260951
|
- |
|
freedesktop
|
poppler
|
Per: http://cwe.mitre.org/data/definitions/476.html
'CWE-476: NULL Pointer Dereference'
|
NVD-CWE-Other
|
CVE-2013-1789
|
2013-04-10 13:00 |
2013-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260952
|
- |
|
john_nunemaker
|
crack
|
The crack gem 0.3.1 and earlier for Ruby does not properly restrict casts of string values, which might allow remote attackers to conduct object-injection attacks and execute arbitrary code, or cause…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-1800
|
2013-04-10 13:00 |
2013-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260953
|
- |
|
john_nunemaker
|
httparty
|
The httparty gem 0.9.0 and earlier for Ruby does not properly restrict casts of string values, which might allow remote attackers to conduct object-injection attacks and execute arbitrary code, or ca…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-1801
|
2013-04-10 13:00 |
2013-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260954
|
- |
|
dan_kubb
|
extlib
|
The extlib gem 0.9.15 and earlier for Ruby does not properly restrict casts of string values, which might allow remote attackers to conduct object-injection attacks and execute arbitrary code, or cau…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-1802
|
2013-04-10 13:00 |
2013-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260955
|
- |
|
digineo
|
thumbshooter
|
lib/thumbshooter.rb in the Thumbshooter 0.1.5 gem for Ruby allows remote attackers to execute arbitrary commands via shell metacharacters in a URL.
|
CWE-94
Code Injection
|
CVE-2013-1898
|
2013-04-10 13:00 |
2013-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260956
|
- |
|
chatelao
|
php_address_book
|
Cross-site request forgery (CSRF) vulnerability in addressbook/register/delete_user.php in PHP Address Book 8.2.5 allows remote attackers to hijack the authentication of administrators for requests t…
|
CWE-352
Origin Validation Error
|
CVE-2013-2778
|
2013-04-10 00:25 |
2013-04-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260957
|
- |
|
airdroid
|
airdroid
|
Cross-site scripting (XSS) vulnerability in the web interface in AirDroid allows remote attackers to inject arbitrary web script or HTML via a crafted text message that is transmitted by a managed ph…
|
CWE-79
Cross-site Scripting
|
CVE-2013-0134
|
2013-04-10 00:22 |
2013-04-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260958
|
- |
|
nvidia
|
driver
|
daemonu.exe (aka the NVIDIA Update Service Daemon), as distributed with the NVIDIA driver before 307.78, and Release 310 before 311.00, on Windows, lacks " (double quote) characters in the service pa…
|
NVD-CWE-Other
|
CVE-2013-0111
|
2013-04-9 23:24 |
2013-04-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260959
|
- |
|
nvidia
|
driver
|
nvSCPAPISvr.exe in the NVIDIA Stereoscopic 3D Driver service, as distributed with the NVIDIA driver before 307.78, and Release 310 before 311.00, on Windows, lacks " (double quote) characters in the …
|
NVD-CWE-Other
|
CVE-2013-0110
|
2013-04-9 23:19 |
2013-04-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260960
|
- |
|
nvidia
|
display_driver
|
The NVIDIA driver before 307.78, and Release 310 before 311.00, in the NVIDIA Display Driver service on Windows does not properly handle exceptions, which allows local users to gain privileges or cau…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-0109
|
2013-04-9 13:00 |
2013-04-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|