|
260921
|
- |
|
devsaran
|
fresh
|
Cross-site scripting (XSS) vulnerability in the 3 slide gallery in the Fresh theme before 7.x-1.4 for Drupal allows remote authenticated users with the administer themes permission to inject arbitrar…
|
CWE-79
Cross-site Scripting
|
CVE-2013-1779
|
2013-03-28 13:00 |
2013-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260922
|
- |
|
devsaran
|
professional_theme
|
Cross-site scripting (XSS) vulnerability in the 3 slide gallery in the Professional theme before 7.x-1.4 for Drupal allows remote authenticated users with the administer themes permission to inject a…
|
CWE-79
Cross-site Scripting
|
CVE-2013-1781
|
2013-03-28 13:00 |
2013-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260923
|
- |
|
devsaran
|
clean_theme
|
Cross-site scripting (XSS) vulnerability in the 3 slide gallery in the Clean Theme before 7.x-1.3 for Drupal allows remote authenticated users with the administer themes permission to inject arbitrar…
|
CWE-79
Cross-site Scripting
|
CVE-2013-1784
|
2013-03-28 13:00 |
2013-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260924
|
- |
|
devsaran
|
responsive
|
Cross-site scripting (XSS) vulnerability in the 3 slide gallery in the Premium Responsive theme before 7.x-1.6 for Drupal allows remote authenticated users with the administer themes permission to in…
|
CWE-79
Cross-site Scripting
|
CVE-2013-1785
|
2013-03-28 13:00 |
2013-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260925
|
- |
|
devsaran
|
company
|
Cross-site scripting (XSS) vulnerability in the 3 slide gallery in the Company theme before 7.x-1.4 for Drupal allows remote authenticated users with the administer themes permission to inject arbitr…
|
CWE-79
Cross-site Scripting
|
CVE-2013-1786
|
2013-03-28 13:00 |
2013-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260926
|
- |
|
devsaran
|
corporate
|
Cross-site scripting (XSS) vulnerability in the 3 slide gallery in the Simple Corporate theme before 7.x-1.4 for Drupal allows remote authenticated users with the administer themes permission to inje…
|
CWE-79
Cross-site Scripting
|
CVE-2013-1787
|
2013-03-28 13:00 |
2013-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260927
|
- |
|
chris_desautels
|
node_parameter_control
|
The Node Parameter Control module 6.x-1.x for Drupal does not properly restrict access to the configuration options, which allows remote attackers to read and edit configuration options via unspecifi…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-1859
|
2013-03-28 13:00 |
2013-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260928
|
- |
|
views_project
|
views
|
Multiple cross-site scripting (XSS) vulnerabilities in the Views module 7.x-3.x before 7.x-3.6 for Drupal allow remote authenticated users with certain permissions to inject arbitrary web script or H…
|
CWE-79
Cross-site Scripting
|
CVE-2013-1887
|
2013-03-28 13:00 |
2013-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260929
|
- |
|
symantec
|
enterprise_vault_for_file_system_archiving
|
Multiple unquoted Windows search path vulnerabilities in the (1) File Collector and (2) File PlaceHolder services in Symantec Enterprise Vault (EV) for File System Archiving before 9.0.4 and 10.x bef…
|
NVD-CWE-Other
|
CVE-2013-1609
|
2013-03-27 22:25 |
2013-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260930
|
- |
|
cisco
|
ios_xr
|
The traffic engineering (TE) processing subsystem in Cisco IOS XR allows remote attackers to cause a denial of service (process restart) via crafted TE packets, aka Bug ID CSCue04000.
|
CWE-20
Improper Input Validation
|
CVE-2013-1162
|
2013-03-27 01:11 |
2013-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
