CVE List - 2015 / January
Showing 201 - 300 of 713 CVEs for January 2015 (Page 3 of 8)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2014-10009 | 2015-01-13 | Multiple cross-site scripting (XSS) vulnerabilities in Stark CRM 1.0 allow... |
| CVE-2014-10010 | 2015-01-13 | Directory traversal vulnerability in PHPJabbers Appointment Scheduler 2.0 allows remote... |
| CVE-2014-10011 | 2015-01-13 | Stack-based buffer overflow in UltraCamLib in the UltraCam ActiveX Control... |
| CVE-2014-10012 | 2015-01-13 | Cross-site scripting (XSS) vulnerability in the Another WordPress Classifieds Plugin... |
| CVE-2014-10013 | 2015-01-13 | SQL injection vulnerability in the Another WordPress Classifieds Plugin plugin... |
| CVE-2014-10014 | 2015-01-13 | Multiple cross-site request forgery (CSRF) vulnerabilities in PHPJabbers Event Booking... |
| CVE-2014-10016 | 2015-01-13 | Multiple cross-site scripting (XSS) vulnerabilities in the Welcart e-Commerce plugin... |
| CVE-2014-10017 | 2015-01-13 | Multiple SQL injection vulnerabilities in the Welcart e-Commerce plugin 1.3.12... |
| CVE-2014-10018 | 2015-01-13 | Cross-site scripting (XSS) vulnerability in webconfig/wlan/country.html/country in the Teracom T2-B-Gawv1.4U10Y-BI... |
| CVE-2014-10019 | 2015-01-13 | Multiple cross-site request forgery (CSRF) vulnerabilities in webconfig/wlan/country.html/country in the... |
| CVE-2014-10020 | 2015-01-13 | SQL injection vulnerability in login.php in Simple e-document 1.31 allows... |
| CVE-2014-10021 | 2015-01-13 | Unrestricted file upload vulnerability in UploadHandler.php in the WP Symposium... |
| CVE-2014-10023 | 2015-01-13 | Multiple SQL injection vulnerabilities in TopicsViewer 3.0 Beta 1 allow... |
| CVE-2014-10029 | 2015-01-13 | SQL injection vulnerability in profile.php in FluxBB before 1.4.13 and... |
| CVE-2014-100003 | 2015-01-13 | SQL injection vulnerability in includes/ym-download_functions.include.php in the Code Futures YourMembers... |
| CVE-2014-100009 | 2015-01-13 | The Joomlaskin JS Multi Hotel (aka JS MultiHotel and Js-Multi-Hotel)... |
| CVE-2014-10002 | 2015-01-13 | Unspecified vulnerability in JetBrains TeamCity before 8.1 allows remote attackers... |
| CVE-2014-10005 | 2015-01-13 | Maian Uploader 4.0 allows remote attackers to obtain sensitive information... |
| CVE-2014-10006 | 2015-01-13 | Multiple cross-site request forgery (CSRF) vulnerabilities in Maian Uploader 4.0... |
| CVE-2014-10015 | 2015-01-13 | SQL injection vulnerability in load-calendar.php in PHPJabbers Event Booking Calendar... |
| CVE-2014-10022 | 2015-01-13 | Apache Traffic Server before 5.1.2 allows remote attackers to cause... |
| CVE-2014-10024 | 2015-01-13 | Multiple integer signedness errors in DirectShowDemuxFilter, as used in Divx... |
| CVE-2014-10025 | 2015-01-13 | Multiple cross-site request forgery (CSRF) vulnerabilities in D-Link DAP-1360 with... |
| CVE-2014-10026 | 2015-01-13 | index.cgi in D-Link DAP-1360 with firmware 2.5.4 and earlier allows... |
| CVE-2014-10027 | 2015-01-13 | Multiple cross-site request forgery (CSRF) vulnerabilities in D-Link DAP-1360 router... |
| CVE-2014-10028 | 2015-01-13 | Cross-site scripting (XSS) vulnerability in D-Link DAP-1360 router with firmware... |
| CVE-2014-10030 | 2015-01-13 | Open redirect vulnerability in forums/login.php in FluxBB before 1.4.13 and... |
| CVE-2014-100011 | 2015-01-13 | SQL injection vulnerability in /send-to in Sendy 1.1.9.1 allows remote... |
| CVE-2014-100013 | 2015-01-13 | Multiple cross-site scripting (XSS) vulnerabilities in clientResponse 4.1 allow remote... |
| CVE-2014-100014 | 2015-01-13 | Multiple stack-based buffer overflows in pdmwService.exe in SolidWorks Workgroup PDM... |
| CVE-2014-100015 | 2015-01-13 | Directory traversal vulnerability in pdmwService.exe in SolidWorks Workgroup PDM 2014... |
