[go: up one dir, main page]
More Web Proxy on the site http://driver.im/

CNA 2014

VulDB is an officially certified CVE Numbering Authority (CNA) by MITRE and Authorized Data Publisher (ADP) by NIST NVD. We are authorized to handle new vulnerability submissions, assign unique CVEs and disclose them. CVE is an international program to discover vulnerabilities which are then assigned and published to the CVE list. Partners coordinate such CVE entries to communicate consistent descriptions. Information technology and cybersecurity professionals all around the world use CVE records to ensure they are discussing the same issues, and to coordinate their efforts to prioritize and address these properly.

Fournisseur

Not Defined46
BestWebSoft5
yanheven2
saxman2
vicamo2

Produit

FFmpeg24
Gimmie Plugin3
yanheven console2
saxman maps-js-icoads2
vicamo NetworkManager2

Contre-mesures

Official Fix108
Temporary Fix0
Workaround1
Unavailable0
Not Defined0

Exploitabilité

High0
Functional0
Proof-of-Concept1
Unproven24
Not Defined84

Vecteur d'accès

Not Defined0
Physical0
Local0
Adjacent46
Network63

Authentification

Not Defined0
High3
Low75
None31

Interaction de l'utilisateur

Not Defined0
Required24
None85

VulDB

≤10
≤20
≤35
≤423
≤510
≤659
≤76
≤85
≤91
≤100

Exploiter 0 jour

<1k8
<2k77
<5k24
<10k0
<25k0
<50k0
<100k0
≥100k0
IDVulnérabilitéScopeResponsibleSoumissionÉtabliMise à jourCVESubmitCNA
259628namithjawahar Wp-Insert cross site scriptingVulDBVulDB07/04/202407/04/2024CVE-2014-125111
 
accepté
258781wp-file-upload Plugin wfu_ajaxactions.php wfu_ajax_action_callback cross site scriptingVulDBVulDB30/03/202408/05/2024CVE-2014-125110
 
accepté
248956BestWebSoft Portfolio Plugin bws_menu.php bws_add_menu_render cross site scriptingVulDBVulDB24/12/202318/01/2024CVE-2014-125109
 
accepté
248849w3c online-spellchecker-py spellchecker cross site scriptingVulDBVulDB22/12/202318/01/2024CVE-2014-125108
 
accepté
248270Corveda PHPSandbox String elévation de privilègesVulDBVulDB17/12/202312/01/2024CVE-2014-125107
 
accepté
230659Broken Link Checker Plugin Settings Page core.php options_page cross site scriptingVulDBVulDB03/06/202330/06/2023CVE-2014-125105
 
accepté
230263VaultPress Plugin MailPoet Plugin class.vaultpress-hotfixes.php protect_aioseo_ajax elévation de privilègesVulDBVulDB30/05/202324/06/2023CVE-2014-125104
 
accepté
230155BestWebSoft Twitter Plugin twitter.php twttr_settings_page cross site scriptingVulDBVulDB29/05/202321/06/2023CVE-2014-125103
 
accepté
230113Bestwebsoft Relevant Plugin Thumbnail divulgation de l'informationVulDBVulDB28/05/202321/06/2023CVE-2014-125102
 
accepté
230085Portfolio Gallery Plugin sql injectionVulDBVulDB27/05/202321/06/2023CVE-2014-125101
 
accepté
227764BestWebSoft Job Board Plugin cross site scriptingVulDBVulDB30/04/202324/05/2023CVE-2014-125100
 
accepté
226309I Recommend This Plugin dot-irecommendthis.php sql injectionVulDBVulDB18/04/202309/05/2023CVE-2014-125099
 
accepté
225356Dart http_server Directory Listing virtual_directory.dart VirtualDirectory cross site scriptingVulDBVulDB08/04/202326/04/2023CVE-2014-125098
 
accepté
225354BestWebSoft Facebook Like Button facebook-button-plugin.php fcbkbttn_settings_page cross site scriptingVulDBVulDB08/04/202326/04/2023CVE-2014-125097
 
accepté
225349Fancy Gallery Plugin Options Page class.options.php cross site scriptingVulDBVulDB08/04/202326/04/2023CVE-2014-125096
 
accepté
225320BestWebSoft Contact Form Plugin bws_menu.php bws_add_menu_render cross site scriptingVulDBVulDB07/04/202326/04/2023CVE-2014-125095
 
