|
285971
|
- |
|
wireshark
|
wireshark
|
The tvb_raw_text_add function in epan/dissectors/packet-megaco.c in the MEGACO dissector in Wireshark 1.10.x before 1.10.10 and 1.12.x before 1.12.1 allows remote attackers to cause a denial of servi…
|
CWE-399
Resource Management Errors
|
CVE-2014-6423
|
2024-11-21 11:14 |
2014-09-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285972
|
- |
|
wireshark
|
wireshark
|
The SDP dissector in Wireshark 1.10.x before 1.10.10 creates duplicate hashtables for a media channel, which allows remote attackers to cause a denial of service (application crash) via a crafted pac…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-6422
|
2024-11-21 11:14 |
2014-09-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285973
|
- |
|
wireshark
|
wireshark
|
Use-after-free vulnerability in the SDP dissector in Wireshark 1.10.x before 1.10.10 allows remote attackers to cause a denial of service (application crash) via a crafted packet that leverages split…
|
NVD-CWE-Other
|
CVE-2014-6421
|
2024-11-21 11:14 |
2014-09-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285974
|
- |
|
facebook
|
facebook
facebook_messenger
|
Cross-site scripting (XSS) vulnerability in the Facebook app 14.0 and the Facebook Messenger app 10.0 for iOS allows remote attackers to inject arbitrary web script or HTML via a crafted filename ext…
|
CWE-79
Cross-site Scripting
|
CVE-2014-6392
|
2024-11-21 11:14 |
2014-09-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285975
|
- |
|
squid-cache
oracle
|
squid
solaris
|
Off-by-one error in the snmpHandleUdp function in snmp_core.cc in Squid 2.x and 3.x, when an SNMP port is configured, allows remote attackers to cause a denial of service (crash) or possibly execute …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-6270
|
2024-11-21 11:14 |
2014-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285976
|
- |
|
wt_directory_project
|
wt_directory
|
SQL injection vulnerability in the wt_directory extension before 1.4.1 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2014-6241
|
2024-11-21 11:14 |
2014-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285977
|
- |
|
google_sitemap_project
|
google_sitemap
|
Cross-site scripting (XSS) vulnerability in the Google Sitemap (weeaar_googlesitemap) extension 0.4.3 and earlier for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecif…
|
CWE-79
Cross-site Scripting
|
CVE-2014-6240
|
2024-11-21 11:14 |
2014-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285978
|
- |
|
address_visualization_with_google_maps_project
|
address_visualization_with_google_maps
|
SQL injection vulnerability in the Address visualization with Google Maps (st_address_map) extension before 0.3.6 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2014-6239
|
2024-11-21 11:14 |
2014-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285979
|
- |
|
akronymmanager_project
|
akronymmanager
|
Cross-site scripting (XSS) vulnerability in the Akronymmanager (aka SB Folderdownload) extension 0.5.0 and earlier for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspeci…
|
CWE-79
Cross-site Scripting
|
CVE-2014-6238
|
2024-11-21 11:14 |
2014-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285980
|
- |
|
news_pack_project
|
news_pack
|
Cross-site scripting (XSS) vulnerability in the News Pack extension 0.1.0 and earlier for TYPO3 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2014-6237
|
2024-11-21 11:14 |
2014-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
