Lista CVE - 2014 / Dicembre
Visualizzazione 101 - 200 di 614 CVE per Dicembre 2014 (Pagina 2 di 7)
| ID CVE | Data | Titolo |
|---|---|---|
| CVE-2014-7258 | 2014-12-05 | Cross-site scripting (XSS) vulnerability in KENT-WEB Clip Board 2.91 and... |
| CVE-2014-7259 | 2014-12-05 | SQUARE ENIX Co., Ltd. Kaku-San-Sei Million Arthur before 2.25 for... |
| CVE-2014-8877 | 2014-12-05 | The alterSearchQuery function in lib/controllers/CmdownloadController.php in the CreativeMinds CM Downloads... |
| CVE-2014-9292 | 2014-12-05 | Server-side request forgery (SSRF) vulnerability in proxy.php in the jRSS... |
| CVE-2014-3099 | 2014-12-06 | Unspecified vulnerability in the Security component in IBM Systems Director... |
| CVE-2014-4629 | 2014-12-06 | EMC Documentum Content Server 7.0, 7.1 before 7.1 P10, and... |
| CVE-2014-5429 | 2014-12-06 | DNP Master Driver 3.02 and earlier in Elipse SCADA 2.29... |
| CVE-2014-6140 | 2014-12-06 | IBM Tivoli Endpoint Manager Mobile Device Management (MDM) before 9.0.60100... |
| CVE-2014-7251 | 2014-12-06 | XML external entity (XXE) vulnerability in the WebHMI server in... |
| CVE-2014-9278 | 2014-12-06 | The OpenSSH server, as used in Fedora and Red Hat... |
| CVE-2014-8651 | 2014-12-06 | The KDE Clock KCM policykit helper in kde-workspace before 4.11.14... |
| CVE-2014-9117 | 2014-12-06 | MantisBT before 1.2.18 uses the public_key parameter value as the... |
| CVE-2014-8868 | 2014-12-07 | EntryPass N5200 Active Network Control Panel does not properly restrict... |
| CVE-2014-9303 | 2014-12-07 | EntryPass N5200 Active Network Control Panel allows remote attackers to... |
| CVE-2014-9300 | 2014-12-07 | Cross-site request forgery (CSRF) vulnerability in the cmisbrowser servlet in... |
| CVE-2014-9301 | 2014-12-07 | Server-side request forgery (SSRF) vulnerability in the proxy servlet in... |
| CVE-2014-9302 | 2014-12-07 | Server-side request forgery (SSRF) vulnerability in the cmisbrowser servlet in... |
| CVE-2014-9304 | 2014-12-07 | Plex Media Server before 0.9.9.3 allows remote attackers to bypass... |
| CVE-2013-2810 | 2014-12-08 | Emerson Process Management ROC800 RTU with software 3.50 and earlier,... |
| CVE-2014-1693 | 2014-12-08 | Multiple CRLF injection vulnerabilities in the FTP module in Erlang/OTP... |
| CVE-2014-3616 | 2014-12-08 | nginx 0.5.6 through 1.7.4, when using the same shared ssl_session_cache... |
| CVE-2014-3797 | 2014-12-08 | Cross-site scripting (XSS) vulnerability in VMware vCenter Server Appliance (vCSA)... |
| CVE-2014-4631 | 2014-12-08 | RSA Adaptive Authentication (On-Premise) 6.0.2.1 through 7.1 P3, when using... |
| CVE-2014-4880 | 2014-12-08 | Buffer overflow in Hikvision DVR DS-7204 Firmware 2.2.10 build 131009,... |
| CVE-2014-8371 | 2014-12-08 | VMware vCenter Server Appliance (vCSA) 5.5 before Update 2, 5.1... |
| CVE-2014-8600 | 2014-12-08 | Multiple cross-site scripting (XSS) vulnerabilities in KDE-Runtime 4.14.3 and earlier,... |
| CVE-2014-9217 | 2014-12-08 | Graylog2 before 0.92 allows remote attackers to bypass LDAP authentication... |
| CVE-2014-9218 | 2014-12-08 | libraries/common.inc.php in phpMyAdmin 4.0.x before 4.0.10.7, 4.1.x before 4.1.14.8, and... |
| CVE-2014-9219 | 2014-12-08 | Cross-site scripting (XSS) vulnerability in the redirection feature in url.php... |
| CVE-2014-9342 | 2014-12-08 | Cross-site scripting (XSS) vulnerability in the tree view (pl_tree.php) feature... |
| CVE-2014-5462 | 2014-12-08 | Multiple SQL injection vulnerabilities in OpenEMR 4.1.2 (Patch 7) and... |
| CVE-2014-8106 | 2014-12-08 | Heap-based buffer overflow in the Cirrus VGA emulator (hw/display/cirrus_vga.c) in... |
| CVE-2014-9029 | 2014-12-08 | Multiple off-by-one errors in the (1) jpc_dec_cp_setfromcox and (2) jpc_dec_cp_setfromrgn... |
