CVE List - 2014 / October
Showing 1301 - 1400 of 1413 CVEs for October 2014 (Page 14 of 15)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2014-1927 | 2014-10-25 | The shell_quote function in python-gnupg 0.3.5 does not properly quote... |
| CVE-2014-1928 | 2014-10-25 | The shell_quote function in python-gnupg 0.3.5 does not properly escape... |
| CVE-2014-1929 | 2014-10-25 | python-gnupg 0.3.5 and 0.3.6 allows context-dependent attackers to have an... |
| CVE-2014-5075 | 2014-10-25 | The Ignite Realtime Smack XMPP API 4.x before 4.0.2, and... |
| CVE-2013-4594 | 2014-10-25 | The Payment for Webform module 7.x-1.x before 7.x-1.5 for Drupal... |
| CVE-2014-0476 | 2014-10-25 | The slapper function in chkrootkit before 0.50 does not properly... |
| CVE-2014-3137 | 2014-10-25 | Bottle 0.10.x before 0.10.12, 0.11.x before 0.11.7, and 0.12.x before... |
| CVE-2013-1641 | 2014-10-26 | Directory traversal vulnerability in the zip download functionality in QuiXplorer... |
| CVE-2014-2987 | 2014-10-26 | Multiple cross-site request forgery (CSRF) vulnerabilities in EGroupware Enterprise Line... |
| CVE-2014-4812 | 2014-10-26 | The installer in IBM Security AppScan Source 8.x and 9.x... |
| CVE-2014-6099 | 2014-10-26 | The Change Password feature in IBM Sterling B2B Integrator 5.2.x... |
| CVE-2014-6133 | 2014-10-26 | IBM API Management 3.x before 3.0.1.0 allows local users to... |
| CVE-2014-6037 | 2014-10-26 | Directory traversal vulnerability in the agentUpload servlet in ZOHO ManageEngine... |
| CVE-2013-6796 | 2014-10-26 | The SMTP server in DeepOfix 3.3 and earlier allows remote... |
| CVE-2014-3520 | 2014-10-26 | OpenStack Identity (Keystone) before 2013.2.4, 2014.x before 2014.1.2, and Juno... |
| CVE-2014-5148 | 2014-10-26 | Xen 4.4.x, when running on an ARM system and "handling... |
| CVE-2014-5520 | 2014-10-26 | SQL injection vulnerability in XRMS CRM, possibly 1.99.2, allows remote... |
| CVE-2014-6635 | 2014-10-26 | Cross-site scripting (XSS) vulnerability in Exponent CMS 2.3.0 allows remote... |
| CVE-2013-7408 | 2014-10-26 | F5 BIG-IP Analytics 11.x before 11.4.0 uses a predictable session... |
| CVE-2010-4820 | 2014-10-27 | Untrusted search path vulnerability in Ghostscript 8.62 allows local users... |
| CVE-2011-4103 | 2014-10-27 | emitters.py in Django Piston before 0.2.3 and 0.2.x before 0.2.2.1... |
| CVE-2011-4104 | 2014-10-27 | The from_yaml method in serializers.py in Django Tastypie before 0.9.10... |
| CVE-2011-4953 | 2014-10-27 | The set_mgmt_parameters function in item.py in cobbler before 2.2.2 allows... |
| CVE-2014-0136 | 2014-10-27 | The (1) get and (2) log methods in the AgentController... |
| CVE-2014-2988 | 2014-10-27 | EGroupware Enterprise Line (EPL) before 1.1.20140505, EGroupware Community Edition before... |
| CVE-2014-3711 | 2014-10-27 | namei in FreeBSD 9.1 through 10.1-RC2 allows remote attackers to... |
| CVE-2014-3954 | 2014-10-27 | Stack-based buffer overflow in rtsold in FreeBSD 9.1 through 10.1-RC2... |
| CVE-2014-3955 | 2014-10-27 | routed in FreeBSD 8.4 through 10.1-RC2 allows remote attackers to... |
| CVE-2014-8327 | 2014-10-27 | The fal_sftp extension before 0.2.6 for TYPO3 uses weak permissions... |
| CVE-2003-1599 | 2014-10-27 | PHP remote file inclusion vulnerability in wp-links/links.all.php in WordPress 0.70... |
| CVE-2010-5077 | 2014-10-27 | server/sv_main.c in Quake3 Arena, as used in ioquake3 before r1762,... |
| CVE-2011-2702 | 2014-10-27 | Integer signedness error in Glibc before 2.13 and eglibc before... |
| CVE-2012-1111 | 2014-10-27 | lightdm before 1.0.9 does not properly close file descriptors before... |
