|
260341
|
- |
|
kingsoft
|
office_2012
writer_2012
|
Stack-based buffer overflow in Kingsoft Writer 2012 8.1.0.3030, as used in Kingsoft Office 2013 before 9.1.0.4256, allows remote attackers to execute arbitrary code via a long font name in a WPS file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-3934
|
2013-09-11 08:05 |
2013-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260342
|
- |
|
apple
|
mac_os_x
mac_os_x_server
|
Directory traversal vulnerability in AFP Server in Apple Mac OS X before 10.6.3 allows remote attackers to list a share root's parent directory, and read and modify files in that directory, via unspe…
|
CWE-22
Path Traversal
|
CVE-2010-0533
|
2013-09-11 02:18 |
2010-03-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260343
|
- |
|
wordpress
|
wordpress
|
WordPress before 3.5.2, when the uploads directory forbids write access, allows remote attackers to obtain sensitive information via an invalid upload request, which reveals the absolute path in an X…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-2203
|
2013-09-11 02:12 |
2013-07-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260344
|
- |
|
wordpress
|
wordpress
|
Multiple cross-site scripting (XSS) vulnerabilities in WordPress before 3.5.2 allow remote attackers to inject arbitrary web script or HTML via vectors involving (1) uploads of media files, (2) editi…
|
CWE-79
Cross-site Scripting
|
CVE-2013-2201
|
2013-09-11 02:03 |
2013-07-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260345
|
- |
|
twilightcms
|
twilight_cms
|
Cross-site scripting (XSS) vulnerability in Twilight CMS 5.17 and possibly earlier allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO to the gallery/ page.
|
CWE-79
Cross-site Scripting
|
CVE-2013-4899
|
2013-09-10 22:31 |
2013-09-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260346
|
- |
|
prosoft-technology
|
radiolinx_controlscape
|
ProSoft RadioLinx ControlScape before 6.00.040 uses a deficient PRNG algorithm and seeding strategy for passphrases, which makes it easier for remote attackers to obtain access via a brute-force atta…
|
CWE-310
Cryptographic Issues
|
CVE-2013-2803
|
2013-09-10 04:28 |
2013-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260347
|
- |
|
hp
|
palm_webos
|
Cross-site scripting (XSS) vulnerability in the Contacts Application in HP Palm webOS before 2.0 allows remote attackers to inject arbitrary web script or HTML via a crafted vCard file.
|
CWE-79
Cross-site Scripting
|
CVE-2010-4109
|
2013-09-9 15:04 |
2010-12-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260348
|
- |
|
ternaria
|
com_vjdeo
|
Directory traversal vulnerability in the VJDEO (com_vjdeo) component 1.0 and 1.0.1 for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the controller parameter to index.…
|
CWE-22
Path Traversal
|
CVE-2010-1354
|
2013-09-9 14:58 |
2010-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260349
|
- |
|
minigal
|
mg2
|
Cross-site scripting (XSS) vulnerability in admin.php in MG2 (formerly Minigal) allows remote attackers to inject arbitrary web script or HTML via the list parameter in an import action.
|
CWE-79
Cross-site Scripting
|
CVE-2008-1228
|
2013-09-8 14:32 |
2008-03-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260350
|
- |
|
wordpress
|
wordpress
wordpress_mu
|
Unrestricted file upload vulnerability in (1) wp-app.php and (2) app.php in WordPress 2.2.1 and WordPress MU 1.2.3 allows remote authenticated users to upload and execute arbitrary PHP code via unspe…
|
NVD-CWE-Other
|
CVE-2007-3544
|
2013-09-8 14:21 |
2007-07-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
