|
280191
|
- |
|
sap
|
oil_industry_solution_traders_and_schedulers_workbench
|
The SAP Trader's and Scheduler's Workbench (TSW) for SAP Oil & Gas has hardcoded credentials, which makes it easier for remote attackers to obtain access via unspecified vectors.
|
CWE-255
Credentials Management
|
CVE-2014-4006
|
2024-11-21 11:09 |
2014-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280192
|
- |
|
sap
|
brazil
|
SAP Brazil add-on has hardcoded credentials, which makes it easier for remote attackers to obtain access via unspecified vectors.
|
CWE-255
Credentials Management
|
CVE-2014-4005
|
2024-11-21 11:09 |
2014-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280193
|
- |
|
sap
|
project_system
|
The (1) Structures and (2) Project-Oriented Procurement components in SAP Project System has hardcoded credentials, which makes it easier for remote attackers to obtain access via unspecified vectors.
|
CWE-255
Credentials Management
|
CVE-2014-4004
|
2024-11-21 11:09 |
2014-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280194
|
- |
|
sap
|
netweaver
|
The System Landscape Directory (SLD) in SAP NetWeaver allows remote attackers to modify information via vectors related to adding a system.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-4003
|
2024-11-21 11:09 |
2014-06-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280195
|
- |
|
ibm
|
vios
aix
|
libodm.a in IBM AIX 6.1 and 7.1, and VIOS 2.2.x, allows local users to overwrite arbitrary files via a symlink attack on a temporary file. NOTE: this vulnerability exists because of an incomplete fix…
|
CWE-59
Link Following
|
CVE-2014-3977
|
2024-11-21 11:09 |
2014-06-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280196
|
- |
|
cisofy
|
lynis
|
include/tests_webservers in Lynis before 1.5.5 allows local users to overwrite arbitrary files via a symlink attack on a /tmp/lynis.*.unsorted file with an easily determined name.
|
CWE-59
Link Following
|
CVE-2014-3986
|
2024-11-21 11:09 |
2014-06-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280197
|
- |
|
cisofy
|
lynis
|
include/tests_webservers in Lynis before 1.5.5 on AIX allows local users to overwrite arbitrary files via a symlink attack on a /tmp/lynis.##### file.
|
CWE-59
Link Following
|
CVE-2014-3982
|
2024-11-21 11:09 |
2014-06-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280198
|
- |
|
php
|
php
|
acinclude.m4, as used in the configure script in PHP 5.5.13 and earlier, allows local users to overwrite arbitrary files via a symlink attack on the /tmp/phpglibccheck file.
|
CWE-59
Link Following
|
CVE-2014-3981
|
2024-11-21 11:09 |
2014-06-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280199
|
- |
|
libav
|
libav
|
Multiple unspecified vulnerabilities in Libav before 0.8.12 allow remote attackers to have unknown impact and vectors.
|
NVD-CWE-noinfo
|
CVE-2014-3984
|
2024-11-21 11:09 |
2014-06-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280200
|
- |
|
mediawiki
|
mediawiki
|
Cross-site scripting (XSS) vulnerability in Special:PasswordReset in MediaWiki before 1.19.16, 1.21.x before 1.21.10, and 1.22.x before 1.22.7, when wgRawHtml is enabled, allows remote attackers to i…
|
CWE-79
Cross-site Scripting
|
CVE-2014-3966
|
2024-11-21 11:09 |
2014-06-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
