260991
|
- |
|
elliot_pahl
|
drush_debian_packaging
|
Unspecified vulnerability in the Drush Debian Packaging module for Drupal allows local users to obtain database credentials via unknown vectors.
|
NVD-CWE-noinfo
|
CVE-2013-0260
|
2013-03-28 13:00 |
2013-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260992
|
- |
|
drupal
|
drupal
|
The Image module in Drupal 7.x before 7.20 allows remote attackers to cause a denial of service (CPU and disk space consumption) via a large number of new derivative requests.
|
CWE-399
Resource Management Errors
|
CVE-2013-0316
|
2013-03-28 13:00 |
2013-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260993
|
- |
|
banckle_chat_project
|
banckle_chat
|
The admin page in the Banckle Chat module for Drupal does not properly restrict access, which allows remote attackers to bypass intended restrictions via unspecified vectors.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-0318
|
2013-03-28 13:00 |
2013-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260994
|
- |
|
mattias_hutterer
|
taxonomy_manager
|
Cross-site request forgery (CSRF) vulnerability in the Taxonomy Manager (taxonomy_manager) module 6.x-2.x before 6.x-2.2 and 7.x-1.x before 7.x-1.0-rc1 for Drupal allows remote attackers to hijack th…
|
CWE-352
Origin Validation Error
|
CVE-2013-0320
|
2013-03-28 13:00 |
2013-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260995
|
- |
|
varnish_http_accelerator_integration_project
|
varnish
|
Multiple cross-site scripting (XSS) vulnerabilities in the Varnish module 6.x-1.x before 6.x-1.2 and 7.x-1.x before 7.x-1.0-beta2 for Drupal allow remote attackers to inject arbitrary web script or H…
|
CWE-79
Cross-site Scripting
|
CVE-2013-0325
|
2013-03-28 13:00 |
2013-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260996
|
- |
|
codedesign
|
artime_japanese_input
|
The ArtIME Japanese Input application 1.1.2 and earlier for Android uses weak permissions for unspecified files, which allows attackers to obtain sensitive information via an application that accesse…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-0719
|
2013-03-28 13:00 |
2013-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260997
|
- |
|
cob\'s_products
|
cobime
|
The COBIME application before 0.9.4 for Android uses weak permissions for unspecified files, which allows attackers to obtain sensitive information via an application that accesses the local filesyst…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-0720
|
2013-03-28 13:00 |
2013-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260998
|
- |
|
devsaran
|
creative
|
Cross-site scripting (XSS) vulnerability in the Creative Theme 7.x-1.x before 7.x-1.2 for Drupal allows remote authenticated users with the administer themes permission to inject arbitrary web script…
|
CWE-79
Cross-site Scripting
|
CVE-2013-1778
|
2013-03-28 13:00 |
2013-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260999
|
- |
|
devsaran
|
fresh
|
Cross-site scripting (XSS) vulnerability in the 3 slide gallery in the Fresh theme before 7.x-1.4 for Drupal allows remote authenticated users with the administer themes permission to inject arbitrar…
|
CWE-79
Cross-site Scripting
|
CVE-2013-1779
|
2013-03-28 13:00 |
2013-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261000
|
- |
|
devsaran
|
professional_theme
|
Cross-site scripting (XSS) vulnerability in the 3 slide gallery in the Professional theme before 7.x-1.4 for Drupal allows remote authenticated users with the administer themes permission to inject a…
|
CWE-79
Cross-site Scripting
|
CVE-2013-1781
|
2013-03-28 13:00 |
2013-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|