| CVE-2014-100016 | 2015-01-13 | Cross-site scripting (XSS) vulnerability in photocrati-gallery/ecomm-sizes.php in the Photocrati theme... |
| CVE-2014-100017 | 2015-01-13 | Cross-site scripting (XSS) vulnerability in canned_opr.php in PhpOnlineChat 3.0 allows... |
| CVE-2014-100019 | 2015-01-13 | SQL injection vulnerability in the LTree converter in Pomm before... |
| CVE-2014-100020 | 2015-01-13 | SQL injection vulnerability in ChangeEmail.php in iTechClassifieds 3.03.057 allows remote... |
| CVE-2014-100022 | 2015-01-13 | SQL injection vulnerability in question.php in the mTouch Quiz before... |
| CVE-2014-100023 | 2015-01-13 | Multiple cross-site scripting (XSS) vulnerabilities in question.php in the mTouch... |
| CVE-2014-100024 | 2015-01-13 | Cross-site scripting (XSS) vulnerability in Seo Panel before 3.4.0 allows... |
| CVE-2014-100025 | 2015-01-13 | Cross-site request forgery (CSRF) vulnerability in index.php/user_data/insert_user in Savsoft Quiz... |
| CVE-2014-100026 | 2015-01-13 | Cross-site scripting (XSS) vulnerability in readme.php in the April's Super... |
| CVE-2014-100027 | 2015-01-13 | Cross-site scripting (XSS) vulnerability in the WP SlimStat plugin before... |
| CVE-2014-100028 | 2015-01-13 | Cross-site scripting (XSS) vulnerability in /signup in WEBCrafted allows remote... |
| CVE-2014-100029 | 2015-01-13 | Multiple directory traversal vulnerabilities in class/session.php in Ganesha Digital Library... |
| CVE-2014-100030 | 2015-01-13 | Cross-site scripting (XSS) vulnerability in module/search/function.php in Ganesha Digital Library... |
| CVE-2014-100031 | 2015-01-13 | Multiple SQL injection vulnerabilities in Ganesha Digital Library (GDL) 4.2... |
| CVE-2014-100032 | 2015-01-13 | Cross-site scripting (XSS) vulnerability in top.html in the Airties Air... |
| CVE-2014-100034 | 2015-01-13 | Cross-site scripting (XSS) vulnerability in the frontend interface in LicensePal... |
| CVE-2014-100036 | 2015-01-13 | Cross-site scripting (XSS) vulnerability in FlatPress 1.0.2 allows remote attackers... |
| CVE-2014-100038 | 2015-01-13 | Cross-site scripting (XSS) vulnerability in Storytlr 1.3.dev and earlier allows... |
| CVE-2014-10031 | 2015-01-13 | Buffer overflow in the IMAPd service in Qualcomm Eudora WorldMail... |
| CVE-2014-10032 | 2015-01-13 | SQL injection vulnerability in news_popup.php in Taboada MacroNews 1.0 allows... |
| CVE-2014-10033 | 2015-01-13 | SQL injection vulnerability in the update_zone function in catalog/admin/geo_zones.php in... |
| CVE-2014-10034 | 2015-01-13 | Multiple SQL injection vulnerabilities in the admin area in couponPHP... |
| CVE-2014-10036 | 2015-01-13 | Cross-site scripting (XSS) vulnerability in JetBrains TeamCity before 8.1 allows... |
| CVE-2014-10037 | 2015-01-13 | Directory traversal vulnerability in DomPHP 0.83 and earlier allows remote... |
| CVE-2014-10038 | 2015-01-13 | SQL injection vulnerability in agenda/indexdate.php in DomPHP 0.83 and earlier... |
| CVE-2014-100012 | 2015-01-13 | SQL injection vulnerability in /app in Sendy 1.1.8.4 allows remote... |
| CVE-2014-100018 | 2015-01-13 | Cross-site scripting (XSS) vulnerability in the Unconfirmed plugin before 1.2.5... |
| CVE-2014-100021 | 2015-01-13 | Cross-site scripting (XSS) vulnerability in symfony/web/index.php/pim/viewEmployeeList in OrangeHRM before 3.1.2... |
| CVE-2014-100033 | 2015-01-13 | Directory traversal vulnerability in LicensePal ArcticDesk before 1.2.5 allows remote... |
| CVE-2014-100035 | 2015-01-13 | SQL injection vulnerability in the ticket grid in the admin... |
| CVE-2014-100037 | 2015-01-13 | Cross-site scripting (XSS) vulnerability in Storytlr 1.3.dev and earlier allows... |
| CVE-2014-100039 | 2015-01-13 | mbae.sys in Malwarebytes Anti-Exploit before 1.05.1.2014 allows local users to... |
| CVE-2014-10035 | 2015-01-13 | Multiple cross-site scripting (XSS) vulnerabilities in the admin area in... |
