Weekly Vulnerabilities Reports > June 30 to July 6, 2014

Overview

172 new vulnerabilities reported during this period, including 14 critical vulnerabilities and 4 high severity vulnerabilities. This weekly summary report vulnerabilities in 138 products from 115 vendors including Apple, Netgate, Linux, Canonical, and Suse. Vulnerabilities are notably categorized as "Cross-site Scripting", "Improper Restriction of Operations within the Bounds of a Memory Buffer", "Permissions, Privileges, and Access Controls", "Information Exposure", and "Improper Input Validation".

  • 151 reported vulnerabilities are remotely exploitables.
  • 4 reported vulnerabilities have public exploit available.
  • 92 reported vulnerabilities are related to weaknesses in OWASP Top Ten.
  • 164 reported vulnerabilities are exploitable by an anonymous user.
  • Apple has the most reported vulnerabilities, with 39 reported vulnerabilities.
  • Apple has the most reported critical vulnerabilities, with 9 reported vulnerabilities.

TOTAL
VULNERABILITIES
CRITICAL RISK
VULNERABILITIES
HIGH RISK
VULNERABILITIES
MEDIUM RISK
VULNERABILITIES
LOW RISK
VULNERABILITIES
REMOTELY
EXPLOITABLE
LOCALLY
EXPLOITABLE
EXPLOIT
AVAILABLE
EXPLOITABLE
ANONYMOUSLY
AFFECTING
WEB APPLICATION

Vulnerability Details

The following table list reported vulnerabilities for the period covered by this report:

Expand/Hide

14 Critical Vulnerabilities

DATE CVE VENDOR VULNERABILITY CVSS
2014-07-03 CVE-2014-0247 Fedoraproject
Redhat
Libreoffice
Canonical
Opensuse
Security vulnerability in LibreOffice

LibreOffice 4.2.4 executes unspecified VBA macros automatically, which has unspecified impact and attack vectors, possibly related to doc/docmacromode.cxx.

10.0
2014-07-01 CVE-2014-1381 Apple Permissions, Privileges, and Access Controls vulnerability in Apple mac OS X

Thunderbolt in Apple OS X before 10.9.4 does not properly restrict IOThunderBoltController API calls, which allows attackers to execute arbitrary code or cause a denial of service (out-of-bounds memory access and application crash) via a crafted call.

10.0
2014-07-01 CVE-2014-1379 Apple Unspecified vulnerability in Apple mac OS X

Graphics Drivers in Apple OS X before 10.9.4 allows attackers to gain privileges or cause a denial of service (NULL pointer dereference and system crash) via a 32-bit executable file for a crafted application.

10.0
2014-07-01 CVE-2014-1377 Apple Unspecified vulnerability in Apple mac OS X

Array index error in IOAcceleratorFamily in Apple OS X before 10.9.4 allows attackers to execute arbitrary code via a crafted application.

10.0
2014-07-01 CVE-2014-1376 Apple Permissions, Privileges, and Access Controls vulnerability in Apple mac OS X

Intel Compute in Apple OS X before 10.9.4 does not properly restrict an unspecified OpenCL API call, which allows attackers to execute arbitrary code via a crafted application.

10.0
2014-07-01 CVE-2014-1373 Apple Permissions, Privileges, and Access Controls vulnerability in Apple mac OS X

Intel Graphics Driver in Apple OS X before 10.9.4 does not properly restrict an unspecified OpenGL API call, which allows attackers to execute arbitrary code via a crafted application.

10.0
2014-07-01 CVE-2014-1359 Apple Numeric Errors vulnerability in Apple Iphone OS, mac OS X and Tvos

Integer underflow in launchd in Apple iOS before 7.1.2, Apple OS X before 10.9.4, and Apple TV before 6.1.2 allows attackers to execute arbitrary code via a crafted application.

10.0
2014-07-01 CVE-2014-1358 Apple Numeric Errors vulnerability in Apple Iphone OS, mac OS X and Tvos

Integer overflow in launchd in Apple iOS before 7.1.2, Apple OS X before 10.9.4, and Apple TV before 6.1.2 allows attackers to execute arbitrary code via a crafted application.

10.0
2014-07-01 CVE-2014-1357 Apple Buffer Errors vulnerability in Apple Iphone OS, mac OS X and Tvos

Heap-based buffer overflow in launchd in Apple iOS before 7.1.2, Apple OS X before 10.9.4, and Apple TV before 6.1.2 allows attackers to execute arbitrary code via a crafted application that generates log messages.

10.0
2014-07-01 CVE-2014-1356 Apple Buffer Errors vulnerability in Apple Iphone OS, mac OS X and Tvos

Heap-based buffer overflow in launchd in Apple iOS before 7.1.2, Apple OS X before 10.9.4, and Apple TV before 6.1.2 allows attackers to execute arbitrary code via a crafted application that sends IPC messages.

10.0
2014-07-03 CVE-2014-0325 Microsoft Memory Corruption vulnerability in Microsoft Internet Explorer 9

Use-after-free vulnerability in Microsoft Internet Explorer 9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site that triggers improper processing of CElement objects, aka "Internet Explorer Memory Corruption Vulnerability," a different vulnerability than CVE-2014-1751 and CVE-2014-1755.

9.3
2014-07-01 CVE-2013-7388 Google
Trimble
Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in multiple products

Heap-based buffer overflow in paintlib, as used in Trimble SketchUp (formerly Google SketchUp) before 2013 (13.0.3689), allows remote attackers to execute arbitrary code via a crafted RLE4-compressed bitmap (BMP).

9.3
2014-07-01 CVE-2013-3664 Google
Trimble
Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in multiple products

Trimble SketchUp (formerly Google SketchUp) before 2013 (13.0.3689) allows remote attackers to execute arbitrary code via a crafted color palette table in a MAC Pict texture, which triggers an out-of-bounds stack write.

9.3
2014-07-01 CVE-2013-3662 Google Buffer Errors vulnerability in Google Sketchup 7.0/7.1/8.0

Timbre SketchUp (formerly Google SketchUp) before 8 Maintenance 2 allows remote attackers to execute arbitrary code via a crafted color palette table in a MAC Pict texture, which triggers a stack-based buffer overflow.

9.3

4 High Vulnerabilities

DATE CVE VENDOR VULNERABILITY CVSS
2014-07-03 CVE-2014-4672 Yiiframework Code Injection vulnerability in Yiiframework 1.1.14

The CDetailView widget in Yii PHP Framework 1.1.14 allows remote attackers to execute arbitrary PHP scripts via vectors related to the value property.

7.5
2014-07-03 CVE-2014-4608 Linux
Opensuse
Suse
Canonical
Integer Overflow OR Wraparound vulnerability in multiple products

** DISPUTED ** Multiple integer overflows in the lzo1x_decompress_safe function in lib/lzo/lzo1x_decompress_safe.c in the LZO decompressor in the Linux kernel before 3.15.2 allow context-dependent attackers to cause a denial of service (memory corruption) via a crafted Literal Run.

7.5
2014-07-01 CVE-2014-1371 Apple Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Apple mac OS X and mac OS X Server

Array index error in Dock in Apple OS X before 10.9.4 allows attackers to execute arbitrary code or cause a denial of service (incorrect function-pointer dereference and application crash) by leveraging access to a sandboxed application for sending a message.

7.5
2014-07-02 CVE-2014-3074 IBM Permissions, Privileges, and Access Controls vulnerability in IBM AIX and Vios

The runtime linker in IBM AIX 6.1 and 7.1 and VIOS 2.2.x allows local users to create a mode-666 root-owned file, and consequently gain privileges, by setting crafted MALLOCOPTIONS and MALLOCBUCKETS environment-variable values and then executing a setuid program.

