|
281751
|
- |
|
elastic
|
logstash
|
Elasticsearch Logstash 1.0.14 through 1.4.x before 1.4.2 allows remote attackers to execute arbitrary commands via a crafted event in (1) zabbix.rb or (2) nagios_nsca.rb in outputs/.
|
CWE-78
OS Command
|
CVE-2014-4326
|
2024-11-21 11:09 |
2014-07-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281752
|
- |
|
mit
redhat
debian
fedoraproject
|
kerberos_5
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux_server_aus
enterprise_linux_server_eus
enterprise_linux_eus
enterprise_l…
|
MIT Kerberos 5 (aka krb5) before 1.12.2 allows remote attackers to cause a denial of service (buffer over-read and application crash) by injecting invalid tokens into a GSSAPI application session.
|
CWE-125
Out-of-bounds Read
|
CVE-2014-4341
|
2024-11-21 11:09 |
2014-07-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281753
|
- |
|
php_kobo
|
multifunctional_mailform_free
|
Cross-site scripting (XSS) vulnerability in PHP Kobo Multifunctional MailForm Free 2014/1/28 and earlier allows remote attackers to inject arbitrary web script or HTML via an HTTP Referer header.
|
CWE-79
Cross-site Scripting
|
CVE-2014-3894
|
2024-11-21 11:09 |
2014-07-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281754
|
- |
|
nexatechnologies
|
meridian
|
Cross-site scripting (XSS) vulnerability in Nexa Meridian before 2014 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2014-3892
|
2024-11-21 11:09 |
2014-07-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281755
|
- |
|
webmin
|
webmin
|
Cross-site scripting (XSS) vulnerability in Webmin before 1.690, when referrer checking is disabled, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: thi…
|
CWE-79
Cross-site Scripting
|
CVE-2014-3886
|
2024-11-21 11:09 |
2014-07-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281756
|
- |
|
webmin
|
webmin
|
Cross-site scripting (XSS) vulnerability in Webmin before 1.690 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors. NOTE: this might overlap CVE-2014-39…
|
CWE-79
Cross-site Scripting
|
CVE-2014-3885
|
2024-11-21 11:09 |
2014-07-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281757
|
- |
|
webmin
|
usermin
|
Cross-site scripting (XSS) vulnerability in Usermin before 1.600 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: this might overlap CVE-2014-3924.
|
CWE-79
Cross-site Scripting
|
CVE-2014-3884
|
2024-11-21 11:09 |
2014-07-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281758
|
- |
|
octavocms
|
octavocms
|
Cross-site scripting (XSS) vulnerability in admin/viewer.php in OctavoCMS allows remote attackers to inject arbitrary web script or HTML via the src parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2014-4331
|
2024-11-21 11:09 |
2014-07-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281759
|
- |
|
oracle
|
hyperion
|
Unspecified vulnerability in the Hyperion Essbase component in Oracle Hyperion 11.1.2.2 and 11.1.2.3 allows remote attackers to affect availability via unknown vectors related to Agent.
|
NVD-CWE-noinfo
|
CVE-2014-4271
|
2024-11-21 11:09 |
2014-07-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281760
|
- |
|
oracle
|
hyperion
|
Unspecified vulnerability in the Hyperion Common Admin component in Oracle Hyperion 11.1.2.2 and 11.1.2.3 allows remote authenticated users to affect confidentiality via unknown vectors related to Us…
|
NVD-CWE-noinfo
|
CVE-2014-4270
|
2024-11-21 11:09 |
2014-07-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
