CVE List - 2014 / October
Showing 201 - 300 of 1413 CVEs for October 2014 (Page 3 of 15)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2014-7980 | 2014-10-08 | Multiple cross-site scripting (XSS) vulnerabilities in template.php in Zen theme... |
| CVE-2014-3641 | 2014-10-08 | The (1) GlusterFS and (2) Linux Smbfs drivers in OpenStack... |
| CVE-2014-5300 | 2014-10-08 | Adaptive Computing Moab before 7.2.9 and 8 before 8.0.0 allows... |
| CVE-2014-5375 | 2014-10-08 | The server in Adaptive Computing Moab before 7.2.9 and 8... |
| CVE-2014-5376 | 2014-10-08 | Adaptive Computing Moab before 7.2.9 and 8 before 8.0.0, when... |
| CVE-2014-6631 | 2014-10-08 | Cross-site scripting (XSS) vulnerability in com_media in Joomla! 3.2.x before... |
| CVE-2014-6632 | 2014-10-08 | Joomla! 2.5.x before 2.5.25, 3.x before 3.2.4, and 3.3.x before... |
| CVE-2014-7202 | 2014-10-08 | stream_engine.cpp in libzmq (aka ZeroMQ/C++)) 4.0.5 before 4.0.5 allows man-in-the-middle... |
| CVE-2014-7203 | 2014-10-08 | libzmq (aka ZeroMQ/C++) 4.0.x before 4.0.5 does not ensure that... |
| CVE-2014-7229 | 2014-10-08 | Unspecified vulnerability in Joomla! before 2.5.4 before 2.5.26, 3.x before... |
| CVE-2014-7230 | 2014-10-08 | The processutils.execute function in OpenStack oslo-incubator, Cinder, Nova, and Trove... |
| CVE-2014-7231 | 2014-10-08 | The strutils.mask_password function in the OpenStack Oslo utility library, Cinder,... |
| CVE-2014-7296 | 2014-10-08 | The default configuration in the accessibility engine in SpagoBI 5.0.0... |
| CVE-2014-7981 | 2014-10-08 | SQL injection vulnerability in Joomla! CMS 3.1.x and 3.2.x before... |
| CVE-2014-7982 | 2014-10-08 | Cross-site scripting (XSS) vulnerability in Joomla! CMS 2.5.x before 2.5.19... |
| CVE-2014-7983 | 2014-10-08 | Cross-site scripting (XSS) vulnerability in com_contact in Joomla! CMS 3.1.2... |
| CVE-2014-7984 | 2014-10-08 | Joomla! CMS 2.5.x before 2.5.19 and 3.x before 3.2.3 allows... |
| CVE-2014-8068 | 2014-10-09 | Adobe Digital Editions (DE) 4 does not use encryption for... |
| CVE-2014-8075 | 2014-10-09 | Cross-site scripting (XSS) vulnerability in the Tribune module 6.x-1.x and... |
| CVE-2014-8076 | 2014-10-09 | Cross-site scripting (XSS) vulnerability in the Professional theme 7.x before... |
| CVE-2014-8077 | 2014-10-09 | Cross-site scripting (XSS) vulnerability in the NewsFlash theme 6.x-1.x before... |
| CVE-2014-8078 | 2014-10-09 | Cross-site scripting (XSS) vulnerability in the Print (aka Printer, e-mail... |
| CVE-2014-8079 | 2014-10-09 | Cross-site scripting (XSS) vulnerability in the MAYO theme 7.x-1.x before... |
| CVE-2013-4488 | 2014-10-10 | libgadu before 1.12.0 does not verify X.509 certificates from SSL... |
| CVE-2014-2635 | 2014-10-10 | Unspecified vulnerability in HP Sprinter 12.01 allows remote attackers to... |
| CVE-2014-2636 | 2014-10-10 | Unspecified vulnerability in HP Sprinter 12.01 allows remote attackers to... |
| CVE-2014-2637 | 2014-10-10 | Unspecified vulnerability in HP Sprinter 12.01 allows remote attackers to... |
| CVE-2014-2638 | 2014-10-10 | Unspecified vulnerability in HP Sprinter 12.01 allows remote attackers to... |
| CVE-2014-2646 | 2014-10-10 | Unspecified vulnerability in HP Network Automation 9.10 and 9.20 allows... |
| CVE-2014-2648 | 2014-10-10 | Unspecified vulnerability in HP Operations Manager 9.10 and 9.11 on... |
| CVE-2014-2649 | 2014-10-10 | Unspecified vulnerability in HP Operations Manager 9.20 on UNIX allows... |
| CVE-2014-3147 | 2014-10-10 | Cross-site scripting (XSS) vulnerability in the auto-complete feature in Splunk... |
| CVE-2014-3201 | 2014-10-10 | core/rendering/compositing/RenderLayerCompositor.cpp in Blink, as used in Google Chrome before 38.0.2125.102... |
