Click to open the Alert Filter

 
Year Month
Severity
Categories
Search by Alert Name
Page(s) : 1 2 3 [4] 5 6 7 8 9 10 11 12 13 14 ...Result(s) : 39343

Alerts Feed Alerts

DateNameCategoriesDetail
6.42014-10-23DSA-3055Debian pidgin security update
6.82014-10-23CVE-2014-8073cve Cross-site request forgery (CSRF) vulnerability in OpenMRS 2.1 Standalone Edition allows remote attackers to hijack the authentication of administrators for requests that add a ...
42014-10-23CVE-2014-8072cve The administration module in OpenMRS 2.1 Standalone Edition allows remote authenticated users to obtain read access via a direct request to /admin.
4.32014-10-23CVE-2014-8071cve Multiple cross-site scripting (XSS) vulnerabilities in OpenMRS 2.1 Standalone Edition allow remote attackers to inject arbitrary web script or HTML via the (1) givenName, (2) fa...
5.82014-10-23CVE-2014-7292cve Open redirect vulnerability in the Click-Through feature in Newtelligence dasBlog 2.1 (2.1.8102.813), 2.2 (2.2.8279.16125), and 2.3 (2.3.9074.18820) allows remote attackers to r...
6.82014-10-23CVE-2014-7281cve Cross-site request forgery (CSRF) vulnerability in Shenzhen Tenda Technology Tenda A32 Router with firmware 5.07.53_CN allows remote attackers to hijack the authentication of ad...
5.82014-10-23CVE-2014-2230cve Open redirect vulnerability in the header function in adclick.php in OpenX 2.8.10 and earlier allows remote attackers to redirect users to arbitrary web sites and conduct phishi...
6.92014-10-23CVE-2014-0619cve Untrusted search path vulnerability in Hamster Free ZIP Archiver 2.0.1.7 allows local users to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse dwmapi...
52014-10-22CVE-2014-4766cve IBM Sametime Classic Meeting Server 8.0.x and 8.5.x allows remote attackers to obtain sensitive information by reading an exported Record and Playback (RAP) file.
52014-10-22VMSA-2014-0011VMware VMware vSphere Data Protection product update addresses a critical information disclosure vulnerability
52014-10-22CVE-2014-8764cve DokuWiki 2014-05-05a and earlier, when using Active Directory for LDAP authentication, allows remote attackers to bypass authentication via a user name and password starting wit...
52014-10-22CVE-2014-8763cve DokuWiki before 2014-05-05b, when using Active Directory for LDAP authentication, allows remote attackers to bypass authentication via a password starting with a null (\0) chara...
52014-10-22CVE-2014-8762cve The ajax_mediadiff function in DokuWiki before 2014-05-05a allows remote attackers to access arbitrary images via a crafted namespace in the ns parameter.
52014-10-22CVE-2014-8761cve inc/template.php in DokuWiki before 2014-05-05a only checks for access to the root namespace, which allows remote attackers to access arbitrary images via a media file details a...
4.32014-10-22CVE-2014-8381cve Multiple cross-site scripting (XSS) vulnerabilities in Megapolis.Portal Manager allow remote attackers to inject arbitrary web script or HTML via the (1) dateFrom or (2) dateTo ...
52014-10-22CVE-2014-8088cve The (1) Zend_Ldap class in Zend before 1.12.9 and (2) Zend\Ldap component in Zend 2.x before 2.2.8 and 2.3.x before 2.3.3 allows remote attackers to bypass authentication via a ...
52014-10-22CVE-2014-7968cve VDSM allows remote attackers to cause a denial of service (connection blocking) by keeping an SSL connection open.
4.32014-10-22CVE-2014-7183cve Multiple cross-site scripting (XSS) vulnerabilities in the search.php in LiteCart 1.1.2.1 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) q...
4.32014-10-22CVE-2014-7182cve Multiple cross-site scripting (XSS) vulnerabilities in the WP Google Maps plugin before 6.0.27 for WordPress allow remote attackers to inject arbitrary web script or HTML via th...
52014-10-22CVE-2014-6387cve gpc_api.php in MantisBT 1.2.17 and earlier allows remote attackers to bypass authenticated via a password starting will a null byte, which triggers an unauthenticated bind.
Page(s) : 1 2 3 [4] 5 6 7 8 9 10 11 12 13 14 ...Result(s) : 39343