7.2

139 Medium Vulnerabilities

DATE CVE VENDOR VULNERABILITY CVSS
2014-07-03 CVE-2014-4718 Lunarcms Cross-Site Request Forgery (CSRF) vulnerability in Lunarcms Lunar CMS 3.1/3.2/3.3

Multiple cross-site request forgery (CSRF) vulnerabilities in Lunar CMS before 3.3-3 allow remote attackers to hijack the authentication of administrators for requests that (1) add Super users via a request to admin/user_create.php or conduct cross-site scripting (XSS) attacks via the (2) email or (3) subject parameter in contact_form.ext.php to admin/extensions.php.

6.8
2014-07-03 CVE-2014-4717 Davidsneal Cross-Site Request Forgery (CSRF) vulnerability in Davidsneal Simple Share Buttons Adder

Multiple cross-site request forgery (CSRF) vulnerabilities in the Simple Share Buttons Adder plugin before 4.5 for WordPress allow remote attackers to hijack the authentication of administrators for requests that conduct cross-site scripting (XSS) attacks via the (1) ssba_share_text parameter in a save action to wp-admin/options-general.php, which is not properly handled in the homepage, and unspecified vectors related to (2) Pages, (3) Posts, (4) Category/Archive pages or (5) post Excerpts.

6.8
2014-07-03 CVE-2014-4716 Thomson Cross-Site Request Forgery (CSRF) vulnerability in Thomson Twg87Ouir

Cross-site request forgery (CSRF) vulnerability in Thomson TWG87OUIR allows remote attackers to hijack the authentication of unspecified victims for requests that change passwords via the Password and PasswordReEnter parameters to goform/RgSecurity.

6.8
2014-07-03 CVE-2014-3920 Kanboard Cross-Site Request Forgery (CSRF) vulnerability in Kanboard

Cross-site request forgery (CSRF) vulnerability in Kanboard before 1.0.6 allows remote attackers to hijack the authentication of administrators for requests that add an administrative user via a save action to the default URI.

6.8
2014-07-02 CVE-2014-4614 Piwigo Cross-Site Request Forgery (CSRF) vulnerability in Piwigo

Multiple cross-site request forgery (CSRF) vulnerabilities in Piwigo before 2.6.2 allow remote attackers to hijack the authentication of administrators for requests that use the (1) pwg.groups.addUser, (2) pwg.groups.deleteUser, (3) pwg.groups.setInfo, (4) pwg.users.setInfo, (5) pwg.permissions.add, or (6) pwg.permissions.remove method.

6.8
2014-07-02 CVE-2014-4691 Netgate Remote Security vulnerability in Pfsense

Session fixation vulnerability in pfSense before 2.1.4 allows remote attackers to hijack web sessions via a firewall login cookie.

6.8
2014-07-02 CVE-2014-3307 Cisco Remote Arbitrary Command Execution vulnerability in Cisco Small Cell DHCP Message Processing

The DHCP client implementation in Universal Small Cell firmware on Cisco Small Cell products allows remote attackers to execute arbitrary commands via crafted DHCP messages, aka Bug ID CSCup47513.

6.8
2014-07-02 CVE-2014-4668 Fedoraproject
Mageia Project
Cherokee Project
Improper Authentication vulnerability in multiple products

The cherokee_validator_ldap_check function in validator_ldap.c in Cherokee 1.2.103 and earlier, when LDAP is used, does not properly consider unauthenticated-bind semantics, which allows remote attackers to bypass authentication via an empty password.

6.8
2014-07-01 CVE-2014-1382 Apple Buffer Errors vulnerability in Apple Iphone OS, Safari and Tvos

WebKit, as used in Apple iOS before 7.1.2, Apple Safari before 6.1.5 and 7.x before 7.0.5, and Apple TV before 6.1.2, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2014-06-30-1, APPLE-SA-2014-06-30-3, and APPLE-SA-2014-06-30-4.

6.8
2014-07-01 CVE-2014-1370 Apple Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Apple mac OS X and mac OS X Server

The byte-swapping implementation in copyfile in Apple OS X before 10.9.4 allows remote attackers to execute arbitrary code or cause a denial of service (out-of-bounds memory access and application crash) via a crafted AppleDouble file in a ZIP archive.

6.8
2014-07-01 CVE-2014-1368 Apple Buffer Errors vulnerability in Apple Iphone OS, Safari and Tvos

WebKit, as used in Apple iOS before 7.1.2, Apple Safari before 6.1.5 and 7.x before 7.0.5, and Apple TV before 6.1.2, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2014-06-30-1, APPLE-SA-2014-06-30-3, and APPLE-SA-2014-06-30-4.

6.8
2014-07-01 CVE-2014-1367 Apple Buffer Errors vulnerability in Apple Iphone OS, Safari and Tvos

WebKit, as used in Apple iOS before 7.1.2, Apple Safari before 6.1.5 and 7.x before 7.0.5, and Apple TV before 6.1.2, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2014-06-30-1, APPLE-SA-2014-06-30-3, and APPLE-SA-2014-06-30-4.

6.8
2014-07-01 CVE-2014-1366 Apple Buffer Errors vulnerability in Apple Iphone OS, Safari and Tvos

WebKit, as used in Apple iOS before 7.1.2, Apple Safari before 6.1.5 and 7.x before 7.0.5, and Apple TV before 6.1.2, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2014-06-30-1, APPLE-SA-2014-06-30-3, and APPLE-SA-2014-06-30-4.

6.8
2014-07-01 CVE-2014-1365 Apple Buffer Errors vulnerability in Apple Iphone OS, Safari and Tvos

WebKit, as used in Apple iOS before 7.1.2, Apple Safari before 6.1.5 and 7.x before 7.0.5, and Apple TV before 6.1.2, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2014-06-30-1, APPLE-SA-2014-06-30-3, and APPLE-SA-2014-06-30-4.

6.8
2014-07-01 CVE-2014-1364 Apple Buffer Errors vulnerability in Apple Iphone OS, Safari and Tvos

WebKit, as used in Apple iOS before 7.1.2, Apple Safari before 6.1.5 and 7.x before 7.0.5, and Apple TV before 6.1.2, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2014-06-30-1, APPLE-SA-2014-06-30-3, and APPLE-SA-2014-06-30-4.

6.8
2014-07-01 CVE-2014-1363 Apple Buffer Errors vulnerability in Apple Iphone OS, Safari and Tvos

WebKit, as used in Apple iOS before 7.1.2, Apple Safari before 6.1.5 and 7.x before 7.0.5, and Apple TV before 6.1.2, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2014-06-30-1, APPLE-SA-2014-06-30-3, and APPLE-SA-2014-06-30-4.

6.8
2014-07-01 CVE-2014-1362 Apple Buffer Errors vulnerability in Apple Iphone OS, Safari and Tvos

WebKit, as used in Apple iOS before 7.1.2, Apple Safari before 6.1.5 and 7.x before 7.0.5, and Apple TV before 6.1.2, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2014-06-30-1, APPLE-SA-2014-06-30-3, and APPLE-SA-2014-06-30-4.

6.8
2014-07-01 CVE-2014-1354 Apple Resource Management Errors vulnerability in Apple Iphone OS

CoreGraphics in Apple iOS before 7.1.2 does not properly restrict allocation of stack memory for processing of XBM images, which allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via crafted image data.

6.8
2014-07-01 CVE-2014-1349 Apple Multiple Security vulnerability in Apple iOS Prior to 7.1.2

Use-after-free vulnerability in Safari in Apple iOS before 7.1.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via an invalid URL.

6.8
2014-07-01 CVE-2014-1340 Apple Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Apple Safari

WebKit, as used in Apple Safari before 6.1.5 and 7.x before 7.0.5, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2014-06-30-1.

6.8
2014-07-01 CVE-2014-1325 Apple Buffer Errors vulnerability in Apple Iphone OS, Safari and Tvos

WebKit, as used in Apple iOS before 7.1.2, Apple Safari before 6.1.5 and 7.x before 7.0.5, and Apple TV before 6.1.2, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2014-06-30-1, APPLE-SA-2014-06-30-3, and APPLE-SA-2014-06-30-4.

