|
285631
|
- |
|
mcafee
|
network_data_loss_prevention
|
Unspecified vulnerability in McAfee Network Data Loss Prevention (NDLP) before 9.2.2 allows local users to read arbitrary files via unknown vectors.
|
NVD-CWE-noinfo
|
CVE-2014-8519
|
2024-11-21 11:19 |
2014-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285632
|
- |
|
mcafee
|
endpoint_encryption_for_files_and_folders
file_and_removable_media_protection
|
The (1) Removable Media and (2) CD and DVD encryption offsite access options (formerly Endpoint Encryption for Removable Media or EERM) in McAfee File and Removable Media Protection (FRP) 4.3.0.x, an…
|
CWE-255
Credentials Management
|
CVE-2014-8518
|
2024-11-21 11:19 |
2014-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285633
|
- |
|
etiko
|
etiko_cms
|
Multiple SQL injection vulnerabilities in Etiko CMS allow remote attackers to execute arbitrary SQL commands via the (1) page_id parameter to loja/index.php or (2) article_id parameter to index.php.
|
CWE-89
SQL Injection
|
CVE-2014-8506
|
2024-11-21 11:19 |
2014-10-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285634
|
- |
|
etiko
|
etiko_cms
|
Multiple cross-site scripting (XSS) vulnerabilities in Etiko CMS allow remote attackers to inject arbitrary web script or HTML via the (1) page_id parameter to loja/index.php or (2) article_id parame…
|
CWE-79
Cross-site Scripting
|
CVE-2014-8505
|
2024-11-21 11:19 |
2014-10-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285635
|
- |
|
process-one
|
ejabberd
|
ejabberd before 2.1.13 does not enforce the starttls_required setting when compression is used, which causes clients to establish connections without encryption.
|
CWE-310
Cryptographic Issues
|
CVE-2014-8760
|
2024-11-21 11:19 |
2014-10-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285636
|
- |
|
mageia_project
dokuwiki
|
mageia
dokuwiki
|
DokuWiki 2014-05-05a and earlier, when using Active Directory for LDAP authentication, allows remote attackers to bypass authentication via a user name and password starting with a null (\0) characte…
|
CWE-287
Improper Authentication
|
CVE-2014-8764
|
2024-11-21 11:19 |
2014-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285637
|
- |
|
dokuwiki
mageia_project
|
dokuwiki
mageia
|
DokuWiki before 2014-05-05b, when using Active Directory for LDAP authentication, allows remote attackers to bypass authentication via a password starting with a null (\0) character and a valid user …
|
CWE-287
Improper Authentication
|
CVE-2014-8763
|
2024-11-21 11:19 |
2014-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285638
|
- |
|
dokuwiki
|
dokuwiki
|
The ajax_mediadiff function in DokuWiki before 2014-05-05a allows remote attackers to access arbitrary images via a crafted namespace in the ns parameter.
|
CWE-200
Information Exposure
|
CVE-2014-8762
|
2024-11-21 11:19 |
2014-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285639
|
- |
|
dokuwiki
|
dokuwiki
|
inc/template.php in DokuWiki before 2014-05-05a only checks for access to the root namespace, which allows remote attackers to access arbitrary images via a media file details ajax call.
|
CWE-200
Information Exposure
|
CVE-2014-8761
|
2024-11-21 11:19 |
2014-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285640
|
- |
|
panasonic
|
network_camera_recorder_firmware
|
The NcrCtl4.NcrNet.1 control in Panasonic Network Camera Recorder before 4.04R03 allows remote attackers to execute arbitrary code via a crafted GetVOLHeader method call, which writes null bytes to a…
|
NVD-CWE-noinfo
|
CVE-2014-8756
|
2024-11-21 11:19 |
2014-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
