|
257291
|
- |
|
advantech
|
advantech_webaccess
|
Unspecified vulnerability in Advantech WebAccess before 7.2 allows remote authenticated users to create or delete arbitrary files via unknown vectors.
|
NVD-CWE-noinfo
|
CVE-2014-2365
|
2014-07-24 02:39 |
2014-07-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257292
|
- |
|
autodesk
|
sketchbook_pro
|
Heap-based buffer overflow in Autodesk SketchBook Pro before 6.2.6 allows remote attackers to execute arbitrary code via crafted layer bitmap data in a PXD file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-3939
|
2014-07-24 02:19 |
2014-07-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257293
|
- |
|
autodesk
|
sketchbook_pro
|
Integer overflow in Autodesk SketchBook Pro before 6.2.6 allows remote attackers to execute arbitrary code via crafted layer mask data in a PSD file, which triggers a heap-based buffer overflow.
|
CWE-189
Numeric Errors
|
CVE-2014-3938
|
2014-07-24 02:14 |
2014-07-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257294
|
- |
|
redhat
|
jboss_enterprise_application_platform
jboss_enterprise_brms_platform
jboss_enterprise_portal_platform
jboss_enterprise_soa_platform
|
jmx-remoting.sar in JBoss Remoting, as used in Red Hat JBoss Enterprise Application Platform (JEAP) 5.2.0, Red Hat JBoss BRMS 5.3.1, Red Hat JBoss Portal Platform 5.2.2, and Red Hat JBoss SOA Platfor…
|
CWE-94
Code Injection
|
CVE-2014-3518
|
2014-07-23 22:14 |
2014-07-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257295
|
- |
|
cybozu
|
garoon
|
Cross-site scripting (XSS) vulnerability in the Messages functionality in Cybozu Garoon 3.1.x, 3.5.x, and 3.7.x before 3.7 SP4 allows remote authenticated users to inject arbitrary web script or HTML…
|
CWE-79
Cross-site Scripting
|
CVE-2014-1992
|
2014-07-23 07:59 |
2014-07-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257296
|
- |
|
webmin
|
usermin
|
Cross-site scripting (XSS) vulnerability in Usermin before 1.600 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: this might overlap CVE-2014-3924.
|
CWE-79
Cross-site Scripting
|
CVE-2014-3884
|
2014-07-23 07:55 |
2014-07-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257297
|
- |
|
webmin
|
webmin
|
Cross-site scripting (XSS) vulnerability in Webmin before 1.690 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors. NOTE: this might overlap CVE-2014-39…
|
CWE-79
Cross-site Scripting
|
CVE-2014-3885
|
2014-07-23 07:54 |
2014-07-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257298
|
- |
|
webmin
|
webmin
|
Cross-site scripting (XSS) vulnerability in Webmin before 1.690, when referrer checking is disabled, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: thi…
|
CWE-79
Cross-site Scripting
|
CVE-2014-3886
|
2014-07-23 07:54 |
2014-07-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257299
|
- |
|
drupal
|
drupal
|
Cross-site scripting (XSS) vulnerability in the Ajax system in Drupal 7.x before 7.29 allows remote attackers to inject arbitrary web script or HTML via vectors involving forms with an Ajax-enabled t…
|
CWE-79
Cross-site Scripting
|
CVE-2014-5022
|
2014-07-23 04:21 |
2014-07-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257300
|
- |
|
drupal
|
drupal
|
Cross-site scripting (XSS) vulnerability in the Form API in Drupal 6.x before 6.32 and possibly 7.x before 7.29 allows remote authenticated users with the "administer taxonomy" permission to inject a…
|
CWE-79
Cross-site Scripting
|
CVE-2014-5021
|
2014-07-23 04:10 |
2014-07-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
