258941
|
- |
|
ibm
|
cognos_business_intelligence
|
Cross-site scripting (XSS) vulnerability in the server in IBM Cognos Business Intelligence (BI) 8.4.1, 10.1 before IF6, 10.1.1 before IF5, 10.2 before IF7, 10.2.1 before IF4, and 10.2.1.1 before IF4 …
|
CWE-79
Cross-site Scripting
|
CVE-2014-0861
|
2014-03-6 13:50 |
2014-02-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258942
|
- |
|
otrs
|
otrs
|
Multiple cross-site request forgery (CSRF) vulnerabilities in (1) CustomerPreferences.pm, (2) CustomerTicketMessage.pm, (3) CustomerTicketProcess.pm, and (4) CustomerTicketZoom.pm in Kernel/Modules/ …
|
CWE-352
Origin Validation Error
|
CVE-2014-1694
|
2014-03-6 13:50 |
2014-02-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258943
|
- |
|
beyondgrep
|
ack
|
ack 2.00 through 2.11_02 allows remote attackers to execute arbitrary code via a (1) --pager, (2) --regex, or (3) --output option in a .ackrc file in a directory to be searched.
|
CWE-94
Code Injection
|
CVE-2013-7069
|
2014-03-6 13:50 |
2013-12-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258944
|
- |
|
icinga
|
icinga
|
Cross-site request forgery (CSRF) vulnerability in cmd.cgi in Icinga 1.8.5, 1.9.4, 1.10.2, and earlier allows remote attackers to hijack the authentication of users for unspecified commands via unspe…
|
CWE-352
Origin Validation Error
|
CVE-2013-7107
|
2014-03-6 13:50 |
2014-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258945
|
- |
|
oracle
|
database_server
|
Unspecified vulnerability in the Core RDBMS component in Oracle Database Server 11.1.0.7, 11.2.0.3, and 12.1.0.1 allows remote attackers to affect availability via unknown vectors.
|
NVD-CWE-noinfo
|
CVE-2013-5853
|
2014-03-6 13:49 |
2014-01-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258946
|
- |
|
nvidia
|
gpu_driver
|
Unspecified vulnerability in NVIDIA graphics driver Release 331, 325, 319, 310, and 304 has unknown impact and attack vectors, a different vulnerability than CVE-2013-5987.
|
NVD-CWE-noinfo
|
CVE-2013-5986
|
2014-03-6 13:49 |
2014-01-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258947
|
- |
|
munin-monitoring
|
munin
|
The get_group_tree function in lib/Munin/Master/HTMLConfig.pm in Munin before 2.0.18 allows remote nodes to cause a denial of service (infinite loop and memory consumption in the munin-html process) …
|
CWE-20
Improper Input Validation
|
CVE-2013-6048
|
2014-03-6 13:49 |
2013-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258948
|
- |
|
munin-monitoring
|
munin
|
Munin::Master::Node in Munin before 2.0.18 allows remote attackers to cause a denial of service (abort data collection for node) via a plugin that uses "multigraph" as a multigraph service name.
|
CWE-20
Improper Input Validation
|
CVE-2013-6359
|
2014-03-6 13:49 |
2013-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258949
|
- |
|
hp
|
linux_imaging_and_printing_project
|
base/pkit.py in HP Linux Imaging and Printing (HPLIP) through 3.13.11 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/hp-pkservice.log temporary file.
|
CWE-59
Link Following
|
CVE-2013-6402
|
2014-03-6 13:49 |
2014-01-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
258950
|
- |
|
hp
|
linux_imaging_and_printing_project
|
upgrade.py in the hp-upgrade service in HP Linux Imaging and Printing (HPLIP) 3.x through 3.13.11 launches a program from an http URL, which allows man-in-the-middle attackers to execute arbitrary co…
|
CWE-94
Code Injection
|
CVE-2013-6427
|
2014-03-6 13:49 |
2013-12-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|