|
258291
|
- |
|
adobe
|
acrobat_reader
acrobat
|
The API in Adobe Reader and Acrobat 10.x before 10.1.10 and 11.x before 11.0.07 on Windows and OS X does not prevent access to unmapped memory, which allows attackers to execute arbitrary code via un…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-0525
|
2014-05-14 23:45 |
2014-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258292
|
- |
|
adobe
|
acrobat
acrobat_reader
|
Adobe Reader and Acrobat 10.x before 10.1.10 and 11.x before 11.0.07 on Windows and OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vec…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-0524
|
2014-05-14 23:40 |
2014-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258293
|
- |
|
adobe
|
acrobat_reader
acrobat
|
Adobe Reader and Acrobat 10.x before 10.1.10 and 11.x before 11.0.07 on Windows and OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vec…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-0522
|
2014-05-14 22:29 |
2014-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258294
|
- |
|
adobe
|
acrobat_reader
acrobat
|
Adobe Reader and Acrobat 10.x before 10.1.10 and 11.x before 11.0.07 on Windows and OS X do not properly implement JavaScript APIs, which allows remote attackers to obtain sensitive information via a…
|
CWE-200
Information Exposure
|
CVE-2014-0521
|
2014-05-14 22:23 |
2014-05-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258295
|
- |
|
mediawiki
|
mediawiki
|
Multiple cross-site request forgery (CSRF) vulnerabilities in the (1) CreateProperty, (2) CreateTemplate, (3) CreateForm, and (4) CreateClass special pages in the SemanticForms extension for MediaWik…
|
CWE-352
Origin Validation Error
|
CVE-2014-3455
|
2014-05-14 02:56 |
2014-05-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258296
|
- |
|
mediawiki
|
mediawiki
|
Cross-site request forgery (CSRF) vulnerability in Special:CreateCategory in the SemanticForms extension for MediaWiki before 1.19.10, 1.2x before 1.21.4, and 1.22.x before 1.22.1 allows remote attac…
|
CWE-352
Origin Validation Error
|
CVE-2014-3454
|
2014-05-14 02:53 |
2014-05-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258297
|
- |
|
makina-corpus
|
soappy
|
SOAPpy 0.12.5 does not properly detect recursion during entity expansion, which allows remote attackers to cause a denial of service (memory and CPU consumption) via a crafted SOAP request containing…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-3243
|
2014-05-14 02:39 |
2014-05-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258298
|
- |
|
makina-corpus
|
soappy
|
SOAPpy 0.12.5 allows remote attackers to read arbitrary files via a SOAP request containing an external entity declaration in conjunction with an entity reference, related to an XML External Entity (…
|
CWE-200
Information Exposure
|
CVE-2014-3242
|
2014-05-14 02:37 |
2014-05-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258299
|
- |
|
mediawiki
|
mediawiki
|
MediaWiki before 1.19.10, 1.2x before 1.21.4, and 1.22.x before 1.22.1 allows remote attackers to obtain information about deleted page via the (1) log API, (2) enhanced RecentChanges, and (3) user w…
|
CWE-200
Information Exposure
|
CVE-2013-6472
|
2014-05-13 23:43 |
2014-05-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258300
|
- |
|
mediawiki
|
mediawiki
|
Cross-site scripting (XSS) vulnerability in MediaWiki before 1.19.10, 1.2x before 1.21.4, and 1.22.x before 1.22.1 allows remote attackers to inject arbitrary web script or HTML via a -o-link attribu…
|
CWE-79
Cross-site Scripting
|
CVE-2013-6454
|
2014-05-13 23:21 |
2014-05-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