accepté
225001phpMiniAdmin cross site scriptingVulDBVulDB05/04/202322/04/2023CVE-2014-125094
 
accepté
222610Ad Blocking Detector Plugin ad-blocking-detector.php divulgation de l'informationVulDBVulDB08/03/202301/04/2023CVE-2014-125093
 
accepté
222323MaxButtons Plugin maxbuttons-button.php maxbuttons_strip_px cross site scriptingVulDBVulDB04/03/202331/03/2023CVE-2014-125092
 
accepté
222268codepeople cp-polls Plugin cp-admin-int-message-list.inc.php sql injectionVulDBVulDB03/03/202331/03/2023CVE-2014-125091
 
accepté
222262Media Downloader Plugin getfile.php dl_file_resumable cross site scriptingVulDBVulDB03/03/202331/03/2023CVE-2014-125090
 
accepté
221497cention-chatserver InternalChatProtocol.fe _formatBody cross site scriptingVulDBVulDB19/02/202323/03/2023CVE-2014-125089
 
accepté
221488qt-users-jp silk header.qml cross site scriptingVulDBVulDB18/02/202323/03/2023CVE-2014-125088
 
accepté
221480java-xmlbuilder XML External EntityVulDBVulDB18/02/202323/03/2023CVE-2014-125087
 
accepté
220207Gimmie Plugin trigger_login.php sql injectionVulDBVulDB04/02/202305/03/2023CVE-2014-125086
 
accepté
220206Gimmie Plugin trigger_ratethread.php sql injectionVulDBVulDB04/02/202305/03/2023CVE-2014-125085
 
accepté
220205Gimmie Plugin trigger_referral.php sql injectionVulDBVulDB04/02/202305/03/2023CVE-2014-125084
 
accepté
218911Anant Labs google-enterprise-connector-dctm sql injectionVulDBVulDB18/01/202315/02/2023CVE-2014-125083
 
accepté
218464nivit redports model.py sql injectionVulDBVulDB17/01/202309/02/2023CVE-2014-125082
 
accepté
218459risheesh debutsav sql injectionVulDBVulDB17/01/202309/02/2023CVE-2014-125081
 
accepté
218398frontaccounting faplanet directory traversalVulDBVulDB15/01/202307/02/2023CVE-2014-125080
 
accepté
218356agy pontifex.http Http.coffee sql injectionVulDBVulDB14/01/202307/02/2023CVE-2014-125079
 
accepté
218354yanheven console horizon.instances.js cross site scriptingVulDBVulDB14/01/202307/02/2023CVE-2014-125078
 
accepté
218351pointhi searx_stats cron.php sql injectionVulDBVulDB14/01/202307/02/2023CVE-2014-125077
 
accepté
218022NoxxieNl Criminals roulette.php sql injectionVulDBVulDB11/01/202304/02/2023CVE-2014-125076
 
accepté
218021gmail-servlet Model.java search sql injectionVulDBVulDB11/01/202304/02/2023CVE-2014-125075
 
accepté
218005Nayshlok Voyager DatabaseAccess.java sql injectionVulDBVulDB11/01/202301/02/2023CVE-2014-125074
 
accepté
217790mapoor voteapp app.py show_refresh sql injectionVulDBVulDB10/01/202331/01/2023CVE-2014-125073
 
accepté
217719CherishSin klattr sql injectionVulDBVulDB09/01/202330/01/2023CVE-2014-125072
 
accepté
217716lukehutch Gribbit HttpRequestHandler.java messageReceived Privilege EscalationVulDBVulDB09/01/202330/01/2023CVE-2014-125071
 
accepté
217651yanheven console tables.py AvailabilityZonesTable cross site scriptingVulDBVulDB08/01/202330/01/2023CVE-2014-125070
 
accepté
217644saxman maps-js-icoads divulgation de l'informationVulDBVulDB08/01/202330/01/2023CVE-2014-125069
 
accepté
217643saxman maps-js-icoads http-server.js directory traversalVulDBVulDB08/01/202330/01/2023CVE-2014-125068
 
accepté
217639corincerami curiosity image_controller.rb sql injectionVulDBVulDB08/01/202330/01/2023CVE-2014-125067
 
accepté
217636emmflo yuko-bot dénie de serviceVulDBVulDB08/01/202330/01/2023CVE-2014-125066
 
