Search:
WLB2

[ Bugs ]   [ Exploits ]
WLB2RSS Bugtraq WLB2RSS
[ Bogus ]   [ Tricks ]
2014-04-23
Low Risk

ASUS RT-AC68U Cross Site Scripting

(CVE)
Joaquim Brasil d...
High Risk

ASUS RT-AC68U Remote Command Execution

(CVE)
Joaquim Brasil d...
High Risk

Parallels Plesk Panel 12.x Key Disclosure

Tim Rots
Medium Risk

Sixnet Sixview 2.4.1 Directory Traversal

daniel svartman
High Risk

No-CMS 0.6.6 Rev 1 Account Hijack / Remote Command Execution

Mehmet Ince
Low Risk

Symantec Messaging Gateway 10.5.1 Cross Site Scripting

illiam Costa
Medium Risk

iDevAffiliate 5.x SQL Injection

Robert Cooper
2014-04-22
Medium Risk

KnowledgeTree Blind SQL Injection

(CVE)
Craig Arendt
Low Risk

WordPress JS External Link Info Cross Site Scripting

Ashiyane Digital...
Medium Risk

PTCeffect 4.6 Local File Inclusion / SQL Injection

Walidz
Low Risk

DuBose Web Group CMS Cross Site Scripting

Renzi
Medium Risk

Wapoweb SQL Injection

Renzi
2014-04-21
Medium Risk

systemd create or overwrite arbitrary files

(CVE)
Sebastian Krahme...
High Risk

Wordpress Themes Theagency File Upload Vulnerability

AnonBoy
Medium Risk

phpManufaktur / kitForm <= 0.43 SQL Injection

xoxo chapp
Medium Risk

Media Player Classic Memory Corruption

(CVE)
Aryan Bayanineja...
Low Risk

mojoPortal 2.4.0.3 Multiple XSS Vulnerabilities

Smash_
Medium Risk

WordPress File Disclosure Vulnerability

Th3 R0cksT3r
Medium Risk

CGR BRASIL CMS Sql Injection

Felipe Andrian P...
Low Risk

Teracom Modem CSRF Vulnerability

Rakesh S
2014-04-19
Medium Risk

clang-3.5 scan-build insecure use of /tmp

(CVE)
Jakub Wilk
High Risk

Adobe Flash Player Regular Expression Heap Overflow

(CVE)
Juan vazquez
Low Risk

CU3ER 1.24 Cross Site Scripting / Content Spoofing

MustLive
High Risk

Sercomm TCP/32674 Backdoor Reactivation

Eloi Vanderbeken
Medium Risk

Linux group_info Denial Of Service

(CVE)
Thomas Pollet
Low Risk

vBulletin 5.1 Cross Site Scripting

Romanian Securit...
High Risk

Ruby Gem sfpagent 0.4.14 Command Injection

Larry W. Cashdol...
2014-04-18
Low Risk

bzip2 1.0.5 local users execute arbitrary code

(CVE)
Tavis Ormandy
Low Risk

Oracle Identity Manager Unvalidated Redirects

(CVE)
Giuseppe D'Amore...
High Risk

Nagios Remote Plugin Executor 2.15 Remote Command Execution

Dawid Golunski
High Risk

ASUS RT Password Disclosure

(CVE)
David Longenecke...
Low Risk

McAfee Security Scanner Plus Rogue Binary Execution

Stefan Kanthak
Medium Risk

D-Link DAP-1320 Directory Traversal / Cross Site Scripting

K Lovett
High Risk

CMSimple 4.4.2 Remote File Inclusion

NoGe
Low Risk

F-Secure Messaging Security Gateway 7.5.0.892 Cross Site Scripting

William Costa
[ Read More ]

  Top CWE:   CWE-89 (SQL Injection)   CWE-79 (XSS)   CWE-119 (Buffer Overflow)   CWE-22 (Path Traversal)  

[ CVE Related ]   [ CWE Related ]   [ Dorks ]  

[ CVE Products ] [ CVE Vendors ]
WLB2RSS CVE CVEMAP.ORG WLB2RSS CVE
Last Update: 2014-04-23
2014-04-23
 
CVE-2012-0360
( 5/10 )
 
  Cisco IOS
Memory leak in Cisco IOS before 15.1(1)SY, when IKEv2 debugging is enabled, allows remote attackers to cause a denial of service (memory consumption) via crafted packets, aka Bug ID CSCtn22376.
 
CVE-2012-1317
( 5.4/10 )
 
  Cisco IOS
The multicast implementation in Cisco IOS before 15.1(1)SY allows remote attackers to cause a denial of service (Route Processor crash) by sending packets at a high rate, aka Bug ID CSCts37717.
 
CVE-2012-1366
( 6.1/10 )
 
  Cisco Asr 1001 router
Cisco IOS before 15.1(1)SY on ASR 1000 devices, when Multicast Listener Discovery (MLD) tracking is enabled for IPv6, allows remote attackers to cause a denial of service (device reload) via crafted MLD packets, aka Bug ID CSCtz28544.
 
CVE-2012-3062
( 5.7/10 )
 
  Cisco IOS
Cisco IOS before 15.1(1)SY, when Multicast Listener Discovery (MLD) snooping is enabled, allows remote attackers to cause a denial of service (CPU consumption or device crash) via MLD packets on a network that contains many IPv6 hosts, aka Bug ID CSC...
 
