|
281361
|
- |
|
bmc
|
patrol_agent
|
Untrusted search path vulnerability in BMC Patrol for AIX 3.9.00 allows local users to gain privileges via a crafted library, related to an incorrect RPATH setting.
|
NVD-CWE-Other
|
CVE-2014-2591
|
2024-11-21 11:06 |
2014-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281362
|
- |
|
oracle
|
openjdk
|
Unspecified vulnerability in OpenJDK 6 before 6b31 on Debian GNU/Linux and Ubuntu 12.04 LTS and 10.04 LTS has unknown impact and attack vectors, a different vulnerability than CVE-2014-0462.
|
NVD-CWE-noinfo
|
CVE-2014-2405
|
2024-11-21 11:06 |
2014-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281363
|
- |
|
bscw
|
bscw
|
OrbiTeam BSCW before 5.0.8 allows remote attackers to obtain sensitive metadata via the inf operations (op=inf) to an object in pub/bscw.cgi/.
|
CWE-200
Information Exposure
|
CVE-2014-2301
|
2024-11-21 11:06 |
2014-05-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281364
|
- |
|
hp
|
hp_h-series_fibre_channel_switch_firmware
8\/20q_fibre_channel_switch_16_port
8\/20q_fibre_channel_switch_8_port
8gb_simple_san_connection_kit
sn6000_stackable_8gb_12-port_single_power_fi…
|
Unspecified vulnerability on HP 8/20q switches, SN6000 switches, and 8Gb Simple SAN Connection Kit with firmware before 8.0.14.08.00 allows remote authenticated users to obtain sensitive information …
|
NVD-CWE-noinfo
|
CVE-2014-2603
|
2024-11-21 11:06 |
2014-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281365
|
- |
|
slashes\&dots
|
offria
|
Cross-site scripting (XSS) vulnerability in Offiria 2.1.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO to installer/index.php.
|
CWE-79
Cross-site Scripting
|
CVE-2014-2689
|
2024-11-21 11:06 |
2014-05-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281366
|
- |
|
hp
|
oneview
|
Unspecified vulnerability in HP OneView 1.0 and 1.01 allows remote authenticated users to gain privileges via unknown vectors.
|
NVD-CWE-noinfo
|
CVE-2014-2602
|
2024-11-21 11:06 |
2014-05-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281367
|
- |
|
skyphe
|
file-gallery
|
The File Gallery plugin before 1.7.9.2 for WordPress does not properly escape strings, which allows remote administrators to execute arbitrary PHP code via a \' (backslash quote) in the setting field…
|
CWE-94
Code Injection
|
CVE-2014-2558
|
2024-11-21 11:06 |
2014-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281368
|
- |
|
amtelco
|
misecuremessages
|
Amtelco miSecureMessages (aka MSM) 6.2 does not properly manage sessions, which allows remote authenticated users to obtain sensitive information via a modified message request.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-2347
|
2024-11-21 11:06 |
2014-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281369
|
- |
|
dynamixsolutions
|
arabic_prawn
|
lib/string_utf_support.rb in the Arabic Prawn 0.0.1 gem for Ruby allows remote attackers to execute arbitrary commands via shell metacharacters in the (1) downloaded_file or (2) url variable.
|
NVD-CWE-Other
|
CVE-2014-2322
|
2024-11-21 11:06 |
2014-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281370
|
- |
|
bluecoat
|
content_analysis_system_software
content_analysis_system
|
The commandline interface in Blue Coat Content Analysis System (CAS) 1.1 before 1.1.4.2 allows remote administrators to execute arbitrary commands via unspecified vectors, related to "command injecti…
|
CWE-78
OS Command
|
CVE-2014-2565
|
2024-11-21 11:06 |
2014-04-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
