CVE List - 2014 / May
Showing 101 - 200 of 550 CVEs for May 2014 (Page 2 of 6)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2014-2602 | 2014-05-08 | Unspecified vulnerability in HP OneView 1.0 and 1.01 allows remote... |
| CVE-2014-2933 | 2014-05-08 | Directory traversal vulnerability in dirmng/index.php in Caldera 9.20 allows remote... |
| CVE-2014-2934 | 2014-05-08 | Multiple SQL injection vulnerabilities in Caldera 9.20 allow remote attackers... |
| CVE-2014-2935 | 2014-05-08 | costview3/xmlrpc_server/xmlrpc.php in CostView in Caldera 9.20 allows remote attackers to... |
| CVE-2014-2936 | 2014-05-08 | The directory manager in Caldera 9.20 allows remote attackers to... |
| CVE-2014-3215 | 2014-05-08 | seunshare in policycoreutils 2.2.5 is owned by root with 4755... |
| CVE-2014-3421 | 2014-05-08 | lisp/gnus/gnus-fun.el in GNU Emacs 24.3 and earlier allows local users... |
| CVE-2014-3422 | 2014-05-08 | lisp/emacs-lisp/find-gc.el in GNU Emacs 24.3 and earlier allows local users... |
| CVE-2014-3423 | 2014-05-08 | lisp/net/browse-url.el in GNU Emacs 24.3 and earlier allows local users... |
| CVE-2014-3424 | 2014-05-08 | lisp/net/tramp-sh.el in GNU Emacs 24.3 and earlier allows local users... |
| CVE-2014-3425 | 2014-05-08 | NCSA Mosaic 2.0 and earlier allows local users to cause... |
| CVE-2014-3426 | 2014-05-08 | NCSA Mosaic 2.1 through 2.7b5 allows local users to cause... |
| CVE-2012-5477 | 2014-05-08 | The smart proxy in Foreman before 1.1 uses a umask... |
| CVE-2013-0171 | 2014-05-08 | Foreman before 1.1 allows remote attackers to execute arbitrary code... |
| CVE-2013-0173 | 2014-05-08 | Foreman before 1.1 uses a salt of "foreman" to hash... |
| CVE-2013-0174 | 2014-05-08 | The external node classifier (ENC) API in Foreman before 1.1... |
| CVE-2013-0187 | 2014-05-08 | Foreman before 1.1 allows remote authenticated users to gain privileges... |
| CVE-2013-0210 | 2014-05-08 | The smart proxy Puppet run API in Foreman before 1.2.0... |
| CVE-2013-0345 | 2014-05-08 | varnish 3.0.3 uses world-readable permissions for the /var/log/varnish/ directory and... |
| CVE-2013-3571 | 2014-05-08 | socat 1.2.0.0 before 1.7.2.2 and 2.0.0-b1 before 2.0.0-b6, when used... |
| CVE-2013-4544 | 2014-05-08 | hw/net/vmxnet3.c in QEMU 2.0.0-rc0, 1.7.1, and earlier allows local guest... |
| CVE-2013-6372 | 2014-05-08 | The Subversion plugin before 1.54 for Jenkins stores credentials using... |
| CVE-2013-6889 | 2014-05-08 | GNU Rush 1.7 does not properly drop privileges, which allows... |
| CVE-2013-7041 | 2014-05-08 | The pam_userdb module for Pam uses a case-insensitive method to... |
| CVE-2014-0056 | 2014-05-08 | The l3-agent in OpenStack Neutron 2012.2 before 2013.2.3 does not... |
| CVE-2014-0090 | 2014-05-08 | Session fixation vulnerability in Foreman before 1.4.2 allows remote attackers... |
| CVE-2014-0109 | 2014-05-08 | Apache CXF before 2.6.14 and 2.7.x before 2.7.11 allows remote... |
| CVE-2014-0110 | 2014-05-08 | Apache CXF before 2.6.14 and 2.7.x before 2.7.11 allows remote... |
| CVE-2014-0134 | 2014-05-08 | The instance rescue mode in OpenStack Compute (Nova) 2013.2 before... |
| CVE-2014-0135 | 2014-05-08 | Kafo before 0.3.17 and 0.4.x before 0.5.2, as used by... |
| CVE-2014-0190 | 2014-05-08 | The GIF decoder in QtGui in Qt before 5.3 allows... |
| CVE-2014-0192 | 2014-05-08 | Foreman 1.4.0 before 1.5.0 does not properly restrict access to... |
| CVE-2014-1682 | 2014-05-08 | The API in Zabbix before 1.8.20rc1, 2.0.x before 2.0.11rc1, and... |
| CVE-2014-1685 | 2014-05-08 | The Frontend in Zabbix before 1.8.20rc2, 2.0.x before 2.0.11rc2, and... |
| CVE-2014-1934 | 2014-05-08 | tag.py in eyeD3 (aka python-eyed3) 7.0.3, 0.6.18, and earlier for... |
