Lista CVE - 2014 / Novembre
Visualizzazione 401 - 500 di 501 CVE per Novembre 2014 (Pagina 5 di 6)
| ID CVE | Data | Titolo |
|---|---|---|
| CVE-2014-7845 | 2014-11-24 | The generate_password function in Moodle through 2.4.11, 2.5.x before 2.5.9,... |
| CVE-2014-7846 | 2014-11-24 | tag/tag_autocomplete.php in Moodle through 2.4.11, 2.5.x before 2.5.9, 2.6.x before... |
| CVE-2014-7847 | 2014-11-24 | iplookup/index.php in Moodle through 2.4.11, 2.5.x before 2.5.9, 2.6.x before... |
| CVE-2014-7848 | 2014-11-24 | lib/phpunit/bootstrap.php in Moodle 2.6.x before 2.6.6 and 2.7.x before 2.7.3... |
| CVE-2014-9059 | 2014-11-24 | lib/setup.php in Moodle through 2.4.11, 2.5.x before 2.5.9, 2.6.x before... |
| CVE-2014-9060 | 2014-11-24 | The LTI module in Moodle through 2.4.11, 2.5.x before 2.5.9,... |
| CVE-2014-1424 | 2014-11-24 | apparmor_parser in the apparmor package before 2.8.95~2430-0ubuntu5.1 in Ubuntu 14.04... |
| CVE-2014-7817 | 2014-11-24 | The wordexp function in GNU C Library (aka glibc) 2.21... |
| CVE-2014-7821 | 2014-11-24 | OpenStack Neutron before 2014.1.4 and 2014.2.x before 2014.2.1 allows remote... |
| CVE-2014-8412 | 2014-11-24 | The (1) VoIP channel drivers, (2) DUNDi, and (3) Asterisk... |
| CVE-2014-8413 | 2014-11-24 | The res_pjsip_acl module in Asterisk Open Source 12.x before 12.7.1... |
| CVE-2014-8414 | 2014-11-24 | ConfBridge in Asterisk 11.x before 11.14.1 and Certified Asterisk 11.6... |
| CVE-2014-8415 | 2014-11-24 | Race condition in the chan_pjsip channel driver in Asterisk Open... |
| CVE-2014-8416 | 2014-11-24 | Use-after-free vulnerability in the PJSIP channel driver in Asterisk Open... |
| CVE-2014-8417 | 2014-11-24 | ConfBridge in Asterisk 11.x before 11.14.1, 12.x before 12.7.1, and... |
| CVE-2014-8418 | 2014-11-24 | The DB dialplan function in Asterisk Open Source 1.8.x before... |
| CVE-2014-8627 | 2014-11-24 | PolarSSL 1.3.8 does not properly negotiate the signature algorithm to... |
| CVE-2014-8986 | 2014-11-24 | Cross-site scripting (XSS) vulnerability in the selection list in the... |
| CVE-2014-8988 | 2014-11-24 | MantisBT before 1.2.18 allows remote authenticated users to bypass the... |
| CVE-2014-8991 | 2014-11-24 | pip 1.3 through 1.5.6 allows local users to cause a... |
| CVE-2014-9015 | 2014-11-24 | Drupal 6.x before 6.34 and 7.x before 7.34 allows remote... |
| CVE-2014-9016 | 2014-11-24 | The password hashing API in Drupal 7.x before 7.34 and... |
| CVE-2014-9030 | 2014-11-24 | The do_mmu_update function in arch/x86/mm.c in Xen 3.2.x through 4.4.x... |
| CVE-2012-6662 | 2014-11-24 | Cross-site scripting (XSS) vulnerability in the default content option in... |
| CVE-2014-8349 | 2014-11-24 | Cross-site scripting (XSS) vulnerability in Liferay Portal Enterprise Edition (EE)... |
| CVE-2014-1421 | 2014-11-25 | mountall 1.54, as used in Ubuntu 14.10, does not properly... |
| CVE-2014-7839 | 2014-11-25 | DocumentProvider in RESTEasy 2.3.7 and 3.0.9 does not configure the... |
| CVE-2014-8367 | 2014-11-25 | SQL injection vulnerability in Aruba Networks ClearPass Policy Manager (CPPM)... |
| CVE-2014-8368 | 2014-11-25 | The web interface in Aruba Networks AirWave before 7.7.14 and... |
| CVE-2014-8420 | 2014-11-25 | The ViewPoint web application in Dell SonicWALL Global Management System... |
| CVE-2014-8558 | 2014-11-25 | JExperts Channel Platform 5.0.33_CCB allows remote authenticated users to bypass... |
| CVE-2014-8678 | 2014-11-25 | The ConfigSaveServlet servlet in ManageEngine OpUtils before build 71024 allows... |
| CVE-2014-8001 | 2014-11-25 | Buffer overflow in decode.cpp in Cisco OpenH264 1.2.0 and earlier... |
| CVE-2014-8002 | 2014-11-25 | Use-after-free vulnerability in decode_slice.cpp in Cisco OpenH264 1.2.0 and earlier... |
