|
258481
|
- |
|
clip-bucket
|
clipbucket
|
Cross-site scripting (XSS) vulnerability in ClipBucket 2.6 allows remote attackers to inject arbitrary web script or HTML via the type parameter to view_channel.php. NOTE: the provenance of this inf…
|
CWE-79
Cross-site Scripting
|
CVE-2012-6642
|
2014-04-9 02:13 |
2014-04-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258482
|
- |
|
david_paleino
fedoraproject
|
wicd
fedora
|
The SetWiredProperty function in the D-Bus interface in WICD before 1.7.2 allows local users to write arbitrary configuration settings and gain privileges via a crafted property name in a dbus messag…
|
CWE-20
Improper Input Validation
|
CVE-2012-2095
|
2014-04-8 23:52 |
2014-04-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258483
|
- |
|
horde
|
kronolith_h4
groupware
|
Multiple cross-site scripting (XSS) vulnerabilities in Horde Kronolith Calendar Application H4 before 3.0.17, as used in Horde Groupware Webmail Edition before 4.0.8, allow remote attackers to inject…
|
CWE-79
Cross-site Scripting
|
CVE-2012-5566
|
2014-04-8 00:59 |
2014-04-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258484
|
- |
|
horde
|
imp
groupware
|
Cross-site scripting (XSS) vulnerability in js/compose-dimp.js in Horde Internet Mail Program (IMP) before 5.0.24, as used in Horde Groupware Webmail Edition before 4.0.9, allows remote attackers to …
|
CWE-79
Cross-site Scripting
|
CVE-2012-5565
|
2014-04-8 00:36 |
2014-04-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258485
|
- |
|
horde
|
groupware
kronolith_h4
|
Multiple cross-site scripting (XSS) vulnerabilities in Horde Kronolith Calendar Application H4 before 3.0.18, as used in Horde Groupware Webmail Edition before 4.0.9, allow remote attackers to inject…
|
CWE-79
Cross-site Scripting
|
CVE-2012-5567
|
2014-04-8 00:32 |
2014-04-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258486
|
- |
|
horde
|
groupware
imp
|
Cross-site scripting (XSS) vulnerability in Horde Internet Mail Program (IMP) before 5.0.22, as used in Horde Groupware Webmail Edition before 4.0.9, allows remote attackers to inject arbitrary web s…
|
CWE-79
Cross-site Scripting
|
CVE-2012-6640
|
2014-04-8 00:23 |
2014-04-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258487
|
- |
|
huawei
|
echo_life_hg8247_firmware
echo_life
|
Cross-site scripting (XSS) vulnerability in the web interface on Huawei Echo Life HG8247 routers with software before V100R006C00SPC127 allows remote attackers to inject arbitrary web script or HTML …
|
CWE-79
Cross-site Scripting
|
CVE-2014-0337
|
2014-04-7 23:36 |
2014-04-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258488
|
- |
|
cisco
|
ios_xr
|
Cisco IOS XR does not properly throttle ICMPv6 redirect packets, which allows remote attackers to cause a denial of service (IPv4 and IPv6 transit outage) via crafted redirect messages, aka Bug ID CS…
|
CWE-20
Improper Input Validation
|
CVE-2014-2144
|
2014-04-7 23:16 |
2014-04-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258489
|
- |
|
autodesk
|
sketchbook
sketchbook_express
sketchbook_for_enterprise_2014
sketchbook_pro
|
Heap-based buffer overflow in Autodesk SketchBook for Enterprise 2014, Pro, and Express before 6.25, and Copic Edition before 2.0.2 allows remote attackers to execute arbitrary code via RLE-compresse…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-5365
|
2014-04-5 12:56 |
2014-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258490
|
- |
|
schneider-electric
|
opc_factory_server_tlxcdlfofs
opc_factory_server_tlxcdltofs
opc_factory_server_tlxcdluofs
opc_factory_server_tlxcdstofs
opc_factory_server_tlxcdsuofs
|
Multiple buffer overflows in the OPC Automation 2.0 Server Object ActiveX control in Schneider Electric OPC Factory Server (OFS) TLXCDSUOFS33 3.5 and earlier, TLXCDSTOFS33 3.5 and earlier, TLXCDLUOFS…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-0789
|
2014-04-5 02:52 |
2014-04-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
