| Page(s) : 1 2 3 [4] 5 6 7 8 9 10 11 12 13 14 ... | Result(s) : 35558 |
Alerts
| Date | Name | Categories | Detail | |
|---|---|---|---|---|
| 6.5 | 2014-03-02 | CVE-2014-2088 | cve | Unrestricted file upload vulnerability in ilias.php in ILIAS 4.4.1 allows remote authenticated users to execute arbitrary PHP code by using a .php filename in an upload_files ac... |
| 5 | 2014-03-02 | DSA-2868 | Debian | php5 security update |
| 4.3 | 2014-03-01 | CVE-2014-2244 | cve | Cross-site scripting (XSS) vulnerability in the formatHTML function in includes/api/ApiFormatBase.php in MediaWiki before 1.19.12, 1.20.x and 1.21.x before 1.21.6, and 1.22.x be... |
| 5.8 | 2014-03-01 | CVE-2014-2243 | cve | includes/User.php in MediaWiki before 1.19.12, 1.20.x and 1.21.x before 1.21.6, and 1.22.x before 1.22.3 terminates validation of a user token upon encountering the first incorr... |
| 4.3 | 2014-03-01 | CVE-2014-2242 | cve | includes/upload/UploadBase.php in MediaWiki before 1.19.12, 1.20.x and 1.21.x before 1.21.6, and 1.22.x before 1.22.3 does not prevent use of invalid namespaces in SVG files, wh... |
| 4.3 | 2014-03-01 | CVE-2014-2104 | cve | Multiple cross-site scripting (XSS) vulnerabilities in the Business Voice Services Manager (BVSM) page in Cisco Unified Communications Domain Manager 9.0(.1) allow remote attack... |
| 6.8 | 2014-03-01 | CVE-2014-2099 | cve | The msrle_decode_frame function in libavcodec/msrle.c in FFmpeg before 2.1.4 does not properly calculate line sizes, which allows remote attackers to cause a denial of service (... |
| 6.8 | 2014-03-01 | CVE-2014-2098 | cve | libavcodec/wmalosslessdec.c in FFmpeg before 2.1.4 uses an incorrect data-structure size for certain coefficients, which allows remote attackers to cause a denial of service (me... |
| 6.8 | 2014-03-01 | CVE-2014-2097 | cve | The tak_decode_frame function in libavcodec/takdec.c in FFmpeg before 2.1.4 does not properly validate a certain bits-per-sample value, which allows remote attackers to cause a ... |
| 4.3 | 2014-03-01 | CVE-2013-4054 | cve | Directory traversal vulnerability in WMQ Telemetry in IBM WebSphere MQ 7.5 before 7.5.0.3 allows remote attackers to read arbitrary files via a crafted URI. |
| 4.3 | 2014-02-28 | CVE-2014-2080 | cve | Cross-site scripting (XSS) vulnerability in manager/templates/default/header.tpl in ModX Evolution before 2.2.11 allows remote attackers to inject arbitrary web script or HTML v... |
| 6.5 | 2014-02-28 | CVE-2014-2059 | cve | Directory traversal vulnerability in the CLI job creation (hudson/cli/CreateJobCommand.java) in CloudBees Jenkins before 1.551 and LTS before 1.532.2 allows remote authenticated... |
| 4.3 | 2014-02-28 | CVE-2014-1888 | cve | Cross-site scripting (XSS) vulnerability in the BuddyPress plugin before 1.9.2 for WordPress allows remote authenticated users to inject arbitrary web script or HTML via the nam... |
| 5 | 2014-02-28 | CVE-2014-1878 | cve | Stack-based buffer overflow in the cmd_submitf function in cgi/cmd.c in Nagios Core, possibly 4.0.3rc1 and earlier, and Icinga before 1.8.6, 1.9 before 1.9.5, and 1.10 before 1.... |
| 4.3 | 2014-02-28 | CVE-2014-1695 | cve | Cross-site scripting (XSS) vulnerability in Open Ticket Request System (OTRS) 3.1.x before 3.1.20, 3.2.x before 3.2.15, and 3.3.x before 3.3.5 allows remote attackers to inject ... |
| 4.3 | 2014-02-28 | CVE-2014-1456 | cve | Cross-site scripting (XSS) vulnerability in the login page in Open Web Analytics (OWA) before 1.5.6 allows remote attackers to inject arbitrary web script or HTML via the owa_us... |
| 4.9 | 2014-02-28 | CVE-2014-2039 | cve | arch/s390/kernel/head64.S in the Linux kernel before 3.13.5 on the s390 platform does not properly handle attempted use of the linkage stack, which allows local users to cause a... |
| 4.4 | 2014-02-28 | CVE-2014-1874 | cve | The security_context_to_sid_core function in security/selinux/ss/services.c in the Linux kernel before 3.13.4 allows local users to cause a denial of service (system crash) by l... |
| 6.9 | 2014-02-28 | CVE-2014-0774 | cve | Stack-based buffer overflow in the C++ sample client in Schneider Electric OPC Factory Server (OFS) TLXCDSUOFS33 - 3.35, TLXCDSTOFS33 - 3.35, TLXCDLUOFS33 - 3.35, TLXCDLTOFS33 -... |
| 6.9 | 2014-02-28 | CVE-2014-0759 | cve | Unquoted Windows search path vulnerability in Schneider Electric Floating License Manager 1.0.0 through 1.4.0 allows local users to gain privileges via a Trojan horse applicatio... |
| Page(s) : 1 2 3 [4] 5 6 7 8 9 10 11 12 13 14 ... | Result(s) : 35558 |
