CVE List - 2014 / April
Showing 1 - 100 of 665 CVEs for April 2014 (Page 1 of 7)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2013-2278 | 2014-04-01 | Unspecified vulnerability in War FTP Daemon (warftpd) 1.82, when running... |
| CVE-2013-5640 | 2014-04-01 | Multiple SQL injection vulnerabilities in Gnew 2013.1 allow remote attackers... |
| CVE-2013-7349 | 2014-04-01 | Multiple SQL injection vulnerabilities in Gnew 2013.1 allow remote attackers... |
| CVE-2014-2034 | 2014-04-01 | Unspecified vulnerability in Sonatype Nexus OSS and Pro 2.4.0 through... |
| CVE-2009-5141 | 2014-04-01 | Format string vulnerability in War FTP Daemon (warftpd) 1.82 RC... |
| CVE-2011-3346 | 2014-04-01 | Buffer overflow in hw/scsi-disk.c in the SCSI subsystem in QEMU... |
| CVE-2011-4573 | 2014-04-01 | Red Hat JBoss Operations Network (JON) before 2.4.2 does not... |
| CVE-2012-0032 | 2014-04-01 | Red Hat JBoss Operations Network (JON) before 3.0.1 uses 0777... |
| CVE-2013-1869 | 2014-04-01 | CRLF injection vulnerability in spacewalk-java before 2.1.148-1 and Red Hat... |
| CVE-2013-7348 | 2014-04-01 | Double free vulnerability in the ioctx_alloc function in fs/aio.c in... |
| CVE-2014-1891 | 2014-04-01 | Multiple integer overflows in the (1) FLASK_GETBOOL, (2) FLASK_SETBOOL, (3)... |
| CVE-2014-1892 | 2014-04-01 | Xen 3.3 through 4.1, when XSM is enabled, allows local... |
| CVE-2014-1893 | 2014-04-01 | Multiple integer overflows in the (1) FLASK_GETBOOL and (2) FLASK_SETBOOL... |
| CVE-2014-1894 | 2014-04-01 | Multiple integer overflows in unspecified suboperations in the flask hypercall... |
| CVE-2014-1895 | 2014-04-01 | Off-by-one error in the flask_security_avc_cachestats function in xsm/flask/flask_op.c in Xen... |
| CVE-2014-1896 | 2014-04-01 | The (1) do_send and (2) do_recv functions in io.c in... |
| CVE-2014-2237 | 2014-04-01 | The memcache token backend in OpenStack Identity (Keystone) 2013.1 through... |
| CVE-2014-2672 | 2014-04-01 | Race condition in the ath_tx_aggr_sleep function in drivers/net/wireless/ath/ath9k/xmit.c in the... |
| CVE-2014-2673 | 2014-04-01 | The arch_dup_task_struct function in the Transactional Memory (TM) implementation in... |
| CVE-2014-2678 | 2014-04-01 | The rds_iw_laddr_check function in net/rds/iw.c in the Linux kernel through... |
| CVE-2013-7350 | 2014-04-01 | Multiple unspecified vulnerabilities in Check Point Security Gateway 80 R71.x... |
| CVE-2014-1691 | 2014-04-01 | The framework/Util/lib/Horde/Variables.php script in the Util library in Horde before... |
| CVE-2014-2212 | 2014-04-01 | The remember me feature in portal/scr_authentif.php in POSH (aka Posh... |
| CVE-2013-3588 | 2014-04-02 | The web management interface on Zyxel P660 devices allows remote... |
| CVE-2014-0828 | 2014-04-02 | Cross-site scripting (XSS) vulnerability in the WCM (Web Content Manager)... |
| CVE-2014-0901 | 2014-04-02 | Cross-site scripting (XSS) vulnerability in the Social Rendering implementation in... |
| CVE-2014-1942 | 2014-04-02 | Cross-site scripting (XSS) vulnerability in aal/loginverification.aspx in Pearson eSIS Enterprise... |
| CVE-2014-2125 | 2014-04-02 | Cross-site scripting (XSS) vulnerability in the Web Inbox in Cisco... |
| CVE-2014-2137 | 2014-04-02 | CRLF injection vulnerability in the web framework in Cisco Web... |
| CVE-2014-2138 | 2014-04-02 | CRLF injection vulnerability in the web framework in Cisco Security... |
| CVE-2013-1770 | 2014-04-02 | Cross-site scripting (XSS) vulnerability in views_view.php in Ganglia Web 3.5.7... |
| CVE-2013-3213 | 2014-04-02 | Multiple SQL injection vulnerabilities in vTiger CRM 5.0.0 through 5.4.0... |
