|
260911
|
- |
|
cogentdatahub
|
cogent_datahub
opc_datahub
cascade_datahub
datahub_quicktrend
|
Cogent Real-Time Systems Cogent DataHub before 7.3.0, OPC DataHub before 6.4.22, Cascade DataHub before 6.4.22 on Windows, and DataHub QuickTrend before 7.3.0 allow remote attackers to cause a denial…
|
CWE-20
Improper Input Validation
|
CVE-2013-0681
|
2013-04-8 23:09 |
2013-04-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260912
|
- |
|
cisco
|
hosted_collaboration_solution
|
Cisco Tivoli Business Service Manager (TBSM) in Hosted Collaboration Mediation (HCM) in Cisco Hosted Collaboration Solution allows remote attackers to cause a denial of service (temporary service han…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-1174
|
2013-04-6 03:03 |
2013-04-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260913
|
- |
|
c2enterprise
|
c2_webresource
|
Cross-site scripting (XSS) vulnerability in fileview.asp in C2 WebResource allows remote attackers to inject arbitrary web script or HTML via the File parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2013-0125
|
2013-04-5 13:00 |
2013-04-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260914
|
- |
|
tigertext
|
tigertext
|
The Contact Customer Support feature in the TigerText Free Private Texting app before 3.1.402 for iOS sends a log-file e-mail message with unencrypted credentials, which allows remote attackers to ob…
|
CWE-255
Credentials Management
|
CVE-2013-0128
|
2013-04-5 13:00 |
2013-04-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260915
|
- |
|
google_authenticator_login_project
|
ga_login
|
The Google Authenticator login (ga_login) module 7.x before 7.x-1.3 for Drupal, when multi-factor authentication is enabled, allows remote attackers to bypass authentication for accounts without an a…
|
CWE-287
Improper Authentication
|
CVE-2013-0258
|
2013-04-5 13:00 |
2013-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260916
|
- |
|
simeji
|
simeji
|
The Simeji application 4.8.1 and earlier for Android uses weak permissions for unspecified files, which allows attackers to obtain sensitive information via an application that accesses the local fil…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-0718
|
2013-04-5 13:00 |
2013-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260917
|
- |
|
transware
|
active\!_mail
|
TransWARE Active! mail 6, when an external public interface is used, allows local users to obtain sensitive information belonging to arbitrary users by leveraging shell access, as demonstrated by a T…
|
CWE-200
Information Exposure
|
CVE-2013-2302
|
2013-04-5 13:00 |
2013-04-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260918
|
- |
|
mailup
|
wp-mailup
|
ajax.functions.php in the MailUp plugin before 1.3.2 for WordPress does not properly restrict access to unspecified Ajax functions, which allows remote attackers to modify plugin settings and conduct…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-2640
|
2013-04-5 13:00 |
2013-03-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260919
|
- |
|
cisco
|
asa_cx_context-aware_security
prime_security_manager
|
The Cisco ASA-CX Context-Aware Security module before 9.0.2-103 for Adaptive Security Appliances (ASA) devices, and Prime Security Manager (aka PRSM) before 9.0.2-103, allows remote attackers to caus…
|
CWE-399
Resource Management Errors
|
CVE-2012-4629
|
2013-04-5 12:13 |
2012-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260920
|
- |
|
pnp4nagios
|
pnp4nagios
|
PNP4Nagios 0.6 through 0.6.16 uses world-readable permissions for process_perfdata.cfg, which allows local users to obtain the Gearman shared secret by reading the file.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-3457
|
2013-04-5 12:12 |
2012-08-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
