258621
|
- |
|
qianqin
|
qtranslate
|
Cross-site request forgery (CSRF) vulnerability in the qTranslate plugin 2.5.34 and earlier for WordPress allows remote attackers to hijack the authentication of administrators for requests that chan…
|
CWE-352
Origin Validation Error
|
CVE-2013-3251
|
2014-04-11 23:30 |
2014-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258622
|
- |
|
wp-plugins
|
wp-print
|
Cross-site request forgery (CSRF) vulnerability in the Options in the WP-Print plugin before 2.52 for WordPress allows remote attackers to hijack the authentication of administrators for requests tha…
|
CWE-352
Origin Validation Error
|
CVE-2013-2693
|
2014-04-11 22:29 |
2014-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258623
|
- |
|
dvs_custom_notification_project
|
dvs_custom_notification
|
Multiple cross-site request forgery (CSRF) vulnerabilities in the DVS Custom Notification plugin 1.0.1 and earlier for WordPress allow remote attackers to hijack the authentication of administrators …
|
CWE-352
Origin Validation Error
|
CVE-2012-4921
|
2014-04-11 22:24 |
2014-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258624
|
- |
|
cisco
|
cisco_ons_15454_system_software ons_15454
|
The session-termination functionality on Cisco ONS 15454 controller cards with software 9.6 and earlier does not initialize an unspecified pointer, which allows remote authenticated users to cause a …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-2141
|
2014-04-11 03:33 |
2014-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258625
|
- |
|
tibco
|
web_player automation_services spotfire_server spotfire_professional analyst desktop deployment_kit
|
Unspecified vulnerability in Spotfire Web Player Engine, Spotfire Desktop, and Spotfire Server Authentication Module in TIBCO Spotfire Server 3.3.x before 3.3.4, 4.5.x before 4.5.1, 5.0.x before 5.0.…
|
NVD-CWE-noinfo
|
CVE-2014-2544
|
2014-04-11 00:13 |
2014-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258626
|
- |
|
clip-bucket
|
clipbucket
|
Cross-site scripting (XSS) vulnerability in ClipBucket 2.6 allows remote attackers to inject arbitrary web script or HTML via the type parameter to view_channel.php. NOTE: the provenance of this inf…
|
CWE-79
Cross-site Scripting
|
CVE-2012-6642
|
2014-04-9 02:13 |
2014-04-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258627
|
- |
|
david_paleino fedoraproject
|
wicd fedora
|
The SetWiredProperty function in the D-Bus interface in WICD before 1.7.2 allows local users to write arbitrary configuration settings and gain privileges via a crafted property name in a dbus messag…
|
CWE-20
Improper Input Validation
|
CVE-2012-2095
|
2014-04-8 23:52 |
2014-04-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258628
|
- |
|
horde
|
kronolith_h4 groupware
|
Multiple cross-site scripting (XSS) vulnerabilities in Horde Kronolith Calendar Application H4 before 3.0.17, as used in Horde Groupware Webmail Edition before 4.0.8, allow remote attackers to inject…
|
CWE-79
Cross-site Scripting
|
CVE-2012-5566
|
2014-04-8 00:59 |
2014-04-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258629
|
- |
|
horde
|
imp groupware
|
Cross-site scripting (XSS) vulnerability in js/compose-dimp.js in Horde Internet Mail Program (IMP) before 5.0.24, as used in Horde Groupware Webmail Edition before 4.0.9, allows remote attackers to …
|
CWE-79
Cross-site Scripting
|
CVE-2012-5565
|
2014-04-8 00:36 |
2014-04-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258630
|
- |
|
horde
|
groupware kronolith_h4
|
Multiple cross-site scripting (XSS) vulnerabilities in Horde Kronolith Calendar Application H4 before 3.0.18, as used in Horde Groupware Webmail Edition before 4.0.9, allow remote attackers to inject…
|
CWE-79
Cross-site Scripting
|
CVE-2012-5567
|
2014-04-8 00:32 |
2014-04-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|