|
257581
|
- |
|
nowsms
|
now_sms_\&_mms_gateway
|
The Multimedia Messaging Centre (MMSC) in NowSMS Now SMS & MMS Gateway before 2013.11.15 allows remote attackers to cause a denial of service via a malformed MM1 message that is routed to a (1) MM4 o…
|
CWE-20
Improper Input Validation
|
CVE-2013-7001
|
2013-12-13 14:22 |
2013-12-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257582
|
- |
|
baramundi
|
management_suite
|
The OS deployment feature in Baramundi Management Suite 7.5 through 8.9 stores credentials in cleartext on deployed machines, which allows remote attackers to obtain sensitive information by reading …
|
CWE-310
Cryptographic Issues
|
CVE-2013-3624
|
2013-12-13 14:18 |
2013-10-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257583
|
- |
|
autotrace_project
|
autotrace
|
Integer underflow in the input_bmp_reader function in input-bmp.c in AutoTrace 0.31.1 allows context-dependent attackers to have an unspecified impact via a small value in the biSize field in the hea…
|
CWE-189
Numeric Errors
|
CVE-2013-1953
|
2013-12-13 14:14 |
2013-12-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257584
|
- |
|
novell
|
zenworks_configuration_management
|
The web server in Novell ZENworks Configuration Management (ZCM) 10.3 and 11.2 before 11.2.4 does not properly perform authentication for zenworks/jsp/index.jsp, which allows remote attackers to cond…
|
CWE-287
Improper Authentication
|
CVE-2013-1080
|
2013-12-13 14:12 |
2013-03-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257585
|
- |
|
mozilla
|
bugzilla
|
Cross-site scripting (XSS) vulnerability in show_bug.cgi in Bugzilla before 3.6.13, 3.7.x and 4.0.x before 4.0.10, 4.1.x and 4.2.x before 4.2.5, and 4.3.x and 4.4.x before 4.4rc2 allows remote attack…
|
CWE-79
Cross-site Scripting
|
CVE-2013-0785
|
2013-12-13 14:11 |
2013-02-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257586
|
- |
|
mozilla
|
bugzilla
|
The Bugzilla::Search::build_subselect function in Bugzilla 2.x and 3.x before 3.6.13 and 3.7.x and 4.0.x before 4.0.10 generates different error messages for invalid product queries depending on whet…
|
CWE-200
Information Exposure
|
CVE-2013-0786
|
2013-12-13 14:11 |
2013-02-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257587
|
- |
|
moinmo
|
moinmoin
|
Multiple unrestricted file upload vulnerabilities in the (1) twikidraw (action/twikidraw.py) and (2) anywikidraw (action/anywikidraw.py) actions in MoinMoin before 1.9.6 allow remote authenticated us…
|
NVD-CWE-Other
|
CVE-2012-6081
|
2013-12-13 14:08 |
2013-01-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257588
|
- |
|
moinmo
|
moinmoin
|
Per: http://cwe.mitre.org/data/definitions/434.html 'CWE-434: Unrestricted Upload of File with Dangerous Type'
|
NVD-CWE-Other
|
CVE-2012-6081
|
2013-12-13 14:08 |
2013-01-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257589
|
- |
|
mozilla
|
bugzilla
|
Cross-site scripting (XSS) vulnerability in Bugzilla 4.1.x and 4.2.x before 4.2.4, and 4.3.x and 4.4.x before 4.4rc1, allows remote attackers to inject arbitrary web script or HTML via a field value …
|
CWE-79
Cross-site Scripting
|
CVE-2012-4189
|
2013-12-13 14:04 |
2012-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257590
|
- |
|
mozilla
|
bugzilla
|
The User.get method in Bugzilla/WebService/User.pm in Bugzilla 3.7.x and 4.0.x before 4.0.9, 4.1.x and 4.2.x before 4.2.4, and 4.3.x and 4.4.x before 4.4rc1 has a different outcome for a groups reque…
|
CWE-200
Information Exposure
|
CVE-2012-4198
|
2013-12-13 14:04 |
2012-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