| CVE-2014-8004 | 2014-11-25 | Cisco IOS XR allows remote attackers to cause a denial... |
| CVE-2014-9031 | 2014-11-25 | Cross-site scripting (XSS) vulnerability in the wptexturize function in WordPress... |
| CVE-2014-9032 | 2014-11-25 | Cross-site scripting (XSS) vulnerability in the media-playlists feature in WordPress... |
| CVE-2014-9033 | 2014-11-25 | Cross-site request forgery (CSRF) vulnerability in wp-login.php in WordPress 3.7.4,... |
| CVE-2014-9034 | 2014-11-25 | wp-includes/class-phpass.php in WordPress before 3.7.5, 3.8.x before 3.8.5, 3.9.x before... |
| CVE-2014-9035 | 2014-11-25 | Cross-site scripting (XSS) vulnerability in Press This in WordPress before... |
| CVE-2014-9036 | 2014-11-25 | Cross-site scripting (XSS) vulnerability in WordPress before 3.7.5, 3.8.x before... |
| CVE-2014-9037 | 2014-11-25 | WordPress before 3.7.5, 3.8.x before 3.8.5, 3.9.x before 3.9.3, and... |
| CVE-2014-9038 | 2014-11-25 | wp-includes/http.php in WordPress before 3.7.5, 3.8.x before 3.8.5, 3.9.x before... |
| CVE-2014-9039 | 2014-11-25 | wp-login.php in WordPress before 3.7.5, 3.8.x before 3.8.5, 3.9.x before... |
| CVE-2014-8439 | 2014-11-25 | Adobe Flash Player before 13.0.0.258 and 14.x and 15.x before... |
| CVE-2014-6093 | 2014-11-26 | Cross-site scripting (XSS) vulnerability in IBM WebSphere Portal 7.0.x before... |
| CVE-2014-6196 | 2014-11-26 | Cross-site scripting (XSS) vulnerability in IBM Web Experience Factory (WEF)... |
| CVE-2014-7247 | 2014-11-26 | Unspecified vulnerability in JustSystems Ichitaro 2008 through 2011; Ichitaro Government... |
| CVE-2014-8005 | 2014-11-26 | Race condition in the lighttpd module in Cisco IOS XR... |
| CVE-2014-8551 | 2014-11-26 | The WinCC server in Siemens SIMATIC WinCC 7.0 through SP3,... |
| CVE-2014-8552 | 2014-11-26 | The WinCC server in Siemens SIMATIC WinCC 7.0 through SP3,... |
| CVE-2014-2037 | 2014-11-26 | Openswan 2.6.40 allows remote attackers to cause a denial of... |
| CVE-2014-6609 | 2014-11-26 | The res_pjsip_pubsub module in Asterisk Open Source 12.x before 12.5.1... |
| CVE-2014-6610 | 2014-11-26 | Asterisk Open Source 11.x before 11.12.1 and 12.x before 12.5.1... |
| CVE-2014-7141 | 2014-11-26 | The pinger in Squid 3.x before 3.4.8 allows remote attackers... |
| CVE-2014-7142 | 2014-11-26 | The pinger in Squid 3.x before 3.4.8 allows remote attackers... |
| CVE-2014-8419 | 2014-11-26 | Wibu-Systems CodeMeter Runtime before 5.20 uses weak permissions (read and... |
| CVE-2014-8962 | 2014-11-26 | Stack-based buffer overflow in stream_decoder.c in libFLAC before 1.3.1 allows... |
| CVE-2014-9028 | 2014-11-26 | Heap-based buffer overflow in stream_decoder.c in libFLAC before 1.3.1 allows... |
| CVE-2014-9093 | 2014-11-26 | LibreOffice before 4.3.5 allows remote attackers to cause a denial... |
| CVE-2014-9094 | 2014-11-26 | Multiple cross-site scripting (XSS) vulnerabilities in deploy/designer/preview.php in the Digital... |
| CVE-2014-9095 | 2014-11-26 | Multiple SQL injection vulnerabilities in Raritan Power IQ 4.1.0 and... |
| CVE-2014-9104 | 2014-11-26 | Multiple cross-site request forgery (CSRF) vulnerabilities in the XML-RPC API... |
| CVE-2014-9096 | 2014-11-26 | Multiple SQL injection vulnerabilities in recover.php in Pligg CMS 2.0.1... |
| CVE-2014-9097 | 2014-11-26 | Multiple SQL injection vulnerabilities in the Apptha WordPress Video Gallery... |
| CVE-2014-9098 | 2014-11-26 | Multiple cross-site scripting (XSS) vulnerabilities in the Apptha WordPress Video... |
| CVE-2014-9099 | 2014-11-26 | Cross-site request forgery (CSRF) vulnerability in the WhyDoWork AdSense plugin... |
