|
290451
|
- |
|
michael_knoll
daniel_lienert
|
tools_for_extbase_developmen
yet_another_gallery
|
The Ajax dispatcher for Extbase in the Yet Another Gallery (yag) extension before 3.0.1 and Tools for Extbase development (pt_extbase) extension before 1.5.1 allows remote attackers to bypass access …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-6289
|
2024-11-21 11:14 |
2014-10-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290452
|
- |
|
alex_kellner
|
powermail
|
The powermail extension 2.x before 2.0.11 for TYPO3 allows remote attackers to bypass the CAPTCHA protection mechanism via unspecified vectors.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-6288
|
2024-11-21 11:14 |
2014-10-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290453
|
- |
|
openstack
canonical
|
neutron
ubuntu_linux
|
OpenStack Neutron before 2014.2.4 and 2014.1 before 2014.1.2 allows remote authenticated users to set admin network attributes to default values via unspecified vectors.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-6414
|
2024-11-21 11:14 |
2014-10-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290454
|
- |
|
tips_and_tricks_hq
|
all_in_one_wordpress_security_and_firewall
|
Multiple SQL injection vulnerabilities in the All In One WP Security & Firewall plugin before 3.8.3 for WordPress allow remote authenticated users to execute arbitrary SQL commands via the (1) orderb…
|
CWE-89
SQL Injection
|
CVE-2014-6242
|
2024-11-21 11:14 |
2014-10-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290455
|
- |
|
restaurantmis
|
restaurant_script
|
Multiple cross-site scripting (XSS) vulnerabilities in register-exec.php in Restaurant Script (PizzaInn_Project) 1.0.0 allow remote attackers to inject arbitrary web script or HTML via the (1) fname,…
|
CWE-79
Cross-site Scripting
|
CVE-2014-6619
|
2024-11-21 11:14 |
2014-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290456
|
- |
|
your_online_shop_project
|
your_online_shop
|
Cross-site scripting (XSS) vulnerability in Your Online Shop allows remote attackers to inject arbitrary web script or HTML via the products_id parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2014-6618
|
2024-11-21 11:14 |
2014-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290457
|
- |
|
debian
|
advanced_package_tool
|
Buffer overflow in the HTTP transport code in apt-get in APT 1.0.1 and earlier allows man-in-the-middle attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-6273
|
2024-11-21 11:14 |
2014-09-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290458
|
- |
|
haproxy
|
haproxy
|
Multiple integer overflows in the http_request_forward_body function in proto_http.c in HAProxy 1.5-dev23 before 1.5.4 allow remote attackers to cause a denial of service (crash) via a large stream o…
|
CWE-189
Numeric Errors
|
CVE-2014-6269
|
2024-11-21 11:14 |
2014-09-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290459
|
- |
|
linux
canonical
|
linux_kernel
ubuntu_linux
|
net/ceph/auth_x.c in Ceph, as used in the Linux kernel before 3.16.3, does not properly validate auth replies, which allows remote attackers to cause a denial of service (system crash) or possibly ha…
|
CWE-399
Resource Management Errors
|
CVE-2014-6418
|
2024-11-21 11:14 |
2014-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
290460
|
- |
|
linux
|
linux_kernel
|
net/ceph/auth_x.c in Ceph, as used in the Linux kernel before 3.16.3, does not properly consider the possibility of kmalloc failure, which allows remote attackers to cause a denial of service (system…
|
CWE-399
Resource Management Errors
|
CVE-2014-6417
|
2024-11-21 11:14 |
2014-09-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
