Home / 2014 Advisories Archive

2014 Advisories Archive

Severity	Date Published	Date Updated	Check Point Reference	Source	Industry Reference	Description
High	10 Nov 2014	7 Dec 2014	CPAI-2014-2104		CVE-2008-4906	E107 lyrics_menu Plugin SQL Injection (CVE-2008-4906)
High	10 Nov 2014	7 Dec 2014	CPAI-2014-2090		CVE-2008-5665	XOOPS Module xhresim Remote SQL Injection (CVE-2008-5665)
High	10 Nov 2014	7 Dec 2014	CPAI-2014-2053			Joomla Component com_jepoll SQL Injection
High	10 Nov 2014	7 Dec 2014	CPAI-2014-2003			Wordpress Mini Mail Dashboard Widget Remote File Inclusion
High	10 Nov 2014	7 Dec 2014	CPAI-2014-2055			Joomla Component com_doqment SQL Injection
High	10 Nov 2014	7 Dec 2014	CPAI-2014-2020		CVE-2011-5186	E107 7 CMS Plugin SQL Injection (CVE-2011-5186)
High	10 Nov 2014	7 Dec 2014	CPAI-2014-2140			Joomla com_joomgalaxy SQL Injection
High	10 Nov 2014	7 Dec 2014	CPAI-2014-2010			Joomla Component com_acteammember SQL Injection
High	10 Nov 2014	7 Dec 2014	CPAI-2014-2070			Joomla Component com_markt SQL Injection
High	10 Nov 2014	7 Dec 2014	CPAI-2014-2139		CVE-2008-5768	XOOPS Module Amevents SQL Injection (CVE-2008-5768)
High	10 Nov 2014	7 Dec 2014	CPAI-2014-2046		CVE-2009-4094	Joomla Component com_ezine Remote File Inclusion (CVE-2009-4094)
High	10 Nov 2014	7 Dec 2014	CPAI-2014-2013		CVE-2010-0467	Joomla Component com_ccnewsletter Local File Inclusion (CVE-2010-0467)
High	10 Nov 2014	7 Dec 2014	CPAI-2014-2047		CVE-2010-1219	Joomla Component com_janews Local File Inclusion (CVE-2010-1219)
High	10 Nov 2014	7 Dec 2014	CPAI-2014-2145		CVE-2008-3083	Joomla Component com_brightweblinks SQL Injection (CVE-2008-3083)
High	10 Nov 2014	7 Dec 2014	CPAI-2014-2205		CVE-2010-2099	E107 contact php Code Execution (CVE-2010-2099)
High	10 Nov 2014	7 Dec 2014	CPAI-2014-1999		CVE-2008-5494	Joomla Component com_contact Info SQL Injection (CVE-2008-5494)
High	10 Nov 2014	7 Dec 2014	CPAI-2014-2037			Joomla Component com_clanlist SQL Injection
High	10 Nov 2014	7 Dec 2014	CPAI-2014-2049		CVE-2009-4099	Joomla Component com_gcalendar Remote SQL Injection (CVE-2009-4099)
High	10 Nov 2014	7 Dec 2014	CPAI-2014-2150			Joomla Component com_linkdirectory Remote File Inclusion
High	10 Nov 2014	7 Dec 2014	CPAI-2014-2027			Joomla Component com_adsmanager Remote File Inclusion
High	10 Nov 2014	7 Dec 2014	CPAI-2014-2045		CVE-2008-3132	Joomla Component com_beamospetition Remote SQL Injection (CVE-2008-3132)
High	10 Nov 2014	7 Dec 2014	CPAI-2014-2115		CVE-2010-2694	Joomla Component com_redshop SQL Injection (CVE-2010-2694)
High	10 Nov 2014	7 Dec 2014	CPAI-2014-2011			Joomla Component com_acprojects SQL Injection
High	10 Nov 2014	7 Dec 2014	CPAI-2014-2149		CVE-2005-0725	XOOPS Module WF Section SQL Injection (CVE-2005-0725)
High	10 Nov 2014	7 Dec 2014	CPAI-2014-2101			Joomla Component com_xgallery Local File Inclusion