| CVE-2014-2689 | 2014-05-08 | Cross-site scripting (XSS) vulnerability in Offiria 2.1.0 and earlier allows... |
| CVE-2014-3115 | 2014-05-08 | Multiple cross-site request forgery (CSRF) vulnerabilities in the web administration... |
| CVE-2014-3123 | 2014-05-08 | Cross-site scripting (XSS) vulnerability in admin/manage-images.php in the NextCellent Gallery... |
| CVE-2014-3207 | 2014-05-08 | Cross-site scripting (XSS) vulnerability in wserver.ml in SKS Keyserver before... |
| CVE-2013-5916 | 2014-05-08 | Cross-site scripting (XSS) vulnerability in falha.php in the Bradesco Gateway... |
| CVE-2014-2854 | 2014-05-08 | Cross-site scripting (XSS) vulnerability in the SemanticTitle extension before 1.1.0... |
| CVE-2014-0913 | 2014-05-09 | Cross-site scripting (XSS) vulnerability in IBM iNotes and Domino 8.5.3... |
| CVE-2014-3214 | 2014-05-09 | The prefetch implementation in named in ISC BIND 9.10.0, when... |
| CVE-2014-0944 | 2014-05-09 | Cross-site request forgery (CSRF) vulnerability in the RES Console in... |
| CVE-2014-0945 | 2014-05-09 | Cross-site scripting (XSS) vulnerability in the RES Console in Rule... |
| CVE-2014-0946 | 2014-05-09 | The RES Console in Rule Execution Server in IBM Operational... |
| CVE-2014-1991 | 2014-05-09 | Open redirect vulnerability in WebPlatform / AppFramework 6.0 through 7.2... |
| CVE-2013-6220 | 2014-05-10 | Cross-site scripting (XSS) vulnerability in HP Network Node Manager i... |
| CVE-2014-2603 | 2014-05-10 | Unspecified vulnerability on HP 8/20q switches, SN6000 switches, and 8Gb... |
| CVE-2014-1737 | 2014-05-11 | The raw_cmd_copyin function in drivers/block/floppy.c in the Linux kernel through... |
| CVE-2014-1738 | 2014-05-11 | The raw_cmd_copyout function in drivers/block/floppy.c in the Linux kernel through... |
| CVE-2014-3122 | 2014-05-11 | The try_to_unmap_cluster function in mm/rmap.c in the Linux kernel before... |
| CVE-2014-3144 | 2014-05-11 | The (1) BPF_S_ANC_NLATTR and (2) BPF_S_ANC_NLATTR_NEST extension implementations in the... |
| CVE-2014-3145 | 2014-05-11 | The BPF_S_ANC_NLATTR_NEST extension implementation in the sk_run_filter function in net/core/filter.c... |
| CVE-2013-4570 | 2014-05-12 | The zend_inline_hash_func function in php-luasandbox in the Scribuntu extension for... |
| CVE-2013-4571 | 2014-05-12 | Buffer overflow in php-luasandbox in the Scribuntu extension for MediaWiki... |
| CVE-2013-4574 | 2014-05-12 | Cross-site scripting (XSS) vulnerability in the TimeMediaHandler extension for MediaWiki... |
| CVE-2013-4580 | 2014-05-12 | GitLab before 5.4.2, Community Edition before 6.2.4, and Enterprise Edition... |
| CVE-2013-4581 | 2014-05-12 | GitLab 5.0 before 5.4.2, Community Edition before 6.2.4, Enterprise Edition... |
| CVE-2013-4772 | 2014-05-12 | D-Link DIR-505L SharePort Mobile Companion 1.01 and DIR-826L Wireless N600... |
| CVE-2013-5671 | 2014-05-12 | lib/dragonfly/imagemagickutils.rb in the fog-dragonfly gem 0.8.2 for Ruby allows remote... |
| CVE-2013-5748 | 2014-05-12 | Cross-site request forgery (CSRF) vulnerability in management/prioritize_planning.php in SimpleRisk before... |
| CVE-2013-5749 | 2014-05-12 | Cross-site scripting (XSS) vulnerability in management/prioritize_planning.php in SimpleRisk before 20130916-001... |
| CVE-2013-5984 | 2014-05-12 | Directory traversal vulnerability in userfiles/modules/admin/backup/delete.php in Microweber before 0.830 allows... |
| CVE-2013-6452 | 2014-05-12 | Cross-site scripting (XSS) vulnerability in MediaWiki before 1.19.10, 1.2x before... |
| CVE-2013-6453 | 2014-05-12 | MediaWiki before 1.19.10, 1.2x before 1.21.4, and 1.22.x before 1.22.1... |
