|
279271
|
- |
|
trendmicro
|
interscan_web_security_virtual_appliance
|
The AdminUI in Trend Micro InterScan Web Security Virtual Appliance (IWSVA) before 6.0 HF build 1244 allows remote authenticated users to read arbitrary files via vectors related to configuration inp…
|
CWE-20
Improper Input Validation
|
CVE-2014-8510
|
2024-11-21 11:19 |
2014-11-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279272
|
- |
|
rewardingyourself
|
rewardingyourself
|
Cross-site scripting (XSS) vulnerability in the RewardingYourself application for Android and BlackBerry OS allows remote attackers to inject arbitrary web script or HTML via a crafted QR code.
|
CWE-79
Cross-site Scripting
|
CVE-2014-8672
|
2024-11-21 11:19 |
2014-11-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279273
|
- |
|
gwt_mobile_phonegap_showcase_project
|
gwt_mobile_phonegap_showcase
|
Cross-site scripting (XSS) vulnerability in the GWT Mobile PhoneGap Showcase application for Android allows remote attackers to inject arbitrary web script or HTML via a crafted Bluetooth Device Name…
|
CWE-79
Cross-site Scripting
|
CVE-2014-8671
|
2024-11-21 11:19 |
2014-11-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279274
|
- |
|
vbulletin
|
vbulletin
|
Open redirect vulnerability in go.php in vBulletin 4.2.1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the url parameter.
|
NVD-CWE-Other
|
CVE-2014-8670
|
2024-11-21 11:19 |
2014-11-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279275
|
- |
|
sap
|
customer_relationship_management
|
The SAP Promotion Guidelines (CRM-MKT-MPL-TPM-PPG) module for SAP CRM allows remote attackers to execute arbitrary code via unspecified vectors.
|
CWE-94
Code Injection
|
CVE-2014-8669
|
2024-11-21 11:19 |
2014-11-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279276
|
- |
|
sap
|
contract_accounting
|
SQL injection vulnerability in SAP Contract Accounting allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2014-8668
|
2024-11-21 11:19 |
2014-11-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279277
|
- |
|
sap
|
hana_web-based_development_workbench
|
Cross-site scripting (XSS) vulnerability in SAP HANA Web-based Development Workbench allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2014-8667
|
2024-11-21 11:19 |
2014-11-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279278
|
- |
|
sap
|
business_intelligence_development_workbench
|
The User & Server configuration, InfoView refresh, user rights (BI-BIP-ADM) component in SAP Business Intellignece allows remote attackers to obtain audit event details via unspecified vectors.
|
CWE-200
Information Exposure
|
CVE-2014-8666
|
2024-11-21 11:19 |
2014-11-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279279
|
- |
|
sap
|
business_intelligence_development_workbench
|
The SAP Business Intelligence Development Workbench allows remote attackers to obtain sensitive information by reading unspecified files.
|
CWE-200
Information Exposure
|
CVE-2014-8665
|
2024-11-21 11:19 |
2014-11-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279280
|
- |
|
sap
|
environment_health_and_safety
|
SQL injection vulnerability in Product Safety (EHS-SAF) component in SAP Environment, Health, and Safety Management allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2014-8664
|
2024-11-21 11:19 |
2014-11-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
