|
261001
|
- |
|
devsaran
|
clean_theme
|
Cross-site scripting (XSS) vulnerability in the 3 slide gallery in the Clean Theme before 7.x-1.3 for Drupal allows remote authenticated users with the administer themes permission to inject arbitrar…
|
CWE-79
Cross-site Scripting
|
CVE-2013-1784
|
2013-03-28 13:00 |
2013-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261002
|
- |
|
devsaran
|
responsive
|
Cross-site scripting (XSS) vulnerability in the 3 slide gallery in the Premium Responsive theme before 7.x-1.6 for Drupal allows remote authenticated users with the administer themes permission to in…
|
CWE-79
Cross-site Scripting
|
CVE-2013-1785
|
2013-03-28 13:00 |
2013-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261003
|
- |
|
devsaran
|
company
|
Cross-site scripting (XSS) vulnerability in the 3 slide gallery in the Company theme before 7.x-1.4 for Drupal allows remote authenticated users with the administer themes permission to inject arbitr…
|
CWE-79
Cross-site Scripting
|
CVE-2013-1786
|
2013-03-28 13:00 |
2013-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261004
|
- |
|
devsaran
|
corporate
|
Cross-site scripting (XSS) vulnerability in the 3 slide gallery in the Simple Corporate theme before 7.x-1.4 for Drupal allows remote authenticated users with the administer themes permission to inje…
|
CWE-79
Cross-site Scripting
|
CVE-2013-1787
|
2013-03-28 13:00 |
2013-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261005
|
- |
|
chris_desautels
|
node_parameter_control
|
The Node Parameter Control module 6.x-1.x for Drupal does not properly restrict access to the configuration options, which allows remote attackers to read and edit configuration options via unspecifi…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-1859
|
2013-03-28 13:00 |
2013-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261006
|
- |
|
views_project
|
views
|
Multiple cross-site scripting (XSS) vulnerabilities in the Views module 7.x-3.x before 7.x-3.6 for Drupal allow remote authenticated users with certain permissions to inject arbitrary web script or H…
|
CWE-79
Cross-site Scripting
|
CVE-2013-1887
|
2013-03-28 13:00 |
2013-03-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261007
|
- |
|
symantec
|
enterprise_vault_for_file_system_archiving
|
Multiple unquoted Windows search path vulnerabilities in the (1) File Collector and (2) File PlaceHolder services in Symantec Enterprise Vault (EV) for File System Archiving before 9.0.4 and 10.x bef…
|
NVD-CWE-Other
|
CVE-2013-1609
|
2013-03-27 22:25 |
2013-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261008
|
- |
|
cisco
|
ios_xr
|
The traffic engineering (TE) processing subsystem in Cisco IOS XR allows remote attackers to cause a denial of service (process restart) via crafted TE packets, aka Bug ID CSCue04000.
|
CWE-20
Improper Input Validation
|
CVE-2013-1162
|
2013-03-27 01:11 |
2013-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261009
|
- |
|
cisco
|
jabber_im
|
The XML parser in the Cisco Jabber IM application for Android allows remote authenticated users to cause a denial of service (blocked connection) by leveraging an entry on a Buddy list and sending a …
|
CWE-20
Improper Input Validation
|
CVE-2013-1161
|
2013-03-27 01:09 |
2013-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261010
|
- |
|
symantec
|
netbackup_appliance
|
Directory traversal vulnerability in the Management Console on the Symantec NetBackup (NBU) appliance 2.0.x allows remote attackers to read arbitrary files via unspecified vectors.
|
CWE-22
Path Traversal
|
CVE-2013-1608
|
2013-03-26 23:07 |
2013-03-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