| CVE-2012-5580 | 2014-10-27 | Format string vulnerability in the print_proxies function in bin/proxy.c in... |
| CVE-2014-4586 | 2014-10-27 | Multiple cross-site scripting (XSS) vulnerabilities in the wp-football plugin 1.1... |
| CVE-2014-4023 | 2014-10-28 | Cross-site scripting (XSS) vulnerability in tmui/dashboard/echo.jsp in the Configuration utility... |
| CVE-2014-8505 | 2014-10-28 | Multiple cross-site scripting (XSS) vulnerabilities in Etiko CMS allow remote... |
| CVE-2014-8506 | 2014-10-28 | Multiple SQL injection vulnerabilities in Etiko CMS allow remote attackers... |
| CVE-2014-3293 | 2014-10-28 | Cisco IOS 15.4(3)S0b on ASR901 devices makes incorrect decisions to... |
| CVE-2014-4808 | 2014-10-28 | Unspecified vulnerability in IBM WebSphere Portal 6.1.0 through 6.1.0.6 CF27,... |
| CVE-2014-4814 | 2014-10-28 | IBM WebSphere Portal 6.1.0 through 6.1.0.6 CF27, 6.1.5 through 6.1.5.3... |
| CVE-2014-4821 | 2014-10-28 | IBM WebSphere Portal 6.1.0 through 6.1.0.6 CF27, 6.1.5 through 6.1.5.3... |
| CVE-2014-6125 | 2014-10-28 | Cross-site request forgery (CSRF) vulnerability in IBM WebSphere Portal 8.5.0... |
| CVE-2014-6126 | 2014-10-28 | Cross-site scripting (XSS) vulnerability in IBM WebSphere Portal 8.5.0 before... |
| CVE-2014-3051 | 2014-10-29 | The Internet Service Monitor (ISM) agent in IBM Tivoli Composite... |
| CVE-2014-3668 | 2014-10-29 | Buffer overflow in the date_from_ISO8601 function in the mkgmtime implementation... |
| CVE-2014-3669 | 2014-10-29 | Integer overflow in the object_custom function in ext/standard/var_unserializer.c in PHP... |
| CVE-2014-3670 | 2014-10-29 | The exif_ifd_make_value function in exif.c in the EXIF extension in... |
| CVE-2014-3694 | 2014-10-29 | The (1) bundled GnuTLS SSL/TLS plugin and the (2) bundled... |
| CVE-2014-3695 | 2014-10-29 | markup.c in the MXit protocol plugin in libpurple in Pidgin... |
| CVE-2014-3696 | 2014-10-29 | nmevent.c in the Novell GroupWise protocol plugin in libpurple in... |
| CVE-2014-3697 | 2014-10-29 | Absolute path traversal vulnerability in the untar_block function in win32/untar.c... |
| CVE-2014-3698 | 2014-10-29 | The jabber_idn_validate function in jutil.c in the Jabber protocol plugin... |
| CVE-2014-4839 | 2014-10-29 | Cross-site request forgery (CSRF) vulnerability in birtviewer.query in IBM TRIRIGA... |
| CVE-2014-4877 | 2014-10-29 | Absolute path traversal vulnerability in GNU Wget before 1.16, when... |
| CVE-2014-6149 | 2014-10-29 | Directory traversal vulnerability in BIRT-viewer in IBM Tivoli Application Dependency... |
| CVE-2014-8518 | 2014-10-29 | The (1) Removable Media and (2) CD and DVD encryption... |
| CVE-2014-8520 | 2014-10-29 | McAfee Network Data Loss Prevention (NDLP) before 9.3 allows remote... |
| CVE-2014-8525 | 2014-10-29 | McAfee Network Data Loss Prevention (NDLP) before 9.3 does not... |
| CVE-2014-8531 | 2014-10-29 | The TLS/SSL Server in McAfee Network Data Loss Prevention (NDLP)... |
| CVE-2014-8536 | 2014-10-29 | McAfee Network Data Loss Prevention (NDLP) before 9.2.2 allows local... |
| CVE-2014-8537 | 2014-10-29 | McAfee Network Data Loss Prevention (NDLP) before 9.2.2 allows local... |
| CVE-2014-8519 | 2014-10-29 | Unspecified vulnerability in McAfee Network Data Loss Prevention (NDLP) before... |
| CVE-2014-8521 | 2014-10-29 | Cross-site scripting (XSS) vulnerability in McAfee Network Data Loss Prevention... |
| CVE-2014-8522 | 2014-10-29 | The MySQL database in McAfee Network Data Loss Prevention (NDLP)... |
| CVE-2014-8523 | 2014-10-29 | Cross-site request forgery (CSRF) vulnerability in McAfee Network Data Loss... |
| CVE-2014-8524 | 2014-10-29 | McAfee Network Data Loss Prevention (NDLP) before 9.3 does not... |
