261471
|
- |
|
sitecom
|
wlm-2501
|
Cross-site request forgery (CSRF) vulnerability in goform/admin/formWlEncrypt in Sitecom WLM-2501 allows remote attackers to hijack the authentication of administrators for requests that change the r…
|
CWE-352
Origin Validation Error
|
CVE-2012-1921
|
2013-01-24 14:00 |
2012-08-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261472
|
- |
|
elefantcms
|
elefantcms
|
Cross-site scripting (XSS) vulnerability in apps/admin/handlers/versions.php in Elefant CMS 1.2.0 allows remote attackers to inject arbitrary web script or HTML via the id parameter to admin/versions.
|
CWE-79
Cross-site Scripting
|
CVE-2012-6521
|
2013-01-24 14:00 |
2013-01-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261473
|
- |
|
edimax canyon-tech sitecom sweex
|
br-6104k_router_firmware br-6104k cn-wf512_router_firmware cn-wf514_router_firmware cn-wf512 cn-wf514 6114wg_router_firmware 6114wg wl-153_router_firmware wl-153 lb00002…
|
The UPnP IGD implementation in Edimax EdiLinux on the Edimax BR-6104K with firmware before 3.25, Edimax 6114Wg, Canyon-Tech CN-WF512 with firmware 1.83, Canyon-Tech CN-WF514 with firmware 2.08, Sitec…
|
CWE-78
OS Command
|
CVE-2011-4502
|
2013-01-24 14:00 |
2011-11-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261474
|
- |
|
broadcom sitecom
|
broadcom_linux wl-111
|
The UPnP IGD implementation in Broadcom Linux on the Sitecom WL-111 allows remote attackers to establish arbitrary port mappings by sending a UPnP AddPortMapping action in a SOAP request to the WAN i…
|
CWE-16
Configuration
|
CVE-2011-4503
|
2013-01-24 14:00 |
2011-11-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261475
|
- |
|
edimax canyon-tech sitecom sweex
|
br-6104k_router_firmware br-6104k cn-wf512_router_firmware cn-wf514_router_firmware cn-wf512 cn-wf514 6114wg_router_firmware 6114wg wl-153_router_firmware wl-153 lb00002…
|
The UPnP IGD implementation in Edimax EdiLinux on the Edimax BR-6104K with firmware before 3.25, Edimax 6114Wg, Canyon-Tech CN-WF512 with firmware 1.83, Canyon-Tech CN-WF514 with firmware 2.08, Sitec…
|
CWE-16
Configuration
|
CVE-2011-4501
|
2013-01-24 14:00 |
2011-11-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261476
|
- |
|
pragyan_cms_project
|
pragyan_cms
|
Directory traversal vulnerability in download.lib.php in Pragyan CMS 3.0 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the fileget parameter in a profile action to…
|
CWE-22
Path Traversal
|
CVE-2012-6500
|
2013-01-23 14:00 |
2013-01-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261477
|
- |
|
connections_project
|
connections
|
Unspecified vulnerability in the Connections plugin before 0.7.1.6 for WordPress has unknown impact and attack vectors.
|
NVD-CWE-noinfo
|
CVE-2011-5254
|
2013-01-23 14:00 |
2013-01-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261478
|
- |
|
schneider-electric
|
software_update_utility
|
The client in Schneider Electric Software Update (SESU) Utility 1.0.x and 1.1.x does not ensure that updates have a valid origin, which allows man-in-the-middle attackers to spoof updates, and conseq…
|
CWE-20
Improper Input Validation
|
CVE-2013-0655
|
2013-01-22 14:00 |
2013-01-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261479
|
- |
|
siemens
|
simatic_rf-manager simatic_rf-manager_2008
|
Buffer overflow in a third-party ActiveX component in Siemens SIMATIC RF-MANAGER 2008, and RF-MANAGER Basic 3.0 and earlier, allows remote attackers to execute arbitrary code via a crafted web site.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2013-0656
|
2013-01-22 14:00 |
2013-01-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
261480
|
- |
|
emc
|
avamar avamar_plugin
|
EMC Avamar Client 4.x, 5.x, and 6.x on HP-UX and Mac OS X, and the EMC Avamar plugin 4.x, 5.x, and 6.x for Oracle, uses world-writable permissions for cache directories, which allows local users to g…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2012-2291
|
2013-01-22 14:00 |
2013-01-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|