Search:
WLB2

[ Bugs ]   [ Exploits ]
WLB2RSS Bugtraq WLB2RSS
[ Bogus ]   [ Tricks ]
2014-04-16
Medium Risk

Apache HTTPD 2.2.22/ModSecurity 2.7.5 bypass RequestHeader unset

(CVE)
Martin
High Risk

OpenSSL use-after-free race condition read buffer

(CVE)
Pawel Kolodziej
High Risk

Apache Syncope 1.0.8 / 1.1.6 Code Execution

(CVE)
Draperi
High Risk

Ruckus OpenSSL 1.0.1 Heartbleed Issue

(CVE)
Ruckus Wireless
Medium Risk

Xerox DocuShare SQL Injection

Brandon Perry
High Risk

Unitrends Unauthenticated Root Command Execution

Brandon Perry
High Risk

Adobe Flash ExternalInterface Use-After-Free

(CVE)
VUPEN
High Risk

Netgear N600 Password Disclosure / Account Reset

Santhosh Kumar
High Risk

WebTitan 4.01 Command Execution / Directory Traversal

Brandon Perry
Low Risk

Joomla SMF Cross Site Scripting

Renzi
Low Risk

CMS iCAT Cross Site Scripting

Renzi
2014-04-15
High Risk

TrueCrypt Multiple Vulnerabilities

iSEC
Medium Risk

Adobe Reader For Android Javascript Insecure

Yorick Koster
Medium Risk

PDF Album 1.7 Local File Inclusion

Vulnerability La...
Low Risk

HP Insecure RPATH Use

(CVE)
Tim Brown
High Risk

BMC Patrol For AIX Insecure RPATH Use

(CVE)
Tim Brown
Medium Risk

WordPress LineNity Local File Inclusion

Felipe Andrian P...
Medium Risk

Madss Software Solution SQL Injection

Ashiyane Digital...
Low Risk

PrestaShop 1.5.6.2 Cross Site Scripting

Renzi
Medium Risk

CMS Int24 SQL Injection

Renzi
Low Risk

Joomla BeaconDecode Cross Site Scripting

Renzi
Low Risk

Joomla EWriting Cross Site Scripting

Renzi
2014-04-14
High Risk

Internet Explorer 10 CMarkup Use-After-Free Exploit

(CVE)
Jean-Jamil Khali...
Low Risk

JoomShopping Multiple XSS & FPD

Smash_
High Risk

Sagem F@st 3304-V2 Authentification Bypass *youtube

Yassine Aboukir
High Risk

WordPress Theme LineNity LFI

Andrian Peixoto
Low Risk

CUPS 1.6.4 web interface XSS

Alex
Low Risk

Microweber CMS v0.93 CSRF Vulnerability

sajith
Medium Risk

CubeCart 5.2.8 Session Fixation

(CVE)
James Sibley
2014-04-13
Low Risk

VMware Workstation / Player Invalid Pointer Dereference

(CVE)
Kyriakos Economo...
Medium Risk

Twitget 3.3.1 Cross Site Request Forgery / Cross Site Scripting

(CVE)
Tom Adams
High Risk

Comtrend CT 5361T Password Disclosure

TUNISIAN CYBER
2014-04-12
Low Risk

Plex Media Server 0.9.9.10 CSRF / Disclosure

Stefan Viehbock
Medium Risk

netlinks php cms SQL Injection Vulnerability

H-SK33PY
Medium Risk

D-Link DAP 1150 Cross Site Request Forgery / Cross Site Scripting

MustLive
[ Read More ]

  Top CWE:   CWE-89 (SQL Injection)   CWE-79 (XSS)   CWE-119 (Buffer Overflow)   CWE-22 (Path Traversal)  

[ CVE Related ]   [ CWE Related ]   [ Dorks ]  

[ CVE Products ] [ CVE Vendors ]
WLB2RSS CVE CVEMAP.ORG WLB2RSS CVE
Last Update: 2014-04-15
2014-04-14
 
CVE-2014-0128
( 5/10 )
 
  Squid-cache Squid
Squid 3.1 before 3.3.12 and 3.4 before 3.4.4, when SSL-Bump is enabled, allows remote attackers to cause a denial of service (assertion failure) via a crafted range request, related to state management.
 
CVE-2014-0159
( 5/10 )
 
  Openafs Openafs
Buffer overflow in the GetStatistics64 remote procedure call (RPC) in OpenAFS 1.4.8 before 1.6.7 allows remote attackers to cause a denial of service (crash) via a crafted statsVersion argument.
 
CVE-2014-0612
( 5/10 )
 
  Juniper Srx100
Unspecified vulnerability in Juniper Jonos before 11.4R10-S1, before 11.4R11, 12.1X44 before 12.1X44-D26, 12.1X44 before 12.1X44-D30, 12.1X45 before 12.1X45-D20, and 12.1X46 before 12.1X46-D10, when Dynamic IPsec VPN is configured, allows remote atta...
 
CVE-2014-0614
( 7.1/10 )
 
  Juniper Junos
Juniper Junos 13.2 before 13.2R3 and 13.3 before 13.3R1, when PIM is enabled, allows remote attackers to cause a denial of service (kernel panic and crash) via a large number of crafted IGMP packets.
 
