|
283151
|
- |
|
coreftp
|
core_ftp
|
Multiple heap-based buffer overflows in the client in Core FTP LE 2.2 build 1798 allow remote FTP servers to cause a denial of service (application crash) and possibly execute arbitrary code via a lo…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-4643
|
2024-11-21 11:10 |
2014-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283152
|
- |
|
gnupg
debian
opensuse
|
gnupg
debian_linux
opensuse
|
The do_uncompress function in g10/compress.c in GnuPG 1.x before 1.4.17 and 2.x before 2.0.24 allows context-dependent attackers to cause a denial of service (infinite loop) via malformed compressed …
|
CWE-20
Improper Input Validation
|
CVE-2014-4617
|
2024-11-21 11:10 |
2014-06-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283153
|
- |
|
phpmyadmin
|
phpmyadmin
|
Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin 4.1.x before 4.1.14.1 and 4.2.x before 4.2.4 allow remote authenticated users to inject arbitrary web script or HTML via a crafted ta…
|
CWE-79
Cross-site Scripting
|
CVE-2014-4349
|
2024-11-21 11:10 |
2014-06-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283154
|
- |
|
phpmyadmin
|
phpmyadmin
|
Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin 4.2.x before 4.2.4 allow remote authenticated users to inject arbitrary web script or HTML via a crafted (1) database name or (2) tab…
|
CWE-79
Cross-site Scripting
|
CVE-2014-4348
|
2024-11-21 11:10 |
2014-06-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283155
|
- |
|
linux
canonical
|
linux_kernel
ubuntu_linux
|
arch/x86/kernel/entry_32.S in the Linux kernel through 3.15.1 on 32-bit x86 platforms, when syscall auditing is enabled and the sep CPU feature flag is set, allows local users to cause a denial of se…
|
CWE-189
Numeric Errors
|
CVE-2014-4508
|
2024-11-21 11:10 |
2014-06-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283156
|
- |
|
netiq
|
identity_manager
|
The MKDQUOTESAFE function in the Fan-out driver scripts in Fan-Out Platform Services in Novell Identity Manager (aka IDM) 4.0.2 allows local users to execute arbitrary commands by leveraging eDirecto…
|
NVD-CWE-Other
|
CVE-2014-4509
|
2024-11-21 11:10 |
2014-06-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283157
|
- |
|
theforeman
|
foreman
|
Directory traversal vulnerability in Smart-Proxy in Foreman before 1.4.5 and 1.5.x before 1.5.1 allows remote attackers to overwrite arbitrary files via a .. (dot dot) in the dst parameter to tftp/fe…
|
CWE-22
Path Traversal
|
CVE-2014-4507
|
2024-11-21 11:10 |
2014-06-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283158
|
- |
|
louis_jimenez
|
custom_meta
|
Cross-site scripting (XSS) vulnerability in the Custom Meta module 6.x-1.x before 6.x-1.2 and 7.x-1.x before 7.x-1.3 for Drupal allows remote authenticated users with the "administer custom meta sett…
|
CWE-79
Cross-site Scripting
|
CVE-2014-4506
|
2024-11-21 11:10 |
2014-06-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283159
|
- |
|
roger_padilla_camacho
|
easy_breadcrumb
|
Cross-site scripting (XSS) vulnerability in the Easy Breadcrumb module 7.x-2.x before 7.x-2.10 for Drupal allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2014-4505
|
2024-11-21 11:10 |
2014-06-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
283160
|
7.5 |
HIGH
Network
|
zte
|
zxv10_w300_firmware
|
ZTE ZXV10 W300 router with firmware W300V1.0.0a_ZRD_LK stores sensitive information under the web root with insufficient access control, which allows remote attackers to read backup files via a direc…
|
CWE-200
Information Exposure
|
CVE-2014-4019
|
2024-11-21 11:09 |
2020-02-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