6.8
2014-07-03 CVE-2014-3857 Kerio SQL Injection vulnerability in Kerio Control 8.3.0/8.3.1

Multiple SQL injection vulnerabilities in Kerio Control Statistics in Kerio Control (formerly WinRoute Firewall) before 8.3.2 allow remote authenticated users to execute arbitrary SQL commands via the (1) x_16 or (2) x_17 parameter to print.php.

6.5
2014-07-02 CVE-2014-4688 Netgate Remote Security vulnerability in Pfsense

pfSense before 2.1.4 allows remote authenticated users to execute arbitrary commands via (1) the hostname value to diag_dns.php in a Create Alias action, (2) the smartmonemail value to diag_smart.php, or (3) the database value to status_rrd_graph_img.php.

6.5
2014-07-02 CVE-2014-4696 Netgate
Pfsense
Remote Security vulnerability in Pfsense

Multiple open redirect vulnerabilities in the Suricata package before 1.0.6 for pfSense through 2.1.4 allow remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via (1) the referer parameter to suricata_rules_flowbits.php or (2) the returl parameter to suricata_select_alias.php.

5.8
2014-07-02 CVE-2014-4695 Netgate
Pfsense
Remote Security vulnerability in Pfsense

Multiple open redirect vulnerabilities in the Snort package before 3.0.13 for pfSense through 2.1.4 allow remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via (1) the referer parameter to snort_rules_flowbits.php or (2) the returl parameter to snort_select_alias.php.

5.8
2014-07-01 CVE-2014-3088 IBM Permissions, Privileges, and Access Controls vulnerability in IBM Sametime Meeting Server 8.5.1

stconf.nsf in IBM Sametime Meeting Server 8.5.1 relies on the client to validate the file format used in wAttach?OpenForm multipart/form-data POST requests, which allows remote authenticated users to bypass intended upload restrictions by modifying the Content-Type header and file extension, as demonstrated by replacing a text/plain .txt upload with an application/octet-stream .exe upload.

5.5
2014-07-01 CVE-2014-1383 Apple Permissions, Privileges, and Access Controls vulnerability in Apple Tvos

Apple TV before 6.1.2 allows remote authenticated users to bypass an intended password requirement for iTunes Store purchase transactions via unspecified vectors.

5.5
2014-07-01 CVE-2014-2509 EMC Session Fixation vulnerability in EMC Smarts Network Configuration Manager 9.1/9.2

Session fixation vulnerability in the Report Advisor (RA) component in EMC Network Configuration Manager (NCM) before 9.3 allows remote attackers to hijack web sessions via a session cookie.

5.4
2014-07-02 CVE-2014-3100 Google Buffer Errors vulnerability in Google Android 4.3

Stack-based buffer overflow in the encode_key function in /system/bin/keystore in the KeyStore service in Android 4.3 allows attackers to execute arbitrary code, and consequently obtain sensitive key information or bypass intended restrictions on cryptographic operations, via a long key name.

5.1
2014-07-06 CVE-2014-4720 Email Denial of Service vulnerability in Perl 'Email::Address' Module

Email::Address module before 1.904 for Perl uses an inefficient regular expression, which allows remote attackers to cause a denial of service (CPU consumption) via vectors related to "backtracking into the phrase," a different vulnerability than CVE-2014-0477.

5.0
2014-07-03 CVE-2014-4168 Kryo Improper Authentication vulnerability in Kryo Iodine

(1) iodined.c and (2) user.c in iodine before 0.7.0 allows remote attackers to bypass authentication by continuing execution after an error has been triggering.

5.0
2014-07-03 CVE-2014-0477 Email
Fedoraproject
The parse function in Email::Address module before 1.905 for Perl uses an inefficient regular expression, which allows remote attackers to cause a denial of service (CPU consumption) via an empty quoted string in an RFC 2822 address.
5.0
2014-07-03 CVE-2014-3538 Christos Zoulas Resource Management Errors vulnerability in Christos Zoulas File

file before 5.19 does not properly restrict the amount of data read during a regex search, which allows remote attackers to cause a denial of service (CPU consumption) via a crafted file that triggers backtracking during processing of an awk rule.

5.0
2014-07-03 CVE-2014-4715 Yann Collet Numeric Errors vulnerability in Yann Collet LZ4

Yann Collet LZ4 before r119, when used on certain 32-bit platforms that allocate memory beyond 0x80000000, does not properly detect integer overflows, which allows context-dependent attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via a crafted Literal Run, a different vulnerability than CVE-2014-4611.

5.0
2014-07-03 CVE-2014-4667 Linux
Suse
Canonical
Debian
The sctp_association_free function in net/sctp/associola.c in the Linux kernel before 3.15.2 does not properly manage a certain backlog value, which allows remote attackers to cause a denial of service (socket outage) via a crafted SCTP packet.
5.0
2014-07-03 CVE-2014-4611 Linux Improper Input Validation vulnerability in Linux Kernel

Integer overflow in the LZ4 algorithm implementation, as used in Yann Collet LZ4 before r118 and in the lz4_uncompress function in lib/lz4/lz4_decompress.c in the Linux kernel before 3.15.2, on 32-bit platforms might allow context-dependent attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via a crafted Literal Run that would be improperly handled by programs not complying with an API limitation, a different vulnerability than CVE-2014-4715.

5.0
2014-07-02 CVE-2014-3890 Silex Improper Input Validation vulnerability in Silex Sx-2000Wg Firmware 1.5.3

silex SX-2000WG devices with firmware before 1.5.4 allow remote attackers to cause a denial of service (connectivity outage) via a crafted IP packet, a different vulnerability than CVE-2014-3889.

5.0
2014-07-02 CVE-2014-3889 Silex Improper Input Validation vulnerability in Silex Sx-2000Wg Firmware 1.5.3

silex SX-2000WG devices with firmware before 1.5.4 allow remote attackers to cause a denial of service (connectivity outage) via crafted data in the Options field of a TCP header, a different vulnerability than CVE-2014-3890.

5.0
2014-07-02 CVE-2014-4690 Netgate Path Traversal vulnerability in Netgate Pfsense

Multiple directory traversal vulnerabilities in pfSense before 2.1.4 allow (1) remote attackers to read arbitrary .info files via a crafted path in the pkg parameter to pkg_mgr_install.php and allow (2) remote authenticated users to read arbitrary files via the downloadbackup parameter to system_firmware_restorefullbackup.php.

5.0
2014-07-02 CVE-2014-4689 Netgate Path Traversal vulnerability in Netgate Pfsense

Absolute path traversal vulnerability in pkg_edit.php in pfSense before 2.1.4 allows remote attackers to read arbitrary XML files via a full pathname in the xml parameter.

5.0
2014-07-02 CVE-2014-3066 IBM Information Exposure vulnerability in IBM Tivoli Endpoint Manager 9.1

IBM Tivoli Endpoint Manager 9.1 before 9.1.1088.0 allows remote attackers to read arbitrary files via XML data containing an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue.

5.0
2014-07-01 CVE-2014-1361 Apple Information Exposure vulnerability in Apple Iphone OS, mac OS X and Tvos

Secure Transport in Apple iOS before 7.1.2, Apple OS X before 10.9.4, and Apple TV before 6.1.2 does not ensure that a DTLS message is accepted only for a DTLS connection, which allows remote attackers to obtain potentially sensitive information from uninitialized process memory by providing a DTLS message within a TLS connection.

5.0
2014-07-03 CVE-2014-4655 Linux
Suse
Canonical
Integer Overflow OR Wraparound vulnerability in multiple products

The snd_ctl_elem_add function in sound/core/control.c in the ALSA control implementation in the Linux kernel before 3.15.2 does not properly maintain the user_ctl_count value, which allows local users to cause a denial of service (integer overflow and limit bypass) by leveraging /dev/snd/controlCX access for a large number of SNDRV_CTL_IOCTL_ELEM_REPLACE ioctl calls.

4.9
2014-07-01 CVE-2014-1372 Apple Permissions, Privileges, and Access Controls vulnerability in Apple mac OS X

Graphics Driver in Apple OS X before 10.9.4 does not properly restrict read operations during processing of an unspecified system call, which allows local users to obtain sensitive information from kernel memory and bypass the ASLR protection mechanism via a crafted call.