accepté
217632john5223 bottle-auth sql injectionVulDBVulDB07/01/202330/01/2023CVE-2014-125065
 
accepté
217631elgs gosqljson gosqljson.go ExecDb sql injection [False-Positive]VulDBVulDB07/01/202321/02/2023CVE-2014-125064
 
revoked
217625ada-l0velace Bid sql injectionVulDBVulDB07/01/202330/01/2023CVE-2014-125063
 
accepté
217621ananich bitstorm announce.php sql injectionVulDBVulDB07/01/202329/01/2023CVE-2014-125062
 
accepté
217616peel filebroker common.rb select_transfer_status_desc sql injectionVulDBVulDB07/01/202306/08/2024CVE-2014-125061
 
accepté
217614holdennb CollabCal calenderServer.cpp handleGet authentification faibleVulDBVulDB07/01/202329/01/2023CVE-2014-125060
 
accepté
217613sternenseemann sternenblog main.c blog_index elévation de privilègesVulDBVulDB07/01/202329/01/2023CVE-2014-125059
 
accepté
217607LearnMeSomeCodes project3 search.rb search_first_name sql injectionVulDBVulDB07/01/202329/01/2023CVE-2014-125058
 
accepté
217599mrobit robitailletheknot CSRF Token filters.php elévation de privilègesVulDBVulDB07/01/202329/01/2023CVE-2014-125057
 
accepté
217598Pylons horus services.py divulgation de l'informationVulDBVulDB07/01/202329/01/2023CVE-2014-125056
 
accepté
217596agnivade easy-scrypt scrypt.go VerifyPassphrase divulgation de l'informationVulDBVulDB07/01/202329/01/2023CVE-2014-125055
 
accepté
217594koroket RedditOnRails Vote elévation de privilègesVulDBVulDB07/01/202329/01/2023CVE-2014-125054
 
accepté
217582Piwigo-Guest-Book Navigation Bar guestbook.inc.php sql injectionVulDBVulDB06/01/202329/01/2023CVE-2014-125053
 
accepté
217571JervenBolleman sparql-identifiers RegistryDao.java sql injectionVulDBVulDB06/01/202329/01/2023CVE-2014-125052
 
accepté
217564himiklab yii2-jqgrid-widget JqGridAction.php addSearchOptionsRecursively sql injectionVulDBVulDB06/01/202329/01/2023CVE-2014-125051
 
accepté
217562ScottTZhang voter-js main.js sql injectionVulDBVulDB06/01/202329/01/2023CVE-2014-125050
 
accepté
217560typcn Blogile server.js getNav sql injectionVulDBVulDB06/01/202306/08/2024CVE-2014-125049
 
accepté
217559kassi xingwall oauth.js authentification faibleVulDBVulDB06/01/202329/01/2023CVE-2014-125048
 
accepté
217557tbezman school-store sql injectionVulDBVulDB06/01/202329/01/2023CVE-2014-125047
 
accepté
217551Seiji42 cub-scout-tracker databaseAccessFunctions.js sql injectionVulDBVulDB06/01/202329/01/2023CVE-2014-125046
 
accepté
217525meol1 index.php GetAnimal sql injectionVulDBVulDB05/01/202329/01/2023CVE-2014-125045
 
accepté
217515soshtolsus wing-tight index.php elévation de privilègesVulDBVulDB05/01/202329/01/2023CVE-2014-125044
 
accepté
217514vicamo NetworkManager nm-device.c send_arps elévation de privilèges [False-Positive]VulDBVulDB05/01/202327/02/2023CVE-2014-125043
 
revoked
217513vicamo NetworkManager nm_setting_vlan_add_priority_str dénie de service [False-Positive]VulDBVulDB05/01/202327/02/2023CVE-2014-125042
 
revoked
217486Miccighel PR-CWT sql injectionVulDBVulDB05/01/202328/01/2023CVE-2014-125041
 
accepté
217484stevejagodzinski DevNewsAggregator RemoteHtmlContentDataAccess.php getByName sql injectionVulDBVulDB05/01/202328/01/2023CVE-2014-125040
 
accepté
217352kkokko NeoXplora Trainer cross site scriptingVulDBVulDB04/01/202328/01/2023CVE-2014-125039
 
accepté
217192IS_Projecto2 NewsBean.java sql injectionVulDBVulDB02/01/202327/01/2023CVE-2014-125038
 
