260331
|
- |
|
good
|
good_for_enterprise
|
Cross-site scripting (XSS) vulnerability in the Good for Enterprise app before 2.2.4.1659 for iOS allows remote attackers to inject arbitrary web script or HTML via an HTML e-mail message.
|
CWE-79
Cross-site Scripting
|
CVE-2013-5118
|
2013-09-26 07:57 |
2013-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260332
|
- |
|
google motorola
|
android defy_xt
|
Stack-based buffer overflow in the sub_E110 function in init in a certain configuration of Android 2.3.7 on the Motorola Defy XT phone for Republic Wireless allows local users to gain privileges or c…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-5933
|
2013-09-26 07:53 |
2013-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260333
|
- |
|
open-xchange
|
open-xchange_appsuite
|
Open-Xchange AppSuite 7.0.x before 7.0.2-rev15 and 7.2.x before 7.2.2-rev16 has a hardcoded password for node join operations, which allows remote attackers to expand a cluster by finding this passwo…
|
CWE-255
Credentials Management
|
CVE-2013-5934
|
2013-09-26 07:49 |
2013-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260334
|
- |
|
open-xchange
|
open-xchange_appsuite
|
The Hazelcast cluster API in Open-Xchange AppSuite 7.0.x before 7.0.2-rev15 and 7.2.x before 7.2.2-rev16 does not properly restrict the set of network interfaces that can receive API calls, which mak…
|
CWE-200
Information Exposure
|
CVE-2013-5935
|
2013-09-26 07:48 |
2013-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260335
|
- |
|
trianglemicroworks
|
.net_communication_protocol_components ansi_c_source_code_libraries scada_data_gateway
|
Triangle MicroWorks SCADA Data Gateway 2.50.0309 through 3.00.0616, DNP3 .NET Protocol components 3.06.0.171 through 3.15.0.369, and DNP3 C libraries 3.06.0000 through 3.15.0000 allow remote attacker…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-2793
|
2013-09-26 06:58 |
2013-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260336
|
- |
|
open-xchange
|
open-xchange_appsuite
|
The Hazelcast cluster API in Open-Xchange AppSuite 7.0.x before 7.0.2-rev15 and 7.2.x before 7.2.2-rev16 allows remote attackers to obtain sensitive information about (1) runtime activity, (2) networ…
|
CWE-200
Information Exposure
|
CVE-2013-5936
|
2013-09-26 06:53 |
2013-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260337
|
- |
|
konstanty_bialkowski debian
|
libmodplug debian_linux
|
Integer overflow in the abc_set_parts function in load_abc.cpp in libmodplug 0.8.8.4 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted…
|
CWE-189
Numeric Errors
|
CVE-2013-4233
|
2013-09-26 03:21 |
2013-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260338
|
- |
|
slickremix
|
design_approval_system_plugin
|
Cross-site scripting (XSS) vulnerability in admin/walkthrough/walkthrough.php in the Design Approval System plugin before 3.7 for WordPress allows remote attackers to inject arbitrary web script or H…
|
CWE-79
Cross-site Scripting
|
CVE-2013-5711
|
2013-09-26 03:08 |
2013-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260339
|
- |
|
dahuasecurity
|
dvr0404hd-a dvr0404hd-l dvr0404hd-s dvr0404hd-u dvr0404hf-a-e dvr0404hf-al-e dvr0404hf-s-e dvr0404hf-u-e dvr0804 dvr0804hd-l dvr0804hd-s dvr0804hf-a-e dvr0804hf-al…
|
Dahua DVR appliances have a small value for the maximum password length, which makes it easier for remote attackers to obtain access via a brute-force attack.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-3614
|
2013-09-26 03:07 |
2013-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260340
|
- |
|
dahuasecurity
|
dvr0404hd-a dvr0404hd-l dvr0404hd-s dvr0404hd-u dvr0404hf-a-e dvr0404hf-al-e dvr0404hf-s-e dvr0404hf-u-e dvr0804 dvr0804hd-l dvr0804hd-s dvr0804hf-a-e dvr0804hf-al…
|
The authorization implementation on Dahua DVR appliances accepts a hash string representing the current date for the role of a master password, which makes it easier for remote attackers to obtain ad…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-5754
|
2013-09-26 03:07 |
2013-09-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|