CVE List - 2014 / January
Showing 1 - 100 of 558 CVEs for January 2014 (Page 1 of 6)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2013-6450 | 2014-01-01 | The DTLS retransmission implementation in OpenSSL 1.0.0 before 1.0.0l and... |
| CVE-2013-5211 | 2014-01-02 | The monlist feature in ntp_request.c in ntpd in NTP before... |
| CVE-2013-5385 | 2014-01-02 | The OSPF implementation in IBM i 6.1 and 7.1, in... |
| CVE-2013-7222 | 2014-01-02 | config/initializers/secret_token.rb in Fat Free CRM before 0.12.1 has a fixed... |
| CVE-2013-7223 | 2014-01-02 | Multiple cross-site request forgery (CSRF) vulnerabilities in Fat Free CRM... |
| CVE-2013-7224 | 2014-01-02 | Fat Free CRM before 0.12.1 does not restrict JSON serialization,... |
| CVE-2013-7225 | 2014-01-02 | Multiple SQL injection vulnerabilities in app/controllers/home_controller.rb in Fat Free CRM... |
| CVE-2013-7249 | 2014-01-02 | Fat Free CRM before 0.12.1 does not restrict XML serialization,... |
| CVE-2013-7250 | 2014-01-02 | Cross-site scripting (XSS) vulnerability in the JsonBuilder implementation in ProjectForge... |
| CVE-2013-7251 | 2014-01-02 | Multiple cross-site request forgery (CSRF) vulnerabilities in ProjectForge before 5.3... |
| CVE-2011-5269 | 2014-01-02 | Cross-site scripting (XSS) vulnerability in ProjectForge before 3.5.3 allows remote... |
| CVE-2013-6991 | 2014-01-02 | Cross-site scripting (XSS) vulnerability in the WP-Cron Dashboard plugin 1.1.5... |
| CVE-2013-6992 | 2014-01-02 | Cross-site request forgery (CSRF) vulnerability in askapache-firefox-adsense.php in the AskApache... |
| CVE-2013-6993 | 2014-01-02 | Cross-site scripting (XSS) vulnerability in the Ad-minister plugin 0.6 and... |
| CVE-2013-7240 | 2014-01-02 | Directory traversal vulnerability in download-file.php in the Advanced Dewplayer plugin... |
| CVE-2013-7254 | 2014-01-02 | Cross-site scripting (XSS) vulnerability in Opsview before 4.4.2 allows remote... |
| CVE-2013-7255 | 2014-01-02 | Open redirect vulnerability in Opsview before 4.4.2 allows remote attackers... |
| CVE-2013-7257 | 2014-01-02 | Cross-site scripting (XSS) vulnerability in Codiad 2.0.7 allows remote attackers... |
| CVE-2013-7258 | 2014-01-02 | Cross-site scripting (XSS) vulnerability in web2ldap 1.1.x before 1.1.49 allows... |
| CVE-2013-7256 | 2014-01-02 | Cross-site request forgery (CSRF) vulnerability in Opsview before 4.4.2 allows... |
| CVE-2013-6953 | 2014-01-02 | BlogEngine.NET 2.8.0.0 and earlier allows remote attackers to read usernames... |
| CVE-2013-2119 | 2014-01-02 | Phusion Passenger gem before 3.0.21 and 4.0.x before 4.0.5 for... |
| CVE-2009-5137 | 2014-01-02 | Stack-based buffer overflow in Mini-stream CastRipper 2.50.70 allows remote attackers... |
| CVE-2014-0791 | 2014-01-03 | Integer overflow in the license_read_scope_list function in libfreerdp/core/license.c in FreeRDP... |
| CVE-2013-7260 | 2014-01-03 | Multiple stack-based buffer overflows in RealNetworks RealPlayer before 17.0.4.61 on... |
| CVE-2013-2344 | 2014-01-04 | Unspecified vulnerability in HP Storage Data Protector 6.2X allows remote... |
| CVE-2013-2345 | 2014-01-04 | Unspecified vulnerability in HP Storage Data Protector 6.2X allows remote... |
| CVE-2013-2346 | 2014-01-04 | Unspecified vulnerability in HP Storage Data Protector 6.2X allows remote... |
| CVE-2013-2347 | 2014-01-04 | The Backup Client Service (OmniInet.exe) in HP Storage Data Protector... |
| CVE-2013-2348 | 2014-01-04 | Unspecified vulnerability in HP Storage Data Protector 6.2X allows remote... |
| CVE-2013-2349 | 2014-01-04 | Unspecified vulnerability in HP Storage Data Protector 6.2X allows remote... |
| CVE-2013-2350 | 2014-01-04 | Unspecified vulnerability in HP Storage Data Protector 6.2X allows remote... |