| CVE-2013-4240 | 2014-04-02 | Multiple cross-site request forgery (CSRF) vulnerabilities in the HMS Testimonials... |
| CVE-2013-5365 | 2014-04-02 | Heap-based buffer overflow in Autodesk SketchBook for Enterprise 2014, Pro,... |
| CVE-2014-2553 | 2014-04-02 | Cross-site scripting (XSS) vulnerability in Open Ticket Request System (OTRS)... |
| CVE-2014-2578 | 2014-04-02 | Cross-site scripting (XSS) vulnerability in Splunk Web in Splunk before... |
| CVE-2014-2655 | 2014-04-02 | SQL injection vulnerability in the gen_show_status function in functions.inc.php in... |
| CVE-2013-0729 | 2014-04-02 | Heap-based buffer overflow in Tracker Software PDF-XChange before 2.5.208 allows... |
| CVE-2013-2945 | 2014-04-02 | SQL injection vulnerability in blogs/admin.php in b2evolution before 4.1.7 allows... |
| CVE-2013-3484 | 2014-04-02 | Multiple cross-site scripting (XSS) vulnerabilities in dotCMS before 2.3.2 allow... |
| CVE-2014-1297 | 2014-04-02 | WebKit, as used in Apple Safari before 6.1.3 and 7.x... |
| CVE-2014-1298 | 2014-04-02 | WebKit, as used in Apple Safari before 6.1.3 and 7.x... |
| CVE-2014-1299 | 2014-04-02 | WebKit, as used in Apple Safari before 6.1.3 and 7.x... |
| CVE-2014-1301 | 2014-04-02 | WebKit, as used in Apple Safari before 6.1.3 and 7.x... |
| CVE-2014-1302 | 2014-04-02 | WebKit, as used in Apple Safari before 6.1.3 and 7.x... |
| CVE-2014-1304 | 2014-04-02 | WebKit, as used in Apple Safari before 6.1.3 and 7.x... |
| CVE-2014-1305 | 2014-04-02 | WebKit, as used in Apple Safari before 6.1.3 and 7.x... |
| CVE-2014-1307 | 2014-04-02 | WebKit, as used in Apple Safari before 6.1.3 and 7.x... |
| CVE-2014-1308 | 2014-04-02 | WebKit, as used in Apple Safari before 6.1.3 and 7.x... |
| CVE-2014-1309 | 2014-04-02 | WebKit, as used in Apple Safari before 6.1.3 and 7.x... |
| CVE-2014-1310 | 2014-04-02 | WebKit, as used in Apple Safari before 6.1.3 and 7.x... |
| CVE-2014-1311 | 2014-04-02 | WebKit, as used in Apple Safari before 6.1.3 and 7.x... |
| CVE-2014-1312 | 2014-04-02 | WebKit, as used in Apple Safari before 6.1.3 and 7.x... |
| CVE-2014-1313 | 2014-04-02 | WebKit, as used in Apple Safari before 6.1.3 and 7.x... |
| CVE-2013-0735 | 2014-04-02 | Multiple SQL injection vulnerabilities in wpf.class.php in the Mingle Forum... |
| CVE-2013-7352 | 2014-04-02 | Cross-site request forgery (CSRF) vulnerability in blogs/admin.php in b2evolution before... |
| CVE-2014-0093 | 2014-04-03 | Red Hat JBoss Enterprise Application Platform (JBEAP) 6.2.2, when using... |
| CVE-2014-0466 | 2014-04-03 | The fixps script in a2ps 4.14 does not use the... |
| CVE-2014-2340 | 2014-04-03 | Cross-site request forgery (CSRF) vulnerability in the XCloner plugin before... |
| CVE-2012-4920 | 2014-04-04 | Directory traversal vulnerability in the zing_forum_output function in forum.php in... |
| CVE-2012-5648 | 2014-04-04 | Multiple SQL injection vulnerabilities in Foreman before 1.0.2 allow remote... |
| CVE-2012-6429 | 2014-04-04 | Buffer overflow in the PrepareSync method in the SyncService.dll ActiveX... |
| CVE-2013-2287 | 2014-04-04 | Multiple cross-site scripting (XSS) vulnerabilities in views/notify.php in the Uploader... |
| CVE-2013-3930 | 2014-04-04 | Stack-based buffer overflow in Core FTP before 2.2 build 1785... |
| CVE-2014-0592 | 2014-04-04 | Barclamp (aka barclamp-network) 1.7 for the Crowbar Framework, as used... |
| CVE-2014-0637 | 2014-04-04 | Cross-site scripting (XSS) vulnerability in the back-office case-management application in... |
| CVE-2014-0638 | 2014-04-04 | Cross-site scripting (XSS) vulnerability in RSA Adaptive Authentication (On-Premise) 6.x... |
| CVE-2014-0789 | 2014-04-04 | Multiple buffer overflows in the OPC Automation 2.0 Server Object... |