| CVE-2013-6454 | 2014-05-12 | Cross-site scripting (XSS) vulnerability in MediaWiki before 1.19.10, 1.2x before... |
| CVE-2013-6472 | 2014-05-12 | MediaWiki before 1.19.10, 1.2x before 1.21.4, and 1.22.x before 1.22.1... |
| CVE-2014-2301 | 2014-05-12 | OrbiTeam BSCW before 5.0.8 allows remote attackers to obtain sensitive... |
| CVE-2014-2928 | 2014-05-12 | The iControl API in F5 BIG-IP LTM, APM, ASM, GTM,... |
| CVE-2014-3242 | 2014-05-12 | SOAPpy 0.12.5 allows remote attackers to read arbitrary files via... |
| CVE-2014-3243 | 2014-05-12 | SOAPpy 0.12.5 does not properly detect recursion during entity expansion,... |
| CVE-2013-4577 | 2014-05-12 | A certain Debian patch for GNU GRUB uses world-readable permissions... |
| CVE-2014-3454 | 2014-05-12 | Cross-site request forgery (CSRF) vulnerability in Special:CreateCategory in the SemanticForms... |
| CVE-2014-3455 | 2014-05-12 | Multiple cross-site request forgery (CSRF) vulnerabilities in the (1) CreateProperty,... |
| CVE-2011-4970 | 2014-05-13 | Multiple SQL injection vulnerabilities in LCG Disk Pool Manager (DPM)... |
| CVE-2012-6342 | 2014-05-13 | Cross-site request forgery (CSRF) vulnerability in logout.action in Atlassian Confluence... |
| CVE-2013-1407 | 2014-05-13 | Multiple cross-site scripting (XSS) vulnerabilities in the Events Manager plugin... |
| CVE-2013-2692 | 2014-05-13 | Cross-site request forgery (CSRF) vulnerability in the Admin web interface... |
| CVE-2013-2705 | 2014-05-13 | Cross-site request forgery (CSRF) vulnerability in the WordPress Simple Paypal... |
| CVE-2014-2989 | 2014-05-13 | Cross-site request forgery (CSRF) vulnerability in Open Assessment Technologies TAO... |
| CVE-2014-3246 | 2014-05-13 | SQL injection vulnerability in Collabtive 1.2 allows remote authenticated users... |
| CVE-2013-4490 | 2014-05-13 | The SSH key upload feature (lib/gitlab_keys.rb) in gitlab-shell before 1.7.3,... |
| CVE-2013-4500 | 2014-05-13 | The Quiz module 6.x-4.x before 6.x-4.5 for Drupal allows remote... |
| CVE-2013-4501 | 2014-05-13 | The default views in the Quiz module 6.x-4.x before 6.x-4.5... |
| CVE-2013-4502 | 2014-05-13 | The FileField Sources module 6.x-1.x before 6.x-1.9 and 7.x-1.x before... |
| CVE-2013-4503 | 2014-05-13 | Cross-site scripting (XSS) vulnerability in the Feed Element Mapper module... |
| CVE-2013-4504 | 2014-05-13 | The Monster Menus module 7.x-1.x before 7.x-1.15 allows remote attackers... |
| CVE-2013-4546 | 2014-05-13 | The repository import feature in gitlab-shell before 1.7.4, as used... |
| CVE-2013-4552 | 2014-05-13 | lib/Auth/Source/External.php in the drupalauth module before 1.2.2 for simpleSAMLphp allows... |
| CVE-2013-4562 | 2014-05-13 | The omniauth-facebook gem 1.4.1 before 1.5.0 does not properly store... |
| CVE-2014-3456 | 2014-05-13 | Cross-site scripting (XSS) vulnerability in GitLab Enterprise Edition (EE) 6.6.0... |
| CVE-2010-4832 | 2014-05-14 | Android OS before 2.2 does not display the correct SSL... |
| CVE-2011-2513 | 2014-05-14 | The Java Network Launching Protocol (JNLP) implementation in IcedTea6 1.9.x... |
| CVE-2011-2514 | 2014-05-14 | The Java Network Launching Protocol (JNLP) implementation in IcedTea6 1.9.x... |
| CVE-2011-4407 | 2014-05-14 | ppa.py in Software Properties before 0.81.13.3 does not validate the... |
| CVE-2012-1600 | 2014-05-14 | Multiple cross-site scripting (XSS) vulnerabilities in functions.php in phpPgAdmin before... |
| CVE-2014-0462 | 2014-05-14 | Unspecified vulnerability in OpenJDK 6 before 6b31 on Debian GNU/Linux... |
| CVE-2014-1849 | 2014-05-14 | Foscam IP camera 11.37.2.49 and other versions, when using the... |
| CVE-2014-1909 | 2014-05-14 | Integer signedness error in system/core/adb/adb_client.c in Android Debug Bridge (ADB)... |