257701
|
- |
|
wp_rss_poster_plugin_project
|
wp-rss-poster
|
SQL injection vulnerability in the WP Rss Poster (wp-rss-poster) plugin 1.0.0 for WordPress allows remote attackers to execute arbitrary SQL commands via the id parameter in the wrp-add-new page to w…
|
CWE-89
SQL Injection
|
CVE-2014-4938
|
2014-07-15 02:42 |
2014-07-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257702
|
- |
|
dahuasecurity
|
dvr_firmware
|
Dahua DVR 2.608.0000.0 and 2.608.GV00.0 allows remote attackers to bypass authentication and obtain sensitive information including user credentials, change user passwords, clear log files, and perfo…
|
CWE-287
Improper Authentication
|
CVE-2013-6117
|
2014-07-14 22:33 |
2014-07-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257703
|
- |
|
envialosimple
|
email_marketing_y_newsletters
|
Multiple cross-site scripting (XSS) vulnerabilities in paginas/vista-previa-form.php in the EnvialoSimple: Email Marketing and Newsletters (envialosimple-email-marketing-y-newsletters-gratis) plugin …
|
CWE-79
Cross-site Scripting
|
CVE-2014-4527
|
2014-07-12 02:59 |
2014-07-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257704
|
- |
|
silex
|
sx-2000wg_firmware
|
silex SX-2000WG devices with firmware before 1.5.4 allow remote attackers to cause a denial of service (connectivity outage) via crafted data in the Options field of a TCP header, a different vulnera…
|
CWE-20
Improper Input Validation
|
CVE-2014-3889
|
2014-07-12 02:58 |
2014-07-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257705
|
- |
|
garagesale_project
|
garagesale
|
Cross-site scripting (XSS) vulnerability in templates/printAdminUsersList_Footer.tpl.php in the GarageSale plugin before 1.2.3 for WordPress allows remote attackers to inject arbitrary web script or …
|
CWE-79
Cross-site Scripting
|
CVE-2014-4532
|
2014-07-12 02:58 |
2014-07-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257706
|
- |
|
silex
|
sx-2000wg_firmware
|
silex SX-2000WG devices with firmware before 1.5.4 allow remote attackers to cause a denial of service (connectivity outage) via a crafted IP packet, a different vulnerability than CVE-2014-3889.
|
CWE-20
Improper Input Validation
|
CVE-2014-3890
|
2014-07-12 02:57 |
2014-07-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257707
|
- |
|
game_tabs_project
|
game_tabs
|
Cross-site scripting (XSS) vulnerability in main_page.php in the Game tabs plugin 0.4.0 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the n parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2014-4531
|
2014-07-12 02:57 |
2014-07-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257708
|
- |
|
dssearchagent_project
|
dssearchagent
|
Cross-site scripting (XSS) vulnerability in client-assist.php in the dsSearchAgent: WordPress Edition plugin 1.0-beta10 and earlier for WordPress allows remote attackers to inject arbitrary web scrip…
|
CWE-79
Cross-site Scripting
|
CVE-2014-4522
|
2014-07-12 02:55 |
2014-07-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257709
|
- |
|
wp_easy_post_types_project
|
wp_easy_post_types
|
Cross-site scripting (XSS) vulnerability in classes/custom-image/media.php in the WP Easy Post Types plugin before 1.4.4 for WordPress allows remote attackers to inject arbitrary web script or HTML v…
|
CWE-79
Cross-site Scripting
|
CVE-2014-4524
|
2014-07-12 02:55 |
2014-07-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257710
|
- |
|
efence_project
|
efence
|
Multiple cross-site scripting (XSS) vulnerabilities in callback.php in the efence plugin 1.3.2 and earlier for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) mess…
|
CWE-79
Cross-site Scripting
|
CVE-2014-4526
|
2014-07-12 02:54 |
2014-07-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|