|
280351
|
- |
|
ait-pro
|
bulletproof_security
|
Cross-site scripting (XSS) vulnerability in admin/htaccess/bpsunlock.php in the BulletProof Security plugin before .51.1 for WordPress allows remote attackers to inject arbitrary web script or HTML v…
|
CWE-79
Cross-site Scripting
|
CVE-2014-7958
|
2024-11-21 11:18 |
2014-11-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280352
|
- |
|
phpmyadmin
opensuse
|
phpmyadmin
opensuse
|
Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin 4.0.x before 4.0.10.5, 4.1.x before 4.1.14.6, and 4.2.x before 4.2.10.1 allow remote authenticated users to inject arbitrary web scri…
|
CWE-79
Cross-site Scripting
|
CVE-2014-8326
|
2024-11-21 11:18 |
2014-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280353
|
- |
|
hp
|
laserjet_cm3530_multifunction_printer_firmware
|
Unspecified vulnerability on the HP LaserJet CM3530 Multifunction Printer CC519A and CC520A with firmware before 53.236.2 allows remote attackers to obtain sensitive information, modify data, or caus…
|
NVD-CWE-noinfo
|
CVE-2014-7875
|
2024-11-21 11:18 |
2014-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280354
|
- |
|
nuevolab
clip-share
|
nuevoplayer
clipshare
|
SQL injection vulnerability in midroll.php in Nuevolab Nuevoplayer for ClipShare 8.0 and earlier allows remote attackers to execute arbitrary SQL commands via the ch parameter.
|
CWE-89
SQL Injection
|
CVE-2014-8339
|
2024-11-21 11:18 |
2014-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280355
|
- |
|
smarty
|
smarty
|
Smarty before 3.1.21 allows remote attackers to bypass the secure mode restrictions and execute arbitrary PHP code as demonstrated by "{literal}<{/literal}script language=php>" in a template.
|
CWE-94
Code Injection
|
CVE-2014-8350
|
2024-11-21 11:18 |
2014-11-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280356
|
- |
|
opensuse
canonical
ruby-lang
redhat
|
opensuse
ubuntu_linux
ruby
enterprise_linux
|
The REXML parser in Ruby 1.9.x before 1.9.3-p550, 2.0.x before 2.0.0-p594, and 2.1.x before 2.1.4 allows remote attackers to cause a denial of service (memory consumption) via a crafted XML document,…
|
NVD-CWE-Other
|
CVE-2014-8080
|
2024-11-21 11:18 |
2014-11-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280357
|
- |
|
linksys
|
ea3500_firmware
ea3500
ea6700_firmware
ea6700
ea6500_firmware
ea6500
ea4500_firmware
ea4500
ea6900_firmware
ea6900
ea2700_firmware
ea2700
ea6400_firmware
ea6400…
|
Linksys SMART WiFi firmware on EA2700 and EA3500 devices; before 2.1.41 build 162351 on E4200v2 and EA4500 devices; before 1.1.41 build 162599 on EA6200 devices; before 1.1.40 build 160989 on EA6300,…
|
CWE-200
Information Exposure
|
CVE-2014-8244
|
2024-11-21 11:18 |
2014-11-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280358
|
- |
|
linksys
|
ea4500_firmware
ea4500
ea6500_firmware
ea6500
ea6400_firmware
ea6400
e4200v2_firmware
e4200v2
ea6300_firmware
ea6300
ea6900_firmware
ea6900
ea2700_firmware
ea27…
|
Linksys SMART WiFi firmware on EA2700 and EA3500 devices; before 2.1.41 build 162351 on E4200v2 and EA4500 devices; before 1.1.41 build 162599 on EA6200 devices; before 1.1.40 build 160989 on EA6300,…
|
CWE-310
Cryptographic Issues
|
CVE-2014-8243
|
2024-11-21 11:18 |
2014-11-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280359
|
- |
|
wp-dbmanager_project
|
wp-dbmanager
|
The WP-DBManager (aka Database Manager) plugin before 2.7.2 for WordPress allows remote authenticated users to execute arbitrary commands via shell metacharacters in the (1) $backup['filepath'] (aka …
|
CWE-78
OS Command
|
CVE-2014-8334
|
2024-11-21 11:18 |
2014-10-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
280360
|
- |
|
redhat
openstack
|
openstack
nova
|
The VMware driver in OpenStack Compute (Nova) before 2014.1.4 allows remote authenticated users to cause a denial of service (disk consumption) by deleting an instance in the resize state.
|
CWE-399
Resource Management Errors
|
CVE-2014-8333
|
2024-11-21 11:18 |
2014-10-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