| CVE-2014-9130 | 2014-12-08 | scanner.c in LibYAML 0.1.5 and 0.1.6, as used in the... |
| CVE-2014-9263 | 2014-12-08 | Multiple buffer overflows in the PocketNetNVRMediaClientAxCtrl.NVRMediaViewer.1 control in 3S Pocketnet... |
| CVE-2014-9265 | 2014-12-08 | Stack-based buffer overflow in the BackupToAvi method in the CNC_Ctrl... |
| CVE-2014-9266 | 2014-12-08 | The STWConfig ActiveX control in Samsung SmartViewer does not properly... |
| CVE-2014-9267 | 2014-12-08 | Heap-based buffer overflow in the PTC IsoView ActiveX control allows... |
| CVE-2014-9268 | 2014-12-08 | The AdView.AdViewer.1 ActiveX control in Autodesk Design Review (ADR) before... |
| CVE-2014-9270 | 2014-12-08 | Cross-site scripting (XSS) vulnerability in the projax_array_serialize_for_autocomplete function in core/projax_api.php... |
| CVE-2014-9273 | 2014-12-08 | lib/handle.c in Hivex before 1.3.11 allows local users to execute... |
| CVE-2014-9279 | 2014-12-08 | The print_test_result function in admin/upgrade_unattended.php in MantisBT 1.1.0a3 through 1.2.x... |
| CVE-2014-9280 | 2014-12-08 | The current_user_get_bug_filter function in core/current_user_api.php in MantisBT before 1.2.18 allows... |
| CVE-2014-9305 | 2014-12-08 | SQL injection vulnerability in the shortcodeProductsTable function in models/Cart66Ajax.php in... |
| CVE-2014-9343 | 2014-12-08 | Open redirect vulnerability in modules/system/controller/selectlanguage.class.php in Snowfox CMS 1.0 allows... |
| CVE-2014-9344 | 2014-12-08 | Cross-site request forgery (CSRF) vulnerability in Snowfox CMS before 1.0.10... |
| CVE-2014-9346 | 2014-12-08 | Multiple cross-site scripting (XSS) vulnerabilities in the Hierarchical Select module... |
| CVE-2014-9347 | 2014-12-08 | SQL injection vulnerability in dosearch.php in phpMyRecipes 1.2.2 allows remote... |
| CVE-2014-9348 | 2014-12-08 | SQL injection vulnerability in the formulaireRobot function in admin/robots.lib.php in... |
| CVE-2014-9349 | 2014-12-08 | Multiple cross-site scripting (XSS) vulnerabilities in admin/robots.lib.php in RobotStats 1.0... |
| CVE-2014-9350 | 2014-12-08 | TP-Link TL-WR740N 4 with firmware 3.17.0 Build 140520, 3.16.6 Build... |
| CVE-2014-9345 | 2014-12-08 | SQL injection vulnerability in Guruperl.net Advertise With Pleasure! Professional (aka... |
| CVE-2014-8484 | 2014-12-09 | The srec_scan function in bfd/srec.c in libdbfd in GNU binutils... |
| CVE-2014-8485 | 2014-12-09 | The setup_group function in bfd/elf.c in libbfd in GNU binutils... |
| CVE-2014-8501 | 2014-12-09 | The _bfd_XXi_swap_aouthdr_in function in bfd/peXXigen.c in GNU binutils 2.24 and... |
| CVE-2014-8502 | 2014-12-09 | Heap-based buffer overflow in the pe_print_edata function in bfd/peXXigen.c in... |
| CVE-2014-8503 | 2014-12-09 | Stack-based buffer overflow in the ihex_scan function in bfd/ihex.c in... |
| CVE-2014-8504 | 2014-12-09 | Stack-based buffer overflow in the srec_scan function in bfd/srec.c in... |
| CVE-2014-8737 | 2014-12-09 | Multiple directory traversal vulnerabilities in GNU binutils 2.24 and earlier... |
| CVE-2014-9065 | 2014-12-09 | common/spinlock.c in Xen 4.4.x and earlier does not properly handle... |
| CVE-2014-9066 | 2014-12-09 | Xen 4.4.x and earlier, when using a large number of... |
| CVE-2014-9274 | 2014-12-09 | UnRTF allows remote attackers to cause a denial of service... |
| CVE-2014-9275 | 2014-12-09 | UnRTF allows remote attackers to cause a denial of service... |
| CVE-2014-9281 | 2014-12-09 | Cross-site scripting (XSS) vulnerability in admin/copy_field.php in MantisBT before 1.2.18... |
| CVE-2014-9316 | 2014-12-09 | The mjpeg_decode_app function in libavcodec/mjpegdec.c in FFMpeg before 2.1.6, 2.2.x... |
