|
259031
|
- |
|
rodrigo_polo
|
stream_video_player
|
Cross-site request forgery (CSRF) vulnerability in the Stream Video Player plugin 1.4.0 for WordPress allows remote attackers to hijack the authentication of administrators for requests that change p…
|
CWE-352
Origin Validation Error
|
CVE-2013-2706
|
2014-04-14 20:13 |
2014-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259032
|
- |
|
isode
|
m-link
|
Isode M-Link before 16.0v7 does not properly restrict the processing of compressed XML elements, which allows remote attackers to cause a denial of service (resource consumption) via a crafted XMPP s…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-2742
|
2014-04-12 04:49 |
2014-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259033
|
- |
|
erlang-solutions
|
mongooseim
|
Erlang Solutions MongooseIM through 1.3.1 rev. 2 does not properly restrict the processing of compressed XML elements, which allows remote attackers to cause a denial of service (resource consumption…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-2829
|
2014-04-12 04:45 |
2014-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259034
|
- |
|
tigase
|
tigase
|
net/IOService.java in Tigase before 5.2.1 does not properly restrict the processing of compressed XML elements, which allows remote attackers to cause a denial of service (resource consumption) via a…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-2746
|
2014-04-12 04:39 |
2014-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259035
|
- |
|
lightwitch
|
metronome
|
plugins/mod_compression.lua in Lightwitch Metronome through 3.4 does not properly restrict the processing of compressed XML elements, which allows remote attackers to cause a denial of service (resou…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2014-2743
|
2014-04-12 04:36 |
2014-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259036
|
- |
|
sap
|
enterprise_portal
|
SAP Enterprise Portal does not properly restrict access to the Federation configuration pages, which allows remote attackers to gain privileges via unspecified vectors.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-7367
|
2014-04-12 03:19 |
2014-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259037
|
- |
|
sap
|
software_deployment_manager
|
The SAP Software Deployment Manager (SDM), in certain unspecified conditions, allows remote attackers to cause a denial of service via vectors related to failed authentications.
|
CWE-287
Improper Authentication
|
CVE-2013-7366
|
2014-04-12 03:13 |
2014-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259038
|
- |
|
sap
|
netweaver
|
An unspecified J2EE core service in the J2EE Engine in SAP NetWeaver does not properly restrict access, which allows remote attackers to read and write to arbitrary files via unknown vectors.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-7364
|
2014-04-12 02:16 |
2014-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259039
|
- |
|
sap
|
solution_manager
|
Unspecified vulnerability in the Diagnostics (SMD) agent in SAP Solution Manager allows remote attackers to obtain sensitive information, modify the configuration of applications, and install or remo…
|
NVD-CWE-noinfo
|
CVE-2013-7363
|
2014-04-12 02:09 |
2014-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259040
|
- |
|
sap
|
ccms_agent
|
An unspecified RFC function in SAP CCMS Agent allows remote attackers to execute arbitrary commands via unknown vectors.
|
CWE-94
Code Injection
|
CVE-2013-7362
|
2014-04-12 02:03 |
2014-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
