| ID | Summary | Flags | Max Score |
|---|---|---|---|
| CVE-2014-125001 | Cardo Systems Scala Rider Q3 Cardo-Updater api privileges management | E | |
| CVE-2014-125002 | FFmpeg dnxhdenc.c dnxhd_init_rc memory corruption | | |
| CVE-2014-125003 | FFmpeg jpeg2000dec.c get_siz memory corruption | | |
| CVE-2014-125004 | FFmpeg vmnc.c decode_hextile memory corruption | | |
| CVE-2014-125005 | FFmpeg mpeg4videodec.c decode_vol_header memory corruption | | |
| CVE-2014-125006 | FFmpeg h264.c output_frame memory corruption | | |
| CVE-2014-125007 | FFmpeg hevcpred_template.c intra_pred memory corruption | | |
| CVE-2014-125008 | FFmpeg oggparsevorbis.c vorbis_header memory corruption | | |
| CVE-2014-125009 | FFmpeg snow.h add_yblock memory corruption | | |
| CVE-2014-125010 | FFmpeg h64.c decode_slice_header memory corruption | | |
| CVE-2014-125011 | FFmpeg ansi.c decode_frame integer coercion | | |
| CVE-2014-125012 | FFmpeg dxtroy.c integer coercion | | |
| CVE-2014-125013 | FFmpeg msrle.c msrle_decode_frame memory corruption | | |
| CVE-2014-125014 | FFmpeg HEVC Video Decoder memory corruption | | |
| CVE-2014-125015 | FFmpeg read_var_block_data memory corruption | | |
| CVE-2014-125016 | FFmpeg utils.c ff_init_buffer_info memory corruption | | |
| CVE-2014-125017 | FFmpeg rpza_decode_stream memory corruption | | |
| CVE-2014-125018 | FFmpeg decode_slice_header memory corruption | | |
| CVE-2014-125019 | FFmpeg Slice Segment decode_nal_unit memory corruption | | |
| CVE-2014-125020 | FFmpeg decode_update_thread_context memory corruption | | |
| CVE-2014-125021 | FFmpeg cmv_process_header memory corruption | | |
| CVE-2014-125022 | FFmpeg Bitstream Buffer shorten_decode_frame memory corruption | | |
| CVE-2014-125023 | FFmpeg Truemotion1 truemotion1_decode_header memory corruption | | |
| CVE-2014-125024 | FFmpeg lag_decode_frame memory corruption | | |
| CVE-2014-125025 | FFmpeg decode_pulses memory corruption | | |
| CVE-2014-125026 | Out-of-bounds write in github.com/cloudflare/golz4 | S | |
| CVE-2014-125027 | Yuna Scatari TBDev usersearch.php get_user_icons cross site scripting | S | |
| CVE-2014-125028 | valtech IDP Test Client main.py cross-site request forgery | S | |
| CVE-2014-125029 | ttskch PaginationServiceProvider Demo index.php sql injection | S | |
| CVE-2014-125030 | taoeffect Empress hard-coded password | S | |
| CVE-2014-125031 | kirill2485 TekNet loggedin.php cross site scripting | S | |
| CVE-2014-125032 | porpeeranut go-with-me add.php sql injection | S | |
| CVE-2014-125033 | rails-cv-app uploaded_files_controller.rb path traversal | S | |
| CVE-2014-125034 | stiiv contact_app View.php render cross site scripting | S | |
| CVE-2014-125035 | Jobs-Plugin cross site scripting | S | |
| CVE-2014-125036 | drybjed ansible-ntp main.yml amplification | S | |
| CVE-2014-125037 | License to Kill injury.rb sql injection | S | |
| CVE-2014-125038 | IS_Projecto2 NewsBean.java sql injection | S | |
| CVE-2014-125039 | kkokko NeoXplora Trainer cross site scripting | S | |
| CVE-2014-125040 | stevejagodzinski DevNewsAggregator RemoteHtmlContentDataAccess.php getByName sql injection | S | |
| CVE-2014-125041 | Miccighel PR-CWT sql injection | S | |
| CVE-2014-125042 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2014-125043 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2014-125044 | soshtolsus wing-tight index.php file inclusion | S | |
| CVE-2014-125045 | meol1 index.php GetAnimal sql injection | S | |
| CVE-2014-125046 | Seiji42 cub-scout-tracker databaseAccessFunctions.js sql injection | S | |
| CVE-2014-125047 | tbezman school-store sql injection | S | |
| CVE-2014-125048 | kassi xingwall oauth.js session fixiation | S | |
| CVE-2014-125049 | typcn Blogile server.js getNav sql injection | S | |
| CVE-2014-125050 | ScottTZhang voter-js main.js sql injection | S | |
| CVE-2014-125051 | himiklab yii2-jqgrid-widget JqGridAction.php addSearchOptionsRecursively sql injection | S | |
| CVE-2014-125052 | JervenBolleman sparql-identifiers RegistryDao.java sql injection | S | |
| CVE-2014-125053 | Piwigo-Guest-Book Navigation Bar guestbook.inc.php sql injection | S | |
| CVE-2014-125054 | koroket RedditOnRails Vote access control | S | |
| CVE-2014-125055 | agnivade easy-scrypt scrypt.go VerifyPassphrase timing discrepancy | S | |
| CVE-2014-125056 | Pylons horus services.py timing discrepancy | S | |
| CVE-2014-125057 | mrobit robitailletheknot CSRF Token filters.php comparison | S | |
| CVE-2014-125058 | LearnMeSomeCodes project3 search.rb search_first_name sql injection | S | |
| CVE-2014-125059 | sternenseemann sternenblog main.c blog_index file inclusion | S | |
