|
287401
|
- |
|
gnu
|
bash
|
The redirection implementation in parse.y in GNU Bash through 4.3 bash43-026 allows remote attackers to cause a denial of service (out-of-bounds array access and application crash) or possibly have u…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-7186
|
2024-11-21 11:16 |
2014-09-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287402
|
- |
|
redhat
linux
canonical
|
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux_hpc_node
linux_kernel
ubuntu_linux
|
The SMB2_tcon function in fs/cifs/smb2pdu.c in the Linux kernel before 3.16.3 allows remote CIFS servers to cause a denial of service (NULL pointer dereference and client system crash) or possibly ha…
|
CWE-399
Resource Management Errors
|
CVE-2014-7145
|
2024-11-21 11:16 |
2014-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287403
|
- |
|
mailchimp
|
easy_mailchimp_forms_plugin
|
Cross-site scripting (XSS) vulnerability in the Easy MailChimp Forms plugin 3.0 through 5.0.6 for WordPress allows remote attackers to inject arbitrary web script or HTML via the update_options actio…
|
CWE-79
Cross-site Scripting
|
CVE-2014-7152
|
2024-11-21 11:16 |
2014-09-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287404
|
- |
|
huge-it
|
image_gallery
|
SQL injection vulnerability in the editgallery function in admin/gallery_func.php in the Huge-IT Image Gallery plugin 1.0.1 for WordPress allows remote authenticated users to execute arbitrary SQL co…
|
CWE-89
SQL Injection
|
CVE-2014-7153
|
2024-11-21 11:16 |
2014-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287405
|
- |
|
jogoeusei
|
questoes_oab
|
The Questoes OAB (aka com.pedefeijao.questoesoab) application oab_android_1.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof server…
|
CWE-310
Cryptographic Issues
|
CVE-2014-6999
|
2024-11-21 11:15 |
2014-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287406
|
- |
|
smartstudy
|
pinkfong_tv
|
The PinkFong TV (aka kr.co.smartstudy.pinkfongtv_android_googlemarket) application 4 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof…
|
CWE-310
Cryptographic Issues
|
CVE-2014-6998
|
2024-11-21 11:15 |
2014-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287407
|
- |
|
itiw-webdev
|
dino_village
|
The Dino Village (aka com.tappocket.dinovillage) application 1.6 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain …
|
CWE-310
Cryptographic Issues
|
CVE-2014-6997
|
2024-11-21 11:15 |
2014-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287408
|
- |
|
cocodigi
|
martial_arts_battle_card
|
The Martial Arts Battle Card (aka com.tapenjoy.zjh.tw) application 1.0.9 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and…
|
CWE-310
Cryptographic Issues
|
CVE-2014-6996
|
2024-11-21 11:15 |
2014-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287409
|
- |
|
adidas
|
adidas_eyewear
|
The adidas eyewear (aka com.adidasep.eyewear) application 1.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sen…
|
CWE-310
Cryptographic Issues
|
CVE-2014-6995
|
2024-11-21 11:15 |
2014-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
287410
|
- |
|
atecea
|
atecea
|
The Atecea (aka com.atecea) application 1.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information…
|
CWE-310
Cryptographic Issues
|
CVE-2014-6994
|
2024-11-21 11:15 |
2014-10-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