| CVE-2013-6194 | 2014-01-04 | Unspecified vulnerability in HP Storage Data Protector 6.2X allows remote... |
| CVE-2013-6195 | 2014-01-04 | Unspecified vulnerability in HP Storage Data Protector 6.2X allows remote... |
| CVE-2012-2898 | 2014-01-05 | Google Chrome before 21.0.1180.82 on iOS on iPad devices allows... |
| CVE-2012-2899 | 2014-01-05 | Google Chrome before 21.0.1180.82 on iOS makes certain incorrect calls... |
| CVE-2013-6402 | 2014-01-05 | base/pkit.py in HP Linux Imaging and Printing (HPLIP) through 3.13.11... |
| CVE-2013-7262 | 2014-01-05 | SQL injection vulnerability in the msPostGISLayerSetTimeFilter function in mappostgis.c in... |
| CVE-2013-7263 | 2014-01-06 | The Linux kernel before 3.12.4 updates certain length values before... |
| CVE-2013-7264 | 2014-01-06 | The l2tp_ip_recvmsg function in net/l2tp/l2tp_ip.c in the Linux kernel before... |
| CVE-2013-7265 | 2014-01-06 | The pn_recvmsg function in net/phonet/datagram.c in the Linux kernel before... |
| CVE-2013-7266 | 2014-01-06 | The mISDN_sock_recvmsg function in drivers/isdn/mISDN/socket.c in the Linux kernel before... |
| CVE-2013-7267 | 2014-01-06 | The atalk_recvmsg function in net/appletalk/ddp.c in the Linux kernel before... |
| CVE-2013-7268 | 2014-01-06 | The ipx_recvmsg function in net/ipx/af_ipx.c in the Linux kernel before... |
| CVE-2013-7269 | 2014-01-06 | The nr_recvmsg function in net/netrom/af_netrom.c in the Linux kernel before... |
| CVE-2013-7270 | 2014-01-06 | The packet_recvmsg function in net/packet/af_packet.c in the Linux kernel before... |
| CVE-2013-7271 | 2014-01-06 | The x25_recvmsg function in net/x25/af_x25.c in the Linux kernel before... |
| CVE-2013-4564 | 2014-01-07 | Libreswan 3.6 allows remote attackers to cause a denial of... |
| CVE-2013-6881 | 2014-01-07 | CRU Ditto Forensic FieldStation with firmware before 2013Oct15a allows remote... |
| CVE-2013-6884 | 2014-01-07 | The write-blocker in CRU Ditto Forensic FieldStation with firmware before... |
| CVE-2013-6888 | 2014-01-07 | Uscan in devscripts before 2.13.9 allows remote attackers to execute... |
| CVE-2013-4969 | 2014-01-07 | Puppet before 3.3.3 and 3.4 before 3.4.1 and Puppet Enterprise... |
| CVE-2013-6419 | 2014-01-07 | Interaction error in OpenStack Nova and Neutron before Havana 2013.2.1... |
| CVE-2013-6480 | 2014-01-07 | Libcloud 0.12.3 through 0.13.2 does not set the scrub_data parameter... |
| CVE-2011-1166 | 2014-01-07 | Xen, possibly before 4.0.2, allows local 64-bit PV guests to... |
| CVE-2011-1763 | 2014-01-07 | The get_free_port function in Xen allows local authenticated DomU users... |
| CVE-2011-1780 | 2014-01-07 | The instruction emulation in Xen 3.0.3 allows local SMP guest... |
| CVE-2011-1936 | 2014-01-07 | Xen, when using x86 Intel processors and the VMX virtualization... |
| CVE-2013-6436 | 2014-01-07 | The lxcDomainGetMemoryParameters method in lxc/lxc_driver.c in libvirt 1.0.5 through 1.2.0... |
| CVE-2013-7097 | 2014-01-08 | Directory traversal vulnerability in 7 Media Web Solutions eduTrac before... |
| CVE-2013-7274 | 2014-01-08 | Cross-site scripting (XSS) vulnerability in Wallpaper Script 3.5.0082 allows remote... |
| CVE-2013-7276 | 2014-01-08 | Cross-site scripting (XSS) vulnerability in inc/raf_form.php in the Recommend to... |
| CVE-2013-7277 | 2014-01-08 | Multiple cross-site scripting (XSS) vulnerabilities in Andy's PHP Knowledgebase (Aphpkb)... |
| CVE-2013-7278 | 2014-01-08 | SQL injection vulnerability in Naxtech CMS Afroditi 1.0 allows remote... |
| CVE-2013-7279 | 2014-01-08 | Cross-site scripting (XSS) vulnerability in views/video-management/preview_video.php in the S3 Video... |
| CVE-2013-7280 | 2014-01-08 | Buffer overflow in HansoTools Hanso Player 2.1.0, 2.5.0, and earlier... |
