|
261001
|
- |
|
codedesign
|
artime_japanese_input
|
The ArtIME Japanese Input application 1.1.2 and earlier for Android uses weak permissions for unspecified files, which allows attackers to obtain sensitive information via an application that accesse…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-0719
|
2013-03-28 13:00 |
2013-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261002
|
- |
|
cob\'s_products
|
cobime
|
The COBIME application before 0.9.4 for Android uses weak permissions for unspecified files, which allows attackers to obtain sensitive information via an application that accesses the local filesyst…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-0720
|
2013-03-28 13:00 |
2013-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261003
|
- |
|
devsaran
|
creative
|
Cross-site scripting (XSS) vulnerability in the Creative Theme 7.x-1.x before 7.x-1.2 for Drupal allows remote authenticated users with the administer themes permission to inject arbitrary web script…
|
CWE-79
Cross-site Scripting
|
CVE-2013-1778
|
2013-03-28 13:00 |
2013-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261004
|
- |
|
devsaran
|
fresh
|
Cross-site scripting (XSS) vulnerability in the 3 slide gallery in the Fresh theme before 7.x-1.4 for Drupal allows remote authenticated users with the administer themes permission to inject arbitrar…
|
CWE-79
Cross-site Scripting
|
CVE-2013-1779
|
2013-03-28 13:00 |
2013-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261005
|
- |
|
devsaran
|
professional_theme
|
Cross-site scripting (XSS) vulnerability in the 3 slide gallery in the Professional theme before 7.x-1.4 for Drupal allows remote authenticated users with the administer themes permission to inject a…
|
CWE-79
Cross-site Scripting
|
CVE-2013-1781
|
2013-03-28 13:00 |
2013-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261006
|
- |
|
devsaran
|
clean_theme
|
Cross-site scripting (XSS) vulnerability in the 3 slide gallery in the Clean Theme before 7.x-1.3 for Drupal allows remote authenticated users with the administer themes permission to inject arbitrar…
|
CWE-79
Cross-site Scripting
|
CVE-2013-1784
|
2013-03-28 13:00 |
2013-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261007
|
- |
|
devsaran
|
responsive
|
Cross-site scripting (XSS) vulnerability in the 3 slide gallery in the Premium Responsive theme before 7.x-1.6 for Drupal allows remote authenticated users with the administer themes permission to in…
|
CWE-79
Cross-site Scripting
|
CVE-2013-1785
|
2013-03-28 13:00 |
2013-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261008
|
- |
|
devsaran
|
company
|
Cross-site scripting (XSS) vulnerability in the 3 slide gallery in the Company theme before 7.x-1.4 for Drupal allows remote authenticated users with the administer themes permission to inject arbitr…
|
CWE-79
Cross-site Scripting
|
CVE-2013-1786
|
2013-03-28 13:00 |
2013-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261009
|
- |
|
devsaran
|
corporate
|
Cross-site scripting (XSS) vulnerability in the 3 slide gallery in the Simple Corporate theme before 7.x-1.4 for Drupal allows remote authenticated users with the administer themes permission to inje…
|
CWE-79
Cross-site Scripting
|
CVE-2013-1787
|
2013-03-28 13:00 |
2013-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261010
|
- |
|
chris_desautels
|
node_parameter_control
|
The Node Parameter Control module 6.x-1.x for Drupal does not properly restrict access to the configuration options, which allows remote attackers to read and edit configuration options via unspecifi…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-1859
|
2013-03-28 13:00 |
2013-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