CVE-2012-3918
( 4.3/10 )
 
  Cisco Catalyst 2900
Cisco IOS before 15.3(1)T on Cisco 2900 devices, when a VWIC2-2MFT-T1/E1 card is configured for TDM/HDLC mode, allows remote attackers to cause a denial of service (serial-interface outage) via certain Frame Relay traffic, aka Bug ID CSCub13317.
 
CVE-2012-4638
( 4.9/10 )
 
  Cisco IOS
Cisco IOS before 15.1(1)SY allows local users to cause a denial of service (device reload) by establishing an outbound SSH session, aka Bug ID CSCto00318.
 
CVE-2012-4651
( 4.3/10 )
 
  Cisco IOS
Cisco IOS before 15.3(2)T, when scansafe is enabled, allows remote attackers to cause a denial of service (latency) via SYN packets that are not accompanied by SYN-ACK packets from the Scan Safe Tower, aka Bug ID CSCub85451.
 
CVE-2012-4658
( 5/10 )
 
  Cisco IOS
The ios-authproxy implementation in Cisco IOS before 15.1(1)SY3 allows remote attackers to cause a denial of service (webauth and HTTP service outage) via vectors that trigger incorrectly terminated HTTP sessions, aka Bug ID CSCtz99447.
 
CVE-2012-5014
( 6.3/10 )
 
  Cisco IOS
Cisco IOS before 15.1(2)SY allows remote authenticated users to cause a denial of service (device crash) by establishing an SSH session from a client and then placing this client into a (1) slow or (2) idle state, aka Bug ID CSCto87436.
 
CVE-2012-5017
( 6.8/10 )
 
  Cisco Asr 1001 router
Cisco IOS before 15.1(1)SY1 allows remote authenticated users to cause a denial of service (device reload) by establishing a VPN session and then sending malformed IKEv2 packets, aka Bug ID CSCub39268.
 
CVE-2012-5032
( 6.4/10 )
 
  Cisco IOS
The Flex-VPN load-balancing feature in the ipsec-ikev2 implementation in Cisco IOS before 15.1(1)SY3 does not require authentication, which allows remote attackers to trigger the forwarding of VPN traffic to an attacker-controlled destination, or the...
 
CVE-2012-5036
( 6.8/10 )
 
  Cisco IOS
Cisco IOS before 12.2(50)SY1 allows remote authenticated users to cause a denial of service (memory consumption) via a sequence of VTY management sessions (aka exec sessions), aka Bug ID CSCtn43662.
 
CVE-2012-5037
( 4.6/10 )
 
  Cisco Catalyst 6500
The ACL implementation in Cisco IOS before 15.1(1)SY on Catalyst 6500 and 7600 devices allows local users to cause a denial of service (device reload) via a "no object-group" command followed by an object-group command, aka Bug ID CSCts16133.
 
CVE-2012-5039
( 4.3/10 )
 
  Cisco IOS
The BGP Router process in Cisco IOS before 12.2(50)SY1 allows remote attackers to cause a denial of service (memory consumption) via vectors involving BGP path attributes, aka Bug ID CSCsw63003.
 
CVE-2012-5044
( 5.4/10 )
 
  Cisco IOS
Cisco IOS before 15.3(1)T, when media flow-around is not used, allows remote attackers to cause a denial of service (media loops and stack memory corruption) via VoIP traffic, aka Bug ID CSCub45809.
 
CVE-2012-5422
( 6.8/10 )
 
  Cisco As5400 universal gateway
Unspecified vulnerability in Cisco IOS before 15.3(2)T on AS5400 devices allows remote authenticated users to cause a denial of service (spurious errors) via unknown vectors, aka Bug ID CSCub61009.
 
CVE-2012-5427
( 4/10 )
 
  Cisco IOS
Cisco IOS Unified Border Element (CUBE) in Cisco IOS before 15.3(2)T allows remote authenticated users to cause a denial of service (input queue wedge) via a crafted series of RTCP packets, aka Bug ID CSCuc42518.
 
CVE-2014-1295
( 6.8/10 )
 
  Apple Apple tv
Secure Transport in Apple iOS before 7.1.1, Apple OS X 10.8.x and 10.9.x through 10.9.2, and Apple TV before 6.1.1 does not ensure that a server's X.509 certificate is the same during renegotiation as it was before renegotiation, which allows man-in-...
 
CVE-2014-1296
( 4.3/10 )
 
  Apple Apple tv
CFNetwork in Apple iOS before 7.1.1, Apple OS X through 10.9.2, and Apple TV before 6.1.1 does not ensure that a Set-Cookie HTTP header is complete before interpreting the header's value, which allows remote attackers to bypass intended access restri...
 
CVE-2014-1314
( 10/10 )
 
  Apple Mac os x
WindowServer in Apple OS X through 10.9.2 does not prevent session creation by a sandboxed application, which allows attackers to bypass the sandbox protection mechanism and execute arbitrary code via a crafted application.
[ Read More ]

Top Vendors:

Apple   Microsoft   Google   Oracle   Apache   IBM   Red Hat   HP   Adobe   Mozilla  

[ Full List of Vendors ]  

Top Products:

Linux Kernel   Mac OS X   Windows XP   Windows 7   Flash Player   Adobe Reader   PHP   JRE   JDK  
Wordpress   Joomla   Chrome   IE   Firefox   Safari   HTTPD   Tomcat   Nginx  

[ Full List of Products ]  



 
Copyright 2014, cxsecurity.com