4.9
2014-07-01 CVE-2014-1355 Apple Unspecified vulnerability in Apple Iphone OS, mac OS X and Tvos

The IOKit implementation in the kernel in Apple iOS before 7.1.2 and Apple TV before 6.1.2, and in IOReporting in Apple OS X before 10.9.4, allows local users to cause a denial of service (NULL pointer dereference and reboot) via crafted API arguments.

4.9
2014-07-03 CVE-2014-4656 Linux
Suse
Canonical
Redhat
Integer Overflow OR Wraparound vulnerability in multiple products

Multiple integer overflows in sound/core/control.c in the ALSA control implementation in the Linux kernel before 3.15.2 allow local users to cause a denial of service by leveraging /dev/snd/controlCX access, related to (1) index values in the snd_ctl_add function and (2) numid values in the snd_ctl_remove_numid_conflict function.

4.6
2014-07-03 CVE-2014-4654 Linux
Suse
Canonical
USE After Free vulnerability in multiple products

The snd_ctl_elem_add function in sound/core/control.c in the ALSA control implementation in the Linux kernel before 3.15.2 does not check authorization for SNDRV_CTL_IOCTL_ELEM_REPLACE commands, which allows local users to remove kernel controls and cause a denial of service (use-after-free and system crash) by leveraging /dev/snd/controlCX access for an ioctl call.

4.6
2014-07-03 CVE-2014-4653 Linux
Suse
Canonical
USE After Free vulnerability in multiple products

sound/core/control.c in the ALSA control implementation in the Linux kernel before 3.15.2 does not ensure possession of a read/write lock, which allows local users to cause a denial of service (use-after-free) and obtain sensitive information from kernel memory by leveraging /dev/snd/controlCX access.

4.6
2014-07-01 CVE-2014-1350 Apple Permissions, Privileges, and Access Controls vulnerability in Apple Iphone OS

Settings in Apple iOS before 7.1.2 allows physically proximate attackers to bypass an intended iCloud password requirement, and turn off the Find My iPhone service, by leveraging incorrect state management.

4.6
2014-07-03 CVE-2014-3497 Openstack Cross-Site Scripting vulnerability in Openstack Swift

Cross-site scripting (XSS) vulnerability in OpenStack Swift 1.11.0 through 1.13.1 allows remote attackers to inject arbitrary web script or HTML via the WWW-Authenticate header.

4.3
2014-07-03 CVE-2014-4719 Usvn Cross-Site Scripting vulnerability in Usvn User-Friendly SVN

Cross-site scripting (XSS) vulnerability in the login panel (svn/login/) in User-Friendly SVN (aka USVN) before 1.0.7 allows remote attackers to inject arbitrary web script or HTML via the username field.

4.3
2014-07-03 CVE-2014-4195 Aas9 Cross-Site Scripting vulnerability in Aas9 Zerocms 1.0

Cross-site scripting (XSS) vulnerability in zero_view_article.php in ZeroCMS 1.0 allows remote attackers to inject arbitrary web script or HTML via the article_id parameter.

4.3
2014-07-03 CVE-2014-4002 Opensuse
Cacti
Cross-Site Scripting vulnerability in multiple products

Multiple cross-site scripting (XSS) vulnerabilities in Cacti 0.8.8b allow remote attackers to inject arbitrary web script or HTML via the (1) drp_action parameter to cdef.php, (2) data_input.php, (3) data_queries.php, (4) data_sources.php, (5) data_templates.php, (6) graph_templates.php, (7) graphs.php, (8) host.php, or (9) host_templates.php or the (10) graph_template_input_id or (11) graph_template_id parameter to graph_templates_inputs.php.

4.3
2014-07-03 CVE-2014-3149 Invisionpower
Invisioncommunity
Cross-Site Scripting vulnerability in multiple products

Cross-site scripting (XSS) vulnerability in Invision Power IP.Board (aka IPB or Power Board) 3.3.x and 3.4.x through 3.4.6, as downloaded before 20140424, or IP.Nexus 1.5.x through 1.5.9, as downloaded before 20140424, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

4.3
2014-07-03 CVE-2014-2965 Spamtitan Cross-Site Scripting vulnerability in Spamtitan

Cross-site scripting (XSS) vulnerability in auth-settings-x.php in SpamTitan before 6.04 allows remote attackers to inject arbitrary web script or HTML via the sortdir parameter.

4.3
2014-07-02 CVE-2014-4606 Zeenshare Project Cross-Site Scripting vulnerability in Zeenshare Project Zeenshare 1.0.1

Cross-site scripting (XSS) vulnerability in redirect_to_zeenshare.php in the ZeenShare plugin 1.0.1 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the zs_sid parameter.

4.3
2014-07-02 CVE-2014-4597 WP Social Invitations Project Cross-Site Scripting vulnerability in WP Social Invitations Project WP Social Invitations 1.4.4.2

Cross-site scripting (XSS) vulnerability in test.php in the WP Social Invitations plugin before 1.4.4.3 for WordPress allows remote attackers to inject arbitrary web script or HTML via the xhrurl parameter.

4.3
2014-07-02 CVE-2014-4591 WP Picasa Image Project Cross-Site Scripting vulnerability in WP Picasa Image Project WP Picasa Image 1.0

Cross-site scripting (XSS) vulnerability in picasa_upload.php in the WP-Picasa-Image plugin 1.0 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the post_id parameter.

4.3
2014-07-02 CVE-2014-4581 Wpcb Project Cross-Site Scripting vulnerability in Wpcb Project Wpcb

Cross-site scripting (XSS) vulnerability in facture.php in the WPCB plugin 2.4.8 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the id parameter.

4.3
2014-07-02 CVE-2014-4571 VN Calendar Project Cross-Site Scripting vulnerability in Vn-Calendar Project Vn-Calendar 1.0

Multiple cross-site scripting (XSS) vulnerabilities in vncal.js.php in the VN-Calendar plugin 1.0 and earlier for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) fs or (2) w parameter.

4.3
2014-07-02 CVE-2014-4565 Verification Code FOR Comments Project Cross-Site Scripting vulnerability in Verification Code FOR Comments Project Verification Code for Comments 2.1.0

Multiple cross-site scripting (XSS) vulnerabilities in vcc.js.php in the Verification Code for Comments plugin 2.1.0 and earlier for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) vp, (2) vs, (3) l, (4) vu, or (5) vm parameter.

4.3
2014-07-02 CVE-2014-4563 URL Cloak Encrypt Project Cross-Site Scripting vulnerability in URL Cloak & Encrypt Project URL Cloak & Encrypt 2.0

Cross-site scripting (XSS) vulnerability in go.php in the URL Cloak & Encrypt (url-cloak-encrypt) plugin 2.0 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the url parameter.

4.3
2014-07-02 CVE-2014-4555 Style IT Project Cross-Site Scripting vulnerability in Style IT Project Style IT 1.0

Cross-site scripting (XSS) vulnerability in fonts/font-form.php in the Style It plugin 1.0 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the mode parameter.

4.3
2014-07-02 CVE-2014-4554 SS Downloads Project Cross-Site Scripting vulnerability in SS Downloads Project SS Downloads

Cross-site scripting (XSS) vulnerability in templates/download.php in the SS Downloads plugin before 1.5 for WordPress allows remote attackers to inject arbitrary web script or HTML via the title parameter.

4.3
2014-07-02 CVE-2014-4549 Woocommerce Sagepay Direct Payment Gateway Project Cross-Site Scripting vulnerability in Woocommerce Sagepay Direct Payment Gateway Project Woocommerce Sagepay Direct Payment Gateway 0.1.6.6

Multiple cross-site scripting (XSS) vulnerabilities in pages/3DComplete.php in the WooCommerce SagePay Direct Payment Gateway plugin before 0.1.6.7 for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) MD or (2) PARes parameter.

