|
282571
|
- |
|
freebsd
|
freebsd
|
Integer signedness error in the vt console driver (formerly Newcons) in FreeBSD 9.3 before p10 and 10.1 before p6 allows local users to cause a denial of service (crash) and possibly gain privileges …
|
CWE-189
Numeric Errors
|
CVE-2014-0998
|
2024-11-21 11:03 |
2015-02-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282572
|
- |
|
domphp
|
domphp
|
SQL injection vulnerability in agenda/indexdate.php in DomPHP 0.83 and earlier allows remote attackers to execute arbitrary SQL commands via the ids parameter.
|
CWE-89
SQL Injection
|
CVE-2014-10038
|
2024-11-21 11:03 |
2015-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282573
|
- |
|
domphp
|
domphp
|
Directory traversal vulnerability in DomPHP 0.83 and earlier allows remote attackers to have unspecified impact via a .. (dot dot) in the url parameter to photoalbum/index.php.
|
CWE-22
Path Traversal
|
CVE-2014-10037
|
2024-11-21 11:03 |
2015-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282574
|
- |
|
jetbrains
|
teamcity
|
Cross-site scripting (XSS) vulnerability in JetBrains TeamCity before 8.1 allows remote attackers to inject arbitrary web script or HTML via the cameFromUrl parameter to feed/generateFeedUrl.html.
|
CWE-79
Cross-site Scripting
|
CVE-2014-10036
|
2024-11-21 11:03 |
2015-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282575
|
- |
|
couponphp
|
couponphp
|
Multiple cross-site scripting (XSS) vulnerabilities in the admin area in couponPHP before 1.2.0 allow remote administrators to inject arbitrary web script or HTML via the (1) sEcho parameter to comme…
|
CWE-79
Cross-site Scripting
|
CVE-2014-10035
|
2024-11-21 11:03 |
2015-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282576
|
- |
|
couponphp
|
couponphp
|
Multiple SQL injection vulnerabilities in the admin area in couponPHP before 1.2.0 allow remote administrators to execute arbitrary SQL commands via the (1) iDisplayLength or (2) iDisplayStart parame…
|
CWE-89
SQL Injection
|
CVE-2014-10034
|
2024-11-21 11:03 |
2015-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282577
|
- |
|
oscommerce
|
online_merchant
|
SQL injection vulnerability in the update_zone function in catalog/admin/geo_zones.php in osCommerce Online Merchant 2.3.3.4 and earlier allows remote administrators to execute arbitrary SQL commands…
|
CWE-89
SQL Injection
|
CVE-2014-10033
|
2024-11-21 11:03 |
2015-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282578
|
- |
|
scriptbrasil
|
taboada_macronews
|
SQL injection vulnerability in news_popup.php in Taboada MacroNews 1.0 allows remote authenticated users to execute arbitrary SQL commands via the id parameter.
|
CWE-89
SQL Injection
|
CVE-2014-10032
|
2024-11-21 11:03 |
2015-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282579
|
- |
|
qualcomm
|
eudora_worldmail
|
Buffer overflow in the IMAPd service in Qualcomm Eudora WorldMail 9.0.333.0 allows remote attackers to execute arbitrary code via a long string in a UID command.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-10031
|
2024-11-21 11:03 |
2015-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282580
|
- |
|
malwarebytes
|
malwarebytes_anti-exploit
|
mbae.sys in Malwarebytes Anti-Exploit before 1.05.1.2014 allows local users to cause a denial of service (crash) via a crafted size in an unspecified IOCTL call, which triggers an out-of-bounds read.…
|
CWE-20
Improper Input Validation
|
CVE-2014-100039
|
2024-11-21 11:03 |
2015-01-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