CVE-2014-2711
( 4.3/10 )
 
  Juniper Junos
Cross-site scripting (XSS) vulnerability in J-Web in Juniper Junos before 11.4R11, 11.4X27 before 11.4X27.62 (BBE), 12.1 before 12.1R9, 12.1X44 before 12.1X44-D35, 12.1X45 before 12.1X45-D25, 12.1X46 before 12.1X46-D20, 12.2 before 12.2R7, 12.3 befor...
 
CVE-2014-2712
( 4.3/10 )
 
  Juniper Junos
Cross-site scripting (XSS) vulnerability in J-Web in Juniper Junos before 10.0S25, 10.4before 10.4R10, 11.4 before 11.4R11, 12.1 before 12.1R9, 12.1X44 before 12.1X44-D30, 12.1X45 before 12.1X45-D20, 12.1X46 before 12.1X46-D10, and 12.2 before 12.2R1...
 
CVE-2014-2713
( 5/10 )
 
  Juniper Junos
Juniper Junos before 11.4R11, 12.1 before 12.1R9, 12.2 before 12.2R7, 12.3R4 before 12.3R4-S3, 13.1 before 13.1R4, 13.2 before 13.2R2, and 13.3 before 13.3R1, as used in MX Series and T4000 routers, allows remote attackers to cause a denial of servic...
2014-04-12
 
CVE-2013-2809
( 7.1/10 )
 
  Osisoft Pi interface
The DNP Master Driver in the OSIsoft PI Interface before 3.1.2.54 for DNP3 allows remote attackers to cause a denial of service (interface shutdown) via a crafted TCP packet.
 
CVE-2013-2828
( 4.7/10 )
 
  Osisoft Pi interface
The DNP Master Driver in the OSIsoft PI Interface before 3.1.2.54 for DNP3 allows physically proximate attackers to cause a denial of service (interface shutdown) via crafted input over a serial line.
 
CVE-2013-6216
( 2.1/10 )
 
  HP Array configuration utility
Unspecified vulnerability in HP Array Configuration Utility, Array Diagnostics Utility, ProLiant Array Diagnostics, and SmartSSD Wear Gauge Utility 9.40 and earlier allows local users to gain privileges via unknown vectors.
 
CVE-2014-0347
( 3.5/10 )
 
  Websense Triton unified security center
The Settings module in Websense Triton Unified Security Center 7.7.3 before Hotfix 31, Web Filter 7.7.3 before Hotfix 31, Web Security 7.7.3 before Hotfix 31, Web Security Gateway 7.7.3 before Hotfix 31, and Web Security Gateway Anywhere 7.7.3 before...
 
CVE-2014-0349
( 10/10 )
 
  J2k-codec J2k-codec
Multiple unspecified vulnerabilities in J2k-Codec allow remote attackers to execute arbitrary code via a crafted JPEG 2000 file.
 
CVE-2014-0763
( 7.5/10 )
 
  Advantech Advantech webaccess
Multiple SQL injection vulnerabilities in DBVisitor.dll in Advantech WebAccess before 7.2 allow remote attackers to execute arbitrary SQL commands via SOAP requests to unspecified functions.
 
CVE-2014-0764
( 7.5/10 )
 
  Advantech Advantech webaccess
Stack-based buffer overflow in Advantech WebAccess before 7.2 allows remote attackers to execute arbitrary code via a long NodeName parameter.
 
CVE-2014-0765
( 7.5/10 )
 
  Advantech Advantech webaccess
Stack-based buffer overflow in Advantech WebAccess before 7.2 allows remote attackers to execute arbitrary code via a long GotoCmd argument.
 
CVE-2014-0766
( 7.5/10 )
 
  Advantech Advantech webaccess
Stack-based buffer overflow in Advantech WebAccess before 7.2 allows remote attackers to execute arbitrary code via a long NodeName2 argument.
 
CVE-2014-0767
( 7.5/10 )
 
  Advantech Advantech webaccess
Stack-based buffer overflow in Advantech WebAccess before 7.2 allows remote attackers to execute arbitrary code via a long AccessCode argument.
 
CVE-2014-0768
( 7.5/10 )
 
  Advantech Advantech webaccess
Stack-based buffer overflow in Advantech WebAccess before 7.2 allows remote attackers to execute arbitrary code via a long AccessCode2 argument.
 
CVE-2014-0770
( 7.5/10 )
 
  Advantech Advantech webaccess
Stack-based buffer overflow in Advantech WebAccess before 7.2 allows remote attackers to execute arbitrary code via a long UserName parameter.
 
CVE-2014-0771
( 5/10 )
 
  Advantech Advantech webaccess
The OpenUrlToBuffer method in the BWOCXRUN.BwocxrunCtrl.1 ActiveX control in bwocxrun.ocx in Advantech WebAccess before 7.2 allows remote attackers to read arbitrary files via a file: URL.
[ Read More ]

Top Vendors:

Apple   Microsoft   Google   Oracle   Apache   IBM   Red Hat   HP   Adobe   Mozilla  

[ Full List of Vendors ]  

Top Products:

Linux Kernel   Mac OS X   Windows XP   Windows 7   Flash Player   Adobe Reader   PHP   JRE   JDK  
Wordpress   Joomla   Chrome   IE   Firefox   Safari   HTTPD   Tomcat   Nginx  

[ Full List of Products ]  



 
Copyright 2014, cxsecurity.com