|
278051
|
- |
|
sap
|
sap_kernel
|
Buffer overflow in the SAP NetWeaver Dispatcher in SAP Kernel 7.00 32-bit and 7.40 64-bit allows remote authenticated users to cause a denial of service or possibly execute arbitrary code via unspeci…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-9594
|
2024-11-21 11:21 |
2015-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278052
|
- |
|
apache
|
cloudstack
|
Apache CloudStack before 4.3.2 and 4.4.x before 4.4.2 allows remote attackers to obtain private keys via a listSslCerts API call.
|
CWE-200
Information Exposure
|
CVE-2014-9593
|
2024-11-21 11:21 |
2015-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278053
|
- |
|
roundcube
|
webmail
|
Multiple cross-site request forgery (CSRF) vulnerabilities in Roundcube Webmail before 1.0.4 allow remote attackers to hijack the authentication of unspecified victims via unknown vectors, related to…
|
CWE-352
Origin Validation Error
|
CVE-2014-9587
|
2024-11-21 11:21 |
2015-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278054
|
- |
|
mywebsiteadvisor
|
simple_security
|
Multiple cross-site scripting (XSS) vulnerabilities in the MyWebsiteAdvisor Simple Security plugin 1.1.5 and earlier for WordPress allow remote attackers to inject arbitrary web script or HTML via th…
|
CWE-79
Cross-site Scripting
|
CVE-2014-9570
|
2024-11-21 11:21 |
2015-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278055
|
- |
|
softbb
|
softbb
|
Cross-site scripting (XSS) vulnerability in redir_last_post_list.php in SoftBB 0.1.3 allows remote attackers to inject arbitrary web script or HTML via the post parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2014-9561
|
2024-11-21 11:21 |
2015-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278056
|
- |
|
softbb
|
softbb
|
SQL injection vulnerability in redir_last_post_list.php in SoftBB 0.1.3 allows remote attackers to execute arbitrary SQL commands via the post parameter.
|
CWE-89
SQL Injection
|
CVE-2014-9560
|
2024-11-21 11:21 |
2015-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278057
|
- |
|
apple
libpng
|
mac_os_x
libpng
|
Heap-based buffer overflow in the png_combine_row function in libpng before 1.5.21 and 1.6.x before 1.6.16, when running on 64-bit systems, might allow context-dependent attackers to execute arbitrar…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-9495
|
2024-11-21 11:21 |
2015-01-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278058
|
- |
|
linux
redhat
suse
opensuse
fedoraproject
debian
canonical
|
linux_kernel
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux_aus
enterprise_linux_server_eus
enterprise_linux_eus
enterprise_linux_…
|
The vdso_addr function in arch/x86/vdso/vma.c in the Linux kernel through 3.18.2 does not properly choose memory locations for the vDSO area, which makes it easier for local users to bypass the ASLR …
|
NVD-CWE-noinfo
|
CVE-2014-9585
|
2024-11-21 11:21 |
2015-01-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278059
|
- |
|
tp-link
|
tl-wr840n_firmware
|
Cross-site request forgery (CSRF) vulnerability in the administration console in TP-Link TL-WR840N (V1) router with firmware before 3.13.27 build 141120 allows remote attackers to hijack the authenti…
|
CWE-352
Origin Validation Error
|
CVE-2014-9510
|
2024-11-21 11:21 |
2015-01-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
278060
|
- |
|
school_administration_project
|
school_administration
|
Cross-site scripting (XSS) vulnerability in the School Administration module 7.x-1.x before 7.x-1.8 for Drupal allows remote authenticated users with permission to create or edit a class node to inje…
|
CWE-79
Cross-site Scripting
|
CVE-2014-9505
|
2024-11-21 11:21 |
2015-01-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
