|
260641
|
- |
|
yahoo
|
yahoo\!_browser
|
The Yahoo! Browser application 1.4.4 and earlier for Android allows remote attackers to spoof the address bar via vectors related to URL display, a different vulnerability than CVE-2013-2307.
|
NVD-CWE-noinfo
|
CVE-2013-2316
|
2013-06-4 13:00 |
2013-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260642
|
- |
|
fenrir-inc
|
sleipnir_mobile
|
The Sleipnir Mobile application 2.9.1 and earlier and Sleipnir Mobile Black Edition application 2.9.1 and earlier for Android allow remote attackers to spoof the address bar via vectors involving the…
|
NVD-CWE-noinfo
|
CVE-2013-2317
|
2013-06-4 13:00 |
2013-06-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260643
|
- |
|
photogallerycreator
|
flash-album-gallery
|
Cross-site scripting (XSS) vulnerability in wp-admin/admin.php in the GRAND FlAGallery plugin before 2.72 for WordPress allows remote attackers to inject arbitrary web script or HTML via the s parame…
|
CWE-79
Cross-site Scripting
|
CVE-2013-3261
|
2013-06-4 00:30 |
2013-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260644
|
- |
|
mutiny
|
mutiny
mutiny_virtual_appliance
mutiny_appliance
|
Multiple directory traversal vulnerabilities in the EditDocument servlet in the Frontend in Mutiny before 5.0-1.11 allow remote authenticated users to upload and execute arbitrary programs, read arbi…
|
CWE-22
Path Traversal
|
CVE-2013-0136
|
2013-06-3 13:00 |
2013-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260645
|
- |
|
cisco
|
telepresence_system_software
|
Cisco TelePresence System Software does not properly handle inactive t-shell sessions, which allows remote authenticated users to cause a denial of service (memory consumption and service outage) by …
|
CWE-399
Resource Management Errors
|
CVE-2013-1246
|
2013-06-3 13:00 |
2013-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260646
|
- |
|
cisco
|
prime_infrastructure
|
Cross-site scripting (XSS) vulnerability in the wireless configuration module in Cisco Prime Infrastructure allows remote attackers to inject arbitrary web script or HTML via an SSID that is not prop…
|
CWE-79
Cross-site Scripting
|
CVE-2013-1247
|
2013-06-3 13:00 |
2013-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260647
|
- |
|
tibco
|
silver_mobile
|
The server in TIBCO Silver Mobile 1.1.0 does not properly verify access to the administrator role before executing a command, which allows authenticated users to gain privileges via unspecified vecto…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-3315
|
2013-06-3 13:00 |
2013-06-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260648
|
- |
|
algisinfo
|
aicontactsafe
|
Cross-site scripting (XSS) vulnerability in the aiContactSafe component before 2.0.21 for Joomla! allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2013-3719
|
2013-06-3 13:00 |
2013-05-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260649
|
- |
|
microsys
|
promotic
|
Directory traversal vulnerability in the PmWebDir object in the web server in MICROSYS PROMOTIC before 8.1.5 allows remote attackers to read arbitrary files via unspecified vectors.
|
CWE-22
Path Traversal
|
CVE-2011-4518
|
2013-06-3 13:00 |
2013-05-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
260650
|
- |
|
psychostats
|
psychostats
|
SQL injection vulnerability in awards.php in PsychoStats 3.2.2b allows remote attackers to execute arbitrary SQL commands via the d parameter.
|
CWE-89
SQL Injection
|
CVE-2013-3721
|
2013-05-31 21:20 |
2013-05-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
