|
278571
|
- |
|
adobe
|
acrobat
acrobat_dc
acrobat_reader
acrobat_reader_dc
|
Adobe Reader and Acrobat 10.x before 10.1.15 and 11.x before 11.0.12, Acrobat and Acrobat Reader DC Classic before 2015.006.30060, and Acrobat and Acrobat Reader DC Continuous before 2015.008.20082 o…
|
CWE-200
Information Exposure
|
CVE-2014-8450
|
2024-11-21 11:19 |
2015-07-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278572
|
- |
|
xcloner
|
xcloner
|
The XCloner plugin 3.1.1 for WordPress and 3.5.1 for Joomla! provides the MySQL username and password on the command line, which allows local users to obtain sensitive information via the ps command.
|
CWE-200
Information Exposure
|
CVE-2014-8607
|
2024-11-21 11:19 |
2015-06-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278573
|
- |
|
xcloner
|
xcloner
|
Directory traversal vulnerability in the XCloner plugin 3.1.1 for WordPress and 3.5.1 for Joomla! allows remote administrators to read arbitrary files via a .. (dot dot) in the file parameter in a js…
|
CWE-22
Path Traversal
|
CVE-2014-8606
|
2024-11-21 11:19 |
2015-06-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278574
|
- |
|
xcloner
|
xcloner
|
The XCloner plugin 3.1.1 for WordPress and 3.5.1 for Joomla! stores database backup files with predictable names under the web root with insufficient access control, which allows remote attackers to …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-8605
|
2024-11-21 11:19 |
2015-06-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278575
|
- |
|
xcloner
|
xcloner
|
The XCloner plugin 3.1.1 for WordPress and 3.5.1 for Joomla! returns the MySQL password in cleartext to a text box in the configuration panel, which allows remote attackers to obtain sensitive inform…
|
CWE-200
Information Exposure
|
CVE-2014-8604
|
2024-11-21 11:19 |
2015-06-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278576
|
- |
|
xcloner
|
xcloner
|
cloner.functions.php in the XCloner plugin 3.1.1 for WordPress and 3.5.1 for Joomla! allows remote administrators to execute arbitrary code via shell metacharacters in the (1) file name when creating…
|
CWE-20
Improper Input Validation
|
CVE-2014-8603
|
2024-11-21 11:19 |
2015-06-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278577
|
- |
|
ibm
|
marketing_operations
|
IBM Marketing Operations 7.x and 8.x before 8.5.0.7.2, 8.6.x before 8.6.0.8, 9.0.x before 9.0.0.4.1, 9.1.0.x before 9.1.0.5, and 9.1.1.x before 9.1.1.2 allows remote authenticated users to upload arb…
|
CWE-20
Improper Input Validation
|
CVE-2014-8887
|
2024-11-21 11:19 |
2015-06-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278578
|
- |
|
sendio
|
sendio
|
The Web interface in Sendio before 7.2.4 does not properly handle sessions, which allows remote authenticated users to obtain sensitive information from other users' sessions via a large number of re…
|
CWE-200
Information Exposure
|
CVE-2014-8391
|
2024-11-21 11:19 |
2015-06-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278579
|
- |
|
ibm
|
tivoli_asset_discovery_for_distributed
license_metric_tool
endpoint_manager_family
|
Common Inventory Technology (CIT) before 2.7.0.2050 in IBM License Metric Tool 7.2.2, 7.5, and 9; Endpoint Manger for Software Use Analysis 9; and Tivoli Asset Discovery for Distributed 7.2.2 and 7.5…
|
CWE-399
Resource Management Errors
|
CVE-2014-8927
|
2024-11-21 11:19 |
2015-05-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278580
|
- |
|
ibm
|
tivoli_asset_discovery_for_distributed
license_metric_tool
endpoint_manager_family
|
Common Inventory Technology (CIT) before 2.7.0.2050 in IBM License Metric Tool 7.2.2, 7.5, and 9; Endpoint Manger for Software Use Analysis 9; and Tivoli Asset Discovery for Distributed 7.2.2 and 7.5…
|
CWE-399
Resource Management Errors
|
CVE-2014-8926
|
2024-11-21 11:19 |
2015-05-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
