|
257281
|
- |
|
symantec
|
workspace_streaming
|
The server in Symantec Workspace Streaming (SWS) before 7.5.0.749 allows remote attackers to access files and functionality by sending a crafted XMLRPC request over HTTPS.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-1649
|
2014-07-24 13:58 |
2014-05-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257282
|
- |
|
happyworm
|
jplayer
|
Cross-site scripting (XSS) vulnerability in actionscript/Jplayer.as in the Flash SWF component (jplayer.swf) in jPlayer before 2.3.1 allows remote attackers to inject arbitrary web script or HTML via…
|
CWE-79
Cross-site Scripting
|
CVE-2013-2023
|
2014-07-24 13:49 |
2013-08-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257283
|
- |
|
cybozu
|
garoon
|
Cross-site scripting (XSS) vulnerability in the Notices portlet in Cybozu Garoon 2.x and 3.x before 3.7 SP4 allows remote authenticated users to inject arbitrary web script or HTML via unspecified ve…
|
CWE-79
Cross-site Scripting
|
CVE-2014-1994
|
2014-07-24 03:55 |
2014-07-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257284
|
- |
|
ibm
|
storwize_unified_v7000_software
storwize_unified_v7000
|
IBM Storwize V7000 Unified 1.3.x and 1.4.x before 1.4.3.3 allows remote authenticated users to gain privileges by leveraging access to the service account.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-3043
|
2014-07-24 03:49 |
2014-07-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257285
|
- |
|
advantech
|
advantech_webaccess
|
The BrowseFolder method in the bwocxrun ActiveX control in Advantech WebAccess before 7.2 allows remote attackers to read arbitrary files via a crafted call.
|
CWE-200
Information Exposure
|
CVE-2014-2368
|
2014-07-24 03:48 |
2014-07-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257286
|
- |
|
advantech
|
advantech_webaccess
|
The ChkCookie subroutine in an ActiveX control in broadweb/include/gChkCook.asp in Advantech WebAccess before 7.2 allows remote attackers to read arbitrary files via a crafted call.
|
CWE-200
Information Exposure
|
CVE-2014-2367
|
2014-07-24 03:47 |
2014-07-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257287
|
- |
|
advantech
|
advantech_webaccess
|
upAdminPg.asp in Advantech WebAccess before 7.2 allows remote authenticated users to discover credentials by reading HTML source code.
|
CWE-200
Information Exposure
|
CVE-2014-2366
|
2014-07-24 03:46 |
2014-07-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257288
|
- |
|
sgminer_project
cgminer_project
|
sgminer
cgminer
|
The parse_notify function in util.c in sgminer before 4.2.2 and cgminer 3.3.0 through 4.0.1 allows man-in-the-middle attackers to cause a denial of service (application exit) via a crafted (1) bbvers…
|
CWE-20
Improper Input Validation
|
CVE-2014-4503
|
2014-07-24 03:25 |
2014-07-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257289
|
- |
|
sgminer_project
cgminer_project
bfgminer
|
sgminer
cgminer
bfgminer
|
Multiple stack-based buffer overflows in sgminer before 4.2.2, cgminer before 4.3.5, and BFGMiner before 3.3.0 allow remote pool servers to have unspecified impact via a long URL in a client.reconnec…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-4501
|
2014-07-24 03:07 |
2014-07-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257290
|
- |
|
cybozu
|
garoon
|
Cross-site scripting (XSS) vulnerability in the Map search functionality in Cybozu Garoon 2.x and 3.x before 3.7 SP4 allows remote authenticated users to inject arbitrary web script or HTML via unspe…
|
CWE-79
Cross-site Scripting
|
CVE-2014-1995
|
2014-07-24 02:40 |
2014-07-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
