|
285281
|
- |
|
adrotateplugin
|
adrotate
|
SQL injection vulnerability in library/clicktracker.php in the AdRotate Pro plugin 3.9 through 3.9.5 and AdRotate Free plugin 3.9 through 3.9.4 for WordPress allows remote attackers to execute arbitr…
|
CWE-89
SQL Injection
|
CVE-2014-1854
|
2024-11-21 11:05 |
2014-02-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285282
|
- |
|
tibco
|
enterprise_administrator_sdk
enterprise_administrator
|
TIBCO Enterprise Administrator 1.0.0 and Enterprise Administrator SDK 1.0.0 do not properly enforce administrative authentication requirements, which allows remote attackers to execute arbitrary comm…
|
CWE-287
Improper Authentication
|
CVE-2014-2075
|
2024-11-21 11:05 |
2014-02-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285283
|
- |
|
cisco
|
unified_contact_center_express_editor_software
|
Cisco Unified Contact Center Express (Unified CCX) does not properly restrict the content of the CCMConfig page, which allows remote authenticated users to obtain sensitive information by examining t…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-2102
|
2024-11-21 11:05 |
2014-02-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285284
|
- |
|
riken
|
xoonips
|
Cross-site scripting (XSS) vulnerability in the XooNIps module 3.47 and earlier for XOOPS allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2014-1968
|
2024-11-21 11:05 |
2014-02-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285285
|
- |
|
7andi-fs.co
|
denny\'s
|
The Denny's application before 2.0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a …
|
CWE-310
Cryptographic Issues
|
CVE-2014-1967
|
2024-11-21 11:05 |
2014-02-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285286
|
- |
|
mcafee
|
epolicy_orchestrator
|
The Import and Export Framework in McAfee ePolicy Orchestrator (ePO) before 4.6.7 Hotfix 940148 allows remote authenticated users with permissions to add dashboards to read arbitrary files by importi…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-2205
|
2024-11-21 11:05 |
2014-02-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285287
|
- |
|
catfish_project
|
catfish
|
Untrusted search path vulnerability in Catfish 0.6.0 through 1.0.0 allows local users to gain privileges via a Trojan horse bin/catfish.py under the current working directory.
|
NVD-CWE-Other
|
CVE-2014-2096
|
2024-11-21 11:05 |
2014-02-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285288
|
- |
|
catfish_project
|
catfish
|
Untrusted search path vulnerability in Catfish 0.6.0 through 1.0.0, when a Fedora package such as 0.8.2-1 is not used, allows local users to gain privileges via a Trojan horse bin/catfish.pyc under t…
|
NVD-CWE-Other
|
CVE-2014-2095
|
2024-11-21 11:05 |
2014-02-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285289
|
- |
|
catfish_project
|
catfish
|
Untrusted search path vulnerability in Catfish through 0.4.0.3, when a Fedora package such as 0.4.0.2-2 is not used, allows local users to gain privileges via a Trojan horse catfish.pyc in the curren…
|
NVD-CWE-Other
|
CVE-2014-2094
|
2024-11-21 11:05 |
2014-02-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285290
|
- |
|
catfish_project
|
catfish
|
Untrusted search path vulnerability in Catfish through 0.4.0.3 allows local users to gain privileges via a Trojan horse catfish.py in the current working directory.
|
NVD-CWE-Other
|
CVE-2014-2093
|
2024-11-21 11:05 |
2014-02-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
