|
287411
|
- |
|
siemens
|
wincc
simatic_pcs7
|
The Project administration application in Siemens SIMATIC WinCC before 7.3, as used in PCS7 and other products, has a hardcoded encryption key, which allows remote attackers to obtain sensitive infor…
|
NVD-CWE-Other
|
CVE-2014-4686
|
2024-11-21 11:10 |
2014-07-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287412
|
- |
|
siemens
|
wincc
simatic_pcs7
|
Siemens SIMATIC WinCC before 7.3, as used in PCS7 and other products, allows local users to gain privileges by leveraging weak system-object access control.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-4685
|
2024-11-21 11:10 |
2014-07-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287413
|
- |
|
siemens
|
wincc
simatic_pcs7
|
The database server in Siemens SIMATIC WinCC before 7.3, as used in PCS7 and other products, allows remote authenticated users to gain privileges via a request to TCP port 1433.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-4684
|
2024-11-21 11:10 |
2014-07-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287414
|
- |
|
siemens
|
wincc
simatic_pcs7
|
The WebNavigator server in Siemens SIMATIC WinCC before 7.3, as used in PCS7 and other products, allows remote authenticated users to gain privileges via a (1) HTTP or (2) HTTPS request.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-4683
|
2024-11-21 11:10 |
2014-07-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287415
|
- |
|
siemens
|
wincc
simatic_pcs7
|
The WebNavigator server in Siemens SIMATIC WinCC before 7.3, as used in PCS7 and other products, allows remote attackers to obtain sensitive information via an HTTP request.
|
CWE-200
Information Exposure
|
CVE-2014-4682
|
2024-11-21 11:10 |
2014-07-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287416
|
- |
|
sgminer_project
cgminer_project
|
sgminer
cgminer
|
The parse_notify function in util.c in sgminer before 4.2.2 and cgminer 3.3.0 through 4.0.1 allows man-in-the-middle attackers to cause a denial of service (application exit) via a crafted (1) bbvers…
|
CWE-20
Improper Input Validation
|
CVE-2014-4503
|
2024-11-21 11:10 |
2014-07-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287417
|
- |
|
bfgminer
sgminer_project
|
bfgminer
sgminer
|
Multiple heap-based buffer overflows in the parse_notify function in sgminer before 4.2.2, cgminer before 4.3.5, and BFGMiner before 4.1.0 allow remote pool servers to have unspecified impact via a (…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-4502
|
2024-11-21 11:10 |
2014-07-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287418
|
- |
|
sgminer_project
cgminer_project
bfgminer
|
sgminer
cgminer
bfgminer
|
Multiple stack-based buffer overflows in sgminer before 4.2.2, cgminer before 4.3.5, and BFGMiner before 3.3.0 allow remote pool servers to have unspecified impact via a long URL in a client.reconnec…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-4501
|
2024-11-21 11:10 |
2014-07-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287419
|
- |
|
gitlist
|
gitlist
|
Gitlist before 0.5.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the file name in the URI of a request for a (1) blame, (2) file, or (3) stats page, as demonstra…
|
NVD-CWE-Other
|
CVE-2014-4511
|
2024-11-21 11:10 |
2014-07-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287420
|
- |
|
e107
|
e107
|
Cross-site scripting (XSS) vulnerability in e107_admin/db.php in e107 2.0 alpha2 and earlier allows remote attackers to inject arbitrary web script or HTML via the type parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2014-4734
|
2024-11-21 11:10 |
2014-07-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
