|
282581
|
- |
|
bitdefender
|
gravityzone
|
Multiple directory traversal vulnerabilities in Bitdefender GravityZone before 5.1.11.432 allow remote attackers to read arbitrary files via a (1) .. (dot dot) in the id parameter to webservice/CORE/…
|
CWE-22
Path Traversal
|
CVE-2014-5350
|
2024-11-21 11:11 |
2014-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282582
|
- |
|
baidu
|
spark_browser
|
Stack-based buffer overflow in Baidu Spark Browser 26.5.9999.3511 allows remote attackers to cause a denial of service (application crash) via nested calls to the window.print JavaScript function.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-5349
|
2024-11-21 11:11 |
2014-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282583
|
- |
|
riverbed
|
steelapp_traffic_manager
|
Cross-site scripting (XSS) vulnerability in apps/zxtm/locallog.cgi in Riverbed Stingray (aka SteelApp) Traffic Manager Virtual Appliance 9.6 patchlevel 9620140312 allows remote attackers to inject ar…
|
CWE-79
Cross-site Scripting
|
CVE-2014-5348
|
2024-11-21 11:11 |
2014-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282584
|
- |
|
disqus
|
disqus_comment_system
|
Multiple cross-site request forgery (CSRF) vulnerabilities in the Disqus Comment System plugin before 2.76 for WordPress allow remote attackers to hijack the authentication of administrators for requ…
|
CWE-352
Origin Validation Error
|
CVE-2014-5347
|
2024-11-21 11:11 |
2014-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282585
|
- |
|
disqus
|
disqus_comment_system
|
Multiple cross-site request forgery (CSRF) vulnerabilities in the Disqus Comment System plugin 2.77 for WordPress allow remote attackers to hijack the authentication of administrators for requests th…
|
CWE-352
Origin Validation Error
|
CVE-2014-5346
|
2024-11-21 11:11 |
2014-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282586
|
- |
|
disqus
|
disqus_comment_system
|
Cross-site scripting (XSS) vulnerability in upgrade.php in the Disqus Comment System plugin before 2.76 for WordPress allows remote attackers to inject arbitrary web script or HTML via the step param…
|
CWE-79
Cross-site Scripting
|
CVE-2014-5345
|
2024-11-21 11:11 |
2014-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282587
|
- |
|
mobiloud
|
mobiloud
|
Multiple cross-site scripting (XSS) vulnerabilities in the Mobiloud (mobiloud-mobile-app-plugin) plugin before 2.3.8 for WordPress allow remote attackers to inject arbitrary web script or HTML via un…
|
CWE-79
Cross-site Scripting
|
CVE-2014-5344
|
2024-11-21 11:11 |
2014-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282588
|
- |
|
fengoffice
|
feng_office
|
Cross-site scripting (XSS) vulnerability in Feng Office allows remote attackers to inject arbitrary web script or HTML via a client Name field.
|
CWE-79
Cross-site Scripting
|
CVE-2014-5343
|
2024-11-21 11:11 |
2014-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282589
|
- |
|
debian
canonical
kde
|
kde4libs
ubuntu_linux
kdelibs
kauth
|
KDE kdelibs before 4.14 and kauth before 5.1 does not properly use D-Bus for communication with a polkit authority, which allows local users to bypass intended access restrictions by leveraging a Pol…
|
CWE-362
Race Condition
|
CVE-2014-5033
|
2024-11-21 11:11 |
2014-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
282590
|
- |
|
adobe
|
adobe_air
flash_player
adobe_air_sdk
|
Adobe Flash Player before 13.0.0.241 and 14.x before 14.0.0.176 on Windows and OS X and before 11.2.202.400 on Linux, Adobe AIR before 14.0.0.178 on Windows and OS X and before 14.0.0.179 on Android,…
|
CWE-352
Origin Validation Error
|
CVE-2014-5333
|
2024-11-21 11:11 |
2014-08-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
