|
280641
|
- |
|
phpmanufaktur
|
kitform
|
SQL injection vulnerability in sorter.php in the phpManufaktur kitForm extension 0.43 and earlier for the KeepInTouch (KIT) module allows remote attackers to execute arbitrary SQL commands via the so…
|
CWE-89
SQL Injection
|
CVE-2014-3757
|
2024-11-21 11:08 |
2014-05-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280642
|
- |
|
jetaudio
|
jetaudio
|
JetMPAd.ax in JetAudio 8.1.1 and earlier allows remote attackers to cause a denial of service (crash) via a crafted .ogg file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-3443
|
2024-11-21 11:08 |
2014-05-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280643
|
- |
|
videolan
|
vlc_media_player
|
codec\libpng_plugin.dll in VideoLAN VLC Media Player 2.1.3 allows remote attackers to cause a denial of service (crash) via a crafted .png file, as demonstrated by a png in a .wave file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-3441
|
2024-11-21 11:08 |
2014-05-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280644
|
- |
|
dovecot
|
dovecot
|
Dovecot 1.1 before 2.2.13 and dovecot-ee before 2.1.7.7 and 2.2.x before 2.2.12.12 does not properly close old connections, which allows remote attackers to cause a denial of service (resource consum…
|
CWE-287
Improper Authentication
|
CVE-2014-3430
|
2024-11-21 11:08 |
2014-05-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280645
|
- |
|
gitlab
|
gitlab
|
Cross-site scripting (XSS) vulnerability in GitLab Enterprise Edition (EE) 6.6.0 before 6.6.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2014-3456
|
2024-11-21 11:08 |
2014-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280646
|
- |
|
mediawiki
|
mediawiki
|
Multiple cross-site request forgery (CSRF) vulnerabilities in the (1) CreateProperty, (2) CreateTemplate, (3) CreateForm, and (4) CreateClass special pages in the SemanticForms extension for MediaWik…
|
CWE-352
Origin Validation Error
|
CVE-2014-3455
|
2024-11-21 11:08 |
2014-05-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280647
|
- |
|
mediawiki
|
mediawiki
|
Cross-site request forgery (CSRF) vulnerability in Special:CreateCategory in the SemanticForms extension for MediaWiki before 1.19.10, 1.2x before 1.21.4, and 1.22.x before 1.22.1 allows remote attac…
|
CWE-352
Origin Validation Error
|
CVE-2014-3454
|
2024-11-21 11:08 |
2014-05-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280648
|
- |
|
illinois
|
ncsa_mosaic
|
NCSA Mosaic 2.1 through 2.7b5 allows local users to cause a denial of service ("remote control" outage) by creating a /tmp/Mosaic.pid file for every possible PID.
|
NVD-CWE-noinfo
|
CVE-2014-3426
|
2024-11-21 11:08 |
2014-05-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280649
|
- |
|
illinois
|
ncsa_mosaic
|
NCSA Mosaic 2.0 and earlier allows local users to cause a denial of service ("remote control" outage) by creating a /tmp/xmosaic.pid file for every possible PID.
|
NVD-CWE-noinfo
|
CVE-2014-3425
|
2024-11-21 11:08 |
2014-05-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280650
|
- |
|
mageia_project
gnu
|
mageia
emacs
|
lisp/net/tramp-sh.el in GNU Emacs 24.3 and earlier allows local users to overwrite arbitrary files via a symlink attack on a /tmp/tramp.##### temporary file.
|
CWE-59
Link Following
|
CVE-2014-3424
|
2024-11-21 11:08 |
2014-05-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
