|
256101
|
6.1 |
MEDIUM
Network
|
dlink
|
dir-850l_firmware
|
D-Link DIR-850L REV. A (with firmware through FW114WWb07_h2ab_beta1) devices have XSS in the action parameter to htdocs/web/sitesurvey.php.
|
CWE-79
Cross-site Scripting
|
CVE-2017-14415
|
2024-11-21 12:12 |
2017-09-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256102
|
6.1 |
MEDIUM
Network
|
dlink
|
dir-850l_firmware
|
D-Link DIR-850L REV. A (with firmware through FW114WWb07_h2ab_beta1) devices have XSS in the action parameter to htdocs/web/shareport.php.
|
CWE-79
Cross-site Scripting
|
CVE-2017-14414
|
2024-11-21 12:12 |
2017-09-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256103
|
6.1 |
MEDIUM
Network
|
dlink
|
dir-850l_firmware
|
D-Link DIR-850L REV. A (with firmware through FW114WWb07_h2ab_beta1) devices have XSS in the action parameter to htdocs/web/wpsacts.php.
|
CWE-79
Cross-site Scripting
|
CVE-2017-14413
|
2024-11-21 12:12 |
2017-09-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256104
|
6.3 |
MEDIUM
Local
|
unicon-software
|
rp
|
In eLux RP 5.x before 5.5.1000 LTSR and 5.6.x before 5.6.2 CR when classic desktop mode is used, it is possible to start applications other than defined, even if the user does not have permissions to…
|
CWE-269
Improper Privilege Management
|
CVE-2017-14124
|
2024-11-21 12:12 |
2017-09-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256105
|
7.8 |
HIGH
Local
|
razer
|
synapse
|
rzpnk.sys in Razer Synapse 2.20.15.1104 allows local users to read and write to arbitrary memory locations, and consequently gain privileges, via a methodology involving a handle to \Device\PhysicalM…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-14398
|
2024-11-21 12:12 |
2017-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256106
|
7.8 |
HIGH
Local
|
mp3gain
|
mp3gain
|
An invalid memory write was discovered in copy_mp in interface.c in mpglibDBL, as used in MP3Gain version 1.5.2. The vulnerability causes a denial of service (segmentation fault and application crash…
|
CWE-787
Out-of-bounds Write
|
CVE-2017-14412
|
2024-11-21 12:12 |
2017-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256107
|
7.8 |
HIGH
Local
|
mp3gain
|
mp3gain
|
A stack-based buffer overflow was discovered in copy_mp in interface.c in mpglibDBL, as used in MP3Gain version 1.5.2. The vulnerability causes an out-of-bounds write, which leads to remote denial of…
|
CWE-787
Out-of-bounds Write
|
CVE-2017-14411
|
2024-11-21 12:12 |
2017-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256108
|
5.5 |
MEDIUM
Local
|
mp3gain
|
mp3gain
|
A buffer over-read was discovered in III_i_stereo in layer3.c in mpglibDBL, as used in MP3Gain version 1.5.2. The vulnerability causes an application crash, which leads to remote denial of service.
|
CWE-125
Out-of-bounds Read
|
CVE-2017-14410
|
2024-11-21 12:12 |
2017-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256109
|
7.8 |
HIGH
Local
|
mp3gain
|
mp3gain
|
A buffer overflow was discovered in III_dequantize_sample in layer3.c in mpglibDBL, as used in MP3Gain version 1.5.2. The vulnerability causes an out-of-bounds write, which leads to remote denial of …
|
CWE-787
Out-of-bounds Write
|
CVE-2017-14409
|
2024-11-21 12:12 |
2017-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256110
|
5.5 |
MEDIUM
Local
|
mp3gain
|
mp3gain
|
A stack-based buffer over-read was discovered in dct36 in layer3.c in mpglibDBL, as used in MP3Gain version 1.5.2. The vulnerability causes an application crash, which leads to remote denial of servi…
|
CWE-125
Out-of-bounds Read
|
CVE-2017-14408
|
2024-11-21 12:12 |
2017-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
