| Page(s) : 1 ... 233 234 235 236 237 238 239 240 241 242 [243] 244 245 246 247 248 249 250 251 252 253 ... | Result(s) : 9846 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 2.1 | 2014-06-20 | CVE-2014-4506 | cve | Cross-site scripting (XSS) vulnerability in the Custom Meta module 6.x-1.x before 6.x-1.2 and 7.x-1.x before 7.x-1.3 for Drupal allows remote authenticated users with the "admin... |
| 2.7 | 2014-06-18 | CVE-2014-4021 | cve | Xen 3.2.x through 4.4.x does not properly clean memory pages recovered from guests, which allows local guest OS users to obtain sensitive information via unspecified vectors. |
| 2.3 | 2014-06-18 | CVE-2014-1652 | cve | Multiple cross-site scripting (XSS) vulnerabilities in the management console in Symantec Web Gateway (SWG) before 5.2 allow remote authenticated users to inject arbitrary web s... |
| 3.5 | 2014-06-18 | USN-2249-1 | Ubuntu | OpenStack Heat vulnerability |
| 2.1 | 2014-06-18 | CVE-2014-4303 | cve | Multiple cross-site scripting (XSS) vulnerabilities in the Touch theme 7.x-1.x before 7.x-1.9 for Drupal allow remote authenticated users with the Administer themes permission t... |
| 3.5 | 2014-06-18 | CVE-2014-3013 | cve | Multiple cross-site scripting (XSS) vulnerabilities in IBM Curam Social Program Management 4.5 SP10 through 6.0.5.4 allow remote authenticated users to inject arbitrary web scri... |
| 3.5 | 2014-06-18 | CVE-2014-3012 | cve | Multiple CRLF injection vulnerabilities in IBM Curam Social Program Management 5.2 SP1 through 6.0.5.4 allow remote authenticated users to inject arbitrary HTTP headers and cond... |
| 2.6 | 2014-06-18 | CVE-2014-2000 | cve | The NTT 050 plus application before 4.2.1 for Android allows attackers to obtain sensitive information by leveraging the ability to read system log files. |
| 3.5 | 2014-06-18 | CVE-2014-0910 | cve | Cross-site scripting (XSS) vulnerability in IBM WebSphere Portal 6.1.0.0 through 6.1.0.6 CF27, 6.1.5.0 through 6.1.5.3 CF27, and 7.0.0 through 7.0.0.2 CF28 allows remote authent... |
| 2.1 | 2014-06-17 | CVE-2014-4039 | cve | ppc64-diag 2.6.1 uses 0775 permissions for /tmp/diagSEsnap and does not properly restrict permissions for /tmp/diagSEsnap/snapH.tar.gz, which allows local users to obtain sensit... |
| 2.6 | 2014-06-12 | DSA-2957 | Debian | mediawiki security update |
| 2.9 | 2014-06-11 | CVE-2014-3970 | cve | The pa_rtp_recv function in modules/rtp/rtp.c in the module-rtp-recv module in PulseAudio 5.0 and earlier allows remote attackers to cause a denial of service (assertion failure... |
| 3.7 | 2014-06-11 | MDVSA-2014:122 | Mandriva | Updated chkrootkit package fixes security vulnerability: The chkrootkit script contains a flaw that allows a local attacker to create an executable in /tmp that will be run b... |
| 3.3 | 2014-06-11 | CVE-2014-0249 | cve | The System Security Services Daemon (SSSD) 1.11.6 does not properly identify group membership when a non-POSIX group is in a group membership chain, which allows local users to ... |
| 2.1 | 2014-06-10 | CVE-2014-3873 | cve | The ktrace utility in the FreeBSD kernel 8.4 before p11, 9.1 before p14, 9.2 before p7, and 9.3-BETA1 before p1 uses an incorrect page fault kernel trace entry size, which allow... |
| 2.6 | 2014-06-10 | MDVSA-2014:119 | Mandriva | Updated mediawiki packages fix security vulnerability: XSS vulnerability in MediaWiki before 1.22.7, due to usernames on Special:PasswordReset being parsed as wikitext. The u... |
| 3.3 | 2014-06-10 | MDVSA-2014:118 | Mandriva | Updated emacs packages fix security vulnerabilities: Steve Kemp discovered multiple temporary file handling issues in Emacs. A local attacker could use these flaws to perform... |
| 2.1 | 2014-06-09 | CVE-2013-6223 | cve | LiveZilla before 5.1.1.0 stores the admin Base64 encoded username and password in a 1click file, which allows local users to obtain access by reading the file. |
| 2.1 | 2014-06-09 | CVE-2013-2562 | cve | Mambo CMS 4.6.5 stores the MySQL database password in cleartext in the document root, which allows local users to obtain sensitive information via unspecified vectors. |
| 2.1 | 2014-06-09 | CVE-2013-2563 | cve | Mambo CMS 4.6.5 uses world-readable permissions on configuration.php, which allows local users to obtain the admin password hash by reading the file. |
| Page(s) : 1 ... 233 234 235 236 237 238 239 240 241 242 [243] 244 245 246 247 248 249 250 251 252 253 ... | Result(s) : 9846 |
