|
279751
|
- |
|
siemens
|
scalance_x-300_series_firmware
scalance_x-408_firmware
|
The web server on Siemens SCALANCE X-300 switches with firmware before 4.0 and SCALANCE X 408 switches with firmware before 4.0 allows remote attackers to cause a denial of service (reboot) via malfo…
|
CWE-22
Path Traversal
|
CVE-2014-8478
|
2024-11-21 11:19 |
2015-01-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279752
|
- |
|
ibm
|
business_process_manager
|
Cross-site scripting (XSS) vulnerability in the Process Portal in IBM Business Process Manager 8.0 through 8.0.1.3, 8.5.0 through 8.5.0.1, and 8.5.5 allows remote authenticated users to inject arbitr…
|
CWE-79
Cross-site Scripting
|
CVE-2014-8914
|
2024-11-21 11:19 |
2015-01-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279753
|
- |
|
ibm
|
business_process_manager
|
Cross-site scripting (XSS) vulnerability in the Process Portal in IBM Business Process Manager 8.0 through 8.0.1.3, 8.5.0 through 8.5.0.1, and 8.5.5 allows remote authenticated users to inject arbitr…
|
CWE-79
Cross-site Scripting
|
CVE-2014-8913
|
2024-11-21 11:19 |
2015-01-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279754
|
- |
|
cagintranetworks
get-simple
|
getsimple_cms
|
XML external entity (XXE) vulnerability in admin/api.php in GetSimple CMS 3.1.1 through 3.3.x before 3.3.5 Beta 1, when in certain configurations, allows remote attackers to read arbitrary files via …
|
NVD-CWE-Other
|
CVE-2014-8790
|
2024-11-21 11:19 |
2015-01-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279755
|
- |
|
debian
|
dpkg
|
Multiple format string vulnerabilities in the parse_error_msg function in parsehelp.c in dpkg before 1.17.22 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary…
|
CWE-134
Use of Externally-Controlled Format String
|
CVE-2014-8625
|
2024-11-21 11:19 |
2015-01-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279756
|
- |
|
advantech
|
adamview
|
Multiple stack-based buffer overflows in Advantech AdamView 4.3 and earlier allow remote attackers to execute arbitrary code via a crafted (1) display properties or (2) conditional bitmap parameter i…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-8386
|
2024-11-21 11:19 |
2015-01-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279757
|
- |
|
ibm
|
vios
aix
|
lquerylv in cmdlvm in IBM AIX 5.3, 6.1, and 7.1 and VIOS 2.2.x allows local users to gain privileges via a crafted DBGCMD_LQUERYLV environment-variable value.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-8904
|
2024-11-21 11:19 |
2015-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279758
|
- |
|
tapatalk
|
tapatalk
|
Open redirect vulnerability in mobiquo/smartbanner/welcome.php in the Tapatalk (com.tapatalk.wbb4) plugin before 1.1.2 for Woltlab Burning Board 4.0 allows remote attackers to redirect users to arbit…
|
NVD-CWE-Other
|
CVE-2014-8870
|
2024-11-21 11:19 |
2015-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279759
|
- |
|
tapatalk
|
tapatalk
|
Multiple cross-site scripting (XSS) vulnerabilities in mobiquo/smartbanner/welcome.php in the Tapatalk (com.tapatalk.wbb4) plugin 1.x before 1.1.2 for Woltlab Burning Board 4.0 allow remote attackers…
|
CWE-79
Cross-site Scripting
|
CVE-2014-8869
|
2024-11-21 11:19 |
2015-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
279760
|
- |
|
fedoraproject
debian
gnu
canonical
|
fedora
debian_linux
binutils
ubuntu_linux
|
The _bfd_slurp_extended_name_table function in bfd/archive.c in GNU binutils 2.24 and earlier allows remote attackers to cause a denial of service (invalid write, segmentation fault, and crash) via a…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-8738
|
2024-11-21 11:19 |
2015-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
