|
280921
|
- |
|
filemaker
|
filemaker_pro
filemaker_pro_advanced
|
FileMaker Pro before 13 and Pro Advanced before 13 does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via …
|
CWE-310
Cryptographic Issues
|
CVE-2014-5321
|
2024-11-21 11:11 |
2014-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280922
|
- |
|
bump_project
|
bump
|
The Bump application for Android does not properly handle implicit intents, which allows attackers to obtain sensitive owner-name information via a crafted application.
|
CWE-200
Information Exposure
|
CVE-2014-5320
|
2024-11-21 11:11 |
2014-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280923
|
- |
|
dotclear
|
dotclear
|
Cross-site scripting (XSS) vulnerability in Dotclear before 2.6.4 allows remote attackers to inject arbitrary web script or HTML via a crafted page.
|
CWE-79
Cross-site Scripting
|
CVE-2014-5316
|
2024-11-21 11:11 |
2014-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280924
|
- |
|
schneider-electric
aveva
|
scada_expert_clearscada
clearscada
|
Multiple cross-site scripting (XSS) vulnerabilities in Schneider Electric StruxureWare SCADA Expert ClearSCADA 2010 R3 through 2014 R1 allow remote authenticated users to inject arbitrary web script …
|
CWE-79
Cross-site Scripting
|
CVE-2014-5411
|
2024-11-21 11:11 |
2014-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280925
|
- |
|
php365
|
365_links
365_links_2\+
365_links2
365_links\+
|
Cross-site scripting (XSS) vulnerability in php365.com 365 Links 3.11 and earlier, 365 Links2 3.11 and earlier, 365 Links+ 2.10 and earlier, and 365 Links2+ 2.10 and earlier allows remote attackers t…
|
CWE-79
Cross-site Scripting
|
CVE-2014-5317
|
2024-11-21 11:11 |
2014-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280926
|
- |
|
open-xchange
|
open-xchange_appsuite
|
Cross-site scripting (XSS) vulnerability in the frontend in Open-Xchange (OX) AppSuite before 7.4.2-rev33 and 7.6.x before 7.6.0-rev16 allows remote attackers to inject arbitrary web script or HTML v…
|
CWE-79
Cross-site Scripting
|
CVE-2014-5235
|
2024-11-21 11:11 |
2014-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280927
|
- |
|
open-xchange
|
open-xchange_appsuite
|
Cross-site scripting (XSS) vulnerability in the backend in Open-Xchange (OX) AppSuite before 7.4.2-rev33 and 7.6.x before 7.6.0-rev16 allows remote attackers to inject arbitrary web script or HTML vi…
|
CWE-79
Cross-site Scripting
|
CVE-2014-5234
|
2024-11-21 11:11 |
2014-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280928
|
- |
|
schneider-electric
|
vampset
|
Multiple stack-based buffer overflows in Schneider Electric VAMPSET 2.2.136 and earlier allow local users to cause a denial of service (application halt) via a malformed (1) setting file or (2) distu…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-5407
|
2024-11-21 11:11 |
2014-09-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280929
|
- |
|
blackcat-cms
|
blackcat_cms
|
Cross-site scripting (XSS) vulnerability in cattranslate.php in the CatTranslate JQuery plugin in BlackCat CMS 1.0.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the…
|
CWE-79
Cross-site Scripting
|
CVE-2014-5259
|
2024-11-21 11:11 |
2014-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280930
|
- |
|
sos
|
jobscheduler
|
Directory traversal vulnerability in the JobScheduler Operations Center (JOC) in SOS JobScheduler before 1.6.4246 and 1.7.x before 1.7.4241 allows remote authenticated users with the info permission …
|
CWE-22
Path Traversal
|
CVE-2014-5393
|
2024-11-21 11:11 |
2014-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
