer overflow in Kolibri 2.0 allows remote attackers to execute arbitrary code via a long URI in a GET request.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-4158
|
2024-11-21 11:09 |
2014-06-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