| CVE-2014-9317 | 2014-12-09 | The decode_ihdr_chunk function in libavcodec/pngdec.c in FFMpeg before 2.1.6, 2.2.x... |
| CVE-2014-9318 | 2014-12-09 | The raw_decode function in libavcodec/rawdec.c in FFMpeg before 2.1.6, 2.2.x... |
| CVE-2014-9319 | 2014-12-09 | The ff_hevc_decode_nal_sps function in libavcodec/hevc_ps.c in FFMpeg before 2.1.6, 2.2.x... |
| CVE-2014-9352 | 2014-12-09 | Cross-site scripting (XSS) vulnerability in the mail administration login panel... |
| CVE-2014-9351 | 2014-12-09 | engine/server/server.cpp in Teeworlds 0.6.x before 0.6.3 allows remote attackers to... |
| CVE-2014-8496 | 2014-12-10 | Digicom DG-5514T ADSL router with firmware 3.2 generates predictable session... |
| CVE-2014-8730 | 2014-12-10 | The SSL profiles component in F5 BIG-IP LTM, APM, and... |
| CVE-2014-8488 | 2014-12-10 | Cross-site scripting (XSS) vulnerability in the administrator panel in Yourls... |
| CVE-2014-7807 | 2014-12-10 | Apache CloudStack 4.3.x before 4.3.2 and 4.4.x before 4.4.2 allows... |
| CVE-2014-7809 | 2014-12-10 | Apache Struts 2.0.0 through 2.3.x before 2.3.20 uses predictable <s:token/>... |
| CVE-2014-8091 | 2014-12-10 | X.Org X Window System (aka X11 and X) X11R5 and... |
| CVE-2014-8092 | 2014-12-10 | Multiple integer overflows in X.Org X Window System (aka X11... |
| CVE-2014-8093 | 2014-12-10 | Multiple integer overflows in the GLX extension in XFree86 4.0,... |
| CVE-2014-8094 | 2014-12-10 | Integer overflow in the ProcDRI2GetBuffers function in the DRI2 extension... |
| CVE-2014-8095 | 2014-12-10 | The XInput extension in X.Org X Window System (aka X11... |
| CVE-2014-8096 | 2014-12-10 | The SProcXCMiscGetXIDList function in the XC-MISC extension in X.Org X... |
| CVE-2014-8097 | 2014-12-10 | The DBE extension in X.Org X Window System (aka X11... |
| CVE-2014-8098 | 2014-12-10 | The GLX extension in XFree86 4.0, X.Org X Window System... |
| CVE-2014-8099 | 2014-12-10 | The XVideo extension in XFree86 4.0.0, X.Org X Window System... |
| CVE-2014-8100 | 2014-12-10 | The Render extension in XFree86 4.0.1, X.Org X Window System... |
| CVE-2014-8101 | 2014-12-10 | The RandR extension in XFree86 4.2.0, X.Org X Window System... |
| CVE-2014-8102 | 2014-12-10 | The SProcXFixesSelectSelectionInput function in the XFixes extension in X.Org X... |
| CVE-2014-8103 | 2014-12-10 | X.Org Server (aka xserver and xorg-server) 1.15.0 through 1.16.x before... |
| CVE-2014-8298 | 2014-12-10 | The NVIDIA Linux Discrete GPU drivers before R304.125, R331.x before... |
| CVE-2014-8601 | 2014-12-10 | PowerDNS Recursor before 3.6.2 does not limit delegation chaining, which... |
| CVE-2014-9091 | 2014-12-10 | Icecast before 2.4.0 does not change the supplementary group privileges... |
| CVE-2014-9120 | 2014-12-10 | Cross-site scripting (XSS) vulnerability in Subrion CMS before 3.2.3 allows... |
| CVE-2014-9360 | 2014-12-10 | XML external entity (XXE) vulnerability in Scalix Web Access 11.4.6.12377... |
| CVE-2014-7866 | 2014-12-10 | Multiple directory traversal vulnerabilities in ZOHO ManageEngine OpManager 8 (build... |
| CVE-2014-9361 | 2014-12-10 | The LoginToboggan module 7.x-1.x before 7.x-1.4 for Drupal does not... |
| CVE-2014-9362 | 2014-12-10 | Cross-site scripting (XSS) vulnerability in the path-based meta tag editing... |
| CVE-2014-9363 | 2014-12-10 | Open redirect vulnerability in the path-based meta tag editing form... |
| CVE-2014-9364 | 2014-12-10 | Cross-site scripting (XSS) vulnerability in the Unified Login form in... |
| CVE-2014-0580 | 2014-12-10 | Adobe Flash Player before 13.0.0.259 and 14.x through 16.x before... |
| CVE-2014-0587 | 2014-12-10 | Adobe Flash Player before 13.0.0.259 and 14.x through 16.x before... |