|
282571
|
- |
|
phpmyadmin
opensuse
|
phpmyadmin
opensuse
|
Cross-site scripting (XSS) vulnerability in the view operations page in phpMyAdmin 4.1.x before 4.1.14.3 and 4.2.x before 4.2.7.1 allows remote authenticated users to inject arbitrary web script or H…
|
CWE-79
Cross-site Scripting
|
CVE-2014-5274
|
2024-11-21 11:11 |
2014-08-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282572
|
- |
|
phpmyadmin
|
phpmyadmin
|
Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin 4.0.x before 4.0.10.2, 4.1.x before 4.1.14.3, and 4.2.x before 4.2.7.1 allow remote authenticated users to inject arbitrary web scrip…
|
CWE-79
Cross-site Scripting
|
CVE-2014-5273
|
2024-11-21 11:11 |
2014-08-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282573
|
- |
|
shopizer
|
shopizer
|
com/salesmanager/central/profile/ProfileAction.java in Shopizer 1.1.5 and earlier does not restrict the number of authentication attempts, which makes it easier for remote attackers to guess password…
|
CWE-287
Improper Authentication
|
CVE-2014-5385
|
2024-11-21 11:11 |
2014-08-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282574
|
- |
|
freebsd
netbsd
|
freebsd
netbsd
|
The VIQR module in the iconv implementation in FreeBSD 10.0 before p6 and NetBSD allows context-dependent attackers to cause a denial of service (out-of-bounds array access) via a crafted argument to…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-5384
|
2024-11-21 11:11 |
2014-08-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282575
|
- |
|
alienvault
|
open_source_security_information_management
|
SQL injection vulnerability in AlienVault OSSIM before 4.7.0 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2014-5383
|
2024-11-21 11:11 |
2014-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282576
|
- |
|
alienvault
|
open_source_security_information_management
|
The av-centerd SOAP service in AlienVault OSSIM before 4.7.0 allows remote attackers to execute arbitrary commands via a crafted (1) remote_task or (2) get_license request, a different vulnerability …
|
CWE-94
Code Injection
|
CVE-2014-5210
|
2024-11-21 11:11 |
2014-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282577
|
- |
|
alienvault
|
open_source_security_information_management
|
SQL injection vulnerability in the ossim-framework service in AlienVault OSSIM before 4.6.0 allows remote attackers to execute arbitrary SQL commands via the ws_data parameter.
|
CWE-89
SQL Injection
|
CVE-2014-5159
|
2024-11-21 11:11 |
2014-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282578
|
- |
|
alienvault
|
open_source_security_information_management
|
The (1) av-centerd SOAP service and (2) backup command in the ossim-framework service in AlienVault OSSIM before 4.6.0 allows remote attackers to execute arbitrary commands via unspecified vectors.
|
CWE-94
Code Injection
|
CVE-2014-5158
|
2024-11-21 11:11 |
2014-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282579
|
- |
|
schrack
|
technik_microcontrol_firmware
technik_microcontrol
|
Multiple cross-site scripting (XSS) vulnerabilities in the web interface in Schrack Technik microControl with firmware 1.7.0 (937) allow remote attackers to inject arbitrary web script or HTML via th…
|
CWE-79
Cross-site Scripting
|
CVE-2014-5382
|
2024-11-21 11:11 |
2014-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282580
|
- |
|
owncloud
|
owncloud
|
Directory traversal vulnerability in the routing component in ownCloud Server before 5.0.17 and 6.0.x before 6.0.4 allows remote attackers to include and execute arbitrary local files via a .. (dot d…
|
CWE-22
Path Traversal
|
CVE-2014-4929
|
2024-11-21 11:11 |
2014-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