| CVE-2014-3403 | 2014-10-10 | The Autonomic Networking Infrastructure (ANI) component in Cisco IOS XE... |
| CVE-2014-3404 | 2014-10-10 | The Autonomic Networking Infrastructure (ANI) component in Cisco IOS XE... |
| CVE-2014-3405 | 2014-10-10 | Cisco IOS XE enables the IPv6 Routing Protocol for Low-Power... |
| CVE-2014-4661 | 2014-10-10 | Cross-site scripting (XSS) vulnerability in HP Records Manager before 7.3.5... |
| CVE-2014-5270 | 2014-10-10 | Libgcrypt before 1.5.4, as used in GnuPG and other products,... |
| CVE-2014-5297 | 2014-10-10 | The actionSendErrorReport method in protected/controllers/SiteController.php in X2Engine 2.8 through 4.1.7... |
| CVE-2014-5298 | 2014-10-10 | FileUploadsFilter.php in X2Engine 4.1.7 and earlier, when running on case-insensitive... |
| CVE-2014-5351 | 2014-10-10 | The kadm5_randkey_principal_3 function in lib/kadm5/srv/svr_principal.c in kadmind in MIT Kerberos... |
| CVE-2014-6439 | 2014-10-10 | Cross-site scripting (XSS) vulnerability in the CORS functionality in Elasticsearch... |
| CVE-2014-7046 | 2014-10-10 | The George Wassouf (aka com.devkhr32.georgewassouf) application 1.0 for Android does... |
| CVE-2014-7047 | 2014-10-10 | The Ocean Avenue Mobile Pro (aka com.oceanavenue.mobile) application 2.0 for... |
| CVE-2014-7226 | 2014-10-10 | The file comment feature in Rejetto HTTP File Server (hfs)... |
| CVE-2014-3382 | 2014-10-10 | The SQL*Net inspection engine in Cisco ASA Software 7.2 before... |
| CVE-2014-3383 | 2014-10-10 | The IKE implementation in the VPN component in Cisco ASA... |
| CVE-2014-3384 | 2014-10-10 | The IKEv2 implementation in Cisco ASA Software 8.4 before 8.4(7.15),... |
| CVE-2014-3385 | 2014-10-10 | Race condition in the Health and Performance Monitoring (HPM) for... |
| CVE-2014-3386 | 2014-10-10 | The GPRS Tunneling Protocol (GTP) inspection engine in Cisco ASA... |
| CVE-2014-3387 | 2014-10-10 | The SunRPC inspection engine in Cisco ASA Software 7.2 before... |
| CVE-2014-3388 | 2014-10-10 | The DNS inspection engine in Cisco ASA Software 9.0 before... |
| CVE-2014-3389 | 2014-10-10 | The VPN implementation in Cisco ASA Software 7.2 before 7.2(5.15),... |
| CVE-2014-3390 | 2014-10-10 | The Virtual Network Management Center (VNMC) policy implementation in Cisco... |
| CVE-2014-3391 | 2014-10-10 | Untrusted search path vulnerability in Cisco ASA Software 8.x before... |
| CVE-2014-3392 | 2014-10-10 | The Clientless SSL VPN portal in Cisco ASA Software 8.2... |
| CVE-2014-3393 | 2014-10-10 | The Clientless SSL VPN portal customization framework in Cisco ASA... |
| CVE-2014-3394 | 2014-10-10 | The Smart Call Home (SCH) implementation in Cisco ASA Software... |
| CVE-2014-3402 | 2014-10-10 | The authentication-manager process in the web framework in Cisco Intrusion... |
| CVE-2014-3581 | 2014-10-10 | The cache_merge_headers_out function in modules/cache/cache_util.c in the mod_cache module in... |
| CVE-2014-4761 | 2014-10-10 | IBM WebSphere Portal 6.1.0 through 6.1.0.6 CF27, 6.1.5 through 6.1.5.3... |
| CVE-2014-4867 | 2014-10-10 | Cryoserver Security Appliance 7.3.x uses weak permissions for /etc/init.d/cryoserver, which... |
| CVE-2014-4872 | 2014-10-10 | BMC Track-It! 11.3.0.355 does not require authentication on TCP port... |
| CVE-2014-4873 | 2014-10-10 | SQL injection vulnerability in TrackItWeb/Grid/GetData in BMC Track-It! 11.3.0.355 allows... |
| CVE-2014-4874 | 2014-10-10 | BMC Track-It! 11.3.0.355 allows remote authenticated users to read arbitrary... |
| CVE-2014-3678 | 2014-10-10 | Cross-site scripting (XSS) vulnerability in the Monitoring plugin before 1.53.0... |
| CVE-2014-4312 | 2014-10-10 | Multiple cross-site scripting (XSS) vulnerabilities in Epicor Enterprise 7.4 before... |
| CVE-2014-4313 | 2014-10-10 | SQL injection vulnerability in Epicor Procurement before 7.4 SP2 allows... |
