|
282311
|
- |
|
telerik
|
asp.net_ajax_radeditor_control
|
Cross-site scripting (XSS) vulnerability in Telerik UI for ASP.NET AJAX RadEditor control 2014.1.403.35, 2009.3.1208.20, and other versions allows remote attackers to inject arbitrary web script or H…
|
CWE-79
Cross-site Scripting
|
CVE-2014-4958
|
2024-11-21 11:11 |
2014-09-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282312
|
- |
|
najeebmedia
|
n-media_file_uploader
|
Unrestricted file upload vulnerability in the N-Media file uploader plugin before 3.4 for WordPress allows remote authenticated users to execute arbitrary PHP code by leveraging Author privileges to …
|
CWE-94
Code Injection
|
CVE-2014-5324
|
2024-11-21 11:11 |
2014-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282313
|
- |
|
s-link
|
slfilemanager
|
Directory traversal vulnerability in the S-Link SLFileManager application 1.2.5 and earlier for Android allows remote attackers to write to files via unspecified vectors.
|
CWE-22
Path Traversal
|
CVE-2014-5319
|
2024-11-21 11:11 |
2014-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282314
|
- |
|
jig
|
jigbrowser\+
|
The jigbrowser+ application 1.8.1 and earlier for iOS allows remote attackers to bypass the Same Origin Policy via crafted JavaScript code.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-5318
|
2024-11-21 11:11 |
2014-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282315
|
- |
|
adobe
|
coldfusion
acrobat
|
Cross-site scripting (XSS) vulnerability in the Help page in Adobe Acrobat 9.5.2 and earlier and ColdFusion 8.0.1 and earlier allows remote attackers to inject arbitrary web script or HTML via unspec…
|
CWE-79
Cross-site Scripting
|
CVE-2014-5315
|
2024-11-21 11:11 |
2014-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282316
|
- |
|
yukoyuko
|
_yuko_yuko
|
The Yuko Yuko (aka jp.co.yukoyuko.android.yukoyuko_android) application 1.0.5 and earlier for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to …
|
CWE-310
Cryptographic Issues
|
CVE-2014-5323
|
2024-11-21 11:11 |
2014-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282317
|
- |
|
sos
|
jobscheduler
|
XML External Entity (XXE) vulnerability in JobScheduler before 1.6.4246 and 7.x before 1.7.4241 allows remote attackers to cause a denial of service and read arbitrary files or directories via a requ…
|
NVD-CWE-Other
|
CVE-2014-5392
|
2024-11-21 11:11 |
2014-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282318
|
- |
|
eset
|
smart_security
endpoint_security
|
The ESET Personal Firewall NDIS filter (EpFwNdis.sys) driver in the Firewall Module Build 1183 (20140214) and earlier in ESET Smart Security and ESET Endpoint Security products 5.0 through 7.0 allows…
|
CWE-20
Improper Input Validation
|
CVE-2014-4973
|
2024-11-21 11:11 |
2014-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282319
|
- |
|
filemaker
|
filemaker_pro
filemaker_pro_advanced
|
Cross-site scripting (XSS) vulnerability in the Instant Web Publish function in FileMaker Pro before 13 and Pro Advanced before 13 allows remote attackers to inject arbitrary web script or HTML via u…
|
CWE-79
Cross-site Scripting
|
CVE-2014-5322
|
2024-11-21 11:11 |
2014-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282320
|
- |
|
filemaker
|
filemaker_pro
filemaker_pro_advanced
|
FileMaker Pro before 13 and Pro Advanced before 13 does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via …
|
CWE-310
Cryptographic Issues
|
CVE-2014-5321
|
2024-11-21 11:11 |
2014-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
