|
289921
|
- |
|
zemanta
|
search_everything
|
SQL injection vulnerability in se_search_default in the Search Everything plugin before 7.0.3 for WordPress allows remote attackers to execute arbitrary SQL commands via the s parameter to index.php.…
|
CWE-89
SQL Injection
|
CVE-2014-2316
|
2024-11-21 11:06 |
2014-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289922
|
- |
|
atlassian
|
jira
|
Directory traversal vulnerability in the Issue Collector plugin in Atlassian JIRA before 6.0.4 allows remote attackers to create arbitrary files via unspecified vectors.
|
CWE-22
Path Traversal
|
CVE-2014-2314
|
2024-11-21 11:06 |
2014-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289923
|
- |
|
shinephp
|
thank_you_counter_button
|
Multiple cross-site scripting (XSS) vulnerabilities in the Thank You Counter Button plugin 1.8.7 for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) thanks_caption…
|
CWE-79
Cross-site Scripting
|
CVE-2014-2315
|
2024-11-21 11:06 |
2014-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289924
|
- |
|
atlassian
|
jira
|
Directory traversal vulnerability in the Importers plugin in Atlassian JIRA before 6.0.5 allows remote attackers to create arbitrary files via unspecified vectors.
|
CWE-22
Path Traversal
|
CVE-2014-2313
|
2024-11-21 11:06 |
2014-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289925
|
9.8 |
CRITICAL
Network
|
talend
|
restlet
|
The XStream extension in HP Fortify SCA before 2.2 RC3 allows remote attackers to execute arbitrary code via unsafe deserialization of XML messages.
|
CWE-776
XML Entity Expansion
|
CVE-2014-2228
|
2024-11-21 11:05 |
2020-02-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289926
|
7.8 |
HIGH
Local
|
imagemagick
suse
|
imagemagick
linux_enterprise_desktop
linux_enterprise_server
linux_enterprise_software_development_kit
|
Stack-based buffer overflow in the WritePSDImage function in coders/psd.c in ImageMagick 6.5.4 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary …
|
CWE-787
Out-of-bounds Write
|
CVE-2014-1947
|
2024-11-21 11:05 |
2020-02-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289927
|
9.8 |
CRITICAL
Network
|
owncloud
|
owncloud
|
Zend Framework, as used in ownCloud Server before 5.0.15 and 6.0.x before 6.0.2, allows remote attackers to read arbitrary files, cause a denial of service, or possibly have other impact via an XML E…
|
CWE-611
XXE
|
CVE-2014-2052
|
2024-11-21 11:05 |
2020-02-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289928
|
8.8 |
HIGH
Network
|
ui
|
unifi_controller
airvision_controller
mfi_controller
|
Multiple cross-site request forgery (CSRF) vulnerabilities in Ubiquiti Networks UniFi Controller before 3.2.1 allow remote attackers to hijack the authentication of administrators for requests that (…
|
CWE-352
Origin Validation Error
|
CVE-2014-2225
|
2024-11-21 11:05 |
2020-02-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289929
|
8.8 |
HIGH
Network
|
imagemagick
canonical
opensuse
|
imagemagick
ubuntu_linux
opensuse
|
Stack-based buffer overflow in the WritePSDImage function in coders/psd.c in ImageMagick, possibly 6.8.8-5, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary…
|
CWE-787
Out-of-bounds Write
|
CVE-2014-2030
|
2024-11-21 11:05 |
2020-02-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
289930
|
8.8 |
HIGH
Network
|
imagemagick
canonical
opensuse
|
imagemagick
ubuntu_linux
opensuse
|
Buffer overflow in the DecodePSDPixels function in coders/psd.c in ImageMagick before 6.8.8-5 might allow remote attackers to execute arbitrary code via a crafted PSD image, involving the L%06ld stri…
|
CWE-120
Classic Buffer Overflow
|
CVE-2014-1958
|
2024-11-21 11:05 |
2020-02-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
