|
260011
|
- |
|
cisco
|
ios
|
Race condition in the IPv6 virtual fragmentation reassembly (VFR) implementation in Cisco IOS 12.2 through 12.4 and 15.0 through 15.3 allows remote attackers to cause a denial of service (device relo…
|
CWE-362
Race Condition
|
CVE-2013-5474
|
2013-10-8 05:11 |
2013-09-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260012
|
- |
|
metin_saylan
|
dropdown_menu_widget
|
Cross-site request forgery (CSRF) vulnerability in the Dropdown Menu Widget plugin 1.9.1 for WordPress allows remote attackers to hijack the authentication of arbitrary users for requests that insert…
|
CWE-352
Origin Validation Error
|
CVE-2013-2704
|
2013-10-8 05:10 |
2013-07-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260013
|
- |
|
cisco
|
unified_computing_system
|
The C-Series Rack Server component 1.4 in Cisco Unified Computing System (UCS) does not properly restrict inbound access to ports, which allows remote attackers to cause a denial of service (Integrat…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-1190
|
2013-10-8 05:08 |
2013-08-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260014
|
- |
|
symantec
|
workspace_virtualization
|
Symantec Workspace Virtualization before 6.x before 6.4.1953.0, when a virtual application layer is configured, allows local users to gain privileges via an application that performs crafted interact…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-4679
|
2013-10-8 05:02 |
2013-08-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260015
|
- |
|
guillaume_gauvrit
|
pyshop
|
pyshop before 0.7.1 uses HTTP to retrieve packages from the PyPI repository, and does not perform integrity checks on package contents, which allows man-in-the-middle attackers to execute arbitrary c…
|
CWE-20
Improper Input Validation
|
CVE-2013-1630
|
2013-10-8 04:56 |
2013-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260016
|
- |
|
wordpress
|
wordpress
|
WordPress before 3.5.2 allows remote attackers to read arbitrary files via an oEmbed XML provider response containing an external entity declaration in conjunction with an entity reference, related t…
|
CWE-200
Information Exposure
|
CVE-2013-2202
|
2013-10-8 04:36 |
2013-07-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260017
|
- |
|
cybozu
|
mailwise
|
Cybozu Mailwise 5.0.4 and 5.0.5 allows remote authenticated users to obtain sensitive e-mail content intended for different persons in opportunistic circumstances by reading Subject header lines with…
|
CWE-200
Information Exposure
|
CVE-2013-4698
|
2013-10-8 04:29 |
2013-08-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260018
|
- |
|
iconcool
|
pdfcool_studio
|
Stack-based buffer overflow in PDFAX0722_IconCool.dll 7.22.1125.2121 in IconCool PDFCool Studio 3.32 Build 130330 and earlier allows remote attackers to execute arbitrary code via a crafted PDF file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-4986
|
2013-10-8 03:08 |
2013-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260019
|
- |
|
dell
|
latitude_d530
latitude_d531
latitude_d630
latitude_d631
latitude_d830
latitude_e4200
latitude_e4300
latitude_e5400
latitude_e5500
latitude_e6400
latitude_e6400_atg
la…
|
Buffer overflow in Dell BIOS on Dell Latitude D###, E####, XT2, and Z600 devices, and Dell Precision M#### devices, allows local users to bypass intended BIOS signing requirements and install arbitra…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-3582
|
2013-10-8 03:04 |
2013-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260020
|
- |
|
searchblox
|
searchblox
|
Unrestricted file upload vulnerability in admin/uploadImage.html in SearchBlox before 7.5 build 1 allows remote attackers to execute arbitrary code by uploading an executable file with the image/jpeg…
|
NVD-CWE-Other
|
CVE-2013-3590
|
2013-10-8 03:01 |
2013-08-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