4.3
2014-07-02 CVE-2014-4546 Rezgo Project Cross-Site Scripting vulnerability in Rezgo Project Rezgo 1.4.2

Cross-site scripting (XSS) vulnerability in book_ajax.php in the Rezgo plugin 1.4.2 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the response parameter.

4.3
2014-07-02 CVE-2014-4534 Html5 Video Player With Playlist Plugin Project
Wordpress
Cross-Site Scripting vulnerability in Html5 Video Player With Playlist Plugin Project Html5 Video Player With Playlist Plugin

Multiple cross-site scripting (XSS) vulnerabilities in videoplayer/autoplay.php in the HTML5 Video Player with Playlist plugin 2.4.0 and earlier for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) theme or (2) playlistmod parameter.

4.3
2014-07-02 CVE-2014-4605 Zdstatistics Project Cross-Site Scripting vulnerability in Zdstatistics Project Zdstatistics 2.0.1

Cross-site scripting (XSS) vulnerability in cal/test.php in the ZdStatistics (zdstats) plugin 2.0.1 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the lang parameter.

4.3
2014-07-02 CVE-2014-4604 Your Text Manager Project Cross-Site Scripting vulnerability in Your-Text-Manager Project Your-Text-Manager 0.3.0

Cross-site scripting (XSS) vulnerability in settings/pwsettings.php in the Your Text Manager plugin 0.3.0 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the ytmpw parameter.

4.3
2014-07-02 CVE-2014-4603 Yahoo Updates FOR Wordpress Plugin Project
Wordpress
Cross-Site Scripting vulnerability in Yahoo! Updates FOR Wordpress Plugin Project Yahoo! Updates FOR Wordpress Plugin

Multiple cross-site scripting (XSS) vulnerabilities in yupdates_application.php in the Yahoo! Updates for WordPress plugin 1.0 and earlier for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) secret, (2) key, or (3) appid parameter.

4.3
2014-07-02 CVE-2014-4601 WU Rating Project Cross-Site Scripting vulnerability in Wu-Rating Project Wu-Rating 1.012319

Cross-site scripting (XSS) vulnerability in wu-ratepost.php in the Wu-Rating plugin 1.0 12319 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the v parameter.

4.3
2014-07-02 CVE-2014-4600 WP Ultimate Email Marketer Project
Wordpress
Cross-Site Scripting vulnerability in WP Ultimate Email Marketer Project WP Ultimate Email Marketer 1.1.0

Multiple cross-site scripting (XSS) vulnerabilities in contact/edit.php in the WP Ultimate Email Marketer plugin 1.1.0 and earlier for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) listname or (2) contact parameter.

4.3
2014-07-02 CVE-2014-4599 WP Business Directory Project Cross-Site Scripting vulnerability in Wp-Business Directory Project Wp-Business Directory 1.0.2

Multiple cross-site scripting (XSS) vulnerabilities in forms/search.php in the WP-Business Directory (wp-ttisbdir) plugin 1.0.2 and earlier for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) edit, (2) search_term, (3) page_id, (4) page, or (5) page_links parameter.

4.3
2014-07-02 CVE-2014-4598 WP Tmkm Amazon Project Cross-Site Scripting vulnerability in Wp-Tmkm-Amazon Project Wp-Tmkm-Amazon

Cross-site scripting (XSS) vulnerability in wp-tmkm-amazon-search.php in the wp-tmkm-amazon plugin 1.5b and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the AID parameter.

4.3
2014-07-02 CVE-2014-4596 Snapapp Project Cross-Site Scripting vulnerability in Snapapp Project Snapapp 1.5

Multiple cross-site scripting (XSS) vulnerabilities in js/button-snapapp.php in the SnapApp plugin 1.5 and earlier for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) msg or (2) act parameter.

4.3
2014-07-02 CVE-2014-4595 WP Restful Project Cross-Site Scripting vulnerability in WP Restful Project WP Restful 0.1

Multiple cross-site scripting (XSS) vulnerabilities in the WP RESTful plugin 0.1 and earlier for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) oauth_callback parameter to html_api_authorize.php or the (2) oauth_token_temp or (3) oauth_callback_temp parameter to html_api_login.php.

4.3
2014-07-02 CVE-2014-4594 Wordpress Responsive Preview Project Cross-Site Scripting vulnerability in Wordpress Responsive Preview Project Wordpress Responsive Preview 1.1

Cross-site scripting (XSS) vulnerability in index.php in the WordPress Responsive Preview plugin before 1.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via the url parameter.

4.3
2014-07-02 CVE-2014-4593 WP Plugin Manager Project Cross-Site Scripting vulnerability in WP Plugin Manager Project WP Plugin Manager 1.6.4.B

Cross-site scripting (XSS) vulnerability in wp-plugins-net/index.php in the WP Plugin Manager (wppm) plugin 1.6.4.b and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the filter parameter.

4.3
2014-07-02 CVE-2014-4590 WP Microblogs Project Cross-Site Scripting vulnerability in WP Microblogs Project WP Microblogs 0.4.0

Cross-site scripting (XSS) vulnerability in get.php in the WP Microblogs plugin 0.4.0 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the oauth_verifier parameter.

4.3
2014-07-02 CVE-2014-4589 WP Silverlight Media Player Project Cross-Site Scripting vulnerability in WP Silverlight Media Player Project WP Silverlight Media Player 0.8

Cross-site scripting (XSS) vulnerability in uploader.php in the WP Silverlight Media Player (wp-media-player) plugin 0.8 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the post_id parameter.

4.3
2014-07-02 CVE-2014-4588 HOT Files Cross-Site Scripting vulnerability in HOT Files:File Sharing and Download Manager Project HOT Files:File Sharing and Download Manager

Cross-site scripting (XSS) vulnerability in tpls/editmedia.php in the Hot Files: File Sharing and Download Manager (wphotfiles) plugin 1.0.0 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the mediaid parameter.

4.3
2014-07-02 CVE-2014-4587 WP Guestmap Project Cross-Site Scripting vulnerability in WP Guestmap Project WP Guestmap Project 1.8

Multiple cross-site scripting (XSS) vulnerabilities in the WP GuestMap plugin 1.8 and earlier for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) zl, (2) mt, or (3) dc parameter to guest-locator.php; the (4) zl, (5) mt, (6) activate, or (7) dc parameter to online-tracker.php; the (8) zl, (9) mt, or (10) dc parameter to stats-map.php; or the (11) zl, (12) mt, (13) activate, or (14) dc parameter to weather-map.php.

4.3
2014-07-02 CVE-2014-4582 WP Consultant Project Cross-Site Scripting vulnerability in WP Consultant Project WP Consultant 1.0

Cross-site scripting (XSS) vulnerability in admin/admin_show_dialogs.php in the WP Consultant plugin 1.0 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the dialog_id parameter.

4.3
2014-07-02 CVE-2014-4580 WP Blipbot Project Cross-Site Scripting vulnerability in WP Blipbot Project WP Blipbot 3.0.9

Cross-site scripting (XSS) vulnerability in blipbot.ajax.php in the WP BlipBot plugin 3.0.9 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the BlipBotID parameter.

4.3
2014-07-02 CVE-2014-4579 WP Appointments Schedules Project Cross-Site Scripting vulnerability in WP Appointments Schedules Project WP Appointments Schedules 1.5

Cross-site scripting (XSS) vulnerability in js/test.php in the Appointments Scheduler plugin 1.5 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the lang parameter.

4.3
2014-07-02 CVE-2014-4578 WP APP Maker Project Cross-Site Scripting vulnerability in WP APP Maker Project WP APP Maker 1.0.16.4

Cross-site scripting (XSS) vulnerability in asset-studio/icons-launcher.php in the WP App Maker plugin 1.0.16.4 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the uid parameter.

4.3
2014-07-02 CVE-2014-4576 Wordpress Social Login Project Cross-Site Scripting vulnerability in Wordpress Social Login Project Wordpress Social Login 2.0.3

Cross-site scripting (XSS) vulnerability in services/diagnostics.php in the WordPress Social Login plugin 2.0.3 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the xhrurl parameter.

