|
286071
|
- |
|
genetechsolutions
|
pie_register
|
The Pie Register plugin before 2.0.14 for WordPress does not properly restrict access to certain functions in pie-register.php, which allows remote attackers to (1) add a user by uploading a crafted …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-8802
|
2024-11-21 11:19 |
2015-01-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286072
|
- |
|
siemens
|
scalance_x-408_firmware
scalance_x-300_series_firmware
|
The FTP server on Siemens SCALANCE X-300 switches with firmware before 4.0 and SCALANCE X 408 switches with firmware before 4.0 allows remote authenticated users to cause a denial of service (reboot)…
|
CWE-20
Improper Input Validation
|
CVE-2014-8479
|
2024-11-21 11:19 |
2015-01-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286073
|
- |
|
siemens
|
scalance_x-300_series_firmware
scalance_x-408_firmware
|
The web server on Siemens SCALANCE X-300 switches with firmware before 4.0 and SCALANCE X 408 switches with firmware before 4.0 allows remote attackers to cause a denial of service (reboot) via malfo…
|
CWE-22
Path Traversal
|
CVE-2014-8478
|
2024-11-21 11:19 |
2015-01-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286074
|
- |
|
ibm
|
business_process_manager
|
Cross-site scripting (XSS) vulnerability in the Process Portal in IBM Business Process Manager 8.0 through 8.0.1.3, 8.5.0 through 8.5.0.1, and 8.5.5 allows remote authenticated users to inject arbitr…
|
CWE-79
Cross-site Scripting
|
CVE-2014-8914
|
2024-11-21 11:19 |
2015-01-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286075
|
- |
|
ibm
|
business_process_manager
|
Cross-site scripting (XSS) vulnerability in the Process Portal in IBM Business Process Manager 8.0 through 8.0.1.3, 8.5.0 through 8.5.0.1, and 8.5.5 allows remote authenticated users to inject arbitr…
|
CWE-79
Cross-site Scripting
|
CVE-2014-8913
|
2024-11-21 11:19 |
2015-01-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286076
|
- |
|
cagintranetworks
get-simple
|
getsimple_cms
|
XML external entity (XXE) vulnerability in admin/api.php in GetSimple CMS 3.1.1 through 3.3.x before 3.3.5 Beta 1, when in certain configurations, allows remote attackers to read arbitrary files via …
|
NVD-CWE-Other
|
CVE-2014-8790
|
2024-11-21 11:19 |
2015-01-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286077
|
- |
|
debian
|
dpkg
|
Multiple format string vulnerabilities in the parse_error_msg function in parsehelp.c in dpkg before 1.17.22 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary…
|
CWE-134
Use of Externally-Controlled Format String
|
CVE-2014-8625
|
2024-11-21 11:19 |
2015-01-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286078
|
- |
|
advantech
|
adamview
|
Multiple stack-based buffer overflows in Advantech AdamView 4.3 and earlier allow remote attackers to execute arbitrary code via a crafted (1) display properties or (2) conditional bitmap parameter i…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-8386
|
2024-11-21 11:19 |
2015-01-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286079
|
- |
|
ibm
|
vios
aix
|
lquerylv in cmdlvm in IBM AIX 5.3, 6.1, and 7.1 and VIOS 2.2.x allows local users to gain privileges via a crafted DBGCMD_LQUERYLV environment-variable value.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-8904
|
2024-11-21 11:19 |
2015-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
286080
|
- |
|
tapatalk
|
tapatalk
|
Open redirect vulnerability in mobiquo/smartbanner/welcome.php in the Tapatalk (com.tapatalk.wbb4) plugin before 1.1.2 for Woltlab Burning Board 4.0 allows remote attackers to redirect users to arbit…
|
NVD-CWE-Other
|
CVE-2014-8870
|
2024-11-21 11:19 |
2015-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
