|
281501
|
- |
|
arris
|
touchstone_tg862g\/ct_firmware
|
Cross-site scripting (XSS) vulnerability in ARRIS Touchstone TG862G/CT Telephony Gateway with firmware 7.6.59S.CT and earlier allows remote authenticated users to inject arbitrary web script or HTML …
|
CWE-79
Cross-site Scripting
|
CVE-2014-5438
|
2024-11-21 11:12 |
2014-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281502
|
- |
|
arris
|
touchstone_tg862g\/ct_firmware
|
Multiple cross-site request forgery (CSRF) vulnerabilities in ARRIS Touchstone TG862G/CT Telephony Gateway with firmware 7.6.59S.CT and earlier allow remote attackers to hijack the authentication of …
|
CWE-352
Origin Validation Error
|
CVE-2014-5437
|
2024-11-21 11:12 |
2014-12-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281503
|
- |
|
splunk
|
splunk
|
Cross-site scripting (XSS) vulnerability in the Dashboard in Splunk Web in Splunk Enterprise 6.1.x before 6.1.4, 6.0.x before 6.0.7, and 5.0.x before 5.0.10 allows remote attackers to inject arbitrar…
|
CWE-79
Cross-site Scripting
|
CVE-2014-5466
|
2024-11-21 11:12 |
2014-12-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281504
|
- |
|
open-emr
|
openemr
|
Multiple SQL injection vulnerabilities in OpenEMR 4.1.2 (Patch 7) and earlier allow remote authenticated users to execute arbitrary SQL commands via the (1) layout_id parameter to interface/super/edi…
|
CWE-89
SQL Injection
|
CVE-2014-5462
|
2024-11-21 11:12 |
2014-12-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281505
|
- |
|
elipse
|
scada
power
e3
|
DNP Master Driver 3.02 and earlier in Elipse SCADA 2.29 build 141 and earlier, E3 1.0 through 4.6, and Elipse Power 1.0 through 4.6 allows remote attackers to cause a denial of service (CPU consumpti…
|
CWE-399
Resource Management Errors
|
CVE-2014-5429
|
2024-11-21 11:12 |
2014-12-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281506
|
- |
|
zohocorp
|
manageengine_it360
manageengine_netflow_analyzer
|
Directory traversal vulnerability in the DisplayChartPDF servlet in ZOHO ManageEngine Netflow Analyzer 8.6 through 10.2 and IT360 10.3 allows remote attackers and remote authenticated users to read a…
|
CWE-22
Path Traversal
|
CVE-2014-5446
|
2024-11-21 11:12 |
2014-12-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281507
|
- |
|
zohocorp
|
manageengine_it360
manageengine_netflow_analyzer
|
Multiple absolute path traversal vulnerabilities in ZOHO ManageEngine Netflow Analyzer 8.6 through 10.2 and IT360 10.3 allow remote attackers or remote authenticated users to read arbitrary files via…
|
CWE-22
Path Traversal
|
CVE-2014-5445
|
2024-11-21 11:12 |
2014-12-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281508
|
- |
|
matrikonopc
|
dnp3_opc_server
|
MatrikonOPC OPC Server for DNP3 1.2.3 and earlier allows remote attackers to cause a denial of service (unhandled exception and DNP3 process crash) via a crafted message.
|
CWE-17
Code
|
CVE-2014-5426
|
2024-11-21 11:12 |
2014-11-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281509
|
- |
|
rockwellautomation
|
connected_components_workbench
|
Rockwell Automation Connected Components Workbench (CCW) before 7.00.00 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via an invalid prop…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-5424
|
2024-11-21 11:12 |
2014-11-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
281510
|
- |
|
abb
|
robotstudio
test_signal_viewer
|
Untrusted search path vulnerability in ABB RobotStudio 5.6x before 5.61.02 and Test Signal Viewer 1.5 allows local users to gain privileges via a Trojan horse DLL that is accessed as a result of inco…
|
NVD-CWE-Other
|
CVE-2014-5430
|
2024-11-21 11:12 |
2014-11-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
