260631
|
- |
|
typo3
|
typo3
|
SQL injection vulnerability in the Extbase Framework in TYPO3 4.5.x before 4.5.24, 4.6.x before 4.6.17, 4.7.x before 4.7.9, and 6.0.x before 6.0.3 allows remote attackers to execute arbitrary SQL com…
|
CWE-89
SQL Injection
|
CVE-2013-1842
|
2013-06-5 12:42 |
2013-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260632
|
- |
|
typo3
|
typo3
|
Open redirect vulnerability in the Access tracking mechanism in TYPO3 4.5.x before 4.5.24, 4.6.x before 4.6.17, 4.7.x before 4.7.9, and 6.0.x before 6.0.3 allows remote attackers to redirect users to…
|
CWE-399
Resource Management Errors
|
CVE-2013-1843
|
2013-06-5 12:42 |
2013-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260633
|
- |
|
mozilla
|
firefox
|
Unspecified vulnerability in the browser engine in Mozilla Firefox before 20.0 on Android allows remote attackers to cause a denial of service (stack memory corruption and application crash) or possi…
|
NVD-CWE-noinfo
|
CVE-2013-0790
|
2013-06-5 12:41 |
2013-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260634
|
- |
|
mozilla
|
firefox
|
Mozilla Firefox before 20.0 on Android uses world-writable and world-readable permissions for the app_tmp installation directory in the local filesystem, which allows attackers to modify add-ons befo…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-0798
|
2013-06-5 12:41 |
2013-04-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260635
|
- |
|
openstack canonical
|
essex folsom grizzly ubuntu_linux
|
OpenStack Compute (Nova) Grizzly, Folsom (2012.2), and Essex (2012.1) allows remote authenticated users to gain access to a VM in opportunistic circumstances by using the VNC token for a deleted VM t…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-0335
|
2013-06-5 12:40 |
2013-03-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260636
|
- |
|
openstack canonical
|
essex folsom grizzly ubuntu_linux
|
Per http://www.ubuntu.com/usn/USN-1771-1/
"A security issue affects these releases of Ubuntu and its derivatives:
Ubuntu 12.10
Ubuntu 12.04 LTS
Ubuntu 11.10"
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2013-0335
|
2013-06-5 12:40 |
2013-03-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260637
|
- |
|
nagios icinga
|
nagios icinga
|
Multiple stack-based buffer overflows in the get_history function in history.cgi in Nagios Core before 3.4.4, and Icinga 1.6.x before 1.6.2, 1.7.x before 1.7.4, and 1.8.x before 1.8.4, might allow re…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-6096
|
2013-06-5 12:40 |
2013-01-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260638
|
- |
|
cisco
|
nx-os nexus_1000v
|
Cisco NX-OS on the Nexus 1000V does not assign the proper priority to heartbeat messages from a Virtual Ethernet Module (VEM) to a Virtual Supervisor Module (VSM), which allows remote attackers to ca…
|
CWE-399
Resource Management Errors
|
CVE-2013-1213
|
2013-06-4 13:00 |
2013-05-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260639
|
- |
|
lockon
|
ec-cube
|
Session fixation vulnerability in LOCKON EC-CUBE 2.11.0 through 2.12.3enP2 allows remote attackers to hijack web sessions via unspecified vectors.
|
CWE-287
Improper Authentication
|
CVE-2013-2313
|
2013-06-4 13:00 |
2013-05-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
260640
|
- |
|
lockon
|
ec-cube
|
Cross-site scripting (XSS) vulnerability in the adminAuthorization function in data/class/helper/SC_Helper_Session.php in LOCKON EC-CUBE 2.11.0 through 2.12.3enP2 allows remote attackers to inject ar…
|
CWE-79
Cross-site Scripting
|
CVE-2013-2314
|
2013-06-4 13:00 |
2013-05-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|