High	10 Nov 2014	7 Dec 2014	CPAI-2014-2099		CVE-2009-0494	Joomla Component com_portfol SQL Injection (CVE-2009-0494)
High	10 Nov 2014	7 Dec 2014	CPAI-2014-2074			Joomla DJ Classifieds SQL Injection
High	10 Nov 2014	7 Dec 2014	CPAI-2014-2147		CVE-2008-6149	Joomla Component com_mdigg SQL Injection (CVE-2008-6149)
High	10 Nov 2014	7 Dec 2014	CPAI-2014-2034		CVE-2007-2738	XOOPS Module Glossarie Remote SQL Injection (CVE-2007-2738)
High	10 Nov 2014	7 Dec 2014	CPAI-2014-2038		CVE-2009-4714	XOOPS Module Qas codigo SQL Injection (CVE-2009-4714)
High	10 Nov 2014	7 Dec 2014	CPAI-2014-2071		CVE-2010-2680	Joomla Component JESectionFinder Directory traversal (CVE-2010-2680)
High	10 Nov 2014	7 Dec 2014	CPAI-2014-2148		CVE-2008-6148	Joomla Component com_liveticker SQL Injection (CVE-2008-6148)
High	10 Nov 2014	7 Dec 2014	CPAI-2014-2035		CVE-2007-2737	XOOPS Module MyConference SQL Injection (CVE-2007-2737)
High	10 Nov 2014	7 Dec 2014	CPAI-2014-2162		CVE-2008-6080	Joomla Component com_ionfiles File Disclosure (CVE-2008-6080)
High	10 Nov 2014	7 Dec 2014	CPAI-2014-2171		CVE-2008-2628	Joomla Component com_equotes Remote SQL Injection (CVE-2008-2628)
High	13 Nov 2014	7 Dec 2014	CPAI-2014-2189			Joomla Component com_people Local File Inclusion
High	13 Nov 2014	7 Dec 2014	CPAI-2014-2190			Joomla Component com_yellowpages SQL Injection
High	16 Nov 2014	7 Dec 2014	CPAI-2014-2201		CVE-2010-2513	Joomla Component jeeventcalendar SQL Injection (CVE-2010-2513)
High	16 Nov 2014	7 Dec 2014	CPAI-2014-2194		CVE-2009-2554	Joomla Component com_Jobline SQL Injection (CVE-2009-2554)
High	16 Nov 2014	7 Dec 2014	CPAI-2014-2193		CVE-2010-2907	Joomla Component com_huruhelpdesk SQL Injection (CVE-2010-2907)
High	16 Nov 2014	7 Dec 2014	CPAI-2014-2196		CVE-2011-4830	Joomla Component com_listing SQL Injection (CVE-2011-4830)
High	16 Nov 2014	7 Dec 2014	CPAI-2014-2203			Joomla Component Scriptegrator File Inclusion
High	16 Nov 2014	7 Dec 2014	CPAI-2014-2195		CVE-2011-5113	Joomla Component com_techfolio SQL Injection (CVE-2011-5113)
High	16 Nov 2014	7 Dec 2014	CPAI-2014-2198		CVE-2010-2128	Joomla Component com_jequoteform Local File Inclusion (CVE-2010-2128)
High	30 Nov 2014	7 Dec 2014	CPAI-2014-2249		CVE-2007-1165	DBGuestBook dbs_base_path Parameter Multiple Vulnerabilities (CVE-2007-1165)
Medium	2 Sep 2014	4 Dec 2014	CPAI-2014-1784		CVE-2012-4914	CoolPDF Reader Image Stream Processing Buffer Overflow - ver 2 (CVE-2012-4914)
High	2 Dec 2014	3 Dec 2014	CPAI-2014-2270			Malicious iFrame Conditional Cookie Injection
Critical	6 Aug 2014	2 Dec 2014	CPAI-2014-1756	Apache Software Foundation	CVE-2014-0226	Apache HTTP Server mod_status Heap Buffer Overflow (CVE-2014-0226)
High	30 Oct 2014	2 Dec 2014	CPAI-2014-1944			Spike DDoS Toolkit GET Flood Denial of Service
High	12 Nov 2014	1 Dec 2014	CPAI-2014-2186	Apache Foundation	CVE-2011-3348	Apache HTTPD mod_proxy_ajp Denial Of Service (CVE-2011-3348)