|
285971
|
- |
|
cisco
|
ios_xe
air-ct5760
ws-c3850
ws-c3860
|
Cisco IOS XE 3.5E and earlier on WS-C3850, WS-C3860, and AIR-CT5760 devices does not properly parse the "request system shell" challenge response, which allows local users to obtain Linux root access…
|
CWE-20
Improper Input Validation
|
CVE-2014-7990
|
2024-11-21 11:18 |
2014-11-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285972
|
- |
|
cisco
|
b460_m4
b420_m3
b260_m4
b200_m3
b200_m4
b22_m3
b230_m2
b440_m2
|
Cisco Unified Computing System on B-Series blade servers allows local users to gain shell privileges via a crafted (1) ping6 or (2) traceroute6 command, aka Bug ID CSCuq38176.
|
CWE-20
Improper Input Validation
|
CVE-2014-7989
|
2024-11-21 11:18 |
2014-11-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285973
|
- |
|
cisco
|
unity_connection
|
The Unified Messaging Service (UMS) in Cisco Unity Connection 10.5 and earlier allows remote authenticated users to obtain sensitive information by reading log files, aka Bug ID CSCur06493.
|
CWE-200
Information Exposure
|
CVE-2014-7988
|
2024-11-21 11:18 |
2014-11-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285974
|
- |
|
french_national_commission_on_informatics_and_liberty
|
cookieviz
|
Cross-site scripting (XSS) vulnerability in json.php in French National Commission on Informatics and Liberty (aka CNIL) CookieViz allows remote we servers to inject arbitrary web script or HTML via …
|
CWE-79
Cross-site Scripting
|
CVE-2014-8352
|
2024-11-21 11:18 |
2014-11-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285975
|
- |
|
french_national_commission_on_informatics_and_liberty
|
cookieviz
|
SQL injection vulnerability in info.php in French National Commission on Informatics and Liberty (aka CNIL) CookieViz before 1.0.1 allows remote web servers to execute arbitrary SQL commands via the …
|
CWE-89
SQL Injection
|
CVE-2014-8351
|
2024-11-21 11:18 |
2014-11-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285976
|
- |
|
ait-pro
|
bulletproof_security
|
SQL injection vulnerability in admin/htaccess/bpsunlock.php in the BulletProof Security plugin before .51.1 for WordPress allows remote authenticated users to execute arbitrary SQL commands via the t…
|
CWE-89
SQL Injection
|
CVE-2014-7959
|
2024-11-21 11:18 |
2014-11-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285977
|
- |
|
ait-pro
|
bulletproof_security
|
Cross-site scripting (XSS) vulnerability in admin/htaccess/bpsunlock.php in the BulletProof Security plugin before .51.1 for WordPress allows remote attackers to inject arbitrary web script or HTML v…
|
CWE-79
Cross-site Scripting
|
CVE-2014-7958
|
2024-11-21 11:18 |
2014-11-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285978
|
- |
|
phpmyadmin
opensuse
|
phpmyadmin
opensuse
|
Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin 4.0.x before 4.0.10.5, 4.1.x before 4.1.14.6, and 4.2.x before 4.2.10.1 allow remote authenticated users to inject arbitrary web scri…
|
CWE-79
Cross-site Scripting
|
CVE-2014-8326
|
2024-11-21 11:18 |
2014-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285979
|
- |
|
hp
|
laserjet_cm3530_multifunction_printer_firmware
|
Unspecified vulnerability on the HP LaserJet CM3530 Multifunction Printer CC519A and CC520A with firmware before 53.236.2 allows remote attackers to obtain sensitive information, modify data, or caus…
|
NVD-CWE-noinfo
|
CVE-2014-7875
|
2024-11-21 11:18 |
2014-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
285980
|
- |
|
nuevolab
clip-share
|
nuevoplayer
clipshare
|
SQL injection vulnerability in midroll.php in Nuevolab Nuevoplayer for ClipShare 8.0 and earlier allows remote attackers to execute arbitrary SQL commands via the ch parameter.
|
CWE-89
SQL Injection
|
CVE-2014-8339
|
2024-11-21 11:18 |
2014-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