| CVE-2014-4737 | 2014-10-10 | Cross-site scripting (XSS) vulnerability in Textpattern CMS before 4.5.7 allows... |
| CVE-2014-6243 | 2014-10-10 | Cross-site scripting (XSS) vulnerability in the EWWW Image Optimizer plugin... |
| CVE-2014-6315 | 2014-10-10 | Multiple cross-site scripting (XSS) vulnerabilities in the Web-Dorado Photo Gallery... |
| CVE-2014-7139 | 2014-10-10 | Multiple cross-site scripting (XSS) vulnerabilities in the Contact Form DB... |
| CVE-2014-7200 | 2014-10-10 | Cross-site scripting (XSS) vulnerability in pi1/class.tx_dmmjobcontrol_pi1.php in the JobControl (dmmjobcontrol)... |
| CVE-2014-7201 | 2014-10-10 | Multiple SQL injection vulnerabilities in the search function in pi1/class.tx_dmmjobcontrol_pi1.php... |
| CVE-2014-6887 | 2014-10-11 | The EXPRESS (aka com.gpshopper.express.android) application 2.5.3 for Android does not... |
| CVE-2014-6891 | 2014-10-11 | The Vodafone Avantaj Cepte (aka com.vodafone.avantajcepte.main) application 1.4 for Android... |
| CVE-2014-6904 | 2014-10-11 | The Safe Browser - The Web Filter (aka com.cloudacl) application... |
| CVE-2014-6934 | 2014-10-11 | The Physics Chemistry Biology Quiz (aka com.pdevsmcqs.pcbmcqseries) application 1.8 for... |
| CVE-2014-6935 | 2014-10-11 | The ColorMania - Color Quiz Game (aka com.ColormaniaColoringGames) application 1.4... |
| CVE-2014-6936 | 2014-10-11 | The IDS 2013 (aka de.mobileeventguide.ids2013) application 1.21 for Android does... |
| CVE-2014-6937 | 2014-10-11 | The China CITIC Bank Credit Card (aka com.citiccard.mobilebank) application 3.3.6... |
| CVE-2014-6938 | 2014-10-11 | The Apostilas musicais (aka com.apostilas) application 1.0 for Android does... |
| CVE-2014-6939 | 2014-10-11 | The Sketch W Friends FREE -Tablets (aka air.com.xlabz.SketchWFriendsFree) application 5.0.0... |
| CVE-2014-6940 | 2014-10-11 | The Absolute Lending Solutions (aka com.soln.S008F6C05EC0B63264B429F6D76286562) application 1.0073.b0073 for Android... |
| CVE-2014-6941 | 2014-10-11 | The NOS Alive (aka pt.optimus.optimusalive2011) application 5.1 for Android does... |
| CVE-2014-5327 | 2014-10-12 | Buffer overflow in the Webserver component on the Huawei E5332... |
| CVE-2014-5328 | 2014-10-12 | Buffer overflow in the Webserver component on the Huawei E5332... |
| CVE-2014-1571 | 2014-10-13 | Bugzilla 2.x through 4.0.x before 4.0.15, 4.1.x and 4.2.x before... |
| CVE-2014-1572 | 2014-10-13 | The confirm_create_account function in the account-creation feature in token.cgi in... |
| CVE-2014-1573 | 2014-10-13 | Bugzilla 2.x through 4.0.x before 4.0.15, 4.1.x and 4.2.x before... |
| CVE-2014-3091 | 2014-10-13 | Cross-site scripting (XSS) vulnerability in IBM Security QRadar SIEM 7.1.x... |
| CVE-2014-7283 | 2014-10-13 | The xfs_da3_fixhashpath function in fs/xfs/xfs_da_btree.c in the xfs implementation in... |
| CVE-2014-7284 | 2014-10-13 | The net_get_random_once implementation in net/core/utils.c in the Linux kernel 3.13.x... |
| CVE-2014-7297 | 2014-10-13 | Unspecified vulnerability in the folder framework in the Enfold theme... |
| CVE-2014-7970 | 2014-10-13 | The pivot_root implementation in fs/namespace.c in the Linux kernel through... |
| CVE-2014-7975 | 2014-10-13 | The do_umount function in fs/namespace.c in the Linux kernel through... |
| CVE-2014-8086 | 2014-10-13 | Race condition in the ext4_file_write_iter function in fs/ext4/file.c in the... |
| CVE-2014-8743 | 2014-10-13 | Multiple cross-site scripting (XSS) vulnerabilities in the Maestro module 7.x-1.x... |
| CVE-2014-8744 | 2014-10-13 | Cross-site scripting (XSS) vulnerability in the Nivo Slider module 7.x-2.x... |
| CVE-2014-8745 | 2014-10-13 | Cross-site scripting (XSS) vulnerability in the Custom Search module 6.x-1.x... |