CVE-2014-4958
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2014-4958
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Cross-site scripting (XSS) vulnerability in Telerik UI for ASP.NET AJAX RadEditor control 2014.1.403.35, 2009.3.1208.20, and other versions allows remote attackers to inject arbitrary web script or HTML via CSS expressions in style attributes.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Telerik UI for ASP.NET AJAX RadEditor control 跨站脚本漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Telerik UI for ASP.NET AJAX是美国Telerik公司开发的一个用于处理AJAX的ASP.NET控件的UI(用户界面),它包含有图表、列表、界面、编辑、菜单、语言拼写验证控件等功能。RadEditor control是其中的一个内容编辑控件。 Telerik UI for ASP.NET AJAX RadEditor control 2014.1.403.35及之前版本和2009.3.1208.20版本中存在跨站脚本漏洞。远程攻击者可通过style属性中的CSS表达式利用该漏洞注入
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2014-4958
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2014-4958
请登录查看更多情报信息。
- MaverickBlogging | technology & art by G. S. McNamarax_refsource_MISC
- https://nvd.nist.gov/vuln/detail/CVE-2014-4958
Same Patch Batch · n/a · 2014-09-26 · 23 CVEs total
| CVE-2014-6723 | Android Comics Plus应用程序加密问题漏洞 | |
| CVE-2014-6733 | Android My T-Mobile应用程序加密问题漏洞 | |
| CVE-2014-6732 | Android Westpac Mobile Banking应用程序加密问题漏洞 | |
| CVE-2014-6731 | Android Alfa-Bank应用程序加密问题漏洞 | |
| CVE-2014-6730 | Android Melodigram应用程序加密问题漏洞 | |
| CVE-2014-6729 | Android Grilling with Rich应用程序加密问题漏洞 | |
| CVE-2014-6728 | Android ThinkPal应用程序加密问题漏洞 | |
| CVE-2014-6727 | Android Mikeius应用程序加密问题漏洞 | |
| CVE-2014-6726 | Android 30A应用程序加密问题漏洞 | |
| CVE-2014-6725 | Android SchoolXM应用程序加密问题漏洞 | |
| CVE-2014-6724 | Android Soap Making应用程序加密问题漏洞 | |
| CVE-2014-6445 | WordPress Contact Form 7 Integrations插件跨站脚本漏洞 | |
| CVE-2014-6722 | Android Pescuit Crap Lite应用程序加密问题漏洞 | |
| CVE-2014-6721 | Android Pharmaguideline应用程序加密问题漏洞 | |
| CVE-2014-6720 | Android Pesca de Carpa Lite应用程序加密问题漏洞 | |
| CVE-2014-6719 | Android Kayak Angler Magazine应用程序加密问题漏洞 | |
| CVE-2014-5324 | WordPress N-Media file uploader插件代码注入漏洞 | |
| CVE-2014-5319 | Android S-Link SLFileManager应用程序目录遍历漏洞 | |
| CVE-2014-5318 | iOS Jig jigbrowser+应用程序权限许可和访问控制漏洞 | |
| CVE-2014-5315 | Adobe Acrobat和ColdFusion 跨站脚本漏洞 |
Showing top 20 of 23 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
V. Comments for CVE-2014-4958
No comments yet