|
284781
|
- |
|
jetroplatforms
|
jetro_cockpit_secure_browsing
|
The client in Jetro COCKPIT Secure Browsing (JCSB) 4.3.1 and 4.3.3 does not validate the FileName element in an RDP_FILE_TRANSFER document, which allows remote JCSB servers to execute arbitrary progr…
|
CWE-20
Improper Input Validation
|
CVE-2014-1861
|
2024-11-21 11:05 |
2014-02-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284782
|
- |
|
mozilla
|
thunderbird_esr
thunderbird
seamonkey
|
Cross-site scripting (XSS) vulnerability in Mozilla Thunderbird 17.x through 17.0.8, Thunderbird ESR 17.x through 17.0.10, and SeaMonkey before 2.20 allows user-assisted remote attackers to inject ar…
|
CWE-79
Cross-site Scripting
|
CVE-2014-2018
|
2024-11-21 11:05 |
2014-02-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284783
|
- |
|
sap
|
netweaver
|
Cross-site scripting (XSS) vulnerability in ISpeakAdapter in the Integration Repository in the SAP Exchange Infrastructure (BC-XI) component 3.0, 7.00 through 7.02, and 7.10 through 7.11 for SAP NetW…
|
CWE-79
Cross-site Scripting
|
CVE-2014-1965
|
2024-11-21 11:05 |
2014-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284784
|
- |
|
sap
|
netweaver
netweaver_exchange_infrastructure_\(bc-xi\)
|
Cross-site scripting (XSS) vulnerability in the Integration Repository in the SAP Exchange Infrastructure (BC-XI) component in SAP NetWeaver allows remote attackers to inject arbitrary web script or …
|
CWE-79
Cross-site Scripting
|
CVE-2014-1964
|
2024-11-21 11:05 |
2014-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284785
|
- |
|
sap
|
netweaver
|
Unspecified vulnerability in Message Server in SAP NetWeaver 7.20 allows remote attackers to cause a denial of service via unknown attack vectors.
|
NVD-CWE-noinfo
|
CVE-2014-1963
|
2024-11-21 11:05 |
2014-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284786
|
- |
|
sap
|
customer_relationship_management
|
Gwsync in SAP CRM 7.02 EHP 2 allows remote attackers to obtain sensitive information via unspecified vectors, related to an XML External Entity (XXE) issue.
|
CWE-200
Information Exposure
|
CVE-2014-1962
|
2024-11-21 11:05 |
2014-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284787
|
- |
|
sap
|
netweaver
|
Unspecified vulnerability in the Portal WebDynPro in SAP NetWeaver allows remote attackers to obtain sensitive path information via unknown attack vectors.
|
NVD-CWE-noinfo
|
CVE-2014-1961
|
2024-11-21 11:05 |
2014-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284788
|
- |
|
sap
|
netweaver_solution_manager
netweaver
|
The Solution Manager in SAP NetWeaver does not properly restrict access, which allows remote attackers to obtain sensitive information via unspecified vectors.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-1960
|
2024-11-21 11:05 |
2014-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284789
|
- |
|
xen
|
xen
|
Use-after-free vulnerability in the xc_cpupool_getinfo function in Xen 4.1.x through 4.3.x, when using a multithreaded toolstack, does not properly handle a failure by the xc_cpumap_alloc function, w…
|
CWE-399
Resource Management Errors
|
CVE-2014-1950
|
2024-11-21 11:05 |
2014-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
284790
|
- |
|
openstack
|
image_registry_and_delivery_service_\(glance\)
|
OpenStack Image Registry and Delivery Service (Glance) 2013.2 through 2013.2.1 and Icehouse before icehouse-2 logs a URL containing the Swift store backend password when authentication fails and WARN…
|
CWE-255
Credentials Management
|
CVE-2014-1948
|
2024-11-21 11:05 |
2014-02-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
