|
258151
|
- |
|
dell
|
openmanage_server_administrator
|
Open redirect vulnerability in Dell OpenManage Server Administrator (OMSA) before 7.3.0 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the …
|
CWE-20
Improper Input Validation
|
CVE-2013-0740
|
2014-04-12 01:14 |
2014-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258152
|
- |
|
redhat
|
jboss_bpm_suite
jboss_drools
jboss_enterprise_brms_platform
|
JBoss Drools, Red Hat JBoss BRMS before 6.0.1, and Red Hat JBoss BPM Suite before 6.0.1 allows remote authenticated users to execute arbitrary Java code via a (1) MVFLEX Expression Language (MVEL) or…
|
CWE-94
Code Injection
|
CVE-2013-6468
|
2014-04-11 23:54 |
2014-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258153
|
- |
|
lesterchan
|
wp-postviews
|
Cross-site request forgery (CSRF) vulnerability in the options admin page in the WP-PostViews plugin before 1.63 for WordPress allows remote attackers to hijack the authentication of administrators f…
|
CWE-352
Origin Validation Error
|
CVE-2013-3252
|
2014-04-11 23:38 |
2014-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258154
|
- |
|
qianqin
|
qtranslate
|
Cross-site request forgery (CSRF) vulnerability in the qTranslate plugin 2.5.34 and earlier for WordPress allows remote attackers to hijack the authentication of administrators for requests that chan…
|
CWE-352
Origin Validation Error
|
CVE-2013-3251
|
2014-04-11 23:30 |
2014-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258155
|
- |
|
wp-plugins
|
wp-print
|
Cross-site request forgery (CSRF) vulnerability in the Options in the WP-Print plugin before 2.52 for WordPress allows remote attackers to hijack the authentication of administrators for requests tha…
|
CWE-352
Origin Validation Error
|
CVE-2013-2693
|
2014-04-11 22:29 |
2014-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258156
|
- |
|
dvs_custom_notification_project
|
dvs_custom_notification
|
Multiple cross-site request forgery (CSRF) vulnerabilities in the DVS Custom Notification plugin 1.0.1 and earlier for WordPress allow remote attackers to hijack the authentication of administrators …
|
CWE-352
Origin Validation Error
|
CVE-2012-4921
|
2014-04-11 22:24 |
2014-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258157
|
- |
|
cisco
|
cisco_ons_15454_system_software
ons_15454
|
The session-termination functionality on Cisco ONS 15454 controller cards with software 9.6 and earlier does not initialize an unspecified pointer, which allows remote authenticated users to cause a …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2014-2141
|
2014-04-11 03:33 |
2014-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258158
|
- |
|
tibco
|
web_player
automation_services
spotfire_server
spotfire_professional
analyst
desktop
deployment_kit
|
Unspecified vulnerability in Spotfire Web Player Engine, Spotfire Desktop, and Spotfire Server Authentication Module in TIBCO Spotfire Server 3.3.x before 3.3.4, 4.5.x before 4.5.1, 5.0.x before 5.0.…
|
NVD-CWE-noinfo
|
CVE-2014-2544
|
2014-04-11 00:13 |
2014-04-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258159
|
- |
|
clip-bucket
|
clipbucket
|
Cross-site scripting (XSS) vulnerability in ClipBucket 2.6 allows remote attackers to inject arbitrary web script or HTML via the type parameter to view_channel.php. NOTE: the provenance of this inf…
|
CWE-79
Cross-site Scripting
|
CVE-2012-6642
|
2014-04-9 02:13 |
2014-04-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258160
|
- |
|
david_paleino
fedoraproject
|
wicd
fedora
|
The SetWiredProperty function in the D-Bus interface in WICD before 1.7.2 allows local users to write arbitrary configuration settings and gain privileges via a crafted property name in a dbus messag…
|
CWE-20
Improper Input Validation
|
CVE-2012-2095
|
2014-04-8 23:52 |
2014-04-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
