| Page(s) : 1 ... 224 225 226 227 228 229 230 231 232 233 [234] 235 236 237 238 239 240 241 242 243 244 ... | Result(s) : 8823 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 3.5 | 2014-03-25 | CVE-2014-0884 | cve | Cross-site scripting (XSS) vulnerability in the Admin Web UI in IBM Lotus Protector for Mail Security 2.8.x before 2.8.1-22905 allows remote authenticated users to inject arbitr... |
| 2.3 | 2014-03-25 | CVE-2014-2573 | cve | The VMWare driver in OpenStack Compute (Nova) 2013.2 through 2013.2.2 does not properly put VMs into RESCUE status, which allows remote authenticated users to bypass the quota l... |
| 1.9 | 2014-03-25 | CVE-2014-1515 | cve | Mozilla Firefox before 28.0.1 on Android processes a file: URL by copying a local file onto the SD card, which allows attackers to obtain sensitive information from the Firefox ... |
| 1.9 | 2014-03-25 | CVE-2014-0076 | cve | The Montgomery ladder implementation in OpenSSL through 1.0.0l does not ensure that certain swap operations have a constant-time behavior, which makes it easier for local users ... |
| 2.6 | 2014-03-25 | CVE-2013-5951 | cve | Multiple cross-site scripting (XSS) vulnerabilities in eXtplorer 2.1.3, when used as a component for Joomla!, allow remote attackers to inject arbitrary web script or HTML via t... |
| 3.5 | 2014-03-24 | CVE-2014-2571 | cve | Cross-site scripting (XSS) vulnerability in the quiz_question_tostring function in mod/quiz/editlib.php in Moodle through 2.3.11, 2.4.x before 2.4.9, 2.5.x before 2.5.5, and 2.6... |
| 2.9 | 2014-03-24 | CVE-2014-2568 | cve | Use-after-free vulnerability in the nfqnl_zcopy function in net/netfilter/nfnetlink_queue_core.c in the Linux kernel through 3.13.6 allows attackers to obtain sensitive informat... |
| 2.9 | 2014-03-24 | CVE-2014-0131 | cve | Use-after-free vulnerability in the skb_segment function in net/core/skbuff.c in the Linux kernel through 3.13.6 allows attackers to obtain sensitive information from kernel mem... |
| 3.5 | 2014-03-21 | CVE-2013-6729 | cve | Cross-site scripting (XSS) vulnerability in IBM QuickFile 1.0.0.0 before iFix 4 and 1.1.0.1 before iFix 3 allows remote authenticated users to inject arbitrary web script or HTM... |
| 3.5 | 2014-03-21 | CVE-2011-3199 | cve | Multiple cross-site scripting (XSS) vulnerabilities in Domain Technologie Control (DTC) before 0.34.1 allow remote authenticated users to inject arbitrary web script or HTML via... |
| 2.1 | 2014-03-21 | CVE-2011-3198 | cve | Domain Technologie Control (DTC) before 0.34.1 includes a password in the -b command line argument to htpasswd, which might allow local users to read the password by listing the... |
| 2.1 | 2014-03-21 | CVE-2011-3196 | cve | The setup script in Domain Technologie Control (DTC) before 0.34.1 uses world-readable permissions for /etc/apache2/apache2.conf, which allows local users to obtain the dtcdaemo... |
| 2.6 | 2014-03-19 | CVE-2014-1504 | cve | The session-restore feature in Mozilla Firefox before 28.0 and SeaMonkey before 2.25 does not consider the Content Security Policy of a data: URL, which makes it easier for remo... |
| 3.5 | 2014-03-16 | CVE-2014-0850 | cve | Cross-site scripting (XSS) vulnerability in IBM InfoSphere Master Data Management Reference Data Management (RDM) Hub 10.1 and 11.0 before 11.0.0.0-MDM-IF008 allows remote authe... |
| 3.5 | 2014-03-14 | CVE-2014-2291 | cve | Cross-site scripting (XSS) vulnerability in the Pulse Collaboration (Secure Meeting) user pages in Juniper Junos Pulse Secure Access Service (aka SSL VPN) with IVE OS before 7.1... |
| 1.9 | 2014-03-14 | CVE-2014-1281 | cve | Photos Backend in Apple iOS before 7.1 does not properly manage the asset-library cache during deletions, which allows physically proximate attackers to obtain sensitive photo d... |
| 2.1 | 2014-03-14 | CVE-2014-1279 | cve | Apple TV before 6.1 does not properly restrict logging, which allows local users to obtain sensitive information by reading log data. |
| 2.1 | 2014-03-14 | CVE-2014-1274 | cve | FaceTime in Apple iOS before 7.1 allows physically proximate attackers to obtain sensitive FaceTime contact information by using the lock screen for an invalid FaceTime call. |
| 1.9 | 2014-03-14 | CVE-2014-0017 | cve | The RAND_bytes function in libssh before 0.6.3, when forking is enabled, does not properly reset the state of the OpenSSL pseudo-random number generator (PRNG), which causes the... |
| 3.5 | 2014-03-14 | CVE-2013-2150 | cve | Multiple cross-site scripting (XSS) vulnerabilities in js/viewer.js in ownCloud before 4.5.12 and 5.x before 5.0.7 allow remote attackers to inject arbitrary web script or HTML ... |
| Page(s) : 1 ... 224 225 226 227 228 229 230 231 232 233 [234] 235 236 237 238 239 240 241 242 243 244 ... | Result(s) : 8823 |