| CVE-2014-9100 | 2014-11-26 | Cross-site scripting (XSS) vulnerability in the WhyDoWork AdSense plugin 1.2... |
| CVE-2014-9101 | 2014-11-26 | Multiple cross-site request forgery (CSRF) vulnerabilities in Oxwall 1.7.0 (build... |
| CVE-2014-9102 | 2014-11-26 | Multiple SQL injection vulnerabilities in the Kunena component before 3.0.6... |
| CVE-2014-9103 | 2014-11-26 | Multiple cross-site scripting (XSS) vulnerabilities in the Kunena component before... |
| CVE-2014-5426 | 2014-11-27 | MatrikonOPC OPC Server for DNP3 1.2.3 and earlier allows remote... |
| CVE-2014-3407 | 2014-11-28 | The SSL VPN implementation in Cisco Adaptive Security Appliance (ASA)... |
| CVE-2014-4829 | 2014-11-28 | Cross-site request forgery (CSRF) vulnerability in IBM Security QRadar SIEM... |
| CVE-2014-4831 | 2014-11-28 | IBM Security QRadar SIEM and QRadar Risk Manager 7.1 before... |
| CVE-2014-4832 | 2014-11-28 | IBM Security QRadar SIEM and QRadar Risk Manager 7.1 before... |
| CVE-2014-4883 | 2014-11-28 | resolv.c in the DNS resolver in uIP, and dns.c in... |
| CVE-2014-6075 | 2014-11-28 | IBM Security QRadar SIEM and QRadar Risk Manager 7.1 before... |
| CVE-2014-7178 | 2014-11-28 | Enalean Tuleap before 7.5.99.6 allows remote attackers to execute arbitrary... |
| CVE-2014-7850 | 2014-11-28 | Cross-site scripting (XSS) vulnerability in the Web UI in FreeIPA... |
| CVE-2014-8423 | 2014-11-28 | Unspecified vulnerability in the management portal in ARRIS VAP2500 before... |
| CVE-2014-8424 | 2014-11-28 | ARRIS VAP2500 before FW08.41 does not properly validate passwords, which... |
| CVE-2014-8425 | 2014-11-28 | The management portal in ARRIS VAP2500 before FW08.41 allows remote... |
| CVE-2014-8429 | 2014-11-28 | Cross-site request forgery (CSRF) vulnerability in Xavoc Technocrats xEpan CMS... |
| CVE-2014-8799 | 2014-11-28 | Directory traversal vulnerability in the dp_img_resize function in php/dp-functions.php in... |
| CVE-2014-8801 | 2014-11-28 | Directory traversal vulnerability in services/getfile.php in the Paid Memberships Pro... |
| CVE-2014-8994 | 2014-11-28 | The check_diskio plugin 3.2.6 and earlier for Nagios and Icinga... |
| CVE-2014-9089 | 2014-11-28 | Multiple SQL injection vulnerabilities in view_all_bug_page.php in MantisBT before 1.2.18... |
| CVE-2010-5313 | 2014-11-30 | Race condition in arch/x86/kvm/x86.c in the Linux kernel before 2.6.38... |
| CVE-2014-3688 | 2014-11-30 | The SCTP implementation in the Linux kernel before 3.17.4 allows... |
| CVE-2014-7841 | 2014-11-30 | The sctp_process_param function in net/sctp/sm_make_chunk.c in the SCTP implementation in... |
| CVE-2014-7842 | 2014-11-30 | Race condition in arch/x86/kvm/x86.c in the Linux kernel before 3.17.4... |
| CVE-2014-7843 | 2014-11-30 | The __clear_user function in arch/arm64/lib/clear_user.S in the Linux kernel before... |
| CVE-2014-8884 | 2014-11-30 | Stack-based buffer overflow in the ttusbdecfe_dvbs_diseqc_send_master_cmd function in drivers/media/usb/ttusb-dec/ttusbdecfe.c in... |
| CVE-2014-8989 | 2014-11-30 | The Linux kernel through 3.17.4 does not properly restrict dropping... |
| CVE-2014-9090 | 2014-11-30 | The do_double_fault function in arch/x86/kernel/traps.c in the Linux kernel through... |
| CVE-2014-9150 | 2014-11-30 | Race condition in the MoveFileEx call hook feature in Adobe... |
| CVE-2014-8958 | 2014-11-30 | Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin 4.0.x before 4.0.10.6,... |
| CVE-2014-8959 | 2014-11-30 | Directory traversal vulnerability in libraries/gis/GIS_Factory.class.php in the GIS editor in... |
| CVE-2014-8960 | 2014-11-30 | Cross-site scripting (XSS) vulnerability in libraries/error_report.lib.php in the error-reporting feature... |