|
282541
|
- |
|
ibm
|
sametime
|
Cross-site scripting (XSS) vulnerability in the Classic Meeting Server in IBM Sametime 8.x through 8.5.2.1 allows remote attackers to inject arbitrary web script or HTML via a crafted URL.
|
CWE-79
Cross-site Scripting
|
CVE-2014-4748
|
2024-11-21 11:10 |
2014-07-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282542
|
- |
|
ibm
|
sametime
|
The Classic Meeting Server in IBM Sametime 8.x through 8.5.2.1 allows physically proximate attackers to discover a meeting password hash by leveraging access to an unattended workstation to read HTML…
|
CWE-200
Information Exposure
|
CVE-2014-4747
|
2024-11-21 11:10 |
2014-07-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282543
|
- |
|
blogengine
|
e2
|
SQL injection vulnerability in E2 before 2.4 (2845) allows remote attackers to execute arbitrary SQL commands via the note-id parameter to @actions/comment-process.
|
CWE-89
SQL Injection
|
CVE-2014-4736
|
2024-11-21 11:10 |
2014-07-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282544
|
- |
|
siemens
|
wincc
simatic_pcs7
|
The Project administration application in Siemens SIMATIC WinCC before 7.3, as used in PCS7 and other products, has a hardcoded encryption key, which allows remote attackers to obtain sensitive infor…
|
NVD-CWE-Other
|
CVE-2014-4686
|
2024-11-21 11:10 |
2014-07-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282545
|
- |
|
siemens
|
wincc
simatic_pcs7
|
Siemens SIMATIC WinCC before 7.3, as used in PCS7 and other products, allows local users to gain privileges by leveraging weak system-object access control.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-4685
|
2024-11-21 11:10 |
2014-07-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282546
|
- |
|
siemens
|
wincc
simatic_pcs7
|
The database server in Siemens SIMATIC WinCC before 7.3, as used in PCS7 and other products, allows remote authenticated users to gain privileges via a request to TCP port 1433.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-4684
|
2024-11-21 11:10 |
2014-07-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282547
|
- |
|
siemens
|
wincc
simatic_pcs7
|
The WebNavigator server in Siemens SIMATIC WinCC before 7.3, as used in PCS7 and other products, allows remote authenticated users to gain privileges via a (1) HTTP or (2) HTTPS request.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-4683
|
2024-11-21 11:10 |
2014-07-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282548
|
- |
|
siemens
|
wincc
simatic_pcs7
|
The WebNavigator server in Siemens SIMATIC WinCC before 7.3, as used in PCS7 and other products, allows remote attackers to obtain sensitive information via an HTTP request.
|
CWE-200
Information Exposure
|
CVE-2014-4682
|
2024-11-21 11:10 |
2014-07-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282549
|
- |
|
sgminer_project
cgminer_project
|
sgminer
cgminer
|
The parse_notify function in util.c in sgminer before 4.2.2 and cgminer 3.3.0 through 4.0.1 allows man-in-the-middle attackers to cause a denial of service (application exit) via a crafted (1) bbvers…
|
CWE-20
Improper Input Validation
|
CVE-2014-4503
|
2024-11-21 11:10 |
2014-07-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282550
|
- |
|
bfgminer
sgminer_project
|
bfgminer
sgminer
|
Multiple heap-based buffer overflows in the parse_notify function in sgminer before 4.2.2, cgminer before 4.3.5, and BFGMiner before 4.1.0 allow remote pool servers to have unspecified impact via a (…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-4502
|
2024-11-21 11:10 |
2014-07-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