| CVE-2015-0001 | 2015-01-13 | The Windows Error Reporting (WER) component in Microsoft Windows 8,... |
| CVE-2015-0002 | 2015-01-13 | The AhcVerifyAdminContext function in ahcache.sys in the Application Compatibility component... |
| CVE-2015-0004 | 2015-01-13 | The User Profile Service (aka ProfSvc) in Microsoft Windows Server... |
| CVE-2015-0006 | 2015-01-13 | The Network Location Awareness (NLA) service in Microsoft Windows Server... |
| CVE-2015-0011 | 2015-01-13 | mrxdav.sys (aka the WebDAV driver) in the kernel-mode drivers in... |
| CVE-2015-0014 | 2015-01-13 | Buffer overflow in the Telnet service in Microsoft Windows Server... |
| CVE-2015-0015 | 2015-01-13 | Microsoft Windows Server 2003 SP2, Server 2008 SP2 and R2... |
| CVE-2015-0016 | 2015-01-13 | Directory traversal vulnerability in the TS WebProxy (aka TSWbPrxy) component... |
| CVE-2015-0301 | 2015-01-13 | Adobe Flash Player before 13.0.0.260 and 14.x through 16.x before... |
| CVE-2015-0302 | 2015-01-13 | Adobe Flash Player before 13.0.0.260 and 14.x through 16.x before... |
| CVE-2015-0303 | 2015-01-13 | Adobe Flash Player before 13.0.0.260 and 14.x through 16.x before... |
| CVE-2015-0304 | 2015-01-13 | Heap-based buffer overflow in Adobe Flash Player before 13.0.0.260 and... |
| CVE-2015-0305 | 2015-01-13 | Adobe Flash Player before 13.0.0.260 and 14.x through 16.x before... |
| CVE-2015-0306 | 2015-01-13 | Adobe Flash Player before 13.0.0.260 and 14.x through 16.x before... |
| CVE-2015-0307 | 2015-01-13 | Adobe Flash Player before 13.0.0.260 and 14.x through 16.x before... |
| CVE-2015-0308 | 2015-01-13 | Use-after-free vulnerability in Adobe Flash Player before 13.0.0.260 and 14.x... |
| CVE-2015-0309 | 2015-01-13 | Heap-based buffer overflow in Adobe Flash Player before 13.0.0.260 and... |
| CVE-2014-5231 | 2015-01-14 | The Siemens SIMATIC WinCC Sm@rtClient app before 1.0.2 for iOS... |
| CVE-2014-5232 | 2015-01-14 | The Siemens SIMATIC WinCC Sm@rtClient app before 1.0.2 for iOS... |
| CVE-2014-5233 | 2015-01-14 | The Siemens SIMATIC WinCC Sm@rtClient app before 1.0.2 for iOS... |
| CVE-2014-8634 | 2015-01-14 | Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox... |
| CVE-2014-8635 | 2015-01-14 | Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox... |
| CVE-2014-8636 | 2015-01-14 | The XrayWrapper implementation in Mozilla Firefox before 35.0 and SeaMonkey... |
| CVE-2014-8637 | 2015-01-14 | Mozilla Firefox before 35.0 and SeaMonkey before 2.32 do not... |
| CVE-2014-8638 | 2015-01-14 | The navigator.sendBeacon implementation in Mozilla Firefox before 35.0, Firefox ESR... |
| CVE-2014-8639 | 2015-01-14 | Mozilla Firefox before 35.0, Firefox ESR 31.x before 31.4, Thunderbird... |
| CVE-2014-8640 | 2015-01-14 | The mozilla::dom::AudioParamTimeline::AudioNodeInputValue function in the Web Audio API implementation in... |
| CVE-2014-8641 | 2015-01-14 | Use-after-free vulnerability in the WebRTC implementation in Mozilla Firefox before... |
| CVE-2014-8642 | 2015-01-14 | Mozilla Firefox before 35.0 and SeaMonkey before 2.32 do not... |
| CVE-2014-8643 | 2015-01-14 | Mozilla Firefox before 35.0 on Windows allows remote attackers to... |
| CVE-2014-3314 | 2015-01-14 | Cisco AnyConnect on Android and OS X does not properly... |
| CVE-2015-0577 | 2015-01-14 | Multiple cross-site scripting (XSS) vulnerabilities in the IronPort Spam Quarantine... |
| CVE-2015-0578 | 2015-01-14 | Cisco Adaptive Security Appliance (ASA) Software, when a DHCPv6 relay... |
| CVE-2015-0579 | 2015-01-14 | Cisco TelePresence Video Communication Server (VCS) and Cisco Expressway allow... |
| CVE-2015-0583 | 2015-01-14 | Cisco WebEx Meeting Center does not properly restrict the content... |
| CVE-2014-0171 | 2015-01-15 | XML external entity (XXE) vulnerability in StaxXMLFactoryProvider2 in Odata4j, as... |