| CVE-2014-2114 | 2014-04-04 | Cross-site scripting (XSS) vulnerability in UserServlet in Cisco Emergency Responder... |
| CVE-2014-2115 | 2014-04-04 | Multiple cross-site request forgery (CSRF) vulnerabilities in CERUserServlet pages in... |
| CVE-2014-2116 | 2014-04-04 | Cisco Emergency Responder (ER) 8.6 and earlier allows remote attackers... |
| CVE-2014-2117 | 2014-04-04 | Multiple open redirect vulnerabilities in Cisco Emergency Responder (ER) 8.6... |
| CVE-2014-2143 | 2014-04-04 | The IKE implementation in Cisco IOS 15.4(1)T and earlier and... |
| CVE-2014-2210 | 2014-04-04 | Multiple directory traversal vulnerabilities in CA ERwin Web Portal 9.5... |
| CVE-2014-0337 | 2014-04-05 | Cross-site scripting (XSS) vulnerability in the web interface on Huawei... |
| CVE-2014-0827 | 2014-04-05 | Cross-site scripting (XSS) vulnerability in IBM InfoSphere Optim Workload Replay... |
| CVE-2014-2144 | 2014-04-05 | Cisco IOS XR does not properly throttle ICMPv6 redirect packets,... |
| CVE-2014-2145 | 2014-04-05 | Directory traversal vulnerability in the messaging API in Cisco Unity... |
| CVE-2014-2600 | 2014-04-05 | Unspecified vulnerability in HP IceWall Identity Manager 4.0 through SP1... |
| CVE-2014-2730 | 2014-04-05 | The XML parser in Microsoft Office 2007 SP3, 2010 SP1... |
| CVE-2001-1593 | 2014-04-05 | The tempname_ensure function in lib/routines.h in a2ps 4.14 and earlier,... |
| CVE-2012-5565 | 2014-04-05 | Cross-site scripting (XSS) vulnerability in js/compose-dimp.js in Horde Internet Mail... |
| CVE-2012-5566 | 2014-04-05 | Multiple cross-site scripting (XSS) vulnerabilities in Horde Kronolith Calendar Application... |
| CVE-2012-5567 | 2014-04-05 | Multiple cross-site scripting (XSS) vulnerabilities in Horde Kronolith Calendar Application... |
| CVE-2012-6640 | 2014-04-05 | Cross-site scripting (XSS) vulnerability in Horde Internet Mail Program (IMP)... |
| CVE-2013-1946 | 2014-04-06 | The RESTful Web Services (RESTWS) module 7.x-1.x before 7.x-1.3 and... |
| CVE-2013-5680 | 2014-04-06 | Heap-based buffer overflow in hfaxd in HylaFAX+ 5.2.4 through 5.5.3,... |
| CVE-2014-0160 | 2014-04-07 | The (1) TLS and (2) DTLS implementations in OpenSSL 1.0.1... |
| CVE-2012-1834 | 2014-04-07 | Cross-site scripting (XSS) vulnerability in the cms_tpv_admin_head function in functions.php... |
| CVE-2012-2095 | 2014-04-07 | The SetWiredProperty function in the D-Bus interface in WICD before... |
| CVE-2012-6641 | 2014-04-07 | Cross-site scripting (XSS) vulnerability in redirect.php in the Socolissimo module... |
| CVE-2011-4958 | 2014-04-08 | Cross-site scripting (XSS) vulnerability in the process function in SSViewer.php... |
| CVE-2011-5277 | 2014-04-08 | Multiple SQL injection vulnerabilities in signature.php in the Advanced Forum... |
| CVE-2011-5278 | 2014-04-08 | SQL injection vulnerability in signature.php in Advanced Forum Signatures plugin... |
| CVE-2012-0033 | 2014-04-08 | The CBounceDCCMod::OnPrivCTCP function in bouncedcc.cpp in the bouncedcc module in... |
| CVE-2012-1561 | 2014-04-08 | Cross-site scripting (XSS) vulnerability in the Finder module 6.x-1.x before... |
| CVE-2012-6643 | 2014-04-08 | Multiple SQL injection vulnerabilities in the update_counter function in includes/functions.php... |
| CVE-2012-6644 | 2014-04-08 | Multiple cross-site scripting (XSS) vulnerabilities in ClipBucket 2.6 allow remote... |
| CVE-2012-6645 | 2014-04-08 | Cross-site scripting (XSS) vulnerability in the autocomplete functionality in the... |
| CVE-2012-6642 | 2014-04-08 | Cross-site scripting (XSS) vulnerability in ClipBucket 2.6 allows remote attackers... |