|
281501
|
- |
|
sap
|
enhancement_package
|
The Security Audit Log facility in SAP Enhancement Package (EHP) 6 for SAP ERP 6.0 allows remote attackers to modify or delete arbitrary log classes via unspecified vectors. NOTE: some of these deta…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-2748
|
2024-11-21 11:06 |
2014-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281502
|
- |
|
cacti
|
cacti
|
Multiple SQL injection vulnerabilities in graph_xport.php in Cacti 0.8.7g, 0.8.8b, and earlier allow remote attackers to execute arbitrary SQL commands via the (1) graph_start, (2) graph_end, (3) gra…
|
CWE-89
SQL Injection
|
CVE-2014-2708
|
2024-11-21 11:06 |
2014-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281503
|
- |
|
linux-pam
|
linux-pam
|
Multiple directory traversal vulnerabilities in pam_timestamp.c in the pam_timestamp module for Linux-PAM (aka pam) 1.1.8 allow local users to create arbitrary files or possibly bypass authentication…
|
CWE-22
Path Traversal
|
CVE-2014-2583
|
2024-11-21 11:06 |
2014-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281504
|
- |
|
tibco
|
web_player
automation_services
spotfire_server
spotfire_professional
analyst
desktop
deployment_kit
|
Unspecified vulnerability in Spotfire Web Player Engine, Spotfire Desktop, and Spotfire Server Authentication Module in TIBCO Spotfire Server 3.3.x before 3.3.4, 4.5.x before 4.5.1, 5.0.x before 5.0.…
|
NVD-CWE-noinfo
|
CVE-2014-2544
|
2024-11-21 11:06 |
2014-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281505
|
- |
|
tibco
|
rendezvous
messaging_appliance
substantiation_es
|
Buffer overflow in the Rendezvous Daemon (rvd), Rendezvous Routing Daemon (rvrd), Rendezvous Secure Daemon (rvsd), and Rendezvous Secure Routing Daemon (rvsrd) in TIBCO Rendezvous before 8.4.2, Messa…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-2543
|
2024-11-21 11:06 |
2014-04-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281506
|
- |
|
tibco
|
rendezvous
messaging_appliance
substantiation_es
|
Cross-site scripting (XSS) vulnerability in the Rendezvous Daemon (rvd), Rendezvous Routing Daemon (rvrd), Rendezvous Secure Daemon (rvsd), and Rendezvous Secure Routing Daemon (rvsrd) in TIBCO Rende…
|
CWE-79
Cross-site Scripting
|
CVE-2014-2542
|
2024-11-21 11:06 |
2014-04-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281507
|
- |
|
tibco
|
rendezvous
messaging_appliance
substantiation_es
|
The Rendezvous Daemon (rvd), Rendezvous Routing Daemon (rvrd), Rendezvous Secure Daemon (rvsd), and Rendezvous Secure Routing Daemon (rvsrd) in TIBCO Rendezvous before 8.4.2, Messaging Appliance befo…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-2541
|
2024-11-21 11:06 |
2014-04-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281508
|
- |
|
microsoft
|
office
|
The XML parser in Microsoft Office 2007 SP3, 2010 SP1 and SP2, and 2013, and Office for Mac 2011, does not properly detect recursion during entity expansion, which allows remote attackers to cause a …
|
CWE-399
Resource Management Errors
|
CVE-2014-2730
|
2024-11-21 11:06 |
2014-04-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281509
|
- |
|
hp
|
icewall_sso_password_reset_option
icewall_identity_manager
|
Unspecified vulnerability in HP IceWall Identity Manager 4.0 through SP1 and 5.0 and IceWall SSO 10.0 Password Reset Option, when Apache Commons FileUpload is used, allows remote authenticated users …
|
NVD-CWE-noinfo
|
CVE-2014-2600
|
2024-11-21 11:06 |
2014-04-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281510
|
- |
|
xcloner
|
xcloner
|
Cross-site request forgery (CSRF) vulnerability in the XCloner plugin before 3.1.1 for WordPress allows remote attackers to hijack the authentication of administrators for requests that create websit…
|
CWE-352
Origin Validation Error
|
CVE-2014-2340
|
2024-11-21 11:06 |
2014-04-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