4.3
2014-07-02 CVE-2014-4574 Webengage Project Cross-Site Scripting vulnerability in Webengage Project Webengage 2.0.0

Cross-site scripting (XSS) vulnerability in resize.php in the WebEngage plugin before 2.0.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the height parameter.

4.3
2014-07-02 CVE-2014-4573 Walk Score Project Cross-Site Scripting vulnerability in Walk Score Project Walk Score 0.5.5

Multiple cross-site scripting (XSS) vulnerabilities in frame-maker.php in the Walk Score plugin 0.5.5 and earlier for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) s or (2) o parameter.

4.3
2014-07-02 CVE-2014-4572 Votecount FOR Balatarin Project Cross-Site Scripting vulnerability in Votecount FOR Balatarin Project Votecount for Balatarin 0.1.1

Cross-site scripting (XSS) vulnerability in bvc.php in the Votecount for Balatarin plugin 0.1.1 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the (1) url or (2) bvcurl parameter.

4.3
2014-07-02 CVE-2014-4570 Videowhisper Cross-Site Scripting vulnerability in Videowhisper Video Presentation 3.25

Multiple cross-site scripting (XSS) vulnerabilities in the VideoWhisper Video Presentation plugin before 3.31 for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) room_name parameter to c_login.php or (2) room parameter to index.php in vp/.

4.3
2014-07-02 CVE-2014-4568 Videowhisper Cross-Site Scripting vulnerability in Videowhisper Video Posts Webcam Recorder 1.55.4

Cross-site scripting (XSS) vulnerability in posts/videowhisper/r_logout.php in the Video Posts Webcam Recorder plugin 1.55.4 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the message parameter.

4.3
2014-07-02 CVE-2014-4566 Verweise Wordpress Twitter Project Cross-Site Scripting vulnerability in Verweise-Wordpress-Twitter Project Verweise-Wordpress-Twitter 1.0.2

Cross-site scripting (XSS) vulnerability in res/fake_twitter/frame.php in the "verwei.se - WordPress - Twitter" (verweise-wordpress-twitter) plugin 1.0.2 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the base parameter.

4.3
2014-07-02 CVE-2014-4560 Toolpage Project Cross-Site Scripting vulnerability in Toolpage Project Toolpage 1.6.1

Cross-site scripting (XSS) vulnerability in includes/getTipo.php in the ToolPage plugin 1.6.1 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the t parameter.

4.3
2014-07-02 CVE-2014-4557 Jigoshop Cross-Site Scripting vulnerability in Jigoshop Swipe HQ Checkout FOR Jigoshop

Cross-site scripting (XSS) vulnerability in test-plugin.php in the Swipe Checkout for Jigoshop (swipe-hq-checkout-for-jigoshop) plugin 3.1.0 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the api_url parameter.

4.3
2014-07-02 CVE-2014-4552 Spotlightyour Cross-Site Scripting vulnerability in Spotlightyour 4.7

Cross-site scripting (XSS) vulnerability in library/includes/payment/paypalexpress/DoDirectPayment.php in the Spotlight (spotlightyour) plugin 4.7 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the paymentType parameter.

4.3
2014-07-02 CVE-2014-4551 Social Connect Project Cross-Site Scripting vulnerability in Social Connect Project Social Connect 1.0.4

Cross-site scripting (XSS) vulnerability in diagnostics/test.php in the Social Connect plugin 1.0.4 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the testing parameter.

4.3
2014-07-02 CVE-2014-4547 Rezgo Cross-Site Scripting vulnerability in Rezgo Online Booking 1.8

Multiple cross-site scripting (XSS) vulnerabilities in templates/default/index_ajax.php in the Rezgo Online Booking plugin before 1.8.2 for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) tags or (2) search_for parameter.

4.3
2014-07-02 CVE-2014-4543 PAY PER Media Player Project Cross-Site Scripting vulnerability in PAY PER Media Player Project PAY PER Media Player 1.24

Multiple cross-site scripting (XSS) vulnerabilities in payper/payper.php in the Pay Per Media Player plugin 1.24 and earlier for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) fcolor, (2) links, (3) stitle, (4) height, (5) width, (6) host, (7) bcolor, (8) msg, (9) id, or (10) size parameter.

4.3
2014-07-02 CVE-2014-4542 Ooorl Project Cross-Site Scripting vulnerability in Ooorl Project Ooorl

Cross-site scripting (XSS) vulnerability in redirect.php in the Ooorl plugin for WordPress allows remote attackers to inject arbitrary web script or HTML via the url parameter.

4.3
2014-07-02 CVE-2014-4541 Omfg Mobile Project Cross-Site Scripting vulnerability in Omfg Mobile Project Omfg Mobile 1.1.26

Cross-site scripting (XSS) vulnerability in shortcode-generator/preview-shortcode-external.php in the OMFG Mobile Pro plugin 1.1.26 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the shortcode parameter.

4.3
2014-07-02 CVE-2014-4540 Oleggo Livestream Project Cross-Site Scripting vulnerability in Oleggo Livestream Project Oleggo Livestream 0.2.6

Cross-site scripting (XSS) vulnerability in oleggo-twitter/twitter_login_form.php in the Oleggo LiveStream plugin 0.2.6 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the msg parameter.

4.3
2014-07-02 CVE-2014-4537 Keyword Strategy Internal Links Project Cross-Site Scripting vulnerability in Keyword Strategy Internal Links Project Keyword Strategy Internal Links 2.0

Cross-site scripting (XSS) vulnerability in inpage.tpl.php in the Keyword Strategy Internal Links plugin 2.0 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the (1) sort, (2) search, or (3) dir parameter.

4.3
2014-07-02 CVE-2014-4532 Garagesale Project Cross-Site Scripting vulnerability in Garagesale Project Garagesale

Cross-site scripting (XSS) vulnerability in templates/printAdminUsersList_Footer.tpl.php in the GarageSale plugin before 1.2.3 for WordPress allows remote attackers to inject arbitrary web script or HTML via the page parameter.

4.3
2014-07-02 CVE-2014-4531 Game Tabs Project Cross-Site Scripting vulnerability in Game Tabs Project Game Tabs 0.4.0

Cross-site scripting (XSS) vulnerability in main_page.php in the Game tabs plugin 0.4.0 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the n parameter.

4.3
2014-07-02 CVE-2014-4529 Flash Photo Gallery Project
Wordpress
Cross-Site Scripting vulnerability in Flash Photo Gallery Project Flash Photo Gallery

Cross-site scripting (XSS) vulnerability in fpg_preview.php in the Flash Photo Gallery plugin 0.7 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the path parameter.

4.3
2014-07-02 CVE-2014-4527 Envialosimple Cross-Site Scripting vulnerability in Envialosimple Email Marketing Y Newsletters 1.97

Multiple cross-site scripting (XSS) vulnerabilities in paginas/vista-previa-form.php in the EnvialoSimple: Email Marketing and Newsletters (envialosimple-email-marketing-y-newsletters-gratis) plugin before 1.98 for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) FormID or (2) AdministratorID parameter.

4.3
2014-07-02 CVE-2014-4526 Efence Project Cross-Site Scripting vulnerability in Efence Project Efence 1.3.2

Multiple cross-site scripting (XSS) vulnerabilities in callback.php in the efence plugin 1.3.2 and earlier for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) message, (2) zoneid, (3) pubKey, or (4) privKey parameter.

4.3
2014-07-02 CVE-2014-4524 WP Easy Post Types Project Cross-Site Scripting vulnerability in WP Easy Post Types Project WP Easy Post Types 1.4.3

Cross-site scripting (XSS) vulnerability in classes/custom-image/media.php in the WP Easy Post Types plugin before 1.4.4 for WordPress allows remote attackers to inject arbitrary web script or HTML via the ref parameter.

4.3
2014-07-02 CVE-2014-4522 Dssearchagent Project Cross-Site Scripting vulnerability in Dssearchagent Project Dssearchagent 1.0

Cross-site scripting (XSS) vulnerability in client-assist.php in the dsSearchAgent: WordPress Edition plugin 1.0-beta10 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the action parameter.