accepté
217191License to Kill injury.rb sql injectionVulDBVulDB02/01/202327/01/2023CVE-2014-125037
 
accepté
217190drybjed ansible-ntp main.yml dénie de serviceVulDBVulDB02/01/202327/01/2023CVE-2014-125036
 
accepté
217189Jobs-Plugin cross site scriptingVulDBVulDB02/01/202327/01/2023CVE-2014-125035
 
accepté
217183stiiv contact_app View.php render cross site scriptingVulDBVulDB02/01/202326/01/2023CVE-2014-125034
 
accepté
217178rails-cv-app uploaded_files_controller.rb divulgation de l'informationVulDBVulDB02/01/202326/01/2023CVE-2014-125033
 
accepté
217177porpeeranut go-with-me add.php sql injectionVulDBVulDB02/01/202326/01/2023CVE-2014-125032
 
accepté
217176kirill2485 TekNet loggedin.php cross site scriptingVulDBVulDB02/01/202326/01/2023CVE-2014-125031
 
accepté
217154taoeffect Empress authentification faibleVulDBVulDB01/01/202326/01/2023CVE-2014-125030
 
accepté
217150ttskch PaginationServiceProvider Demo index.php sql injectionVulDBVulDB31/12/202226/01/2023CVE-2014-125029
 
accepté
217148valtech IDP Test Client main.py cross site request forgeryVulDBVulDB31/12/202226/01/2023CVE-2014-125028
 
accepté
217147Yuna Scatari TBDev usersearch.php get_user_icons cross site scriptingVulDBVulDB31/12/202226/01/2023CVE-2014-125027
 
accepté
13428Cardo Systems Scala Rider Q3 Cardo-Updater api elévation de privilègesVulDBVulDB03/06/201424/05/2022CVE-2014-125001
 
accepté
12588FFmpeg dnxhdenc.c dnxhd_init_rc buffer overflowVulDBVulDB13/03/201417/06/2022CVE-2014-125002
 
accepté
12587FFmpeg jpeg2000dec.c get_siz buffer overflowVulDBVulDB13/03/201417/06/2022CVE-2014-125003
 
accepté
12586FFmpeg vmnc.c decode_hextile buffer overflowVulDBVulDB13/03/201417/06/2022CVE-2014-125004
 
accepté
12585FFmpeg mpeg4videodec.c decode_vol_header buffer overflowVulDBVulDB13/03/201417/06/2022CVE-2014-125005
 
accepté
12584FFmpeg h264.c output_frame buffer overflowVulDBVulDB13/03/201417/06/2022CVE-2014-125006
 
accepté
12583FFmpeg hevcpred_template.c intra_pred buffer overflowVulDBVulDB13/03/201417/06/2022CVE-2014-125007
 
accepté
12582FFmpeg oggparsevorbis.c vorbis_header buffer overflowVulDBVulDB13/03/201417/06/2022CVE-2014-125008
 
accepté
12393FFmpeg snow.h add_yblock buffer overflowVulDBVulDB24/02/201417/06/2022CVE-2014-125009
 
accepté
12392FFmpeg h64.c decode_slice_header buffer overflowVulDBVulDB24/02/201417/06/2022CVE-2014-125010
 
accepté
12391FFmpeg ansi.c decode_frameVulDBVulDB24/02/201417/06/2022CVE-2014-125011
 
accepté
12390FFmpeg dxtroy.c dénie de serviceVulDBVulDB24/02/201417/06/2022CVE-2014-125012
 
accepté
12389FFmpeg msrle.c msrle_decode_frame buffer overflowVulDBVulDB24/02/201417/06/2022CVE-2014-125013
 
accepté
12367FFmpeg HEVC Video Decoder buffer overflowVulDBVulDB22/02/201417/06/2022CVE-2014-125014
 
accepté
12366FFmpeg read_var_block_data buffer overflowVulDBVulDB22/02/201417/06/2022CVE-2014-125015
 
accepté
12365FFmpeg utils.c ff_init_buffer_info buffer overflowVulDBVulDB22/02/201417/06/2022CVE-2014-125016
 
accepté

9 plus d'entrées ne sont pas affichées

đź”’ Login Required

You need to signup and login to see more of the remaining 9 results.

◂ PrécédentAperçuSuivant ▸

Do you need the next level of professionalism?

Upgrade your account now!