|
283911
|
- |
|
linux-pam
|
linux-pam
|
Multiple directory traversal vulnerabilities in pam_timestamp.c in the pam_timestamp module for Linux-PAM (aka pam) 1.1.8 allow local users to create arbitrary files or possibly bypass authentication…
|
CWE-22
Path Traversal
|
CVE-2014-2583
|
2024-11-21 11:06 |
2014-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283912
|
- |
|
tibco
|
web_player
automation_services
spotfire_server
spotfire_professional
analyst
desktop
deployment_kit
|
Unspecified vulnerability in Spotfire Web Player Engine, Spotfire Desktop, and Spotfire Server Authentication Module in TIBCO Spotfire Server 3.3.x before 3.3.4, 4.5.x before 4.5.1, 5.0.x before 5.0.…
|
NVD-CWE-noinfo
|
CVE-2014-2544
|
2024-11-21 11:06 |
2014-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283913
|
- |
|
tibco
|
rendezvous
messaging_appliance
substantiation_es
|
Buffer overflow in the Rendezvous Daemon (rvd), Rendezvous Routing Daemon (rvrd), Rendezvous Secure Daemon (rvsd), and Rendezvous Secure Routing Daemon (rvsrd) in TIBCO Rendezvous before 8.4.2, Messa…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-2543
|
2024-11-21 11:06 |
2014-04-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283914
|
- |
|
tibco
|
rendezvous
messaging_appliance
substantiation_es
|
Cross-site scripting (XSS) vulnerability in the Rendezvous Daemon (rvd), Rendezvous Routing Daemon (rvrd), Rendezvous Secure Daemon (rvsd), and Rendezvous Secure Routing Daemon (rvsrd) in TIBCO Rende…
|
CWE-79
Cross-site Scripting
|
CVE-2014-2542
|
2024-11-21 11:06 |
2014-04-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283915
|
- |
|
tibco
|
rendezvous
messaging_appliance
substantiation_es
|
The Rendezvous Daemon (rvd), Rendezvous Routing Daemon (rvrd), Rendezvous Secure Daemon (rvsd), and Rendezvous Secure Routing Daemon (rvsrd) in TIBCO Rendezvous before 8.4.2, Messaging Appliance befo…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-2541
|
2024-11-21 11:06 |
2014-04-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283916
|
- |
|
microsoft
|
office
|
The XML parser in Microsoft Office 2007 SP3, 2010 SP1 and SP2, and 2013, and Office for Mac 2011, does not properly detect recursion during entity expansion, which allows remote attackers to cause a …
|
CWE-399
Resource Management Errors
|
CVE-2014-2730
|
2024-11-21 11:06 |
2014-04-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283917
|
- |
|
hp
|
icewall_sso_password_reset_option
icewall_identity_manager
|
Unspecified vulnerability in HP IceWall Identity Manager 4.0 through SP1 and 5.0 and IceWall SSO 10.0 Password Reset Option, when Apache Commons FileUpload is used, allows remote authenticated users …
|
NVD-CWE-noinfo
|
CVE-2014-2600
|
2024-11-21 11:06 |
2014-04-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283918
|
- |
|
xcloner
|
xcloner
|
Cross-site request forgery (CSRF) vulnerability in the XCloner plugin before 3.1.1 for WordPress allows remote attackers to hijack the authentication of administrators for requests that create websit…
|
CWE-352
Origin Validation Error
|
CVE-2014-2340
|
2024-11-21 11:06 |
2014-04-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283919
|
- |
|
postfix_admin_project
|
postfix_admin
|
SQL injection vulnerability in the gen_show_status function in functions.inc.php in Postfix Admin (aka postfixadmin) before 2.3.7 allows remote authenticated users to execute arbitrary SQL commands v…
|
CWE-89
SQL Injection
|
CVE-2014-2655
|
2024-11-21 11:06 |
2014-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283920
|
- |
|
splunk
|
splunk
|
Cross-site scripting (XSS) vulnerability in Splunk Web in Splunk before 5.0.8 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2014-2578
|
2024-11-21 11:06 |
2014-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