4.3
2014-07-02 CVE-2014-4694 Netgate
Pfsense
Cross-Site Scripting vulnerability in multiple products

Multiple cross-site scripting (XSS) vulnerabilities in suricata_select_alias.php in the Suricata package before 1.0.6 for pfSense through 2.1.4 allow remote attackers to inject arbitrary web script or HTML via unspecified variables.

4.3
2014-07-02 CVE-2014-4693 Netgate
Pfsense
Cross-Site Scripting vulnerability in multiple products

Multiple cross-site scripting (XSS) vulnerabilities in the Snort package before 3.0.13 for pfSense through 2.1.4 allow remote attackers to inject arbitrary web script or HTML via (1) the eng parameter to snort_import_aliases.php or (2) unspecified variables to snort_select_alias.php.

4.3
2014-07-02 CVE-2014-4692 Netgate Information Exposure vulnerability in Netgate Pfsense

pfSense before 2.1.4, when HTTP is used, does not include the HTTPOnly flag in a Set-Cookie header for the session cookie, which makes it easier for remote attackers to obtain potentially sensitive information via script access to this cookie.

4.3
2014-07-02 CVE-2014-4687 Netgate Cross-Site Scripting vulnerability in Netgate Pfsense

Multiple cross-site scripting (XSS) vulnerabilities in pfSense before 2.1.4 allow remote attackers to inject arbitrary web script or HTML via (1) the starttime0 parameter to firewall_schedule.php, (2) the rssfeed parameter to rss.widget.php, (3) the servicestatusfilter parameter to services_status.widget.php, (4) the txtRecallBuffer parameter to exec.php, or (5) the HTTP Referer header to log.widget.php.

4.3
2014-07-01 CVE-2014-3494 Opensuse
KDE
Information Exposure vulnerability in multiple products

kio/usernotificationhandler.cpp in the POP3 kioslave in kdelibs 4.10.95 before 4.13.3 does not properly generate warning notifications, which allows man-in-the-middle attackers to obtain sensitive information via an invalid certificate.

4.3
2014-07-01 CVE-2014-3492 Theforeman Cross-Site Scripting vulnerability in Theforeman Foreman

Multiple cross-site scripting (XSS) vulnerabilities in the host YAML view in Foreman before 1.4.5 and 1.5.x before 1.5.1 allow remote attackers to inject arbitrary web script or HTML via a parameter (1) name or (2) value related to the host.

4.3
2014-07-01 CVE-2014-3491 Theforeman Cross-Site Scripting vulnerability in Theforeman Foreman

Cross-site scripting (XSS) vulnerability in Foreman before 1.4.5 and 1.5.x before 1.5.1 allows remote attackers to inject arbitrary web script or HTML via the Name field to the New Host groups page, related to create, update, and destroy notification boxes.

4.3
2014-07-01 CVE-2014-4602 XEN Carousel Plugin Project Cross-Site Scripting vulnerability in XEN Carousel Plugin Project XEN Carousel 0.12.2

Multiple cross-site scripting (XSS) vulnerabilities in xencarousel-admin.js.php in the XEN Carousel plugin 0.12.2 and earlier for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) path or (2) ajaxpath parameter.

4.3
2014-07-01 CVE-2014-4585 MNT Tech Cross-Site Scripting vulnerability in Mnt-Tech Wp-Facethumb

Cross-site scripting (XSS) vulnerability in the WP-FaceThumb plugin possibly 1.0 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the ajax_url parameter to index.php.

4.3
2014-07-01 CVE-2014-4584 WP Easybooking Plugin Project Cross-Site Scripting vulnerability in Wp-Easybooking Plugin Project Wp-Easybooking 1.0.3

Cross-site scripting (XSS) vulnerability in admin/editFacility.php in the wp-easybooking plugin 1.0.3 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the fID parameter.

4.3
2014-07-01 CVE-2014-4583 WP Contact Plugin Project Cross-Site Scripting vulnerability in Wp-Contact Plugin Project Wp-Contact-Sidebar-Widget 1.0

Multiple cross-site scripting (XSS) vulnerabilities in forms/messages.php in the WP-Contact (wp-contact-sidebar-widget) plugin 1.0 and earlier for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) edit, (2) order_direction, (3) limit_start, (4) id, or (5) order parameter.

4.3
2014-07-01 CVE-2014-4575 Wikipop Plugin Project Cross-Site Scripting vulnerability in Wikipop Plugin Project Wikipop 2.0

Cross-site scripting (XSS) vulnerability in js/window.php in the Wikipop plugin 2.0 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the s parameter.

4.3
2014-07-01 CVE-2014-4569 Videowhisper Cross-Site Scripting vulnerability in Videowhisper Live Streaming Integration

Cross-site scripting (XSS) vulnerability in ls/vv_login.php in the VideoWhisper Live Streaming Integration plugin 4.27.2 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the room_name parameter.

4.3
2014-07-01 CVE-2014-4564 Validated Plugin Project Cross-Site Scripting vulnerability in Validated Plugin Project Validated Plugin 1.0.2

Cross-site scripting (XSS) vulnerability in check.php in the Validated plugin 1.0.2 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the slug parameter.

4.3
2014-07-01 CVE-2014-4556 Swipe Checkout FOR Eshop Project Cross-Site Scripting vulnerability in Swipe Checkout FOR Eshop Project Swipe Checkout for Eshop 3.7.0

Cross-site scripting (XSS) vulnerability in test-plugin.php in the Swipe Checkout for eShop plugin 3.7.0 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the api_url parameter.

4.3
2014-07-01 CVE-2014-4545 PRO Quoter Plugin Project Cross-Site Scripting vulnerability in PRO Quoter Plugin Project PRO Quoter 1.0

Multiple cross-site scripting (XSS) vulnerabilities in pq_dialog.php in the Pro Quoter plugin 1.0 and earlier for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) leftorright or (2) author parameter.

4.3
2014-07-01 CVE-2014-4538 Malware Finder Plugin Project Cross-Site Scripting vulnerability in Malware Finder Plugin Project Malware Finder 1.1

Cross-site scripting (XSS) vulnerability in process.php in the Malware Finder plugin 1.1 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the query parameter.

4.3
2014-07-01 CVE-2014-4533 GEO Redirector Plugin Project Cross-Site Scripting vulnerability in GEO Redirector Plugin Project GEO Redirector 1.0.1

Cross-site scripting (XSS) vulnerability in ajax_functions.php in the GEO Redirector plugin 1.0.1 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the hid_id parameter.

4.3
2014-07-01 CVE-2014-4528 Fbpromotions Project Cross-Site Scripting vulnerability in Fbpromotions Project Fbpromotions 1.3.4

Multiple cross-site scripting (XSS) vulnerabilities in admin/swarm-settings.php in the Bugs Go Viral : Facebook Promotion Generator (fbpromotions) plugin 1.3.4 and earlier for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) promo_type, (2) fb_edit_action, or (3) promo_id parameter.

4.3
2014-07-01 CVE-2014-4521 Diversesolutions Cross-Site Scripting vulnerability in Diversesolutions Dsidxpress IDX Plugin

Cross-site scripting (XSS) vulnerability in client-assist.php in the dsIDXpress IDX plugin before 2.1.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the action parameter.

4.3
2014-07-01 CVE-2014-4520 Dmca Cross-Site Scripting vulnerability in Dmca Watermarker 1.0

Cross-site scripting (XSS) vulnerability in phprack.php in the DMCA WaterMarker plugin before 1.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the plugin_dir parameter.

4.3
2014-07-01 CVE-2014-4518 D Coda Cross-Site Scripting vulnerability in D-Coda Contactme 2.3

Cross-site scripting (XSS) vulnerability in xd_resize.php in the Contact Form by ContactMe.com plugin 2.3 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the width parameter.

