| Page(s) : 1 ... 221 222 223 224 225 226 227 228 229 230 [231] 232 233 234 235 236 237 238 239 240 241 ... | Result(s) : 8823 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 3.5 | 2014-04-30 | CVE-2014-2260 | cve | Cross-site scripting (XSS) vulnerability in plugins/main/content/js/ajenti.coffee in Eugene Pankov Ajenti 1.2.13 allows remote authenticated users to inject arbitrary web script... |
| 2.1 | 2014-04-29 | CVE-2013-7273 | cve | GNOME Display Manager (gdm) 3.4.1 and earlier, when disable-user-list is set to true, allows local users to cause a denial of service (unable to login) by pressing the cancel bu... |
| 2.1 | 2014-04-29 | CVE-2013-7064 | cve | Cross-site scripting (XSS) vulnerability in the EU Cookie Compliance module 7.x-1.x before 7.x-1.12 for Drupal allows remote authenticated administrators with the "Administer EU... |
| 2.1 | 2014-04-28 | CVE-2013-4285 | cve | A certain Gentoo patch for the PAM S/Key module does not properly clear credentials from memory, which allows local users to obtain sensitive information by reading system memory. |
| 3.3 | 2014-04-27 | CVE-2010-5105 | cve | The undo save quit routine in the kernel in Blender 2.5, 2.63a, and earlier allows local users to overwrite arbitrary files via a symlink attack on the quit.blend temporary file... |
| 2.1 | 2014-04-26 | CVE-2014-0181 | cve | The Netlink implementation in the Linux kernel through 3.14.1 does not provide a mechanism for authorizing socket operations based on the opener of a socket, which allows local ... |
| 3.5 | 2014-04-25 | CVE-2014-2729 | cve | Cross-site scripting (XSS) vulnerability in content.aspx in Ektron CMS 8.7 before 8.7.0.055 allows remote authenticated users to inject arbitrary web script or HTML via the cate... |
| 3.5 | 2014-04-25 | CVE-2013-3069 | cve | Multiple cross-site scripting (XSS) vulnerabilities in NETGEAR WNDR4700 with firmware 1.0.0.34 allow remote authenticated users to inject arbitrary web script or HTML via the (1... |
| 2.6 | 2014-04-23 | CVE-2014-1647 | cve | Symantec PGP Desktop 10.0.x through 10.2.x and Encryption Desktop Professional 10.3.x before 10.3.2 MP1 do not properly perform block-data moves, which allows remote attackers t... |
| 2.6 | 2014-04-23 | CVE-2014-1646 | cve | Symantec PGP Desktop 10.0.x through 10.2.x and Encryption Desktop Professional 10.3.x before 10.3.2 MP1 do not properly perform memory copies, which allows remote attackers to c... |
| 1.9 | 2014-04-23 | CVE-2014-2893 | cve | The GetHTMLRunDir function in the scan-build utility in Clang 3.5 and earlier allows local users to obtain sensitive information or overwrite arbitrary files via a symlink attac... |
| 3.3 | 2014-04-23 | CVE-2014-1321 | cve | Power Management in Apple OS X 10.9.x through 10.9.2 allows physically proximate attackers to bypass an intended transition into the locked-screen state by touching (1) a key or... |
| 3.3 | 2014-04-22 | CVE-2013-4472 | cve | The openTempFile function in goo/gfile.cc in Xpdf and Poppler 0.24.3 and earlier, when running on a system other than Unix, allows local users to overwrite arbitrary files via a... |
| 3.3 | 2014-04-22 | CVE-2013-4116 | cve | lib/npm.js in Node Packaged Modules (npm) before 1.3.3 allows local users to overwrite arbitrary files via a symlink attack on temporary files with predictable names that are cr... |
| 3.3 | 2014-04-22 | CVE-2013-2105 | cve | The Show In Browser (show_in_browser) gem 0.0.3 for Ruby allows local users to inject arbitrary web script or HTML via a symlink attack on /tmp/browser.html. |
| 3.5 | 2014-04-21 | CVE-2014-0932 | cve | Cross-site scripting (XSS) vulnerability in IBM Sterling Order Management 8.5 before HF105 and Sterling Selling and Fulfillment Foundation 9.0 before HF85 allows remote authenti... |
| 3 | 2014-04-21 | CVE-2014-0361 | cve | The default configuration of IBM 4690 OS, as used in Toshiba Global Commerce Solutions 4690 POS and other products, hashes passwords with the ADXCRYPT algorithm, which makes it ... |
| 3.8 | 2014-04-19 | CVE-2013-6219 | cve | Unspecified vulnerability in HP HP-UX Whitelisting (aka WLI) before A.01.02.02 on HP-UX B.11.31 allows local users to bypass intended access restrictions via unknown vectors. |
| 3.5 | 2014-04-18 | CVE-2014-2844 | cve | Cross-site scripting (XSS) vulnerability in F-Secure Messaging Secure Gateway 7.5.0 before Patch 1862 allows remote authenticated administrators to inject arbitrary web script o... |
| 3.5 | 2014-04-18 | CVE-2014-2289 | cve | res/res_pjsip_exten_state.c in the PJSIP channel driver in Asterisk Open Source 12.x before 12.1.0 allows remote authenticated users to cause a denial of service (crash) via a S... |
| Page(s) : 1 ... 221 222 223 224 225 226 227 228 229 230 [231] 232 233 234 235 236 237 238 239 240 241 ... | Result(s) : 8823 |
