|
289011
|
- |
|
cubicfactory
|
cubic_cms
|
Multiple SQL injection vulnerabilities in Cubic CMS 5.1.1, 5.1.2, and 5.2 allow remote attackers to execute arbitrary SQL commands via the (1) resource_id or (2) version_id parameter to recursos/agen…
|
CWE-89
SQL Injection
|
CVE-2014-1619
|
2024-11-21 11:04 |
2014-01-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289012
|
- |
|
uaepd
|
shopping_cart_script
|
Multiple SQL injection vulnerabilities in UAEPD Shopping Cart Script allow remote attackers to execute arbitrary SQL commands via the (1) cat_id or (2) p_id parameter to products.php or id parameter …
|
CWE-89
SQL Injection
|
CVE-2014-1618
|
2024-11-21 11:04 |
2014-01-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289013
|
- |
|
freebsd
|
freebsd
|
Stack-based buffer overflow in lib/snmpagent.c in bsnmpd, as used in FreeBSD 8.3 through 10.0, allows remote attackers to cause a denial of service (daemon crash) and possibly execute arbitrary code …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-1452
|
2024-11-21 11:04 |
2014-01-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289014
|
- |
|
linux
|
linux_kernel
|
The yam_ioctl function in drivers/net/hamradio/yam.c in the Linux kernel before 3.12.8 does not initialize a certain structure member, which allows local users to obtain sensitive information from ke…
|
CWE-399
Resource Management Errors
|
CVE-2014-1446
|
2024-11-21 11:04 |
2014-01-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289015
|
- |
|
linux
|
linux_kernel
|
The wanxl_ioctl function in drivers/net/wan/wanxl.c in the Linux kernel before 3.11.7 does not properly initialize a certain data structure, which allows local users to obtain sensitive information f…
|
CWE-399
Resource Management Errors
|
CVE-2014-1445
|
2024-11-21 11:04 |
2014-01-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289016
|
- |
|
linux
|
linux_kernel
|
The fst_get_iface function in drivers/net/wan/farsync.c in the Linux kernel before 3.11.7 does not properly initialize a certain data structure, which allows local users to obtain sensitive informati…
|
CWE-399
Resource Management Errors
|
CVE-2014-1444
|
2024-11-21 11:04 |
2014-01-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289017
|
- |
|
linux
|
linux_kernel
|
The restore_fpu_checking function in arch/x86/include/asm/fpu-internal.h in the Linux kernel before 3.12.8 on the AMD K7 and K8 platforms does not clear pending exceptions before proceeding to an EMM…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-1438
|
2024-11-21 11:04 |
2014-01-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289018
|
- |
|
mcafee
|
vulnerability_manager
|
Multiple cross-site request forgery (CSRF) vulnerabilities in the Enterprise Manager in McAfee Vulnerability Manager (MVM) 7.5.5 and earlier allow remote attackers to hijack the authentication of use…
|
CWE-352
Origin Validation Error
|
CVE-2014-1473
|
2024-11-21 11:04 |
2014-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289019
|
- |
|
mcafee
|
vulnerability_manager
|
Multiple cross-site scripting (XSS) vulnerabilities in the Enterprise Manager in McAfee Vulnerability Manager (MVM) 7.5.5 and earlier allow remote attackers to inject arbitrary web script or HTML via…
|
CWE-79
Cross-site Scripting
|
CVE-2014-1472
|
2024-11-21 11:04 |
2014-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289020
|
- |
|
csp_mysql_user_manager_project
|
csp_mysql_user_manager
|
SQL injection vulnerability in CSP MySQL User Manager 2.3 allows remote attackers to execute arbitrary SQL commands via the login field of the login page.
|
CWE-89
SQL Injection
|
CVE-2014-1466
|
2024-11-21 11:04 |
2014-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
