|
261121
|
- |
|
kristof_de_jaeger
|
display_suite
|
Cross-site scripting (XSS) vulnerability in the Display Suite module 7.x-1.x before 7.x-1.7 and 7.x-2.x before 7.x-2.3 for Drupal allows remote authenticated users with certain permissions to inject …
|
CWE-79
Cross-site Scripting
|
CVE-2013-2177
|
2013-06-27 04:23 |
2013-06-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261122
|
- |
|
fortinet
|
fortios
|
Fortinet FortiOS before 5.0.3 on FortiGate devices does not properly restrict Guest capabilities, which allows remote authenticated users to read, modify, or delete the records of arbitrary users by …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-4604
|
2013-06-26 23:45 |
2013-06-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261123
|
- |
|
steve_j_baker
|
plib
|
Stack-based buffer overflow in the error function in ssg/ssgParser.cxx in PLIB 1.8.5 allows remote attackers to execute arbitrary code via a crafted 3d model file that triggers a long error message, …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-4552
|
2013-06-26 12:14 |
2012-11-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261124
|
- |
|
agilefleet
|
fleetcommander
fleetcommander_kiosk
|
Multiple SQL injection vulnerabilities in Agile FleetCommander and FleetCommander Kiosk before 4.08 allow remote attackers to execute arbitrary SQL commands via unspecified vectors.
|
CWE-89
SQL Injection
|
CVE-2012-4941
|
2013-06-26 12:14 |
2012-11-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261125
|
- |
|
agilefleet
|
fleetcommander
fleetcommander_kiosk
|
Multiple cross-site scripting (XSS) vulnerabilities in Agile FleetCommander and FleetCommander Kiosk before 4.08 allow remote attackers to inject arbitrary web script or HTML via an arbitrary text fi…
|
CWE-79
Cross-site Scripting
|
CVE-2012-4942
|
2013-06-26 12:14 |
2012-11-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261126
|
- |
|
agilefleet
|
fleetcommander
fleetcommander_kiosk
|
Multiple unrestricted file upload vulnerabilities in Agile FleetCommander and FleetCommander Kiosk before 4.08 allow remote attackers to execute arbitrary code by uploading a file via an unspecified …
|
NVD-CWE-Other
|
CVE-2012-4944
|
2013-06-26 12:14 |
2012-11-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261127
|
- |
|
agilefleet
|
fleetcommander
fleetcommander_kiosk
|
Per: http://cwe.mitre.org/data/definitions/434.html
'CWE-434: Unrestricted Upload of File with Dangerous Type'
|
NVD-CWE-Other
|
CVE-2012-4944
|
2013-06-26 12:14 |
2012-11-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261128
|
- |
|
agilefleet
|
fleetcommander
fleetcommander_kiosk
|
Agile FleetCommander and FleetCommander Kiosk before 4.08 allow remote attackers to execute arbitrary commands via unspecified vectors, related to a "command injection" issue.
|
CWE-20
Improper Input Validation
|
CVE-2012-4945
|
2013-06-26 12:14 |
2012-11-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261129
|
- |
|
agilefleet
|
fleetcommander
fleetcommander_kiosk
|
Per: http://cwe.mitre.org/data/definitions/77.html 'Command Injection'
|
CWE-20
Improper Input Validation
|
CVE-2012-4945
|
2013-06-26 12:14 |
2012-11-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
261130
|
- |
|
hp
|
performance_insight
|
Unspecified vulnerability in HP Performance Insight 5.31, 5.40, and 5.41, when Sybase is used, allows remote attackers to obtain sensitive information, modify data, or cause a denial of service via u…
|
NVD-CWE-noinfo
|
CVE-2012-3270
|
2013-06-26 12:12 |
2012-11-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