4.3
2014-07-01 CVE-2014-4516 BIC Media Widget Plugin Cross-Site Scripting vulnerability in BIC Media Widget Plugin BIC Media Widget 1.0

Cross-site scripting (XSS) vulnerability in bicm-carousel-preview.php in the BIC Media Widget plugin 1.0 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the param parameter.

4.3
2014-07-01 CVE-2014-4515 Anyfont Plugin Project Cross-Site Scripting vulnerability in Anyfont Plugin Project Anyfont 2.2.3

Cross-site scripting (XSS) vulnerability in mce_anyfont/dialog.php in the AnyFont plugin 2.2.3 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the text parameter.

4.3
2014-07-01 CVE-2014-4513 Activehelper Cross-Site Scripting vulnerability in Activehelper Livehelp Live Chat

Multiple cross-site scripting (XSS) vulnerabilities in server/offline.php in the ActiveHelper LiveHelp Live Chat plugin 3.1.0 and earlier for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) MESSAGE, (2) EMAIL, or (3) NAME parameter.

4.3
2014-07-01 CVE-2014-1369 Apple Improper Input Validation vulnerability in Apple Safari

WebKit in Apple Safari before 6.1.5 and 7.x before 7.0.5 allows user-assisted remote attackers to access file: URLs by leveraging a URL drag operation that originates at a crafted web site.

4.3
2014-07-01 CVE-2014-1345 Apple Multiple Security vulnerability in Apple Iphone OS and Safari

WebKit in Apple iOS before 7.1.2 and Apple Safari before 6.1.5 and 7.x before 7.0.5 does not properly encode domain names in URLs, which allows remote attackers to spoof the address bar via a crafted web site.

4.3
2014-07-02 CVE-2014-3298 Cisco Credentials Management vulnerability in Cisco Cloud Portal

Form Data Viewer in Cisco Intelligent Automation for Cloud in Cisco Cloud Portal places passwords in form data, which allows remote authenticated users to obtain sensitive information by reading HTML source code, aka Bug ID CSCui36976.

4.0
2014-07-02 CVE-2014-3297 Cisco Permissions, Privileges, and Access Controls vulnerability in Cisco Cloud Portal

Cisco Intelligent Automation for Cloud in Cisco Cloud Portal does not properly restrict the content of MyServices action URLs, which allows remote authenticated users to obtain sensitive information by reading (1) web-server access logs, (2) web-server Referer logs, or (3) the browser history, aka Bug IDs CSCui36937, CSCui37004, and CSCui36927.

4.0

15 Low Vulnerabilities

DATE CVE VENDOR VULNERABILITY CVSS
2014-07-01 CVE-2014-1353 Apple Permissions, Privileges, and Access Controls vulnerability in Apple Iphone OS

Lock Screen in Apple iOS before 7.1.2 does not properly manage the telephony state in Airplane Mode, which allows physically proximate attackers to bypass the lock protection mechanism, and access a certain foreground application, via unspecified vectors.

3.6
2014-07-01 CVE-2014-1351 Apple Permissions, Privileges, and Access Controls vulnerability in Apple Iphone OS

Siri in Apple iOS before 7.1.2 allows physically proximate attackers to bypass an intended lock-screen passcode requirement, and read a contact list, via a Siri request that refers to a contact ambiguously.

3.6
2014-07-01 CVE-2013-3004 IBM Path Traversal vulnerability in IBM Tivoli Application Dependency Discovery Manager

Directory traversal vulnerability in BIRT-Report Viewer in IBM Tivoli Application Dependency Discovery Manager (TADDM) 7.1.x and 7.2.x before 7.2.1.5 allows remote authenticated users to read arbitrary files via unspecified vectors.

3.5
2014-07-01 CVE-2014-2512 EMC Cross-Site Scripting vulnerability in EMC Documentum Eroom 7.4.3/7.4.4

Multiple cross-site scripting (XSS) vulnerabilities in EMC Documentum eRoom 7.4.3, 7.4.4 before P19, and 7.4.4 SP1 allow remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.

3.5
2014-07-06 CVE-2014-4721 PHP Information Exposure vulnerability in PHP

The phpinfo implementation in ext/standard/info.c in PHP before 5.4.30 and 5.5.x before 5.5.14 does not ensure use of the string data type for the PHP_AUTH_PW, PHP_AUTH_TYPE, PHP_AUTH_USER, and PHP_SELF variables, which might allow context-dependent attackers to obtain sensitive information from process memory by using the integer data type with crafted values, related to a "type confusion" vulnerability, as demonstrated by reading a private SSL key in an Apache HTTP Server web-hosting environment with mod_ssl and a PHP 5.3.x mod_php.

2.6
2014-07-02 CVE-2014-3737 Storesprite Cross-Site Scripting vulnerability in Storesprite

Cross-site scripting (XSS) vulnerability in templates/defaultheader.php in Lamp Design Storesprite before 7 - 19-06-14, when using the currency selection dropdown, allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO to brand.php, related to the currencyUrl function.

2.6
2014-07-01 CVE-2014-1380 Apple Permissions, Privileges, and Access Controls vulnerability in Apple mac OS X

The Security - Keychain component in Apple OS X before 10.9.4 does not properly implement keystroke observers, which allows physically proximate attackers to bypass the screen-lock protection mechanism, and enter characters into an arbitrary window under the lock window, via keyboard input.

2.6
2014-07-01 CVE-2014-3477 D BUS Project Denial of Service vulnerability in D-Bus 'activation.c'

The dbus-daemon in D-Bus 1.2.x through 1.4.x, 1.6.x before 1.6.20, and 1.8.x before 1.8.4, sends an AccessDenied error to the service instead of a client when the client is prohibited from accessing the service, which allows local users to cause a denial of service (initialization failure and exit) or possibly conduct a side-channel attack via a D-Bus message to an inactive service.

2.1
2014-07-01 CVE-2014-1378 Apple Permissions, Privileges, and Access Controls vulnerability in Apple mac OS X

IOGraphicsFamily in Apple OS X before 10.9.4 allows local users to bypass the ASLR protection mechanism by leveraging read access to a kernel pointer in an IOKit object.

2.1
2014-07-01 CVE-2014-1375 Apple Permissions, Privileges, and Access Controls vulnerability in Apple mac OS X

Intel Graphics Driver in Apple OS X before 10.9.4 allows local users to bypass the ASLR protection mechanism by leveraging read access to a kernel pointer in an IOKit object.

2.1
2014-07-01 CVE-2014-1360 Apple Improper Input Validation vulnerability in Apple Iphone OS

Lockdown in Apple iOS before 7.1.2 does not properly verify data from activation servers, which makes it easier for physically proximate attackers to bypass the Activation Lock protection mechanism via unspecified vectors.

2.1
2014-07-01 CVE-2014-1348 Apple Cryptographic Issues vulnerability in Apple Iphone OS

Mail in Apple iOS before 7.1.2 advertises the availability of data protection for attachments but stores cleartext attachments under mobile/Library/Mail/, which makes it easier for physically proximate attackers to obtain sensitive information by mounting the data partition.

2.1
2014-07-01 CVE-2014-1317 Apple Information Exposure vulnerability in Apple mac OS X

iBooks Commerce in Apple OS X before 10.9.4 places Apple ID credentials in the iBooks log, which allows local users to obtain sensitive information by reading this file.

2.1
2014-07-03 CVE-2014-4652 Linux
Suse
Canonical
Redhat
Race Condition vulnerability in multiple products

Race condition in the tlv handler functionality in the snd_ctl_elem_user_tlv function in sound/core/control.c in the ALSA control implementation in the Linux kernel before 3.15.2 allows local users to obtain sensitive information from kernel memory by leveraging /dev/snd/controlCX access.

1.9
2014-07-01 CVE-2014-1352 Apple Permissions, Privileges, and Access Controls vulnerability in Apple Iphone OS

Lock Screen in Apple iOS before 7.1.2 does not properly enforce the limit on failed passcode attempts, which makes it easier for physically proximate attackers to conduct brute-force passcode-guessing attacks via unspecified vectors.

1.9