| CVE-2014-8526 | 2014-10-29 | McAfee Network Data Loss Prevention (NDLP) before 9.3 allows local... |
| CVE-2014-8527 | 2014-10-29 | McAfee Network Data Loss Prevention (NDLP) before 9.3 allows local... |
| CVE-2014-8528 | 2014-10-29 | McAfee Network Data Loss Prevention (NDLP) before 9.3 logs session... |
| CVE-2014-8529 | 2014-10-29 | McAfee Network Data Loss Prevention (NDLP) before 9.3 stores the... |
| CVE-2014-8530 | 2014-10-29 | Unspecified vulnerability in McAfee Network Data Loss Prevention (NDLP) before... |
| CVE-2014-8532 | 2014-10-29 | Unspecified vulnerability in McAfee Network Data Loss Prevention before (NDLP)... |
| CVE-2014-8533 | 2014-10-29 | McAfee Network Data Loss Prevention (NDLP) before 9.3 allows remote... |
| CVE-2014-8534 | 2014-10-29 | Unspecified vulnerability in the login form in McAfee Network Data... |
| CVE-2014-8535 | 2014-10-29 | McAfee Network Data Loss Prevention (NDLP) before 9.2.2 allows local... |
| CVE-2014-8538 | 2014-10-29 | The Hijab Modern (aka com.Aisyaidea.HijabModern) application 1.0 for Android does... |
| CVE-2014-7877 | 2014-10-30 | Unspecified vulnerability in the kernel in HP HP-UX B.11.31 allows... |
| CVE-2013-3304 | 2014-10-30 | Directory traversal vulnerability in Dell EqualLogic PS4000 with firmware 6.0... |
| CVE-2014-3446 | 2014-10-30 | SQL injection vulnerability in wcm/system/pages/admin/getnode.aspx in BSS Continuity CMS 4.2.22640.0... |
| CVE-2014-3584 | 2014-10-30 | The SamlHeaderInHandler in Apache CXF before 2.6.11, 2.7.x before 2.7.8,... |
| CVE-2014-3623 | 2014-10-30 | Apache WSS4J before 1.6.17 and 2.x before 2.0.2, as used... |
| CVE-2014-3684 | 2014-10-30 | The tm_adopt function in lib/Libifl/tm.c in Terascale Open-Source Resource and... |
| CVE-2013-7409 | 2014-10-30 | Buffer overflow in ALLPlayer 5.6.2 through 5.8.1 allows remote attackers... |
| CVE-2014-3366 | 2014-10-31 | SQL injection vulnerability in the administrative web interface in Cisco... |
| CVE-2014-3372 | 2014-10-31 | Multiple cross-site scripting (XSS) vulnerabilities in the CCM reports interface... |
| CVE-2014-3373 | 2014-10-31 | Multiple cross-site scripting (XSS) vulnerabilities in the CCM Dialed Number... |
| CVE-2014-3374 | 2014-10-31 | Multiple cross-site scripting (XSS) vulnerabilities in the CCM admin interface... |
| CVE-2014-3375 | 2014-10-31 | Multiple cross-site scripting (XSS) vulnerabilities in the CCM Service interface... |
| CVE-2014-6101 | 2014-10-31 | Cross-site scripting (XSS) vulnerability in the redirect-login feature in IBM... |
| CVE-2014-6148 | 2014-10-31 | IBM Tivoli Application Dependency Discovery Manager (TADDM) 7.2.0.0 through 7.2.0.10,... |
| CVE-2014-6150 | 2014-10-31 | Cross-site scripting (XSS) vulnerability in IBM Tivoli Application Dependency Discovery... |
| CVE-2013-0334 | 2014-10-31 | Bundler before 1.7, when multiple top-level source lines are used,... |
| CVE-2014-2334 | 2014-10-31 | Multiple cross-site scripting (XSS) vulnerabilities in the Web User Interface... |
| CVE-2014-2335 | 2014-10-31 | Multiple cross-site scripting (XSS) vulnerabilities in the Web User Interface... |
| CVE-2014-2336 | 2014-10-31 | Multiple cross-site scripting (XSS) vulnerabilities in the Web User Interface... |
| CVE-2014-3708 | 2014-10-31 | OpenStack Compute (Nova) before 2014.1.4 and 2014.2.x before 2014.2.1 allows... |
| CVE-2014-7177 | 2014-10-31 | XML External Entity vulnerability in Enalean Tuleap 7.2 and earlier... |
| CVE-2014-7985 | 2014-10-31 | Directory traversal vulnerability in EspoCRM before 2.6.0 allows remote attackers... |
| CVE-2014-7986 | 2014-10-31 | install/index.php in EspoCRM before 2.6.0 allows remote attackers to re-install... |