| CVE-2014-0620 | 2014-01-08 | Multiple cross-site scripting (XSS) vulnerabilities in Technicolor (formerly Thomson) TC7200... |
| CVE-2014-0621 | 2014-01-08 | Multiple cross-site request forgery (CSRF) vulnerabilities in Technicolor (formerly Thomson)... |
| CVE-2014-1232 | 2014-01-08 | Cross-site scripting (XSS) vulnerability in the Foliopress WYSIWYG plugin before... |
| CVE-2013-7275 | 2014-01-08 | Cross-site scripting (XSS) vulnerability in misc.php in MyBB (aka MyBulletinBoard)... |
| CVE-2013-7281 | 2014-01-08 | The dgram_recvmsg function in net/ieee802154/dgram.c in the Linux kernel before... |
| CVE-2013-6982 | 2014-01-08 | The BGP implementation in Cisco NX-OS 6.2(2a) and earlier does... |
| CVE-2014-0651 | 2014-01-08 | The administrative interface in Cisco Context Directory Agent (CDA) does... |
| CVE-2014-0652 | 2014-01-08 | Cross-site scripting (XSS) vulnerability in the Mappings page in Cisco... |
| CVE-2014-0653 | 2014-01-08 | The Identity Firewall (IDFW) functionality in Cisco Adaptive Security Appliance... |
| CVE-2014-0654 | 2014-01-08 | Cisco Context Directory Agent (CDA) allows remote attackers to modify... |
| CVE-2014-0655 | 2014-01-08 | The Identity Firewall (IDFW) functionality in Cisco Adaptive Security Appliance... |
| CVE-2014-0656 | 2014-01-08 | Cisco Context Directory Agent (CDA) allows remote authenticated users to... |
| CVE-2014-0657 | 2014-01-08 | The administration portal in Cisco Unified Communications Manager (Unified CM)... |
| CVE-2013-5349 | 2014-01-09 | Integer underflow in Picasa3.exe in Google Picasa before 3.9.0 Build... |
| CVE-2013-5357 | 2014-01-09 | Integer overflow in Picasa3.exe in Google Picasa before 3.9.0 Build... |
| CVE-2013-5358 | 2014-01-09 | Picasa3.exe in Google Picasa before 3.9.0 Build 137.69 allows remote... |
| CVE-2013-5359 | 2014-01-09 | Stack-based buffer overflow in Picasa3.exe in Google Picasa before 3.9.0... |
| CVE-2013-6997 | 2014-01-09 | Multiple cross-site scripting (XSS) vulnerabilities in Open-Xchange (OX) AppSuite 7.4.0... |
| CVE-2013-4353 | 2014-01-09 | The ssl3_take_mac function in ssl/s3_both.c in OpenSSL 1.0.1 before 1.0.1f... |
| CVE-2013-6955 | 2014-01-09 | webman/imageSelector.cgi in Synology DiskStation Manager (DSM) 4.0 before 4.0-2259, 4.2... |
| CVE-2013-7174 | 2014-01-09 | Absolute path traversal vulnerability in cgi-bin/jc.cgi in QNAP QTS before... |
| CVE-2014-0752 | 2014-01-09 | The SCADA server in Ecava IntegraXor before 4.1.4369 allows remote... |
| CVE-2013-6462 | 2014-01-09 | Stack-based buffer overflow in the bdfReadCharacters function in bitmap/bdfread.c in... |
| CVE-2013-6923 | 2014-01-09 | Multiple cross-site scripting (XSS) vulnerabilities in Seagate BlackArmor NAS 220... |
| CVE-2013-7138 | 2014-01-09 | Directory traversal vulnerability in lib/functions/d-load.php in Horizon Quick Content Management... |
| CVE-2013-7139 | 2014-01-09 | SQL injection vulnerability in download.php in Horizon Quick Content Management... |
| CVE-2013-7283 | 2014-01-09 | Race condition in the libreswan.spec files for Red Hat Enterprise... |
| CVE-2013-6321 | 2014-01-10 | SQL injection vulnerability in IBM Atlas eDiscovery Process Management 6.0.1.5... |
| CVE-2013-6334 | 2014-01-10 | IBM Atlas eDiscovery Process Management 6.0.1.5 and earlier and 6.0.2,... |
| CVE-2013-6974 | 2014-01-10 | Cross-site scripting (XSS) vulnerability in the web interface in Cisco... |
| CVE-2013-7282 | 2014-01-10 | The management web interface on the Nisuta NS-WIR150NE router with... |
| CVE-2014-1233 | 2014-01-10 | The paratrooper-pingdom gem 1.0.0 for Ruby allows local users to... |
| CVE-2014-1234 | 2014-01-10 | The paratrooper-newrelic gem 1.0.1 for Ruby allows local users to... |
| CVE-2013-4460 | 2014-01-10 | Cross-site scripting (XSS) vulnerability in account_sponsor_page.php in MantisBT 1.0.0 through... |