| CVE-2014-125060 | holdennb CollabCal calenderServer.cpp handleGet improper authentication | S | |
| CVE-2014-125061 | peel filebroker common.rb select_transfer_status_desc sql injection | S | |
| CVE-2014-125062 | ananich bitstorm announce.php sql injection | S | |
| CVE-2014-125063 | ada-l0velace Bid sql injection | S | |
| CVE-2014-125064 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was with... | R | |
| CVE-2014-125065 | john5223 bottle-auth sql injection | S | |
| CVE-2014-125066 | emmflo yuko-bot denial of service | S | |
| CVE-2014-125067 | corincerami curiosity image_controller.rb sql injection | S | |
| CVE-2014-125068 | saxman maps-js-icoads http-server.js path traversal | S | |
| CVE-2014-125069 | saxman maps-js-icoads exposure of information through directory listing | S | |
| CVE-2014-125070 | yanheven console tables.py AvailabilityZonesTable cross site scripting | S | |
| CVE-2014-125071 | lukehutch Gribbit HttpRequestHandler.java messageReceived missing origin validation in websockets | S | |
| CVE-2014-125072 | CherishSin klattr sql injection | S | |
| CVE-2014-125073 | mapoor voteapp app.py show_refresh sql injection | S | |
| CVE-2014-125074 | Nayshlok Voyager DatabaseAccess.java sql injection | S | |
| CVE-2014-125075 | gmail-servlet Model.java search sql injection | S | |
| CVE-2014-125076 | NoxxieNl Criminals roulette.php sql injection | S | |
| CVE-2014-125077 | pointhi searx_stats cron.php sql injection | S | |
| CVE-2014-125078 | yanheven console horizon.instances.js cross site scripting | S | |
| CVE-2014-125079 | agy pontifex.http Http.coffee sql injection | S | |
| CVE-2014-125080 | frontaccounting faplanet path traversal | S | |
| CVE-2014-125081 | risheesh debutsav sql injection | S | |
| CVE-2014-125082 | nivit redports model.py sql injection | S | |
| CVE-2014-125083 | Anant Labs google-enterprise-connector-dctm sql injection | S | |
| CVE-2014-125084 | Gimmie Plugin trigger_referral.php sql injection | S | |
| CVE-2014-125085 | Gimmie Plugin trigger_ratethread.php sql injection | S | |
| CVE-2014-125086 | Gimmie Plugin trigger_login.php sql injection | S | |
| CVE-2014-125087 | java-xmlbuilder xml external entity reference | E S | |
| CVE-2014-125088 | qt-users-jp silk header.qml cross site scripting | S | |
| CVE-2014-125089 | cention-chatserver InternalChatProtocol.fe _formatBody cross site scripting | S | |
| CVE-2014-125090 | Media Downloader Plugin getfile.php dl_file_resumable cross site scripting | S | |
| CVE-2014-125091 | codepeople cp-polls Plugin cp-admin-int-message-list.inc.php sql injection | S | |
| CVE-2014-125092 | MaxButtons Plugin maxbuttons-button.php maxbuttons_strip_px cross site scripting | S | |
| CVE-2014-125093 | Ad Blocking Detector Plugin ad-blocking-detector.php information disclosure | S | |
| CVE-2014-125094 | phpMiniAdmin cross site scripting | | |
| CVE-2014-125095 | BestWebSoft Contact Form Plugin bws_menu.php bws_add_menu_render cross site scripting | S | |
| CVE-2014-125096 | Fancy Gallery Plugin Options Page class.options.php cross site scripting | S | |
| CVE-2014-125097 | BestWebSoft Facebook Like Button facebook-button-plugin.php fcbkbttn_settings_page cross site scripting | S | |
| CVE-2014-125098 | Dart http_server Directory Listing virtual_directory.dart VirtualDirectory cross site scripting | S | |
| CVE-2014-125099 | I Recommend This Plugin dot-irecommendthis.php sql injection | S | |
| CVE-2014-125100 | BestWebSoft Job Board Plugin cross site scripting | S | |
| CVE-2014-125101 | Portfolio Gallery Plugin sql injection | S | |
| CVE-2014-125102 | Bestwebsoft Relevant Plugin Thumbnail information disclosure | S | |
| CVE-2014-125103 | BestWebSoft Twitter Plugin twitter.php twttr_settings_page cross site scripting | S | |
| CVE-2014-125104 | VaultPress Plugin MailPoet Plugin class.vaultpress-hotfixes.php protect_aioseo_ajax unrestricted upload | S | |
| CVE-2014-125105 | Broken Link Checker Plugin Settings Page core.php options_page cross site scripting | S | |
| CVE-2014-125106 | Nanopb before 0.3.1 allows size_t overflows in pb_dec_bytes and pb_dec_string.... | S | |
| CVE-2014-125107 | Corveda PHPSandbox String protection mechanism | S | |
| CVE-2014-125108 | w3c online-spellchecker-py spellchecker cross site scripting | S | |
| CVE-2014-125109 | BestWebSoft Portfolio Plugin bws_menu.php bws_add_menu_render cross site scripting | S | |
| CVE-2014-125110 | wp-file-upload Plugin wfu_ajaxactions.php wfu_ajax_action_callback cross site scripting | S | |
| CVE-2014-125111 | namithjawahar Wp-Insert cross site scripting | S |